Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu. Děkuji.

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
roman7
Návštěvník
Návštěvník
Příspěvky: 327
Registrován: 25 bře 2008 23:09

Prosím o kontrolu logu. Děkuji.

#1 Příspěvek od roman7 »

Zdravím,

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-03-2021
Ran by Roman (administrator) on DESKTOP-5C2V1IG (17-03-2021 10:29:41)
Running from C:\Users\Roman\Desktop
Loaded Profiles: Roman
Platform: Windows 10 Pro Version 2004 19041.867 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\DAODx.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atiesrxx.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [116960 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8483032 2015-05-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
HKU\S-1-5-21-128406778-2638418637-827040753-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32726088 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-128406778-2638418637-827040753-1001\...\Run: [Opera Browser Assistant] => C:\Users\Roman\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3366424 2020-12-08] (Opera Software AS -> Opera Software)
HKLM\...\Windows x64\Print Processors\us005PC: C:\Windows\System32\spool\prtprocs\x64\us005pc.dll [43520 2014-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Windows x64\Print Processors\us015PC: C:\Windows\System32\spool\prtprocs\x64\us015pc.dll [52088 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\us005 Langmon: C:\WINDOWS\system32\us005lm.dll [22528 2014-11-25] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: us008lm.dll
HKLM\...\Print\Monitors\us015 Langmon: C:\WINDOWS\system32\us015lm.dll [31096 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\88.2.8247.193\Installer\chrmstp.exe [2021-03-09] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {210B2ED2-CAE3-4877-9CAF-064F158C638A} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {264237B4-B513-45FF-9DCF-F5FDC6A59338} - System32\Tasks\Opera scheduled assistant Autoupdate 1585845267 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe [1793688 2021-03-11] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Roman\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {2DC55ED9-E11A-48A6-BE54-96BB451D7394} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software)
Task: {34227566-749A-4F85-887E-32013D9E1ED5} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3B074D41-A1F4-4C1C-B0FF-04BFC6D359FC} - System32\Tasks\ASUS\RunDAOD => C:\WINDOWS\DAODx.exe [32768 2009-03-30] () [File not signed]
Task: {4A2EEAD4-BBB4-44B3-B245-936D8EB786B2} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {4B411F70-95DE-4C39-8150-85674BA9DB6A} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {4D5D36A4-D2A0-470A-82EC-CA8EDB93874C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
Task: {573F5E95-F929-4FF5-9BB9-EDA7582934CD} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5E691FD7-12E9-45E7-8BD2-A13F13ED35F2} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [1426232 2013-10-18] (ASUSTeK Computer Inc. -> )
Task: {5E7CC867-948E-4CC9-9356-70B5A71AA350} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [328504 2013-02-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {656E7A0E-23E6-4FFB-AD5D-3041262CCA7B} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4682976 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
Task: {6E331F3F-D6C4-41E5-803C-C94DEBF6CD5D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {7B733476-8B80-4B4C-990A-DD84C3AE195E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7CC2EA58-3548-4678-85BE-FDF83095E5EF} - System32\Tasks\Opera scheduled Autoupdate 1572383546 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe [1793688 2021-03-11] (Opera Software AS -> Opera Software)
Task: {7FB437E3-DBF7-4271-A80A-F361D23623AC} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {940AADAA-E746-451D-AD13-BC58B7A07E80} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe [967480 2013-08-26] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {9873A753-B7ED-4366-B84D-C804201D9371} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [90112 2011-09-09] () [File not signed]
Task: {9AC89552-E14B-4697-A121-B2AB7A76628A} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
Task: {A9AB8724-AA03-48B0-80A3-EB3F043D51E9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2192896 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
Task: {A9BF9436-3228-47F8-8E8C-B71B7813334D} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [752200 2018-05-21] (HP Inc. -> )
Task: {ACC1A794-D902-468D-A625-56E7C0936E84} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2935424 2012-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {F70D7DF3-C979-4ADF-89B3-7DCA7C6463B8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2192896 2021-02-23] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f02d60bc-40be-4e2a-a15c-aa7546e56a7e}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\Roman\Downloads
Edge Profile: C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-17]
Edge DownloadDir: C:\Users\Roman\Downloads

FireFox:
========
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2020-04-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-03] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-03] (Avast Software s.r.o. -> AVAST Software)
FF Plugin HKU\S-1-5-21-128406778-2638418637-827040753-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)

Opera:
=======
OPR Profile: C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable [2021-03-16]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-03-10]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-09-17] (ASUSTeK Computer Inc. -> )
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2013-09-17] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2020-04-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256 2020-04-08] (ASUSTeK Computer Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8044056 2021-03-03] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621608 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1301136 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [352480 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\88.2.8247.193\elevation_service.exe [1456376 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56904 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
S4 DialogBlockingService; C:\WINDOWS\System32\DialogBlockingService.dll [76288 2021-03-09] (Microsoft Windows -> Microsoft Corporation)
S4 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\\spdsvc.exe [508488 2018-05-24] (HP Inc. -> )
S4 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2015-02-07] (Samsung Electronics CO., LTD. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-03-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-14] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2013-01-15] (ASUSTeK Computer Inc. -> )
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208024 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [357320 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [249304 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [98760 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41272 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175248 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [521336 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107784 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83360 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [850112 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [465656 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215328 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326976 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrd.sys [32840 2013-02-21] (Realtek Semiconductor Corp -> NT Kernel Resources)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-17 10:29 - 2021-03-17 10:30 - 000022643 _____ C:\Users\Roman\Desktop\FRST.txt
2021-03-17 10:29 - 2021-03-17 10:29 - 000000000 ____D C:\Users\Roman\Desktop\FRST-OlderVersion
2021-03-15 22:25 - 2021-03-15 22:25 - 000000249 _____ C:\Users\Roman\Desktop\.bat
2021-03-14 23:32 - 2021-03-14 23:32 - 000000552 _____ C:\Users\Roman\Documents\cc_20210314_233221.reg
2021-03-13 11:17 - 2021-03-13 11:17 - 000078558 _____ C:\Users\Roman\Documents\2111340085.pdf
2021-03-13 11:17 - 2021-03-13 11:17 - 000052771 _____ C:\Users\Roman\Documents\0447-20210201-20210228-2-MCZS.pdf
2021-03-13 11:15 - 2021-03-13 11:15 - 000057902 _____ C:\Users\Roman\Documents\0447-20201231-CZS-PAD.pdf
2021-03-13 11:15 - 2021-03-13 11:15 - 000052170 _____ C:\Users\Roman\Documents\0447-20210101-20210131-1-MCZS.pdf
2021-03-13 11:14 - 2021-03-13 11:14 - 000491788 _____ C:\Users\Roman\Documents\Vyuctovaci_faktura_CE_VS_4911085569_vystaveno_21112019_se_slozenkou.pdf
2021-03-13 11:14 - 2021-03-13 11:14 - 000054678 _____ C:\Users\Roman\Documents\0447-20201201-20201231-12-MCZS.pdf
2021-03-12 21:01 - 2021-03-12 21:01 - 000241960 _____ C:\Users\Roman\Desktop\Příbalová informace (1).pdf
2021-03-12 21:00 - 2021-03-12 21:00 - 000579009 _____ C:\Users\Roman\Downloads\Příbalová informace.pdf
2021-03-09 21:49 - 2021-03-09 21:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-03-09 21:49 - 2021-03-09 21:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-09 21:49 - 2021-03-09 21:49 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-03-09 21:49 - 2021-03-09 21:49 - 000480256 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-03-09 21:49 - 2021-03-09 21:49 - 000011359 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-03-09 21:48 - 2021-03-09 21:48 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-03-09 21:48 - 2021-03-09 21:48 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-03-09 21:48 - 2021-03-09 21:48 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-09 21:48 - 2021-03-09 21:48 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-09 21:48 - 2021-03-09 21:48 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-09 21:48 - 2021-03-09 21:48 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-03-09 21:48 - 2021-03-09 21:48 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-03-06 19:20 - 2021-03-06 19:20 - 000078558 _____ C:\Users\Roman\Desktop\Faktura Na zuby sprcha2111340085.pdf
2021-03-04 20:14 - 2021-03-04 20:14 - 000027798 _____ C:\Users\Roman\Desktop\Eta pilnik nohy1621230061.pdf
2021-03-03 22:09 - 2021-03-03 22:09 - 000549320 _____ C:\Users\Roman\Desktop\Pestovani_a_rez_ovocnych_stromu.pdf
2021-03-03 17:18 - 2021-03-03 17:18 - 000237586 _____ C:\Users\Roman\Downloads\Výměna zboží číslo_ V3307 _ Student-eShop.pdf
2021-03-02 11:26 - 2021-03-02 11:26 - 000027733 _____ C:\Users\Roman\Downloads\Výpis za rok 2019 účet 0187624007.pdf
2021-02-26 22:16 - 2021-02-26 22:17 - 027450450 _____ C:\Users\Roman\Downloads\charlie-gameof-2016.zip
2021-02-25 22:46 - 2021-02-25 22:46 - 008463216 _____ (Malwarebytes) C:\Users\Roman\Desktop\adwcleaner_8.1.exe
2021-02-25 16:55 - 2021-02-25 16:55 - 000110952 _____ C:\Users\Roman\Desktop\Faktura Iphon Tyna_2193744.pdf
2021-02-25 14:22 - 2021-02-25 14:22 - 000000000 ____D C:\Program Files\Common Files\Common Desktop Agent
2021-02-23 19:26 - 2021-03-15 18:42 - 000004206 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1572383546
2021-02-23 16:27 - 2021-02-23 16:27 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-23 16:27 - 2021-02-23 16:27 - 000215328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-21 22:59 - 2021-02-21 22:59 - 000000932 _____ C:\Users\Roman\Documents\cc_20210221_225951.reg
2021-02-15 23:17 - 2021-02-15 23:17 - 000176706 _____ C:\Users\Roman\Desktop\Daňový doklad k přijaté platbě_DD20212.pdf
2021-02-15 22:25 - 2021-02-15 22:25 - 000045593 _____ C:\Users\Roman\Downloads\Výpis za rok 2020 účet 0187624007.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-17 10:30 - 2021-01-29 23:35 - 000000000 ____D C:\FRST
2021-03-17 10:30 - 2019-11-01 15:56 - 000000000 ____D C:\Program Files\CCleaner
2021-03-17 10:29 - 2021-01-29 23:34 - 002300928 _____ (Farbar) C:\Users\Roman\Desktop\FRST64.exe
2021-03-17 10:28 - 2020-11-06 22:29 - 000003126 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2021-03-17 10:28 - 2020-11-06 22:29 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-03-17 10:28 - 2020-11-06 22:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-17 10:28 - 2020-11-06 22:19 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-17 10:28 - 2020-04-08 06:34 - 001048576 _____ C:\WINDOWS\PE_Rom.dll
2021-03-17 10:28 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-16 15:47 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-03-16 15:47 - 2019-10-29 19:58 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-03-16 15:40 - 2020-11-06 22:28 - 001693568 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-16 15:40 - 2019-12-07 15:43 - 000716874 _____ C:\WINDOWS\system32\perfh005.dat
2021-03-16 15:40 - 2019-12-07 15:43 - 000145052 _____ C:\WINDOWS\system32\perfc005.dat
2021-03-16 15:40 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-16 15:39 - 2020-04-08 06:35 - 000000000 _____ C:\WINDOWS\Path.idx
2021-03-15 23:28 - 2019-11-01 16:16 - 000000000 ____D C:\ProgramData\AVAST Software
2021-03-15 21:42 - 2020-11-06 22:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-15 18:50 - 2020-06-10 18:01 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-15 18:50 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-15 18:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-15 18:44 - 2020-11-06 22:29 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-128406778-2638418637-827040753-1001
2021-03-15 18:44 - 2020-11-06 22:21 - 000002361 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-15 18:44 - 2019-10-29 19:58 - 000000000 ___RD C:\Users\Roman\OneDrive
2021-03-15 18:42 - 2019-10-29 22:12 - 000001405 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-03-15 18:39 - 2019-11-17 15:17 - 000000638 _____ C:\WINDOWS\Tasks\TrackerAutoUpdate.job
2021-03-14 22:38 - 2020-12-19 21:24 - 000000000 ____D C:\Users\Roman\AppData\Local\AMD_Common
2021-03-14 17:17 - 2020-12-30 11:02 - 000002724 _____ C:\WINDOWS\system32\Tasks\EPM Preload
2021-03-14 17:17 - 2020-11-06 22:32 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b4835897e39e
2021-03-14 17:17 - 2020-11-06 22:29 - 000003764 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1585845267
2021-03-14 17:17 - 2020-11-06 22:29 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-14 17:17 - 2020-11-06 22:29 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-14 17:17 - 2020-11-06 22:29 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-14 17:17 - 2020-11-06 22:29 - 000002878 _____ C:\WINDOWS\system32\Tasks\TrackerAutoUpdate
2021-03-14 17:17 - 2020-11-06 22:29 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2021-03-14 17:17 - 2020-11-06 22:29 - 000002234 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-03-14 17:17 - 2020-11-06 22:29 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-03-14 17:17 - 2020-11-06 22:29 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-03-14 17:17 - 2020-11-06 22:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-03-14 10:37 - 2019-12-19 15:49 - 000000000 ____D C:\Users\Roman\AppData\Roaming\vlc
2021-03-13 23:55 - 2020-01-25 08:36 - 000000000 ____D C:\Users\Roman\AppData\Local\CrashDumps
2021-03-11 15:44 - 2020-11-08 20:14 - 000000000 ____D C:\Users\Roman\Documents\Audacity
2021-03-09 22:39 - 2020-11-06 22:19 - 000443160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-09 22:38 - 2019-12-07 15:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-03-09 22:38 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-03-09 21:53 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-09 21:38 - 2019-10-31 20:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-09 21:35 - 2019-10-31 20:15 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-09 20:34 - 2019-12-18 21:23 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-03-07 20:27 - 2020-11-06 22:29 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-03-07 12:01 - 2019-11-03 12:13 - 000000000 ____D C:\Users\Roman\AppData\Local\D3DSCache
2021-03-06 22:49 - 2020-11-08 20:13 - 000000000 ____D C:\Users\Roman\AppData\Roaming\audacity
2021-02-27 11:07 - 2019-11-01 19:51 - 000000000 ____D C:\Users\Roman\Documents\Scan
2021-02-27 11:07 - 2019-11-01 19:51 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-02-27 11:05 - 2019-11-01 19:30 - 000000000 ____D C:\Users\Roman\AppData\Roaming\Samsung
2021-02-25 15:39 - 2019-10-29 21:24 - 000000000 ____D C:\Users\Roman\AppData\Local\PlaceholderTileLogoFolder
2021-02-25 14:22 - 2019-11-01 19:30 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2021-02-25 13:20 - 2019-10-29 20:14 - 000000000 ____D C:\Users\Roman\AppData\Local\ElevatedDiagnostics
2021-02-23 16:27 - 2020-10-14 18:53 - 000175248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000850112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000521336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000465656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000357320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000249304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000208024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000107784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000098760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000083360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000041272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-23 16:27 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-21 17:06 - 2020-11-02 22:37 - 000000000 ____D C:\Program Files\Recuva
2021-02-20 20:11 - 2020-09-30 19:16 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-17 14:41 - 2020-12-22 19:03 - 000000368 _____ C:\Users\Roman\Desktop\Ethernet – zástupce (2).lnk

==================== Files in the root of some directories ========

2020-08-18 14:02 - 2020-08-18 14:02 - 000007597 _____ () C:\Users\Roman\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Addition.zip
(10.03 KiB) Staženo 47 x



Ještě taková věc, předbíhaly se mi hodiny na pc a našel jsem odkaz s příkazovým řádkem:

Uložte jako .bat a spusťte jako Administrátor:

w32tm /debug /disable
w32tm /unregister
w32tm /register
net stop w32time
w32tm /config /syncfromflags:manual /manualpeerlist:"tik.cesnet.cz tak.cesnet.cz"
net start w32time
w32tm /config /update
w32tm /resync /rediscover
w32tm /resync /force

chci se zeptat jestli je to v pořádku, a není to něco závadného. Samozřejmě jsem ho hned aplikoval, aniž bych se přesvědčil, že je to v pořádku. Popřípadě, jak tento příkaz zrušit. Děkuji.
Naposledy upravil(a) roman7 dne 17 bře 2021 21:16, celkem upraveno 3 x.

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Prosím o kontrolu logu. Děkuji.

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Ten prilozeny .bat subor vyzera v poriadku, ide o nastavenie casu tak, aby sa synchronizoval so servermi od cesnet.cz.

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Spustit skenovani a pockaj na dokoncenie
  • V pripade nalezov nechaj vsetky nalezy oznacene a klikni na Karantena (ak nie su ziadne nalezy, tak na Spustit zakladni opravu)
  • V pripade, ze sa detekuje aj "predinstalovany software", tieto programy mozes, ale nemusis zmazat (toto nie su skodlive programy, ale iba zbytocnosti)
  • Potvrd vyzvu, pockaj na dokoncenie a potvrd restartovanie PC
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah skopiruj a vloz do dalsej odpovede
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

roman7
Návštěvník
Návštěvník
Příspěvky: 327
Registrován: 25 bře 2008 23:09

Re: Prosím o kontrolu logu. Děkuji.

#3 Příspěvek od roman7 »

Zdravím

Malwarebytes AdwCleaner 8.1.0.0
# -------------------------------
# Build: 02-15-2021
# Database: 2021-03-09.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 03-18-2021
# Duration: 00:00:19
# OS: Windows 10 Pro
# Scanned: 7213
# Detected: 2


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.SamsungEasyDocumentCreator Folder C:\Program Files (x86)\SAMSUNG\EASY DOCUMENT CREATOR
Preinstalled.SamsungEasyDocumentCreator Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Samsung Easy Document Creator


AdwCleaner[S00].txt - [1633 octets] - [30/01/2021 20:17:52]
AdwCleaner[S01].txt - [1693 octets] - [25/02/2021 22:47:40]
AdwCleaner[S02].txt - [1754 octets] - [28/02/2021 19:32:42]
AdwCleaner[S03].txt - [1815 octets] - [09/03/2021 22:00:45]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S04].txt ##########


Ještě k tomu bat souboru, po aplikaci toho souboru mě to nechce pustit při nastavování času viz. příloha a to mě na tom právě zaráží
datum a čas.jpg
datum a čas.jpg (28.96 KiB) Zobrazeno 1101 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Prosím o kontrolu logu. Děkuji.

#4 Příspěvek od Conder »

Tieto nastavenia otvaras z administratorskeho uctu?

Poprosim o obidva nove logy z FRST.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

roman7
Návštěvník
Návštěvník
Příspěvky: 327
Registrován: 25 bře 2008 23:09

Re: Prosím o kontrolu logu. Děkuji.

#5 Příspěvek od roman7 »

Ano. Fungovalo to, dostal jsem se vždy, až k nastavení synchronizace tam vybral s jakým serverem a bylo. Od toho příkazu mi to prostě hlásí nemáte oprávnění. Dá se nějak ten příkaz zrušit?

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Prosím o kontrolu logu. Děkuji.

#6 Příspěvek od Conder »

Ano, malo by to ist, ale poprosim tie FRST logy.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

roman7
Návštěvník
Návštěvník
Příspěvky: 327
Registrován: 25 bře 2008 23:09

Re: Prosím o kontrolu logu. Děkuji.

#7 Příspěvek od roman7 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-03-2021
Ran by Roman (administrator) on DESKTOP-5C2V1IG (21-03-2021 08:07:21)
Running from C:\Users\Roman\Desktop
Loaded Profiles: Roman
Platform: Windows 10 Pro Version 2004 19041.867 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\DAODx.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atiesrxx.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [116960 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8483032 2015-05-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
HKU\S-1-5-21-128406778-2638418637-827040753-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32726088 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-128406778-2638418637-827040753-1001\...\Run: [Opera Browser Assistant] => C:\Users\Roman\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3366424 2020-12-08] (Opera Software AS -> Opera Software)
HKLM\...\Windows x64\Print Processors\us005PC: C:\Windows\System32\spool\prtprocs\x64\us005pc.dll [43520 2014-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Windows x64\Print Processors\us015PC: C:\Windows\System32\spool\prtprocs\x64\us015pc.dll [52088 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\us005 Langmon: C:\WINDOWS\system32\us005lm.dll [22528 2014-11-25] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: us008lm.dll
HKLM\...\Print\Monitors\us015 Langmon: C:\WINDOWS\system32\us015lm.dll [31096 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\89.0.8688.91\Installer\chrmstp.exe [2021-03-18] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {264237B4-B513-45FF-9DCF-F5FDC6A59338} - System32\Tasks\Opera scheduled assistant Autoupdate 1585845267 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe [1793688 2021-03-11] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Roman\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {2DC55ED9-E11A-48A6-BE54-96BB451D7394} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software)
Task: {34227566-749A-4F85-887E-32013D9E1ED5} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3B074D41-A1F4-4C1C-B0FF-04BFC6D359FC} - System32\Tasks\ASUS\RunDAOD => C:\WINDOWS\DAODx.exe [32768 2009-03-30] () [File not signed]
Task: {4A2EEAD4-BBB4-44B3-B245-936D8EB786B2} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {4B411F70-95DE-4C39-8150-85674BA9DB6A} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {4D5D36A4-D2A0-470A-82EC-CA8EDB93874C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
Task: {5E691FD7-12E9-45E7-8BD2-A13F13ED35F2} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [1426232 2013-10-18] (ASUSTeK Computer Inc. -> )
Task: {5E7CC867-948E-4CC9-9356-70B5A71AA350} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [328504 2013-02-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {656E7A0E-23E6-4FFB-AD5D-3041262CCA7B} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4682976 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
Task: {6E331F3F-D6C4-41E5-803C-C94DEBF6CD5D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {7377C96F-F7FB-4251-A64C-C459C4092173} - System32\Tasks\PostponeDeviceSetupToast_S-1-5-21-128406778-2638418637-827040753-1001_3 => {5ded83ef-1e99-48cf-bf83-676d2a6db408} C:\Windows\System32\oobe\UserOOBE.dll [412160 2021-03-09] (Microsoft Windows -> Microsoft Corporation)
Task: {7B733476-8B80-4B4C-990A-DD84C3AE195E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7CC2EA58-3548-4678-85BE-FDF83095E5EF} - System32\Tasks\Opera scheduled Autoupdate 1572383546 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe [1793688 2021-03-11] (Opera Software AS -> Opera Software)
Task: {7FB437E3-DBF7-4271-A80A-F361D23623AC} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {940AADAA-E746-451D-AD13-BC58B7A07E80} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe [967480 2013-08-26] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {9873A753-B7ED-4366-B84D-C804201D9371} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [90112 2011-09-09] () [File not signed]
Task: {9AC89552-E14B-4697-A121-B2AB7A76628A} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
Task: {A9AB8724-AA03-48B0-80A3-EB3F043D51E9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2250232 2021-03-14] (Avast Software s.r.o. -> AVAST Software)
Task: {A9BF9436-3228-47F8-8E8C-B71B7813334D} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [752200 2018-05-21] (HP Inc. -> )
Task: {ACC1A794-D902-468D-A625-56E7C0936E84} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2935424 2012-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {C738B49F-BB0D-4D0C-9E1F-816A20AE5557} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {D3A24483-F61B-421B-9FED-0C416EE821E5} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {F70D7DF3-C979-4ADF-89B3-7DCA7C6463B8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2250232 2021-03-14] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f02d60bc-40be-4e2a-a15c-aa7546e56a7e}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\Roman\Downloads
Edge Profile: C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-21]
Edge DownloadDir: C:\Users\Roman\Downloads

FireFox:
========
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2020-04-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-03] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-03] (Avast Software s.r.o. -> AVAST Software)
FF Plugin HKU\S-1-5-21-128406778-2638418637-827040753-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)

Opera:
=======
OPR Profile: C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable [2021-03-20]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-03-10]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-09-17] (ASUSTeK Computer Inc. -> )
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2013-09-17] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2020-04-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256 2020-04-08] (ASUSTeK Computer Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7878680 2021-03-18] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621608 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1301136 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [352480 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\89.0.8688.91\elevation_service.exe [1504864 2021-03-14] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56904 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
S4 DialogBlockingService; C:\WINDOWS\System32\DialogBlockingService.dll [76288 2021-03-09] (Microsoft Windows -> Microsoft Corporation)
S4 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\\spdsvc.exe [508488 2018-05-24] (HP Inc. -> )
S4 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2015-02-07] (Samsung Electronics CO., LTD. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-03-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-14] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2013-01-15] (ASUSTeK Computer Inc. -> )
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208024 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [357320 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [249304 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [98760 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41272 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175248 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [521336 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107784 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83360 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [850112 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [465160 2021-03-18] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215328 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326976 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrd.sys [32840 2013-02-21] (Realtek Semiconductor Corp -> NT Kernel Resources)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-21 08:07 - 2021-03-21 08:08 - 000023189 _____ C:\Users\Roman\Desktop\FRST.txt
2021-03-19 20:57 - 2021-03-19 20:57 - 000050362 _____ C:\Users\Roman\Desktop\Faktura testy cov 12101563.pdf
2021-03-19 20:56 - 2021-03-19 20:56 - 000047465 _____ C:\Users\Roman\Documents\invoice_12101563.pdf
2021-03-18 21:09 - 2021-03-18 21:09 - 000004032 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-128406778-2638418637-827040753-1001_3
2021-03-17 10:29 - 2021-03-21 08:06 - 000000000 ____D C:\Users\Roman\Desktop\FRST-OlderVersion
2021-03-15 22:25 - 2021-03-15 22:25 - 000000249 _____ C:\Users\Roman\Desktop\.bat
2021-03-14 23:32 - 2021-03-14 23:32 - 000000552 _____ C:\Users\Roman\Documents\cc_20210314_233221.reg
2021-03-13 11:17 - 2021-03-13 11:17 - 000078558 _____ C:\Users\Roman\Documents\2111340085.pdf
2021-03-13 11:17 - 2021-03-13 11:17 - 000052771 _____ C:\Users\Roman\Documents\0447-20210201-20210228-2-MCZS.pdf
2021-03-13 11:15 - 2021-03-13 11:15 - 000057902 _____ C:\Users\Roman\Documents\0447-20201231-CZS-PAD.pdf
2021-03-13 11:15 - 2021-03-13 11:15 - 000052170 _____ C:\Users\Roman\Documents\0447-20210101-20210131-1-MCZS.pdf
2021-03-13 11:14 - 2021-03-13 11:14 - 000491788 _____ C:\Users\Roman\Documents\Vyuctovaci_faktura_CE_VS_4911085569_vystaveno_21112019_se_slozenkou.pdf
2021-03-13 11:14 - 2021-03-13 11:14 - 000054678 _____ C:\Users\Roman\Documents\0447-20201201-20201231-12-MCZS.pdf
2021-03-12 21:01 - 2021-03-12 21:01 - 000241960 _____ C:\Users\Roman\Desktop\Příbalová informace (1).pdf
2021-03-12 21:00 - 2021-03-12 21:00 - 000579009 _____ C:\Users\Roman\Downloads\Příbalová informace.pdf
2021-03-09 21:49 - 2021-03-09 21:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-03-09 21:49 - 2021-03-09 21:49 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-09 21:49 - 2021-03-09 21:49 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-03-09 21:49 - 2021-03-09 21:49 - 000480256 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-03-09 21:49 - 2021-03-09 21:49 - 000011359 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-03-09 21:48 - 2021-03-09 21:48 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-03-09 21:48 - 2021-03-09 21:48 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-03-09 21:48 - 2021-03-09 21:48 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-09 21:48 - 2021-03-09 21:48 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-09 21:48 - 2021-03-09 21:48 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-09 21:48 - 2021-03-09 21:48 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-03-09 21:48 - 2021-03-09 21:48 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-03-06 19:20 - 2021-03-06 19:20 - 000078558 _____ C:\Users\Roman\Desktop\Faktura Na zuby sprcha2111340085.pdf
2021-03-04 20:14 - 2021-03-04 20:14 - 000027798 _____ C:\Users\Roman\Desktop\Eta pilnik nohy1621230061.pdf
2021-03-03 22:09 - 2021-03-03 22:09 - 000549320 _____ C:\Users\Roman\Desktop\Pestovani_a_rez_ovocnych_stromu.pdf
2021-03-03 17:18 - 2021-03-03 17:18 - 000237586 _____ C:\Users\Roman\Downloads\Výměna zboží číslo_ V3307 _ Student-eShop.pdf
2021-03-02 11:26 - 2021-03-02 11:26 - 000027733 _____ C:\Users\Roman\Downloads\Výpis za rok 2019 účet 0187624007.pdf
2021-02-26 22:16 - 2021-02-26 22:17 - 027450450 _____ C:\Users\Roman\Downloads\charlie-gameof-2016.zip
2021-02-25 22:46 - 2021-02-25 22:46 - 008463216 _____ (Malwarebytes) C:\Users\Roman\Desktop\adwcleaner_8.1.exe
2021-02-25 16:55 - 2021-02-25 16:55 - 000110952 _____ C:\Users\Roman\Desktop\Faktura Iphon Tyna_2193744.pdf
2021-02-25 14:22 - 2021-02-25 14:22 - 000000000 ____D C:\Program Files\Common Files\Common Desktop Agent
2021-02-23 19:26 - 2021-03-15 18:42 - 000004206 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1572383546
2021-02-23 16:27 - 2021-02-23 16:27 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-23 16:27 - 2021-02-23 16:27 - 000215328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-21 22:59 - 2021-02-21 22:59 - 000000932 _____ C:\Users\Roman\Documents\cc_20210221_225951.reg

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-21 08:08 - 2020-11-06 22:28 - 001693568 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-21 08:08 - 2019-12-07 15:43 - 000716874 _____ C:\WINDOWS\system32\perfh005.dat
2021-03-21 08:08 - 2019-12-07 15:43 - 000145052 _____ C:\WINDOWS\system32\perfc005.dat
2021-03-21 08:08 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-21 08:07 - 2021-01-29 23:35 - 000000000 ____D C:\FRST
2021-03-21 08:07 - 2020-04-08 06:35 - 000000000 _____ C:\WINDOWS\Path.idx
2021-03-21 08:06 - 2021-01-29 23:34 - 002300928 _____ (Farbar) C:\Users\Roman\Desktop\FRST64.exe
2021-03-21 08:03 - 2019-11-01 15:56 - 000000000 ____D C:\Program Files\CCleaner
2021-03-21 08:02 - 2020-04-08 06:34 - 001048576 _____ C:\WINDOWS\PE_Rom.dll
2021-03-21 08:01 - 2020-11-06 22:29 - 000003126 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2021-03-21 08:01 - 2020-11-06 22:29 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-03-21 08:01 - 2020-11-06 22:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-21 08:01 - 2020-11-06 22:19 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-21 08:01 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-20 22:54 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-03-20 22:54 - 2019-11-01 16:16 - 000000000 ____D C:\ProgramData\AVAST Software
2021-03-20 22:54 - 2019-10-29 19:58 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-03-20 21:54 - 2020-11-06 22:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-20 18:50 - 2020-06-10 18:01 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-20 18:50 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-20 18:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-18 21:26 - 2019-12-18 21:23 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-03-18 21:10 - 2020-04-02 17:34 - 000465160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-03-18 21:09 - 2020-01-25 08:36 - 000000000 ____D C:\Users\Roman\AppData\Local\CrashDumps
2021-03-15 18:44 - 2020-11-06 22:29 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-128406778-2638418637-827040753-1001
2021-03-15 18:44 - 2020-11-06 22:21 - 000002361 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-15 18:44 - 2019-10-29 19:58 - 000000000 ___RD C:\Users\Roman\OneDrive
2021-03-15 18:42 - 2019-10-29 22:12 - 000001405 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-03-15 18:39 - 2019-11-17 15:17 - 000000638 _____ C:\WINDOWS\Tasks\TrackerAutoUpdate.job
2021-03-14 22:38 - 2020-12-19 21:24 - 000000000 ____D C:\Users\Roman\AppData\Local\AMD_Common
2021-03-14 17:17 - 2020-12-30 11:02 - 000002724 _____ C:\WINDOWS\system32\Tasks\EPM Preload
2021-03-14 17:17 - 2020-11-06 22:32 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b4835897e39e
2021-03-14 17:17 - 2020-11-06 22:29 - 000003764 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1585845267
2021-03-14 17:17 - 2020-11-06 22:29 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-14 17:17 - 2020-11-06 22:29 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-14 17:17 - 2020-11-06 22:29 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-14 17:17 - 2020-11-06 22:29 - 000002878 _____ C:\WINDOWS\system32\Tasks\TrackerAutoUpdate
2021-03-14 17:17 - 2020-11-06 22:29 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2021-03-14 17:17 - 2020-11-06 22:29 - 000002234 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-03-14 17:17 - 2020-11-06 22:29 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-03-14 17:17 - 2020-11-06 22:29 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-03-14 17:17 - 2020-11-06 22:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-03-14 10:37 - 2019-12-19 15:49 - 000000000 ____D C:\Users\Roman\AppData\Roaming\vlc
2021-03-11 15:44 - 2020-11-08 20:14 - 000000000 ____D C:\Users\Roman\Documents\Audacity
2021-03-09 22:39 - 2020-11-06 22:19 - 000443160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-09 22:38 - 2019-12-07 15:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-03-09 22:38 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-03-09 22:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-03-09 21:53 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-09 21:38 - 2019-10-31 20:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-09 21:35 - 2019-10-31 20:15 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-07 20:27 - 2020-11-06 22:29 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-03-07 12:01 - 2019-11-03 12:13 - 000000000 ____D C:\Users\Roman\AppData\Local\D3DSCache
2021-03-06 22:49 - 2020-11-08 20:13 - 000000000 ____D C:\Users\Roman\AppData\Roaming\audacity
2021-02-27 11:07 - 2019-11-01 19:51 - 000000000 ____D C:\Users\Roman\Documents\Scan
2021-02-27 11:07 - 2019-11-01 19:51 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-02-27 11:05 - 2019-11-01 19:30 - 000000000 ____D C:\Users\Roman\AppData\Roaming\Samsung
2021-02-25 15:39 - 2019-10-29 21:24 - 000000000 ____D C:\Users\Roman\AppData\Local\PlaceholderTileLogoFolder
2021-02-25 14:22 - 2019-11-01 19:30 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2021-02-25 13:20 - 2019-10-29 20:14 - 000000000 ____D C:\Users\Roman\AppData\Local\ElevatedDiagnostics
2021-02-23 16:27 - 2020-10-14 18:53 - 000175248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000850112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000521336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000357320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000249304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000208024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000107784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000098760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000083360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-23 16:27 - 2020-04-02 17:34 - 000041272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-23 16:27 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-21 17:06 - 2020-11-02 22:37 - 000000000 ____D C:\Program Files\Recuva
2021-02-20 20:11 - 2020-09-30 19:16 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools

==================== Files in the root of some directories ========

2020-08-18 14:02 - 2020-08-18 14:02 - 000007597 _____ () C:\Users\Roman\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Addition.zip
(10.58 KiB) Staženo 47 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Prosím o kontrolu logu. Děkuji.

#8 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
    CMD: net stop w32time
    CMD: w32tm /unregister
    CMD: w32tm /register
    CMD: net start w32time
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah skopiruj a vloz do dalsej odpovede
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

roman7
Návštěvník
Návštěvník
Příspěvky: 327
Registrován: 25 bře 2008 23:09

Re: Prosím o kontrolu logu. Děkuji.

#9 Příspěvek od roman7 »

Omlouvám se za zpoždění. K nastavení výběru serveru se teď dá znovu dostat.

Fix result of Farbar Recovery Scan Tool (x64) Version: 21-03-2021
Ran by Roman (24-03-2021 11:17:35) Run:2
Running from C:\Users\Roman\Desktop
Loaded Profiles: Roman
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
CMD: net stop w32time
CMD: w32tm /unregister
CMD: w32tm /register
CMD: net start w32time

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Error: (0) Failed to create a restore point.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 71
Average :
Sum : 38708823
Maximum :
Minimum :
Property : Length




========= End of Powershell: =========


========= net stop w32time =========

N zev slu§by nenˇ platně.

Dalçˇ n povŘdu zˇsk te pýˇkazem NET HELPMSG 2185.


========= End of CMD: =========


========= w32tm /unregister =========

W32Time successfully unregistered.

========= End of CMD: =========


========= w32tm /register =========

W32Time successfully registered.

========= End of CMD: =========


========= net start w32time =========

SpouçtŘnˇ slu§by Windows Time.
Slu§ba Windows Time byla ŁspŘçnŘ spuçtŘna.


========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 41445080 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 44485 B
Edge => 0 B
Firefox => 0 B
Opera => 467761689 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 93998 B
NetworkService => 93998 B
Roman => 223063935 B

RecycleBin => 0 B
EmptyTemp: => 708.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 11:17:24 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Prosím o kontrolu logu. Děkuji.

#10 Příspěvek od Conder »

Super, logy inak vyzeraju OK. Su s PC nejake problemy?
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

roman7
Návštěvník
Návštěvník
Příspěvky: 327
Registrován: 25 bře 2008 23:09

Re: Prosím o kontrolu logu. Děkuji.

#11 Příspěvek od roman7 »

PC šlape dobře. Děkuji.

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Prosím o kontrolu logu. Děkuji.

#12 Příspěvek od Conder »

:arrow: Tak este upraceme po pouzitych nastrojoch:
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět