Preventivka

Zpráva

Dabol · #1 Příspěvek od **Dabol** » 26 kvě 2020 10:18

Dobry den,

Pri vypinani notebooku sa zobrazi hlaska "Maxim. zabranuje vypnutiu".

Mohli by ste sa na to niekto pozriet ci tam nieco nie je?

Dakujem

Logy prilozene.

#2 Příspěvek od **Diallix** » 27 kvě 2020 06:05

Dobry den.

Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.

Dabol · #3 Příspěvek od **Dabol** » 27 kvě 2020 06:42

# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-05-26.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-27-2020
# Duration: 00:00:03
# OS: Windows 10 Pro
# Cleaned: 6
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Users\Marcel\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Conduit
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit
Deleted HKLM\Software\Wow6432Node\Conduit

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4995 octets] - [26/05/2020 10:47:53]
AdwCleaner[S01].txt - [5056 octets] - [27/05/2020 07:38:43]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

#4 Příspěvek od **Diallix** » 27 kvě 2020 06:59

Dobre. Mozete sem dat, prosim nove logy - FRST.log + Addition log.

Dabol · #5 Příspěvek od **Dabol** » 27 kvě 2020 07:23

Nech sa paci logy prilozene

#6 Příspěvek od **Diallix** » 31 kvě 2020 07:04

Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše


Start
CloseProcesses:
CreateRestorePoint:


HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
U3 idsvc; no ImagePath
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> G:\program_files\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> G:\program_files\acadficn.dll => No File
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} =>  -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{013698D3-DB26-4E9C-88A1-0ED8A064370B}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{0A3C223C-333D-4277-A02B-92C6538C2116}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{68ADD0CB-150C-4900-BFCC-635A8B089FEC}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{808CB5A7-DBFB-49C9-A316-3DC7B451EEBD}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{1256CB4A-B563-411F-974F-C13E0C1D2840}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{3CD2C0CE-5F0D-4CC4-B139-4D5ACA6CA0A7}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{4254F99E-A9EE-41D0-AE41-33392B94387D}] => (Allow) LPort=5000
FirewallRules: [{7DC3153D-948F-4DA0-A4C0-7876DC04ECE1}] => (Allow) LPort=55278
FirewallRules: [UDP Query User{CD9D492C-52C7-4B48-A43C-ACAEC1A945CD}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [TCP Query User{81DFB7DF-F32D-4767-B05C-D4472E888663}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [UDP Query User{FFEA1721-292B-4200-A207-393B73ECC3F4}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{38998101-E323-45B6-8263-15DA38D9A3B6}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [UDP Query User{BBEA2C2F-6896-493C-91F4-8DD8BF2802F7}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{6564E6B6-6E28-45A5-BC8E-4A412A750487}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [{8F66C1BC-480F-4943-8216-2E9AC438C49F}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{03457CDA-A11C-40C3-B6C4-CB6C1153681D}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{322411D0-67AA-4F07-9E92-390E6D59FE58}] => (Allow) LPort=5357
FirewallRules: [{060D675E-DD1F-4479-AADB-815CC64FF3A6}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{F22A6C9A-F49E-4D5F-AEBB-1CCBF65AEDBB}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{8609AC86-3809-43EB-B0D6-371D50FC00B1}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{E38B7EBE-7577-401D-BB8F-F63B116EE644}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [TCP Query User{4D2E9AA0-D3DE-4C11-A218-BCE1C369D36E}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
FirewallRules: [UDP Query User{FC24485A-F9A0-4C0D-80A0-472057CE8FD9}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File

EmptyTemp:

End

Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.

Dabol · #7 Příspěvek od **Dabol** » 01 čer 2020 06:02

Fix result of Farbar Recovery Scan Tool (x64) Version: 31-05-2020 01
Ran by Marcel (01-06-2020 06:58:31) Run:1
Running from C:\Users\Marcel\Downloads
Loaded Profiles: Marcel
Boot Mode: Normal
==============================================

fixlist content:
*****************

Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
U3 idsvc; no ImagePath
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> G:\program_files\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> G:\program_files\acadficn.dll => No File
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{013698D3-DB26-4E9C-88A1-0ED8A064370B}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{0A3C223C-333D-4277-A02B-92C6538C2116}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{68ADD0CB-150C-4900-BFCC-635A8B089FEC}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{808CB5A7-DBFB-49C9-A316-3DC7B451EEBD}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{1256CB4A-B563-411F-974F-C13E0C1D2840}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{3CD2C0CE-5F0D-4CC4-B139-4D5ACA6CA0A7}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{4254F99E-A9EE-41D0-AE41-33392B94387D}] => (Allow) LPort=5000
FirewallRules: [{7DC3153D-948F-4DA0-A4C0-7876DC04ECE1}] => (Allow) LPort=55278
FirewallRules: [UDP Query User{CD9D492C-52C7-4B48-A43C-ACAEC1A945CD}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [TCP Query User{81DFB7DF-F32D-4767-B05C-D4472E888663}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [UDP Query User{FFEA1721-292B-4200-A207-393B73ECC3F4}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{38998101-E323-45B6-8263-15DA38D9A3B6}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [UDP Query User{BBEA2C2F-6896-493C-91F4-8DD8BF2802F7}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{6564E6B6-6E28-45A5-BC8E-4A412A750487}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [{8F66C1BC-480F-4943-8216-2E9AC438C49F}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{03457CDA-A11C-40C3-B6C4-CB6C1153681D}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{322411D0-67AA-4F07-9E92-390E6D59FE58}] => (Allow) LPort=5357
FirewallRules: [{060D675E-DD1F-4479-AADB-815CC64FF3A6}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{F22A6C9A-F49E-4D5F-AEBB-1CCBF65AEDBB}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{8609AC86-3809-43EB-B0D6-371D50FC00B1}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{E38B7EBE-7577-401D-BB8F-F63B116EE644}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [TCP Query User{4D2E9AA0-D3DE-4C11-A218-BCE1C369D36E}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
FirewallRules: [UDP Query User{FC24485A-F9A0-4C0D-80A0-472057CE8FD9}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File

EmptyTemp:

End

*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => removed successfully
idsvc => service removed successfully
HKLM\System\CurrentControlSet\Services\NVHDA => removed successfully
NVHDA => service removed successfully
C:\WINDOWS\system32\DrtmAuth9.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth12.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth11.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth10.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\PDFCreator.ShellContextMenu => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{013698D3-DB26-4E9C-88A1-0ED8A064370B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0A3C223C-333D-4277-A02B-92C6538C2116}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68ADD0CB-150C-4900-BFCC-635A8B089FEC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{808CB5A7-DBFB-49C9-A316-3DC7B451EEBD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1256CB4A-B563-411F-974F-C13E0C1D2840}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3CD2C0CE-5F0D-4CC4-B139-4D5ACA6CA0A7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4254F99E-A9EE-41D0-AE41-33392B94387D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7DC3153D-948F-4DA0-A4C0-7876DC04ECE1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CD9D492C-52C7-4B48-A43C-ACAEC1A945CD}C:\users\marcel\appdata\local\akamai\netsession_win.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{81DFB7DF-F32D-4767-B05C-D4472E888663}C:\users\marcel\appdata\local\akamai\netsession_win.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FFEA1721-292B-4200-A207-393B73ECC3F4}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{38998101-E323-45B6-8263-15DA38D9A3B6}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BBEA2C2F-6896-493C-91F4-8DD8BF2802F7}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6564E6B6-6E28-45A5-BC8E-4A412A750487}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8F66C1BC-480F-4943-8216-2E9AC438C49F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{03457CDA-A11C-40C3-B6C4-CB6C1153681D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{322411D0-67AA-4F07-9E92-390E6D59FE58}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{060D675E-DD1F-4479-AADB-815CC64FF3A6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F22A6C9A-F49E-4D5F-AEBB-1CCBF65AEDBB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8609AC86-3809-43EB-B0D6-371D50FC00B1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E38B7EBE-7577-401D-BB8F-F63B116EE644}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4D2E9AA0-D3DE-4C11-A218-BCE1C369D36E}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FC24485A-F9A0-4C0D-80A0-472057CE8FD9}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10287642 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 130039240 B
Java, Flash, Steam htmlcache => 1282 B
Windows/system/drivers => 7822062 B
Edge => 203367 B
Chrome => 352748927 B
Firefox => 50564083 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 33062 B
NetworkService => 33062 B
Marcel => 124407189 B
DefaultAppPool => 124407189 B

RecycleBin => 55116 B
EmptyTemp: => 763.6 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 06:59:15 ====

#8 Příspěvek od **Diallix** » 01 čer 2020 07:21

Dobre, ako je na tom pocitac?

Dabol · #9 Příspěvek od **Dabol** » 02 čer 2020 06:59

ntb vyzera v pohode, nepostrehol som nic podozrive, a pri vypinani sa uz to nezobrazuje, keby nieco dam vediet.

Zatial Dakujem pekne

#10 Příspěvek od **Diallix** » 02 čer 2020 13:48

V pohode, nemate zac :]]

VIRY.CZ

Preventivka

Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka