Zamrznutí notebooku v řádu desítek minut po startu

[Márty84]

FRST vypadal trošku jinak -- ve "whitelist" položka "KnownDLLa" chyběla a v "Optional scan" přebývala "90 Days Files". Tu jsem nezaškrtával.

OK, dik za info.


Vypnete trvale Windows Defender



Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [296056 2012-04-03] (RealNetworks, Inc.)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861640 2015-06-27] (DivX, LLC)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2015-04-10] (Oracle Corporation)
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\...\Run: [FactoryTest] => C:\Windows\Test.bat
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\...\Run: [Power2GoExpress] => NA
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\...\Run: [Google Update] => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-05-29] (Google Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.lenovo.com
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
BHO-x32: No Name -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKU\S-1-5-21-2881140453-2529427406-3045890132-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

U2 CLKMSVC10_3A60B698; no ImagePath
U2 CLKMSVC10_C3B3B687; no ImagePath
U2 DriverService; no ImagePath
U2 IAStorDataMgrSvc; no ImagePath
U2 idealife Update Service; no ImagePath
U3 IGRS; no ImagePath
U2 IviRegMgr; no ImagePath
R3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
U2 Oasis2Service; no ImagePath
U2 PCCarerServic; no ImagePath
U2 ReadyComm.DirectRouter; no ImagePath
U2 RichVideo; no ImagePath
U2 RtLedService; no ImagePath
U2 SoftwareService; no ImagePath
U2 Stereo Service; no ImagePath
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-07 268976]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24 107912]

2015-08-08 21:58 - 2015-08-08 21:58 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-08 21:56 - 2015-08-08 21:57 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-2.1.8.1057.exe

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2881140453-2529427406-3045890132-1001Core.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2881140453-2529427406-3045890132-1001UA.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

[rypáček]

Fix result of Farbar Recovery Scan Tool (x64) Version:09-08-2015
Ran by Martin (2015-08-10 22:20:27) Run:1
Running from C:\Users\Martin\Desktop
Loaded Profiles: UpdatusUser & Martin (Available Profiles: UpdatusUser & Martin)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [296056 2012-04-03] (RealNetworks, Inc.)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861640 2015-06-27] (DivX, LLC)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2015-04-10] (Oracle Corporation)
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\...\Run: [FactoryTest] => C:\Windows\Test.bat
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\...\Run: [Power2GoExpress] => NA
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\...\Run: [Google Update] => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-05-29] (Google Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lenovo.com
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.lenovo.com
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
BHO-x32: No Name -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKU\S-1-5-21-2881140453-2529427406-3045890132-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

U2 CLKMSVC10_3A60B698; no ImagePath
U2 CLKMSVC10_C3B3B687; no ImagePath
U2 DriverService; no ImagePath
U2 IAStorDataMgrSvc; no ImagePath
U2 idealife Update Service; no ImagePath
U3 IGRS; no ImagePath
U2 IviRegMgr; no ImagePath
R3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
U2 Oasis2Service; no ImagePath
U2 PCCarerServic; no ImagePath
U2 ReadyComm.DirectRouter; no ImagePath
U2 RichVideo; no ImagePath
U2 RtLedService; no ImagePath
U2 SoftwareService; no ImagePath
U2 Stereo Service; no ImagePath
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-07 268976]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24 107912]

2015-08-08 21:58 - 2015-08-08 21:58 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-08 21:56 - 2015-08-08 21:57 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-2.1.8.1057.exe

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2881140453-2529427406-3045890132-1001Core.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2881140453-2529427406-3045890132-1001UA.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\TkBellExe => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\DivXUpdate => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\Software\Microsoft\Windows\CurrentVersion\Run\\FactoryTest => value not found.
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Power2GoExpress => value not found.
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value removed successfully
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value removed successfully
hklm\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => Error setting value.
HKU\S-1-5-21-2881140453-2529427406-3045890132-1000\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Error setting value.
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages => value removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}" => key removed successfully
HKCR\Wow6432Node\CLSID\{3049C3E9-B461-4BC5-8870-4C09146192CA} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
"HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => key removed successfully
HKU\S-1-5-21-2881140453-2529427406-3045890132-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
CLKMSVC10_3A60B698 => service removed successfully
CLKMSVC10_C3B3B687 => service removed successfully
DriverService => service removed successfully
IAStorDataMgrSvc => service removed successfully
idealife Update Service => service removed successfully
IGRS => service removed successfully
IviRegMgr => service removed successfully
MBAMSwissArmy => service removed successfully
Oasis2Service => service removed successfully
PCCarerServic => service removed successfully
ReadyComm.DirectRouter => service removed successfully
RichVideo => service removed successfully
RtLedService => service removed successfully
SoftwareService => service removed successfully
Stereo Service => service removed successfully
AdobeARMservice => service removed successfully
gupdate => service removed successfully
SkypeUpdate => service removed successfully
AdobeFlashPlayerUpdateSvc => service removed successfully
gupdatem => service removed successfully
C:\ProgramData\Malwarebytes => moved successfully.
C:\Users\Martin\Downloads\mbam-setup-2.1.8.1057.exe => moved successfully.
C:\windows\Tasks\Adobe Flash Player Updater.job => moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2881140453-2529427406-3045890132-1001Core.job => moved successfully.
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2881140453-2529427406-3045890132-1001UA.job => moved successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.
EmptyTemp: => 733.6 MB temporary data Removed.


The system needed a reboot..

==== End of Fixlog 22:22:16 ====

[Márty84]

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




Pak napiste, jak to s pc vypada.

[rypáček]

Upřímně moc nevím, jaký popis stavu pc chcete. Nijak divně se nechová, ale žádné další testy (třeba antivirem) jsem nedělal, tak je to informace celkem k ničemu. Chápu-li to dobře, poslední programy mi měly uklidit bordel na disku a zlepšit rychlost počítače. Zatím jsem toho moc nedělal, tak nemohu posoudit, ale horší to rozhodně není. Pokud chcete nějaké objektivnější informace, jako třeba nějaký log, tak si řekněte jaký.

ps:

Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

Tohle jsem si vyložil jako "Funkce Nástroje umožňuje odinstalování programů..., tedy obecnou poučku a ne pokyn k odinstalování Ccleaneru.

[Márty84]

Tohle jsem si vyložil jako "Funkce Nástroje umožňuje odinstalování programů..., tedy obecnou poučku a ne pokyn k odinstalování Ccleaneru.

Presne tak, CClenaer je dobre si nechat a obcas s nim pc vycistit a pouzivat ho na odinstalovavani.

Upřímně moc nevím, jaký popis stavu pc chcete. Nijak divně se nechová, ale žádné další testy (třeba antivirem) jsem nedělal, tak je to informace celkem k ničemu....

Na zacatku jste psal o urcitych problemech se zasekavanim a vypinanim. Takze chci proste vedet, jestli vse funguje jak ma. Ohledne rychlosti jste si myslim nestezoval, ale pokud je pc pomaly, muzeme se podivat hloubeji Ja u toho pc nesedim, takze to nemuzu posoudit, jestli je v norme, nebo mu neco schazi. Kdyz budu vedet co zlobi, vyzadam si patricny log

[rypáček]

Presne tak, CClenaer je dobre si nechat a obcas s nim pc vycistit a pouzivat ho na odinstalovavani.

Přepokládám, že si mám nechat i Defraggler a občas si s ním defragmentovat disk.

Na zacatku jste psal o urcitych problemech...

Žádné problémy se zasekáváním, s nemožností vypnout ani s výkonem nepozoruji.
Mnohokrát děkuji za záchranu.

[Márty84]

Přepokládám, že si mám nechat i Defraggler a občas si s ním defragmentovat disk.

Ano, treba jednou za ctvrt roku to nezaskodi.


Pokud tedy vse bezi jak ma, neni potreba delat dalsi skeny a mame hotovo.

Nemate zac!

Mejte se a treba zase nekdy