Stránka 1 z 1
Prosím o kontrolu logu
Napsal: 11 říj 2020 19:08
od andy206
Dobrý večer přeji,
dnes jsem na svůj PC s Win 10 nainstaloval NOD 32. Následně projel scan, našel cca 10 souborů, které dal do karantény. Od té doby mi při spuštění PC hlásí chybu nejdříve wuau...dll a pak ještě druhý dll StarupCheckLibrary.dll. Dohledal jsem dané dll soubory a dle návodu na internetu provedl jejich smazání ze Správce úloh. No nevím, zda jsem udělal dobře. Dále mám problém s tím, že při spuštění Zabezpečení Windows v Nastavení mi naskočí prázdná stránka, kde není přehled resp. nabídka, jaká by měla být. V příloze přikládám report adwcleaner a FRST. Při snaze o aktualizace Windows se mi ukáže chyb. hláška (0x80080005). Děkuji moc za kontrolu logů a pomoc k návratu do normálu.
Re: Prosím o kontrolu logu
Napsal: 11 říj 2020 19:54
od Rudy
Zdravím!
V archivu je 2x log FRST, Addition ani jednou. Prosím o něj. Děkuji.
Re: Prosím o kontrolu logu
Napsal: 11 říj 2020 19:59
od andy206
Moc se omlouvám, opraveno.
Re: Prosím o kontrolu logu
Napsal: 11 říj 2020 21:02
od Rudy
OK. Především odinstalujte jeden z antivirů (Norton, ESET). Při 2 a více antivirech dochází k softwraové kolizi. Pak otevřte poznámkový blok a zkopírujte do něj:
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
Task: {5867715B-A906-4751-A82D-0D8A8C8D51E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-08-25] (Google Inc -> Google Inc.)
Task: {70766266-4F52-4783-8BC1-8DA07FE8DB27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-08-25] (Google Inc -> Google Inc.)
Task: {C129D5C4-E4D2-4C8B-8D48-7A924277D095} - System32\Tasks\Microsoft\Windows\Wininet\Winlogui => winlogui.exe <==== ATTENTION
Task: {D65E5290-F77B-4E67-B811-737E45107932} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [5733888 2020-09-01] () [File not signed]
C:\Windows\AutoKMS
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
C:\Windows\system32\wdbcache.tmp
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
FirewallRules: [{42FE50F0-0849-493F-B3BD-2AEC38E306C7}] => (Allow) C:\Windows\system32\winrmsrv.exe => No File
FirewallRules: [{446EFE70-27A9-40FA-9E49-1DD0B3DDE725}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A888B123-56ED-424F-B63D-36D0C3A739C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4ECA7AE4-BAC3-4DC9-9125-E198917902EB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{20F5E422-BF63-4D46-A6EA-4EC9B943BDF3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0E2724D1-A753-4CB9-93C4-6DEAD6509252}] => (Allow) C:\Users\Tomáš Adámek\AppData\Roaming\BitTorrent\BitTorrent.exe => No File
FirewallRules: [{AE6F3DD5-78BA-4921-9A95-1879F2387A64}] => (Allow) C:\Users\Tomáš Adámek\AppData\Roaming\BitTorrent\BitTorrent.exe => No File
EmptyTemp:
End
Uložte do C:\Users\Tomáš Adámek\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Re: Prosím o kontrolu logu
Napsal: 11 říj 2020 21:42
od andy206
Fix result of Farbar Recovery Scan Tool (x64) Version: 11-10-2020
Ran by Tomáš Adámek (11-10-2020 22:37:17) Run:1
Running from C:\Users\Tomáš Adámek\Downloads
Loaded Profiles: Tomáš Adámek
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
Task: {5867715B-A906-4751-A82D-0D8A8C8D51E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-08-25] (Google Inc -> Google Inc.)
Task: {70766266-4F52-4783-8BC1-8DA07FE8DB27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-08-25] (Google Inc -> Google Inc.)
Task: {C129D5C4-E4D2-4C8B-8D48-7A924277D095} - System32\Tasks\Microsoft\Windows\Wininet\Winlogui => winlogui.exe <==== ATTENTION
Task: {D65E5290-F77B-4E67-B811-737E45107932} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [5733888 2020-09-01] () [File not signed]
C:\Windows\AutoKMS
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
C:\Windows\system32\wdbcache.tmp
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
FirewallRules: [{42FE50F0-0849-493F-B3BD-2AEC38E306C7}] => (Allow) C:\Windows\system32\winrmsrv.exe => No File
FirewallRules: [{446EFE70-27A9-40FA-9E49-1DD0B3DDE725}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A888B123-56ED-424F-B63D-36D0C3A739C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4ECA7AE4-BAC3-4DC9-9125-E198917902EB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{20F5E422-BF63-4D46-A6EA-4EC9B943BDF3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0E2724D1-A753-4CB9-93C4-6DEAD6509252}] => (Allow) C:\Users\Tomáš Adámek\AppData\Roaming\BitTorrent\BitTorrent.exe => No File
FirewallRules: [{AE6F3DD5-78BA-4921-9A95-1879F2387A64}] => (Allow) C:\Users\Tomáš Adámek\AppData\Roaming\BitTorrent\BitTorrent.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5867715B-A906-4751-A82D-0D8A8C8D51E3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5867715B-A906-4751-A82D-0D8A8C8D51E3}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{70766266-4F52-4783-8BC1-8DA07FE8DB27}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{70766266-4F52-4783-8BC1-8DA07FE8DB27}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C129D5C4-E4D2-4C8B-8D48-7A924277D095}" => not found
"C:\Windows\System32\Tasks\Microsoft\Windows\Wininet\Winlogui" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Wininet\Winlogui" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{D65E5290-F77B-4E67-B811-737E45107932}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D65E5290-F77B-4E67-B811-737E45107932}" => removed successfully
C:\Windows\System32\Tasks\AutoKMS => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => removed successfully
C:\Windows\AutoKMS => moved successfully
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{73FA19D0-2D75-11D2-995D-00C04F98BBC9} => removed successfully
C:\Windows\system32\wdbcache.tmp => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{42FE50F0-0849-493F-B3BD-2AEC38E306C7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{446EFE70-27A9-40FA-9E49-1DD0B3DDE725}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A888B123-56ED-424F-B63D-36D0C3A739C4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4ECA7AE4-BAC3-4DC9-9125-E198917902EB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{20F5E422-BF63-4D46-A6EA-4EC9B943BDF3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0E2724D1-A753-4CB9-93C4-6DEAD6509252}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AE6F3DD5-78BA-4921-9A95-1879F2387A64}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 7626752 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 96385567 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 14874902 B
Edge => 1359120 B
Chrome => 20779550 B
Firefox => 1233837877 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 432 B
LocalService => 347522 B
NetworkService => 349404 B
Tomáš Adámek => 28392168 B
RecycleBin => 17789 B
EmptyTemp: => 1.3 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 22:37:45 ====
Re: Prosím o kontrolu logu
Napsal: 12 říj 2020 09:11
od Rudy
Smazáno. Nastala nějaká změna?
Re: Prosím o kontrolu logu
Napsal: 13 říj 2020 20:20
od andy206
Chybové hlášky se již nezobrazovaly. Stále jsem měl ale problém s tím, že mi nešly funkce u Windows Update (vyskakovala chyba, ostatní možnosti nefungovaly) a Zabezpečení Windows bylo prázdné. Po všech různých návodech, které nepomohly, jsem došel k opravě Windows přes Media Creation Tool a nyní je vše OK. Děkuji moc za podporu
Re: Prosím o kontrolu logu
Napsal: 13 říj 2020 20:56
od Rudy
OK. Nemáte zač!