Prosím o check FRST logu

Zpráva

dubik · #1 Příspěvek od **dubik** » 30 led 2022 15:51

Ahoj,
nejsem si jistý jestli se mi do PC nedostala nějaká havěť, občas vyskočí nějaké divné okno, tak raději se nechám zkontrolovat. Pošlu příspěvek, to je samozřejmost!

FRST jsou docela dlouhý, posílám v zipu v příloze.
Díky moc

dubik_frst_log.zip: (24.18 KiB) Staženo 45 x

#2 Příspěvek od **JaRon** » 31 led 2022 08:59

ahoj,
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3394924902-1472214841-2261831438-1000\...\Run: [loopMIDI] => C:\Users\ZWL\AppData\Roaming\Microsoft\etdsdvav\iivdwvtj.exe (No File)
HKU\S-1-5-21-3394924902-1472214841-2261831438-1000\...\MountPoints2: {c4fee5a1-a902-11eb-a8eb-d71a721b466a} - E:\HiSuiteDownLoader.exe
Task: {A06CF732-05BF-47ED-BB64-DB78FB6FD747} - System32\Tasks\Opera scheduled Autoupdate 1626364704 => C:\Users\ZWL\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
U4 DiagTrack; no ImagePath
U4 dmwappushservice; no ImagePath
S3 KProcessHacker3; \??\D:\kiRRow\apps\pHacker\x64\kprocesshacker.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]



EmptyTemp:
Reboot:
End

•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

dubik · #3 Příspěvek od **dubik** » 01 úno 2022 19:39

Zde to je:

Fix result of Farbar Recovery Scan Tool (x64) Version: 30-01-2022
Ran by D (01-02-2022 19:36:29) Run:1
Running from C:\Users\D\Desktop
Loaded Profiles: D
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3394924902-1472214841-2261831438-1000\...\Run: [loopMIDI] => C:\Users\ZWL\AppData\Roaming\Microsoft\etdsdvav\iivdwvtj.exe (No File)
HKU\S-1-5-21-3394924902-1472214841-2261831438-1000\...\MountPoints2: {c4fee5a1-a902-11eb-a8eb-d71a721b466a} - E:\HiSuiteDownLoader.exe
Task: {A06CF732-05BF-47ED-BB64-DB78FB6FD747} - System32\Tasks\Opera scheduled Autoupdate 1626364704 => C:\Users\ZWL\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
U4 DiagTrack; no ImagePath
U4 dmwappushservice; no ImagePath
S3 KProcessHacker3; \??\D:\kiRRow\apps\pHacker\x64\kprocesshacker.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

EmptyTemp:
Reboot:
End
*****************

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => could not remove, key could be protected
"HKU\S-1-5-21-3394924902-1472214841-2261831438-1000\Software\Microsoft\Windows\CurrentVersion\Run\\loopMIDI" => not found
"HKU\S-1-5-21-3394924902-1472214841-2261831438-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c4fee5a1-a902-11eb-a8eb-d71a721b466a}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A06CF732-05BF-47ED-BB64-DB78FB6FD747}" => not found
"C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1626364704" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1626364704" => not found
DiagTrack => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\DiagTrack => removed successfully
DiagTrack => service removed successfully
HKLM\System\CurrentControlSet\Services\dmwappushservice => removed successfully
dmwappushservice => service removed successfully
KProcessHacker3 => service not found.
HKLM\System\CurrentControlSet\Services\Synth3dVsc => removed successfully
Synth3dVsc => service removed successfully
tsusbhub => Unable to stop service.
HKLM\System\CurrentControlSet\Services\tsusbhub => removed successfully
tsusbhub => service removed successfully
VGPU => service not found.

=========== EmptyTemp: ==========

BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 84545800 B
Java, Flash, Steam htmlcache => 282520872 B
Windows/system/drivers => 10518117 B
Edge => 30208 B
Chrome => 10672778 B
Firefox => 1131381676 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6703 B
LocalService => 20663 B
NetworkService => 253769 B
D => 127092519 B

RecycleBin => 0 B
EmptyTemp: => 1.5 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 01-02-2022 19:38:01)

Result of scheduled keys to remove after reboot:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully

==== End of Fixlog 19:38:01 ====

#4 Příspěvek od **JaRon** » 01 úno 2022 19:48

Doporucujem este vycistit registre CCleanerom - inac OK

dubik · #5 Příspěvek od **dubik** » 01 úno 2022 20:17

Díky moc!
jste machři!

#6 Příspěvek od **JaRon** » 01 úno 2022 21:01

Rado sa stalo

Pekny den

VIRY.CZ

Prosím o check FRST logu

Prosím o check FRST logu

Re: Prosím o check FRST logu

Re: Prosím o check FRST logu

Re: Prosím o check FRST logu

Re: Prosím o check FRST logu

Re: Prosím o check FRST logu