Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivni kontrola logu

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Zamčeno
Zpráva
Autor
KOKOS1
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 78
Registrován: 13 led 2006 11:33

Preventivni kontrola logu

#1 Příspěvek od KOKOS1 »

Treba jsou nejaky zbytecnosti. logy z FRST.
addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-10-2022 01
Ran by mikoa (09-10-2022 17:11:09)
Running from C:\Users\mikoa\Desktop
Microsoft Windows 10 Home Version 20H2 19042.631 (X64) (2020-12-17 00:33:57)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1428552255-2859691675-353526280-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1428552255-2859691675-353526280-503 - Limited - Disabled)
Guest (S-1-5-21-1428552255-2859691675-353526280-501 - Limited - Disabled)
mikoa (S-1-5-21-1428552255-2859691675-353526280-1001 - Administrator - Enabled) => C:\Users\mikoa
WDAGUtilityAccount (S-1-5-21-1428552255-2859691675-353526280-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\768430BF9D4DEED23694C71D8A82F7772728CAB6) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\AD474B31899BC29F5E380CD82BAF902B52AB80F0) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (08/24/2016 2.12.4.0) (HKLM\...\20A343331E4A2AE70DEC0500F4F54CD5DD520E54) (Version: 08/24/2016 2.12.4.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (08/24/2016 2.12.4.0) (HKLM\...\B8C7DCAC7E5C993BD8367E5832C6C99E0B248D7A) (Version: 08/24/2016 2.12.4.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (08/24/2016 2.12.4.0) (HKLM\...\609138CA03F1F9B54E04FA4DAB7C0C3F28DE9464) (Version: 08/24/2016 2.12.4.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Boosteroid (HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\{5dc7a65e-01bf-4410-975b-2f50120aca33}) (Version: 1.4.9 - Boosteroid Games S.R.L.)
CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1679 - Disc Soft Ltd)
Driver Easy 5.7.0 (HKLM\...\DriverEasy_is1) (Version: 5.7.0 - Easeware)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 106.0.5249.103 - Google LLC)
Intel Driver && Support Assistant (HKLM-x32\...\{87B5A0A1-22D3-4A05-8310-58CCEB63EF93}) (Version: 22.6.39.9 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{b0307f85-280a-491f-8f69-4678e4100558}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000160-0220-1029-84C8-B8D95FA3C8C3}) (Version: 22.160.0.4 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{9806ff29-547d-4c1a-8db0-12c1fc51c8d9}) (Version: 22.6.39.9 - Intel)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.5.4.168 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.4.168 - Malwarebytes)
Microsoft .NET Core Host - 3.1.28 (x64) (HKLM\...\{26ECE92F-518E-40AF-9108-7B7B444A46DE}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.28 (x64) (HKLM\...\{CDEA72F4-1367-4E0A-AC5F-0EBAF7C6825A}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM\...\{3691148D-EF42-4812-8956-AE11FC413B8D}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM-x32\...\{231e3b76-4d0f-4e60-9d69-f11c9c448630}) (Version: 3.1.28.31513 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.4.5 - Notepad++ Team)
NVIDIA GeForce NOW 2.0.45.87 (HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeForceNOW) (Version: 2.0.45.87 - NVIDIA Corporation)
OpenGL Extensions Viewer 6.3 (HKLM-x32\...\GLVIEW3) (Version: 636 - )
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.1375 - Microsoft Corporation)
StarCraft (HKLM-x32\...\StarCraft) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TmUnitedForever (HKLM-x32\...\TmUnitedForever_is1) (Version: - Nadeo)
Total Uninstall Essential 7.1.0 (HKLM\...\Total Uninstall Essential_is1) (Version: 7.1.0 - Gavrila MARTAU)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 128.0.10632 - Ubisoft)
Windows 10 Codec Pack 2.2.0 (HKLM-x32\...\Windows 10 - Codec Pack) (Version: 2.2.0 - Windows 10 Codec Pack)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-11-14] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-11-14] (Microsoft Corporation) [MS Ad]
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt [2022-05-21] (INTEL CORP) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1428552255-2859691675-353526280-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel Corporation -> Intel)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Program Files\Notepad++\NppShell_06.dll [2021-03-22] (Notepad++ -> )
ContextMenuHandlers1: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> No File
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => D:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => D:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => d:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-10] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => d:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-10] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [vidc.x264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [vidc.lags] => C:\Windows\SysWOW64\lagarith.dll [230080 2016-09-21] (Cole Williams Software Limited -> )
HKLM\...\Drivers32: [msacm.divxa32] => C:\Windows\SysWOW64\DivXa32.acm [291408 2013-12-17] (Packed With Joy !) [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\mikoa:Heroes & Generals [38]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 ____C C:\Windows\system32\drivers\etc\hosts

2021-05-13 04:40 - 2021-05-13 04:40 - 000000446 ____C C:\Windows\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1428552255-2859691675-353526280-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "RtHDVBg_LENOVO_MICPKEY"
HKLM\...\StartupApproved\Run: => "RtHDVBg_LENOVO_DOLBYDRAGON"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "RadminVPN"
HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\StartupApproved\Run: => "Free Download Manager"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{A1B9743F-6A1A-4D47-BE7A-1AFFC57B7175}D:\program files (x86)\tmunitedforever\tmforever.exe] => (Allow) D:\program files (x86)\tmunitedforever\tmforever.exe () [File not signed]
FirewallRules: [UDP Query User{A935BF2E-6ACC-47BF-B851-A9B83919357F}D:\program files (x86)\tmunitedforever\tmforever.exe] => (Allow) D:\program files (x86)\tmunitedforever\tmforever.exe () [File not signed]
FirewallRules: [{C9658283-2E89-4384-B19C-E61F960C9A39}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{42EF2004-5497-4BDA-9274-1CFF89DA002D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{73EBCA59-DB29-4CD8-904E-63C4C54CA4B9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{58CA9882-D4BE-4B6B-B3F5-4B8D1DBEFD85}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1B5E626B-1F50-4026-802F-F6747D1135A3}] => (Allow) D:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1A0D9474-B4D6-4CAE-A300-D8475CDC9D74}] => (Allow) D:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{725F98ED-4346-441D-93A3-9300691F75C0}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B1A19ED0-694F-4DEE-9EA8-F94A37E27286}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C7F2BC4F-84B9-4245-AF6F-B83C04B1051E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{FEB12F9B-0DE4-4CD7-BC01-8652F44E8453}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{1A80EFA6-FFAF-4EE7-8F21-E06D967FBD2C}C:\users\mikoa\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\mikoa\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{E1CFA6F6-1020-4B75-B93B-A721A7EA0E9D}C:\users\mikoa\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\mikoa\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{C9BB6178-9EAA-41DC-841E-32041556CA5F}D:\program files\epic games\thelongdark\tld.exe] => (Allow) D:\program files\epic games\thelongdark\tld.exe () [File not signed]
FirewallRules: [UDP Query User{F7AF811F-2B4B-47EF-B442-4C8B494673A1}D:\program files\epic games\thelongdark\tld.exe] => (Allow) D:\program files\epic games\thelongdark\tld.exe () [File not signed]
FirewallRules: [TCP Query User{D7882AE9-275B-4CC3-9439-C757B7142D5E}D:\program files (x86)\steam\steamapps\common\trackmania united\tmforever.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\trackmania united\tmforever.exe () [File not signed]
FirewallRules: [UDP Query User{A4068B0E-D29B-4B97-8E67-FF44363587DB}D:\program files (x86)\steam\steamapps\common\trackmania united\tmforever.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\trackmania united\tmforever.exe () [File not signed]
FirewallRules: [TCP Query User{A10E6918-2286-4822-B46E-C491B97ED51D}D:\program files\epic games\torchlight2\torchlight2.exe] => (Allow) D:\program files\epic games\torchlight2\torchlight2.exe (Runic Games, Inc. -> Runic Games, Inc.)
FirewallRules: [UDP Query User{E7DD1C98-313B-4B40-9F81-A070FF9F1A84}D:\program files\epic games\torchlight2\torchlight2.exe] => (Allow) D:\program files\epic games\torchlight2\torchlight2.exe (Runic Games, Inc. -> Runic Games, Inc.)
FirewallRules: [{BEA2B240-987E-49E9-9648-00E8125F4EA1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Attentat 1942\Attentat_1942.exe () [File not signed]
FirewallRules: [{34DB054D-7D61-469B-AFE2-6AA847FA9A9A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Attentat 1942\Attentat_1942.exe () [File not signed]
FirewallRules: [{3B209B5A-5A99-4B57-8288-9CDCEE5B1F43}] => (Allow) D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{AE9EE39D-44B8-4838-B411-754945B05CB7}] => (Allow) D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{642536E5-EA60-4B41-B238-32B78FFE5CE8}] => (Allow) D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{302BC435-3D62-4D4C-B638-33896FE9F963}] => (Allow) D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{4516406B-8CBC-45D3-BE61-C8CB118DB8AE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe (GSC Game World -> )
FirewallRules: [{33A71846-B215-48BB-BC73-6DF394115B06}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe (GSC Game World -> )
FirewallRules: [{A2E82780-FD4E-492D-A37E-BD2A6EA239C1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\STALKER Clear Sky\bin\xrEngine.exe (GSC Game World -> )
FirewallRules: [{88059828-0634-4FEB-B42B-C74404102343}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\STALKER Clear Sky\bin\xrEngine.exe (GSC Game World -> )
FirewallRules: [{83A7447B-6234-41BD-B379-FE174AF575CD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe (GSC Game World -> GSC Game World)
FirewallRules: [{9A285DAA-DD3F-41EF-9CE4-F5FEC6BB4606}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe (GSC Game World -> GSC Game World)
FirewallRules: [{3AF2B549-64A6-4E4D-84A6-AB81310B422A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Metro Exodus\MetroExodus.exe (4A Games) [File not signed]
FirewallRules: [{A804A5CE-6621-4EF6-803D-8B4E58550419}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Metro Exodus\MetroExodus.exe (4A Games) [File not signed]
FirewallRules: [{4EBA6827-885D-4B9C-92E7-6765EA2BBCD8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland)
FirewallRules: [{5295C725-8AE5-445E-B45C-29CB1C0F4146}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland)
FirewallRules: [{AC3F2528-B04A-4594-AF84-7E807F46F939}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Lambda Wars\lambdawars.exe () [File not signed]
FirewallRules: [{AA9FFA77-66D9-4916-B9ED-7D87EE23F6C2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Lambda Wars\lambdawars.exe () [File not signed]
FirewallRules: [{5217B494-8F2B-42FB-9A61-4114C3515E66}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe (THQ, Inc. -> 4A Games)
FirewallRules: [{00E8D1DE-6588-42AD-B5FF-AA868392E1FB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe (THQ, Inc. -> 4A Games)
FirewallRules: [TCP Query User{AC265619-96EB-4640-BEC5-99B15F4D3AC5}D:\program files (x86)\ea games\battlefield 1942\bf1942.exe] => (Allow) D:\program files (x86)\ea games\battlefield 1942\bf1942.exe () [File not signed]
FirewallRules: [UDP Query User{5C2561FB-27A5-4D4B-BD8A-E6E9A559E41A}D:\program files (x86)\ea games\battlefield 1942\bf1942.exe] => (Allow) D:\program files (x86)\ea games\battlefield 1942\bf1942.exe () [File not signed]
FirewallRules: [{2D120321-4D73-48B9-A385-67ECEE9C4011}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hobo Tough Life\HoboRPG.exe () [File not signed]
FirewallRules: [{39EEC757-2A81-489B-ABCA-FB7AA59AE5E9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hobo Tough Life\HoboRPG.exe () [File not signed]
FirewallRules: [{62090E66-B71B-44F5-819E-2D37D9AE64C4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [File not signed]
FirewallRules: [{1077681F-6312-4DE9-8F6F-68A9325A4C10}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [File not signed]
FirewallRules: [{34BE6980-5095-45F6-BCB6-C2E19609DB18}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{CABBBA21-1B20-4663-86AB-070811438335}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [TCP Query User{9A5FB4A0-277C-434B-8A67-9FD49B0B37CD}D:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe () [File not signed]
FirewallRules: [UDP Query User{492CC47A-6C16-4CF9-99A5-0E13E815827E}D:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe () [File not signed]
FirewallRules: [{EAFA8999-61C8-4170-B325-7D3753C862AF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{E4DD1B80-8A42-4143-A0C2-AB72AB531647}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{BA674A99-B7AE-4D91-AA66-1A1B67CA96C8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Gas Station Simulator\GSS2.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{6C2F9E0E-6AE5-49CC-A48B-94DC354B4C16}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Gas Station Simulator\GSS2.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{62375EF6-6590-4F9C-8ED9-6C31B6C1299E}] => (Allow) D:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [TCP Query User{97C84C1A-8D23-48F2-8EEA-DF136F186485}D:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe () [File not signed]
FirewallRules: [UDP Query User{5E6EC7FF-0AD0-4B2F-A15F-16488B89D7A1}D:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe () [File not signed]
FirewallRules: [{FCF2DD1D-0475-4E65-9199-52BCBFEA2F42}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{8CC88124-86E8-4C47-8EE4-13E70207DF90}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{E51A3792-4A49-4143-9607-EB7D31D2B220}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TrackMania United\TmForeverLauncher.exe () [File not signed]
FirewallRules: [{54A9E88F-06EE-4D99-BF3F-5B6EEF05F0C9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TrackMania United\TmForeverLauncher.exe () [File not signed]
FirewallRules: [{5577FE1E-52D4-48B4-BBAD-CA9C39F6A28D}] => (Allow) E:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{52856290-2D01-4796-8176-B67D636C78F2}] => (Allow) E:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [TCP Query User{5A7CAB30-F91A-4126-974A-0E2D9BEA8B24}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{79B1190E-BE95-4F6F-B5B8-C58F2A56FD22}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{6795CF75-19C4-4187-8FD5-26206F4B16BE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WYD_Playtest\WhosYourDaddy.exe () [File not signed]
FirewallRules: [{226C3DEA-5F1A-44B5-84B5-7E04F575EF95}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WYD_Playtest\WhosYourDaddy.exe () [File not signed]
FirewallRules: [TCP Query User{779EBAB7-056B-48D9-B582-F9BB866CC062}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{34ACB82B-D09D-4B9E-98C1-A59CCCBEF372}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{6EB79C74-1EAE-4AF3-8B26-4812BDEF3C91}D:\program files\epic games\thelongdark\tld.exe] => (Allow) D:\program files\epic games\thelongdark\tld.exe () [File not signed]
FirewallRules: [UDP Query User{A044760A-0A0A-4289-98F9-A629AA3897BF}D:\program files\epic games\thelongdark\tld.exe] => (Allow) D:\program files\epic games\thelongdark\tld.exe () [File not signed]
FirewallRules: [TCP Query User{980F16CA-1C3D-4974-97E8-B0795CC110EE}C:\users\mikoa\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\mikoa\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{0E6A3F30-BDCA-46A9-83C9-7CFDD4C855A2}C:\users\mikoa\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\mikoa\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{62962751-B0CD-4934-B49E-A2EE79E1266C}] => (Allow) D:\Program Files\boost\Bin\Boosteroid.exe (Boosteroid Europe, LTD -> Boosteroid Games S.R.L.)
FirewallRules: [{D951C976-768D-458F-9146-F5BE4A46591D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:27.87 GB) (Free:1.54 GB) (6%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (10/09/2022 05:01:14 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-1428552255-2859691675-353526280-1001}/>.

Error: (10/09/2022 04:43:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.546, časové razítko: 0x9eae4144
Název chybujícího modulu: msvcrt.dll, verze: 7.0.19041.546, časové razítko: 0x564f9f39
Kód výjimky: 0xc0000006
Posun chyby: 0x00000000000744d3
ID chybujícího procesu: 0x1078
Čas spuštění chybující aplikace: 0x01d8dbed73bb3e11
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\Windows\System32\msvcrt.dll
ID zprávy: 8949e829-c31f-4c19-904e-c57d8ff17ee5
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.0.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (10/09/2022 04:43:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.546, časové razítko: 0x9eae4144
Název chybujícího modulu: msvcrt.dll, verze: 7.0.19041.546, časové razítko: 0x564f9f39
Kód výjimky: 0xc0000006
Posun chyby: 0x00000000000744e2
ID chybujícího procesu: 0x1d1c
Čas spuštění chybující aplikace: 0x01d8dbec7d435af6
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\Windows\System32\msvcrt.dll
ID zprávy: c84ba076-1939-4c67-957b-0d8627414a9d
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.0.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (10/09/2022 04:42:13 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Users\mikoa\AppData\Local\ConnectedDevicesPlatform\b06c6b227a716237\ActivitiesCache.db-shm z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.

Program: Host Process for Windows Services
Soubor: C:\Users\mikoa\AppData\Local\ConnectedDevicesPlatform\b06c6b227a716237\ActivitiesCache.db-shm

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C000007F
Typ disku: 3

Error: (10/09/2022 04:42:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CDPUserSvc, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: winsqlite3.dll, verze: 3.29.0.0, časové razítko: 0x5d262f2b
Kód výjimky: 0xc0000006
Posun chyby: 0x00000000000a4ff0
ID chybujícího procesu: 0x1b40
Čas spuštění chybující aplikace: 0x01d8dbed511ca250
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\winsqlite3.dll
ID zprávy: 9b395ca1-311c-4d7a-968c-902eca07ec3c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/09/2022 04:42:03 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Users\mikoa\AppData\Local\ConnectedDevicesPlatform\b06c6b227a716237\ActivitiesCache.db-shm z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.

Program: Host Process for Windows Services
Soubor: C:\Users\mikoa\AppData\Local\ConnectedDevicesPlatform\b06c6b227a716237\ActivitiesCache.db-shm

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C000007F
Typ disku: 3

Error: (10/09/2022 04:42:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CDPUserSvc, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: winsqlite3.dll, verze: 3.29.0.0, časové razítko: 0x5d262f2b
Kód výjimky: 0xc0000006
Posun chyby: 0x00000000000a4ff0
ID chybujícího procesu: 0x1010
Čas spuštění chybující aplikace: 0x01d8dbec73cd9819
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\winsqlite3.dll
ID zprávy: d5e2a3b3-8330-4075-8ab1-538a9f67d870
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/09/2022 04:41:55 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Users\mikoa\AppData\Local\Google\Chrome\User Data\CrashpadMetrics-active.pma z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Google Chrome.

Program: Google Chrome
Soubor: C:\Users\mikoa\AppData\Local\Google\Chrome\User Data\CrashpadMetrics-active.pma

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C000007F
Typ disku: 3


System errors:
=============
Error: (10/09/2022 04:57:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Intel(R) Dynamic Tuning service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (10/09/2022 04:57:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Bonjour Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 500 milisekund: Restartovat službu.

Error: (10/09/2022 04:56:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Graphics Command Center Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2022 04:56:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Driver & Support Assistant Updater byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2022 04:56:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Content Protection HECI Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2022 04:56:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Driver & Support Assistant byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2022 04:56:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Content Protection HDCP Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2022 04:56:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Intel(R) Dynamic Tuning service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.


Windows Defender:
================
Date: 2022-10-09 16:37:43
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe provádění změn v paměti.
Čas detekce: 2022-10-09T14:37:43.009Z
Uživatel: NT AUTHORITY\SYSTEM
Cesta: \Device\HarddiskVolume1
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.375.1710.0
Verze modulu: 1.1.19600.3
Verze produktu: 4.18.2207.7

Date: 2022-10-08 17:11:04
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe provádění změn v paměti.
Čas detekce: 2022-10-08T15:11:04.337Z
Uživatel: NT AUTHORITY\SYSTEM
Cesta: \Device\HarddiskVolume1
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.375.1710.0
Verze modulu: 1.1.19600.3
Verze produktu: 4.18.2207.7

Date: 2022-10-08 11:27:09
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe provádění změn v paměti.
Čas detekce: 2022-10-08T09:27:09.942Z
Uživatel: NT AUTHORITY\SYSTEM
Cesta: \Device\HarddiskVolume1
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.375.1690.0
Verze modulu: 1.1.19600.3
Verze produktu: 4.18.2207.7

Date: 2022-10-07 19:11:41
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe provádění změn v paměti.
Čas detekce: 2022-10-07T17:11:41.818Z
Uživatel: NT AUTHORITY\SYSTEM
Cesta: \Device\HarddiskVolume1
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.375.1638.0
Verze modulu: 1.1.19600.3
Verze produktu: 4.18.2207.7

Date: 2022-10-06 21:38:00
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe provádění změn v paměti.
Čas detekce: 2022-10-06T19:38:00.409Z
Uživatel: NT AUTHORITY\SYSTEM
Cesta: \Device\HarddiskVolume1
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.375.1638.0
Verze modulu: 1.1.19600.3
Verze produktu: 4.18.2207.7

CodeIntegrity:
===============
Date: 2022-05-18 14:41:39
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2022-03-19 07:09:38
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f48be35b3d221b44\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO 6GCN32WW 05/15/2019
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Celeron(R) CPU N3450 @ 1.10GHz
Percentage of memory in use: 77%
Total physical RAM: 3922.1 MB
Available physical RAM: 865.78 MB
Total Virtual: 4626.1 MB
Available Virtual: 1422.42 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:27.87 GB) (Free:1.54 GB) (Model: SanDisk DF4032) NTFS
Drive d: (Elements) (Fixed) (Total:931.48 GB) (Free:344.32 GB) (Model: WD Elements 25A2 USB Device) NTFS

\\?\Volume{6f8a094d-91d9-4374-b71d-eb6f9ce56317}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.55 GB) NTFS
\\?\Volume{19a768d5-88d4-446e-9933-01a79e616de2}\ () (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 29.1 GB) (Disk ID: 27E7AC70)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== End of Addition.txt =======================




FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-10-2022 01
Ran by mikoa (administrator) on DESKTOP-PH58V2O (LENOVO 81A4) (09-10-2022 17:08:53)
Running from C:\Users\mikoa\Desktop
Loaded Profiles: mikoa
Platform: Microsoft Windows 10 Home Version 20H2 19042.631 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) D:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Piriform Software Ltd -> Piriform Software Ltd) D:\Program Files\CCleaner\CCleaner64.exe
(RuntimeBroker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Blizzard\Bonjour Service\mDNSResponder.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) D:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381280 2017-06-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489896 2017-06-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MTPW] => "E:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe"* (No File)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489896 2017-06-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [292120 2022-09-22] (Intel Corporation -> Intel)
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32687568 2022-09-20] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [408888 2021-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\Run: [CCleaner Smart Cleaning] => D:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [4235112 2022-09-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\MountPoints2: {39da69ca-d7f1-11ec-9074-d8029f249081} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\MountPoints2: {39da6a4c-d7f1-11ec-9074-d8029f249081} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\MountPoints2: {56146d35-681e-11eb-8fdf-c76b01ae9182} - "E:\autorun\autorun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.103\Installer\chrmstp.exe [2022-10-06] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk [2022-09-22]
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\Codecs\TrayMenu.exe (Cole Williams Software Limited -> )

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0675E6C9-1042-4C1A-8D1D-D579F011B9D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC)
Task: {0A5AAC2C-8B05-41A1-ADE5-3C3FDF5F4542} - System32\Tasks\CCleanerCrashReporting => D:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "D:\Program Files\CCleaner\LOG" --programpath "D:\Program Files\CCleaner" --configpath "D:\Program Files\CCleaner\Setup" --guid "f95e7f97-5dc7-46ea-8f94-f11424401fd5" --version "6.04.10044" --silent
Task: {2845C7C8-5E34-45ED-96A8-7E94E4BC7ABB} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {563ADEC3-91C1-4E56-8F32-3C6512C34E47} - System32\Tasks\CCleaner Update => D:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {582A17CA-F1D1-4707-B522-D4A07D27CCB9} - System32\Tasks\MiniTool Shadow Maker => E:\Program Files\MiniTool ShadowMaker\SMMonitor.exe (No File)
Task: {71AA0714-FA85-4733-8E32-3FB08FCDA26E} - System32\Tasks\CCleanerSkipUAC - mikoa => D:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {83E64A85-968B-4060-94C0-5ACE6D9F8085} - System32\Tasks\MiniToolPartitionWizard => E:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe /fromtask (No File)
Task: {8820D191-57BE-478B-98F7-F58F1541AF1B} - System32\Tasks\NVIDIA GeForceNow_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Users\mikoa\AppData\Local\NVIDIA Corporation\GeForceNOW\CEF\GeForceNOW.exe [3650088 2022-09-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {93C66C44-8CD8-479A-80AD-2AD6CCDA963A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B2DA194D-9492-4653-88A6-1A615AE39DAD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B733C5A9-6BF7-437F-99CE-6282B73DD013} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (No File)
Task: {CC10261F-3CE6-4A21-91BA-6042D5C964A1} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (No File)
Task: {E1CA79C5-123B-4A2A-90E7-7FB2473EA273} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E38D8757-7B89-4D4F-8F5C-D373478041FB} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1428552255-2859691675-353526280-500 => C:\Users\mikoa\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {E58A8B46-5BBF-49DA-8A49-709E1E8585D3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC)
Task: {E6C7CB27-E744-4657-AB8B-690EC5403F88} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => D:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4d23406a-5561-40d9-bd61-8457140fdd91}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\mikoa\Downloads

FireFox:
========
FF DefaultProfile: vio95ina.default
FF ProfilePath: C:\Users\mikoa\AppData\Roaming\Mozilla\Firefox\Profiles\vio95ina.default [2022-01-21]
FF ProfilePath: C:\Users\mikoa\AppData\Roaming\Mozilla\Firefox\Profiles\06ogj0c4.default-release [2022-10-09]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\mikoa\AppData\Roaming\Mozilla\Firefox\Profiles\06ogj0c4.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-06-25]

Chrome:
=======
CHR Profile: C:\Users\mikoa\AppData\Local\Google\Chrome\User Data\Default [2022-10-09]
CHR DownloadDir: D:\hry
CHR Notifications: Default -> hxxps://www.reddit.com
CHR Extension: (Just Black) - C:\Users\mikoa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2022-01-09]
CHR Extension: (Dark Reader) - C:\Users\mikoa\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2022-09-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\mikoa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-27]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\mikoa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-09-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\mikoa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\mikoa\AppData\Local\Google\Chrome\User Data\System Profile [2022-10-09]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2021-01-11] (BattlEye Innovations e.K. -> )
R2 Bonjour Service; C:\Program Files\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2022-01-29] (Apple Inc. -> Apple Inc.)
R2 CCleanerPerformanceOptimizerService; D:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
S4 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5026616 2021-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [41240 2022-09-22] (Intel Corporation -> Intel)
S3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [198424 2022-09-22] (Intel Corporation -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-12-14] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-17] (Epic Games Inc. -> Epic Games, Inc.)
S3 MBAMService; d:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7997112 2022-02-15] (Malwarebytes Inc -> Malwarebytes)
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [3593728 2020-12-21] (Microsoft Corporation) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 HnGEpicService; D:\Program Files\Epic Games\HeroesGeneralsWWII\hngservice.exe [X]
S2 MTAgentService; E:\Program Files\MiniTool ShadowMaker\AgentService.exe [X]
S2 MTSchedulerService; E:\Program Files\MiniTool ShadowMaker\SchedulerService.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [51264 2015-07-07] (IVT CORPORATION -> IVT Corporation.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2021-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ksapi64; C:\Windows\system32\drivers\ksapi64.sys [89776 2021-11-08] (Beijing Kingsoft Security software Co.,Ltd -> Kingsoft Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [221096 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-11-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-11-10] (Malwarebytes Inc -> Malwarebytes)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
R3 RSP2STOR; C:\Windows\System32\drivers\RtsP2Stor.sys [347224 2020-05-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 RvNetMP60; C:\Windows\System32\drivers\RvNetMP60.sys [69048 2020-09-24] (Famatech Corp. -> Famatech Corp.)
S3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X]
S3 semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-09 17:08 - 2022-10-09 17:09 - 000016582 ____C C:\Users\mikoa\Desktop\FRST.txt
2022-10-09 17:08 - 2022-10-09 17:09 - 000000000 ___DC C:\FRST
2022-10-09 17:07 - 2022-10-09 17:07 - 002372096 ____C (Farbar) C:\Users\mikoa\Desktop\FRST64.exe
2022-10-09 17:00 - 2022-10-09 17:00 - 000000231 ____C C:\unstart.ini
2022-10-09 16:55 - 2022-10-09 16:56 - 000000000 ___DC C:\AdwCleaner
2022-10-09 16:54 - 2022-10-09 16:54 - 008791352 ____C (Malwarebytes) C:\Users\mikoa\Desktop\adwcleaner.exe
2022-10-09 16:39 - 2022-10-09 16:39 - 000000000 __HDC C:\$WinREAgent
2022-10-09 00:38 - 2022-10-09 00:38 - 000000000 ___DC C:\Users\mikoa\AppData\Local\FactoryGame
2022-10-08 21:40 - 2022-10-08 21:40 - 000001472 ____C C:\Users\mikoa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk
2022-10-08 21:40 - 2022-10-08 21:40 - 000001464 ____C C:\Users\mikoa\Desktop\NVIDIA GeForce NOW.lnk
2022-09-23 21:39 - 2022-09-23 21:39 - 000001510 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2022-09-22 09:41 - 2022-09-22 09:41 - 000000000 ___DC C:\Windows\SysWOW64\Codecs
2022-09-22 09:41 - 2022-09-22 09:41 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10 - Codec Pack
2022-09-20 21:04 - 2022-09-20 21:04 - 000000000 ___HC C:\Windows\system32\Drivers\Msft_Kernel_ETDSMBus_01011.Wdf
2022-09-20 21:04 - 2022-09-20 21:04 - 000000000 ___DC C:\Program Files\Elantech
2022-09-20 18:15 - 2022-09-20 18:15 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Boosteroid
2022-09-20 18:11 - 2022-09-20 18:11 - 000000000 ___DC C:\ProgramData\Piriform
2022-09-20 18:05 - 2022-10-09 17:00 - 000003474 ____C C:\Windows\system32\Tasks\CCleanerCrashReporting
2022-09-20 18:05 - 2022-10-09 17:00 - 000000760 ____C C:\Windows\Tasks\CCleanerCrashReporting.job
2022-09-20 18:05 - 2022-09-20 18:05 - 000003936 ____C C:\Windows\system32\Tasks\CCleaner Update
2022-09-20 18:05 - 2022-09-20 18:05 - 000002904 ____C C:\Windows\system32\Tasks\CCleanerSkipUAC - mikoa
2022-09-20 18:05 - 2022-09-20 18:05 - 000000737 ____C C:\Users\Public\Desktop\CCleaner.lnk
2022-09-20 18:05 - 2022-09-20 18:05 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-09 17:05 - 2019-12-07 11:14 - 000000000 ___DC C:\Windows\AppReadiness
2022-10-09 17:05 - 2019-12-07 11:14 - 000000000 ___DC C:\ProgramData\regid.1991-06.com.microsoft
2022-10-09 17:01 - 2020-12-20 01:53 - 000000000 ___DC C:\Users\mikoa\AppData\Local\CrashDumps
2022-10-09 16:55 - 2020-12-17 03:15 - 000000000 ___DC C:\Program Files (x86)\Google
2022-10-09 16:44 - 2019-12-07 11:03 - 000000000 ___DC C:\Windows\CbsTemp
2022-10-09 16:43 - 2022-07-30 05:02 - 000830836 ____C C:\Windows\system32\PerfStringBackup.INI
2022-10-09 16:43 - 2019-12-07 16:41 - 000808270 ____C C:\Windows\system32\perfh005.dat
2022-10-09 16:43 - 2019-12-07 16:41 - 000009258 ____C C:\Windows\system32\perfc005.dat
2022-10-09 16:43 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-10-09 16:36 - 2020-12-17 03:05 - 000000000 _SHDC C:\Users\mikoa\IntelGraphicsProfiles
2022-10-09 16:35 - 2020-12-17 03:05 - 000000000 ___DC C:\Intel
2022-10-09 16:35 - 2020-12-17 02:29 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-09 16:35 - 2020-11-19 01:30 - 000000006 ___HC C:\Windows\Tasks\SA.DAT
2022-10-09 16:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2022-10-09 00:39 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-10-09 00:04 - 2020-12-17 13:12 - 000000000 ___DC C:\Users\mikoa\AppData\Local\D3DSCache
2022-10-08 21:40 - 2020-12-20 01:53 - 000000000 ___DC C:\ProgramData\NVIDIA Corporation
2022-10-08 21:40 - 2020-12-17 13:12 - 000000000 ___DC C:\Users\mikoa\AppData\Local\NVIDIA Corporation
2022-10-08 19:53 - 2020-11-19 00:29 - 000000000 ___DC C:\Windows\system32\SleepStudy
2022-10-08 12:48 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-07 19:22 - 2022-05-20 07:24 - 000000804 ____C C:\Users\mikoa\Desktop\Boosteroid.lnk
2022-10-06 21:18 - 2021-02-12 22:07 - 000000000 ___DC C:\Users\mikoa\AppData\Local\ElevatedDiagnostics
2022-10-06 21:06 - 2021-12-28 11:46 - 000000000 ___DC C:\Users\mikoa\AppData\Local\Softdeluxe
2022-10-06 15:18 - 2020-12-21 23:41 - 000002247 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-06 15:18 - 2020-12-21 23:41 - 000002206 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2022-10-04 21:52 - 2022-05-20 07:24 - 000000000 ___DC C:\Users\mikoa\AppData\Local\Boosteroid Games S.R.L
2022-10-04 15:47 - 2020-12-21 01:30 - 000000000 ___DC C:\Windows\system32\MRT
2022-10-04 15:42 - 2020-12-21 01:30 - 141646296 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-09-30 22:22 - 2022-07-11 21:32 - 000000000 ___DC C:\Users\mikoa\AppData\Local\WeMod
2022-09-30 22:22 - 2021-09-26 11:07 - 000000000 ___DC C:\Users\mikoa\AppData\Roaming\WeMod
2022-09-30 22:22 - 2021-02-06 03:45 - 000000000 ___DC C:\Users\mikoa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2022-09-29 14:02 - 2020-12-17 02:44 - 000000000 ___DC C:\Users\mikoa\AppData\Local\Packages
2022-09-27 14:50 - 2020-12-21 23:39 - 000003474 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-09-27 14:50 - 2020-12-21 23:39 - 000003350 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-09-26 20:45 - 2020-12-17 03:14 - 000000000 ___DC C:\Users\mikoa\AppData\Local\Google
2022-09-23 21:39 - 2020-12-17 02:52 - 000000000 ___DC C:\Program Files (x86)\Intel
2022-09-23 21:39 - 2020-12-17 02:51 - 000000000 ___DC C:\ProgramData\Package Cache
2022-09-22 22:43 - 2020-12-17 02:46 - 000000000 ___DC C:\Users\mikoa\AppData\Local\PlaceholderTileLogoFolder
2022-09-22 10:16 - 2021-04-30 14:53 - 000000739 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2022-09-22 10:16 - 2021-04-30 14:53 - 000000000 ___DC C:\Users\mikoa\AppData\Roaming\Notepad++
2022-09-20 21:27 - 2020-12-20 23:33 - 000000000 ___DC C:\Users\mikoa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-09-20 21:27 - 2020-12-20 23:33 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-09-20 21:05 - 2019-12-07 11:14 - 000000000 ___DC C:\Windows\system32\Drivers\DriverData
2022-09-19 00:34 - 2019-12-07 11:14 - 000000000 ___DC C:\Windows\system32\NDF

==================== Files in the root of some directories ========

2022-06-19 08:16 - 2022-06-19 08:26 - 000007601 ____C () C:\Users\mikoa\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Vim ze nic nevim.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivni kontrola logu

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ContextMenuHandlers1: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> No File
ContextMenuHandlers2: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> No File
ContextMenuHandlers4: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> No File
AlternateDataStreams: C:\Users\mikoa:Heroes & Generals [38]
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [{5577FE1E-52D4-48B4-BBAD-CA9C39F6A28D}] => (Allow) E:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{52856290-2D01-4796-8176-B67D636C78F2}] => (Allow) E:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
HKLM\...\Run: [MTPW] => "E:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe"* (No File)
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\MountPoints2: {39da69ca-d7f1-11ec-9074-d8029f249081} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\MountPoints2: {39da6a4c-d7f1-11ec-9074-d8029f249081} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\MountPoints2: {56146d35-681e-11eb-8fdf-c76b01ae9182} - "E:\autorun\autorun.exe"
Task: {2845C7C8-5E34-45ED-96A8-7E94E4BC7ABB} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {582A17CA-F1D1-4707-B522-D4A07D27CCB9} - System32\Tasks\MiniTool Shadow Maker => E:\Program Files\MiniTool ShadowMaker\SMMonitor.exe (No File)
Task: {83E64A85-968B-4060-94C0-5ACE6D9F8085} - System32\Tasks\MiniToolPartitionWizard => E:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe /fromtask (No File)
Task: {B733C5A9-6BF7-437F-99CE-6282B73DD013} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (No File)
Task: {CC10261F-3CE6-4A21-91BA-6042D5C964A1} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (No File)
Task: {E38D8757-7B89-4D4F-8F5C-D373478041FB} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1428552255-2859691675-353526280-500 => C:\Users\mikoa\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {E58A8B46-5BBF-49DA-8A49-709E1E8585D3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC)
Task: {0675E6C9-1042-4C1A-8D1D-D579F011B9D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC)
C:\DumpStack.log.tmp
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

KOKOS1
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 78
Registrován: 13 led 2006 11:33

Re: Preventivni kontrola logu

#3 Příspěvek od KOKOS1 »

Dekuji za rychlou reakci :) prikladam fixlog

Fix result of Farbar Recovery Scan Tool (x64) Version: 07-10-2022 01
Ran by mikoa (09-10-2022 18:11:51) Run:1
Running from C:\Users\mikoa\Desktop
Loaded Profiles: mikoa
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> No File
ContextMenuHandlers2: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> No File
ContextMenuHandlers4: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> No File
AlternateDataStreams: C:\Users\mikoa:Heroes & Generals [38]
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [{5577FE1E-52D4-48B4-BBAD-CA9C39F6A28D}] => (Allow) E:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{52856290-2D01-4796-8176-B67D636C78F2}] => (Allow) E:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
HKLM\...\Run: [MTPW] => "E:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe"* (No File)
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\MountPoints2: {39da69ca-d7f1-11ec-9074-d8029f249081} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\MountPoints2: {39da6a4c-d7f1-11ec-9074-d8029f249081} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\...\MountPoints2: {56146d35-681e-11eb-8fdf-c76b01ae9182} - "E:\autorun\autorun.exe"
Task: {2845C7C8-5E34-45ED-96A8-7E94E4BC7ABB} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {582A17CA-F1D1-4707-B522-D4A07D27CCB9} - System32\Tasks\MiniTool Shadow Maker => E:\Program Files\MiniTool ShadowMaker\SMMonitor.exe (No File)
Task: {83E64A85-968B-4060-94C0-5ACE6D9F8085} - System32\Tasks\MiniToolPartitionWizard => E:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe /fromtask (No File)
Task: {B733C5A9-6BF7-437F-99CE-6282B73DD013} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (No File)
Task: {CC10261F-3CE6-4A21-91BA-6042D5C964A1} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (No File)
Task: {E38D8757-7B89-4D4F-8F5C-D373478041FB} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1428552255-2859691675-353526280-500 => C:\Users\mikoa\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {E58A8B46-5BBF-49DA-8A49-709E1E8585D3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC)
Task: {0675E6C9-1042-4C1A-8D1D-D579F011B9D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC)
C:\DumpStack.log.tmp
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\cm_64bit => removed successfully
HKLM\Software\Classes\CLSID\{69E19770-EA24-49e2-B997-405EDBEF4C05} => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\cm_64bit => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\cm_64bit => removed successfully
C:\Users\mikoa => ":Heroes & Generals" ADS removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\System32\blank.htm" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5577FE1E-52D4-48B4-BBAD-CA9C39F6A28D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{52856290-2D01-4796-8176-B67D636C78F2}" => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\MTPW" => removed successfully
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{39da69ca-d7f1-11ec-9074-d8029f249081} => removed successfully
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{39da6a4c-d7f1-11ec-9074-d8029f249081} => removed successfully
HKU\S-1-5-21-1428552255-2859691675-353526280-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{56146d35-681e-11eb-8fdf-c76b01ae9182} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2845C7C8-5E34-45ED-96A8-7E94E4BC7ABB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2845C7C8-5E34-45ED-96A8-7E94E4BC7ABB}" => removed successfully
C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{582A17CA-F1D1-4707-B522-D4A07D27CCB9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{582A17CA-F1D1-4707-B522-D4A07D27CCB9}" => removed successfully
C:\Windows\System32\Tasks\MiniTool Shadow Maker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MiniTool Shadow Maker" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{83E64A85-968B-4060-94C0-5ACE6D9F8085}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{83E64A85-968B-4060-94C0-5ACE6D9F8085}" => removed successfully
C:\Windows\System32\Tasks\MiniToolPartitionWizard => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MiniToolPartitionWizard" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B733C5A9-6BF7-437F-99CE-6282B73DD013}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B733C5A9-6BF7-437F-99CE-6282B73DD013}" => removed successfully
C:\Windows\System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CC10261F-3CE6-4A21-91BA-6042D5C964A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC10261F-3CE6-4A21-91BA-6042D5C964A1}" => removed successfully
C:\Windows\System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E38D8757-7B89-4D4F-8F5C-D373478041FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E38D8757-7B89-4D4F-8F5C-D373478041FB}" => removed successfully
C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1428552255-2859691675-353526280-500 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-1428552255-2859691675-353526280-500" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E58A8B46-5BBF-49DA-8A49-709E1E8585D3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E58A8B46-5BBF-49DA-8A49-709E1E8585D3}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0675E6C9-1042-4C1A-8D1D-D579F011B9D7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0675E6C9-1042-4C1A-8D1D-D579F011B9D7}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4222158 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc *.cache => 98730403 B
Windows/system/drivers => 4822 B
Edge => 149120 B
Chrome => 109063419 B
Firefox => 16071271 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 1164 B
mikoa => 3053079 B

RecycleBin => 0 B
EmptyTemp: => 221.8 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 09-10-2022 18:14:00)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 18:14:00 ====
Vim ze nic nevim.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivni kontrola logu

#4 Příspěvek od Rudy »

Smazáno, log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

KOKOS1
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 78
Registrován: 13 led 2006 11:33

Re: Preventivni kontrola logu

#5 Příspěvek od KOKOS1 »

Dekuji moc za pomoc :)
Vim ze nic nevim.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivni kontrola logu

#6 Příspěvek od Rudy »

Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno