Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o kontrolu
Již několikrát mi zvonil telefon, kde se na druhém konci ozval někdo anglicky (ač z CZ čísla). Vždy jsem to zavěsil. Dnes jsem se rozhodl si pokecat a s indickým přízvukem mi muž, na druhém konci, anglicky sdělil, že prý u nich na serveru v Londýně mají záznam, že můj počítač jim tam vykazuje podezřelou aktivitu. Osobně žádné podezřelé chování nepozoruji, ale řekl jsem si, že asi opět po dlouhé době využiji místních odborníků. Předem děkuji za kontrolu.
- Přílohy
-
- FRST.zip
- (47.9 KiB) Staženo 63 x
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [Genshin Impact_launcher_pcseaepic_1_3] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [739448 2023-03-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [WinLaunch] => C:\Program Files\WinLaunch\WinLaunch.exe -hide (No File)
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [AF_uuid_2139460] => 013c02c8-93bd-4d49-ad18-4dcbaafc0b40 (No File)
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [AF_counter_2139460] => 8 (No File)
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\MountPoints2: {f3931c87-13e0-11ec-a674-5cf37095b906} - "H:\setup.exe"
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3C3F9506-4ABE-4F43-919E-3A007A0E3BE7} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {1336A261-FDC9-4A5F-930F-A98E3368DFAF} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {5A7BB717-0698-4FB4-BDDB-082B1E369FB3} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {DE830DC7-3275-4CB7-89C3-BEE71FA677AE} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (No File)
Task: {08A294B1-09D5-44FC-A69C-4E20C5EF2A7F} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe /s (No File)
CustomCLSID: HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{3f5d0051-61b8-0f45-6166-996cfb4f914f}\localserver32 -> "C:\Program Files\PowerToys\modules\launcher\PowerToys.PowerLauncher.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> "C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe" -ToastActivated => No File
ContextMenuHandlers2: [IconPackager] -> {2CF9036B-F720-425F-918C-03A336A65FC4} => -> No File
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\regfile: <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.reg: => <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.bat: => <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.cmd: => <==== ATTENTION
FirewallRules: [TCP Query User{03B5ECB1-54F1-4923-B878-94E08770D503}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe => No File
FirewallRules: [UDP Query User{56C513AE-5B15-47D8-945F-2897FA1F69B6}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe => No File
FirewallRules: [TCP Query User{2FA0BEFA-E44D-40A0-A9BD-E875541CF62A}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{A9E4BDC8-1BA5-4915-ACDB-F753740083E4}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{D3B2ACC2-AC18-4792-9CEC-3C3B3409F57A}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [UDP Query User{1593520D-CB77-4A3E-A54F-9CC7FC846F08}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [TCP Query User{01FC0F54-E375-4D0A-81C3-C5DCFF2BB80C}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{2A0670F4-AF0C-4AD3-B08F-04993C9D8DDA}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => No File
FirewallRules: [{3897026E-869F-4C8B-9C0E-E02BA8BCCF05}] => (Allow) Z:\SteamLibrary\steamapps\common\BeamNG.drive\BeamNG.drive.exe => No File
FirewallRules: [{67C53BA0-C320-40DA-84CB-CD6BD7D52DE6}] => (Allow) Z:\SteamLibrary\steamapps\common\BeamNG.drive\BeamNG.drive.exe => No File
FirewallRules: [{DDC625D5-9FD0-4286-A285-32676033DDA5}] => (Allow) C:\Program Files\obs-studio\bin\64bit\obs64.exe => No File
FirewallRules: [{34070D27-2E22-4009-8482-FA3280CBD6CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthKart\gamecontentwindows\EarthKartWS\EarthKart.exe => No File
FirewallRules: [{2C57DCC2-8470-48D2-84B1-68DED3B83090}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthKart\gamecontentwindows\EarthKartWS\EarthKart.exe => No File
FirewallRules: [{F0555BB0-B221-4F47-A4C6-A31732E03E93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe => No File
FirewallRules: [{B06433D0-7150-4C57-B8B2-B3CA033B32A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe => No File
FirewallRules: [{0E335C82-0A7C-4EBD-BC8E-F1CAA01DE7B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe => No File
FirewallRules: [{3FD31499-0CE1-40CE-ABE3-41AEEF6BE8C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe => No File
FirewallRules: [{A768FD2A-1E1E-4EB4-9E23-E0F80B142EBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ThePolynomial\bin_w64\Polynomial.exe => No File
FirewallRules: [{7206044B-E34E-40EA-8918-BB02C46DC926}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ThePolynomial\bin_w64\Polynomial.exe => No File
FirewallRules: [{6F61AF09-727A-4519-86A0-8CD07B17FFD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ding Dong Dang\DingDongDang-v1.00102. -20240611-162011.exe => No File
FirewallRules: [{2FED7245-D471-4513-BBF4-A4D6A1A5DD74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ding Dong Dang\DingDongDang-v1.00102. -20240611-162011.exe => No File
FirewallRules: [TCP Query User{08E84F2C-E0A0-462B-AE1A-1C5F8E664A50}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe => No File
FirewallRules: [UDP Query User{BE3B77EE-2221-4416-82B1-ED047621E192}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe => No File
FirewallRules: [TCP Query User{B0691359-0EEE-4F30-A9E6-BCC2E01DB06B}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe] => (Allow) C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe => No File
FirewallRules: [UDP Query User{BE86A791-4289-4E49-932A-9D012FD14CA9}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe] => (Allow) C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Třikrát mi FRST přestal odpovídat při mazání Local/Temp, tak jsem to projel CCleanerem a pak už to FRST vzal v pohodě, tak snad jsem tím něco v rámci FIXu neposral...
Fix result of Farbar Recovery Scan Tool (x64) Version: 16.07.2024
Ran by enten (21-07-2024 11:00:29) Run:3
Running from S:\OneDrive\Desktop
Loaded Profiles: enten
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [Genshin Impact_launcher_pcseaepic_1_3] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [739448 2023-03-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [WinLaunch] => C:\Program Files\WinLaunch\WinLaunch.exe -hide (No File)
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [AF_uuid_2139460] => 013c02c8-93bd-4d49-ad18-4dcbaafc0b40 (No File)
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [AF_counter_2139460] => 8 (No File)
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\MountPoints2: {f3931c87-13e0-11ec-a674-5cf37095b906} - "H:\setup.exe"
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3C3F9506-4ABE-4F43-919E-3A007A0E3BE7} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {1336A261-FDC9-4A5F-930F-A98E3368DFAF} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {5A7BB717-0698-4FB4-BDDB-082B1E369FB3} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {DE830DC7-3275-4CB7-89C3-BEE71FA677AE} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (No File)
Task: {08A294B1-09D5-44FC-A69C-4E20C5EF2A7F} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe /s (No File)
CustomCLSID: HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{3f5d0051-61b8-0f45-6166-996cfb4f914f}\localserver32 -> "C:\Program Files\PowerToys\modules\launcher\PowerToys.PowerLauncher.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> "C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe" -ToastActivated => No File
ContextMenuHandlers2: [IconPackager] -> {2CF9036B-F720-425F-918C-03A336A65FC4} => -> No File
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\regfile: <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.reg: => <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.bat: => <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.cmd: => <==== ATTENTION
FirewallRules: [TCP Query User{03B5ECB1-54F1-4923-B878-94E08770D503}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe => No File
FirewallRules: [UDP Query User{56C513AE-5B15-47D8-945F-2897FA1F69B6}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe => No File
FirewallRules: [TCP Query User{2FA0BEFA-E44D-40A0-A9BD-E875541CF62A}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{A9E4BDC8-1BA5-4915-ACDB-F753740083E4}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{D3B2ACC2-AC18-4792-9CEC-3C3B3409F57A}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [UDP Query User{1593520D-CB77-4A3E-A54F-9CC7FC846F08}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [TCP Query User{01FC0F54-E375-4D0A-81C3-C5DCFF2BB80C}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{2A0670F4-AF0C-4AD3-B08F-04993C9D8DDA}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => No File
FirewallRules: [{3897026E-869F-4C8B-9C0E-E02BA8BCCF05}] => (Allow) Z:\SteamLibrary\steamapps\common\BeamNG.drive\BeamNG.drive.exe => No File
FirewallRules: [{67C53BA0-C320-40DA-84CB-CD6BD7D52DE6}] => (Allow) Z:\SteamLibrary\steamapps\common\BeamNG.drive\BeamNG.drive.exe => No File
FirewallRules: [{DDC625D5-9FD0-4286-A285-32676033DDA5}] => (Allow) C:\Program Files\obs-studio\bin\64bit\obs64.exe => No File
FirewallRules: [{34070D27-2E22-4009-8482-FA3280CBD6CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthKart\gamecontentwindows\EarthKartWS\EarthKart.exe => No File
FirewallRules: [{2C57DCC2-8470-48D2-84B1-68DED3B83090}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthKart\gamecontentwindows\EarthKartWS\EarthKart.exe => No File
FirewallRules: [{F0555BB0-B221-4F47-A4C6-A31732E03E93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe => No File
FirewallRules: [{B06433D0-7150-4C57-B8B2-B3CA033B32A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe => No File
FirewallRules: [{0E335C82-0A7C-4EBD-BC8E-F1CAA01DE7B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe => No File
FirewallRules: [{3FD31499-0CE1-40CE-ABE3-41AEEF6BE8C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe => No File
FirewallRules: [{A768FD2A-1E1E-4EB4-9E23-E0F80B142EBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ThePolynomial\bin_w64\Polynomial.exe => No File
FirewallRules: [{7206044B-E34E-40EA-8918-BB02C46DC926}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ThePolynomial\bin_w64\Polynomial.exe => No File
FirewallRules: [{6F61AF09-727A-4519-86A0-8CD07B17FFD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ding Dong Dang\DingDongDang-v1.00102. -20240611-162011.exe => No File
FirewallRules: [{2FED7245-D471-4513-BBF4-A4D6A1A5DD74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ding Dong Dang\DingDongDang-v1.00102. -20240611-162011.exe => No File
FirewallRules: [TCP Query User{08E84F2C-E0A0-462B-AE1A-1C5F8E664A50}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe => No File
FirewallRules: [UDP Query User{BE3B77EE-2221-4416-82B1-ED047621E192}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe => No File
FirewallRules: [TCP Query User{B0691359-0EEE-4F30-A9E6-BCC2E01DB06B}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe] => (Allow) C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe => No File
FirewallRules: [UDP Query User{BE86A791-4289-4E49-932A-9D012FD14CA9}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe] => (Allow) C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Genshin Impact_launcher_pcseaepic_1_3" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => not found
"HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => not found
"HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Microsoft\Windows\CurrentVersion\Run\\WinLaunch" => not found
"HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AF_uuid_2139460" => not found
"HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AF_counter_2139460" => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f3931c87-13e0-11ec-a674-5cf37095b906} => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => not found
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found
"C:\ProgramData\NTUSER.pol" => not found
HKLM\SOFTWARE\Policies\Mozilla => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C3F9506-4ABE-4F43-919E-3A007A0E3BE7}" => not found
"C:\WINDOWS\System32\Tasks\ASUS\P508PowerAgent_sdk" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS\P508PowerAgent_sdk" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1336A261-FDC9-4A5F-930F-A98E3368DFAF}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_AC" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A7BB717-0698-4FB4-BDDB-082B1E369FB3}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DE830DC7-3275-4CB7-89C3-BEE71FA677AE}" => not found
"C:\WINDOWS\System32\Tasks\MSIAfterburner" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MSIAfterburner" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08A294B1-09D5-44FC-A69C-4E20C5EF2A7F}" => not found
"C:\WINDOWS\System32\Tasks\RTSS" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RTSS" => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{3f5d0051-61b8-0f45-6166-996cfb4f914f} => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b} => not found
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\IconPackager => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\regfile => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.reg => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.bat => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.cmd => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{03B5ECB1-54F1-4923-B878-94E08770D503}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{56C513AE-5B15-47D8-945F-2897FA1F69B6}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2FA0BEFA-E44D-40A0-A9BD-E875541CF62A}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A9E4BDC8-1BA5-4915-ACDB-F753740083E4}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D3B2ACC2-AC18-4792-9CEC-3C3B3409F57A}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1593520D-CB77-4A3E-A54F-9CC7FC846F08}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{01FC0F54-E375-4D0A-81C3-C5DCFF2BB80C}C:\program files\epic games\gtav\gta5.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2A0670F4-AF0C-4AD3-B08F-04993C9D8DDA}C:\program files\epic games\gtav\gta5.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3897026E-869F-4C8B-9C0E-E02BA8BCCF05}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{67C53BA0-C320-40DA-84CB-CD6BD7D52DE6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DDC625D5-9FD0-4286-A285-32676033DDA5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{34070D27-2E22-4009-8482-FA3280CBD6CC}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2C57DCC2-8470-48D2-84B1-68DED3B83090}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0555BB0-B221-4F47-A4C6-A31732E03E93}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B06433D0-7150-4C57-B8B2-B3CA033B32A0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0E335C82-0A7C-4EBD-BC8E-F1CAA01DE7B3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3FD31499-0CE1-40CE-ABE3-41AEEF6BE8C7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A768FD2A-1E1E-4EB4-9E23-E0F80B142EBA}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7206044B-E34E-40EA-8918-BB02C46DC926}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F61AF09-727A-4519-86A0-8CD07B17FFD6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2FED7245-D471-4513-BBF4-A4D6A1A5DD74}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{08E84F2C-E0A0-462B-AE1A-1C5F8E664A50}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BE3B77EE-2221-4416-82B1-ED047621E192}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B0691359-0EEE-4F30-A9E6-BCC2E01DB06B}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BE86A791-4289-4E49-932A-9D012FD14CA9}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 3153456 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 158874 B
Edge => 0 B
Chrome => 0 B
Vivaldi => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
enten => 74256320 B
RecycleBin => 0 B
EmptyTemp: => 74 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 11:01:18 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 16.07.2024
Ran by enten (21-07-2024 11:00:29) Run:3
Running from S:\OneDrive\Desktop
Loaded Profiles: enten
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [Genshin Impact_launcher_pcseaepic_1_3] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [739448 2023-03-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [WinLaunch] => C:\Program Files\WinLaunch\WinLaunch.exe -hide (No File)
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [AF_uuid_2139460] => 013c02c8-93bd-4d49-ad18-4dcbaafc0b40 (No File)
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\Run: [AF_counter_2139460] => 8 (No File)
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\...\MountPoints2: {f3931c87-13e0-11ec-a674-5cf37095b906} - "H:\setup.exe"
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3C3F9506-4ABE-4F43-919E-3A007A0E3BE7} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {1336A261-FDC9-4A5F-930F-A98E3368DFAF} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {5A7BB717-0698-4FB4-BDDB-082B1E369FB3} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {DE830DC7-3275-4CB7-89C3-BEE71FA677AE} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (No File)
Task: {08A294B1-09D5-44FC-A69C-4E20C5EF2A7F} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe /s (No File)
CustomCLSID: HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{3f5d0051-61b8-0f45-6166-996cfb4f914f}\localserver32 -> "C:\Program Files\PowerToys\modules\launcher\PowerToys.PowerLauncher.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> "C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe" -ToastActivated => No File
ContextMenuHandlers2: [IconPackager] -> {2CF9036B-F720-425F-918C-03A336A65FC4} => -> No File
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\regfile: <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.reg: => <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.bat: => <==== ATTENTION
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.cmd: => <==== ATTENTION
FirewallRules: [TCP Query User{03B5ECB1-54F1-4923-B878-94E08770D503}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe => No File
FirewallRules: [UDP Query User{56C513AE-5B15-47D8-945F-2897FA1F69B6}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe => No File
FirewallRules: [TCP Query User{2FA0BEFA-E44D-40A0-A9BD-E875541CF62A}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [UDP Query User{A9E4BDC8-1BA5-4915-ACDB-F753740083E4}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe => No File
FirewallRules: [TCP Query User{D3B2ACC2-AC18-4792-9CEC-3C3B3409F57A}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [UDP Query User{1593520D-CB77-4A3E-A54F-9CC7FC846F08}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [TCP Query User{01FC0F54-E375-4D0A-81C3-C5DCFF2BB80C}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{2A0670F4-AF0C-4AD3-B08F-04993C9D8DDA}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => No File
FirewallRules: [{3897026E-869F-4C8B-9C0E-E02BA8BCCF05}] => (Allow) Z:\SteamLibrary\steamapps\common\BeamNG.drive\BeamNG.drive.exe => No File
FirewallRules: [{67C53BA0-C320-40DA-84CB-CD6BD7D52DE6}] => (Allow) Z:\SteamLibrary\steamapps\common\BeamNG.drive\BeamNG.drive.exe => No File
FirewallRules: [{DDC625D5-9FD0-4286-A285-32676033DDA5}] => (Allow) C:\Program Files\obs-studio\bin\64bit\obs64.exe => No File
FirewallRules: [{34070D27-2E22-4009-8482-FA3280CBD6CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthKart\gamecontentwindows\EarthKartWS\EarthKart.exe => No File
FirewallRules: [{2C57DCC2-8470-48D2-84B1-68DED3B83090}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthKart\gamecontentwindows\EarthKartWS\EarthKart.exe => No File
FirewallRules: [{F0555BB0-B221-4F47-A4C6-A31732E03E93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe => No File
FirewallRules: [{B06433D0-7150-4C57-B8B2-B3CA033B32A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe => No File
FirewallRules: [{0E335C82-0A7C-4EBD-BC8E-F1CAA01DE7B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe => No File
FirewallRules: [{3FD31499-0CE1-40CE-ABE3-41AEEF6BE8C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe => No File
FirewallRules: [{A768FD2A-1E1E-4EB4-9E23-E0F80B142EBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ThePolynomial\bin_w64\Polynomial.exe => No File
FirewallRules: [{7206044B-E34E-40EA-8918-BB02C46DC926}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ThePolynomial\bin_w64\Polynomial.exe => No File
FirewallRules: [{6F61AF09-727A-4519-86A0-8CD07B17FFD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ding Dong Dang\DingDongDang-v1.00102. -20240611-162011.exe => No File
FirewallRules: [{2FED7245-D471-4513-BBF4-A4D6A1A5DD74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ding Dong Dang\DingDongDang-v1.00102. -20240611-162011.exe => No File
FirewallRules: [TCP Query User{08E84F2C-E0A0-462B-AE1A-1C5F8E664A50}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe => No File
FirewallRules: [UDP Query User{BE3B77EE-2221-4416-82B1-ED047621E192}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe => No File
FirewallRules: [TCP Query User{B0691359-0EEE-4F30-A9E6-BCC2E01DB06B}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe] => (Allow) C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe => No File
FirewallRules: [UDP Query User{BE86A791-4289-4E49-932A-9D012FD14CA9}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe] => (Allow) C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Genshin Impact_launcher_pcseaepic_1_3" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => not found
"HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => not found
"HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Microsoft\Windows\CurrentVersion\Run\\WinLaunch" => not found
"HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AF_uuid_2139460" => not found
"HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AF_counter_2139460" => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f3931c87-13e0-11ec-a674-5cf37095b906} => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => not found
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found
"C:\ProgramData\NTUSER.pol" => not found
HKLM\SOFTWARE\Policies\Mozilla => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C3F9506-4ABE-4F43-919E-3A007A0E3BE7}" => not found
"C:\WINDOWS\System32\Tasks\ASUS\P508PowerAgent_sdk" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS\P508PowerAgent_sdk" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1336A261-FDC9-4A5F-930F-A98E3368DFAF}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_AC" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A7BB717-0698-4FB4-BDDB-082B1E369FB3}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DE830DC7-3275-4CB7-89C3-BEE71FA677AE}" => not found
"C:\WINDOWS\System32\Tasks\MSIAfterburner" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MSIAfterburner" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08A294B1-09D5-44FC-A69C-4E20C5EF2A7F}" => not found
"C:\WINDOWS\System32\Tasks\RTSS" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RTSS" => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{3f5d0051-61b8-0f45-6166-996cfb4f914f} => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b} => not found
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\IconPackager => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\regfile => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.reg => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.bat => not found
HKU\S-1-5-21-4157375001-4093909184-968087358-1001\Software\Classes\.cmd => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{03B5ECB1-54F1-4923-B878-94E08770D503}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{56C513AE-5B15-47D8-945F-2897FA1F69B6}C:\program files (x86)\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2FA0BEFA-E44D-40A0-A9BD-E875541CF62A}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A9E4BDC8-1BA5-4915-ACDB-F753740083E4}C:\program files\windowsapps\spotifyab.spotifymusic_1.226.1187.0_x64__zpdnekdrzrea0\spotify.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D3B2ACC2-AC18-4792-9CEC-3C3B3409F57A}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1593520D-CB77-4A3E-A54F-9CC7FC846F08}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{01FC0F54-E375-4D0A-81C3-C5DCFF2BB80C}C:\program files\epic games\gtav\gta5.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2A0670F4-AF0C-4AD3-B08F-04993C9D8DDA}C:\program files\epic games\gtav\gta5.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3897026E-869F-4C8B-9C0E-E02BA8BCCF05}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{67C53BA0-C320-40DA-84CB-CD6BD7D52DE6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DDC625D5-9FD0-4286-A285-32676033DDA5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{34070D27-2E22-4009-8482-FA3280CBD6CC}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2C57DCC2-8470-48D2-84B1-68DED3B83090}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0555BB0-B221-4F47-A4C6-A31732E03E93}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B06433D0-7150-4C57-B8B2-B3CA033B32A0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0E335C82-0A7C-4EBD-BC8E-F1CAA01DE7B3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3FD31499-0CE1-40CE-ABE3-41AEEF6BE8C7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A768FD2A-1E1E-4EB4-9E23-E0F80B142EBA}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7206044B-E34E-40EA-8918-BB02C46DC926}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F61AF09-727A-4519-86A0-8CD07B17FFD6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2FED7245-D471-4513-BBF4-A4D6A1A5DD74}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{08E84F2C-E0A0-462B-AE1A-1C5F8E664A50}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BE3B77EE-2221-4416-82B1-ED047621E192}C:\program files (x86)\steam\steamapps\common\monstrosity\monstrosity\binaries\win64\monstrosity-win64-shipping.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B0691359-0EEE-4F30-A9E6-BCC2E01DB06B}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BE86A791-4289-4E49-932A-9D012FD14CA9}C:\users\enten\appdata\local\discord\app-1.0.9153\discord.exe" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 3153456 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 158874 B
Edge => 0 B
Chrome => 0 B
Vivaldi => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
enten => 74256320 B
RecycleBin => 0 B
EmptyTemp: => 74 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 11:01:18 ====
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
OK. PC by měl být čistý.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Díky.
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?