VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

hacknutý facebook mé drahé

https://forum.viry.cz:443/viewtopic.php?t=158460

Stránka 1 z 1

hacknutý facebook mé drahé

Napsal: 01 led 2022 11:06
od cernohous13
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Ran by dell (administrator) on DESKTOP-90CPJ12 (Dell Inc. Latitude E5530 non-vPro) (01-01-2022 10:49:21)
Running from C:\Users\dell\Downloads
Loaded Profiles: dell
Platform: Microsoft Windows 10 Pro Version 20H2 19042.1415 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <15>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [779376 2019-05-10] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [190904 2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2588162779-3066448854-3995751850-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2588162779-3066448854-3995751850-1001\...\Run: [MicrosoftEdgeAutoLaunch_70097D053DE55DAC7494318E9E120B85] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-2588162779-3066448854-3995751850-1001\...\MountPoints2: {43200993-4c2b-11ec-8d0c-f01faf4e175f} - "D:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-15] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01162B67-45B9-4897-A6C7-351426A5FB6C} - System32\Tasks\CCleanerSkipUAC - dell => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0B622150-8DC5-47FF-847E-CBF458ECDAFC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-08-09] (Google Inc -> Google LLC)
Task: {0D1E76C0-8330-45EC-A3C1-7764EB1CCFAB} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-06-24] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {7F718020-68F7-4F6C-8D11-53D80E97A630} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5002680 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {A0188118-1168-450A-B791-E920016D791C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-08-09] (Google Inc -> Google LLC)
Task: {DCB9572F-53CB-4E2D-9884-FD321A17BD1B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{07ae3209-dcd9-4fcc-94db-5059034f5442}: [DhcpNameServer] 192.168.0.1

Edge:
=======
DownloadDir: C:\Users\dell\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\dell\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-01]
Edge DownloadDir: Default -> C:\Users\dell\Downloads
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-11-12]
Edge Extension: (uBlock Origin) - C:\Users\dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-12-06]

Chrome:
=======
CHR Profile: C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default [2021-10-22]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-24]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104840 2019-05-10] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [485816 2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [485816 2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8517744 2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-06-24] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6138112 2021-12-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [36920 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [222248 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [369288 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [253064 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [100488 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\Windows\System32\drivers\avgElam.sys [21960 2021-09-22] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42552 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [186424 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [540192 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [109056 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84120 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [853944 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [545312 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [214512 2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [318904 2021-12-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.)
R3 MbmUsbSerial; C:\Windows\System32\Drivers\MbmUsbSerial.sys [81392 2015-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Ericsson AB)
R3 MkBusFilter; C:\Windows\system32\DRIVERS\MbmDeviceFilter.sys [42208 2015-06-30] (Ericsson AB -> )
R0 sptd2; C:\Windows\System32\Drivers\sptd2.sys [162960 2021-06-26] (Disc Soft Ltd -> Duplex Secure Ltd)
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [30352 2016-10-07] (STMICROELECTRONICS S.R.L. -> ST Microelectronics)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49568 2021-06-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [425184 2021-06-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-22] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-01 10:41 - 2022-01-01 10:43 - 000020486 _____ C:\Users\dell\Downloads\Addition.txt
2022-01-01 10:38 - 2022-01-01 10:50 - 000012578 _____ C:\Users\dell\Downloads\FRST.txt
2022-01-01 10:37 - 2022-01-01 10:37 - 002311168 _____ (Farbar) C:\Users\dell\Downloads\FRST64.exe
2021-12-30 16:06 - 2021-12-30 16:06 - 008249856 _____ C:\Users\dell\Downloads\Sussex.pps
2021-12-30 10:30 - 2021-12-30 10:30 - 002909184 _____ C:\Users\dell\Downloads\Kdyz_zeny_zblbnou.pps
2021-12-29 17:34 - 2021-12-29 17:34 - 000545792 _____ C:\Users\dell\Downloads\jednoducheveci.pps
2021-12-28 16:23 - 2021-12-28 16:23 - 000336824 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2021-12-28 16:23 - 2021-12-28 16:23 - 000215576 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw58b5f668d355708a.tmp
2021-12-24 15:23 - 2021-12-24 15:23 - 000000408 _____ C:\Users\dell\Downloads\priloha
2021-12-15 23:37 - 2021-12-15 23:37 - 000000000 ____D C:\Windows\SystemTemp
2021-12-15 10:15 - 2021-12-15 10:15 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2021-12-15 10:15 - 2021-12-15 10:15 - 000011979 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-12-15 10:13 - 2021-12-15 10:13 - 000272384 _____ C:\Windows\system32\TpmTool.exe
2021-12-15 10:13 - 2021-12-15 10:13 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-12-15 09:51 - 2021-12-15 09:51 - 000000000 ___HD C:\$WinREAgent
2021-12-11 11:53 - 2021-12-31 10:13 - 000003066 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2588162779-3066448854-3995751850-1001
2021-12-10 08:48 - 2021-12-10 08:47 - 000214512 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-01 10:49 - 2021-06-24 08:01 - 000000000 ____D C:\FRST
2022-01-01 10:11 - 2021-08-09 17:42 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-01 10:03 - 2021-03-08 12:48 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-01-01 09:40 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-01 09:17 - 2021-06-24 08:03 - 000000000 ____D C:\Program Files\CCleaner
2022-01-01 09:12 - 2021-03-08 12:28 - 000000000 __SHD C:\Users\dell\IntelGraphicsProfiles
2021-12-31 10:13 - 2021-09-02 08:21 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-12-31 10:13 - 2021-08-23 08:31 - 000002252 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - dell
2021-12-31 10:13 - 2021-08-09 17:42 - 000003402 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-12-31 10:13 - 2021-08-09 17:42 - 000003178 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-12-31 10:13 - 2021-06-24 08:05 - 000003044 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2021-12-31 10:13 - 2021-06-24 08:03 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-12-31 10:13 - 2021-03-31 12:00 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-31 10:13 - 2021-03-31 12:00 - 000003288 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-31 10:13 - 2021-03-08 13:35 - 000002862 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2588162779-3066448854-3995751850-1001
2021-12-28 16:23 - 2021-06-24 08:05 - 000853944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000545312 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000540192 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetHub.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000369288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000318904 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000253064 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000222248 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000186424 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000109056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000100488 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000084120 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000042552 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys
2021-12-28 16:23 - 2021-06-24 08:05 - 000036920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys
2021-12-28 16:23 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-12-22 20:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-12-21 17:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-19 13:41 - 2021-03-31 12:01 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-19 13:41 - 2021-03-31 12:01 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-12-17 09:05 - 2021-03-08 13:02 - 001605602 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-17 09:05 - 2019-12-07 15:43 - 000683504 _____ C:\Windows\system32\perfh005.dat
2021-12-17 09:05 - 2019-12-07 15:43 - 000137284 _____ C:\Windows\system32\perfc005.dat
2021-12-17 09:05 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-12-15 23:49 - 2021-08-09 17:43 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-12-15 23:49 - 2021-08-09 17:43 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-12-15 23:41 - 2021-06-24 08:03 - 000000000 ____D C:\ProgramData\AVG
2021-12-15 23:40 - 2021-03-08 12:49 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-15 23:40 - 2021-03-08 12:48 - 000458488 _____ C:\Windows\system32\FNTCACHE.DAT
2021-12-15 23:39 - 2021-03-08 12:48 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-15 23:38 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-12-15 23:37 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-12-15 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-12-15 10:22 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-12-15 09:27 - 2021-03-31 11:39 - 000000000 ____D C:\Windows\system32\MRT
2021-12-15 09:18 - 2021-03-31 11:39 - 137938848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-12-10 08:47 - 2021-06-24 08:05 - 000852880 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw54289336bca5df8a.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000544248 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw859ffd1a8dd8b44e.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000539128 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw41383aa6214d22b6.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000368240 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asweb68b160d4bb426f.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000317840 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw39c65dd8e5de1a56.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000252000 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswae5be940dd512c9a.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000222232 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw83351fef0be57dab.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000185360 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw9b828d6500657115.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000107992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw3b0661aa43711950.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000099424 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw99dcbcaf64feb841.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000083056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw4e36f2c42334ffab.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000041496 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswfb0c289a37363176.tmp
2021-12-10 08:47 - 2021-06-24 08:05 - 000035848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw38ebb78d7afa5e03.tmp
2021-12-04 14:33 - 2021-03-08 13:20 - 000002378 _____ C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

==================== Files in the root of some directories ========

2021-09-22 18:45 - 2021-09-22 18:45 - 000003584 _____ () C:\Users\dell\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-12-2021
Ran by dell (01-01-2022 10:50:43)
Running from C:\Users\dell\Downloads
Microsoft Windows 10 Pro Version 20H2 19042.1415 (X64) (2021-03-08 11:59:30)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2588162779-3066448854-3995751850-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2588162779-3066448854-3995751850-503 - Limited - Disabled)
dell (S-1-5-21-2588162779-3066448854-3995751850-1001 - Administrator - Enabled) => C:\Users\dell
Guest (S-1-5-21-2588162779-3066448854-3995751850-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2588162779-3066448854-3995751850-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AVG AntiVirus FREE (HKLM\...\AVG Antivirus) (Version: 21.11.3215 - AVG Technologies)
CCleaner (HKLM\...\CCleaner) (Version: 5.88 - Piriform)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.3201.101.212 - ALPS ELECTRIC CO., LTD.)
FastStone Image Viewer 7.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.5 - FastStone Soft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.110 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
LibreOffice 7.1.4.2 (HKLM\...\{7BE60D5A-5444-4E4D-9BAE-6A5BEA22C2AA}) (Version: 7.1.4.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2588162779-3066448854-3995751850-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Revo Uninstaller 2.2.8 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.8 - VS Revo Group, Ltd.)
StarBurn Version 9.0 (HKLM-x32\...\StarBurn_is1) (Version: - Rocket Division Software)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-10] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.11.12030.0_x64__8wekyb3d8bbwe [2021-12-13] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0 [2021-12-13] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2588162779-3066448854-3995751850-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-12-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============


==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2588162779-3066448854-3995751850-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{205D0F68-7FA9-47C2-B2FD-28D332B50B0C}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{82A36CAB-C6A3-4CCA-8CBF-F53423686B85}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{DBDB09C7-A541-4AA2-AB0D-B33DA9CADD3D}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{C6D297FE-1CA9-4654-8C17-621B34AEEDCE}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{529D8979-9A6B-429D-9671-539C04C8B92C}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{171CA98C-8CF9-4E91-9FB5-921DD8B60424}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{30109B02-D6D2-483E-8255-8912CFC071F6}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{FF065F4E-1BD0-4892-AD39-54E55B3FB9F9}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{0647AF9C-0EC3-4F63-85D3-D9F542241266}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2BAA84D2-709C-4CBC-9BB2-9FECFD974B09}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{984C6AA4-3DEA-4F9F-9AB3-E204EC1EA857}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BC042A92-908D-4AC1-88B4-B64AF43CAA32}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B2743D5F-B442-49E7-AE01-91AF9F664B37}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{181159F4-9BD9-412C-8CAD-ECEA9A65ABE4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1B71D8EC-A395-4383-B1E3-DE15C09DD07E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5284B957-5C06-4CC3-81C0-1FAD0525A546}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6CAA1A1A-9777-441A-8E6C-E95514EDAAE3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0F62739F-C589-4F40-B39D-E811815943AE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3936AB5A-726B-4BC5-9378-3842280BF7AA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{540C3849-BF01-44EB-8462-668914DED6CD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E8DD0296-0AC0-4CEC-87FE-89A7AF559C6A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{34F9DFC2-1926-44FA-984E-16B2B96A5F95}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{A773E81B-9FDB-489D-8B74-609B2B288685}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)

==================== Restore Points =========================

23-12-2021 19:00:32 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/30/2021 01:36:47 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/30/2021 01:21:56 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/23/2021 05:53:29 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/17/2021 07:09:03 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/17/2021 07:02:59 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/17/2021 06:30:10 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/17/2021 06:14:01 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/17/2021 06:08:45 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (12/31/2021 10:14:17 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (12/31/2021 08:05:09 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (12/30/2021 09:59:55 AM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.

Error: (12/28/2021 08:00:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-90CPJ12)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/28/2021 11:41:38 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (12/27/2021 06:27:00 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.

Error: (12/27/2021 06:26:58 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.

Error: (12/27/2021 09:55:55 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4


Windows Defender:
================
Date: 2021-06-23 08:26:02
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3B76A466-535A-4F9B-844A-8BCC7036CD57}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-06-22 18:22:45
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5C6A7769-9DCC-46D9-AD12-792567B574B6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-06-22 15:46:25
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8035FD1C-E87C-4446-90F5-BD1D7A8F8062}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\NETWORK SERVICE

Date: 2021-03-31 13:53:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {240E1F03-A797-40F6-BCDE-587E6E10736A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-03-31 13:47:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {324F3EBF-BD2A-4D7F-85B1-F94AEB4BAF52}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2021-06-22 15:28:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.333.1687.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17900.7
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

Date: 2021-06-22 15:28:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.333.1687.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17900.7
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

Date: 2021-03-31 12:47:18
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.333.1047.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17900.7
Kód chyby: 0x80070050
Popis chyby: Soubor existuje.

CodeIntegrity:
===============
Date: 2021-12-28 16:23:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-12-28 11:39:07
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: Dell Inc. A12 08/07/2013
Motherboard: Dell Inc. 0VP63H
Processor: Intel(R) Core(TM) i5-3340M CPU @ 2.70GHz
Percentage of memory in use: 56%
Total physical RAM: 8065.06 MB
Available physical RAM: 3507.45 MB
Total Virtual: 9345.06 MB
Available Virtual: 4527.58 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.54 GB) (Free:255.24 GB) NTFS
Drive d: (Červená) (Removable) (Total:7.25 GB) (Free:7.19 GB) NTFS

\\?\Volume{05250909-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{05250909-0000-0000-0000-10664a000000}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 05250909)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=506 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 7.3 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=7.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Re: hacknutý facebook mé drahé

Napsal: 01 led 2022 11:22
od Rudy
Ahoj!
Spusť ADWCleaner:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: hacknutý facebook mé drahé

Napsal: 01 led 2022 12:30
od cernohous13
# -------------------------------
# Malwarebytes AdwCleaner 8.3.1.0
# -------------------------------
# Build: 11-18-2021
# Database: 2021-12-02.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 01-01-2022
# Duration: 00:00:05
# OS: Windows 10 Pro
# Scanned: 32007
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [1405 octets] - [09/11/2021 09:03:26]
AdwCleaner[S01].txt - [1466 octets] - [01/01/2022 10:04:36]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########

Re: hacknutý facebook mé drahé

Napsal: 01 led 2022 17:40
od Rudy
Tohle je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {0B622150-8DC5-47FF-847E-CBF458ECDAFC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-08-09] (Google Inc -> Google LLC)
Task: {A0188118-1168-450A-B791-E920016D791C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-08-09] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\Windows\system32\Drivers\asw58b5f668d355708a.tmp
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\Drivers\asw54289336bca5df8a.tmp
C:\Windows\system32\Drivers\asw859ffd1a8dd8b44e.tmp
C:\Windows\system32\Drivers\asw41383aa6214d22b6.tmp
C:\Windows\system32\Drivers\asweb68b160d4bb426f.tmp
C:\Windows\system32\Drivers\asw39c65dd8e5de1a56.tmp
C:\Windows\system32\Drivers\aswae5be940dd512c9a.tmp
C:\Windows\system32\Drivers\asw83351fef0be57dab.tmp
C:\Windows\system32\Drivers\asw9b828d6500657115.tmp
C:\Windows\system32\Drivers\asw3b0661aa43711950.tmp
C:\Windows\system32\Drivers\asw99dcbcaf64feb841.tmp
C:\Windows\system32\Drivers\asw4e36f2c42334ffab.tmp
C:\Windows\system32\Drivers\aswfb0c289a37363176.tmp
C:\Windows\system32\Drivers\asw38ebb78d7afa5e03.tmp
C:\Users\dell\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

EmptyTemp:
End
Uložte do C:\Users\dell\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: hacknutý facebook mé drahé

Napsal: 02 led 2022 15:07
od cernohous13
Fix result of Farbar Recovery Scan Tool (x64) Version: 27-12-2021
Ran by dell (01-01-2022 19:48:46) Run:1
Running from C:\Users\dell\Downloads
Loaded Profiles: dell
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {0B622150-8DC5-47FF-847E-CBF458ECDAFC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-08-09] (Google Inc -> Google LLC)
Task: {A0188118-1168-450A-B791-E920016D791C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-08-09] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\Windows\system32\Drivers\asw58b5f668d355708a.tmp
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\Drivers\asw54289336bca5df8a.tmp
C:\Windows\system32\Drivers\asw859ffd1a8dd8b44e.tmp
C:\Windows\system32\Drivers\asw41383aa6214d22b6.tmp
C:\Windows\system32\Drivers\asweb68b160d4bb426f.tmp
C:\Windows\system32\Drivers\asw39c65dd8e5de1a56.tmp
C:\Windows\system32\Drivers\aswae5be940dd512c9a.tmp
C:\Windows\system32\Drivers\asw83351fef0be57dab.tmp
C:\Windows\system32\Drivers\asw9b828d6500657115.tmp
C:\Windows\system32\Drivers\asw3b0661aa43711950.tmp
C:\Windows\system32\Drivers\asw99dcbcaf64feb841.tmp
C:\Windows\system32\Drivers\asw4e36f2c42334ffab.tmp
C:\Windows\system32\Drivers\aswfb0c289a37363176.tmp
C:\Windows\system32\Drivers\asw38ebb78d7afa5e03.tmp
C:\Users\dell\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0B622150-8DC5-47FF-847E-CBF458ECDAFC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B622150-8DC5-47FF-847E-CBF458ECDAFC}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A0188118-1168-450A-B791-E920016D791C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A0188118-1168-450A-B791-E920016D791C}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
C:\Windows\system32\Drivers\asw58b5f668d355708a.tmp => moved successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Windows\system32\Drivers\asw54289336bca5df8a.tmp => moved successfully
C:\Windows\system32\Drivers\asw859ffd1a8dd8b44e.tmp => moved successfully
C:\Windows\system32\Drivers\asw41383aa6214d22b6.tmp => moved successfully
C:\Windows\system32\Drivers\asweb68b160d4bb426f.tmp => moved successfully
C:\Windows\system32\Drivers\asw39c65dd8e5de1a56.tmp => moved successfully
C:\Windows\system32\Drivers\aswae5be940dd512c9a.tmp => moved successfully
C:\Windows\system32\Drivers\asw83351fef0be57dab.tmp => moved successfully
C:\Windows\system32\Drivers\asw9b828d6500657115.tmp => moved successfully
C:\Windows\system32\Drivers\asw3b0661aa43711950.tmp => moved successfully
C:\Windows\system32\Drivers\asw99dcbcaf64feb841.tmp => moved successfully
C:\Windows\system32\Drivers\asw4e36f2c42334ffab.tmp => moved successfully
C:\Windows\system32\Drivers\aswfb0c289a37363176.tmp => moved successfully
C:\Windows\system32\Drivers\asw38ebb78d7afa5e03.tmp => moved successfully
C:\Users\dell\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 113551670 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 0 B
Edge => 101376 B
Chrome => 9807800 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 38322 B
NetworkService => 38322 B
dell => 1375346 B

RecycleBin => 270532789 B
EmptyTemp: => 377.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:49:03 ====

Re: hacknutý facebook mé drahé

Napsal: 02 led 2022 15:46
od Rudy
Smazáno, log je již OK.

Re: hacknutý facebook mé drahé

Napsal: 02 led 2022 16:36
od cernohous13
Jinak nejsou mimořádné problémy :-) možná mezi křeslem a kláveskou :?:
Děkuji za kontrolu a přeji úspěšný boj s havětí

Klidný a šťastný rok 2022 tobě i tvé rodině :worship:

Re: hacknutý facebook mé drahé

Napsal: 02 led 2022 17:16
od Rudy
Ještě bych doporučil změnu hesla do FB. Tobě i tvým blízkým přeji do nového roku hodně zdraví a osobních úspěchů! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz