Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

PC od kamaráda

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Odpovědět
Zpráva
Autor
toox
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 266
Registrován: 28 dub 2008 18:06
Bydliště: Tromaville

PC od kamaráda

#1 Příspěvek od toox »

Poprosil bych od kontrolu logu, Díky moc

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-11-2021
Ran by Desro (administrator) on DESRO-PC (13-11-2021 08:19:56)
Running from C:\Users\Desro\Downloads
Loaded Profiles: Desro & UpdatusUser
Platform: Microsoft Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Google LLC -> Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\calc.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12445288 2012-01-16] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation -> Intel Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-01] (Google LLC -> Google LLC) [File not signed]

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {637C17C7-DF95-4E24-9AB5-CD94A4F59A3B} - System32\Tasks\Opera scheduled assistant Autoupdate 1576420791 => C:\Users\Desro\AppData\Local\Programs\Opera\launcher.exe [46227664 2021-10-20] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Desro\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {6972EF35-0CD8-4BDB-B6A8-66A968649B7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-04] (Google LLC -> Google LLC)
Task: {AC0E9BB1-E46E-4AFC-9AF3-9E7BE90C6F9E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [682936 2021-11-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {B4FE6517-F19C-45E3-BBBE-58A0898E0B08} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {BE2E1515-2C01-4046-A189-BF9186667CC5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-04] (Google LLC -> Google LLC)
Task: {F62650BB-7B0D-4469-AFFB-922F3362117E} - System32\Tasks\Opera scheduled Autoupdate 1576420790 => C:\Users\Desro\AppData\Local\Programs\Opera\launcher.exe [46227664 2021-10-20] (Opera Software AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{7F553DA1-B0EA-4A71-8E31-D76D86F0C5E7}: [DhcpNameServer] 62.129.50.20 85.135.32.100

FireFox:
========
FF DefaultProfile: 1cmqp967.default
FF ProfilePath: C:\Users\Desro\AppData\Roaming\Mozilla\Firefox\Profiles\1cmqp967.default [2021-11-13]
FF Extension: (No Name) - C:\Users\Desro\AppData\Roaming\Mozilla\Firefox\Profiles\1cmqp967.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-09-04]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2011-12-01] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2011-12-01] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2012-07-25] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2012-07-25] (NVIDIA Corporation -> NVIDIA Corporation)

Chrome:
=======
CHR Profile: C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default [2021-11-13]
CHR Notifications: Default -> hxxps://eu1.badoo.com; hxxps://tinder.com; hxxps://www.bombuj.eu; hxxps://www.edarling.cz; hxxps://www.mall.tv; hxxps://www.navratdoreality.cz; hxxps://www.netflix.com; hxxps://www.tipsport.cz
CHR Extension: (Prezentace) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16]
CHR Extension: (Dokumenty) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Disk Google) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-07]
CHR Extension: (Tabulky) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-20]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-11-12]
CHR Extension: (Space) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\hepnfgiockihbakjbhonkinpagbkaobo [2017-07-07]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-10-23]
CHR Extension: (Excel Online) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2020-04-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Desro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Opera:
=======
OPR Profile: C:\Users\Desro\AppData\Roaming\Opera Software\Opera Stable [2021-10-31]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Desro\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-10-31]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Desro\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-05]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\95.0.4638.69\elevation_service.exe [1384280 2021-10-28] (Google LLC -> Google LLC) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7265328 2020-10-30] (Malwarebytes Inc -> Malwarebytes)
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2801048 2021-10-13] (Valve -> Valve Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [217600 2021-10-16] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-10-30] (Malwarebytes Inc -> Malwarebytes)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-13 08:19 - 2021-11-13 08:19 - 002312192 _____ (Farbar) C:\Users\Desro\Downloads\FRST64(1).exe
2021-11-04 22:30 - 2021-11-05 18:30 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-10-16 15:07 - 2021-10-16 15:07 - 000217600 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-13 08:21 - 2020-11-06 23:27 - 000010785 _____ C:\Users\Desro\Downloads\FRST.txt
2021-11-13 08:20 - 2020-10-28 14:36 - 000000000 ____D C:\FRST
2021-11-13 08:05 - 2009-07-14 05:45 - 000009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-11-13 08:05 - 2009-07-14 05:45 - 000009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-11-13 07:40 - 2017-07-07 15:57 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-13 07:39 - 2017-08-25 16:15 - 000000000 ____D C:\Users\Desro\AppData\LocalLow\Mozilla
2021-11-12 21:50 - 2019-04-27 17:01 - 000000000 ____D C:\ProgramData\Mozilla
2021-11-12 14:07 - 2009-07-14 16:18 - 000622422 _____ C:\Windows\system32\perfh005.dat
2021-11-12 14:07 - 2009-07-14 16:18 - 000118604 _____ C:\Windows\system32\perfc005.dat
2021-11-12 14:07 - 2009-07-14 06:13 - 001445734 _____ C:\Windows\system32\PerfStringBackup.INI
2021-11-12 14:07 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-11-12 14:03 - 2017-07-07 15:39 - 000000000 ____D C:\ProgramData\NVIDIA
2021-11-12 14:03 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-11-12 05:01 - 2017-07-07 16:01 - 000000000 ____D C:\Program Files (x86)\Steam
2021-11-05 18:30 - 2017-08-25 16:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-11-05 09:53 - 2021-10-05 17:30 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-11-05 09:53 - 2021-09-04 22:11 - 000000000 ____D C:\Users\Desro\AppData\Local\CrashDumps
2021-11-01 22:23 - 2021-10-04 14:18 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-01 22:23 - 2021-10-04 14:18 - 000002089 _____ C:\Users\Public\Desktop\Google Chrome.lnk

==================== Files in the root of some directories ========

2019-12-09 15:02 - 2019-12-19 00:02 - 000000200 _____ () C:\Users\Desro\AppData\Roaming\WB.CFG

==================== FLock ==============================

2009-07-14 02:41 C:\Windows\system32\sppcomapi.dll

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-11-08 04:30
==================== End of FRST.txt ========================



---------------------

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-11-2021
Ran by Desro (13-11-2021 08:21:48)
Running from C:\Users\Desro\Downloads
Microsoft Windows 7 Home Premium (X64) (2017-07-07 13:49:18)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-346022524-4220297796-2099353401-500 - Administrator - Disabled)
Desro (S-1-5-21-346022524-4220297796-2099353401-1000 - Administrator - Enabled) => C:\Users\Desro
Guest (S-1-5-21-346022524-4220297796-2099353401-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-346022524-4220297796-2099353401-1002 - Limited - Enabled)
UpdatusUser (S-1-5-21-346022524-4220297796-2099353401-1003 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aktualizace NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.4.4 - Atheros Communications Inc.)
BitTorrent Web (HKU\S-1-5-21-346022524-4220297796-2099353401-1000\...\btweb) (Version: 1.0.7 - BitTorrent, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.71.1081 - AB Team, d.o.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.69 - Google LLC)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
Malwarebytes version 4.2.2.95 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.2.95 - Malwarebytes)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 94.0.1 (x64 cs)) (Version: 94.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.2 - Mozilla)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
NVIDIA Ovladač 3D Vision 305.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 305.27 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 305.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 305.27 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 305.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 305.27 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.12.0613 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0613 - NVIDIA Corporation)
Opera Stable 80.0.4170.63 (HKU\S-1-5-21-346022524-4220297796-2099353401-1000\...\Opera 80.0.4170.63) (Version: 80.0.4170.63 - Opera Software)
qBittorrent 4.2.3 (HKLM-x32\...\qBittorrent) (Version: 4.2.3 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6554 - Realtek Semiconductor Corp.)
Rise of Nations (HKLM-x32\...\RiseOfNationsExpansion 1.0) (Version: 1.0 - Microsoft)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
Spotify (HKU\S-1-5-21-346022524-4220297796-2099353401-1000\...\Spotify) (Version: 1.1.31.703.g256add22 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Warcraft III verze 1.22 (HKLM-x32\...\{E5EB7710-29E1-47E3-9636-0E8CA5B0D3CA}_is1) (Version: 1.22 - tomi2k9)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2012-07-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-11-01 22:23 - 2021-10-28 02:36 - 000441688 _____ (Google LLC -> ) [File not signed] C:\Program Files\Google\Chrome\Application\95.0.4638.69\libegl.dll
2021-11-01 22:23 - 2021-10-28 02:36 - 007984984 _____ (Google LLC -> ) [File not signed] C:\Program Files\Google\Chrome\Application\95.0.4638.69\libglesv2.dll
2021-11-01 22:23 - 2021-10-28 02:36 - 171358040 _____ (Google LLC -> Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\95.0.4638.69\chrome.dll
2021-11-01 22:23 - 2021-10-28 02:36 - 001152856 _____ (Google LLC -> Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\95.0.4638.69\chrome_elf.dll
2017-07-07 15:30 - 2012-03-27 09:12 - 000073728 ____R (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2021-11-01 22:23 - 2021-10-28 02:11 - 004891080 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Program Files\Google\Chrome\Application\95.0.4638.69\D3DCompiler_47.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 8) (Whitelisted) ==========

Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-346022524-4220297796-2099353401-1000\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-346022524-4220297796-2099353401-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Desro\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Spotify => C:\Users\Desro\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{757461A9-CD02-40BF-AC36-64C437F81925}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BD031A75-A9D2-4206-9BAA-1E65D0C0DE00}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A69E879D-0A9E-453A-A5EF-392A8469AEAE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) [File not signed]
FirewallRules: [{1579D76C-EC3E-4821-9F59-0003346E054E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) [File not signed]
FirewallRules: [{FF8C86B4-9927-415B-9047-4730BCCF075F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{D582574D-CE8B-4383-B43E-8EC16E3CC09E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [TCP Query User{255DD5DE-7A42-4026-9327-AB9FCE8C0717}C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [UDP Query User{E052B79C-D756-476B-86E5-D08575946632}C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{24BD400E-CD11-4887-91A5-4A039F3126CD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8C37184D-3E05-49EF-918F-8E9F786C5E9B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{145F33F7-E4B7-4D2E-8BC6-4F432AEB9EA5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) [File not signed]
FirewallRules: [{3CDFB475-E325-49C2-A438-18D7FAE9838B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) [File not signed]
FirewallRules: [{4F0C5420-E3EA-4F46-A021-DB5937A95F39}] => (Allow) C:\Users\Desro\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [File not signed]
FirewallRules: [{339DF616-F22F-4F91-BE36-7E90AD82078F}] => (Allow) C:\Users\Desro\AppData\Roaming\BitTorrent Web\btweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [File not signed]
FirewallRules: [{3F0A23BA-3D76-4C2A-B3DD-6549B15D260A}] => (Allow) C:\Users\Desro\AppData\Roaming\BitTorrent Web\btweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [File not signed]
FirewallRules: [{A14C3976-E35A-45F1-A836-F32F52858AB0}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{A9B3F385-2D1D-42EC-8A5F-E1549967FDAC}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{AC299F9D-3014-47C6-A460-00F55F28B969}] => (Allow) C:\Users\Desro\AppData\Local\Programs\Opera\67.0.3575.137\opera.exe => No File
FirewallRules: [TCP Query User{4EA15B36-8D29-47E8-8C49-719A828F468F}C:\users\desro\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\desro\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{7868C814-DC88-49AE-96E8-7B48EB9ABD72}C:\users\desro\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\desro\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5683C609-7F1E-4343-BD2A-A048101220E5}] => (Allow) C:\Users\Desro\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File
FirewallRules: [TCP Query User{5FE60FC9-AE19-4226-AC8E-20CA49B7758D}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Block) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{4E3F6DDB-F8C3-4561-869F-B8E669B7502C}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Block) C:\program files (x86)\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{0879C201-65DC-45E4-8CAA-C2A8A8274649}C:\users\desro\downloads\warcraft\war3.exe] => (Block) C:\users\desro\downloads\warcraft\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{AD2BBD1B-2D57-46A0-9F5F-04BB86088949}C:\users\desro\downloads\warcraft\war3.exe] => (Block) C:\users\desro\downloads\warcraft\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [TCP Query User{FCD7C38C-ABD8-42CC-B9FC-77DC466E28C5}C:\program files\warcraft iii\war3.exe] => (Block) C:\program files\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{D9E5B59A-B60E-48EE-89AB-B690CDF2B14A}C:\program files\warcraft iii\war3.exe] => (Block) C:\program files\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{E0082739-B50B-4192-B175-07022BD92B90}] => (Allow) C:\Program Files (x86)\Microsoft Games\Rise of Nations\thrones.exe (Big Huge Games, Inc.) [File not signed]
FirewallRules: [{D236DDF8-2D45-4EF2-95AD-3579CF7F967A}] => (Allow) C:\Program Files (x86)\Microsoft Games\Rise of Nations\thrones.exe (Big Huge Games, Inc.) [File not signed]
FirewallRules: [{8D576898-EE93-4076-A618-7702FA0CF69B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) [File not signed]

==================== Restore Points =========================

28-10-2021 06:33:14 Naplánovaný kontrolní bod
04-11-2021 09:49:14 Naplánovaný kontrolní bod
11-11-2021 18:50:17 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (11/13/2021 08:20:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 08:20:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 08:20:06 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 08:20:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 08:20:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 08:20:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 08:20:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 08:20:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.


System errors:
=============
Error: (11/13/2021 08:24:34 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/13/2021 08:19:52 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/13/2021 08:19:52 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/13/2021 08:19:52 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (10/17/2021 06:33:30 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Malwarebytes Service se po přijetí pokynu pro vypnutí neukončila správně.

Error: (10/08/2021 05:49:11 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/08/2021 05:49:11 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).

Error: (10/04/2021 05:40:05 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F5 05/14/2012
Motherboard: Gigabyte Technology Co., Ltd. H77-DS3H
Processor: Intel(R) Core(TM) i5-3350P CPU @ 3.10GHz
Percentage of memory in use: 68%
Total physical RAM: 8154.32 MB
Available physical RAM: 2558.6 MB
Total Virtual: 16306.78 MB
Available Virtual: 7175.34 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931 GB) (Free:27.16 GB) NTFS

\\?\Volume{8fe18898-c4ac-45d2-9c0c-f851911d5622}\ (Obnovení) (Fixed) (Total:0.29 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 9F2C7ECE)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114790
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: PC od kamaráda

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
Task: {6972EF35-0CD8-4BDB-B6A8-66A968649B7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-04] (Google LLC -> Google LLC)
Task: {BE2E1515-2C01-4046-A189-BF9186667CC5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-04] (Google LLC -> Google LLC)
FirewallRules: [{AC299F9D-3014-47C6-A460-00F55F28B969}] => (Allow) C:\Users\Desro\AppData\Local\Programs\Opera\67.0.3575.137\opera.exe => No File
FirewallRules: [{5683C609-7F1E-4343-BD2A-A048101220E5}] => (Allow) C:\Users\Desro\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File

EmptyTemp:
End
Uložte do C:\Users\Desro\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

toox
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 266
Registrován: 28 dub 2008 18:06
Bydliště: Tromaville

Re: PC od kamaráda

#3 Příspěvek od toox »

Fix result of Farbar Recovery Scan Tool (x64) Version: 09-11-2021
Ran by Desro (13-11-2021 11:29:57) Run:2
Running from C:\Users\Desro\Desktop
Loaded Profiles: Desro & UpdatusUser
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Task: {6972EF35-0CD8-4BDB-B6A8-66A968649B7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-04] (Google LLC -> Google LLC)
Task: {BE2E1515-2C01-4046-A189-BF9186667CC5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-04] (Google LLC -> Google LLC)
FirewallRules: [{AC299F9D-3014-47C6-A460-00F55F28B969}] => (Allow) C:\Users\Desro\AppData\Local\Programs\Opera\67.0.3575.137\opera.exe => No File
FirewallRules: [{5683C609-7F1E-4343-BD2A-A048101220E5}] => (Allow) C:\Users\Desro\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6972EF35-0CD8-4BDB-B6A8-66A968649B7D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6972EF35-0CD8-4BDB-B6A8-66A968649B7D}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BE2E1515-2C01-4046-A189-BF9186667CC5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE2E1515-2C01-4046-A189-BF9186667CC5}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AC299F9D-3014-47C6-A460-00F55F28B969}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5683C609-7F1E-4343-BD2A-A048101220E5}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9317254 B
Java, Flash, Steam htmlcache => 124806248 B
Windows/system/drivers => 846976 B
Edge => 0 B
Chrome => 581354079 B
Firefox => 1109929103 B
Opera => 31977267 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 83565 B
systemprofile32 => 83565 B
LocalService => 150005 B
NetworkService => 367073 B
Desro => 603500435 B
UpdatusUser => 603500435 B

RecycleBin => 2049941158 B
EmptyTemp: => 4.8 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 11:30:46 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114790
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: PC od kamaráda

#4 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

toox
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 266
Registrován: 28 dub 2008 18:06
Bydliště: Tromaville

Re: PC od kamaráda

#5 Příspěvek od toox »

No stále nefunguje prohlížeč Chrome který již předtím nefungoval

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114790
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: PC od kamaráda

#6 Příspěvek od Rudy »

To jste ale řekl až nyní. Chrome přeinstalujte, pokud bude třeba, udělejte zálohu nastavení oimicí ChromeBackup: https://google-chrome-backup.en.uptodown.com/windows .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět