VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosim o kontolu pc

https://forum.viry.cz:443/viewtopic.php?t=159224

Stránka 1 z 1

prosim o kontolu pc

Napsal: 23 črc 2023 08:13
od jarek26
posielam log z rsit:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jarda at 2023-07-23 09:10:08
Microsoft Windows 8
System drive C: has 632 GB (91%) free of 698 GB
Total RAM: 3911 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:10:27, on 23.7.2023
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16453)
Boot mode: Normal

Running processes:
C:\Windows\System32\PrintDisp.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\ProgramData\BrightData\d71ae678248c6f808fef312e7563ca8a3655c744\brightdata.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Jarda.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Epson Stylus SX218] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGDE.EXE /FU "C:\Users\Jarda\AppData\Local\Temp\E_S4B6A.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - Startup: Apps.ico.lnk = C:\Users\Jarda\AppData\Local\ServiceHub\SecurityServiceHub.exe
O4 - Startup: desktop.ini.lnk = C:\Users\Jarda\AppData\Roaming\system32\svchost.exe
O8 - Extra context menu item: Stiahnuť s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stiahnuť s IDM všetky prepojenia - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll,C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: CCleaner Performance Optimizer Service (CCleanerPerformanceOptimizerService) - Piriform Software Ltd - C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Brightdata Service (win_formatfactory.pcfreetime.com) (luminati_net_updater_win_formatfactory_pcfreetime_com) - BrightData Ltd. (certified) - C:/Program Files (x86)/FormatFactory/net_updater64.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Printer Control - Unknown owner - C:\WINDOWS\system32\PrintCtrl.exe (file missing)
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: Windows Defender Service (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8411 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
dashost.exe {97cbbf9f-5618-400c-96f5d550e45b8b3d}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:/Program Files (x86)/FormatFactory/net_updater64.exe" --updater win_formatfactory.pcfreetime.com
C:\WINDOWS\system32\PrintCtrl.exe
C:\WINDOWS\system32\PrintDisp.exe /system
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\TiWorker.exe -Embedding
taskhostex.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Windows\System32\PrintDisp.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" /onboot
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\WINDOWS\system32\taskmgr.exe" /4
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Defender\MsMpEng.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\WINDOWS\system32\igfxext.exe -Embedding
C:\WINDOWS\system32\igfxsrvc.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\ProgramData\BrightData\d71ae678248c6f808fef312e7563ca8a3655c744\brightdata.exe --appid win_formatfactory.pcfreetime.com
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.0.1857084802\512763079" -parentBuildID 20230424110519 -prefsHandle 1248 -prefMapHandle 1240 -prefsLen 30396 -prefMapSize 243552 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {eab97deb-86d9-41b1-b99c-206f6c67fe69} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 1356 df74860 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.1.1415490653\2050210996" -parentBuildID 20230424110519 -prefsHandle 1648 -prefMapHandle 1644 -prefsLen 30441 -prefMapSize 243552 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {9e9fd127-5da5-4915-9c80-748fdb21e244} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 1660 ccfccf0 socket
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.2.444289144\319555387" -childID 1 -isForBrowser -prefsHandle 2260 -prefMapHandle 2204 -prefsLen 30529 -prefMapSize 243552 -jsInitHandle 1060 -jsInitLen 240056 -parentBuildID 20230424110519 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {248f432a-f2f0-4a2b-af10-a14466b8a209} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 2212 f7ab840 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.3.1756796662\1172901479" -childID 2 -isForBrowser -prefsHandle 3392 -prefMapHandle 3388 -prefsLen 35885 -prefMapSize 243552 -jsInitHandle 1060 -jsInitLen 240056 -parentBuildID 20230424110519 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {73efdf46-86d1-482c-b94e-b9a751ae2e5a} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 3404 16694110 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.11.1208090090\1886528600" -parentBuildID 20230424110519 -prefsHandle 3732 -prefMapHandle 5448 -prefsLen 36044 -prefMapSize 243552 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {98b3b387-835a-4449-9bcb-ea0b7e102036} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 3752 1b427ba0 rdd
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.12.1193827993\1466720318" -parentBuildID 20230424110519 -sandboxingKind 1 -prefsHandle 3696 -prefMapHandle 4036 -prefsLen 36044 -prefMapSize 243552 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {27da3be2-ff45-4c59-9c82-6fa183ea037f} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 3708 1bef5900 utility
C:\WINDOWS\system32\msiexec.exe /V
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.18.212162199\76880049" -childID 15 -isForBrowser -prefsHandle 4572 -prefMapHandle 8636 -prefsLen 30375 -prefMapSize 243552 -jsInitHandle 1060 -jsInitLen 240056 -parentBuildID 20230424110519 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {1c568b02-b9c6-45ec-9fac-99e033187cc3} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 8696 121cb560 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.19.1354209105\1508943561" -childID 16 -isForBrowser -prefsHandle 4632 -prefMapHandle 8904 -prefsLen 30375 -prefMapSize 243552 -jsInitHandle 1060 -jsInitLen 240056 -parentBuildID 20230424110519 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {8ac4ced9-254e-4dc9-8bdc-ed1eb33850ae} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 5412 121cb840 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.21.730669248\204196151" -childID 18 -isForBrowser -prefsHandle 8212 -prefMapHandle 4412 -prefsLen 30375 -prefMapSize 243552 -jsInitHandle 1060 -jsInitLen 240056 -parentBuildID 20230424110519 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {9c12c64f-1f7a-40f3-8e5b-afb7decdbfd3} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 8412 121cb6d0 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.22.254495818\33542830" -childID 19 -isForBrowser -prefsHandle 8836 -prefMapHandle 8824 -prefsLen 30375 -prefMapSize 243552 -jsInitHandle 1060 -jsInitLen 240056 -parentBuildID 20230424110519 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {424559bd-3c42-47ed-90ab-c0bcc1044a2a} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 8860 121cbc90 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2780.23.1460359407\720652513" -childID 20 -isForBrowser -prefsHandle 3948 -prefMapHandle 5000 -prefsLen 30375 -prefMapSize 243552 -jsInitHandle 1060 -jsInitLen 240056 -parentBuildID 20230424110519 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {cab40de2-15d1-4f43-a8f7-8a2e0b950414} 2780 "\\.\pipe\gecko-crash-server-pipe.2780" 8036 121cbe00 tab
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\WINDOWS\system32\RunDll32.exe" "C:\WINDOWS\system32\WerConCpl.dll", LaunchErcApp -queuereporting

"C:\Users\Jarda\Desktop\RSITx64.exe"
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\WINDOWS\tasks\CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "ec1e8efc-c92a-465e-b52d-c2a0602a9da2" --version "6.14.10584" --silent

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2021-11-09 672680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-01-25 66688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2021-11-09 475048]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
"PrintDisp"=C:\WINDOWS\system32\PrintDisp.exe [2022-06-29 609296]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2023-05-08 172016]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2023-05-08 399856]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2023-05-08 442352]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2023-07-12 41572768]
"Epson Stylus SX218"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGDE.EXE [2009-09-14 224768]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2023-04-05 5913600]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-05-09 111216]

C:\Users\Jarda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Apps.ico.lnk - C:\Users\Jarda\AppData\Local\ServiceHub\SecurityServiceHub.exe
desktop.ini.lnk - C:\Users\Jarda\AppData\Roaming\system32\svchost.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2023-05-08 442880]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2023-07-23 09:10:08 ----D---- C:\rsit
2023-07-23 09:09:16 ----SHD---- C:\$RECYCLE.BIN
2023-07-23 09:02:04 ----SD---- C:\ComboFix
2023-07-23 09:01:49 ----D---- C:\Qoobox
2023-07-23 09:00:38 ----D---- C:\WINDOWS\erdnt
2023-07-23 09:00:17 ----SD---- C:\32788R22FWJFW
2023-07-23 00:13:26 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2023-07-23 00:13:24 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2023-07-22 22:33:43 ----D---- C:\WINDOWS\system32\MRT
2023-07-22 21:18:34 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2023-07-22 21:18:34 ----A---- C:\WINDOWS\system32\crypt32.dll
2023-07-15 20:34:05 ----N---- C:\WINDOWS\SYSWOW64\MpSigStub.exe
2023-06-24 14:20:43 ----D---- C:\Users\Jarda\AppData\Roaming\TSMonitor

======List of files/folders modified in the last 1 month======

2023-07-23 09:10:24 ----D---- C:\Program Files\trend micro
2023-07-23 09:10:15 ----D---- C:\WINDOWS\Prefetch
2023-07-23 09:03:08 ----D---- C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-07-23 09:02:59 ----D---- C:\Windows
2023-07-23 09:02:54 ----D---- C:\Users\Jarda\AppData\Roaming\DMCache
2023-07-23 09:01:57 ----D---- C:\WINDOWS\Temp
2023-07-23 09:01:52 ----D---- C:\WINDOWS\system32\Drivers
2023-07-23 09:01:49 ----RD---- C:\WINDOWS\System32
2023-07-23 09:01:49 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-23 09:01:48 ----D---- C:\WINDOWS\Inf
2023-07-23 09:00:00 ----D---- C:\WINDOWS\system32\sru
2023-07-23 08:58:38 ----D---- C:\Program Files\CCleaner
2023-07-23 08:58:31 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2023-07-23 08:58:26 ----D---- C:\WINDOWS\system32\config
2023-07-23 08:58:25 ----D---- C:\WINDOWS\CbsTemp
2023-07-23 08:56:45 ----D---- C:\ProgramData\NVIDIA
2023-07-23 08:56:15 ----D---- C:\WINDOWS\WinSxS
2023-07-23 08:52:39 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2023-07-23 08:52:39 ----D---- C:\WINDOWS\SYSWOW64\en-US
2023-07-23 08:52:39 ----D---- C:\WINDOWS\SysWOW64
2023-07-23 08:52:39 ----D---- C:\WINDOWS\system32\sk-SK
2023-07-23 08:52:39 ----D---- C:\WINDOWS\system32\en-US
2023-07-23 08:48:10 ----D---- C:\WINDOWS\system32\catroot
2023-07-23 01:00:35 ----D---- C:\WINDOWS\system32\catroot2
2023-07-23 00:39:57 ----D---- C:\WINDOWS\system32\Tasks
2023-07-23 00:26:52 ----D---- C:\Program Files\Windows Defender
2023-07-23 00:26:49 ----D---- C:\Program Files (x86)\Windows Defender
2023-07-23 00:18:53 ----SD---- C:\ProgramData\Microsoft
2023-07-23 00:11:08 ----SHD---- C:\System Volume Information
2023-07-22 21:26:13 ----D---- C:\WINDOWS\Tasks
2023-07-22 21:08:07 ----D---- C:\Program Files (x86)\FormatFactory
2023-07-15 17:36:38 ----HD---- C:\Program Files\WindowsApps
2023-07-15 17:36:38 ----D---- C:\WINDOWS\AUInstallAgent
2023-07-15 17:36:32 ----D---- C:\WINDOWS\system32\DriverStore
2023-07-02 20:29:07 ----D---- C:\WINDOWS\Microsoft.NET
2023-07-02 19:31:54 ----D---- C:\WINDOWS\system32\NDF
2023-06-30 21:46:04 ----D---- C:\Users\Jarda\AppData\Roaming\MPC-HC
2023-06-30 21:05:54 ----D---- C:\Users\Jarda\AppData\Roaming\IDM
2023-06-30 20:42:12 ----SHD---- C:\WINDOWS\Installer
2023-06-30 20:42:11 ----SHD---- C:\Config.Msi
2023-06-30 20:42:11 ----HD---- C:\ProgramData
2023-06-30 20:42:11 ----D---- C:\Program Files\Common Files
2023-06-30 20:42:11 ----D---- C:\Program Files (x86)\Common Files
2023-06-30 20:41:53 ----RD---- C:\Program Files
2023-06-30 20:36:34 ----D---- C:\Users\Jarda\AppData\Roaming\IObit
2023-06-30 20:36:34 ----D---- C:\ProgramData\IObit
2023-06-30 20:36:29 ----D---- C:\Program Files (x86)\IObit
2023-06-30 20:36:23 ----D---- C:\ProgramData\ProductData
2023-06-30 20:35:21 ----D---- C:\Program Files (x86)
2023-06-24 14:21:58 ----D---- C:\WINDOWS\SoftwareDistribution

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2023-02-15 171512]
R3 AthBTPort;@oem18.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
R3 athr;@oem40.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athrx.sys [2023-05-08 4137472]
R3 b57xdbd;@oem7.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem7.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2023-05-08 59088]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2023-05-08 82128]
R3 BTATH_A2DP;@oem17.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
R3 btath_avdt;@oem17.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
R3 BTATH_BUS;@oem14.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-01-25 34384]
R3 BTATH_HCRP;@oem20.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
R3 BTATH_LWFLT;@oem22.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
R3 BTATH_RCP;@oem24.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2023-05-08 600728]
R3 BthEnum;@tdibth.inf,%BthEnum.DisplayName%;Bluetooth Enumerator Service; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2012-11-06 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2012-11-06 74752]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2023-05-08 5358016]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 k57nd60a;@oem41.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2023-05-08 458960]
R3 MEIx64;@oem42.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2023-05-08 203896]
R3 MpKsl061c334c;MpKsl061c334c; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DD06681C-866C-428E-A2D8-521CE6E4D8F9}\MpKslDrv.sys [2023-07-23 50424]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2023-05-08 17371168]
R3 Ps2Kb2Hid;@oem10.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-05-09 26736]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2012-07-26 156672]
R3 SynTP;@oem12.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-11-29 464184]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2012-09-20 210304]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2023-05-08 48032]
S3 AmUStor;@oem48.inf,%SERVICE_NAME%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2023-05-08 117728]
S3 AscFileFilter;AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscFileFilter.sys []
S3 AscRegistryFilter;AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscRegistryFilter.sys []
S3 BCM43XX;@netbc63a.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2012-06-02 5139968]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2012-11-06 1171968]
S3 cpuz154;cpuz154; \??\C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys []
S3 dg_ssudbus;@oem27.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2021-10-08 140920]
S3 iobit_monitor_server2021;iobit_monitor_server2021; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys []
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-11-29 31032]
S3 ssudmdm;@oem28.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2021-10-08 167544]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2012-07-26 121856]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2012-10-11 43008]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\Jarda\AppData\Local\Temp\tmpA91D.tmp []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2013-02-20 2615368]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 luminati_net_updater_win_formatfactory_pcfreetime_com;Brightdata Service (win_formatfactory.pcfreetime.com); C:/Program Files (x86)/FormatFactory/net_updater64.exe --updater win_formatfactory.pcfreetime.com []
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-03-24 464272]
R2 Printer Control;Printer Control; C:\WINDOWS\system32\PrintCtrl.exe [2015-10-01 130184]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-05-09 96880]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2013-03-16 662088]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-21 1260320]
S3 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
S3 CCleanerPerformanceOptimizerService;CCleaner Performance Optimizer Service; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [2023-07-12 1074080]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2023-05-08 279024]
S3 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 NAUpdate;@c:\Program Files (x86)\Nero\Update\NASvc.exe,-200; c:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]

-----------------EOF-----------------

Re: prosim o kontolu pc

Napsal: 23 črc 2023 19:31
od Rudy
Zdravím!
Poprosím o lgy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . RSIT není plně kompatibilní se souč. 64b. systémy. Děkuji.

Re: prosim o kontolu pc

Napsal: 05 srp 2023 22:33
od jarek26
dobry vecer,tak posielam tie logy frst+addition.a hlavne mi nefunguju aktualizacie windows a aktualizacie windows defender a sluzby sa stale zastavuje.
Dakujem
Logs.rar
(20.64 KiB) Staženo 101 x
https://forum.viry.cz/download/file.php ... w&id=22047

Re: prosim o kontolu pc

Napsal: 06 srp 2023 10:40
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
Task: {E1E2858E-5A6D-4443-B163-1B0868AE4DF6} - System32\Tasks\ASC_PerformanceMonitor => "C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task (No File)
Task: {5DC8F397-8976-45E3-B300-2DA945ECC770} - System32\Tasks\ASC_SkipUac_Jarda => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe" /SkipUac (No File)
Task: {92FE0EB4-EDCE-490F-B3E6-96AF627D5CFF} - System32\Tasks\iolo\Multi Product Notification Service => C:\Program Files\iolo technologies\System Mechanic\mpns.exe (No File)
FF ProfilePath: C:\Users\Jarda\AppData\Roaming\Mozilla\Firefox\Profiles\bmzulyvj.default-release [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Jarda\AppData\Roaming\Mozilla\Firefox\Profiles\u6x8lsfc.default [not found] <==== ATTENTION
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin HKU\S-1-5-21-2214875189-3760211905-2910999632-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Jarda\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\DP45977C.lfl
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
C:\WINDOWS\system32\{86F549EB-A66B-4D6C-958D-CDDD66410751}.bat
C:\Users\Jarda\AppData\Roaming\2457fe3357cbf1220231e8917326f70f
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [Atheros] -> [CC]{B8952421-0E55-400B-94A6-FA858FC0A39F} => -> No File
ContextMenuHandlers1: [FormatFactoryShell] -> [CC]{A3888923-CFD3-4A6B-89BF-08E6B95716E8} => -> No File
ContextMenuHandlers3: [FTShellContext] -> [CC]{AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
SearchScopes: HKU\S-1-5-21-2214875189-3760211905-2910999632-1002 -> DefaultScope {42F02A82-1141-4AF7-8599-D7C2407F4066} URL =
SearchScopes: HKU\S-1-5-21-2214875189-3760211905-2910999632-1002 -> {42F02A82-1141-4AF7-8599-D7C2407F4066} URL =

Hpsts:
EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: prosim o kontolu pc

Napsal: 06 srp 2023 12:24
od jarek26
dobry den,posielm fixlog

Fix result of Farbar Recovery Scan Tool (x64) Version: 01-08-2023
Ran by Jarda (06-08-2023 13:10:40) Run:1
Running from C:\Users\Jarda\Desktop
Loaded Profiles: Jarda & Administrator
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Task: {E1E2858E-5A6D-4443-B163-1B0868AE4DF6} - System32\Tasks\ASC_PerformanceMonitor => "C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task (No File)
Task: {5DC8F397-8976-45E3-B300-2DA945ECC770} - System32\Tasks\ASC_SkipUac_Jarda => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe" /SkipUac (No File)
Task: {92FE0EB4-EDCE-490F-B3E6-96AF627D5CFF} - System32\Tasks\iolo\Multi Product Notification Service => C:\Program Files\iolo technologies\System Mechanic\mpns.exe (No File)
FF ProfilePath: C:\Users\Jarda\AppData\Roaming\Mozilla\Firefox\Profiles\bmzulyvj.default-release [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Jarda\AppData\Roaming\Mozilla\Firefox\Profiles\u6x8lsfc.default [not found] <==== ATTENTION
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin HKU\S-1-5-21-2214875189-3760211905-2910999632-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Jarda\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\DP45977C.lfl
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
C:\WINDOWS\system32\{86F549EB-A66B-4D6C-958D-CDDD66410751}.bat
C:\Users\Jarda\AppData\Roaming\2457fe3357cbf1220231e8917326f70f
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [Atheros] -> [CC]{B8952421-0E55-400B-94A6-FA858FC0A39F} => -> No File
ContextMenuHandlers1: [FormatFactoryShell] -> [CC]{A3888923-CFD3-4A6B-89BF-08E6B95716E8} => -> No File
ContextMenuHandlers3: [FTShellContext] -> [CC]{AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
SearchScopes: HKU\S-1-5-21-2214875189-3760211905-2910999632-1002 -> DefaultScope {42F02A82-1141-4AF7-8599-D7C2407F4066} URL =
SearchScopes: HKU\S-1-5-21-2214875189-3760211905-2910999632-1002 -> {42F02A82-1141-4AF7-8599-D7C2407F4066} URL =

Hpsts:
EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E1E2858E-5A6D-4443-B163-1B0868AE4DF6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E1E2858E-5A6D-4443-B163-1B0868AE4DF6}" => removed successfully
C:\WINDOWS\System32\Tasks\ASC_PerformanceMonitor => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC_PerformanceMonitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5DC8F397-8976-45E3-B300-2DA945ECC770}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5DC8F397-8976-45E3-B300-2DA945ECC770}" => removed successfully
C:\WINDOWS\System32\Tasks\ASC_SkipUac_Jarda => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC_SkipUac_Jarda" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{92FE0EB4-EDCE-490F-B3E6-96AF627D5CFF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92FE0EB4-EDCE-490F-B3E6-96AF627D5CFF}" => removed successfully
C:\WINDOWS\System32\Tasks\iolo\Multi Product Notification Service => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iolo\Multi Product Notification Service" => removed successfully
C:\Users\Jarda\AppData\Roaming\Mozilla\Firefox\Profiles\bmzulyvj.default-release => path removed successfully
C:\Users\Jarda\AppData\Roaming\Mozilla\Firefox\Profiles\u6x8lsfc.default => path removed successfully
"HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com" => removed successfully
HKU\S-1-5-21-2214875189-3760211905-2910999632-1002\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0 => removed successfully
"C:\Users\Jarda\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll" => not found
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat => moved successfully
C:\WINDOWS\system32\{86F549EB-A66B-4D6C-958D-CDDD66410751}.bat => moved successfully
C:\Users\Jarda\AppData\Roaming\2457fe3357cbf1220231e8917326f70f => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => subkey with invalid name -> removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => subkey with invalid name -> removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => subkey with invalid name -> removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Atheros => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\FormatFactoryShell => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\FTShellContext => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
"HKU\S-1-5-21-2214875189-3760211905-2910999632-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2214875189-3760211905-2910999632-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{42F02A82-1141-4AF7-8599-D7C2407F4066} => removed successfully
Hpsts: => Error: No automatic fix found for this entry.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13894167 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 7051488 B
Windows/system/drivers => 6704868 B
Edge => 0 B
Firefox => 1274838074 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 128 B
NetworkService => 128 B
UpdatusUser => 128 B
Jarda => 7624232 B
Administrator => 7636409 B

RecycleBin => 0 B
EmptyTemp: => 1.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 13:15:54 ====

dakujem a dalej

Re: prosim o kontolu pc

Napsal: 06 srp 2023 13:17
od Rudy
Bylo smazáno. Log by již měl být OK.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz