Náhodné freezy, na chvíli pomůže reset

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

ajvo14
nováček
Příspěvky: 20
Registrován: duben 19
Pohlaví: Muž

Náhodné freezy, na chvíli pomůže reset

Příspěvekod ajvo14 » 19 dub 2019 23:19

Zdravím, chtěl bych vás poprosit o radu - od včerejška mi začaly freezy. Najednou se mi sekne myš a klávesnice, zvuk i obraz na monitoru běží. Děje se to kdykoliv, u hraní, nebo i u prohlížení internetu. Pomůže jenom tvrdý restart, ale cca po hodině se to sekne znovu. Předem děkuji za rady

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:12:24, on 19.04.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
E:\Steam\Steam.exe
C:\Users\Ivo\AppData\Roaming\Seznam.cz\szninstall.exe
C:\Users\Ivo\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Samsung\Easy Setting Box\HookApp.exe
C:\Users\Ivo\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [ControlCenterCount] C:\Program Files (x86)\MSI\ControlCenter\ControlCenterCount.exe
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [EasySettingBox] C:\Program Files (x86)\Samsung\Easy Setting Box\EasySettingBox.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Steam] "E:\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Ivo\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Ivo\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Ivo\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: AdobeUpdateService - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - E:\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - E:\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 14 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11908 bytes



Reklama
Uživatelský avatar
Diallix
Level 2
Level 2
Příspěvky: 166
Registrován: říjen 08
Pohlaví: Nespecifikováno

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod Diallix » 20 dub 2019 10:37

Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu:CyberSecurity UNIT
----
Bezpečnostná autorita fóra viry.cz Certifikát
----
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

ajvo14
nováček
Příspěvky: 20
Registrován: duben 19
Pohlaví: Muž

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod ajvo14 » 20 dub 2019 13:06

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-18.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-20-2019
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 5
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\ProxyGate
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Users\Ivo\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{1EC095EE-8CA3-43D6-B9F5-0C55B82ED3D7}}_is1

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1590 octets] - [20/04/2019 13:03:18]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Uživatelský avatar
Diallix
Level 2
Level 2
Příspěvky: 166
Registrován: říjen 08
Pohlaví: Nespecifikováno

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod Diallix » 20 dub 2019 15:02

Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu:CyberSecurity UNIT
----
Bezpečnostná autorita fóra viry.cz Certifikát
----
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

ajvo14
nováček
Příspěvky: 20
Registrován: duben 19
Pohlaví: Muž

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod ajvo14 » 20 dub 2019 20:08

Tady posílám ty 2 soubory v příloze.

Ještě bych chtěl zmínit, že když mi ten pc freezne, tak mi i chvilku prestane svítit podsvícení na klávesnici, po chvilce se to podsvícení zase zapne, ale klávesnice s myší stejně furt nejdou a musím restartovat. zkoušel jsem podle tohoto návodu udělat všechno a taky nepomohlo https://www.drivereasy.com/knowledge/so ... ly-easily/.
Začalo to 18.4., kdy se to stalo jenom jednou za den, pak včera 19.4. to udělalo asi 20x a dnes zatím jenom jednou. Pc byl přeinstalovaný a komponenty vyčištěné cca před 4 měsícema. A ještě jsem si vzpomněl, že za tento týden pozoruju že se mi sem tam sekne myš, ale ta má už svoje stáří, každopádně klávesnice je asi rok stará.

Děkuji
Nemáte oprávnění prohlížet přiložené soubory.

petr22
Guru Level 15
Guru Level 15
Příspěvky: 36871
Registrován: únor 12
Pohlaví: Muž

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod petr22 » 20 dub 2019 20:21

Vypada to spise na hardwarovy problem. Ja doporucuji stahnout treba Linux Mint,
vytvorit bootovaci flashku a z ni spustit ten Linux, zda se to bude chovat stejne
jako ve Windows. Pokud bude, je to hw problem a zadne odvirovavaci programy
to nevyresi.

Takto se muze chovat napr. zakladni deska, kde zacina selhavat chipset, ve kterem
je i USB radic.

ajvo14
nováček
Příspěvky: 20
Registrován: duben 19
Pohlaví: Muž

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod ajvo14 » 20 dub 2019 20:28

aha, já to tak trochu tušil, asi bude teda opravdu čas na nový pc :D dobře, zkusím to, děkuji za radu

Uživatelský avatar
Diallix
Level 2
Level 2
Příspěvky: 166
Registrován: říjen 08
Pohlaví: Nespecifikováno

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod Diallix » 20 dub 2019 21:04

Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše

CloseProcesses:
VirusTotal: C:\WINDOWS\system32\EOSNotify.exe
VirusTotal: C:\OpenHardwareMonitor\OpenHardwareMonitor.sys
VirusTotal: C:\WINDOWS\SysWOW64\icuuc.dll

HKLM-x32\...\Run: [EasySettingBox] => C:\Program Files (x86)\Samsung\Easy Setting Box\EasySettingBox.exe**က*******����****C:\Program Files\Common Files\Microsoft Shared
Task: {88441C58-ABBB-4C88-9D29-5F94AB005CDE} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {0EBAB5DD-446F-46B8-B18D-EBE391BB3444} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {FE780CB0-ED16-4681-9806-BD2B98141F12} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
2019-04-19 23:27 - 2019-04-19 23:27 - 000534528 _____ () C:\Users\Ivo\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
FirewallRules: [{A73F43F6-FB16-4789-AF74-094D8BFF833B}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{4C5F359A-99D6-43A4-B30A-7EC6DB589DE3}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [UDP Query User{82267617-6DF9-4446-8FDA-B35951D5CE5B}E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{FFFCDDC4-A209-4F53-8012-3D0DFE55CAD0}E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C0A786E1-E63D-4999-BEE0-CDE2AA41A025}E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{B8FF58B1-7157-4EE1-8174-85C4121E6313}E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{38ED129F-B228-4856-A1C2-451F99C17A14}E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{D07F8FC7-B1C7-4571-BE4A-51A4EF43E9E5}E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{5AE3DC5A-DDC2-4FA6-97F3-F16B11B3AC33}C:\users\ivo\desktop\the sims 4.exe] => (Allow) C:\users\ivo\desktop\the sims 4.exe No File
FirewallRules: [TCP Query User{7CAC2079-2458-4301-8D91-6D4A4DD1B7CF}C:\users\ivo\desktop\the sims 4.exe] => (Allow) C:\users\ivo\desktop\the sims 4.exe No File
FirewallRules: [UDP Query User{D86E5EDF-E205-40FA-B0FA-EF91051D70C6}C:\users\ivo\desktop\ts4_x64.exe] => (Block) C:\users\ivo\desktop\ts4_x64.exe No File
FirewallRules: [TCP Query User{250BC3DE-4829-471C-85DF-40EF001D1128}C:\users\ivo\desktop\ts4_x64.exe] => (Block) C:\users\ivo\desktop\ts4_x64.exe No File
FirewallRules: [UDP Query User{E9C2D574-7210-4A47-ACAD-A8311A6FC30A}E:\activision\call of duty 2\cod2mp_fly_mode.exe] => (Allow) E:\activision\call of duty 2\cod2mp_fly_mode.exe No File
FirewallRules: [TCP Query User{EBEA11F2-68AB-4320-A0E3-699637D8FD0A}E:\activision\call of duty 2\cod2mp_fly_mode.exe] => (Allow) E:\activision\call of duty 2\cod2mp_fly_mode.exe No File
FirewallRules: [UDP Query User{158BCE15-71C8-4A2F-B704-D9882BA99D92}E:\activision\call of duty 2 mm\cod2mp_s.exe] => (Allow) E:\activision\call of duty 2 mm\cod2mp_s.exe No File
FirewallRules: [TCP Query User{EB92A962-971A-45F9-8CE7-359D4E7DE3F1}E:\activision\call of duty 2 mm\cod2mp_s.exe] => (Allow) E:\activision\call of duty 2 mm\cod2mp_s.exe No File

EmptyTemp:





Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST, pricom zvolte Kodovanie na UTF-8 (skopirujte do poznamkoveho bloku -> Subor -> Ulozit ako -> Encoding/Kodovaniee: zvolte UTF-8 -> ulozit).
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu:CyberSecurity UNIT
----
Bezpečnostná autorita fóra viry.cz Certifikát
----
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

ajvo14
nováček
Příspěvky: 20
Registrován: duben 19
Pohlaví: Muž

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod ajvo14 » 20 dub 2019 23:57

Fix result of Farbar Recovery Scan Tool (x64) Version: 20.04.2019 01
Ran by Ivo (20-04-2019 23:54:18) Run:1
Running from C:\Users\Ivo\Desktop
Loaded Profiles: Ivo (Available Profiles: defaultuser0 & Ivo)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
VirusTotal: C:\WINDOWS\system32\EOSNotify.exe
VirusTotal: C:\OpenHardwareMonitor\OpenHardwareMonitor.sys
VirusTotal: C:\WINDOWS\SysWOW64\icuuc.dll

HKLM-x32\...\Run: [EasySettingBox] => C:\Program Files (x86)\Samsung\Easy Setting Box\EasySettingBox.exe**က*******����****C:\Program Files\Common Files\Microsoft Shared
Task: {88441C58-ABBB-4C88-9D29-5F94AB005CDE} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {0EBAB5DD-446F-46B8-B18D-EBE391BB3444} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {FE780CB0-ED16-4681-9806-BD2B98141F12} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
2019-04-19 23:27 - 2019-04-19 23:27 - 000534528 _____ () C:\Users\Ivo\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
FirewallRules: [{A73F43F6-FB16-4789-AF74-094D8BFF833B}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{4C5F359A-99D6-43A4-B30A-7EC6DB589DE3}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [UDP Query User{82267617-6DF9-4446-8FDA-B35951D5CE5B}E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{FFFCDDC4-A209-4F53-8012-3D0DFE55CAD0}E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C0A786E1-E63D-4999-BEE0-CDE2AA41A025}E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{B8FF58B1-7157-4EE1-8174-85C4121E6313}E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{38ED129F-B228-4856-A1C2-451F99C17A14}E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{D07F8FC7-B1C7-4571-BE4A-51A4EF43E9E5}E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{5AE3DC5A-DDC2-4FA6-97F3-F16B11B3AC33}C:\users\ivo\desktop\the sims 4.exe] => (Allow) C:\users\ivo\desktop\the sims 4.exe No File
FirewallRules: [TCP Query User{7CAC2079-2458-4301-8D91-6D4A4DD1B7CF}C:\users\ivo\desktop\the sims 4.exe] => (Allow) C:\users\ivo\desktop\the sims 4.exe No File
FirewallRules: [UDP Query User{D86E5EDF-E205-40FA-B0FA-EF91051D70C6}C:\users\ivo\desktop\ts4_x64.exe] => (Block) C:\users\ivo\desktop\ts4_x64.exe No File
FirewallRules: [TCP Query User{250BC3DE-4829-471C-85DF-40EF001D1128}C:\users\ivo\desktop\ts4_x64.exe] => (Block) C:\users\ivo\desktop\ts4_x64.exe No File
FirewallRules: [UDP Query User{E9C2D574-7210-4A47-ACAD-A8311A6FC30A}E:\activision\call of duty 2\cod2mp_fly_mode.exe] => (Allow) E:\activision\call of duty 2\cod2mp_fly_mode.exe No File
FirewallRules: [TCP Query User{EBEA11F2-68AB-4320-A0E3-699637D8FD0A}E:\activision\call of duty 2\cod2mp_fly_mode.exe] => (Allow) E:\activision\call of duty 2\cod2mp_fly_mode.exe No File
FirewallRules: [UDP Query User{158BCE15-71C8-4A2F-B704-D9882BA99D92}E:\activision\call of duty 2 mm\cod2mp_s.exe] => (Allow) E:\activision\call of duty 2 mm\cod2mp_s.exe No File
FirewallRules: [TCP Query User{EB92A962-971A-45F9-8CE7-359D4E7DE3F1}E:\activision\call of duty 2 mm\cod2mp_s.exe] => (Allow) E:\activision\call of duty 2 mm\cod2mp_s.exe No File

EmptyTemp:


*****************

Processes closed successfully.
"VirusTotal: C:\WINDOWS\system32\EOSNotify.exe" => not found
VirusTotal: C:\OpenHardwareMonitor\OpenHardwareMonitor.sys => https://www.virustotal.com/file/11bd2c9 ... 555645865/
VirusTotal: C:\WINDOWS\SysWOW64\icuuc.dll => https://www.virustotal.com/file/752b408 ... 555055312/
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\EasySettingBox" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{88441C58-ABBB-4C88-9D29-5F94AB005CDE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88441C58-ABBB-4C88-9D29-5F94AB005CDE}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0EBAB5DD-446F-46B8-B18D-EBE391BB3444}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0EBAB5DD-446F-46B8-B18D-EBE391BB3444}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FE780CB0-ED16-4681-9806-BD2B98141F12}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE780CB0-ED16-4681-9806-BD2B98141F12}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\Users\Ivo\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe => moved successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A73F43F6-FB16-4789-AF74-094D8BFF833B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4C5F359A-99D6-43A4-B30A-7EC6DB589DE3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{82267617-6DF9-4446-8FDA-B35951D5CE5B}E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FFFCDDC4-A209-4F53-8012-3D0DFE55CAD0}E:\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C0A786E1-E63D-4999-BEE0-CDE2AA41A025}E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B8FF58B1-7157-4EE1-8174-85C4121E6313}E:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{38ED129F-B228-4856-A1C2-451F99C17A14}E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D07F8FC7-B1C7-4571-BE4A-51A4EF43E9E5}E:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5AE3DC5A-DDC2-4FA6-97F3-F16B11B3AC33}C:\users\ivo\desktop\the sims 4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7CAC2079-2458-4301-8D91-6D4A4DD1B7CF}C:\users\ivo\desktop\the sims 4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D86E5EDF-E205-40FA-B0FA-EF91051D70C6}C:\users\ivo\desktop\ts4_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{250BC3DE-4829-471C-85DF-40EF001D1128}C:\users\ivo\desktop\ts4_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E9C2D574-7210-4A47-ACAD-A8311A6FC30A}E:\activision\call of duty 2\cod2mp_fly_mode.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EBEA11F2-68AB-4320-A0E3-699637D8FD0A}E:\activision\call of duty 2\cod2mp_fly_mode.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{158BCE15-71C8-4A2F-B704-D9882BA99D92}E:\activision\call of duty 2 mm\cod2mp_s.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EB92A962-971A-45F9-8CE7-359D4E7DE3F1}E:\activision\call of duty 2 mm\cod2mp_s.exe" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8675328 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 19017558 B
Java, Flash, Steam htmlcache => 12989091 B
Windows/system/drivers => 752448 B
Edge => 1138664 B
Chrome => 20286316 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 17988 B
NetworkService => 0 B
defaultuser0 => 0 B
Ivo => 4012869 B

RecycleBin => 5415 B
EmptyTemp: => 63.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 23:54:29 ====

Uživatelský avatar
JegenaJk
Level 3.5
Level 3.5
Příspěvky: 788
Registrován: prosinec 17
Pohlaví: Muž

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod JegenaJk » 21 dub 2019 02:41

(Ospravedlňujem) sa že odpovedám tam kde by som nemal nič písať) Nový PC kupovať nemusíš vôbec , pošli zostavu a ak nebude 10 rokov stará , tak vytvor nové téma a nejak ti poradíme a pomôžeme...
Ak potrebuješ pomoc , tak kľudne napíš do PM :) Rád pomôžem :thumbup:

Uživatelský avatar
Diallix
Level 2
Level 2
Příspěvky: 166
Registrován: říjen 08
Pohlaví: Nespecifikováno

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod Diallix » 21 dub 2019 08:59

Ako je na tom pocitac?
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu:CyberSecurity UNIT
----
Bezpečnostná autorita fóra viry.cz Certifikát
----
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

ajvo14
nováček
Příspěvky: 20
Registrován: duben 19
Pohlaví: Muž

Re: Náhodné freezy, na chvíli pomůže reset

Příspěvekod ajvo14 » 21 dub 2019 15:30

JegenaJk píše:(Ospravedlňujem) sa že odpovedám tam kde by som nemal nič písať) Nový PC kupovať nemusíš vôbec , pošli zostavu a ak nebude 10 rokov stará , tak vytvor nové téma a nejak ti poradíme a pomôžeme...


Nemusíte se omlouvat, já koneckonců stejně chci nový pc, ale zároveň bych tento chtěl opravit a poslat ho dál, protože jsem si teď nedávno koupil 144 hz monitor a tento pc mi novejší hry na 144fps stejně nerozjede.

Sestavu mam toto:
i5 2500k (takt na 4.3 ghz)
gtx 770
ram 16gb
msi Z77A-G43
ssd 860 evo 500gb
1tb disk


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 1 host