Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Asus kontrola

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
martin1973
Návštěvník
Návštěvník
Příspěvky: 187
Registrován: 13 led 2010 23:10

Asus kontrola

#1 Příspěvek od martin1973 »

Dcérin ntb ide veľmi pomaly,seká sa a dlho načítava stránky.Preskenované MBM nič nenašiel.Prečo ma MBM nechce pustiť na vašu stránku?Ďakujem za pomoc
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-12-2021
Ran by cigas (administrator) on LAPTOP-B864FHMO (ASUSTeK COMPUTER INC. X705UAR) (13-12-2021 21:28:22)
Running from C:\Users\cigas\Downloads
Loaded Profiles: cigas
Platform: Microsoft Windows 11 Home Version 21H2 22000.348 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTek Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBox.Agent.exe
(ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\ACMON.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <27>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxext.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\IntelCpHeciSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.53\msedgewebview2.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\cigas\AppData\Local\Microsoft\Teams\current\Teams.exe <8>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.355.194.0.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20050.505.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(nordvpn s.a. -> TEFINCOM S.A.) C:\Users\cigas\Desktop\NordVPN\NordVPN.exe
(nordvpn s.a. -> TEFINCOM S.A.) C:\Users\cigas\Desktop\NordVPN\nordvpn-service.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Spotify AB -> Spotify Ltd) C:\Users\cigas\AppData\Roaming\Spotify\Spotify.exe <6>
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-21-1176141647-322040412-2467296114-1003\...\Run: [com.squirrel.Teams.Teams] => C:\Users\cigas\AppData\Local\Microsoft\Teams\Update.exe [2459344 2021-12-07] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1176141647-322040412-2467296114-1003\...\Run: [NordVPN] => C:\Users\cigas\Desktop\NordVPN\NordVPN.exe [280440 2021-06-06] (nordvpn s.a. -> TEFINCOM S.A.)
HKU\S-1-5-21-1176141647-322040412-2467296114-1003\...\Run: [Spotify] => C:\Users\cigas\AppData\Roaming\Spotify\Spotify.exe [19065272 2021-12-10] (Spotify AB -> Spotify Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.93\Installer\chrmstp.exe [2021-12-09] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\cigas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odoslanie do aplikácie OneNote.lnk [2021-12-01]
ShortcutTarget: Odoslanie do aplikácie OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08CF8A40-341D-4E3C-8A65-D424340D140C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {16B45A87-1B41-4533-912D-EC89F9E5F8CD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {23293ACC-FE33-482F-A35D-477D6EC72E77} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6331288 2021-12-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {2E8177E1-1F38-4377-9ED3-766541DB9F8B} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {30C69039-F267-424F-8193-A3E749C66D1C} - System32\Tasks\SplendidTask => C:\ProgramData\ASUS\ASUS [Argument = Splendid\SplendidStartUp.exe]
Task: {538E44D2-FEAE-4B7D-8BD2-A674B20E2B23} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {6CEDAEE5-AFC9-423E-BCE7-58CA62929F5E} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143672 2019-04-13] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {755808A0-E21E-4053-88F8-0718B29B3F35} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {8C5FFEEB-FA2F-4583-A71F-0C67B5F4D374} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8E88C920-2A02-448D-BC68-8D647E05D4EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-24] (Google LLC -> Google LLC)
Task: {8FAC1BCE-46E0-48F7-A5CD-5A313B418355} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {984427A8-C570-41A6-935A-18716737F274} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-24] (Google LLC -> Google LLC)
Task: {99D89B69-5FF0-43E5-B396-169FFA6B2025} - System32\Tasks\HPCustParticipation HP Ink Tank Wireless 410 series => C:\Program Files\HP\HP Ink Tank Wireless 410 series\Bin\HPCustPartic.exe [6661256 2018-07-27] (Hewlett Packard -> HP Inc.)
Task: {BCF2F699-4363-435F-8BB0-D17940F59AA9} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {BFBBC989-3474-4A2F-955C-6EB330DB11C4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {C06552C3-77D1-4DC7-8B27-81EE2BDE7E6B} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {CBD6DFEA-7DCE-4236-903E-195A743A3AD2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6331288 2021-12-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {E884DEE8-FE78-411A-BF4B-77D2B5EFC8E4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F6BB75DB-C01B-4386-8CAD-319AF1FAF27D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {FB1F49DB-3B48-4CDF-8D06-AFBEEE35360F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-08] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8e277290-ed71-4330-8a79-c25f2f8fbc06}: [NameServer] 103.86.96.100,103.86.99.100
Tcpip\..\Interfaces\{de17ce5a-bc6d-44df-8854-092d58d9e5e7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{eff27d83-efd5-40a8-af7a-63a1240db9a8}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Profile: C:\Users\cigas\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-10]

FireFox:
========
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default [2021-12-13]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://www.facebook.com; hxxps://www.youtube.com
CHR NewTab: Default -> Active:"chrome-extension://ijpgjiobapjdadigoagamcmhmdfdggmg/index.html"
CHR DefaultSearchURL: Default -> hxxps://oceanhero.today/web?q={searchTerms}&utm_medium=Extension:omnibox&utm_source=Chrome
CHR DefaultSearchKeyword: Default -> oceanhero
CHR DefaultSuggestURL: Default -> hxxps://api.oceanhero.today/suggestions?q={searchTerms}&mkt=sk&v=4.24.5&utm_medium=Extension:omnibox
CHR Extension: (Prezentácie) - C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-24]
CHR Extension: (Dokumenty) - C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-24]
CHR Extension: (Disk Google) - C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-07-24]
CHR Extension: (Tabuľky) - C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-24]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-02]
CHR Extension: (OceanHero) - C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijpgjiobapjdadigoagamcmhmdfdggmg [2021-12-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\cigas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129160 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
S2 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [325456 2018-06-12] (ASUSTek Computer Inc. -> )
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [299320 2019-04-09] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-11-01] (HP Inc. -> HP Inc.)
R2 nordvpn-service; C:\Users\cigas\Desktop\NordVPN\nordvpn-service.exe [280440 2021-06-06] (nordvpn s.a. -> TEFINCOM S.A.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 HHTHid; C:\WINDOWS\System32\drivers\HHTHid.sys [8192 2011-11-29] (Microsoft Windows Hardware Compatibility Publisher -> HHT-Tech)
S3 HHTHid_ArtvhMouFiltr; C:\WINDOWS\System32\drivers\HHTHidMouFiltr.sys [7168 2011-11-29] (Microsoft Windows Hardware Compatibility Publisher -> HHT-Tech)
S3 hhusb5; C:\WINDOWS\system32\DRIVERS\hhusb5.sys [37944 2012-05-11] (HiteVision Digital Media Technology Co.,Ltd -> )
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2021-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 nlwt; C:\WINDOWS\system32\DRIVERS\nlwt.sys [39360 2021-04-25] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [38608 2020-10-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [97280 2012-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [121120 2021-10-06] (WDKTestCert dant_ppxe9ny,132750999598161733 -> Wacom Technology, Corp.)
S3 wacomrouterfilter; C:\WINDOWS\System32\drivers\wacomrouterfilter.sys [20720 2021-10-06] (WDKTestCert dant_ppxe9ny,132750999598161733 -> Wacom Technology, Corp.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29680 2021-10-06] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-13 21:28 - 2021-12-13 21:36 - 000019502 _____ C:\Users\cigas\Downloads\FRST.txt
2021-12-13 21:25 - 2021-12-13 21:32 - 000000000 ____D C:\FRST
2021-12-13 21:23 - 2021-12-13 21:24 - 002311168 _____ (Farbar) C:\Users\cigas\Downloads\FRST64.exe
2021-12-13 21:20 - 2021-12-13 21:21 - 002019328 _____ (Farbar) C:\Users\cigas\Downloads\FRST.exe
2021-12-13 17:18 - 2021-12-13 17:18 - 000136226 _____ C:\Users\cigas\Downloads\Zapocet 2_2021.pdf
2021-12-13 17:18 - 2021-12-13 17:18 - 000009804 _____ C:\Users\cigas\Downloads\Započet2_počet_obyv1993_2020.xlsx
2021-12-13 17:18 - 2021-12-13 17:18 - 000009603 _____ C:\Users\cigas\Downloads\Započet2_hustota2020.xlsx
2021-12-11 22:03 - 2021-12-11 22:04 - 001175771 _____ C:\Users\cigas\Downloads\IL_PREDMETOV_1639256607251.PDF
2021-12-11 21:10 - 2021-12-11 21:10 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1176141647-322040412-2467296114-1003
2021-12-08 22:29 - 2021-12-08 22:29 - 000003482 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7e967d8c8ae20
2021-12-08 10:07 - 2021-12-08 10:07 - 001213149 _____ C:\Users\cigas\Downloads\IL_PREDMETOV_1638954416348.PDF
2021-12-08 10:06 - 2021-12-08 10:07 - 000191165 _____ C:\Users\cigas\Downloads\1638954389161.HTML
2021-12-07 22:43 - 2021-12-07 22:43 - 000939069 _____ C:\Users\cigas\Downloads\IL_PREDMETOV_1638913403733.PDF
2021-12-07 22:43 - 2021-12-07 22:43 - 000151809 _____ C:\Users\cigas\Downloads\1638913382515.HTML
2021-12-07 22:42 - 2021-12-07 22:42 - 001053728 _____ C:\Users\cigas\Downloads\IL_PREDMETOV_1638913344135.PDF
2021-12-07 22:42 - 2021-12-07 22:42 - 000155578 _____ C:\Users\cigas\Downloads\1638913315371.HTML
2021-12-07 22:41 - 2021-12-07 22:41 - 000130354 _____ C:\Users\cigas\Downloads\1638913269980.HTML
2021-12-07 22:38 - 2021-12-07 22:38 - 000146786 _____ C:\Users\cigas\Downloads\1638913091738.HTML
2021-12-07 22:38 - 2021-12-07 22:38 - 000051271 _____ C:\Users\cigas\Downloads\1638913117590.HTML
2021-12-07 19:07 - 2021-12-07 19:07 - 000040960 _____ C:\WINDOWS\system32\prxyqry.dll
2021-12-07 19:07 - 2021-12-07 19:07 - 000015040 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-12-07 19:07 - 2021-12-07 19:07 - 000013824 _____ C:\WINDOWS\SysWOW64\prxyqry.dll
2021-12-07 19:03 - 2021-12-07 19:03 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2021-12-07 18:04 - 2021-12-07 18:04 - 000000000 ___HD C:\$WinREAgent
2021-12-06 00:09 - 2021-06-01 14:27 - 000002060 _____ C:\WINDOWS\system32\noise.jpn
2021-12-05 08:41 - 2021-12-05 08:41 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-12-05 01:17 - 2021-12-05 01:17 - 000000020 ___SH C:\Users\cigas\ntuser.ini
2021-12-05 01:08 - 2021-12-13 21:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-12-05 01:08 - 2021-12-08 22:29 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-05 01:08 - 2021-12-07 07:15 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1176141647-322040412-2467296114-1003
2021-12-05 01:08 - 2021-12-05 01:09 - 000003386 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-12-05 01:08 - 2021-12-05 01:09 - 000002924 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2021-12-05 01:08 - 2021-12-05 01:09 - 000002688 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Ink Tank Wireless 410 series
2021-12-05 01:08 - 2021-12-05 01:08 - 000003280 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-05 01:08 - 2021-12-05 01:08 - 000003162 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-12-05 01:08 - 2021-12-05 01:08 - 000002974 _____ C:\WINDOWS\system32\Tasks\Update Checker
2021-12-05 01:08 - 2021-12-05 01:08 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1176141647-322040412-2467296114-1001
2021-12-05 01:08 - 2021-12-05 01:08 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1176141647-322040412-2467296114-500
2021-12-05 01:08 - 2021-12-05 01:08 - 000002346 _____ C:\WINDOWS\system32\Tasks\SplendidTask
2021-12-05 01:08 - 2021-12-05 01:08 - 000002346 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2021-12-05 01:08 - 2021-12-05 01:08 - 000002338 _____ C:\WINDOWS\system32\Tasks\ASUS Hello
2021-12-05 01:08 - 2021-12-05 01:08 - 000002302 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2021-12-05 01:08 - 2021-12-05 01:08 - 000002214 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260
2021-12-05 01:08 - 2021-12-05 01:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2021-12-05 01:08 - 2021-12-05 01:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-12-05 01:05 - 2021-12-05 01:08 - 000017148 _____ C:\WINDOWS\diagwrn.xml
2021-12-05 01:05 - 2021-12-05 01:08 - 000017148 _____ C:\WINDOWS\diagerr.xml
2021-12-05 00:39 - 2021-12-13 09:26 - 000803404 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-05 00:32 - 2021-12-13 16:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-12-05 00:32 - 2021-12-07 20:50 - 000531192 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-12-05 00:30 - 2021-12-05 01:13 - 000000000 ____D C:\Windows.old
2021-12-04 23:15 - 2021-12-05 00:31 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-12-04 23:07 - 2021-12-13 14:51 - 000000000 ____D C:\Users\cigas
2021-12-04 23:07 - 2021-12-05 00:31 - 000000000 ____D C:\Users\asus
2021-12-04 23:07 - 2021-06-05 13:04 - 000001281 _____ C:\Users\cigas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-12-04 23:07 - 2021-06-05 13:04 - 000001281 _____ C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-12-04 23:07 - 2021-06-05 13:04 - 000000407 _____ C:\Users\cigas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-12-04 23:07 - 2021-06-05 13:04 - 000000407 _____ C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-12-04 22:57 - 2021-12-04 22:57 - 000000000 ____D C:\WINDOWS\Firmware
2021-12-04 22:53 - 2021-12-04 23:14 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-12-04 22:00 - 2021-12-04 22:00 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2021-12-04 22:00 - 2021-12-04 22:00 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList
2021-12-04 22:00 - 2021-12-04 22:00 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList
2021-12-04 22:00 - 2021-12-04 22:00 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList
2021-12-04 22:00 - 2021-12-04 22:00 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2021-12-04 22:00 - 2021-12-04 22:00 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList
2021-12-04 22:00 - 2021-12-04 22:00 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2021-12-04 21:59 - 2021-12-04 21:59 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll
2021-12-04 21:59 - 2021-12-04 21:59 - 000006656 _____ C:\WINDOWS\SysWOW64\nrtapi.dll
2021-12-04 21:58 - 2021-12-04 21:58 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-12-04 21:58 - 2021-12-04 21:58 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-12-04 21:58 - 2021-12-04 21:58 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2021-12-04 21:58 - 2021-12-04 21:58 - 000121344 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-04 21:58 - 2021-12-04 21:58 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json
2021-12-04 21:58 - 2021-12-04 21:58 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2021-12-04 21:57 - 2021-12-04 21:57 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll
2021-12-04 21:56 - 2021-12-04 21:56 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-12-04 21:56 - 2021-12-04 21:56 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2021-12-04 21:56 - 2021-12-04 21:56 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll
2021-12-04 21:56 - 2021-12-04 21:56 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2021-12-04 21:55 - 2021-12-04 21:55 - 000286720 _____ C:\WINDOWS\system32\AggregatorHost.exe
2021-12-04 21:55 - 2021-12-04 21:55 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2021-12-04 21:55 - 2021-12-04 21:55 - 000024576 _____ C:\WINDOWS\system32\nrtapi.dll
2021-12-04 21:54 - 2021-12-04 21:54 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2021-12-04 21:52 - 2021-12-04 21:52 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll
2021-12-04 21:52 - 2021-12-04 21:52 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-12-04 21:50 - 2021-12-04 21:50 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll
2021-12-04 21:50 - 2021-12-04 21:50 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll
2021-12-04 21:50 - 2021-12-04 21:50 - 000208896 _____ C:\WINDOWS\system32\IHDS.dll
2021-12-04 21:50 - 2021-12-04 21:50 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-04 21:50 - 2021-12-04 21:50 - 000167936 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-04 21:50 - 2021-12-04 21:50 - 000041594 _____ C:\WINDOWS\system32\ctac.json
2021-12-04 19:10 - 2021-12-04 19:10 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-12-04 16:25 - 2021-12-05 01:18 - 000000000 ___DC C:\WINDOWS\Panther
2021-12-03 09:39 - 2021-12-03 09:39 - 000000165 ____H C:\Users\cigas\Downloads\~$powerbi_skupina_2.xlsx
2021-12-03 09:33 - 2021-12-03 09:33 - 000016244 _____ C:\Users\cigas\Downloads\powerbi_skupina_2.xlsx
2021-12-03 09:10 - 2021-12-03 09:10 - 000016244 _____ C:\Users\cigas\Downloads\c1832d67-c883-4f60-b7a3-64b205db0d89.tmp
2021-12-01 00:03 - 2021-12-01 00:03 - 000000000 ____D C:\Users\cigas\.android
2021-12-01 00:02 - 2021-12-13 21:06 - 000000000 ____D C:\Users\cigas\AppData\Roaming\WTablet
2021-11-30 23:54 - 2021-12-05 00:31 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablet
2021-11-30 23:53 - 2021-10-06 00:12 - 002554304 _____ (Wacom Co. Ltd.) C:\WINDOWS\system32\Wacom_Tablet.dll
2021-11-30 23:53 - 2021-10-06 00:12 - 002547648 _____ (Wacom Co. Ltd.) C:\WINDOWS\system32\Wacom_Touch_Tablet.dll
2021-11-30 23:53 - 2021-10-06 00:12 - 002401728 _____ (Wacom Co. Ltd.) C:\WINDOWS\system32\WacomMT.dll
2021-11-30 23:53 - 2021-10-06 00:12 - 002371520 _____ (Wacom Co. Ltd.) C:\WINDOWS\system32\Wintab32.dll
2021-11-30 23:53 - 2021-10-06 00:12 - 002105792 _____ (Wacom Co. Ltd.) C:\WINDOWS\SysWOW64\Wacom_Tablet.dll
2021-11-30 23:53 - 2021-10-06 00:12 - 002099136 _____ (Wacom Co. Ltd.) C:\WINDOWS\SysWOW64\Wacom_Touch_Tablet.dll
2021-11-30 23:53 - 2021-10-06 00:12 - 001948096 _____ (Wacom Co. Ltd.) C:\WINDOWS\SysWOW64\WacomMT.dll
2021-11-30 23:53 - 2021-10-06 00:12 - 001914816 _____ (Wacom Co. Ltd.) C:\WINDOWS\SysWOW64\Wintab32.dll
2021-11-30 23:53 - 2021-10-06 00:12 - 000121120 _____ (Wacom Technology, Corp.) C:\WINDOWS\system32\Drivers\wachidrouter.sys
2021-11-30 23:53 - 2021-10-06 00:12 - 000020720 _____ (Wacom Technology, Corp.) C:\WINDOWS\system32\Drivers\wacomrouterfilter.sys
2021-11-30 23:52 - 2021-11-30 23:54 - 000000000 ____D C:\Program Files\Tablet
2021-11-30 23:49 - 2021-11-30 23:51 - 030373272 _____ (Wacom Technology, Corp.) C:\Users\cigas\Downloads\WacomTablet_6.3.44-3.exe
2021-11-30 23:16 - 2021-11-30 23:19 - 000010927 _____ C:\Users\cigas\Downloads\v_om7102rr_00_00_00_sk20211130231659.xlsx
2021-11-30 23:16 - 2021-11-30 23:16 - 000008425 _____ C:\Users\cigas\Downloads\v_om7102rr_00_00_00_sk20211130231638.xlsx
2021-11-30 23:11 - 2021-11-30 23:12 - 000008420 _____ C:\Users\cigas\Downloads\v_om7102rr_00_00_00_sk20211130231206.xlsx
2021-11-30 23:11 - 2021-11-30 23:11 - 000008418 _____ C:\Users\cigas\Downloads\v_om7102rr_00_00_00_sk20211130231130.xlsx
2021-11-30 23:10 - 2021-11-30 23:10 - 000008413 _____ C:\Users\cigas\Downloads\v_om7102rr_00_00_00_sk20211130231057.xlsx
2021-11-30 23:09 - 2021-11-30 23:10 - 000008367 _____ C:\Users\cigas\Downloads\v_om7015rr_00_00_00_sk20211130230941.xlsx
2021-11-30 19:16 - 2021-11-30 19:38 - 000000000 ____D C:\Users\cigas\OneDrive\Dokumenty\Poznámkové bloky OneNotu
2021-11-29 17:36 - 2021-11-29 17:36 - 000008987 _____ C:\Users\cigas\Downloads\v_om7102rr_00_00_00_sk20211129173622.xlsx
2021-11-29 17:34 - 2021-11-29 17:34 - 000008383 _____ C:\Users\cigas\Downloads\v_om7015rr_00_00_00_sk20211129173412.xlsx
2021-11-20 16:17 - 2021-11-20 16:17 - 000769219 _____ C:\Users\cigas\Downloads\Semestrálne zadanie-converted (1).pdf
2021-11-19 12:18 - 2021-11-19 12:18 - 000769083 _____ C:\Users\cigas\Downloads\Semestrálne zadanie-converted.pdf
2021-11-19 12:04 - 2021-11-19 12:04 - 003366716 _____ C:\Users\cigas\Downloads\CAM 5 Digestive system EN.pdf
2021-11-19 12:04 - 2021-11-19 12:04 - 003366716 _____ C:\Users\cigas\Downloads\CAM 5 Digestive system EN (1).pdf
2021-11-19 09:52 - 2021-11-19 09:52 - 000006906 _____ C:\Users\cigas\Downloads\v_om7101rr_00_00_00_sk20211119095233.xlsx
2021-11-19 09:41 - 2021-11-19 09:42 - 000030720 _____ C:\Users\cigas\Downloads\TAB. 117 Obyvateľstvo podľa pohlavia a stupňa najvyššieho dosiahnutého vzdelania.xls
2021-11-19 09:30 - 2021-11-19 09:30 - 000006652 _____ C:\Users\cigas\Downloads\v_om7101rr_00_00_00_sk20211119093049.xlsx
2021-11-19 09:29 - 2021-11-19 09:29 - 000006649 _____ C:\Users\cigas\Downloads\v_om7101rr_00_00_00_sk20211119092934.xlsx
2021-11-19 09:24 - 2021-11-19 09:24 - 000024623 _____ C:\Users\cigas\Downloads\v_om7101rr_00_00_00_sk20211119092421.xlsx
2021-11-19 09:20 - 2021-11-19 09:21 - 000024623 _____ C:\Users\cigas\Downloads\v_om7101rr_00_00_00_sk20211119092041.xlsx
2021-11-18 18:15 - 2021-11-18 18:22 - 000000604 _____ C:\Users\cigas\OneDrive\Dokumenty\Ulice.shp
2021-11-18 18:15 - 2021-11-18 18:22 - 000000553 _____ C:\Users\cigas\OneDrive\Dokumenty\Ulice.dbf
2021-11-18 18:15 - 2021-11-18 18:22 - 000000140 _____ C:\Users\cigas\OneDrive\Dokumenty\Ulice.shx
2021-11-18 18:15 - 2021-11-18 18:15 - 000000571 _____ C:\Users\cigas\OneDrive\Dokumenty\Ulice.prj
2021-11-18 18:15 - 2021-11-18 18:15 - 000000005 _____ C:\Users\cigas\OneDrive\Dokumenty\Ulice.cpg
2021-11-17 10:00 - 2021-11-17 10:00 - 000795421 _____ C:\Users\cigas\Downloads\Semestrálne-zadanie_Fajnerová-converted.pdf
2021-11-14 13:37 - 2021-11-14 13:37 - 000079256 _____ C:\Users\cigas\Downloads\IL_PREDMETU_1636893432650.PDF
2021-11-14 09:56 - 2021-11-14 09:56 - 000088418 _____ C:\Users\cigas\Downloads\IL_PREDMETU_1636880157851.PDF
2021-11-14 09:55 - 2021-11-14 09:55 - 000085876 _____ C:\Users\cigas\Downloads\IL_PREDMETU_1636880122669.PDF
2021-11-14 09:55 - 2021-11-14 09:55 - 000082312 _____ C:\Users\cigas\Downloads\IL_PREDMETU_1636880136536.PDF
2021-11-14 09:54 - 2021-11-14 09:54 - 000084799 _____ C:\Users\cigas\Downloads\IL_PREDMETU_1636880092832.PDF
2021-11-14 09:54 - 2021-11-14 09:54 - 000084236 _____ C:\Users\cigas\Downloads\IL_PREDMETU_1636880084025.PDF
2021-11-14 09:54 - 2021-11-14 09:54 - 000074552 _____ C:\Users\cigas\Downloads\IL_PREDMETU_1636880053037.PDF
2021-11-14 09:53 - 2021-11-14 09:53 - 000082593 _____ C:\Users\cigas\Downloads\IL_PREDMETU_1636880006404.PDF

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-13 21:30 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-13 21:20 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-13 21:15 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-13 21:15 - 2020-07-24 17:51 - 000000000 ____D C:\Users\cigas\AppData\Local\Packages
2021-12-13 21:15 - 2020-07-20 19:10 - 000000000 ____D C:\ProgramData\Packages
2021-12-13 21:11 - 2020-07-24 21:22 - 000000000 ____D C:\Users\cigas\AppData\Local\Spotify
2021-12-13 21:11 - 2020-07-24 17:58 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-13 21:11 - 2020-07-24 17:55 - 000000000 ___RD C:\Users\cigas\OneDrive
2021-12-13 21:10 - 2020-07-24 21:21 - 000000000 ____D C:\Users\cigas\AppData\Roaming\Spotify
2021-12-13 21:06 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-13 21:05 - 2020-07-24 17:51 - 000000000 __SHD C:\Users\cigas\IntelGraphicsProfiles
2021-12-13 21:04 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2021-12-13 21:04 - 2020-07-20 18:10 - 000000000 ___HD C:\Intel
2021-12-13 21:04 - 2020-05-13 04:18 - 000012288 ___SH C:\DumpStack.log.tmp
2021-12-13 21:02 - 2021-06-05 13:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-12-13 20:42 - 2021-04-25 12:51 - 000000000 ____D C:\Users\cigas\AppData\LocalLow\IGDump
2021-12-13 09:26 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2021-12-12 19:50 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-12-11 21:37 - 2020-05-13 04:21 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-09 23:17 - 2020-07-25 09:52 - 000000000 ____D C:\Users\cigas\Desktop\hudba
2021-12-09 19:56 - 2020-07-24 17:58 - 000002315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-12-09 19:56 - 2020-07-24 17:58 - 000002274 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-12-09 12:29 - 2021-04-25 12:49 - 000000000 ____D C:\Users\cigas\AppData\Local\CrashDumps
2021-12-08 10:30 - 2020-07-25 09:19 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-12-07 20:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-07 20:42 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2021-12-07 16:09 - 2021-02-22 14:15 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-12-07 07:15 - 2020-07-24 17:48 - 000002369 _____ C:\Users\cigas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-06 19:32 - 2021-09-10 18:16 - 000000000 ____D C:\Users\cigas\AppData\Local\D3DSCache
2021-12-06 00:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\OCR
2021-12-05 09:55 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-12-05 09:45 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-12-05 08:38 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\appcompat
2021-12-05 01:21 - 2020-07-20 17:56 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-12-05 01:09 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-12-05 01:08 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows Defender
2021-12-05 00:48 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-12-05 00:47 - 2021-06-05 13:10 - 000000000 __RHD C:\Users\Public\Libraries
2021-12-05 00:42 - 2020-07-20 18:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2021-12-05 00:41 - 2020-07-20 18:15 - 000000000 ____D C:\WINDOWS\system32\DAX3
2021-12-05 00:41 - 2020-07-20 18:15 - 000000000 ____D C:\WINDOWS\system32\DAX2
2021-12-05 00:41 - 2020-07-20 18:14 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2021-12-05 00:33 - 2021-06-05 13:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-12-05 00:31 - 2021-10-06 22:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QGIS 3.16
2021-12-05 00:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-12-05 00:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\spool
2021-12-05 00:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-12-05 00:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2021-12-05 00:31 - 2021-05-23 20:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje balíka Microsoft Office
2021-12-05 00:31 - 2021-04-25 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2021-12-05 00:31 - 2021-04-09 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-12-05 00:31 - 2020-07-25 10:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-12-05 00:31 - 2020-07-20 18:31 - 000000000 ____D C:\WINDOWS\OEM
2021-12-05 00:31 - 2020-07-20 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2021-12-05 00:31 - 2020-07-20 18:15 - 000000000 ____D C:\WINDOWS\system32\Intel
2021-12-05 00:31 - 2020-07-20 18:08 - 000000000 ____D C:\Program Files\Intel
2021-12-05 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-12-05 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-12-05 00:30 - 2021-04-09 12:03 - 000000000 ____D C:\Users\cigas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-12-05 00:05 - 2021-06-05 13:14 - 000000000 ____D C:\WINDOWS\Setup
2021-12-04 23:59 - 2020-07-24 17:55 - 000000000 ____D C:\Users\cigas\AppData\Local\PlaceholderTileLogoFolder
2021-12-04 23:33 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\USOPrivate
2021-12-04 23:15 - 2021-01-26 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-12-04 23:15 - 2020-07-20 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICEpower
2021-12-04 23:15 - 2020-07-20 18:14 - 000000000 ____D C:\Program Files\Realtek
2021-12-04 23:13 - 2020-07-20 18:59 - 000000000 ____D C:\Users\asus\AppData\Local\Packages
2021-12-04 22:33 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-12-04 22:33 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-12-04 22:33 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-12-04 22:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-12-04 22:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-12-04 22:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-12-04 22:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-12-04 22:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-12-04 22:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-12-04 22:32 - 2021-06-05 19:04 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-12-04 22:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-12-04 22:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning
2021-12-04 22:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-12-04 22:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-12-04 22:32 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System
2021-12-04 22:29 - 2021-06-05 19:04 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-12-04 22:29 - 2021-06-05 19:04 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-12-04 21:01 - 2021-06-05 19:04 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-12-04 21:01 - 2021-06-05 18:57 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-12-04 21:01 - 2021-06-05 18:57 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-12-04 21:01 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-12-04 21:01 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-12-04 21:01 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\IME
2021-12-04 21:01 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-11-18 22:39 - 2021-04-25 20:09 - 000000000 ____D C:\Users\cigas\AppData\Local\NordVPN

==================== Files in the root of some directories ========

2020-10-20 10:22 - 2021-01-26 09:13 - 000000812 _____ () C:\Users\cigas\AppData\Roaming\debug.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

martin1973
Návštěvník
Návštěvník
Příspěvky: 187
Registrován: 13 led 2010 23:10

Re: Asus kontrola

#2 Příspěvek od martin1973 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-12-2021
Ran by cigas (13-12-2021 21:48:30)
Running from C:\Users\cigas\Downloads
Microsoft Windows 11 Home Version 21H2 22000.348 (X64) (2021-12-05 00:13:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1176141647-322040412-2467296114-500 - Administrator - Disabled)
asus (S-1-5-21-1176141647-322040412-2467296114-1001 - Administrator - Enabled) => C:\Users\asus
cigas (S-1-5-21-1176141647-322040412-2467296114-1003 - Administrator - Enabled) => C:\Users\cigas
DefaultAccount (S-1-5-21-1176141647-322040412-2467296114-503 - Limited - Disabled)
Guest (S-1-5-21-1176141647-322040412-2467296114-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1176141647-322040412-2467296114-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.5.0 - ASUSTeK COMPUTER INC.)
ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.2.5.0 - ASUSTeK COMPUTER INC.)
ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.12.0 - ASUSTeK COMPUTER INC.)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.10 - ASUSTeK COMPUTER INC.)
ATK Package (ASUS Keyboard Hotkeys) (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0060 - ASUSTeK COMPUTER INC.)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.17.10 - ICEpower a/s)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.93 - Google LLC)
HP Dropbox Plugin (HKLM-x32\...\{B9A026DA-577F-46D9-B8D6-45888ED06594}) (Version: 36.0.175.0 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{5485CF4A-7C94-48D7-9507-87A5E1CADEEC}) (Version: 43.0.175.0 - HP)
HP FTP Plugin (HKLM-x32\...\{6CE10FDB-23CC-44E7-A1CE-4029A867A469}) (Version: 43.0.175.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F108E43B-67B6-437E-835A-6CEB65CBAD53}) (Version: 36.0.175.0 - HP)
HP Ink Tank Wireless 410 series Basic Device Software (HKLM\...\{0D25F7A1-10A5-4D47-ACBD-4622CC34470F}) (Version: 45.3.2597.18208 - HP Inc.)
HP Ink Tank Wireless 410 series Help (HKLM-x32\...\{A5ED62DF-A160-44AF-955D-560DFED9DFA3}) (Version: 44.0.0 - HP)
HP OneDrive Plugin (HKLM-x32\...\{56C20798-7386-45EC-86C4-A49FF09F81F3}) (Version: 36.0.175.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP SFTP Plugin (HKLM-x32\...\{6E9B2B7C-1701-4DD3-80F7-B45ECA565DF9}) (Version: 43.0.175.0 - HP)
HP SharePoint Plugin (HKLM-x32\...\{9919E94A-45EC-4983-9D15-16B05873C854}) (Version: 43.0.175.0 - HP)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10205.4743 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1808.12.0.1102 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft Office 2016 Professional Plus - sk-sk (HKLM\...\ProPlusRetail - sk-sk) (Version: 16.0.14701.20226 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1176141647-322040412-2467296114-1001\...\OneDriveSetup.exe) (Version: 19.043.0304.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1176141647-322040412-2467296114-1003\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1176141647-322040412-2467296114-1003\...\Teams) (Version: 1.4.00.31569 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2FA9DAAC-895B-4E99-99D9-DC2965FBE79C}) (Version: 2.87.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.40.5.0 - TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20210 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Product Improvement Study for HP Ink Tank Wireless 410 series (HKLM\...\{9828E6F5-2DC8-4DB0-8D22-D71547F57D1D}) (Version: 45.3.2597.18208 - HP Inc.)
QGIS 3.16.11 'Hannover' (HKLM-x32\...\QGIS 3.16) (Version: 3.16.11 - QGIS Development Team)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9013.1 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-1176141647-322040412-2467296114-1003\...\Spotify) (Version: 1.1.74.631.g0b24d9ad - Spotify AB)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.44-3 - Wacom Technology Corp.)
Windows Kontrola stavu počítača (HKLM\...\{BDBC15A5-E9F1-485F-A0D3-7526052FB2B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.10.0 - ASUSTeK COMPUTER INC.)
WinRAR 6.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)

Packages:
=========
ASUS Battery Health Charging -> C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy [2020-07-20] (ASUSTeK COMPUTER INC.) [Startup Task]
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.2.3.0_x64__qmba6cd70vzyy [2021-11-18] (ASUSTeK COMPUTER INC.)
Excel Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.Excel_16001.14326.20588.0_x64__8wekyb3d8bbwe [2021-12-08] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6 [2021-12-13] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-12-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-12-05] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.11.12030.0_x64__8wekyb3d8bbwe [2021-12-13] (Microsoft Studios) [MS Ad]
Power BI Desktop -> C:\Program Files\WindowsApps\Microsoft.MicrosoftPowerBIDesktop_2.99.862.0_x64__8wekyb3d8bbwe [2021-12-03] (Microsoft Corporation)
PowerPoint Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.PowerPoint_16001.14326.20588.0_x64__8wekyb3d8bbwe [2021-12-08] (Microsoft Corporation)
Splendid -> C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy [2020-07-24] (ASUSTeK COMPUTER INC.) [Startup Task]
Word Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.Word_16001.14326.20588.0_x64__8wekyb3d8bbwe [2021-12-08] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1176141647-322040412-2467296114-1003_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\cigas\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21229.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1176141647-322040412-2467296114-1003_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\cigas\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxDTCM.dll [2020-09-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-07-20 18:25 - 2020-07-20 18:26 - 000190976 _____ () [File not signed] C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\CCTAdjust.dll
2020-07-24 21:45 - 2020-07-24 21:46 - 000038400 _____ () [File not signed] C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\DetectDisplayDC.dll
2020-07-20 18:26 - 2020-07-20 18:26 - 000038912 _____ () [File not signed] C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\VideoEnhance.dll
2020-07-24 21:45 - 2020-07-24 21:45 - 000462848 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\ColorU.dll
2020-07-25 09:29 - 2020-07-25 09:29 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2020-07-25 09:29 - 2020-07-25 09:29 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2021-12-09 13:19 - 2021-12-09 13:19 - 000137184 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20050.505.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll
2020-07-24 21:45 - 2020-07-24 21:45 - 000452608 _____ (TODO: <Company name>) [File not signed] C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\ColorUGameDLL.dll
2020-07-24 21:45 - 2020-07-24 21:46 - 000029696 _____ (TODO: <Company name>) [File not signed] C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\GLCDdll.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1176141647-322040412-2467296114-1003\...\sharepoint.com -> hxxps://ssosbuke-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\HP\Common\HPDestPlgIn\
HKU\S-1-5-21-1176141647-322040412-2467296114-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg
HKU\S-1-5-21-1176141647-322040412-2467296114-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\cigas\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\fb843a877549c74b10f95a4959d3562c.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
Wi-Fi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{4B2BD84D-022C-43A8-A9A8-30558EC26B52}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8F3FDD07-7E13-4369-926E-49EC8CAD9655}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BFE7F580-28D3-4BA5-846E-8C77A205315E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{143FE8DB-FAAA-45C0-808D-94013AD45D84}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{64ECFAAB-876B-476D-8BCB-86CCB26B93DF}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{BDCF8287-F0D5-48DE-8EBF-118C5AFEA337}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{BF5E4116-ED8F-463A-99D2-56E3A88B9C55}] => (Allow) C:\Program Files\HP\HP Ink Tank Wireless 410 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{1A94FA03-AC14-4B2A-A987-80B1A88B6E13}] => (Allow) LPort=5357
FirewallRules: [{55414AE0-A712-419E-B87A-2D1472632C49}] => (Allow) C:\Program Files\HP\HP Ink Tank Wireless 410 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{0CB6DD4B-FBA5-47F0-95F8-38CA67EF251B}] => (Allow) C:\Program Files\HP\HP Ink Tank Wireless 410 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [UDP Query User{9EAABFE7-26D4-43B6-899E-2095AA82C184}C:\users\cigas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cigas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{CC4772D2-3B08-4FBD-8391-6B996A7FE6EF}C:\users\cigas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cigas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{A1D741DA-2AB4-45EB-99CF-ED58D10E979B}C:\users\cigas\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\cigas\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{3F3FBE99-0C1F-439B-ABF6-7CE3DD8659DD}C:\users\cigas\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\cigas\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{12DEE208-CED2-4B4B-A9F7-0CA4299F41C7}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe] => (Block) C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe => No File
FirewallRules: [TCP Query User{20305CDE-E557-4AFB-93FC-0E8565150BDD}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe] => (Block) C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe => No File
FirewallRules: [{7527BA55-B8E8-4B8E-8576-4572F2F375E4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{04F0285D-8236-4EAB-9A37-06C6C12ED74D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{3AD11F3A-7AA8-475B-9D7B-0567E0DD0464}C:\users\cigas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cigas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{3D9CDEDE-0B38-462B-B741-EC6F768FEC8E}C:\users\cigas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\cigas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{77E84738-D824-41AF-9703-3C8C61F2878D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21323.200.1078.109_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C6AFA2A7-8C37-4669-B39F-E7D77BC5B222}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21323.200.1078.109_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{68E0D013-E247-43D2-9613-BF1ED7306BFC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{38D17DD1-F35E-4A3C-822B-12956862D93B}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.53\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5745B2B0-AD6B-48EF-818A-5CF96B4D2703}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7F04AC1A-247E-4D28-92C5-506E45D2BBEF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{89EEEC48-5A34-40BE-8D57-CE8FC883C422}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BD7E6487-65CB-4995-81F1-6BFAC049DDA3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

07-12-2021 15:29:16 Inštalátor modulov systému Windows
12-12-2021 19:34:35 Inštalátor modulov systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/13/2021 09:14:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program dllhost.exe version 10.0.22000.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1e28

Start Time: 01d7f05d19a84b32

Termination Time: 4294967295

Application Path: C:\Windows\SysWOW64\dllhost.exe

Report Id: e4675737-8507-4973-9dee-6af7c4492479

Faulting package full name: Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c

Faulting package-relative application ID: App

Hang type: Quiesce

Error: (12/13/2021 09:14:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program dllhost.exe version 10.0.22000.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1c50

Start Time: 01d7f05d16a22384

Termination Time: 4294967295

Application Path: C:\Windows\System32\dllhost.exe

Report Id:

Faulting package full name: Microsoft.OneDriveSync_21230.1107.4.0_neutral__8wekyb3d8bbwe

Faulting package-relative application ID: OneDrive

Hang type: Quiesce

Error: (12/13/2021 09:01:24 PM) (Source: WTabletServicePro) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/13/2021 09:01:24 PM) (Source: WTabletServicePro) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/13/2021 09:01:19 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Teams.exe version 1.4.0.31569 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1904

Start Time: 01d7f0560ce2afdb

Termination Time: 4294967295

Application Path: C:\Users\cigas\AppData\Local\Microsoft\Teams\current\Teams.exe

Report Id: 82e13902-0219-4a5e-bf0d-06c284a422bf

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (12/13/2021 07:07:34 PM) (Source: WTabletServicePro) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/13/2021 07:07:34 PM) (Source: WTabletServicePro) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/13/2021 02:51:10 PM) (Source: WTabletServicePro) (EventID: 1) (User: )
Description: Event-ID 1


System errors:
=============
Error: (12/13/2021 09:15:30 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Security Center sa pri spustení zablokovala.

Error: (12/13/2021 09:13:19 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba System Guard Runtime Monitor Broker sa pri spustení zablokovala.

Error: (12/13/2021 09:10:56 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Správca stiahnutých máp sa pri spustení zablokovala.

Error: (12/13/2021 09:02:26 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby ClickToRunSvc bol dosiahnutý časový limit (30000 ms).

Error: (12/13/2021 09:02:26 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby nordvpn-service bol dosiahnutý časový limit (30000 ms).

Error: (12/13/2021 08:12:05 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{DE17CE5A-BC6D-44DF-8854-092D58D9E5E7} because another computer on the network has the same name. The server could not start.

Error: (12/13/2021 04:08:44 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{DE17CE5A-BC6D-44DF-8854-092D58D9E5E7} because another computer on the network has the same name. The server could not start.

Error: (12/13/2021 01:35:29 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service sa pri spustení zablokovala.


Windows Defender:
================Event[0]

Date: 2021-12-12 19:45:23
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.353.2133.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18700.4
Error code: 0x80070102
Error description: The wait operation timed out. ਍

Date: 2021-12-12 19:39:18
Description:
N/A

Date: 2021-12-12 19:39:18
Description:
N/A

Date: 2021-12-12 19:18:34
Description:
N/A

CodeIntegrity:
===============
Date: 2021-12-12 20:48:49
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ਍


==================== Memory info ===========================

BIOS: American Megatrends Inc. X705UAR.318 06/12/2019
Motherboard: ASUSTeK COMPUTER INC. X705UAR
Processor: Intel(R) Pentium(R) CPU 4417U @ 2.30GHz
Percentage of memory in use: 88%
Total physical RAM: 3979.07 MB
Available physical RAM: 456.08 MB
Total Virtual: 7435.07 MB
Available Virtual: 2630.97 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:930.61 GB) (Free:804.59 GB) NTFS

\\?\Volume{630c0b8a-c90b-4248-bd14-86bcda6cf3bc}\ (RECOVERY) (Fixed) (Total:0.63 GB) (Free:0.15 GB) NTFS
\\?\Volume{8869bc92-20ad-422b-a43a-ac5094fc2b3a}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 714ADB6E)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118196
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Asus kontrola

#3 Příspěvek od Rudy »

Zdravím!
Některé antiviry jsou paranouidní a čas od času, nejčastěji po nějaké aktualizaci, toto dělají. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-1176141647-322040412-2467296114-1003_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\cigas\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{143FE8DB-FAAA-45C0-808D-94013AD45D84}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{64ECFAAB-876B-476D-8BCB-86CCB26B93DF}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{BDCF8287-F0D5-48DE-8EBF-118C5AFEA337}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [UDP Query User{12DEE208-CED2-4B4B-A9F7-0CA4299F41C7}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe] => (Block) C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe => No File
FirewallRules: [TCP Query User{20305CDE-E557-4AFB-93FC-0E8565150BDD}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe] => (Block) C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe => No File
ask: {8E88C920-2A02-448D-BC68-8D647E05D4EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-24] (Google LLC -> Google LLC)
Task: {984427A8-C570-41A6-935A-18716737F274} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-24] (Google LLC -> Google LLC)

EmptyTemp:
End
Uložte do C:\Users\cigas\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

martin1973
Návštěvník
Návštěvník
Příspěvky: 187
Registrován: 13 led 2010 23:10

Re: Asus kontrola

#4 Příspěvek od martin1973 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-12-2021
Ran by cigas (14-12-2021 16:22:49) Run:1
Running from C:\Users\cigas\Downloads
Loaded Profiles: asus & cigas
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-1176141647-322040412-2467296114-1003_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\cigas\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{143FE8DB-FAAA-45C0-808D-94013AD45D84}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{64ECFAAB-876B-476D-8BCB-86CCB26B93DF}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{BDCF8287-F0D5-48DE-8EBF-118C5AFEA337}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [UDP Query User{12DEE208-CED2-4B4B-A9F7-0CA4299F41C7}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe] => (Block) C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe => No File
FirewallRules: [TCP Query User{20305CDE-E557-4AFB-93FC-0E8565150BDD}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe] => (Block) C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe => No File
ask: {8E88C920-2A02-448D-BC68-8D647E05D4EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-24] (Google LLC -> Google LLC)
Task: {984427A8-C570-41A6-935A-18716737F274} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-24] (Google LLC -> Google LLC)

EmptyTemp:
End

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118196
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Asus kontrola

#5 Příspěvek od Rudy »

To je vše? Log by měl vypadat asi takto: https://forum.viry.cz/viewtopic.php?p=1544467#p1544467 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

martin1973
Návštěvník
Návštěvník
Příspěvky: 187
Registrován: 13 led 2010 23:10

Re: Asus kontrola

#6 Příspěvek od martin1973 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-12-2021
Ran by cigas (14-12-2021 16:22:49) Run:1
Running from C:\Users\cigas\Downloads
Loaded Profiles: asus & cigas
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-1176141647-322040412-2467296114-1003_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\cigas\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{143FE8DB-FAAA-45C0-808D-94013AD45D84}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{64ECFAAB-876B-476D-8BCB-86CCB26B93DF}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{BDCF8287-F0D5-48DE-8EBF-118C5AFEA337}] => (Allow) C:\Users\cigas\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [UDP Query User{12DEE208-CED2-4B4B-A9F7-0CA4299F41C7}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe] => (Block) C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe => No File
FirewallRules: [TCP Query User{20305CDE-E557-4AFB-93FC-0E8565150BDD}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe] => (Block) C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe => No File
ask: {8E88C920-2A02-448D-BC68-8D647E05D4EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-24] (Google LLC -> Google LLC)
Task: {984427A8-C570-41A6-935A-18716737F274} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-24] (Google LLC -> Google LLC)

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-1176141647-322040412-2467296114-1003_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{143FE8DB-FAAA-45C0-808D-94013AD45D84}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{64ECFAAB-876B-476D-8BCB-86CCB26B93DF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BDCF8287-F0D5-48DE-8EBF-118C5AFEA337}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{12DEE208-CED2-4B4B-A9F7-0CA4299F41C7}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{20305CDE-E557-4AFB-93FC-0E8565150BDD}C:\users\cigas\appdata\local\temp\7zs1415\enterprisedu.exe" => removed successfully
ask: {8E88C920-2A02-448D-BC68-8D647E05D4EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-24] (Google LLC -> Google LLC) => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{984427A8-C570-41A6-935A-18716737F274}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{984427A8-C570-41A6-935A-18716737F274}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 28443773 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 22126103 B
Edge => 0 B
Chrome => 674528185 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 51780 B
NetworkService => 139679454 B
asus => 139694870 B
cigas => 223775833 B

RecycleBin => 166692638 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:28:42 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118196
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Asus kontrola

#7 Příspěvek od Rudy »

Smazáno. Log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět