Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Preventivka
Dobry den,
Pri vypinani notebooku sa zobrazi hlaska "Maxim. zabranuje vypnutiu".
Mohli by ste sa na to niekto pozriet ci tam nieco nie je?
Dakujem
Logy prilozene.
Pri vypinani notebooku sa zobrazi hlaska "Maxim. zabranuje vypnutiu".
Mohli by ste sa na to niekto pozriet ci tam nieco nie je?
Dakujem
Logy prilozene.
- Přílohy
-
- FRST.zip
- (42.74 KiB) Staženo 63 x
Re: Preventivka
Dobry den.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventivka
# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-05-26.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-27-2020
# Duration: 00:00:03
# OS: Windows 10 Pro
# Cleaned: 6
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Users\Marcel\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Conduit
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit
Deleted HKLM\Software\Wow6432Node\Conduit
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4995 octets] - [26/05/2020 10:47:53]
AdwCleaner[S01].txt - [5056 octets] - [27/05/2020 07:38:43]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-05-26.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-27-2020
# Duration: 00:00:03
# OS: Windows 10 Pro
# Cleaned: 6
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Users\Marcel\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Conduit
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit
Deleted HKLM\Software\Wow6432Node\Conduit
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4995 octets] - [26/05/2020 10:47:53]
AdwCleaner[S01].txt - [5056 octets] - [27/05/2020 07:38:43]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Re: Preventivka
Dobre. Mozete sem dat, prosim nove logy - FRST.log + Addition log.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventivka
Do poznamkoveho bloku skopirujte obsah dole:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Kód: Vybrat vše
Start
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
U3 idsvc; no ImagePath
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> G:\program_files\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> G:\program_files\acadficn.dll => No File
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{013698D3-DB26-4E9C-88A1-0ED8A064370B}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{0A3C223C-333D-4277-A02B-92C6538C2116}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{68ADD0CB-150C-4900-BFCC-635A8B089FEC}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{808CB5A7-DBFB-49C9-A316-3DC7B451EEBD}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{1256CB4A-B563-411F-974F-C13E0C1D2840}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{3CD2C0CE-5F0D-4CC4-B139-4D5ACA6CA0A7}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{4254F99E-A9EE-41D0-AE41-33392B94387D}] => (Allow) LPort=5000
FirewallRules: [{7DC3153D-948F-4DA0-A4C0-7876DC04ECE1}] => (Allow) LPort=55278
FirewallRules: [UDP Query User{CD9D492C-52C7-4B48-A43C-ACAEC1A945CD}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [TCP Query User{81DFB7DF-F32D-4767-B05C-D4472E888663}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [UDP Query User{FFEA1721-292B-4200-A207-393B73ECC3F4}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{38998101-E323-45B6-8263-15DA38D9A3B6}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [UDP Query User{BBEA2C2F-6896-493C-91F4-8DD8BF2802F7}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{6564E6B6-6E28-45A5-BC8E-4A412A750487}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [{8F66C1BC-480F-4943-8216-2E9AC438C49F}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{03457CDA-A11C-40C3-B6C4-CB6C1153681D}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{322411D0-67AA-4F07-9E92-390E6D59FE58}] => (Allow) LPort=5357
FirewallRules: [{060D675E-DD1F-4479-AADB-815CC64FF3A6}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{F22A6C9A-F49E-4D5F-AEBB-1CCBF65AEDBB}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{8609AC86-3809-43EB-B0D6-371D50FC00B1}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{E38B7EBE-7577-401D-BB8F-F63B116EE644}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [TCP Query User{4D2E9AA0-D3DE-4C11-A218-BCE1C369D36E}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
FirewallRules: [UDP Query User{FC24485A-F9A0-4C0D-80A0-472057CE8FD9}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
EmptyTemp:
End
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventivka
Fix result of Farbar Recovery Scan Tool (x64) Version: 31-05-2020 01
Ran by Marcel (01-06-2020 06:58:31) Run:1
Running from C:\Users\Marcel\Downloads
Loaded Profiles: Marcel
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
U3 idsvc; no ImagePath
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> G:\program_files\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> G:\program_files\acadficn.dll => No File
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{013698D3-DB26-4E9C-88A1-0ED8A064370B}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{0A3C223C-333D-4277-A02B-92C6538C2116}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{68ADD0CB-150C-4900-BFCC-635A8B089FEC}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{808CB5A7-DBFB-49C9-A316-3DC7B451EEBD}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{1256CB4A-B563-411F-974F-C13E0C1D2840}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{3CD2C0CE-5F0D-4CC4-B139-4D5ACA6CA0A7}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{4254F99E-A9EE-41D0-AE41-33392B94387D}] => (Allow) LPort=5000
FirewallRules: [{7DC3153D-948F-4DA0-A4C0-7876DC04ECE1}] => (Allow) LPort=55278
FirewallRules: [UDP Query User{CD9D492C-52C7-4B48-A43C-ACAEC1A945CD}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [TCP Query User{81DFB7DF-F32D-4767-B05C-D4472E888663}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [UDP Query User{FFEA1721-292B-4200-A207-393B73ECC3F4}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{38998101-E323-45B6-8263-15DA38D9A3B6}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [UDP Query User{BBEA2C2F-6896-493C-91F4-8DD8BF2802F7}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{6564E6B6-6E28-45A5-BC8E-4A412A750487}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [{8F66C1BC-480F-4943-8216-2E9AC438C49F}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{03457CDA-A11C-40C3-B6C4-CB6C1153681D}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{322411D0-67AA-4F07-9E92-390E6D59FE58}] => (Allow) LPort=5357
FirewallRules: [{060D675E-DD1F-4479-AADB-815CC64FF3A6}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{F22A6C9A-F49E-4D5F-AEBB-1CCBF65AEDBB}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{8609AC86-3809-43EB-B0D6-371D50FC00B1}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{E38B7EBE-7577-401D-BB8F-F63B116EE644}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [TCP Query User{4D2E9AA0-D3DE-4C11-A218-BCE1C369D36E}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
FirewallRules: [UDP Query User{FC24485A-F9A0-4C0D-80A0-472057CE8FD9}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => removed successfully
idsvc => service removed successfully
HKLM\System\CurrentControlSet\Services\NVHDA => removed successfully
NVHDA => service removed successfully
C:\WINDOWS\system32\DrtmAuth9.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth12.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth11.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth10.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\PDFCreator.ShellContextMenu => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{013698D3-DB26-4E9C-88A1-0ED8A064370B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0A3C223C-333D-4277-A02B-92C6538C2116}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68ADD0CB-150C-4900-BFCC-635A8B089FEC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{808CB5A7-DBFB-49C9-A316-3DC7B451EEBD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1256CB4A-B563-411F-974F-C13E0C1D2840}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3CD2C0CE-5F0D-4CC4-B139-4D5ACA6CA0A7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4254F99E-A9EE-41D0-AE41-33392B94387D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7DC3153D-948F-4DA0-A4C0-7876DC04ECE1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CD9D492C-52C7-4B48-A43C-ACAEC1A945CD}C:\users\marcel\appdata\local\akamai\netsession_win.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{81DFB7DF-F32D-4767-B05C-D4472E888663}C:\users\marcel\appdata\local\akamai\netsession_win.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FFEA1721-292B-4200-A207-393B73ECC3F4}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{38998101-E323-45B6-8263-15DA38D9A3B6}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BBEA2C2F-6896-493C-91F4-8DD8BF2802F7}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6564E6B6-6E28-45A5-BC8E-4A412A750487}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8F66C1BC-480F-4943-8216-2E9AC438C49F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{03457CDA-A11C-40C3-B6C4-CB6C1153681D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{322411D0-67AA-4F07-9E92-390E6D59FE58}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{060D675E-DD1F-4479-AADB-815CC64FF3A6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F22A6C9A-F49E-4D5F-AEBB-1CCBF65AEDBB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8609AC86-3809-43EB-B0D6-371D50FC00B1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E38B7EBE-7577-401D-BB8F-F63B116EE644}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4D2E9AA0-D3DE-4C11-A218-BCE1C369D36E}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FC24485A-F9A0-4C0D-80A0-472057CE8FD9}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10287642 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 130039240 B
Java, Flash, Steam htmlcache => 1282 B
Windows/system/drivers => 7822062 B
Edge => 203367 B
Chrome => 352748927 B
Firefox => 50564083 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 33062 B
NetworkService => 33062 B
Marcel => 124407189 B
DefaultAppPool => 124407189 B
RecycleBin => 55116 B
EmptyTemp: => 763.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 06:59:15 ====
Ran by Marcel (01-06-2020 06:58:31) Run:1
Running from C:\Users\Marcel\Downloads
Loaded Profiles: Marcel
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
U3 idsvc; no ImagePath
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-05-13 07:02 - 2020-05-13 07:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA}\localserver32 -> G:\program_files\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> G:\program_files\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> G:\program_files\acadficn.dll => No File
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{013698D3-DB26-4E9C-88A1-0ED8A064370B}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{0A3C223C-333D-4277-A02B-92C6538C2116}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS78B7\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{68ADD0CB-150C-4900-BFCC-635A8B089FEC}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{808CB5A7-DBFB-49C9-A316-3DC7B451EEBD}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS783B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{1256CB4A-B563-411F-974F-C13E0C1D2840}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{3CD2C0CE-5F0D-4CC4-B139-4D5ACA6CA0A7}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS20EE\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{4254F99E-A9EE-41D0-AE41-33392B94387D}] => (Allow) LPort=5000
FirewallRules: [{7DC3153D-948F-4DA0-A4C0-7876DC04ECE1}] => (Allow) LPort=55278
FirewallRules: [UDP Query User{CD9D492C-52C7-4B48-A43C-ACAEC1A945CD}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [TCP Query User{81DFB7DF-F32D-4767-B05C-D4472E888663}C:\users\marcel\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marcel\appdata\local\akamai\netsession_win.exe => No File
FirewallRules: [UDP Query User{FFEA1721-292B-4200-A207-393B73ECC3F4}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{38998101-E323-45B6-8263-15DA38D9A3B6}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Allow) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [UDP Query User{BBEA2C2F-6896-493C-91F4-8DD8BF2802F7}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [TCP Query User{6564E6B6-6E28-45A5-BC8E-4A412A750487}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe => No File
FirewallRules: [{8F66C1BC-480F-4943-8216-2E9AC438C49F}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{03457CDA-A11C-40C3-B6C4-CB6C1153681D}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe => No File
FirewallRules: [{322411D0-67AA-4F07-9E92-390E6D59FE58}] => (Allow) LPort=5357
FirewallRules: [{060D675E-DD1F-4479-AADB-815CC64FF3A6}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{F22A6C9A-F49E-4D5F-AEBB-1CCBF65AEDBB}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0C8B\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{8609AC86-3809-43EB-B0D6-371D50FC00B1}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{E38B7EBE-7577-401D-BB8F-F63B116EE644}] => (Allow) C:\Users\Marcel\AppData\Local\Temp\7zS0D28\HPDiagnosticCoreUI.exe => No File
FirewallRules: [TCP Query User{4D2E9AA0-D3DE-4C11-A218-BCE1C369D36E}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
FirewallRules: [UDP Query User{FC24485A-F9A0-4C0D-80A0-472057CE8FD9}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => removed successfully
idsvc => service removed successfully
HKLM\System\CurrentControlSet\Services\NVHDA => removed successfully
NVHDA => service removed successfully
C:\WINDOWS\system32\DrtmAuth9.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth12.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth11.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth10.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => removed successfully
HKU\S-1-5-21-4022844962-3646224466-4261461506-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\PDFCreator.ShellContextMenu => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{013698D3-DB26-4E9C-88A1-0ED8A064370B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0A3C223C-333D-4277-A02B-92C6538C2116}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68ADD0CB-150C-4900-BFCC-635A8B089FEC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{808CB5A7-DBFB-49C9-A316-3DC7B451EEBD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1256CB4A-B563-411F-974F-C13E0C1D2840}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3CD2C0CE-5F0D-4CC4-B139-4D5ACA6CA0A7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4254F99E-A9EE-41D0-AE41-33392B94387D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7DC3153D-948F-4DA0-A4C0-7876DC04ECE1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CD9D492C-52C7-4B48-A43C-ACAEC1A945CD}C:\users\marcel\appdata\local\akamai\netsession_win.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{81DFB7DF-F32D-4767-B05C-D4472E888663}C:\users\marcel\appdata\local\akamai\netsession_win.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FFEA1721-292B-4200-A207-393B73ECC3F4}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{38998101-E323-45B6-8263-15DA38D9A3B6}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BBEA2C2F-6896-493C-91F4-8DD8BF2802F7}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6564E6B6-6E28-45A5-BC8E-4A412A750487}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8F66C1BC-480F-4943-8216-2E9AC438C49F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{03457CDA-A11C-40C3-B6C4-CB6C1153681D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{322411D0-67AA-4F07-9E92-390E6D59FE58}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{060D675E-DD1F-4479-AADB-815CC64FF3A6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F22A6C9A-F49E-4D5F-AEBB-1CCBF65AEDBB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8609AC86-3809-43EB-B0D6-371D50FC00B1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E38B7EBE-7577-401D-BB8F-F63B116EE644}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4D2E9AA0-D3DE-4C11-A218-BCE1C369D36E}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FC24485A-F9A0-4C0D-80A0-472057CE8FD9}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10287642 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 130039240 B
Java, Flash, Steam htmlcache => 1282 B
Windows/system/drivers => 7822062 B
Edge => 203367 B
Chrome => 352748927 B
Firefox => 50564083 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 33062 B
NetworkService => 33062 B
Marcel => 124407189 B
DefaultAppPool => 124407189 B
RecycleBin => 55116 B
EmptyTemp: => 763.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 06:59:15 ====
Re: Preventivka
Dobre, ako je na tom pocitac?
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventivka
ntb vyzera v pohode, nepostrehol som nic podozrive, a pri vypinani sa uz to nezobrazuje, keby nieco dam vediet.
Zatial Dakujem pekne
Zatial Dakujem pekne
Re: Preventivka
V pohode, nemate zac :]]
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky