Kontrola logu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

Uživatelský avatar
PARKR
Level 2.5
Level 2.5
Příspěvky: 362
Registrován: červenec 12
Bydliště: Severní Morava
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod PARKR » 26 bře 2019 12:48

Fix result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by Bronislav.P (26-03-2019 12:38:20) Run:1
Running from C:\Users\Bronislav.P\Desktop\FRST
Loaded Profiles: Bronislav.P (Available Profiles: Bronislav.P)
Boot Mode: Normal
==============================================

fixlist content:
*****************
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {4B652BA8-D4D7-46F9-B34D-A0C8E429075A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001UA => C:\Users\Bronislav.P\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {560D7C64-0E22-413B-B9E3-5C65F7B2D596} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core => C:\Users\Bronislav.P\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {5710F0E5-2CE7-4386-9768-04F3ACEC3C46} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core1d25a9d3736aeb4 => C:\Users\Bronislav.P\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core.job => C:\Users\Bronislav.P\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001UA.job => C:\Users\Bronislav.P\AppData\Local\Google\Update\GoogleUpdate.exe
HKLM-x32\...\Run: [] => [X]
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-377485661-1175933967-1024712423-1001\...\Run: [OneDrive] => C:\Users\TEMP\AppData\Local\Microsoft\OneDrive\OneDrive.exe [1507144 2019-03-26] (Microsoft Corporation -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-377485661-1175933967-1024712423-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\TEMP\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" <==== ATTENTION
HKU\S-1-5-21-377485661-1175933967-1024712423-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q
HKU\S-1-5-21-377485661-1175933967-1024712423-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\TEMP\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" <==== ATTENTION
HKU\S-1-5-21-377485661-1175933967-1024712423-1001\...\RunOnce: [Uninstall 17.3.6816.0313\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\TEMP\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\amd64" <==== ATTENTION
HKU\S-1-5-21-377485661-1175933967-1024712423-1001\...\RunOnce: [Uninstall 17.3.6816.0313] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\TEMP\AppData\Local\Microsoft\OneDrive\17.3.6816.0313" <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HRTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
2019-03-26 07:50 - 2016-12-06 13:36 - 000001018 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001UA.job
2019-03-26 07:50 - 2016-12-06 13:36 - 000000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core.job

EmptyTemp:

*****************

HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4B652BA8-D4D7-46F9-B34D-A0C8E429075A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B652BA8-D4D7-46F9-B34D-A0C8E429075A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001UA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001UA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{560D7C64-0E22-413B-B9E3-5C65F7B2D596}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{560D7C64-0E22-413B-B9E3-5C65F7B2D596}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5710F0E5-2CE7-4386-9768-04F3ACEC3C46}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5710F0E5-2CE7-4386-9768-04F3ACEC3C46}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core1d25a9d3736aeb4 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core1d25a9d3736aeb4" => removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001UA.job => moved successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => not found
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
"HKU\S-1-5-21-377485661-1175933967-1024712423-1001\Software\Microsoft\Windows\CurrentVersion\Run\\OneDrive" => removed successfully
"HKU\S-1-5-21-377485661-1175933967-1024712423-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Delete Cached Update Binary" => not found
"HKU\S-1-5-21-377485661-1175933967-1024712423-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Delete Cached Standalone Update Binary" => not found
"HKU\S-1-5-21-377485661-1175933967-1024712423-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Delete Cached Standalone Update Binary" => not found
"HKU\S-1-5-21-377485661-1175933967-1024712423-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall 17.3.6816.0313\amd64" => not found
"HKU\S-1-5-21-377485661-1175933967-1024712423-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall 17.3.6816.0313" => not found
HKLM\SOFTWARE\Policies\Google => removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL" => removed successfully
"C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001UA.job" => not found
"C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-377485661-1175933967-1024712423-1001Core.job" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14768072 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 1041688 B
Edge => 2198741 B
Chrome => 69783867 B
Firefox => 229376 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 7680 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1826 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
Bronislav.P => 1631243 B

RecycleBin => 1541 B
EmptyTemp: => 91.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 12:39:22 ====


OS WIN 8 pro / MB MSI B150 PC MATE / CPU Intel Core i5-7400 /RAM Kingston 8GB DDR4 / GPU MSI RADEON RX 480 GAMING X 4G /
HDD Seagate BarraCuda 7200 SATA lll 1TB / SSD Kingston Now UV400 SATA III - 120GB / PSU CORSAIR CX Series 550W
-------------------------------------------------

Reklama
Uživatelský avatar
Diallix
Level 2
Level 2
Příspěvky: 165
Registrován: říjen 08
Pohlaví: Nespecifikováno

Re: Kontrola logu

Příspěvekod Diallix » 26 bře 2019 13:54

Dobre, ako je na tom pocitac?
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu:CyberSecurity UNIT
----
Bezpečnostná autorita fóra viry.cz Certifikát
----
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Uživatelský avatar
PARKR
Level 2.5
Level 2.5
Příspěvky: 362
Registrován: červenec 12
Bydliště: Severní Morava
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod PARKR » 26 bře 2019 14:19

zatím to vypadá že good :)) žádný virus nebyl nalezen ?
OS WIN 8 pro / MB MSI B150 PC MATE / CPU Intel Core i5-7400 /RAM Kingston 8GB DDR4 / GPU MSI RADEON RX 480 GAMING X 4G /
HDD Seagate BarraCuda 7200 SATA lll 1TB / SSD Kingston Now UV400 SATA III - 120GB / PSU CORSAIR CX Series 550W
-------------------------------------------------

Uživatelský avatar
PARKR
Level 2.5
Level 2.5
Příspěvky: 362
Registrován: červenec 12
Bydliště: Severní Morava
Pohlaví: Muž

Re: Kontrola logu  Vyřešeno

Příspěvekod PARKR » 26 bře 2019 17:10

ok vypucováno :) Děkuji chlapi
OS WIN 8 pro / MB MSI B150 PC MATE / CPU Intel Core i5-7400 /RAM Kingston 8GB DDR4 / GPU MSI RADEON RX 480 GAMING X 4G /
HDD Seagate BarraCuda 7200 SATA lll 1TB / SSD Kingston Now UV400 SATA III - 120GB / PSU CORSAIR CX Series 550W
-------------------------------------------------


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot], SidoniusPetram a 13 hostů