Preventivka

Zpráva

dolfik · #1 Příspěvek od **dolfik** » 15 bře 2024 23:24

Tento log mazem, dole je dalsi FRST . Robil som zmeny tak aj ten log som robil na novo.

#2 Příspěvek od **Rudy** » 16 bře 2024 11:06

Zdravím!
Pro kompletní kontrolu ještě potřebuji vidět log Additio. Je v souboru addition.txt v C:\Users\manas\Downloads . Děkuji.

dolfik · #3 Příspěvek od **dolfik** » 17 bře 2024 03:25

Microsoft Windows 11 Home Version 23H2 22631.3296 (X64) (2023-01-19 01:43:46)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1194814-3309633345-4174763381-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1194814-3309633345-4174763381-503 - Limited - Disabled)
Guest (S-1-5-21-1194814-3309633345-4174763381-501 - Limited - Disabled)
manas (S-1-5-21-1194814-3309633345-4174763381-1001 - Administrator - Enabled) => C:\Users\manas
WDAGUtilityAccount (S-1-5-21-1194814-3309633345-4174763381-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AC: Valhalla CZ v3.2 (HKLM-x32\...\AC: Valhalla CZ) (Version: 3.2 - Squiee)
Adobe Flash Player ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 9.0.124.0 - Adobe Systems Incorporated)
AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1634.4 - AVG Technologies) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 11.1.0.2041 - Disc Soft Ltd)
DZSALauncher version 0.0.5.3 (HKLM-x32\...\DZSALauncher_is1) (Version: 0.0.5.3 - Maca134)
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
ESET Security (HKLM\...\{D49B87B7-D6F4-43F9-8CC5-097B0715F6D3}) (Version: 17.0.16.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 122.0.6261.129 - Google LLC)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.17328.20162 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 122.0.2365.92 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 122.0.2365.92 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.040.0225.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 123.0.1 (x64 en-US)) (Version: 123.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 123.0.1 - Mozilla)
NVIDIA Ovladače grafiky 532.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 532.09 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17328.20142 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17328.20108 - Microsoft Corporation) Hidden
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Seznam Software (HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\SeznamInstall) (Version: 2.1.35 - Seznam.cz)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.6.1 - TeamSpeak Systems GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 147.0.10965 - Ubisoft)
UrbanVPN (HKLM\...\{4C6287D2-C06D-4610-870B-CE16D9649E5B}) (Version: 2.3.0.1 - Urban Security) Hidden
UrbanVPN (HKLM\...\UrbanVPN 2.3.0.1) (Version: 2.3.0.1 - Urban Security)
uTorrent Web (HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\utweb) (Version: 1.4.0 - BitTorrent Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Wargaming.net Game Center (HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Wargaming.net Game Center) (Version: 24.0.0.5034 - Wargaming.net)
World of Tanks EU (HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\2314027414) (Version: - Wargaming.net)

Packages:
=========

AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5390.0_x64__8j3eq9eme6ctt [2024-03-13] (INTEL CORP) [Startup Task]
AppUp.ThunderboltControlCenter -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.37.0_x64__8j3eq9eme6ctt [2023-10-14] (INTEL CORP)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\dellinc.dellsupportassistforpcs_3.13.5.0_x64__htrsf667h5kn2 [2023-01-18] (Dell Inc)
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1100.416.0_x64__8wekyb3d8bbwe [2024-02-22] (Microsoft Corporation)
ESET Context Menu -> C:\Program Files\ESET\ESET Security [2024-03-16] (Sparse Package)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2024-03-03] (INTEL CORP)
Killer Intelligence Center -> C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_3.1423.712.0_x64__rh07ty8m5nkag [2023-10-14] (INTEL CORP) [Startup Task]
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_23335.232.2637.4844_x64__8wekyb3d8bbwe [2024-02-02] (Microsoft) [Startup Task]
Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-03-13] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24012.117.0_x64__cw5n1h2txyewy [2024-03-16] (Microsoft Windows) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-11] (NVIDIA Corp.)
Power Automate -> C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_11.2403.237.0_x64__8wekyb3d8bbwe [2024-03-15] (Microsoft Corporation) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.39.279.0_x64__dt26b99r8h8gj [2023-01-18] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0 [2024-03-13] (Spotify AB) [Startup Task]
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-03-13] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-02-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-02-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncShell64.dll [2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvdm.inf_amd64_bbda7de71680dcde\nvshext.dll [2023-06-28] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-12-12] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2024-03-16 00:44 - 2024-03-16 00:44 - 005855744 _____ (ESET, spol. s r.o. -> ESET) [File not signed] C:\Program Files\ESET\ESET Security\Modules\em045_64\1087\em045_64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\sharepoint.com -> hxxps://topcogroup-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2023-01-19 02:28 - 2024-03-15 23:50 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\manas\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\slovan.jpg
DNS Servers: 10.38.0.4 - 10.38.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\StartupApproved\Run: => "utweb"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{4A00DABC-9833-4C78-A2B6-F85D1A1CC70E}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{02D0CFD2-CDCD-4A2A-866D-F63CFC2E5F00}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2B33E974-1A94-434E-B8A2-11F29DBA6C3A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CD63DCD8-214B-49C0-B9CA-B9F8111850F5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4C614A11-A44C-49BD-9AED-5B31DFB77189}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4AE93CE7-22A3-48C5-B111-D92BF75CA205}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{25B037EF-989F-439E-9819-8F80670D9150}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AA154ABF-3BC5-4924-8BC2-63D3E4901F2D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BCC7B16F-4024-4688-9DA4-E2B4E93239E0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EF4FD6E3-9464-4129-B252-C96C76177389}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23335.232.2637.4844_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4469FC04-6A5E-4ED4-AA20-24D9F5A89B1A}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23335.232.2637.4844_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{76574943-63FD-443C-8C60-2C9B9A858236}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed Valhalla\ACValhalla.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{AF43BC1F-C9E4-4FC5-B545-3847F4880DBE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed Valhalla\ACValhalla.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{FC8076C3-6775-4842-AD9A-9BFEDC45872F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7F2FE96C-F316-424A-AA01-78BFD257B4E9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{51623F10-4B15-48B7-B0C7-7A7CB49ACF59}] => (Allow) C:\Program Files\UrbanVPN\bin\urbanvpn.exe (Urban Cyber Security Inc. -> Urban Cyber Security Inc.)
FirewallRules: [{3B57B284-891D-4D78-AFF6-4A575517935F}] => (Allow) C:\WINDOWS\SysWOW64\TCPSVCS.EXE (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{A301CCE9-B820-487F-8D28-F147E066C233}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.114.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D4AB5F21-45C6-400E-B2C7-ADFCBA90757E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.114.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{30A89F27-840D-4539-ADA6-9270D712BFB6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.114.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0EC5B58F-0242-43CC-903F-097954F15EE2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.114.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{16D0965B-5497-48F7-9BDD-EFF2B9D99CEC}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24047.202.2704.38_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1EE9C7D4-35FC-4030-8FE1-0903EAE79442}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24047.202.2704.38_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{852BF031-C555-47EF-A45B-D06C410468DB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{33367B15-F96C-4361-9FB7-D09C3F076D03}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DF4AF3F7-F9FF-45FD-AE0E-29D1A7DB44F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C8062882-16ED-455C-B46F-9AB7554C06D1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2726E707-982C-4F7E-B46F-12FB66FEADB1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{56C9194C-6E93-4983-8844-F50FB26156DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1C32D373-B89E-4811-B171-1682815DEF6E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3D8B9D60-1C2C-4198-887C-2D9C93B5BFBE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{99E327C1-8A30-41D8-BEDB-35B740F25F37}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F9173EC5-3665-4210-8A79-75251CD6D5B8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1039.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A355ED1E-5719-478C-AE1B-EE4F71D9AD42}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{D58C0429-A322-47A5-BFCE-8BBC217D01A0}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.92\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:475.94 GB) (Free:31.88 GB) (7%)

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (03/16/2024 08:19:51 PM) (Source: Application Error) (EventID: 1000) (User: MAJKY)
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.22621.3296, časové razítko: 0x48d2cb32
Název chybujícího modulu: FileExplorerExtensions.dll, verze: 624.1001.0.0, časové razítko: 0x659f1b05
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000c1ca4
ID chybujícího procesu: 0x0x27ec
Čas spuštění chybující aplikace: 0x0x1da777a2421b9fe
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy\FileExplorerExtensions.dll
ID zprávy: a5f20bf0-c994-49e1-a711-0f9f6a86483b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/16/2024 08:13:31 AM) (Source: Firefox Default Browser Agent) (EventID: 1155) (User: )
Description: Event-ID 1155

Error: (03/16/2024 04:11:19 AM) (Source: Application Error) (EventID: 1000) (User: MAJKY)
Description: Název chybující aplikace: dptf_helper.exe, verze: 8.7.10600.20700, časové razítko: 0x604bfbdc
Název chybujícího modulu: dptf_helper.exe, verze: 8.7.10600.20700, časové razítko: 0x604bfbdc
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000002794
ID chybujícího procesu: 0x0x2484
Čas spuštění chybující aplikace: 0x0x1da774593260eed
Cesta k chybující aplikaci: C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\dptf_helper.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\dptf_helper.exe
ID zprávy: c7a881db-7765-4c0b-a608-760f0a3ab90f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/16/2024 01:00:12 AM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: KAPS.exe, verze: 3.1423.712.2, časové razítko: 0x64ae3980
Název chybujícího modulu: KAPS.exe, verze: 3.1423.712.2, časové razítko: 0x64ae3980
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ecd40
ID chybujícího procesu: 0x0x1f1c
Čas spuštění chybující aplikace: 0x0x1da77320a5e424f
Cesta k chybující aplikaci: C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPS.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPS.exe
ID zprávy: e603ed7f-cc5a-4f5e-873b-1ad462f909e6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/16/2024 01:00:09 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (03/16/2024 01:00:09 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (03/16/2024 12:52:42 AM) (Source: Microsoft Security Client) (EventID: 3002) (User: )
Description: Event-ID 3002

Error: (03/16/2024 12:52:42 AM) (Source: Microsoft Security Client) (EventID: 2002) (User: )
Description: Event-ID 2002

System errors:
=============
Error: (03/16/2024 08:21:14 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Intel(R) Audio Service skončila s následující chybou specifickou pro službu:
Operace byla dokončena úspěšně.

Error: (03/16/2024 08:20:24 PM) (Source: DCOM) (EventID: 10010) (User: MAJKY)
Description: Server {F37369D9-1C22-40A0-A997-0B4D5F7B6637} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/16/2024 08:20:24 PM) (Source: DCOM) (EventID: 10010) (User: MAJKY)
Description: Server {F37369D9-1C22-40A0-A997-0B4D5F7B6637} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/16/2024 08:20:24 PM) (Source: DCOM) (EventID: 10010) (User: MAJKY)
Description: Server {F37369D9-1C22-40A0-A997-0B4D5F7B6637} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/16/2024 08:20:24 PM) (Source: DCOM) (EventID: 10010) (User: MAJKY)
Description: Server {F37369D9-1C22-40A0-A997-0B4D5F7B6637} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/16/2024 08:20:24 PM) (Source: DCOM) (EventID: 10010) (User: MAJKY)
Description: Server {F37369D9-1C22-40A0-A997-0B4D5F7B6637} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/16/2024 08:20:23 PM) (Source: DCOM) (EventID: 10010) (User: MAJKY)
Description: Server {F37369D9-1C22-40A0-A997-0B4D5F7B6637} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/16/2024 08:20:23 PM) (Source: DCOM) (EventID: 10010) (User: MAJKY)
Description: Server {F37369D9-1C22-40A0-A997-0B4D5F7B6637} se v daném časovém limitu neregistroval u služby DCOM.

Windows Defender:
================
Date: 2023-02-08 15:20:37
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/uTorrent_BundleInstaller
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\manas\Downloads\utweb_installer.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.381.3303.0, AS: 1.381.3303.0, NIS: 1.381.3303.0
Verze modulu: AM: 1.1.19900.2, NIS: 1.1.19900.2

Date: 2023-02-08 15:19:07
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/uTorrent_BundleInstaller
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\manas\Downloads\utweb_installer.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: majky\manas
Název procesu: C:\Users\manas\AppData\Local\Temp\is-SCN78.tmp\utweb_installer.tmp
Verze bezpečnostních informací: AV: 1.381.3303.0, AS: 1.381.3303.0, NIS: 1.381.3303.0
Verze modulu: AM: 1.1.19900.2, NIS: 1.1.19900.2

Date: 2023-02-08 15:19:05
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/uTorrent_BundleInstaller
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\manas\Downloads\utweb_installer.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: majky\manas
Název procesu: C:\Users\manas\Downloads\utweb_installer.exe
Verze bezpečnostních informací: AV: 1.381.3303.0, AS: 1.381.3303.0, NIS: 1.381.3303.0
Verze modulu: AM: 1.1.19900.2, NIS: 1.1.19900.2

Date: 2023-02-08 15:19:04
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/uTorrent_BundleInstaller
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\manas\Downloads\utweb_installer.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: majky\manas
Název procesu: C:\Users\manas\Downloads\utweb_installer.exe
Verze bezpečnostních informací: AV: 1.381.3303.0, AS: 1.381.3303.0, NIS: 1.381.3303.0
Verze modulu: AM: 1.1.19900.2, NIS: 1.1.19900.2

Date: 2023-02-08 15:19:02
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/uTorrent_BundleInstaller
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\manas\Downloads\utweb_installer.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: AV: 1.381.3303.0, AS: 1.381.3303.0, NIS: 1.381.3303.0
Verze modulu: AM: 1.1.19900.2, NIS: 1.1.19900.2
Event[0]

Date: 2023-03-03 13:13:01
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.383.899.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20000.2
Kód chyby: 0x80070070
Popis chyby: Na disku není dost místa.

Date: 2023-03-03 13:13:01
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.383.899.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20000.2
Kód chyby: 0x80070070
Popis chyby: Na disku není dost místa.

Date: 2023-03-03 00:13:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.383.899.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20000.2
Kód chyby: 0x80070070
Popis chyby: Na disku není dost místa.

Date: 2023-03-03 00:13:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.383.899.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20000.2
Kód chyby: 0x80070070
Popis chyby: Na disku není dost místa.

Date: 2023-02-25 13:40:46
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.383.602.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20000.2
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.

CodeIntegrity:
===============
Date: 2024-03-17 02:48:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2024-03-17 01:48:18
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: Dell Inc. 1.30.0 12/13/2023
Motherboard: Dell Inc. 0TTHVM
Processor: Intel(R) Core(TM) i7-10750H CPU @ 2.60GHz
Percentage of memory in use: 58%
Total physical RAM: 16145.69 MB
Available physical RAM: 6771.61 MB
Total Virtual: 24849.69 MB
Available Virtual: 11487.75 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:475.94 GB) (Free:31.88 GB) (Model: BC511 NVMe SK hynix 512GB) (Protected) NTFS

\\?\Volume{a17a4f17-3a1c-48cf-bee1-23f7a70353fa}\ () (Fixed) (Total:0.89 GB) (Free:0.08 GB) NTFS
\\?\Volume{34b82670-eb7b-4d75-b066-75ec3211b269}\ () (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

dolfik · #4 Příspěvek od **dolfik** » 17 bře 2024 03:32

Davam tu este raz FRST, kedže som vymenil AvG za Eset ...

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.03.2024
Ran by manas (administrator) on MAJKY (Dell Inc. G7 7500) (17-03-2024 03:20:23)
Running from C:\Users\manas\Downloads\FRST64.exe
Loaded Profiles: manas
Platform: Microsoft Windows 11 Home Version 23H2 22631.3296 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(A-Volute SAS -> A-Volute) C:\Windows\System32\NhNotifSys.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(C:\Program Files\WindowsApps\MicrosoftTeams_24047.202.2704.38_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.92\msedgewebview2.exe <12>
(cmd.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\BrowserPrivacyAndSecurity.exe <2>
(drivers\RivetNetworks\Killer\KAPSService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe
(drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\dptf_helper.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <54>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.040.0225.0003\Microsoft.SharePoint.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_99f6bd58bfe82726\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_454f22d7cdb5b4cd\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_454f22d7cdb5b4cd\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_ab7d4ea1d12c01d4\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\TbtP2pShortcutService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\ThunderboltService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\drivers\SessionService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvdm.inf_amd64_bbda7de71680dcde\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_44e42040d5543576\RtkAudUService64.exe <3>
(services.exe ->) (Urban Cyber Security Inc. -> ) C:\Program Files\UrbanVPN\bin\urbanvpnserv.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.270.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_44e42040d5543576\RtkAudUService64.exe [1591680 2022-09-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [196264 2023-12-12] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306416 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Run: [] => [X]
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Run: [MicrosoftEdgeAutoLaunch_200BEE1A23EDDCEDECC6BA45BB6763ED] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4060712 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\Microsoft.SharePoint.exe [547856 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\MountPoints2: {a56b12f1-a7a1-11ed-bb97-3c9c0fcb8864} - "D:\Autorun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.129\Installer\chrmstp.exe [2024-03-15] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01384b18-19cf-4d34-8564-cc4b1d247202} - no filepath. <==== ATTENTION
Task: {043d03fb-26ef-45f8-abe7-e6956fe41a13} - no filepath. <==== ATTENTION
Task: {07905fc0-84ad-489a-b295-df07d379afb3} - no filepath. <==== ATTENTION
Task: {147da369-bf07-403d-b2b0-1231d046b111} - no filepath. <==== ATTENTION
Task: {15da1097-d6f5-45ff-91fd-9f7d69bc8682} - no filepath. <==== ATTENTION
Task: {17459e6e-ead0-49e0-bf95-94850dcb1498} - no filepath. <==== ATTENTION
Task: {1a248309-380b-4fc1-b2e7-351db6a3b59f} - no filepath. <==== ATTENTION
Task: {1ab6f899-d701-45ee-aeda-7f8dff56d27f} - no filepath. <==== ATTENTION
Task: {1b7b88a2-223c-4001-80c7-f23b2debba97} - no filepath. <==== ATTENTION
Task: {1e29867d-2670-45c4-8447-a6f6b8d1137c} - no filepath. <==== ATTENTION
Task: {1e6bd78f-94cb-4554-a1eb-b2b4a5fbebca} - no filepath. <==== ATTENTION
Task: {207bcbcc-6567-44aa-843f-aedcc2b32f22} - no filepath. <==== ATTENTION
Task: {299e0f4a-64c0-4913-a34e-052804cbbc5f} - no filepath. <==== ATTENTION
Task: {32624d32-0137-4542-8eca-86a7a93e01e4} - no filepath. <==== ATTENTION
Task: {34de450e-d1d6-4d2b-b3a8-ddf823d815a2} - no filepath. <==== ATTENTION
Task: {384ebcd4-c33d-4cbb-bbf0-b63c66278717} - no filepath. <==== ATTENTION
Task: {38ad6a19-431c-46fe-8df5-de12ca763adb} - no filepath. <==== ATTENTION
Task: {3a71ba9c-59f0-497a-8dbb-3be8a6cfb156} - no filepath. <==== ATTENTION
Task: {428c9421-969c-43b8-93ef-fe807455b953} - no filepath. <==== ATTENTION
Task: {4730af27-3ed0-4f2c-b186-df21a6a932a1} - no filepath. <==== ATTENTION
Task: {4a7f0843-cf69-4748-ae74-1d1177eb5d7a} - no filepath. <==== ATTENTION
Task: {4cedd487-eef9-4b82-8511-43d81992c5bb} - no filepath. <==== ATTENTION
Task: {4fb6e88d-734f-4ed2-abe3-f93c31fd0db6} - no filepath. <==== ATTENTION
Task: {5260c610-9a06-45d1-b5a7-af4afc474f32} - no filepath. <==== ATTENTION
Task: {6934c668-4d6d-4dd8-a2aa-c9250f7b429a} - no filepath. <==== ATTENTION
Task: {6c0d5822-d331-4451-9a19-bd29ac2e6864} - no filepath. <==== ATTENTION
Task: {75cd3852-7a4e-4bc6-9910-1d52e5ef99e2} - no filepath. <==== ATTENTION
Task: {79e5cfc9-53d7-48b5-9727-dec71ce308b6} - no filepath. <==== ATTENTION
Task: {7f6ab51c-b184-4dc7-be17-8f687ba5e192} - no filepath. <==== ATTENTION
Task: {819eeb5b-9fab-484f-985d-7f91c7c389b1} - no filepath. <==== ATTENTION
Task: {824229dc-a472-4279-8783-7416f3d129ba} - no filepath. <==== ATTENTION
Task: {8601efc1-b20e-456f-84bf-b62814b51094} - no filepath. <==== ATTENTION
Task: {907ef782-35e7-470b-9bca-d7467ac50af6} - no filepath. <==== ATTENTION
Task: {982994f7-4fd0-4052-b0b5-9c4d53bbe4ba} - no filepath. <==== ATTENTION
Task: {9d67fbe1-e15a-49e6-9d31-ad0d16db0345} - no filepath. <==== ATTENTION
Task: {a38269b7-3f36-435a-b0f2-71fb60cce7b3} - no filepath. <==== ATTENTION
Task: {a7f48adc-fb1a-41cc-a7a2-cb2b7f126e0b} - no filepath. <==== ATTENTION
Task: {aca47dfb-6ad8-4a32-a474-31800857908c} - no filepath. <==== ATTENTION
Task: {af4794d5-6785-4575-8038-8d8abefd651e} - no filepath. <==== ATTENTION
Task: {b351a098-7f09-4ab5-9cd9-c9720f4b18cf} - no filepath. <==== ATTENTION
Task: {b46cad2a-e794-44cf-8bcc-36f279e13d87} - no filepath. <==== ATTENTION
Task: {b59a2d2a-d6b4-44d5-9fd1-ed1801e40f77} - no filepath. <==== ATTENTION
Task: {b9555256-f05c-429d-a95c-9c9e04207a1e} - no filepath. <==== ATTENTION
Task: {bf1916e2-1936-4cd5-aec6-14cde3c3d604} - no filepath. <==== ATTENTION
Task: {bfe6e63d-7aad-4c8a-86f2-333b55b5e234} - no filepath. <==== ATTENTION
Task: {c457dbe8-b8a0-4c50-8314-ed3cdb0718bb} - no filepath. <==== ATTENTION
Task: {c671e544-c9ba-482b-b1da-89008c947ae8} - no filepath. <==== ATTENTION
Task: {c830c8d6-8a3f-429b-bdfa-8b3427e1e83e} - no filepath. <==== ATTENTION
Task: {D0F6D1E6-50B9-43FC-A393-1523A2C7B8D9} - \manas -> No File <==== ATTENTION
Task: {d13aba63-8f57-4474-97b9-fa957128df39} - no filepath. <==== ATTENTION
Task: {D4983A84-2AF8-4A50-90CA-D46CCA61D2FD} - System32\Tasks\Opera scheduled Autoupdate 1675866155
Task: {d8842e1d-910f-41bd-b908-4867a0d51754} - no filepath. <==== ATTENTION
Task: {d95b325f-83d6-4315-a639-7082cd0573aa} - no filepath. <==== ATTENTION
Task: {e1e93378-70fa-46ea-bdba-4fb1e567866b} - no filepath. <==== ATTENTION
Task: {e465c4b5-e8af-47df-9efe-fdae0598706d} - no filepath. <==== ATTENTION
Task: {e4f6dd02-0ad5-4b7d-835d-41a9e1732f83} - no filepath. <==== ATTENTION
Task: {e6ace641-a3df-4321-99ac-d67327d4b272} - no filepath. <==== ATTENTION
Task: {ebb8898b-55bd-4ba0-89da-dfe8b65adda2} - no filepath. <==== ATTENTION
Task: {ed0a1a78-e622-4c0e-bf25-8eeda35031ad} - no filepath. <==== ATTENTION
Task: {f3b0983f-97ba-46cf-8a4b-c32a19a33fa9} - no filepath. <==== ATTENTION
Task: {f5574985-a5cd-4a00-aa2a-825b2b4ef36a} - no filepath. <==== ATTENTION
Task: {fca08b4b-d4d8-416a-a37a-15ba5867dd06} - no filepath. <==== ATTENTION
Task: {fddfa188-7dc8-4aeb-b1c0-8273c65e5ffb} - no filepath. <==== ATTENTION
Task: {fe4772a2-de35-447e-950c-c2d5f3eeed78} - no filepath. <==== ATTENTION
Task: {feac46b4-7744-415a-b89f-a3648f89e639} - no filepath. <==== ATTENTION
Task: {FF098D5A-65BD-45D6-B9AF-EDDFD46AA13F} - System32\Tasks\AVGBrowserProtectS-1-5-21-1194814-3309633345-4174763381-1001 => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowserProtect.exe --runonce (No File)
Task: {8C274DE7-7EC1-4CB9-886A-B1111560A666} - System32\Tasks\GoogleUpdateTaskMachineCore{BF13A69F-C9A2-4266-BCAB-3E87037FDAF3} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-18] (Google LLC -> Google LLC)
Task: {0B43DECC-5230-4924-B404-24D9E0BC932E} - System32\Tasks\GoogleUpdateTaskMachineUA{B1B84B74-720B-4A70-A339-5D08F35603AF} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-18] (Google LLC -> Google LLC)
Task: {BCC59DA7-A16D-4E90-BAB3-EED902587614} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {E826BE2F-813A-4B32-AED1-825E2AC07EB9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {9702B0CC-E55F-4288-BA5D-BEA848C4667D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {58082687-5FC2-4B62-8F90-4B420695A85B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {81A0AC34-F185-40F0-85A0-C7252900968E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170024 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {B538A155-E0B1-4DB2-AF2E-DFA20373C860} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4446400 2024-02-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {339E7AF2-F4B8-4FDF-8301-9A5E479A97A7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {96287E90-A9B5-4DE6-87D5-D9D24654754F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-03-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {FF006E01-CE00-40A8-911C-863F4A39EF7C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205984 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {F3EE2641-23E2-4056-A929-2C2D43676395} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1194814-3309633345-4174763381-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205984 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.38.0.4 10.38.0.1 192.168.1.1
Tcpip\..\Interfaces\{7501ac79-c737-461a-a2fa-bdb2c610655a}: [DhcpNameServer] 10.38.0.4 10.38.0.1 192.168.1.1
Tcpip\..\Interfaces\{7501ac79-c737-461a-a2fa-bdb2c610655a}\7416C6168797023523130255C64727160253740293465343: [DhcpNameServer] 192.168.73.62
Tcpip\..\Interfaces\{c286c3fc-597a-4f03-bcab-60c8c005c2fa}: [DhcpNameServer] 10.38.0.4 10.38.0.1 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-17]
Edge Notifications: Default -> hxxps://mkhvuv.facroses.co.in; hxxps://www.facebook.com
Edge Extension: (Dokumenty Google offline) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-29]
Edge Extension: (Edge relevant text changes) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-30]
Edge Extension: (ESET Browser Privacy & Security) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nkapkmklnmidbbgjaipbgpcnbomnaakc [2024-03-16]
Edge Profile: C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-03-16]
Edge Extension: (Dokumenty Google offline) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-13]
Edge Extension: (Edge relevant text changes) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-13]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]

FireFox:
========
FF DefaultProfile: ici0rtaq.default
FF ProfilePath: C:\Users\manas\AppData\Roaming\Mozilla\Firefox\Profiles\ici0rtaq.default [2024-03-11]
FF ProfilePath: C:\Users\manas\AppData\Roaming\Mozilla\Firefox\Profiles\1xgpyufk.default-release [2024-03-16]
FF Extension: (Language: Čeština (Czech)) - C:\Users\manas\AppData\Roaming\Mozilla\Firefox\Profiles\1xgpyufk.default-release\Extensions\langpack-cs@firefox.mozilla.org.xpi [2024-03-10]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2024-03-16]

Chrome:
=======
CHR Profile: C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default [2024-03-17]
CHR Extension: (Seznam Doplněk – Email) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2023-10-17]
CHR Extension: (Urban VPN Proxy) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppiocemhmnlbhjplcgkofciiegomcon [2024-03-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-18]
CHR Extension: (Seznam.cz) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2023-08-07]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2024-03-16]
CHR HKU\S-1-5-21-1194814-3309633345-4174763381-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1194814-3309633345-4174763381-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]

Opera:
=======
OPR Profile: C:\Users\manas\AppData\Roaming\Opera Software\Opera Stable [2023-02-11]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\manas\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-02-08]
OPR Extension: (Opera Wallet) - C:\Users\manas\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-02-11]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\manas\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2023-02-08]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15689512 2024-03-06] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14097992 2024-03-04] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4976464 2023-02-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [51393352 2024-01-26] (Electronic Arts, Inc. -> Electronic Arts)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2539384 2023-12-12] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3890064 2023-12-12] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3890064 2023-12-12] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncHelper.exe [3516832 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_5a9d4e2af428d38d\AS\IAS\IntelAudioService.exe [412168 2022-09-02] (Intel Corporation -> Intel)
R3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [78088 2023-07-13] (Intel Corporation -> Intel® Corporation)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2480944 2023-07-13] (Intel Corporation -> Intel)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2981168 2023-07-13] (Intel Corporation -> Intel)
R3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [78128 2023-07-13] (Intel Corporation -> Intel® Corporation)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1926840 2022-07-15] (A-Volute SAS -> Nahimic)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.040.0225.0003\OneDriveUpdaterService.exe [3856400 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [256368 2022-12-15] (Intel Corporation -> Intel Corporation)
R2 UrbanVPNServiceInteractive; C:\Program Files\UrbanVPN\bin\urbanvpnserv.exe [450768 2024-01-15] (Urban Cyber Security Inc. -> )
S3 UrbanVPNUpdater; C:\Program Files\UrbanVPN\UrbanVPNUpdater.exe [1022312 2024-01-16] (Urban Cyber Security Inc. -> Urban Security)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe [3191272 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe [133688 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvdm.inf_amd64_bbda7de71680dcde\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvdm.inf_amd64_bbda7de71680dcde\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2023-02-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2023-02-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 e2k68cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e2k68cx21x64.inf_amd64_5966b201aaa328ab\e2k68cx21x64.sys [717208 2023-05-09] (Realtek Semiconductor Corp. -> Realtek)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [215616 2023-12-12] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [120032 2023-12-12] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2023-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [254344 2023-12-12] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55528 2023-12-12] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81824 2023-12-12] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [124168 2023-12-12] (ESET, spol. s r.o. -> ESET)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [209200 2023-07-13] (Intel Corporation -> Rivet Networks, LLC.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20928 2024-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [603416 2024-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105752 2024-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-03-17 03:20 - 2024-03-17 03:20 - 000030173 _____ C:\Users\manas\Downloads\FRST.txt
2024-03-17 03:19 - 2024-03-17 03:19 - 002390528 _____ (Farbar) C:\Users\manas\Downloads\FRST64.exe
2024-03-16 20:50 - 2024-03-16 20:50 - 000001720 _____ C:\Users\manas\Documents\Zástupce Dokumenty (OneDrive - Osobní).lnk
2024-03-16 20:50 - 2024-03-16 20:50 - 000001515 _____ C:\Users\manas\Desktop\Zástupce Plocha (OneDrive - Osobní).lnk
2024-03-16 20:50 - 2024-03-16 02:53 - 000000093 _____ C:\Users\manas\Desktop\fff.txt
2024-03-16 20:49 - 2024-03-12 01:41 - 006841976 _____ C:\Users\manas\Desktop\b3249d0cc76739e88191ea660fc42823296e39d43cffa4d72a2542be3018dbc2.mp4
2024-03-16 20:49 - 2024-02-16 18:18 - 000000223 _____ C:\Users\manas\Desktop\Assassin's Creed Valhalla.url
2024-03-16 20:49 - 2024-02-02 12:54 - 016106363 _____ C:\Users\manas\Desktop\FA movements weekly report February 2024.xlsx
2024-03-16 20:34 - 2024-03-16 20:34 - 000000000 ____D C:\Users\manas\Documents\Rockstar Games
2024-03-16 20:34 - 2024-03-16 20:34 - 000000000 ____D C:\Users\manas\Documents\NHL09
2024-03-16 20:34 - 2024-03-16 20:34 - 000000000 ____D C:\Users\manas\Documents\My Games
2024-03-16 20:28 - 2024-03-16 20:28 - 000693846 _____ C:\WINDOWS\system32\perfh005.dat
2024-03-16 20:28 - 2024-03-16 20:28 - 000143700 _____ C:\WINDOWS\system32\perfc005.dat
2024-03-16 02:59 - 2024-03-16 02:59 - 000000000 ___HD C:\OneDriveTemp
2024-03-16 00:44 - 2024-03-16 00:44 - 000002016 _____ C:\Users\Public\Desktop\ESET Ochrana pri platbách a prehliadaní.lnk
2024-03-16 00:44 - 2024-03-16 00:44 - 000000000 ____D C:\Users\manas\AppData\Local\ESET
2024-03-16 00:44 - 2024-03-16 00:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2024-03-16 00:44 - 2024-03-16 00:44 - 000000000 ____D C:\ProgramData\ESET
2024-03-16 00:44 - 2024-03-16 00:44 - 000000000 ____D C:\Program Files\ESET
2024-03-15 23:38 - 2024-03-16 00:32 - 000184205 _____ C:\Users\manas\Desktop\kylg.xlsx
2024-03-15 23:38 - 2024-03-16 00:32 - 000184205 _____ C:\Users\manas\Desktop\kylg(1).xlsx
2024-03-15 23:12 - 2024-03-15 23:12 - 000000000 ____D C:\Users\manas\Documents\TotalAV
2024-03-15 23:11 - 2024-03-15 23:11 - 000000000 ____D C:\Users\manas\AppData\Local\GUI
2024-03-15 23:11 - 2024-03-15 23:11 - 000000000 ____D C:\ProgramData\SecuritySuite
2024-03-15 23:08 - 2024-03-17 03:20 - 000000000 ____D C:\FRST
2024-03-15 22:55 - 2024-03-15 22:55 - 000388608 _____ (Trend Micro Inc.) C:\Users\manas\Downloads\HijackThis.exe
2024-03-13 00:29 - 2024-03-13 00:29 - 000020023 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-13 00:29 - 2024-03-13 00:29 - 000020023 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-13 00:25 - 2024-03-13 00:27 - 000000000 ___HD C:\$WinREAgent
2024-03-10 08:16 - 2024-03-16 00:40 - 000000000 ____D C:\ProgramData\UrbanVPN
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\Users\manas\UrbanVPN
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UrbanVPN
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\Program Files\UrbanVPN
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\Program Files\TAP-Windows
2024-03-10 08:15 - 2024-03-10 08:15 - 000000000 ____D C:\Users\manas\AppData\Local\AdvinstAnalytics
2024-03-10 08:14 - 2024-03-16 20:25 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-03-10 08:14 - 2024-03-10 08:14 - 000002038 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2024-03-10 08:14 - 2024-03-10 08:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\Users\manas\AppData\Roaming\Mozilla
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\Users\manas\AppData\Local\Mozilla
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-03-08 22:35 - 2024-03-16 21:35 - 000000000 ____D C:\Users\manas\AppData\Roaming\vlc
2024-03-08 22:34 - 2024-03-08 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-03-08 22:34 - 2024-03-08 22:34 - 000000000 ____D C:\Program Files\VideoLAN
2024-03-08 03:52 - 2024-03-08 03:52 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-03-01 19:40 - 2024-03-01 19:40 - 000313784 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2024-02-17 20:56 - 2024-02-17 20:56 - 000000000 ____D C:\Users\manas\Tracing
2024-02-16 22:45 - 2024-02-23 22:09 - 000000000 ____D C:\Users\manas\Documents\Assassin's Creed Valhalla
2024-02-16 22:35 - 2024-03-07 16:57 - 000000000 ____D C:\Users\manas\AppData\Local\Ubisoft Game Launcher
2024-02-16 22:35 - 2024-02-16 22:35 - 000000000 ____D C:\Users\manas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2024-02-16 22:35 - 2024-02-16 22:35 - 000000000 ____D C:\ProgramData\Ubisoft
2024-02-16 22:35 - 2024-02-16 22:35 - 000000000 ____D C:\Program Files (x86)\Ubisoft

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-03-17 03:11 - 2023-01-18 23:04 - 000000000 ____D C:\Program Files (x86)\Steam
2024-03-17 03:11 - 2023-01-18 22:27 - 000000000 ___RD C:\Users\manas\OneDrive
2024-03-17 02:58 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-03-17 02:58 - 2023-01-18 22:32 - 000000000 ____D C:\Program Files (x86)\Google
2024-03-17 02:57 - 2023-01-19 02:28 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-16 20:57 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-03-16 20:50 - 2023-01-18 22:15 - 000000000 ____D C:\Users\manas
2024-03-16 20:28 - 2023-01-19 02:47 - 001629582 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-03-16 20:28 - 2023-01-19 02:27 - 000000000 ____D C:\WINDOWS\INF
2024-03-16 20:21 - 2023-01-19 02:43 - 000000000 ____D C:\ProgramData\Packages
2024-03-16 20:21 - 2023-01-19 02:40 - 000012288 ___SH C:\DumpStack.log.tmp
2024-03-16 20:21 - 2023-01-19 02:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-03-16 20:21 - 2023-01-19 02:40 - 000000000 ____D C:\ProgramData\NVIDIA
2024-03-16 20:21 - 2023-01-19 02:40 - 000000000 ____D C:\ProgramData\Goodix
2024-03-16 20:21 - 2023-01-19 02:40 - 000000000 ____D C:\Intel
2024-03-16 20:21 - 2023-01-19 02:28 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-16 20:21 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\ServiceState
2024-03-16 20:21 - 2023-01-18 22:26 - 000000000 __SHD C:\Users\manas\IntelGraphicsProfiles
2024-03-16 20:21 - 2023-01-18 22:26 - 000000000 ____D C:\Users\manas\AppData\Local\Packages
2024-03-16 20:20 - 2023-01-19 02:25 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2024-03-16 20:19 - 2023-02-24 18:03 - 000000000 ____D C:\Users\manas\AppData\Local\CrashDumps
2024-03-16 19:00 - 2023-01-18 22:26 - 000000000 ____D C:\Users\manas\AppData\Local\D3DSCache
2024-03-16 18:59 - 2023-01-19 02:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-03-16 02:53 - 2023-01-19 02:40 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-16 00:44 - 2023-01-19 02:28 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-03-16 00:20 - 2024-02-10 18:12 - 000000000 ____D C:\Program Files\Electronic Arts
2024-03-16 00:20 - 2023-02-08 15:55 - 000000000 ____D C:\Users\manas\AppData\Local\AVG
2024-03-16 00:20 - 2023-02-08 15:19 - 000000000 ____D C:\ProgramData\AVG
2024-03-16 00:20 - 2023-02-05 13:57 - 000000000 ____D C:\ProgramData\Package Cache
2024-03-15 23:39 - 2024-02-03 10:13 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-03-15 23:38 - 2024-02-02 10:28 - 000000000 ____D C:\Users\manas\AppData\Roaming\Microsoft\Excel
2024-03-15 23:31 - 2023-02-08 15:19 - 000000000 ____D C:\Users\manas\AppData\Roaming\uTorrent Web
2024-03-15 22:55 - 2023-01-18 22:28 - 000000000 ____D C:\Users\manas\AppData\Local\VirtualStore
2024-03-15 22:51 - 2024-02-02 10:10 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-03-15 22:51 - 2023-02-08 20:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-03-15 22:51 - 2023-01-19 02:40 - 000003644 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{D2AD0AB9-4C1F-409E-9241-505626292217}
2024-03-15 22:51 - 2023-01-19 02:40 - 000003420 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{A59DAD87-DF5B-4571-93A4-1E9F12783DC3}
2024-03-15 22:51 - 2023-01-18 22:32 - 000003486 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{B1B84B74-720B-4A70-A339-5D08F35603AF}
2024-03-15 22:51 - 2023-01-18 22:32 - 000003262 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{BF13A69F-C9A2-4266-BCAB-3E87037FDAF3}
2024-03-15 22:51 - 2023-01-18 22:27 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1194814-3309633345-4174763381-1001
2024-03-15 19:32 - 2023-02-08 15:19 - 000000000 ____D C:\Users\manas\AppData\Local\BitTorrentHelper
2024-03-15 17:43 - 2024-01-05 21:23 - 002709096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-03-15 17:43 - 2024-01-05 21:23 - 000108136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-03-15 17:43 - 2024-01-05 21:23 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-03-15 17:42 - 2024-01-05 21:23 - 000706152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-03-15 17:42 - 2024-01-05 21:23 - 000218728 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-03-15 17:42 - 2024-01-05 21:23 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-03-15 17:42 - 2024-01-05 21:23 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-03-15 17:24 - 2023-06-10 02:01 - 000000000 ____D C:\Users\manas\AppData\Roaming\Seznam.cz
2024-03-15 03:00 - 2023-01-18 22:33 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-03-14 03:59 - 2024-02-02 10:10 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-03-13 23:59 - 2023-01-19 02:28 - 000000000 ____D C:\ProgramData\USOPrivate
2024-03-13 23:44 - 2023-01-19 02:40 - 000474816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-03-13 23:43 - 2023-10-11 20:49 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SystemResources
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-03-13 23:43 - 2023-01-19 02:25 - 000000000 ____D C:\WINDOWS\servicing
2024-03-13 00:33 - 2023-01-19 04:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-03-13 00:32 - 2023-01-19 04:09 - 190470136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-03-13 00:32 - 2023-01-19 02:25 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-03-13 00:29 - 2023-01-19 02:42 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-03-13 00:05 - 2023-01-19 02:40 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-03-12 21:13 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-03-10 09:26 - 2023-07-25 17:52 - 000000000 ____D C:\WINDOWS\Minidump
2024-03-08 03:51 - 2024-02-02 10:05 - 000000000 ____D C:\Program Files\Microsoft Office
2024-03-08 03:03 - 2023-01-18 22:33 - 000002206 _____ C:\Users\manas\Desktop\Google Chrome.lnk
2024-03-06 17:11 - 2023-07-14 19:07 - 000000000 ____D C:\Users\manas\AppData\Local\DayZ Launcher
2024-03-06 16:57 - 2023-07-14 19:08 - 000000000 ____D C:\Users\manas\AppData\Local\DayZ
2024-02-17 20:56 - 2023-01-18 22:15 - 000000000 ___SD C:\Users\manas\AppData\Roaming\Microsoft\Credentials
2024-02-16 18:18 - 2023-02-05 13:02 - 000000000 ____D C:\Users\manas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\UUS
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\setup
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\Provisioning
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-02-16 17:08 - 2024-02-10 18:45 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2024-02-16 17:07 - 2023-01-18 22:26 - 000000000 __RHD C:\Users\Public\AccountPictures

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

#5 Příspěvek od **Rudy** » 17 bře 2024 11:24

Děláte mi v tom trochu bordel. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Run: [] => [X]
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\MountPoints2: {a56b12f1-a7a1-11ed-bb97-3c9c0fcb8864} - "D:\Autorun.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {01384b18-19cf-4d34-8564-cc4b1d247202} - no filepath. <==== ATTENTION
Task: {043d03fb-26ef-45f8-abe7-e6956fe41a13} - no filepath. <==== ATTENTION
Task: {07905fc0-84ad-489a-b295-df07d379afb3} - no filepath. <==== ATTENTION
Task: {147da369-bf07-403d-b2b0-1231d046b111} - no filepath. <==== ATTENTION
Task: {15da1097-d6f5-45ff-91fd-9f7d69bc8682} - no filepath. <==== ATTENTION
Task: {17459e6e-ead0-49e0-bf95-94850dcb1498} - no filepath. <==== ATTENTION
Task: {1a248309-380b-4fc1-b2e7-351db6a3b59f} - no filepath. <==== ATTENTION
Task: {1ab6f899-d701-45ee-aeda-7f8dff56d27f} - no filepath. <==== ATTENTION
Task: {1b7b88a2-223c-4001-80c7-f23b2debba97} - no filepath. <==== ATTENTION
Task: {1e29867d-2670-45c4-8447-a6f6b8d1137c} - no filepath. <==== ATTENTION
Task: {1e6bd78f-94cb-4554-a1eb-b2b4a5fbebca} - no filepath. <==== ATTENTION
Task: {207bcbcc-6567-44aa-843f-aedcc2b32f22} - no filepath. <==== ATTENTION
Task: {299e0f4a-64c0-4913-a34e-052804cbbc5f} - no filepath. <==== ATTENTION
Task: {32624d32-0137-4542-8eca-86a7a93e01e4} - no filepath. <==== ATTENTION
Task: {34de450e-d1d6-4d2b-b3a8-ddf823d815a2} - no filepath. <==== ATTENTION
Task: {384ebcd4-c33d-4cbb-bbf0-b63c66278717} - no filepath. <==== ATTENTION
Task: {38ad6a19-431c-46fe-8df5-de12ca763adb} - no filepath. <==== ATTENTION
Task: {3a71ba9c-59f0-497a-8dbb-3be8a6cfb156} - no filepath. <==== ATTENTION
Task: {428c9421-969c-43b8-93ef-fe807455b953} - no filepath. <==== ATTENTION
Task: {4730af27-3ed0-4f2c-b186-df21a6a932a1} - no filepath. <==== ATTENTION
Task: {4a7f0843-cf69-4748-ae74-1d1177eb5d7a} - no filepath. <==== ATTENTION
Task: {4cedd487-eef9-4b82-8511-43d81992c5bb} - no filepath. <==== ATTENTION
Task: {4fb6e88d-734f-4ed2-abe3-f93c31fd0db6} - no filepath. <==== ATTENTION
Task: {5260c610-9a06-45d1-b5a7-af4afc474f32} - no filepath. <==== ATTENTION
Task: {6934c668-4d6d-4dd8-a2aa-c9250f7b429a} - no filepath. <==== ATTENTION
Task: {6c0d5822-d331-4451-9a19-bd29ac2e6864} - no filepath. <==== ATTENTION
Task: {75cd3852-7a4e-4bc6-9910-1d52e5ef99e2} - no filepath. <==== ATTENTION
Task: {79e5cfc9-53d7-48b5-9727-dec71ce308b6} - no filepath. <==== ATTENTION
Task: {7f6ab51c-b184-4dc7-be17-8f687ba5e192} - no filepath. <==== ATTENTION
Task: {819eeb5b-9fab-484f-985d-7f91c7c389b1} - no filepath. <==== ATTENTION
Task: {824229dc-a472-4279-8783-7416f3d129ba} - no filepath. <==== ATTENTION
Task: {8601efc1-b20e-456f-84bf-b62814b51094} - no filepath. <==== ATTENTION
Task: {907ef782-35e7-470b-9bca-d7467ac50af6} - no filepath. <==== ATTENTION
Task: {982994f7-4fd0-4052-b0b5-9c4d53bbe4ba} - no filepath. <==== ATTENTION
Task: {9d67fbe1-e15a-49e6-9d31-ad0d16db0345} - no filepath. <==== ATTENTION
Task: {a38269b7-3f36-435a-b0f2-71fb60cce7b3} - no filepath. <==== ATTENTION
Task: {a7f48adc-fb1a-41cc-a7a2-cb2b7f126e0b} - no filepath. <==== ATTENTION
Task: {aca47dfb-6ad8-4a32-a474-31800857908c} - no filepath. <==== ATTENTION
Task: {af4794d5-6785-4575-8038-8d8abefd651e} - no filepath. <==== ATTENTION
Task: {b351a098-7f09-4ab5-9cd9-c9720f4b18cf} - no filepath. <==== ATTENTION
Task: {b46cad2a-e794-44cf-8bcc-36f279e13d87} - no filepath. <==== ATTENTION
Task: {b59a2d2a-d6b4-44d5-9fd1-ed1801e40f77} - no filepath. <==== ATTENTION
Task: {b9555256-f05c-429d-a95c-9c9e04207a1e} - no filepath. <==== ATTENTION
Task: {bf1916e2-1936-4cd5-aec6-14cde3c3d604} - no filepath. <==== ATTENTION
Task: {bfe6e63d-7aad-4c8a-86f2-333b55b5e234} - no filepath. <==== ATTENTION
Task: {c457dbe8-b8a0-4c50-8314-ed3cdb0718bb} - no filepath. <==== ATTENTION
Task: {c671e544-c9ba-482b-b1da-89008c947ae8} - no filepath. <==== ATTENTION
Task: {c830c8d6-8a3f-429b-bdfa-8b3427e1e83e} - no filepath. <==== ATTENTION
Task: {D0F6D1E6-50B9-43FC-A393-1523A2C7B8D9} - \manas -> No File <==== ATTENTION
Task: {d13aba63-8f57-4474-97b9-fa957128df39} - no filepath. <==== ATTENTION
Task: {d8842e1d-910f-41bd-b908-4867a0d51754} - no filepath. <==== ATTENTION
Task: {d95b325f-83d6-4315-a639-7082cd0573aa} - no filepath. <==== ATTENTION
Task: {e1e93378-70fa-46ea-bdba-4fb1e567866b} - no filepath. <==== ATTENTION
Task: {e465c4b5-e8af-47df-9efe-fdae0598706d} - no filepath. <==== ATTENTION
Task: {e4f6dd02-0ad5-4b7d-835d-41a9e1732f83} - no filepath. <==== ATTENTION
Task: {e6ace641-a3df-4321-99ac-d67327d4b272} - no filepath. <==== ATTENTION
Task: {ebb8898b-55bd-4ba0-89da-dfe8b65adda2} - no filepath. <==== ATTENTION
Task: {ed0a1a78-e622-4c0e-bf25-8eeda35031ad} - no filepath. <==== ATTENTION
Task: {f3b0983f-97ba-46cf-8a4b-c32a19a33fa9} - no filepath. <==== ATTENTION
Task: {f5574985-a5cd-4a00-aa2a-825b2b4ef36a} - no filepath. <==== ATTENTION
Task: {fca08b4b-d4d8-416a-a37a-15ba5867dd06} - no filepath. <==== ATTENTION
Task: {fddfa188-7dc8-4aeb-b1c0-8273c65e5ffb} - no filepath. <==== ATTENTION
Task: {fe4772a2-de35-447e-950c-c2d5f3eeed78} - no filepath. <==== ATTENTION
Task: {feac46b4-7744-415a-b89f-a3648f89e639} - no filepath. <==== ATTENTION
Task: {FF098D5A-65BD-45D6-B9AF-EDDFD46AA13F} - System32\Tasks\AVGBrowserProtectS-1-5-21-1194814-3309633345-4174763381-1001 => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowserProtect.exe --runonce (No File)
Task: {339E7AF2-F4B8-4FDF-8301-9A5E479A97A7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {8C274DE7-7EC1-4CB9-886A-B1111560A666} - System32\Tasks\GoogleUpdateTaskMachineCore{BF13A69F-C9A2-4266-BCAB-3E87037FDAF3} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-18] (Google LLC -> Google LLC)
Task: {0B43DECC-5230-4924-B404-24D9E0BC932E} - System32\Tasks\GoogleUpdateTaskMachineUA{B1B84B74-720B-4A70-A339-5D08F35603AF} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-18] (Google LLC -> Google LLC)
C:\Users\manas\Downloads\utweb_installer.exe
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{B1B84B74-720B-4A70-A339-5D08F35603AF}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{BF13A69F-C9A2-4266-BCAB-3E87037FDAF3}

EmptyTemp:
End

Uložte do C:\Users\manas\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

dolfik · #6 Příspěvek od **dolfik** » 17 bře 2024 14:20

Chcel by som sa veľmi ospravedlniť, že som sa ani nepozdravil a ani nepopsal chybu. Sam som nevedel čo sa deje ale začalo mi to tu blbnúť a s tým AVG som nebol spokojný od začiatku. Lenže problem nastal kde vo windowse ako som zistil v noci.. Nejakým zazračným sposobom sa mi spojili firemny aj osobni onedrive a odoslalo to moje fotky atd do firmy, ktora nie je mala.. a podotykam ze to boli pikantne fotky. Synchronizaciu som vypol, keď som sa prihlasil do outlooku ale ten aj s webovym prehliadačom asi prevzali kontrolu a zdvojili to do jedneho uctu Microsoft. Docela haluz, lebo asi zrejme pridem o pracu ale tento NTB mam na hranie, tak nerád by som prišiel aj o to. A mimochodom na tom firemnom účte som dal zakazať onedrive a aj ho zmazal z toho pc.. a do noveho som sa prihlásil len do webu pre stiahnutie Officu s licenciou a do mailu aby som odpisal.

Mockrát Ďakujem.

V prílohe zasielam logy .

SecondLogs.zip: (20.6 KiB) Staženo 14 x

#7 Příspěvek od **Rudy** » 17 bře 2024 14:59

Rozumíte tomu, co po vás chci? Proveďte to, co jsem vám napsal v předešlém svém postu a dejte výsledný log. Ten je v: C:\Users\manas\Downloads v souboru fixlog.txt. Také by se měl sám otevřít po skončení práce FRST. Jen ho sem nakopírujete.

dolfik · #8 Příspěvek od **dolfik** » 17 bře 2024 15:09

Ja rozumim ale ja som premiestnil FRST na plochu uz davno tak som tam dal aj loglist a tam sa to aj vytvorilo, alebo som to nemal robit ?! veď si skontrolujte tie časy...

dolfik · #9 Příspěvek od **dolfik** » 17 bře 2024 15:11

Ved ten log tam je a urobil som este raz FRST... tak su tam tri logy..

#10 Příspěvek od **Rudy** » 17 bře 2024 15:47

Pokud byl sken FRST proveden, musíte mít v adresáři, kde máte samotné FRST soubor fixlog.txt. Jeho obsah mne zajímá. Nic jiného.

#11 Příspěvek od **JaRon** » 17 bře 2024 15:59

Logy su v secondlogs.zip - PC by mal byt cisty

dolfik · #12 Příspěvek od **dolfik** » 17 bře 2024 16:03

Otvorili ste uz ten ZIP ? Je to uplne compatibilne s mojim win ? Hele ja som sa s vami neprišiel hádať a ani počúvať nejakú arogantnosť ale keď si to otvoríte a skontrolujete časy tak to inak nemohlo byť, ničmenej urobím to ešte raz a nasledovne v textovom subore vytvorim subor, ktorého obsah bude "tie riadky" s priponou .txt

Otvorim FRST dam fix a pojede to, pak chce reboot a zepta se jestli jo nebo ne, a restart ... no a pak počkám až vaše veličenství řekne, že je čas na ďalši logy.

dolfik · #13 Příspěvek od **dolfik** » 17 bře 2024 16:13

JaRon píše: ↑17 bře 2024 15:59 Logy su v secondlogs.zip - PC by mal byt cisty

Tak nemusím ? Ono PC mal problem často s obyčajnym "Program Files" , viac menej som si myslel že je to nejaka nevyvazenost PC co sa tyka komponentov.. predsa to nie je obycajny NTB,

Skor som mal este otazku ci bolo rozumne menit ten AVG na ESET, ono z mojho pohladu je to zanedbatelne porovnanie ale ja som sa to toho nikdy nešprtal čo ktorý antivirak dokaze. A po dalsie uz pol roka mi vravia nech si tam hodim Eset ze mi prinesu licenciu.

a ešte detto, chcel som nechať skontrolovať aj PC v práci, lenze to uz bude firemny PC a tak by som do neho nemal zasahovat, po ďalšie musím uznať že po Rudym to nemám ani chuť skúšať. A mimochodom kym som tu dal jednu časť FRST, vtedy som zmenil antivir... tak som dal len tak preventivne do consoly sfc / scannow a opravilo to tiez nieco,,, to len jak nejaku poznamku, lebo som ten prvy log zmazal... Sorry za všetko a diky, no a poniektorý ano "Y" (jednotne čislo) ešte nepochopili že pýchu predchádza pád.

#14 Příspěvek od **JaRon** » 17 bře 2024 16:26

No hlavne klud

Co Ti stalo je nemile- problem vznikol niekde medzi stolickou a Microsoftom - touz nezistime
Rudy sa Ti snazil pomoct, PC je ciste
Vymena AVG - Eset je dobra
Podla pravidiel sa firemnymi PC nezaoberame
To je vsetko
Pekna den

dolfik · #15 Příspěvek od **dolfik** » 17 bře 2024 16:45

Na osobnom PC v praci som sam odstranil Onedrive, doma som bol prihlaseny ja a zdielanie bolo vypnute pre vsetko... Asi pred mesiacom aj niečo som bol doma a potrebovali čosi odo mňa tak vravim reku nemam Office ale mam pracovny s licenciami na 5 pc tak si jednu dam doma a oni ze jasne pohoda.. len toto urob, tak tak... urobil som.... a to som sa prihlasil ani nie cez domowsky prehliadac do microsoft online a do Outlooku, čo mi bolo podotýkam povedane ze nic sa nestane.. no aa hla par Automatickych updatov a stalo sa samo. Na druhej strane priznavam ze som mal v google chrome ulozene hesla ku hocicomu. Ale taku vec somm ešte nezažil .. Ale ako nič sa nemeni na tom že tu mozem hodit ten stary PC z prace, Tam toho veľa nebude co zatvorit, pretoze vsetko nepotrebne som vyhodil ale je tam milionkrat v procesoch "svchost" s ktorym si neviem rady. Tak ak sa na to citis v klude ale podotykam, ze to moze koncit vypovedou, a inak ja som si ten ucet tam nepridaval niako v aplikacii OneDrive, ako kludne suhlasim ze som niekedy nachcany dal potvrdit synchonizaciu, lenze v mojom compe bol zakaz aj zalohy hocico, a najprv to poslalo v stredu "Desktop" no a v piatok to poslalo rovno cely OneDrive , ktori nebol ani viditelny na pozadi. Tu ikonu som hladal...

VIRY.CZ

Preventivka

Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka