Problém s Windows update Vyřešeno

[jerabina]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::
KillAll::

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"seznam-listicka-distribuce"=-
"SunJavaUpdateSched"=-

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť:

- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[Reklama]

[Tomister]

ComboFix 16-02-23.01 - uživatel 27.02.2016 15:01:12.2.2 - x86
Spuštěný z: c:\users\u×ivatel\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\u×ivatel\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2016-01-27 do 2016-02-27 )))))))))))))))))))))))))))))))
.
.
2016-02-27 14:16 . 2016-02-27 14:16 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-02-06 13:48 . 2016-02-27 14:16 -------- d-----w- c:\users\uživatel\AppData\Local\temp
2016-02-03 18:46 . 2016-01-11 18:47 174080 ----a-w- c:\windows\system32\wuwebv.dll
2016-02-03 18:46 . 2016-01-11 18:47 2956288 ----a-w- c:\windows\system32\wucltux.dll
2016-02-03 18:46 . 2016-01-11 18:35 73728 ----a-w- c:\windows\system32\WinSetupUI.dll
2016-02-03 18:46 . 2016-01-11 18:17 2062848 ----a-w- c:\windows\system32\wuaueng.dll
2016-02-03 18:46 . 2016-01-11 18:14 573440 ----a-w- c:\windows\system32\wuapi.dll
2016-02-03 18:46 . 2016-01-11 18:14 93696 ----a-w- c:\windows\system32\wudriver.dll
2016-02-03 18:46 . 2016-01-11 18:14 30208 ----a-w- c:\windows\system32\wups.dll
2016-02-03 18:46 . 2016-01-11 18:14 35840 ----a-w- c:\windows\system32\wups2.dll
2016-02-03 18:46 . 2016-01-11 18:14 136192 ----a-w- c:\windows\system32\wuauclt.exe
2016-02-03 18:46 . 2016-01-11 18:14 35328 ----a-w- c:\windows\system32\wuapp.exe
2016-02-03 18:46 . 2016-01-11 18:14 11776 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2016-02-02 20:30 . 2016-02-02 20:30 -------- d-----w- c:\users\uživatel\AppData\Local\GWX
2016-02-02 19:39 . 2016-02-02 18:52 24064 ----a-w- c:\windows\zoek-delete.exe
2016-02-02 19:32 . 2015-06-09 19:35 2745856 ----a-w- c:\windows\system32\rdpcorets.dll
2016-02-02 19:32 . 2015-06-09 19:35 13824 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2016-02-02 19:32 . 2015-06-09 15:17 221184 ----a-w- c:\windows\system32\rdpudd.dll
2016-02-02 19:20 . 2015-12-16 09:15 9014120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3757B6D6-0001-43EC-B2BD-9D44450A37B7}\mpengine.dll
2016-02-02 18:52 . 2016-02-02 19:33 -------- d-----w- C:\zoek_backup
2016-02-02 17:59 . 2016-02-02 17:59 -------- d-----w- c:\windows\system32\appraiser
2016-02-02 16:23 . 2016-02-02 19:32 -------- d-s---w- c:\windows\system32\GWX
2016-02-01 20:22 . 2015-01-09 02:48 635904 ----a-w- c:\windows\system32\perftrack.dll
2016-02-01 20:22 . 2015-01-09 02:48 27136 ----a-w- c:\windows\system32\powertracker.dll
2016-02-01 20:22 . 2015-01-09 02:48 76800 ----a-w- c:\windows\system32\wdi.dll
2016-02-01 20:20 . 2015-08-27 17:58 1241088 ----a-w- c:\windows\system32\msxml3.dll
2016-02-01 20:20 . 2015-08-27 17:58 1391104 ----a-w- c:\windows\system32\msxml6.dll
2016-02-01 20:20 . 2015-08-27 17:51 2048 ----a-w- c:\windows\system32\msxml6r.dll
2016-02-01 20:20 . 2015-08-27 17:51 2048 ----a-w- c:\windows\system32\msxml3r.dll
2016-02-01 20:20 . 2015-08-05 17:41 751104 ----a-w- c:\windows\system32\schedsvc.dll
2016-02-01 20:19 . 2015-06-15 21:43 2364416 ----a-w- c:\windows\system32\msi.dll
2016-02-01 20:19 . 2015-06-15 21:43 337408 ----a-w- c:\windows\system32\msihnd.dll
2016-02-01 20:19 . 2015-06-15 21:42 73216 ----a-w- c:\windows\system32\msiexec.exe
2016-02-01 20:19 . 2015-06-15 21:37 25088 ----a-w- c:\windows\system32\msimsg.dll
2016-02-01 20:09 . 2015-11-10 18:39 909824 ----a-w- c:\windows\system32\FntCache.dll
2016-02-01 20:09 . 2015-11-10 18:39 1251328 ----a-w- c:\windows\system32\DWrite.dll
2016-02-01 20:09 . 2015-11-10 18:39 811520 ----a-w- c:\windows\system32\user32.dll
2016-02-01 20:09 . 2015-02-03 03:12 1230848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2016-02-01 20:04 . 2015-01-29 03:02 2311168 ----a-w- c:\windows\system32\wpdshext.dll
2016-02-01 20:02 . 2015-11-11 18:39 1242624 ----a-w- c:\windows\system32\comsvcs.dll
2016-02-01 20:02 . 2015-11-11 18:39 487936 ----a-w- c:\windows\system32\catsrvut.dll
2016-02-01 20:02 . 2015-07-01 20:30 206848 ----a-w- c:\windows\system32\WebClnt.dll
2016-02-01 20:02 . 2015-07-01 20:30 82432 ----a-w- c:\windows\system32\davclnt.dll
2016-02-01 20:01 . 2015-06-03 20:17 1167520 ----a-w- c:\windows\system32\aitstatic.exe
2016-02-01 20:01 . 2015-11-17 00:45 22464 ----a-w- c:\windows\system32\CompatTelRunner.exe
2016-02-01 20:01 . 2015-11-17 00:42 633856 ----a-w- c:\windows\system32\generaltel.dll
2016-02-01 20:01 . 2015-11-17 00:42 65536 ----a-w- c:\windows\system32\acmigration.dll
2016-02-01 20:01 . 2015-11-17 00:42 425984 ----a-w- c:\windows\system32\devinv.dll
2016-02-01 20:01 . 2015-11-17 00:42 591872 ----a-w- c:\windows\system32\invagent.dll
2016-02-01 20:01 . 2015-11-16 20:12 176128 ----a-w- c:\windows\system32\aepic.dll
2016-02-01 20:01 . 2015-11-17 00:33 951808 ----a-w- c:\windows\system32\aeinv.dll
2016-02-01 20:01 . 2015-07-09 17:42 179712 ----a-w- c:\windows\system32\notepad.exe
2016-02-01 20:01 . 2015-07-09 17:42 179712 ----a-w- c:\windows\notepad.exe
2016-02-01 20:00 . 2015-12-30 18:47 3993536 ----a-w- c:\windows\system32\ntkrnlpa.exe
2016-02-01 20:00 . 2015-12-30 18:47 3938240 ----a-w- c:\windows\system32\ntoskrnl.exe
2016-02-01 20:00 . 2015-12-30 18:38 552960 ----a-w- c:\windows\system32\kerberos.dll
2016-02-01 20:00 . 2015-12-30 18:40 251392 ----a-w- c:\windows\system32\schannel.dll
2016-02-01 20:00 . 2015-12-30 18:39 1060864 ----a-w- c:\windows\system32\lsasrv.dll
2016-02-01 20:00 . 2015-12-30 18:39 259584 ----a-w- c:\windows\system32\msv1_0.dll
2016-02-01 20:00 . 2015-12-30 18:44 1308160 ----a-w- c:\windows\system32\ntdll.dll
2016-02-01 20:00 . 2015-12-30 18:40 654336 ----a-w- c:\windows\system32\rpcrt4.dll
2016-02-01 20:00 . 2015-12-30 17:32 225792 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2016-02-01 19:56 . 2014-08-12 01:36 701440 ----a-w- c:\windows\system32\IMJP10K.DLL
2016-02-01 19:56 . 2015-10-29 17:50 5120 ----a-w- c:\windows\system32\shimeng.dll
2016-02-01 19:56 . 2015-10-29 17:49 295936 ----a-w- c:\windows\system32\apphelp.dll
2016-02-01 19:56 . 2015-10-29 17:49 62464 ----a-w- c:\windows\system32\aelupsvc.dll
2016-02-01 19:56 . 2015-10-29 17:49 20992 ----a-w- c:\windows\system32\sdbinst.exe
2016-02-01 19:54 . 2015-07-15 17:59 78784 ----a-w- c:\windows\system32\drivers\mountmgr.sys
2016-02-01 19:54 . 2015-07-15 17:55 1159168 ----a-w- c:\windows\system32\sysmain.dll
2016-02-01 19:54 . 2015-07-15 17:54 10752 ----a-w- c:\windows\system32\msmmsp.dll
2016-02-01 19:51 . 2015-11-05 19:00 2048 ----a-w- c:\windows\system32\tzres.dll
2016-02-01 19:50 . 2015-10-13 16:31 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2016-02-01 19:50 . 2015-10-13 16:31 74752 ----a-w- c:\windows\system32\drivers\tdx.sys
2016-02-01 19:50 . 2015-09-02 01:33 299520 ----a-w- c:\windows\system32\atmfd.dll
2016-02-01 19:50 . 2015-09-02 02:48 26624 ----a-w- c:\windows\system32\lpk.dll
2016-02-01 19:50 . 2015-09-02 02:48 34304 ----a-w- c:\windows\system32\atmlib.dll
2016-02-01 19:50 . 2015-09-02 02:48 70656 ----a-w- c:\windows\system32\fontsub.dll
2016-02-01 19:50 . 2015-09-02 02:48 10240 ----a-w- c:\windows\system32\dciman32.dll
2016-02-01 19:48 . 2015-07-04 17:48 1414656 ----a-w- c:\windows\system32\ole32.dll
2016-02-01 19:48 . 2014-09-04 05:04 372736 ----a-w- c:\windows\system32\rastls.dll
2016-02-01 19:46 . 2015-10-13 04:50 712640 ----a-w- c:\windows\system32\drivers\ndis.sys
2016-02-01 19:43 . 2015-11-03 18:55 179712 ----a-w- c:\windows\system32\els.dll
2016-02-01 19:38 . 2015-01-17 02:30 828928 ----a-w- c:\windows\system32\msctf.dll
2016-02-01 19:36 . 2015-07-22 16:38 41984 ----a-w- c:\windows\system32\UtcResources.dll
2016-02-01 19:36 . 2015-07-22 17:53 937984 ----a-w- c:\windows\system32\diagtrack.dll
2016-02-01 19:36 . 2015-07-22 17:53 635392 ----a-w- c:\windows\system32\tdh.dll
2016-02-01 19:31 . 2014-12-11 17:47 74240 ----a-w- c:\windows\system32\TSWbPrxy.exe
2016-02-01 19:31 . 2015-07-09 17:42 1372160 ----a-w- c:\windows\system32\dwmcore.dll
2016-02-01 19:31 . 2015-07-09 17:42 67584 ----a-w- c:\windows\system32\dwmapi.dll
2016-02-01 19:31 . 2015-08-06 17:44 1498624 ----a-w- c:\windows\system32\ExplorerFrame.dll
2016-02-01 19:30 . 2015-07-30 17:57 1987584 ----a-w- c:\windows\system32\d3d10warp.dll
2016-02-01 19:28 . 2015-05-25 18:00 364544 ----a-w- c:\windows\system32\tracerpt.exe
2016-02-01 19:28 . 2015-05-25 18:01 92160 ----a-w- c:\windows\system32\sechost.dll
2016-02-01 19:28 . 2015-05-25 18:00 82944 ----a-w- c:\windows\system32\logman.exe
2016-02-01 19:28 . 2015-05-25 18:00 40448 ----a-w- c:\windows\system32\typeperf.exe
2016-02-01 19:28 . 2015-05-25 18:00 37888 ----a-w- c:\windows\system32\relog.exe
2016-02-01 19:28 . 2015-05-25 18:00 17408 ----a-w- c:\windows\system32\diskperf.exe
2016-02-01 19:23 . 2015-05-09 03:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-01 19:23 . 2015-05-09 03:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-01 19:23 . 2015-05-09 03:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-01 19:23 . 2015-05-09 01:59 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-01 19:23 . 2015-05-09 01:59 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-01 19:23 . 2015-05-09 01:59 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-01 19:23 . 2015-05-09 03:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-01 19:23 . 2015-05-09 01:59 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-01 19:23 . 2015-05-09 03:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-01 19:22 . 2015-11-03 18:56 627712 ----a-w- c:\windows\system32\usp10.dll
2016-02-01 19:20 . 2015-04-27 19:05 179200 ----a-w- c:\windows\system32\wintrust.dll
2016-02-01 19:20 . 2015-04-27 19:04 143872 ----a-w- c:\windows\system32\cryptsvc.dll
2016-02-01 19:20 . 2015-04-27 19:04 1174528 ----a-w- c:\windows\system32\crypt32.dll
2016-02-01 19:20 . 2015-04-27 19:04 103936 ----a-w- c:\windows\system32\cryptnet.dll
2016-02-01 19:18 . 2015-04-18 02:56 342016 ----a-w- c:\windows\system32\certcli.dll
2016-02-01 19:15 . 2015-04-13 03:19 259072 ----a-w- c:\windows\system32\services.exe
2016-02-01 18:28 . 2014-06-18 22:23 156824 ----a-w- c:\windows\system32\mscorier.dll
2016-02-01 18:28 . 2014-06-18 22:23 1131664 ----a-w- c:\windows\system32\dfshim.dll
2016-02-01 18:28 . 2014-06-18 22:23 81560 ----a-w- c:\windows\system32\mscories.dll
2016-02-01 18:27 . 2014-12-19 02:43 164864 ----a-w- c:\windows\system32\profsvc.dll
2016-02-01 18:27 . 2014-11-26 03:32 571904 ----a-w- c:\windows\system32\oleaut32.dll
2016-02-01 18:24 . 2015-11-05 19:02 14848 ----a-w- c:\windows\system32\wshrm.dll
2016-02-01 18:24 . 2015-11-05 09:48 117760 ----a-w- c:\windows\system32\drivers\rmcast.sys
2016-02-01 18:24 . 2015-02-18 07:06 123904 ----a-w- c:\windows\system32\poqexec.exe
2016-02-01 18:24 . 2015-12-08 21:00 2386944 ----a-w- c:\windows\system32\win32k.sys
2016-02-01 18:24 . 2015-02-03 03:12 171520 ----a-w- c:\windows\system32\ubpm.dll
2016-02-01 18:23 . 2015-11-13 22:50 76800 ----a-w- c:\windows\system32\mapistub.dll
2016-02-01 18:23 . 2015-11-13 22:49 14336 ----a-w- c:\windows\system32\fixmapi.exe
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-01-27 17:24 . 2016-01-17 15:22 95840 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2015-12-30 18:40 . 2016-02-01 20:00 251392 ----a-w- c:\windows\system32\schannel.dll
2015-12-12 17:02 . 2016-02-01 20:07 230400 ----a-w- c:\windows\system32\webcheck.dll
2015-12-02 12:25 . 2014-07-02 14:39 247976 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-20 142104]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-20 174360]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-20 150808]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-06-30 2274600]
"HotkeyMon"="AsusSender.exe" [2010-03-02 29184]
"HotkeyService"="AsusSender.exe" [2010-03-02 29184]
"SynAsusAcpi"="c:\program files\Synaptics\SynTP\SynAsusAcpi.exe" [2011-06-30 83240]
"AtherosBtStack"="c:\program files\Atheros\Bluetooth Suite\BtvStack.exe" [2010-06-07 470176]
"AthBtTray"="c:\program files\Atheros\Bluetooth Suite\AthBtTray.exe" [2010-06-07 289952]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2013-03-21 1061960]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2015-12-22 596528]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
R2 AsusService;Asus Launcher Service;c:\windows\System32\AsusService.exe [2009-08-18 219136]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2010-06-07 37224]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2010-06-07 256360]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2010-06-07 177704]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2010-06-07 46952]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2010-06-07 143080]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2010-06-07 230760]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-12-12 102912]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2015-10-05 51928]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO32.SYS [2016-01-29 23840]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files\Atheros\Ath_CoexAgent.exe [2010-05-24 151552]
S2 AtherosSvc;AtherosSvc;c:\program files\Atheros\Bluetooth Suite\adminservice.exe [2010-06-07 38560]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2010-06-07 28200]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2015-10-05 23256]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc
utcsvc REG_MULTI_SZ DiagTrack
.
.
------- Doplňkový sken -------
.
uStart Page = https://www.seznam.cz/
TCP: DhcpNameServer = 10.0.0.138
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2016-02-27 15:26:38
ComboFix-quarantined-files.txt 2016-02-27 14:26
ComboFix2.txt 2016-02-06 13:48
.
Před spuštěním: Volných bajtů: 11 684 450 304
Po spuštění: Volných bajtů: 11 639 476 224
.
- - End Of File - - A3B12C4CF36B99968EC23CC2D6744AB0
A36C5E4F47E84449FF07ED3517B43A31

[Orcus]

Proveď skript od jerabiny ještě jednou, ale v nouzovém režimu. Teď se neprovedl.

[Tomister]

Bohužel se mi nedaří spustit nouzový režim přes F8, netuším proč. klávesa F2 pro vstup do BIOSu funguje normálně.

[jerabina]

Nemáš to nastavené na jiné klávese? Vždy to nemusí být na F8.

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
64bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[Tomister]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by uživatel (administrator) on VERUNKA (23-03-2016 17:17:18)
Running from C:\Users\uživatel\Desktop
Loaded Profiles: uživatel (Available Profiles: uživatel)
Platform: Microsoft Windows 7 Starter Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
(Atheros Commnucations) C:\Program Files\Atheros\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files\Atheros\Bluetooth Suite\AthBtTray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Windows\System32\AsusService.exe
(Atheros) C:\Program Files\Atheros\Ath_CoexAgent.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
(Atheros Commnucations) C:\Program Files\Atheros\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2274600 2011-06-30] (Synaptics Incorporated)
HKLM\...\Run: [HotkeyMon] => C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe [101800 2011-07-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [HotkeyService] => C:\Program Files\ASUS\HotkeyService\HotkeyService.exe [1258416 2011-07-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [83240 2011-06-30] (Synaptics Incorporated)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files\Atheros\Bluetooth Suite\BtvStack.exe [470176 2010-06-07] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files\Atheros\Bluetooth Suite\AthBtTray.exe [289952 2010-06-07] (Atheros Commnucations)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1061960 2013-03-21] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-2977530031-2221147617-3893148405-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{F0E0EDA9-7566-41BB-A3F0-6BBFB1388C1C}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2977530031-2221147617-3893148405-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2977530031-2221147617-3893148405-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-2977530031-2221147617-3893148405-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-2977530031-2221147617-3893148405-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2977530031-2221147617-3893148405-1000 -> {505F475D-990B-4406-9975-CFC8BC1FBD59} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-28] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-28] (Oracle Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab

FireFox:
========
FF ProfilePath: C:\Users\uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\xn7sx500.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-28] (Oracle Corporation)

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsusService; C:\Windows\System32\AsusService.exe [219136 2009-08-18] () [File not signed]
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files\Atheros\Ath_CoexAgent.exe [151552 2010-05-24] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files\Atheros\Bluetooth Suite\adminservice.exe [38560 2010-06-07] (Atheros Commnucations) [File not signed]
S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [37224 2010-06-07] (Atheros)
S3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [256360 2010-06-07] (Atheros)
R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [28200 2010-06-07] (Atheros)
S3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [177704 2010-06-07] (Atheros)
S3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [46952 2010-06-07] (Atheros)
S3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [143080 2010-06-07] (Atheros)
S3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [230760 2010-06-07] (Atheros)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-01-29] (REALiX(tm))
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [20480 2012-01-26] (Microsoft Corporation) [File not signed]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\UIVATE~1\AppData\Local\Temp\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

[Tomister]

Additional scan result of Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
Ran by uživatel (2016-03-23 17:18:34)
Running from C:\Users\uživatel\Desktop
Microsoft Windows 7 Starter Service Pack 1 (X86) (2014-07-02 13:58:14)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2977530031-2221147617-3893148405-500 - Administrator - Disabled)
Guest (S-1-5-21-2977530031-2221147617-3893148405-501 - Limited - Disabled)
uživatel (S-1-5-21-2977530031-2221147617-3893148405-1000 - Administrator - Enabled) => C:\Users\uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Atheros WLAN and Bluetooth Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
Bluetooth Win7 Suite (HKLM\...\{101A497C-7EF6-4001-834D-E5FA1C70FEFA}) (Version: 7.1.0.22 - Atheros Communications)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
EVEREST Home Edition v2.20 (HKLM\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Google Update Helper (Version: 1.3.21.169 - Google Inc.) Hidden
Hotkey Service (HKLM\...\{71C0E38E-09F2-4386-9977-404D4F6640CD}) (Version: 1.44 - AsusTek Computer Inc.)
HWiNFO32 Version 5.12 (HKLM\...\HWiNFO32_is1) (Version: 5.12 - Martin Malík - REALiX)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2364 - Intel Corporation)
Java 8 Update 73 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
OpenOffice 4.1.2 (HKLM\...\{69D27D4C-36CE-4CB2-A290-C38B0A990955}) (Version: 4.12.9782 - Apache Software Foundation)
RogueKiller verze 11 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 11 - Adlice Software)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.14.0 - Synaptics Incorporated)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {10605CE9-4AF3-4A4F-94F8-607F89B5D1A4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-21] (AVAST Software)
Task: {1AD8BFD9-7B76-4AB9-971C-269E1EAC9FB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {2CF16C97-9F44-479D-9353-2DD525797279} - System32\Tasks\{1A0A6B87-86BD-40FF-B88D-4CBE48AB5219} => pcalua.exe -a "C:\Users\uživatel\Desktop\OpenOffice 4.1.2 (cs) Installation Files\setup.exe" -d "C:\Users\uživatel\Desktop\OpenOffice 4.1.2 (cs) Installation Files"
Task: {898A1DBB-2DE0-4EB2-95BA-E2E2974300B3} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2977530031-2221147617-3893148405-1000

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

[jerabina]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

+ dodej zbytek logu Additional.txt, není celý.

[Tomister]

Additional scan result of Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
Ran by uživatel (2016-03-23 17:18:34)
Running from C:\Users\uživatel\Desktop
Microsoft Windows 7 Starter Service Pack 1 (X86) (2014-07-02 13:58:14)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2977530031-2221147617-3893148405-500 - Administrator - Disabled)
Guest (S-1-5-21-2977530031-2221147617-3893148405-501 - Limited - Disabled)
uživatel (S-1-5-21-2977530031-2221147617-3893148405-1000 - Administrator - Enabled) => C:\Users\uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Atheros WLAN and Bluetooth Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
Bluetooth Win7 Suite (HKLM\...\{101A497C-7EF6-4001-834D-E5FA1C70FEFA}) (Version: 7.1.0.22 - Atheros Communications)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
EVEREST Home Edition v2.20 (HKLM\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Google Update Helper (Version: 1.3.21.169 - Google Inc.) Hidden
Hotkey Service (HKLM\...\{71C0E38E-09F2-4386-9977-404D4F6640CD}) (Version: 1.44 - AsusTek Computer Inc.)
HWiNFO32 Version 5.12 (HKLM\...\HWiNFO32_is1) (Version: 5.12 - Martin Malík - REALiX)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2364 - Intel Corporation)
Java 8 Update 73 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
OpenOffice 4.1.2 (HKLM\...\{69D27D4C-36CE-4CB2-A290-C38B0A990955}) (Version: 4.12.9782 - Apache Software Foundation)
RogueKiller verze 11 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 11 - Adlice Software)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.14.0 - Synaptics Incorporated)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {10605CE9-4AF3-4A4F-94F8-607F89B5D1A4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-21] (AVAST Software)
Task: {1AD8BFD9-7B76-4AB9-971C-269E1EAC9FB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {2CF16C97-9F44-479D-9353-2DD525797279} - System32\Tasks\{1A0A6B87-86BD-40FF-B88D-4CBE48AB5219} => pcalua.exe -a "C:\Users\uživatel\Desktop\OpenOffice 4.1.2 (cs) Installation Files\setup.exe" -d "C:\Users\uživatel\Desktop\OpenOffice 4.1.2 (cs) Installation Files"
Task: {898A1DBB-2DE0-4EB2-95BA-E2E2974300B3} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2977530031-2221147617-3893148405-1000

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2014-07-02 09:40 - 2011-06-30 19:04 - 00066856 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2014-07-02 15:12 - 2009-08-18 16:35 - 00219136 _____ () C:\Windows\System32\AsusService.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2016-02-06 14:39 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2977530031-2221147617-3893148405-1000\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{59263A40-78C2-4DD9-85D1-DAE5AB3FC5FD}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

==================== Restore Points =========================

06-02-2016 14:07:31 6.2.2016
27-02-2016 14:54:28 ComboFix created restore point

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/23/2016 05:02:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/22/2016 10:50:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/22/2016 01:24:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/21/2016 11:06:46 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/21/2016 11:42:04 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/15/2016 09:25:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/08/2016 04:29:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/07/2016 01:13:05 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/04/2016 01:37:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/03/2016 01:57:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (03/23/2016 05:03:34 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80004005

Error: (03/23/2016 05:02:12 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (03/22/2016 10:51:45 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80004005

Error: (03/22/2016 10:50:14 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (03/22/2016 01:24:14 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (03/21/2016 11:05:47 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (03/21/2016 11:41:39 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (03/15/2016 10:37:11 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (03/15/2016 09:25:24 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (03/08/2016 04:29:12 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.


==================== Memory info ===========================

Processor: Intel(R) Atom(TM) CPU N455 @ 1.66GHz
Percentage of memory in use: 56%
Total physical RAM: 2038.18 MB
Available physical RAM: 895.14 MB
Total Virtual: 4076.36 MB
Available Virtual: 3017.28 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:29.4 GB) (Free:10.75 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 29.5 GB) (Disk ID: 583699AE)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=29.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[jerabina]

Omlouvám se, teď jsem si uvědomil, že ani log FRST.txt není celý. Můžete ho sem prosím dodat?

[Tomister]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by uživatel (administrator) on VERUNKA (26-03-2016 09:47:49)
Running from C:\Users\uživatel\Desktop
Loaded Profiles: uživatel (Available Profiles: uživatel)
Platform: Microsoft Windows 7 Starter Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Windows\System32\AsusService.exe
(Atheros) C:\Program Files\Atheros\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files\Atheros\Bluetooth Suite\AdminService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
(Atheros Commnucations) C:\Program Files\Atheros\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files\Atheros\Bluetooth Suite\AthBtTray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\wimserv.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2274600 2011-06-30] (Synaptics Incorporated)
HKLM\...\Run: [HotkeyMon] => C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe [101800 2011-07-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [HotkeyService] => C:\Program Files\ASUS\HotkeyService\HotkeyService.exe [1258416 2011-07-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [83240 2011-06-30] (Synaptics Incorporated)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files\Atheros\Bluetooth Suite\BtvStack.exe [470176 2010-06-07] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files\Atheros\Bluetooth Suite\AthBtTray.exe [289952 2010-06-07] (Atheros Commnucations)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1061960 2013-03-21] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-2977530031-2221147617-3893148405-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{F0E0EDA9-7566-41BB-A3F0-6BBFB1388C1C}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2977530031-2221147617-3893148405-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2977530031-2221147617-3893148405-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-2977530031-2221147617-3893148405-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-2977530031-2221147617-3893148405-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2977530031-2221147617-3893148405-1000 -> {505F475D-990B-4406-9975-CFC8BC1FBD59} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-28] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-28] (Oracle Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab

FireFox:
========
FF ProfilePath: C:\Users\uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\xn7sx500.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-28] (Oracle Corporation)

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsusService; C:\Windows\System32\AsusService.exe [219136 2009-08-18] () [File not signed]
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files\Atheros\Ath_CoexAgent.exe [151552 2010-05-24] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files\Atheros\Bluetooth Suite\adminservice.exe [38560 2010-06-07] (Atheros Commnucations) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [37224 2010-06-07] (Atheros)
S3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [256360 2010-06-07] (Atheros)
R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [28200 2010-06-07] (Atheros)
S3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [177704 2010-06-07] (Atheros)
S3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [46952 2010-06-07] (Atheros)
S3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [143080 2010-06-07] (Atheros)
S3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [230760 2010-06-07] (Atheros)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-01-29] (REALiX(tm))
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [20480 2012-01-26] (Microsoft Corporation) [File not signed]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\UIVATE~1\AppData\Local\Temp\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-26 09:47 - 2016-03-26 09:48 - 00007902 _____ C:\Users\uživatel\Desktop\FRST.txt
2016-03-26 09:47 - 2016-03-26 09:47 - 01725440 _____ (Farbar) C:\Users\uživatel\Desktop\FRST.exe
2016-03-23 17:13 - 2016-03-26 09:47 - 00000000 ____D C:\FRST
2016-03-22 22:53 - 2016-03-22 22:53 - 00032768 _____ C:\Users\uživatel\Downloads\ppm_218_ MDL_colli_P03 .xls
2016-03-21 12:10 - 2016-03-21 12:11 - 00002265 _____ C:\Users\uživatel\Documents\Nová databáze.odb
2016-03-21 12:05 - 2016-03-21 12:05 - 00013824 _____ C:\Users\uživatel\Downloads\ppm_218_ MDL_colli_JÍLKOVÁ.xls
2016-03-21 12:05 - 2016-03-21 12:05 - 00013824 _____ C:\Users\uživatel\Downloads\ppm_218_ MDL_colli_JÍLKOVÁ (1).xls
2016-03-07 14:08 - 2016-03-07 14:08 - 00000000 ____D C:\Users\uživatel\AppData\LocalLow\Temp
2016-02-28 18:30 - 2016-02-28 18:30 - 00000000 ____D C:\Program Files\Common Files\Java
2016-02-28 16:30 - 2016-02-28 16:30 - 00000000 ____D C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2016-02-27 15:26 - 2016-02-27 15:26 - 00015956 _____ C:\ComboFix.txt
2016-02-27 14:53 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2016-02-27 14:53 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2016-02-27 14:53 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-02-27 14:53 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-02-27 14:53 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-02-27 14:53 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2016-02-27 14:53 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2016-02-27 14:53 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-26 08:50 - 2009-07-14 05:34 - 00017328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-26 08:50 - 2009-07-14 05:34 - 00017328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-26 08:45 - 2014-07-02 13:14 - 00000000 ____D C:\Windows\Panther
2016-03-26 03:39 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2016-03-26 02:34 - 2016-02-13 13:53 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-25 17:29 - 2014-07-03 08:30 - 00000043 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2016-03-25 17:29 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-25 17:22 - 2014-07-02 22:09 - 00000000 ____D C:\Program Files\7-Zip
2016-03-25 16:34 - 2011-04-12 02:37 - 00668376 _____ C:\Windows\system32\perfh005.dat
2016-03-25 16:34 - 2011-04-12 02:37 - 00141004 _____ C:\Windows\system32\perfc005.dat
2016-03-25 16:34 - 2010-11-20 22:01 - 01582262 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-25 16:34 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-03-22 13:27 - 2016-01-17 14:50 - 00000000 ____D C:\Users\uživatel\Desktop\Pracovní
2016-03-21 11:46 - 2016-01-17 16:54 - 00000000 ____D C:\Users\uživatel\AppData\Local\ElevatedDiagnostics
2016-03-21 11:46 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF
2016-02-28 18:31 - 2014-07-02 22:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-28 18:31 - 2014-07-02 22:06 - 00000000 ____D C:\Program Files\Java
2016-02-28 18:26 - 2016-01-17 16:20 - 00000000 ____D C:\Users\uživatel\.oracle_jre_usage
2016-02-28 18:22 - 2016-01-17 16:22 - 00095840 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-02-28 16:40 - 2009-07-14 05:53 - 00032588 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-02-27 15:26 - 2016-02-06 14:14 - 00000000 ____D C:\Qoobox
2016-02-27 15:17 - 2009-07-14 03:04 - 00000215 _____ C:\Windows\system.ini

Some files in TEMP:
====================
C:\Users\uživatel\AppData\Local\temp\jre-8u73-windows-au.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-03-26 03:31

==================== End of FRST.txt ============================

[Tomister]

Mám dotaz, myslíte si že kdybych dal upgradovat systém na Win 10, který se mi nabídl, místo Starterů že by se na tomto počítači chod zlepšil? Měl jsem je i na větším Asusu a zlepšení jsem nepozoroval, tam jsem vrátil zpátky 7.