Prosím o kontrolu logu Vyřešeno
Napsal: 14 říj 2022 19:33
Prosím o kontrolu. Vyskakují mi v Chromu okna se sexy stránkami po kliknutí na odkazy v různých stránkách.
Děkuji
Pritt
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26
Platform: x64 Windows 10 (Home), 10.0.19044.2130 (ReleaseId: 2009), Service Pack: 0
Time: 14.10.2022 - 19:26 (UTC+02:00)
Language: OS: Czech (0x405). Display: Czech (0x405). Non-Unicode: Czech (0x405)
Elevated: Yes
Ran by: Prodejna (group: Administrator) on PRODEJNA-KASA, FirstRun: yes
Chrome: 106.0.5249.119
Internet Explorer: 11.0.19041.1566
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)
Boot mode: Normal
Running processes:
Number | Path
3 C:\Program Files (x86)\AnyDesk\AnyDesk.exe
14 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
1 C:\Program Files (x86)\Sticky Password\spNMHost.exe
1 C:\Program Files (x86)\TeamViewer\TeamViewer.exe
1 C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
1 C:\Program Files (x86)\TeamViewer\tv_w32.exe
1 C:\Program Files (x86)\TeamViewer\tv_x64.exe
1 C:\Program Files\Bitdefender Agent\redline\bdredline.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
3 C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdtrackersnmh.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdwtxcr.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\odscanui.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\seccenter.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
1 C:\Program Files\CCleaner\CCleaner64.exe
1 C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
1 C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
1 C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe
1 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
1 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.111.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
1 C:\Users\Prodejna\AppData\Local\Kingsoft\WPS Office\11.2.0.11341\office6\wpscenter.exe
1 C:\Users\Prodejna\AppData\Local\Viber\Viber.exe
1 C:\Users\Prodejna\Desktop\HiJackThis\HiJackThis.exe
1 C:\Windows\SysWOW64\notepad.exe
1 C:\Windows\System32\MoUsoCoreWorker.exe
6 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\SgrmBroker.exe
2 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\System32\audiodg.exe
3 C:\Windows\System32\cmd.exe
3 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\ctfmon.exe
2 C:\Windows\System32\dasHost.exe
1 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\mstsc.exe
1 C:\Windows\System32\oobe\UserOOBEBroker.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
79 C:\Windows\System32\svchost.exe
3 C:\Windows\System32\taskhostw.exe
2 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
2 C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 C:\Windows\explorer.exe
O1 - Hosts: is empty
O2 - HKLM\..\BHO: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll
O2 - HKLM\..\BHO: Bitdefender Trackers Blocking - {159ff5d5-55f1-4d2f-b706-767a55f77abb} - C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll
O2 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.42\BHO\ie_to_edge_bho_64.dll
O2-32 - HKLM\..\BHO: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O2-32 - HKLM\..\BHO: Bitdefender Trackers Blocking - {159ff5d5-55f1-4d2f-b706-767a55f77abb} - C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll
O2-32 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.42\BHO\ie_to_edge_bho.dll
O3 - HKLM\..\Toolbar: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll
O3-32 - HKLM\..\Toolbar: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_AD040CD4744FB0EB71C17803BF1A1678] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start /prefetch:5
O4 - HKCU\..\Run: [StickyPassword] = C:\Program Files (x86)\Sticky Password\stpass.exe
O4 - HKCU\..\Run: [Viber] = C:\Users\Prodejna\AppData\Local\Viber\Viber.exe AutoStart
O4 - HKCU\..\Run: [eM Client] = C:\Program Files (x86)\eM Client\MailClient.exe /startup
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2022/08/31)
O4 - HKLM\..\Run: [CNAP2 Launcher] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE
O4 - HKLM\..\Run: [HP LaserJet Professional M1530 MFP Series Fax] = C:\Program Files (x86)\HP\Digital Imaging\Fax\Fax Driver 0.6 Base\hppfaxprintersrv.exe "HP LaserJet Professional M1530 MFP Series Fax"
O4 - HKLM\..\Run: [TSP100ecoOndemand] = C:\Program Files (x86)\StarMicronics\TSP100\Software\20171207\Ondemand.exe
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe --control (1601/01/01)
O4-32 - HKLM\..\Run: [Qsync] = C:\Program Files (x86)\QNAP\Qsync\Qsync.exe /launch_qsync
O9 - Button: HKLM\..\{159ff5d5-55f1-4d2f-b706-767a55f77abb}: Bitdefender Anti-tracker - C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll
O9-32 - Button: HKLM\..\{159ff5d5-55f1-4d2f-b706-767a55f77abb}: Bitdefender Anti-tracker - C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll
O17 - DHCP DNS 1: 192.168.1.1
O17 - DHCP DNS 2: 31.30.90.11
O17 - DHCP DNS 3: 31.30.90.12
O17 - DHCP DNS 4: 10.0.0.138
O17 - DHCP DNS 5: 192.168.8.1
O17 - DHCP DNS 6: 1.1.1.1 (Well-known DNS: Cloudflare / APNIC)
O17 - DHCP DNS 7: 8.8.8.8 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ QsyncEx_Icon1: QsyncShellExt Class - {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} - C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ QsyncEx_Icon2: (no name) - {A31C3AF7-2870-4121-AF94-1BF770A2C95B} - C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ QsyncEx_Icon3: (no name) - {7937C765-6EFA-4184-A69C-1101127615E8} - C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ QsyncEx_Icon4: (no name) - {DDA7CE77-08EA-4047-A53E-C4FB10C307F2} - C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll
O22 - Task (.job): CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "47abea9b-4ff0-4c25-be22-b9f67d1191b4" --version "6.04.10044" --silent
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_AC - C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (Microsoft)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_Battery - C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask - {D2CBF5F7-5702-440B-8D8F-8203034A6B82},$(Arg0) - (no file)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (Microsoft)
O22 - Task: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O22 - Task: Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 - C:\Program Files\Bitdefender Agent\26.0.1.231\WatchDog.exe repair
O22 - Task: Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C - C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
O22 - Task: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Task: CCleanerCrashReporting - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "47abea9b-4ff0-4c25-be22-b9f67d1191b4" --version "6.04.10044" --silent
O22 - Task: CCleanerSkipUAC - Prodejna - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: OneDrive Reporting Task-S-1-5-21-3885610105-3758572810-27774397-1001 - C:\Users\Prodejna\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting
O22 - Task: QNAPQsyncAutoLaunch - C:\Program Files (x86)\QNAP\Qsync\Qsync.exe /launch_qsync
O22 - Task: WpsExternal_Prodejna_20220923115355 - C:\Users\Prodejna\AppData\Local\Kingsoft\WPS Office\11.2.0.11341\office6\wpscloudsvr.exe /wpscloudlaunch /run_plugin /plugin_name=ktaskschdtool /plugin_entry=ktaskschdtool.dll /task=wpsexternal /launchtask /ver=1.0 /start_from=task_external
O22 - Task: WpsUpdateTask_Prodejna - C:\Users\Prodejna\AppData\Local\Kingsoft\WPS Office\11.2.0.11341\office6\wpsupdate.exe -from=task
O22 - Task: \Microsoft\Windows\AppListBackup\Backup - {E0DCC2CC-3354-45F2-8914-519E07809082} - C:\WINDOWS\system32\AppListBackupLauncher.dll (Microsoft)
O22 - Task: \Microsoft\Windows\Printing\PrinterCleanupTask - {C56F065E-DE49-4E42-BE7C-305C45609D25} - C:\WINDOWS\System32\PrinterCleanupTask.dll (Microsoft)
O22 - Task: \Microsoft\Windows\Shell\ThemesSyncedImageDownload - {79F8E185-4E45-4B74-8182-02AA430661E4} - C:\WINDOWS\System32\Themes.SsfDownload.ScheduledTask.dll (Microsoft)
O23 - Service R2: AnyDesk Service - (AnyDesk) - C:\Program Files (x86)\AnyDesk\AnyDesk.exe --service
O23 - Service R2: Bitdefender Agent RedLine Service - (bdredline_agent) - C:\Program Files\Bitdefender Agent\redline\bdredline.exe
O23 - Service R2: Bitdefender Auxiliary Service - (BDAuxSrv) - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe "settings/services/configs/bdauxsrv_config.json"
O23 - Service R2: Bitdefender Desktop Update Service - (UPDATESRV) - C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe /service
O23 - Service R2: Bitdefender Protected Service - (BDProtSrv) - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe "settings\services\configs\bdprotsrv_config.json"
O23 - Service R2: Bitdefender RedLine Service - (bdredline) - C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
O23 - Service R2: Bitdefender Virus Shield - (VSSERV) - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe "settings/services/configs/bdshieldsrv_config.json"
O23 - Service R2: SpyHunter 5 Kernel - (EsgShKernel) - C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
O23 - Service R2: TeamViewer 13 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service S2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service S2: AtherosSvc - C:\WINDOWS\System32\drivers\AdminService.exe
O23 - Service S2: Intel(R) Dynamic Platform and Thermal Framework service - (esifsvc) - C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe
O23 - Service S2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService1.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service S2: Net Driver HPZ12 - C:\WINDOWS\System32\svchost.exe -k HPZ12; "ServiceDll" = C:\Windows\System32\HPZinw12.dll
O23 - Service S2: Pml Driver HPZ12 - C:\WINDOWS\System32\svchost.exe -k HPZ12; "ServiceDll" = C:\Windows\System32\HPZipm12.dll
O23 - Service S2: ProductAgentService - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service S2: Služba Aktualizace Google (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: SpyHunter 5 Kernel Monitor - (ShMonitor) - C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Port Emulator (Star) - (PortEmulator) - C:\Program Files\StarMicronics\TSP100\Software\20171207\portemu_umdf_tsp100.exe
O23 - Service S3: Služba Aktualizace Google (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: TCP Port Emulator (TSP100) - (TcpEmulatorTSP100LAN) - C:\Program Files\StarMicronics\TSP100\Software\20171207\tcpemu_tsp100lan.exe
--
End of file - Time spent: 69,8 sec. - 30878 bytes, CRC32: FFFFFFFF. Sign: 蒛ᡡ
Děkuji
Pritt
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26
Platform: x64 Windows 10 (Home), 10.0.19044.2130 (ReleaseId: 2009), Service Pack: 0
Time: 14.10.2022 - 19:26 (UTC+02:00)
Language: OS: Czech (0x405). Display: Czech (0x405). Non-Unicode: Czech (0x405)
Elevated: Yes
Ran by: Prodejna (group: Administrator) on PRODEJNA-KASA, FirstRun: yes
Chrome: 106.0.5249.119
Internet Explorer: 11.0.19041.1566
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)
Boot mode: Normal
Running processes:
Number | Path
3 C:\Program Files (x86)\AnyDesk\AnyDesk.exe
14 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
1 C:\Program Files (x86)\Sticky Password\spNMHost.exe
1 C:\Program Files (x86)\TeamViewer\TeamViewer.exe
1 C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
1 C:\Program Files (x86)\TeamViewer\tv_w32.exe
1 C:\Program Files (x86)\TeamViewer\tv_x64.exe
1 C:\Program Files\Bitdefender Agent\redline\bdredline.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
3 C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdtrackersnmh.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\bdwtxcr.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\odscanui.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\seccenter.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
1 C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
1 C:\Program Files\CCleaner\CCleaner64.exe
1 C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
1 C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
1 C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe
1 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
1 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.111.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
1 C:\Users\Prodejna\AppData\Local\Kingsoft\WPS Office\11.2.0.11341\office6\wpscenter.exe
1 C:\Users\Prodejna\AppData\Local\Viber\Viber.exe
1 C:\Users\Prodejna\Desktop\HiJackThis\HiJackThis.exe
1 C:\Windows\SysWOW64\notepad.exe
1 C:\Windows\System32\MoUsoCoreWorker.exe
6 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\SgrmBroker.exe
2 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\System32\audiodg.exe
3 C:\Windows\System32\cmd.exe
3 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\ctfmon.exe
2 C:\Windows\System32\dasHost.exe
1 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\mstsc.exe
1 C:\Windows\System32\oobe\UserOOBEBroker.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
79 C:\Windows\System32\svchost.exe
3 C:\Windows\System32\taskhostw.exe
2 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
2 C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 C:\Windows\explorer.exe
O1 - Hosts: is empty
O2 - HKLM\..\BHO: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll
O2 - HKLM\..\BHO: Bitdefender Trackers Blocking - {159ff5d5-55f1-4d2f-b706-767a55f77abb} - C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll
O2 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.42\BHO\ie_to_edge_bho_64.dll
O2-32 - HKLM\..\BHO: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O2-32 - HKLM\..\BHO: Bitdefender Trackers Blocking - {159ff5d5-55f1-4d2f-b706-767a55f77abb} - C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll
O2-32 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.42\BHO\ie_to_edge_bho.dll
O3 - HKLM\..\Toolbar: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll
O3-32 - HKLM\..\Toolbar: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_AD040CD4744FB0EB71C17803BF1A1678] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start /prefetch:5
O4 - HKCU\..\Run: [StickyPassword] = C:\Program Files (x86)\Sticky Password\stpass.exe
O4 - HKCU\..\Run: [Viber] = C:\Users\Prodejna\AppData\Local\Viber\Viber.exe AutoStart
O4 - HKCU\..\Run: [eM Client] = C:\Program Files (x86)\eM Client\MailClient.exe /startup
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2022/08/31)
O4 - HKLM\..\Run: [CNAP2 Launcher] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE
O4 - HKLM\..\Run: [HP LaserJet Professional M1530 MFP Series Fax] = C:\Program Files (x86)\HP\Digital Imaging\Fax\Fax Driver 0.6 Base\hppfaxprintersrv.exe "HP LaserJet Professional M1530 MFP Series Fax"
O4 - HKLM\..\Run: [TSP100ecoOndemand] = C:\Program Files (x86)\StarMicronics\TSP100\Software\20171207\Ondemand.exe
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe --control (1601/01/01)
O4-32 - HKLM\..\Run: [Qsync] = C:\Program Files (x86)\QNAP\Qsync\Qsync.exe /launch_qsync
O9 - Button: HKLM\..\{159ff5d5-55f1-4d2f-b706-767a55f77abb}: Bitdefender Anti-tracker - C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll
O9-32 - Button: HKLM\..\{159ff5d5-55f1-4d2f-b706-767a55f77abb}: Bitdefender Anti-tracker - C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll
O17 - DHCP DNS 1: 192.168.1.1
O17 - DHCP DNS 2: 31.30.90.11
O17 - DHCP DNS 3: 31.30.90.12
O17 - DHCP DNS 4: 10.0.0.138
O17 - DHCP DNS 5: 192.168.8.1
O17 - DHCP DNS 6: 1.1.1.1 (Well-known DNS: Cloudflare / APNIC)
O17 - DHCP DNS 7: 8.8.8.8 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ QsyncEx_Icon1: QsyncShellExt Class - {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} - C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ QsyncEx_Icon2: (no name) - {A31C3AF7-2870-4121-AF94-1BF770A2C95B} - C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ QsyncEx_Icon3: (no name) - {7937C765-6EFA-4184-A69C-1101127615E8} - C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ QsyncEx_Icon4: (no name) - {DDA7CE77-08EA-4047-A53E-C4FB10C307F2} - C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll
O22 - Task (.job): CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "47abea9b-4ff0-4c25-be22-b9f67d1191b4" --version "6.04.10044" --silent
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_AC - C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (Microsoft)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_Battery - C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask - {D2CBF5F7-5702-440B-8D8F-8203034A6B82},$(Arg0) - (no file)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (Microsoft)
O22 - Task: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O22 - Task: Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 - C:\Program Files\Bitdefender Agent\26.0.1.231\WatchDog.exe repair
O22 - Task: Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C - C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
O22 - Task: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Task: CCleanerCrashReporting - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "47abea9b-4ff0-4c25-be22-b9f67d1191b4" --version "6.04.10044" --silent
O22 - Task: CCleanerSkipUAC - Prodejna - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: OneDrive Reporting Task-S-1-5-21-3885610105-3758572810-27774397-1001 - C:\Users\Prodejna\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting
O22 - Task: QNAPQsyncAutoLaunch - C:\Program Files (x86)\QNAP\Qsync\Qsync.exe /launch_qsync
O22 - Task: WpsExternal_Prodejna_20220923115355 - C:\Users\Prodejna\AppData\Local\Kingsoft\WPS Office\11.2.0.11341\office6\wpscloudsvr.exe /wpscloudlaunch /run_plugin /plugin_name=ktaskschdtool /plugin_entry=ktaskschdtool.dll /task=wpsexternal /launchtask /ver=1.0 /start_from=task_external
O22 - Task: WpsUpdateTask_Prodejna - C:\Users\Prodejna\AppData\Local\Kingsoft\WPS Office\11.2.0.11341\office6\wpsupdate.exe -from=task
O22 - Task: \Microsoft\Windows\AppListBackup\Backup - {E0DCC2CC-3354-45F2-8914-519E07809082} - C:\WINDOWS\system32\AppListBackupLauncher.dll (Microsoft)
O22 - Task: \Microsoft\Windows\Printing\PrinterCleanupTask - {C56F065E-DE49-4E42-BE7C-305C45609D25} - C:\WINDOWS\System32\PrinterCleanupTask.dll (Microsoft)
O22 - Task: \Microsoft\Windows\Shell\ThemesSyncedImageDownload - {79F8E185-4E45-4B74-8182-02AA430661E4} - C:\WINDOWS\System32\Themes.SsfDownload.ScheduledTask.dll (Microsoft)
O23 - Service R2: AnyDesk Service - (AnyDesk) - C:\Program Files (x86)\AnyDesk\AnyDesk.exe --service
O23 - Service R2: Bitdefender Agent RedLine Service - (bdredline_agent) - C:\Program Files\Bitdefender Agent\redline\bdredline.exe
O23 - Service R2: Bitdefender Auxiliary Service - (BDAuxSrv) - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe "settings/services/configs/bdauxsrv_config.json"
O23 - Service R2: Bitdefender Desktop Update Service - (UPDATESRV) - C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe /service
O23 - Service R2: Bitdefender Protected Service - (BDProtSrv) - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe "settings\services\configs\bdprotsrv_config.json"
O23 - Service R2: Bitdefender RedLine Service - (bdredline) - C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
O23 - Service R2: Bitdefender Virus Shield - (VSSERV) - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe "settings/services/configs/bdshieldsrv_config.json"
O23 - Service R2: SpyHunter 5 Kernel - (EsgShKernel) - C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
O23 - Service R2: TeamViewer 13 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service S2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service S2: AtherosSvc - C:\WINDOWS\System32\drivers\AdminService.exe
O23 - Service S2: Intel(R) Dynamic Platform and Thermal Framework service - (esifsvc) - C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe
O23 - Service S2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService1.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service S2: Net Driver HPZ12 - C:\WINDOWS\System32\svchost.exe -k HPZ12; "ServiceDll" = C:\Windows\System32\HPZinw12.dll
O23 - Service S2: Pml Driver HPZ12 - C:\WINDOWS\System32\svchost.exe -k HPZ12; "ServiceDll" = C:\Windows\System32\HPZipm12.dll
O23 - Service S2: ProductAgentService - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service S2: Služba Aktualizace Google (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: SpyHunter 5 Kernel Monitor - (ShMonitor) - C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Port Emulator (Star) - (PortEmulator) - C:\Program Files\StarMicronics\TSP100\Software\20171207\portemu_umdf_tsp100.exe
O23 - Service S3: Služba Aktualizace Google (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: TCP Port Emulator (TSP100) - (TcpEmulatorTSP100LAN) - C:\Program Files\StarMicronics\TSP100\Software\20171207\tcpemu_tsp100lan.exe
--
End of file - Time spent: 69,8 sec. - 30878 bytes, CRC32: FFFFFFFF. Sign: 蒛ᡡ