Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Zpráva

aiRen · #1 Příspěvek od **aiRen** » 09 říj 2016 14:13

Pekny den,
prosim o kontrolu ntb. Po zapnuti ntb mi automaticky spusti poznamkovy blok (s oznamenim, ze pristup zamietnuty). Stane sa to vzdy po restartovani/zapnuti ntb.
Dalej je ntb velmi pomaly a jeho bateria vydrzi extremne kratko (bateria bola kupovana nova, nema este ani 3 mesiace). Procesor je vzdy vytazeny aspon na 50%, disk na 80-100% a RAMka tak na 40-60%

Prikladam log z RSIT (3 mesiace) - v prilohe a zabaleny do RAR (txt mi forum nepovoli).

Dakujem velmi pekne

EDIT: Pre uplnost dodam, ze vcera som ho nechal prebehnut antivirusom (ESET) a problem sa nepodarilo odstranit. ESET ziadny vir nedetekoval.

#2 Příspěvek od **Rudy** » 09 říj 2016 14:54

Zdravím!

(txt mi forum nepovoli)

co takhle kopírovat/vložit?

Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

aiRen · #3 Příspěvek od **aiRen** » 09 říj 2016 15:24

Dakujem za odpoved. To, ze to sem vlozim ma nejako nenapadlo. Prikladam log.

# AdwCleaner v6.021 - *Logfile created 09/10/2016 *at 16:19:45
# *Updated on 06/10/2016 by ToolsLib
# *Database : 2016-10-07.1 [*Server]
# *Operating System : Windows 10 Home (X64)
# *Username : Kristián - KRISTUSKRAJST
# *Running from : C:\Users\Kristián\Downloads\adwcleaner_6.021.exe
# *Mode: Clean
# *Support : https://toolslib.net/forum

***** [ *Services ] *****

***** [ *Folders ] *****

[-] *Folder deleted: C:\Users\Kristián\AppData\Local\eSupport.com
[-] *Folder deleted: C:\Users\Kristián\AppData\Local\globalUpdate
[-] *Folder deleted: C:\Program Files (x86)\globalUpdate

***** [ *Files ] *****

[-] *File deleted: C:\END

***** [ DLL ] *****

***** [ WMI ] *****

***** [ *Shortcuts ] *****

***** [ *Scheduled Tasks ] *****

***** [ *Registry ] *****

[-] *Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[-] *Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[#] *Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[-] *Key deleted: HKU\S-1-5-21-3705941977-851646081-2399104245-1002\Software\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
[-] *Key deleted: HKLM\SOFTWARE\Classes\CLSID\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] *Key deleted: HKLM\SOFTWARE\Classes\CLSID\{D96C1D26-5CDF-4506-9244-57233C3984DF}
[-] *Key deleted: HKLM\SOFTWARE\Classes\Interface\{D96C1D26-5CDF-4506-9244-57233C3984DF}
[-] *Key deleted: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] *Key deleted: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[#] *Key deleted on reboot: HKCU\Software\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
[-] *Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
[-] *Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
[-] *Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] *Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] *Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5E6A8DA1-5731-465B-B036-B9E16EF26CAC}
[-] *Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] *Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] *Key deleted: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] *Key deleted: HKU\S-1-5-21-3705941977-851646081-2399104245-1002\Software\eSupport.com
[-] *Key deleted: HKU\S-1-5-21-3705941977-851646081-2399104245-1002\Software\GlobalUpdate
[-] *Key deleted: HKU\S-1-5-21-3705941977-851646081-2399104245-1002\Software\PPStream
[-] *Key deleted: HKU\S-1-5-21-3705941977-851646081-2399104245-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer
[#] *Key deleted on reboot: HKCU\Software\eSupport.com
[#] *Key deleted on reboot: HKCU\Software\GlobalUpdate
[#] *Key deleted on reboot: HKCU\Software\PPStream
[#] *Key deleted on reboot: [x64] HKCU\Software\eSupport.com
[#] *Key deleted on reboot: [x64] HKCU\Software\GlobalUpdate
[#] *Key deleted on reboot: [x64] HKCU\Software\PPStream
[-] *Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\azlyrics.com
[-] *Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.azlyrics.com
[-] *Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\azlyrics.com
[-] *Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.azlyrics.com
[#] *Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\azlyrics.com
[#] *Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.azlyrics.com
[#] *Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\azlyrics.com
[#] *Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.azlyrics.com
[-] *Key deleted: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[#] *Key deleted on reboot: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] *Key deleted: HKLM\SOFTWARE\Google\Chrome\Extensions\iphahelpmejkbidhiecfeicblienleon

***** [ *Browsers ] *****

[-] [C:\Users\Kristián\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] *Deleted: search.conduit.com
[-] [C:\Users\Kristián\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] *Deleted: vlc-media-player.en.softonic.com
[-] [C:\Users\Kristián\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] *Deleted: wordpress.org
[-] [C:\Users\Kristián\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] *Deleted: disneystore.co.uk
[-] [C:\Users\Kristián\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] *Deleted: instantlogosearch.com
[-] [C:\Users\Kristián\AppData\Local\Google\Chrome\User Data\Default] [extension] *Deleted: fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Kristián\AppData\Local\Google\Chrome\User Data\Default] [extension] *Deleted: iphahelpmejkbidhiecfeicblienleon

*************************

:: *"Tracing" keys deleted
:: *Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [6569 *Bytes] - [09/10/2016 16:19:45]
C:\AdwCleaner\AdwCleaner[S0].txt - [6462 *Bytes] - [09/10/2016 16:18:54]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6717 *Bytes] ##########

#4 Příspěvek od **Rudy** » 09 říj 2016 15:45

Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

aiRen · #5 Příspěvek od **aiRen** » 09 říj 2016 16:10

Vaše zpráva obsahuje 144501 znaků. Maximální povolený počet znaků je 100000.

Prikladam preto log v prilohe

#6 Příspěvek od **Rudy** » 09 říj 2016 18:17

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-3705941977-851646081-2399104245-1002\...\Run: [BingSvc] => C:\Users\Kristián\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-12-27] (© 2015 Microsoft Corporation)
C:\Users\Kristián\AppData\Local\Microsoft\BingSvc
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => No File
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_C] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\32\BitrixShellExt.dll No File
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_E] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\32\BitrixShellExt.dll No File
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_S] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\32\BitrixShellExt.dll No File
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-09-05] (LastPass)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-09-05] (LastPass)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-09-05] (LastPass)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-09-05] (LastPass)
C:\WINDOWS\system32\ApnDatabase.xml
C:\ProgramData\DP45977C.lfl
C:\ProgramData\SetStretch.VBS
C:\Users\Kristián\AppData\Local\Temp
Task: {0B2E8721-872D-413A-8105-F16F2105EE4F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {17E4BAA6-3E8E-4AA9-8115-0FC0206F6FC5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {2CFED49D-0ABA-4F6C-ADFB-C9479800BE13} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {2E27AD63-894D-4644-A68D-9B550D7F4C3E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3BF5DE02-AF42-4BE9-A640-6E8C84FCA485} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3DBA5300-6918-4524-A70E-504D4BE739EF} - \WPD\SqmUpload_S-1-5-21-3705941977-851646081-2399104245-1002 -> No File <==== ATTENTION
Task: {666D58F5-C65B-4609-8F83-6159EE0F570B} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
C:\Windows\AutoKMS
Task: {815C240E-96D8-4951-96B8-D636373306F9} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {818B6B22-C938-416A-9D1C-2B5D37C9EAFB} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {B1C11377-1669-4285-876C-8DEA46BCFD76} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {B9866AE2-53F7-4AEA-B8F7-144A9F7E55BB} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {C5F7632F-4248-428E-9FE1-F774F4E243F3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C9C3DB0F-AA21-4EF6-8D41-0951D0F22C79} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {E0A0631A-F3E0-46FF-8842-91F9BAB45F1E} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {E9319578-B781-4460-A54E-B4D49FCC58AB} - \WPD\SqmUpload_S-1-5-21-3705941977-851646081-2399104245-1005 -> No File <==== ATTENTION

ResetHosts:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

aiRen · #7 Příspěvek od **aiRen** » 09 říj 2016 18:33

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 04-10-2016
Ran by Kristián (09-10-2016 19:28:52) Run:1
Running from C:\Users\Kristián\Desktop
Loaded Profiles: UpdatusUser & Kristián (Available Profiles: UpdatusUser & Kristián)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-3705941977-851646081-2399104245-1002\...\Run: [BingSvc] => C:\Users\Kristián\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-12-27] (© 2015 Microsoft Corporation)
C:\Users\Kristián\AppData\Local\Microsoft\BingSvc
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => No File
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_C] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\32\BitrixShellExt.dll No File
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_E] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\32\BitrixShellExt.dll No File
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_S] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\32\BitrixShellExt.dll No File
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-09-05] (LastPass)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-09-05] (LastPass)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-09-05] (LastPass)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-09-05] (LastPass)
C:\WINDOWS\system32\ApnDatabase.xml
C:\ProgramData\DP45977C.lfl
C:\ProgramData\SetStretch.VBS
C:\Users\Kristián\AppData\Local\Temp
Task: {0B2E8721-872D-413A-8105-F16F2105EE4F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {17E4BAA6-3E8E-4AA9-8115-0FC0206F6FC5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {2CFED49D-0ABA-4F6C-ADFB-C9479800BE13} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {2E27AD63-894D-4644-A68D-9B550D7F4C3E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3BF5DE02-AF42-4BE9-A640-6E8C84FCA485} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3DBA5300-6918-4524-A70E-504D4BE739EF} - \WPD\SqmUpload_S-1-5-21-3705941977-851646081-2399104245-1002 -> No File <==== ATTENTION
Task: {666D58F5-C65B-4609-8F83-6159EE0F570B} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
C:\Windows\AutoKMS
Task: {815C240E-96D8-4951-96B8-D636373306F9} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {818B6B22-C938-416A-9D1C-2B5D37C9EAFB} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {B1C11377-1669-4285-876C-8DEA46BCFD76} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {B9866AE2-53F7-4AEA-B8F7-144A9F7E55BB} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {C5F7632F-4248-428E-9FE1-F774F4E243F3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C9C3DB0F-AA21-4EF6-8D41-0951D0F22C79} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {E0A0631A-F3E0-46FF-8842-91F9BAB45F1E} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {E9319578-B781-4460-A54E-B4D49FCC58AB} - \WPD\SqmUpload_S-1-5-21-3705941977-851646081-2399104245-1005 -> No File <==== ATTENTION

ResetHosts:
End
*****************

HKU\S-1-5-21-3705941977-851646081-2399104245-1002\Software\Microsoft\Windows\CurrentVersion\Run\\BingSvc => value removed successfully
C:\Users\Kristián\AppData\Local\Microsoft\BingSvc => moved successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ 00BitrixShellExt => key not found. 
HKCR\Wow6432Node\CLSID\{A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => key not found. 
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ 00BitrixShellExt_C => key not found. 
"HKCR\Wow6432Node\CLSID\{A11A1EE5-F9F8-4BE0-907F-D74A49CC506E}" => key removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ 00BitrixShellExt_E => key not found. 
"HKCR\Wow6432Node\CLSID\{A11A1EE5-F9F8-4BE0-907F-D74A49CC506D}" => key removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ 00BitrixShellExt_S => key not found. 
"HKCR\Wow6432Node\CLSID\{A11A1EE5-F9F8-4BE0-907F-D74A49CC506C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95D9ECF5-2A4D-4550-BE49-70D42F71296E}" => key removed successfully
"HKCR\CLSID\{95D9ECF5-2A4D-4550-BE49-70D42F71296E}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} => value removed successfully
"HKCR\CLSID\{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5}" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} => value removed successfully
"HKCR\Wow6432Node\CLSID\{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5}" => key removed successfully
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => value removed successfully
"HKLM\Software\MozillaPlugins\@lastpass.com/NPLastPass" => key removed successfully
C:\Program Files (x86)\LastPass\nplastpass64.dll => moved successfully
C:\WINDOWS\system32\ApnDatabase.xml => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\ProgramData\SetStretch.VBS => moved successfully

"C:\Users\Kristián\AppData\Local\Temp" folder move:

Could not move "C:\Users\Kristián\AppData\Local\Temp" => Scheduled to move on reboot.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0B2E8721-872D-413A-8105-F16F2105EE4F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B2E8721-872D-413A-8105-F16F2105EE4F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{17E4BAA6-3E8E-4AA9-8115-0FC0206F6FC5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{17E4BAA6-3E8E-4AA9-8115-0FC0206F6FC5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2CFED49D-0ABA-4F6C-ADFB-C9479800BE13}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2CFED49D-0ABA-4F6C-ADFB-C9479800BE13}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2E27AD63-894D-4644-A68D-9B550D7F4C3E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E27AD63-894D-4644-A68D-9B550D7F4C3E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3BF5DE02-AF42-4BE9-A640-6E8C84FCA485}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3BF5DE02-AF42-4BE9-A640-6E8C84FCA485}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3DBA5300-6918-4524-A70E-504D4BE739EF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3DBA5300-6918-4524-A70E-504D4BE739EF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-3705941977-851646081-2399104245-1002" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{666D58F5-C65B-4609-8F83-6159EE0F570B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{666D58F5-C65B-4609-8F83-6159EE0F570B}" => key removed successfully
C:\WINDOWS\System32\Tasks\AutoKMS => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => key removed successfully
C:\Windows\AutoKMS => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{815C240E-96D8-4951-96B8-D636373306F9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{815C240E-96D8-4951-96B8-D636373306F9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{818B6B22-C938-416A-9D1C-2B5D37C9EAFB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{818B6B22-C938-416A-9D1C-2B5D37C9EAFB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1C11377-1669-4285-876C-8DEA46BCFD76}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1C11377-1669-4285-876C-8DEA46BCFD76}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B9866AE2-53F7-4AEA-B8F7-144A9F7E55BB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9866AE2-53F7-4AEA-B8F7-144A9F7E55BB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C5F7632F-4248-428E-9FE1-F774F4E243F3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C5F7632F-4248-428E-9FE1-F774F4E243F3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C9C3DB0F-AA21-4EF6-8D41-0951D0F22C79}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C9C3DB0F-AA21-4EF6-8D41-0951D0F22C79}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0A0631A-F3E0-46FF-8842-91F9BAB45F1E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0A0631A-F3E0-46FF-8842-91F9BAB45F1E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E9319578-B781-4460-A54E-B4D49FCC58AB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E9319578-B781-4460-A54E-B4D49FCC58AB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-3705941977-851646081-2399104245-1005" => key removed successfully
ResetHosts: => Error: No automatic fix found for this entry.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 09-10-2016 19:32:00)

C:\Users\Kristián\AppData\Local\Temp => moved successfully

==== End of Fixlog 19:32:00 ====

#8 Příspěvek od **Rudy** » 09 říj 2016 18:52

Smazáno. Nastala nějaká změna?

aiRen · #9 Příspěvek od **aiRen** » 09 říj 2016 19:01

Momentalne to vyzera, ze ano. Procesor bezi cca v 8% zatazi, nahodne ale vyskakuje na 40-50%. Pamat zaplnena na 39%, disk vyzera byt ok (ale skace rovnako s procesorom).

Nepodarilo sa ale odstranit problem po zapnuti ntb, kedy sa stale spusta nejaky subor (poznamkovy blok) s chybovou hlaskou: Access denied. Vzdy po zapnuti/restartovani ntb (po prihlaseni do konta)

#10 Příspěvek od **Rudy** » 09 říj 2016 19:03

S instalací jaké aplikace se začal problém projevovat?

aiRen · #11 Příspěvek od **aiRen** » 09 říj 2016 19:05

To je to, ze uz si nespominam. Tento problem mam v ntb uz dlhsiu dobu (mozno aj 5 mesiacov) a stale som ho aktivne ignoroval a az teraz som si nasiel cas na to sa s tym zaoberat.

#12 Příspěvek od **Rudy** » 09 říj 2016 20:16

Tak to je problém. V logu se to neobjeví a já nevím, čeho se mám chytit. Je-li to možné, zkuste obnovu systému k datu, kda korketně fungoval.

aiRen · #13 Příspěvek od **aiRen** » 09 říj 2016 20:17

Tak to asi vidim na reinstalaciu Windowsu. Nevadi, dakujem za pomoc

#14 Příspěvek od **Rudy** » 09 říj 2016 20:27

Pokud se to okno samo nezavře, zkuste:

Ctrl>Alt>Del, spusťte správce úloh. V okně přejděte na aplikace a pokud v něm ten proces najdete, klikněte na něj pravým myšítkem a vyberte "Přejít k procesu". Zobrazí se vám, který proces to způsobuje.

aiRen · #15 Příspěvek od **aiRen** » 09 říj 2016 20:37

To som nevedel

Skusim.

Mimochodom, da sa to normalne zatvorit, len je to otravne a nemalo by to byt, nieco ho musi spustat.

VIRY.CZ

Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC

Re: Pomaly NTB + spustanie poznamkoveho bloku na starte PC