Zdravím, poprosím o kontrolu logu notebooku.
Chtěl jsem vytvořit FRST log ale nevím proč to nejde dávám screen -> https://ctrlv.cz/Yv0s
Posílám RSIT log
Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2021-01-25 12:48:08
Microsoft Windows 8.1
System drive C: has 133 GB (70%) free of 191 GB
Total RAM: 5006 MB (62% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:48:18, on 25. 1. 2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.19036)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\trend micro\asus.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: WildTangentHelper - Unknown owner - C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8505 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe" /runassvc
"C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe"
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="634D0622-2066-6AF9-FFC7-7B2D8DF7CB49" /binpath="C:\Program Files\AVAST Software\Avast"
"C:\Program Files\AVAST Software\Avast\aswidsagent.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
taskhost.exe $(Arg0)
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
taskhostex.exe
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
KBFiltr.exe
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe" -critical
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\asus\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\asus\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\asus\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=83.0.4103.97 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=83.0.478.50 --initial-client-data=0xa8,0xac,0xb0,0x84,0xb4,0x7ff9021b2f20,0x7ff9021b2f30,0x7ff9021b2f40
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1352,3985480651372873505,7625525832170622396,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1500 /prefetch:2
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --field-trial-handle=1352,3985480651372873505,7625525832170622396,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1564 /prefetch:8
/S
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=8552,281470512786156773,2694310766627332328,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\asus\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=MAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --log-file="C:\Users\asus\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8236 /prefetch:2
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=8552,281470512786156773,2694310766627332328,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --lang=en-US --service-sandbox-type=network --no-sandbox --force-wave-audio --log-file="C:\Users\asus\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\asus\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=4368 /prefetch:8
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --field-trial-handle=1352,3985480651372873505,7625525832170622396,131072 --lang=cs --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4572 /prefetch:8
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1352,3985480651372873505,7625525832170622396,131072 --lang=cs --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6516 /prefetch:1
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1352,3985480651372873505,7625525832170622396,131072 --lang=cs --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6156 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskhost.exe
taskeng.exe {060E87BC-0DCB-44D2-815F-BA87ECFAEF3C}
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1352,3985480651372873505,7625525832170622396,131072 --lang=cs --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7096 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe8_ Global\UsGthrCtrlFltPipeMssGthrPipe8 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 572 576 584 65536 580
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1352,3985480651372873505,7625525832170622396,131072 --lang=cs --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7752 /prefetch:1
"C:\Users\asus\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll [2021-01-17 734376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll [2021-01-17 348328]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14 193136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AuditSHD"=C:\windows\system32\oobe\auditshd.exe [2014-10-29 30208]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-02-10 391128]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-02-10 771544]
"CanonSolutionMenu"=C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2007-10-25 652624]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-09-13 1840720]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2020-12-26 117352]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2019-03-26 53540200]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2021-01-06 32440376]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WebStorage"=C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [2014-08-20 63296]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-03-08 95192]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2020-09-17 706680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-02-10 624640]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcapexe]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2021-01-25 12:48:08 ----D---- C:\rsit
2021-01-25 12:48:08 ----D---- C:\Program Files\trend micro
2021-01-25 12:26:17 ----D---- C:\FRST
2021-01-17 00:22:29 ----D---- C:\Users\asus\AppData\Roaming\Sun
2021-01-16 17:51:17 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2021-01-16 17:48:03 ----A---- C:\WINDOWS\system32\win32k.sys
2021-01-16 17:48:03 ----A---- C:\WINDOWS\system32\tquery.dll
2021-01-16 17:48:02 ----A---- C:\WINDOWS\system32\mssrch.dll
2021-01-16 17:48:01 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2021-01-16 17:48:01 ----A---- C:\WINDOWS\system32\wuaueng.dll
2021-01-16 17:48:00 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2021-01-16 17:48:00 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2021-01-16 17:47:59 ----A---- C:\WINDOWS\system32\rdpcore.dll
2021-01-16 17:47:59 ----A---- C:\WINDOWS\system32\authui.dll
2021-01-16 17:47:58 ----A---- C:\WINDOWS\system32\msi.dll
2021-01-16 17:47:57 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2021-01-16 17:47:57 ----A---- C:\WINDOWS\system32\crypt32.dll
2021-01-16 17:47:56 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2021-01-16 17:47:55 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2021-01-16 17:47:55 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2021-01-16 17:47:54 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2021-01-16 17:47:54 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2021-01-16 17:47:54 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2021-01-16 17:47:53 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2021-01-16 17:47:53 ----A---- C:\WINDOWS\system32\gdi32.dll
2021-01-16 17:47:52 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2021-01-16 17:47:52 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2021-01-16 17:47:52 ----A---- C:\WINDOWS\system32\wuapi.dll
2021-01-16 17:47:52 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2021-01-16 17:47:52 ----A---- C:\WINDOWS\system32\localspl.dll
2021-01-16 17:47:51 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2021-01-16 17:47:51 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2021-01-16 17:47:51 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2021-01-16 17:47:50 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2021-01-16 17:47:50 ----A---- C:\WINDOWS\system32\upnphost.dll
2021-01-16 17:47:50 ----A---- C:\WINDOWS\system32\spoolsv.exe
2021-01-16 17:47:50 ----A---- C:\WINDOWS\system32\mssph.dll
2021-01-16 17:47:49 ----A---- C:\WINDOWS\system32\WFS.exe
2021-01-16 17:47:49 ----A---- C:\WINDOWS\system32\mssvp.dll
2021-01-16 17:47:48 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2021-01-16 17:47:48 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2021-01-16 17:47:48 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2021-01-16 17:47:48 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2021-01-16 17:47:48 ----A---- C:\WINDOWS\system32\puiobj.dll
2021-01-16 17:47:48 ----A---- C:\WINDOWS\system32\netprofm.dll
2021-01-16 17:47:47 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2021-01-16 17:47:47 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2021-01-16 17:47:47 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2021-01-16 17:47:47 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2021-01-16 17:47:47 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2021-01-16 17:47:47 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2021-01-16 17:47:47 ----A---- C:\WINDOWS\system32\netman.dll
2021-01-16 17:47:47 ----A---- C:\WINDOWS\system32\mssphtb.dll
2021-01-16 17:47:47 ----A---- C:\WINDOWS\system32\FXSCOMPOSE.dll
2021-01-16 17:47:47 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2021-01-16 17:47:46 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2021-01-16 17:47:46 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2021-01-16 17:47:46 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2021-01-16 17:47:46 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2021-01-16 17:47:46 ----A---- C:\WINDOWS\system32\certcli.dll
2021-01-16 17:47:45 ----A---- C:\WINDOWS\system32\user32.dll
2021-01-16 17:47:44 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-01-16 17:47:43 ----A---- C:\WINDOWS\SYSWOW64\CredentialUIBroker.exe
2021-01-16 17:47:43 ----A---- C:\WINDOWS\system32\FXSUTILITY.dll
2021-01-16 17:47:43 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2021-01-16 17:47:43 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2021-01-16 17:47:43 ----A---- C:\WINDOWS\system32\CredentialUIBroker.exe
2021-01-16 17:47:43 ----A---- C:\WINDOWS\splwow64.exe
2021-01-16 17:47:42 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2021-01-16 17:47:42 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2021-01-16 17:47:42 ----A---- C:\WINDOWS\system32\wuauclt.exe
2021-01-16 17:47:42 ----A---- C:\WINDOWS\system32\prnntfy.dll
2021-01-16 17:47:42 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-01-16 17:47:42 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2021-01-16 17:47:41 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2021-01-16 17:47:41 ----A---- C:\WINDOWS\system32\upnpcont.exe
2021-01-16 17:47:40 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2021-01-16 17:47:40 ----A---- C:\WINDOWS\system32\printfilterpipelineprxy.dll
2021-01-16 17:47:40 ----A---- C:\WINDOWS\system32\drivers\modem.sys
2021-01-16 17:47:39 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2021-01-16 17:47:39 ----A---- C:\WINDOWS\system32\wudriver.dll
2021-01-16 17:47:39 ----A---- C:\WINDOWS\system32\win32spl.dll
2021-01-16 17:47:39 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2021-01-16 17:47:14 ----D---- C:\Users\asus\AppData\Roaming\java
2021-01-16 17:47:07 ----D---- C:\Users\asus\AppData\Roaming\.tlauncher
2021-01-16 17:46:59 ----D---- C:\ProgramData\Sun
2021-01-16 17:46:51 ----A---- C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2021-01-16 17:46:08 ----D---- C:\ProgramData\Oracle
2021-01-16 17:46:05 ----D---- C:\Program Files\Java
2021-01-16 17:44:48 ----D---- C:\Users\asus\AppData\Roaming\.minecraft
2020-12-26 19:14:38 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-12-26 19:14:37 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-12-26 19:14:35 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-12-26 19:14:32 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-12-26 19:14:31 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-12-26 19:14:30 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-12-26 19:14:29 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-12-26 19:14:29 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-12-26 19:14:28 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2020-12-26 19:14:26 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2020-12-26 19:14:26 ----A---- C:\WINDOWS\system32\iertutil.dll
2020-12-26 19:14:25 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2020-12-26 19:14:24 ----A---- C:\WINDOWS\system32\wininet.dll
2020-12-26 19:14:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2020-12-26 19:14:24 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2020-12-26 19:14:23 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2020-12-26 19:14:23 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2020-12-26 19:14:22 ----A---- C:\WINDOWS\system32\msfeeds.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\system32\wintrust.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\system32\tsmf.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\system32\rasdlg.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\system32\rasapi32.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\system32\netcfgx.dll
2020-12-26 19:14:21 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2020-12-26 19:14:20 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2020-12-26 19:14:20 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2020-12-26 19:14:20 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2020-12-26 19:14:20 ----A---- C:\WINDOWS\system32\cdd.dll
2020-12-26 19:14:19 ----A---- C:\WINDOWS\system32\rasplap.dll
2020-12-26 19:14:19 ----A---- C:\WINDOWS\system32\netshell.dll
2020-12-26 19:14:19 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2020-12-26 19:14:18 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2020-12-26 19:14:18 ----A---- C:\WINDOWS\system32\DMRServer.exe
2020-12-26 19:14:17 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2020-12-26 19:14:17 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2020-12-26 19:14:17 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2020-12-26 19:14:17 ----A---- C:\WINDOWS\system32\RASMM.dll
2020-12-26 19:14:17 ----A---- C:\WINDOWS\system32\rasmans.dll
2020-12-26 19:14:17 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2020-12-26 19:14:17 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2020-12-26 19:14:15 ----A---- C:\WINDOWS\system32\fdSSDP.dll
2020-12-26 19:14:14 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2020-12-26 19:14:14 ----A---- C:\WINDOWS\SYSWOW64\fdSSDP.dll
2020-12-26 19:14:13 ----A---- C:\WINDOWS\system32\rasgcw.dll
2020-12-26 19:14:12 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2020-12-26 19:14:12 ----A---- C:\WINDOWS\system32\dxtrans.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\SYSWOW64\btpanui.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\system32\webcheck.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\system32\mshtmled.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\system32\inetcomm.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2020-12-26 19:14:11 ----A---- C:\WINDOWS\system32\iepeers.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2020-12-26 19:14:11 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2020-12-26 19:14:11 ----A---- C:\WINDOWS\system32\btpanui.dll
2020-12-26 19:14:10 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-12-26 19:14:10 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2020-12-26 19:14:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-12-26 19:14:10 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2020-12-26 19:14:10 ----A---- C:\WINDOWS\system32\jscript.dll
2020-12-26 19:14:10 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2020-12-26 19:07:39 ----A---- C:\WINDOWS\system32\drivers\staport.sys
2020-12-26 18:37:18 ----A---- C:\WINDOWS\system32\aswBoot.exe
2020-12-26 18:37:11 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
======List of files/folders modified in the last 1 month======
2021-01-25 12:48:08 ----RD---- C:\Program Files
2021-01-25 12:48:08 ----AD---- C:\WINDOWS\Temp
2021-01-25 12:42:40 ----D---- C:\WINDOWS\Prefetch
2021-01-25 12:37:33 ----SHD---- C:\System Volume Information
2021-01-25 12:31:42 ----D---- C:\Program Files\CCleaner
2021-01-25 12:27:55 ----D---- C:\WINDOWS\Inf
2021-01-25 12:21:15 ----D---- C:\WINDOWS\SoftwareDistribution
2021-01-25 12:21:15 ----AD---- C:\Windows
2021-01-25 12:17:40 ----D---- C:\WINDOWS\system32\sru
2021-01-25 01:39:31 ----D---- C:\WINDOWS\debug
2021-01-24 16:34:42 ----D---- C:\WINDOWS\system32\config
2021-01-24 15:48:18 ----D---- C:\WINDOWS\Microsoft.NET
2021-01-23 21:38:27 ----D---- C:\ProgramData\AVAST Software
2021-01-23 19:41:34 ----D---- C:\WINDOWS\system32\DriverStore
2021-01-23 19:41:23 ----D---- C:\WINDOWS\WinSxS
2021-01-23 19:39:55 ----D---- C:\WINDOWS\system32\catroot2
2021-01-23 18:58:21 ----RD---- C:\WINDOWS\System32
2021-01-23 18:58:21 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-22 20:52:56 ----HD---- C:\Program Files\WindowsApps
2021-01-22 20:52:56 ----D---- C:\WINDOWS\AppReadiness
2021-01-17 00:22:55 ----SHD---- C:\WINDOWS\Installer
2021-01-17 00:22:36 ----D---- C:\Program Files (x86)\Common Files
2021-01-16 23:52:27 ----D---- C:\WINDOWS\rescache
2021-01-16 23:49:37 ----RD---- C:\WINDOWS\ToastData
2021-01-16 23:49:37 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2021-01-16 23:49:35 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2021-01-16 23:49:35 ----D---- C:\WINDOWS\SYSWOW64\migration
2021-01-16 23:49:35 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2021-01-16 23:49:35 ----D---- C:\WINDOWS\SysWOW64
2021-01-16 23:49:35 ----D---- C:\WINDOWS\system32\wbem
2021-01-16 23:49:35 ----D---- C:\WINDOWS\system32\pl-PL
2021-01-16 23:49:35 ----D---- C:\WINDOWS\system32\migration
2021-01-16 23:49:35 ----D---- C:\WINDOWS\system32\drivers\pl-PL
2021-01-16 23:49:35 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2021-01-16 23:49:35 ----D---- C:\WINDOWS\system32\cs-CZ
2021-01-16 23:49:32 ----D---- C:\WINDOWS\system32\drivers
2021-01-16 23:39:23 ----D---- C:\WINDOWS\CbsTemp
2021-01-16 23:10:00 ----D---- C:\WINDOWS\system32\MRT
2021-01-16 23:07:15 ----AC---- C:\WINDOWS\system32\MRT.exe
2021-01-16 17:46:59 ----HD---- C:\ProgramData
2021-01-16 17:17:19 ----D---- C:\WINDOWS\system32\Tasks
2020-12-26 19:39:49 ----D---- C:\Program Files\Internet Explorer
2020-12-26 19:39:49 ----D---- C:\Program Files (x86)\Internet Explorer
2020-12-26 19:39:48 ----D---- C:\WINDOWS\PolicyDefinitions
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2020-12-26 36792]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2020-12-26 247888]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2020-12-26 97360]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2020-12-26 84496]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2021-01-16 324904]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-08-09 644968]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2020-12-26 208672]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2020-12-26 332880]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2020-12-26 42424]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2020-12-26 176384]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2020-12-26 522480]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2020-12-26 108928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2020-12-26 851256]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2021-01-16 468888]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2013-07-02 19768]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2016-08-13 71680]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2021-01-16 214808]
R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2012-09-18 17152]
R3 ATP;@oem10.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2014-02-13 70928]
R3 HIDSwitch;@oem13.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2013-10-08 20280]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-02-10 4221440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-03-04 3882456]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-02-05 450520]
R3 iwdbus;@oem8.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-27 27032]
R3 kbfiltr;@oem14.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-06 17280]
R3 MEIx64;@oem4.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-12-09 100312]
R3 NETwNs64;@netwsw00.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwsw00.sys [2013-06-18 11518976]
R3 RSBASTOR;@oem11.inf,%Rts5208%;Realtek PCIE CardReader Driver - BA; C:\WINDOWS\system32\DRIVERS\RtsBaStor.sys [2013-07-12 309976]
R3 RTL8168;@oem12.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-07-26 827096]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 AgereSoftModem;@mdmags64.inf,%FullProductName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [2013-06-18 1146880]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem7.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys []
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-03-18 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2014-10-29 44544]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2013-09-09 111416]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [2014-08-20 71168]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2020-12-26 621728]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2020-12-26 351848]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-12-09 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-12-09 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-12-09 390616]
R2 WildTangentHelper;WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [2020-10-05 1640240]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2020-12-26 8477080]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-09-10 224152]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-03-14 153168]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-02-10 279000]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-09-10 224152]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\elevation_service.exe [2021-01-06 1431656]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-03-14 153168]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2019-03-14 194032]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\83.0.478.50\elevation_service.exe [2020-06-12 1507216]
-----------------EOF-----------------
INFO
info.txt logfile of random's system information tool 1.10 2021-01-25 12:48:22
======MBR======
0x00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005EE9B6F9000000000200EEFFFFFF01000000FFFFFFFF00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055AA
======Uninstall list======
ASUS Backtracker-->MsiExec.exe /I{C15C060C-ED1C-49EB-83B3-F7C0FD1CD661}
ASUS Live Update-->MsiExec.exe /X{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}
ASUS Power4Gear Hybrid-->MsiExec.exe /I{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}
ASUS Screen Saver-->MsiExec.exe /I{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}
ASUS Smart Gesture-->MsiExec.exe /I{4D3286A6-F6AB-498A-82A4-E4F040529F3D}
ASUS Splendid Video Enhancement Technology-->MsiExec.exe /X{0969AF05-4FF6-4C00-9406-43599238DE0D}
ASUS USB Charger Plus-->MsiExec.exe /X{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}
ASUSDVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\Setup.exe" /z-uninstall
ASUSDVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\Setup.exe" /z-uninstall
AsusVibe2.0-->C:\Program Files (x86)\Asus\AsusVibe\unins000.exe
ATK Package-->MsiExec.exe /I{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
Avast Free Antivirus-->C:\Program Files\AVAST Software\Avast\setup\Instup.exe /control_panel
Canon MP Navigator EX 1.2-->"C:\Program Files (x86)\Canon\MP Navigator EX 1.2\Maint.exe" /UninstallRemove C:\Program Files (x86)\Canon\MP Navigator EX 1.2\uninst.ini
Canon MP190 series MP Drivers-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP190_series\DelDrv.exe" /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP190_series /L0x0005
Canon My Printer-->C:\Program Files\Canon\MyPrinter\uninst.exe uninst.ini
Canon Utilities Easy-PhotoPrint EX-->C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\uninst.exe uninst.ini
Canon Utilities Solution Menu-->C:\Program Files (x86)\Canon\SolutionMenu\uninst.exe uninst.ini
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CPUID HWMonitor 1.41-->"C:\Program Files\CPUID\HWMonitor\unins000.exe"
Device Setup-->MsiExec.exe /I{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}
Foxit PhantomPDF-->MsiExec.exe /X{FC76E6BB-7CBB-4CD6-8178-3BCADC0526C3}
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\setup.exe" --uninstall --system-level --verbose-logging
Google Toolbar for Internet Explorer-->"C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_8B0481A9A34D47CD.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Intel(R) Management Engine Components-->C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Processor Graphics-->C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe -uninstall
Intel® Trusted Connect Service Client-->MsiExec.exe /I{B5E06417-A4AC-4225-B36E-7E34C91616E7}
Java 8 Update 271 (64-bit)-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F64180271F0}
Microsoft Edge-->"C:\Program Files (x86)\Microsoft\Edge\Application\83.0.478.50\Installer\setup.exe" --uninstall --system-level --verbose-logging
Microsoft Office-->MsiExec.exe /X{90150000-0138-0409-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
PotPlayer-64 bit-->C:\Program Files\DAUM\PotPlayer\uninstall.exe
Realtek Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}\setup.exe" -runfromtemp -removeonly
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -removeonly
Skype verze 8.42-->"C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe"
Skype™ 6.18-->MsiExec.exe /X{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
WebStorage-->C:\Program Files (x86)\ASUS\WebStorage\uninst.exe
WildTangent Helper-->"C:\Program Files (x86)\WildTangent Games\Integration\uninstaller.exe"
WildTangent ShortcutProvider-->"C:\Program Files (x86)\WildTangent Games\ShortcutProvider\uninstaller.exe"
Windows Driver Package - ASUS (ATP) Mouse (01/07/2014 1.0.0.197)-->C:\PROGRA~1\DIFX\D76C4328CBD4A34E\dpinst.exe /u C:\Windows\System32\DriverStore\FileRepository\asustp.inf_amd64_9784a13f87189ca6\asustp.inf
WinFlash-->MsiExec.exe /X{8F21291E-0444-4B1D-B9F9-4370A73E346D}
======System event log======
Computer Name: asuspc
Event Code: 6013
Message: Doba provozu systému je 164 sekund.
Record Number: 5
Source Name: EventLog
Time Written: 20180511200342.000000-000
Event Type: Informace
User:
Computer Name: asuspc
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 4
Source Name: EventLog
Time Written: 20180511200342.000000-000
Event Type: Informace
User:
Computer Name: asuspc
Event Code: 6009
Message: Microsoft (R) Windows (R) 6.03. 9600 Multiprocessor Free.
Record Number: 3
Source Name: EventLog
Time Written: 20180511200342.000000-000
Event Type: Informace
User:
Computer Name: asuspc
Event Code: 6011
Message: Název tohoto počítače v systémech DNS a NetBIOS byl změněn z WIN-18PF66Q16TT na ASUSPC.
Record Number: 2
Source Name: EventLog
Time Written: 20180511200342.000000-000
Event Type: Informace
User:
Computer Name: asuspc
Event Code: 4001
Message: Služba automatické konfigurace sítě WLAN byla úspěšně ukončena.
Record Number: 1
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20160505092245.950721-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
=====Application event log=====
Computer Name: asuspc
Event Code: 5008
Message:
Record Number: 5
Source Name: AVLogEvent
Time Written: 20180511200422.000000-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: asuspc
Event Code: 5615
Message: Služba WMI (Windows Management Instrumentation) byla úspěšně spuštěna.
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20180511200407.949826-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: asuspc
Event Code: 100
Message: Service started.
Record Number: 3
Source Name: SkypeUpdate
Time Written: 20180511200407.000000-000
Event Type: Informace
User:
Computer Name: asuspc
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20180511200344.042336-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: ASUSPC
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20180511200343.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: asuspc
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: ASUSPC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\System32\WindowsAnytimeUpgradeui.exe
ID popisovače: 0x58
Informace o procesu:
ID procesu: 0x214
Název procesu: C:\Windows\System32\poqexec.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AI
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 1086
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20180522174126.144142-000
Event Type: Úspěšný audit
User:
Computer Name: asuspc
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: ASUSPC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\WinSxS\FileMaps\$$_system32_21f9a9c4a2f8b514.cdf-ms
ID popisovače: 0x58
Informace o procesu:
ID procesu: 0x214
Název procesu: C:\Windows\System32\poqexec.exe
Nastavení auditu:
Původní popisovač zabezpečení:
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;0x1f0116;;;WD)
Record Number: 1085
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20180522174125.956617-000
Event Type: Úspěšný audit
User:
Computer Name: asuspc
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: ASUSPC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\WinSxS\FileMaps\$$.cdf-ms
ID popisovače: 0x58
Informace o procesu:
ID procesu: 0x214
Název procesu: C:\Windows\System32\poqexec.exe
Nastavení auditu:
Původní popisovač zabezpečení:
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;0x1f0116;;;WD)
Record Number: 1084
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20180522174125.956617-000
Event Type: Úspěšný audit
User:
Computer Name: asuspc
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: ASUSPC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\WinSxS\FileMaps\_0000000000000000.cdf-ms
ID popisovače: 0x58
Informace o procesu:
ID procesu: 0x214
Název procesu: C:\Windows\System32\poqexec.exe
Nastavení auditu:
Původní popisovač zabezpečení:
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;0x1f0116;;;WD)
Record Number: 1083
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20180522174125.956617-000
Event Type: Úspěšný audit
User:
Computer Name: asuspc
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: ASUSPC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\WinStore\AppxSignature.p7x
ID popisovače: 0x58
Informace o procesu:
ID procesu: 0x214
Název procesu: C:\Windows\System32\poqexec.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AI
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 1082
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20180522174125.831625-000
Event Type: Úspěšný audit
User:
======Environment variables======
"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=3a09
-----------------EOF-----------------
Děkuji.
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu, pomalý pc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu, pomalý pc
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu, pomalý pc
Spustil jsem a našlo to 51 předinstalovaných softwarů, můžu je všechny smazat?
Spustil jsem i Marwarebytes a ten nic nenašel.
Problém je asi že disk je skoro furt na 100%
Spustil jsem i Marwarebytes a ten nic nenašel.
Problém je asi že disk je skoro furt na 100%
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu, pomalý pc
OK. Ty předinstalované programy mazat nemusíte, pouze, pokud by ADW nalezl nějaké AdWare. Teď dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu, pomalý pc
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-01-2021 01
Ran by asus (administrator) on ASUSPC (ASUSTeK COMPUTER INC. X550CA) (25-01-2021 15:10:31)
Running from C:\Users\asus\Downloads
Loaded Profiles: asus & Administrator
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Default browser: IE
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUS Cloud Corporation -> ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSPanel.exe
(ASUS Cloud Corporation) [File not signed] C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <3>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.22013_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(WildTangent Inc -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AuditSHD] => C:\windows\system32\oobe\auditshd.exe [30208 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [652624 2007-10-25] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [1840720 2007-09-13] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117352 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [63296 2014-08-20] (ASUS Cloud Corporation -> )
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-930457372-468796732-3498796432-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53540200 2019-03-26] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-930457372-468796732-3498796432-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon MP190 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9I.DLL [27648 2008-02-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP190 series: C:\WINDOWS\system32\CNMLM9I.DLL [279040 2008-02-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-16] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {03E4A1B0-1BA6-4563-B7AD-E26DE4147B33} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
Task: {042A87C3-C993-4BC4-9F7A-5F9806A6ACF8} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2762552 2019-04-02] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {0B6ED6AF-DF7E-4C3D-B2A9-B07732FCAECD} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4621920 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
Task: {1280F063-E035-4634-9F41-581452A6288F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1124032 2012-09-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {3EA3FFA1-BC05-4544-9C36-6E8F842A2705} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [1038648 2014-02-11] (ASUSTeK Computer Inc. -> ASUS)
Task: {45CB1007-F877-4F17-B6B6-5C629B6214EB} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18232 2014-02-13] (ASUSTeK Computer Inc. -> AsusTek)
Task: {6DA30928-130F-473E-8776-AD799C09F6DD} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1271424 2014-09-02] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
Task: {739DC5D8-DDCC-46E4-BD8B-4729ACBE8964} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {76E91676-ABC6-47F7-B410-C1F2565DA01B} - System32\Tasks\P4GIntlCtrl => C:\Program Files\ASUS\P4G\IntlDPST.exe [74112 2014-02-11] (ASUSTeK Computer Inc. -> )
Task: {81427200-772F-424B-958D-28CCFBA1BF20} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-11-01] (Avast Software s.r.o. -> Avast Software)
Task: {8329C4C9-656B-4C3B-90E0-3207189ECA35} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
Task: {8AAE411C-90E5-4AB3-8A3D-F9573F708064} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8F9878E1-DA6A-48B4-9C35-FF1A21A72115} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [181360 2013-10-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {A7C902AF-8D59-4053-8C9A-C8C377BCE434} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {CD678631-A591-4F53-AAB8-7D4C31868298} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [1957040 2013-11-04] (ASUSTeK Computer Inc. -> ) [File not signed]
Task: {DA6B531F-23F7-4A67-9F96-6B60C8460B41} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55880 2013-10-07] (ASUSTeK Computer Inc. -> ASUS)
Task: {E7AFF97C-1A8D-4FB5-96E0-F41467D77F49} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143672 2019-04-02] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {EFB5E6DB-E3C8-48EF-ACB3-4E27C6FA4367} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2762552 2019-04-02] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {F396A968-E767-4AB0-AE36-EA9A2DAA6CF3} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{661A21E9-61F4-4971-8E4B-09F0AA9B69E4}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{BA537BE0-B290-4FB9-931E-71B59EB814FC}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\asus\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-25]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2021-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2021-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
Chrome:
=======
CHR Profile: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default [2021-01-25]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (AdBlock — best ad blocker) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-01-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-05]
CHR Extension: (Chrome Media Router) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [71168 2014-08-20] (ASUS Cloud Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8477080 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [621728 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [351848 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1640240 2020-10-05] (WildTangent Inc -> )
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36792 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208672 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332880 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97360 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42424 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176384 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522480 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108928 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84496 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851256 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [468888 2021-01-16] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324904 2021-01-16] (Avast Software s.r.o. -> AVAST Software)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [70928 2014-02-13] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2021-01-25] (Malwarebytes Corporation -> Malwarebytes)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197792 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [141472 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 mfesapsn; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-25 15:10 - 2021-01-25 15:11 - 000019402 _____ C:\Users\asus\Downloads\FRST.txt
2021-01-25 15:09 - 2021-01-25 15:09 - 002297344 _____ (Farbar) C:\Users\asus\Downloads\FRST64.exe
2021-01-25 14:06 - 2021-01-25 14:06 - 000000000 ____D C:\Users\asus\AppData\LocalLow\IGDump
2021-01-25 13:54 - 2021-01-25 13:54 - 000197792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-01-25 13:54 - 2021-01-25 13:54 - 000141472 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-01-25 13:54 - 2021-01-25 13:54 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-01-25 13:52 - 2021-01-25 13:52 - 000001978 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-01-25 13:52 - 2021-01-25 13:52 - 000001966 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-01-25 13:52 - 2021-01-25 13:52 - 000001966 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-01-25 13:52 - 2021-01-25 13:52 - 000000000 ____D C:\Users\asus\AppData\Local\mbam
2021-01-25 13:51 - 2021-01-25 13:51 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-01-25 13:51 - 2021-01-25 13:51 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-01-25 13:51 - 2021-01-25 13:50 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-01-25 13:50 - 2021-01-25 13:50 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-01-25 13:49 - 2021-01-25 13:49 - 000000000 ____D C:\Program Files\Malwarebytes
2021-01-25 13:40 - 2021-01-25 13:41 - 000000000 ____D C:\AdwCleaner
2021-01-25 13:39 - 2021-01-25 13:39 - 008457584 _____ (Malwarebytes) C:\Users\asus\Downloads\adwcleaner_8.0.9.1.exe
2021-01-25 13:39 - 2021-01-25 13:39 - 002086424 _____ (Malwarebytes) C:\Users\asus\Downloads\MBSetup.exe
2021-01-25 12:48 - 2021-01-25 12:48 - 000000000 ____D C:\rsit
2021-01-25 12:48 - 2021-01-25 12:48 - 000000000 ____D C:\Program Files\trend micro
2021-01-25 12:47 - 2021-01-25 12:47 - 001222144 _____ C:\Users\asus\Desktop\RSITx64.exe
2021-01-25 12:26 - 2021-01-25 15:11 - 000000000 ____D C:\FRST
2021-01-17 00:22 - 2021-01-17 00:22 - 000000000 ____D C:\Users\asus\AppData\Roaming\Sun
2021-01-16 17:47 - 2021-01-25 00:50 - 000000000 ____D C:\Users\asus\AppData\Roaming\.tlauncher
2021-01-16 17:47 - 2021-01-16 17:47 - 000000000 ____D C:\Users\asus\AppData\Roaming\java
2021-01-16 17:47 - 2021-01-08 02:21 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-16 17:47 - 2021-01-08 02:13 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-16 17:46 - 2021-01-17 00:22 - 000192168 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2021-01-16 17:46 - 2021-01-17 00:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-01-16 17:46 - 2021-01-17 00:22 - 000000000 ____D C:\Program Files\Java
2021-01-16 17:46 - 2021-01-16 17:46 - 000000000 ____D C:\Users\asus\AppData\LocalLow\Oracle
2021-01-16 17:46 - 2021-01-16 17:46 - 000000000 ____D C:\ProgramData\Sun
2021-01-16 17:46 - 2021-01-16 17:46 - 000000000 ____D C:\ProgramData\Oracle
2021-01-16 17:45 - 2021-01-16 17:45 - 000000000 ____D C:\Users\asus\AppData\LocalLow\Sun
2021-01-16 17:44 - 2021-01-19 17:10 - 000000000 ____D C:\Users\asus\AppData\Roaming\.minecraft
2021-01-16 17:44 - 2021-01-16 17:44 - 017115424 _____ (TLauncher Inc.) C:\Users\asus\Downloads\TLauncher-2.75-Installer-0.6.9.exe
2021-01-16 17:44 - 2021-01-16 17:44 - 000001897 _____ C:\Users\asus\Desktop\TLauncher.lnk
2020-12-26 19:14 - 2020-10-13 05:31 - 002132992 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2020-12-26 19:14 - 2020-10-13 05:09 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2020-12-26 19:07 - 2020-12-26 19:07 - 000044568 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2020-12-26 18:37 - 2021-01-16 17:26 - 000214808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-12-26 18:37 - 2020-12-26 18:36 - 000340576 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-25 15:06 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-01-25 14:11 - 2018-05-13 20:45 - 000003594 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-930457372-468796732-3498796432-1001
2021-01-25 14:06 - 2020-09-10 18:49 - 000002243 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-25 14:06 - 2020-09-10 18:49 - 000002202 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-25 14:06 - 2020-09-10 18:49 - 000002202 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-01-25 12:31 - 2020-09-10 18:48 - 000003484 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-25 12:31 - 2020-09-10 18:48 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-25 12:31 - 2019-05-06 14:16 - 000000000 ____D C:\Program Files\CCleaner
2021-01-25 12:27 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2021-01-25 12:19 - 2018-05-13 20:42 - 000000074 _____ C:\Users\asus\AppData\Roaming\sp_data.sys
2021-01-25 12:18 - 2016-08-11 17:30 - 000000000 __RDO C:\Users\asus\OneDrive
2021-01-25 01:40 - 2018-05-11 21:04 - 000000000 ____D C:\Users\asus
2021-01-25 01:39 - 2019-08-03 13:10 - 000000000 ____D C:\Users\asus\AppData\Local\CrashDumps
2021-01-25 00:41 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-23 21:38 - 2019-03-14 18:02 - 000000000 ____D C:\ProgramData\AVAST Software
2021-01-23 18:58 - 2014-10-21 12:24 - 001116146 _____ C:\WINDOWS\system32\perfh005.dat
2021-01-23 18:58 - 2014-10-21 12:24 - 000271400 _____ C:\WINDOWS\system32\perfc005.dat
2021-01-23 18:58 - 2014-10-21 12:14 - 000916138 _____ C:\WINDOWS\system32\perfh015.dat
2021-01-23 18:58 - 2014-10-21 12:14 - 000279534 _____ C:\WINDOWS\system32\perfc015.dat
2021-01-23 18:58 - 2014-03-18 16:26 - 000005680 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-22 20:52 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-22 20:52 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-16 23:59 - 2013-08-22 15:44 - 000337768 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-16 23:52 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache
2021-01-16 23:49 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2021-01-16 23:49 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2021-01-16 23:39 - 2013-08-22 16:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-16 23:11 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2021-01-16 23:10 - 2018-05-25 17:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-16 23:07 - 2018-05-25 17:38 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-16 17:31 - 2019-03-14 18:17 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-16 17:31 - 2019-03-14 18:17 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-01-16 17:31 - 2019-03-14 18:17 - 000002205 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-01-16 17:26 - 2019-03-14 18:07 - 000468888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-01-16 17:24 - 2019-03-14 18:07 - 000324904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-01-16 17:17 - 2019-05-06 14:16 - 000003870 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-16 17:17 - 2019-03-14 18:07 - 000004168 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-12-26 19:39 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-12-26 19:02 - 2019-05-06 14:16 - 000002802 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-12-26 19:02 - 2019-03-14 18:12 - 000003386 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-26 19:02 - 2019-03-14 18:12 - 000003258 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-26 19:02 - 2018-12-23 19:04 - 000003474 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update1
2020-12-26 19:02 - 2018-05-16 13:51 - 000003464 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update2
2020-12-26 19:02 - 2018-05-16 13:51 - 000003382 _____ C:\WINDOWS\system32\Tasks\Update Checker
2020-12-26 19:02 - 2016-05-05 10:07 - 000003266 _____ C:\WINDOWS\system32\Tasks\AsusVibeSchedule
2020-12-26 19:02 - 2016-05-05 10:07 - 000003054 _____ C:\WINDOWS\system32\Tasks\ASUS P4G
2020-12-26 19:02 - 2016-05-05 10:07 - 000003026 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus
2020-12-26 19:02 - 2016-05-05 10:07 - 000003002 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ColorU
2020-12-26 19:02 - 2016-05-05 10:07 - 000002986 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ACMON
2020-12-26 19:02 - 2016-05-05 10:01 - 000003538 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher
2020-12-26 19:02 - 2016-05-05 09:58 - 000003138 _____ C:\WINDOWS\system32\Tasks\RtHDVBg
2020-12-26 19:02 - 2016-05-05 09:58 - 000003132 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2020-12-26 18:41 - 2019-03-14 18:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-12-26 18:36 - 2020-11-01 22:42 - 000176384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-12-26 18:36 - 2020-04-16 21:05 - 000522480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000851256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000247888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000208672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000108928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000097360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000084496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000042424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000036792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-12-26 18:35 - 2019-03-14 18:07 - 000332880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
==================== Files in the root of some directories ========
2018-05-13 20:42 - 2021-01-25 12:19 - 000000074 _____ () C:\Users\asus\AppData\Roaming\sp_data.sys
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-01-17 20:36
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-01-2021 01
Ran by asus (25-01-2021 15:13:33)
Running from C:\Users\asus\Downloads
Windows 8.1 (Update) (X64) (2018-05-11 20:09:29)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-930457372-468796732-3498796432-500 - Administrator - Disabled) => C:\Users\Administrator
asus (S-1-5-21-930457372-468796732-3498796432-1001 - Administrator - Enabled) => C:\Users\asus
Guest (S-1-5-21-930457372-468796732-3498796432-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-930457372-468796732-3498796432-1003 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ASUS Backtracker (HKLM-x32\...\{C15C060C-ED1C-49EB-83B3-F7C0FD1CD661}) (Version: 3.0.4 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.8 - ASUS)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 1.0.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.10 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0021 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUSDVD (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5712.52 - CyberLink Corp.) Hidden
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5712.52 - CyberLink Corp.)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.311 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0031 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.10.2442 - Avast Software)
Canon MP Navigator EX 1.2 (HKLM-x32\...\MP Navigator EX 1.2) (Version: - )
Canon MP190 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP190_series) (Version: - )
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: - )
Canon Utilities Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.)
Foxit PhantomPDF (HKLM-x32\...\{FC76E6BB-7CBB-4CD6-8178-3BCADC0526C3}) (Version: 6.0.62.801 - Foxit Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Java 8 Update 271 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180271F0}) (Version: 8.0.2710.9 - Oracle Corporation)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4641.3004 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 201021 - Kakao Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.27040 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.19.726.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7188 - Realtek Semiconductor Corp.)
Skype verze 8.42 (HKLM-x32\...\Skype_is1) (Version: 8.42 - Skype Technologies S.A.)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.11.399 - ASUS Cloud Corporation)
WildTangent Helper (HKLM-x32\...\{A39303AB-4898-4F12-BAA0-0B8630F86DB4}) (Version: 1.0.0.428 - WildTangent) Hidden
WildTangent ShortcutProvider (HKLM-x32\...\{80831F60-19D7-43B3-A60C-5CAF8C478DF6}) (Version: 5.0.0.240 - WildTangent) Hidden
Windows Driver Package - ASUS (ATP) Mouse (01/07/2014 1.0.0.197) (HKLM\...\2BEE838DC3D664A0CAB23AEA0332BB3877ED0685) (Version: 01/07/2014 1.0.0.197 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
Packages:
=========
- Games App - -> C:\Program Files\WindowsApps\WildTangentGames.-GamesApp-_1.0.3.28_x86__qt5r5pa5dyg8m [2016-07-03] (WildTangent Games)
ASUS WebStorage -> C:\Program Files\WindowsApps\ASUSCloudCorporation.MobileFileExplorer_1.0.24.190_x86__wk4d32h0cvhem [2016-07-03] (ASUS Cloud Corporation)
DOC Viewer Free -> C:\Program Files\WindowsApps\62307pauljohn.DOCViewerFree_1.1.0.1_x86__7sv5v3m8wq0b2 [2019-05-10] (pauljohn)
Flipboard -> C:\Program Files\WindowsApps\Flipboard.Flipboard_2.1.3.0_neutral__3f5azkryzdbc4 [2017-08-03] (Flipboard)
Fresh Paint -> C:\Program Files\WindowsApps\Microsoft.FreshPaint_2.0.15133.0_x86__8wekyb3d8bbwe [2016-07-02] (Microsoft Corporation)
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2016-05-05] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2016-07-02] (Microsoft Corporation) [MS Ad]
LINE -> C:\Program Files\WindowsApps\NAVER.LINEwin8_1.0.15.112_x64__8ptj331gd3tyt [2016-10-12] (LINE Corporation)
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2016-08-13] (Microsoft Corporation) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-07-03] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2016-07-02] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-25] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-07-03] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2016-08-13] (Microsoft Corporation) [MS Ad]
MSN Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-07-03] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_2.3.1055.0_x64__a2t3txkz9j1jw [2017-06-15] (MAGIX)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2016-08-13] (Skype) [MS Ad]
Skype WiFi -> C:\Program Files\WindowsApps\Microsoft.SkypeWiFi_1.2.0.7_x86__kzf8qxf38zg5c [2016-08-13] (Skype)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.2.0.24_neutral__qj0v5chwq8f2g [2016-05-05] (TripAdvisor LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_1.1.13.8_x64__wgeqdkkx372wm [2014-10-21] (Twitter Inc.)
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2016-07-02] (Microsoft Corporation) [MS Ad]
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2016-07-03] (Zinio LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2013-12-18] (Foxit Corporation -> Foxit Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSContextMenu.dll [2014-08-20] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-25] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2013-09-09 18:23 - 2013-09-09 18:23 - 000162816 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2013-06-26 04:26 - 2013-06-26 04:26 - 001479168 _____ (ASUS Cloud Corporation.) [File not signed] C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll
2016-05-05 10:08 - 2016-05-05 10:08 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD10\MSVCR71.dll
2013-05-14 19:58 - 2013-05-14 19:58 - 001600000 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll
2013-05-24 17:31 - 2013-05-24 17:31 - 001609216 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-930457372-468796732-3498796432-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-930457372-468796732-3498796432-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-930457372-468796732-3498796432-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-930457372-468796732-3498796432-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll [2021-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll [2021-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-930457372-468796732-3498796432-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-930457372-468796732-3498796432-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\asus\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\dětičky.jpg
HKU\S-1-5-21-930457372-468796732-3498796432-500\Control Panel\Desktop\\Wallpaper -> C:\windows\asus\wallpapers\asus.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "CanonMyPrinter"
HKU\S-1-5-21-930457372-468796732-3498796432-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-930457372-468796732-3498796432-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9FF28AA5-8828-48D9-A89B-9DEDF7C73A7D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BF4ABA69-D2FE-4D9D-BE50-539E9FF083B4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{CE3E3616-60B6-4E9E-A9BE-AFEC55031D84}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A22A00B6-0F34-4BD5-81DD-9A2C0C22277B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CD2732FE-9934-4974-92FE-13E7FE6AEEA4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{A4FCF435-A7AF-4B0A-A2A4-78A9AF93F60C}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe
FirewallRules: [UDP Query User{BCC45C2D-A58C-49EE-8C37-04C181BA4B52}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe
==================== Restore Points =========================
26-12-2020 18:19:43 Windows Update
16-01-2021 23:04:44 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/25/2021 01:38:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: javaw.exe, verze: 8.0.2710.9, časové razítko: 0x5f626874
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.18362.1, časové razítko: 0x5cbddb81
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006d3be
ID chybujícího procesu: 0xf28
Čas spuštění chybující aplikace: 0x01d6f2abb7f53c2f
Cesta k chybující aplikaci: C:\Program Files\Java\jre1.8.0_271\bin\javaw.exe
Cesta k chybujícímu modulu: C:\Program Files\Java\jre1.8.0_271\bin\ucrtbase.DLL
ID zprávy: 990c5733-5ea5-11eb-82b3-e03f49d86037
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/24/2021 07:40:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: javaw.exe, verze: 8.0.2710.9, časové razítko: 0x5f626874
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.18362.1, časové razítko: 0x5cbddb81
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006d3be
ID chybujícího procesu: 0xd64
Čas spuštění chybující aplikace: 0x01d6f260b1bf4144
Cesta k chybující aplikaci: C:\Program Files\Java\jre1.8.0_271\bin\javaw.exe
Cesta k chybujícímu modulu: C:\Program Files\Java\jre1.8.0_271\bin\ucrtbase.DLL
ID zprávy: a38b40e4-5e73-11eb-82b2-e03f49d86037
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/24/2021 02:02:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: javaw.exe, verze: 8.0.2710.9, časové razítko: 0x5f626874
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.18362.1, časové razítko: 0x5cbddb81
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006d3be
ID chybujícího procesu: 0xfdc
Čas spuštění chybující aplikace: 0x01d6f1b3413214c3
Cesta k chybující aplikaci: C:\Program Files\Java\jre1.8.0_271\bin\javaw.exe
Cesta k chybujícímu modulu: C:\Program Files\Java\jre1.8.0_271\bin\ucrtbase.DLL
ID zprávy: c89c89b7-5ddf-11eb-82b2-e03f49d86037
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/23/2021 06:58:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.
Error: (01/23/2021 06:58:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (01/23/2021 06:58:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (01/23/2021 06:58:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (01/23/2021 06:50:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: javaw.exe, verze: 8.0.2710.9, časové razítko: 0x5f626874
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.18362.1, časové razítko: 0x5cbddb81
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006d3be
ID chybujícího procesu: 0x1384
Čas spuštění chybující aplikace: 0x01d6f1aad7fd9f9b
Cesta k chybující aplikaci: C:\Program Files\Java\jre1.8.0_271\bin\javaw.exe
Cesta k chybujícímu modulu: C:\Program Files\Java\jre1.8.0_271\bin\ucrtbase.DLL
ID zprávy: 85655358-5da3-11eb-82b1-e03f49d86037
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (01/25/2021 03:06:46 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10
Error: (01/25/2021 03:06:46 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10
Error: (01/25/2021 03:06:46 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10
Error: (01/25/2021 03:06:46 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10
Error: (01/25/2021 12:41:32 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (19:32:34, 24/01/2021) bylo neočekávané.
Error: (01/20/2021 07:12:02 PM) (Source: DCOM) (EventID: 10010) (User: ASUSPC)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/20/2021 02:06:09 AM) (Source: DCOM) (EventID: 10010) (User: ASUSPC)
Description: Server {D63B10C5-BB46-4990-A94F-E40B9D520160} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/20/2021 02:06:09 AM) (Source: DCOM) (EventID: 10010) (User: ASUSPC)
Description: Server {D63B10C5-BB46-4990-A94F-E40B9D520160} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2019-03-13 18:49:38.647
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {78C73B22-DD4F-4C7C-B750-CCEC4CEB03DA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-02-02 20:39:18.065
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {F97D18FD-E0A7-4B64-B12B-5E4756D88A29}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: asuspc\asus
Date: 2019-01-19 16:29:45.386
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {5CD0CDCC-A746-4873-AEE0-B1BEE9C834BB}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2018-11-29 18:39:39.208
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {F6C7CB61-A1B8-4250-811F-492BA4116E54}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2018-11-08 18:41:45.033
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {9CDEFB7F-2AF7-4E26-950F-8D964604CCEE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-13 18:10:04.887
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.
Date: 2019-03-13 18:10:04.887
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.
Date: 2019-03-13 18:09:42.666
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80240016
Popis chyby
ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2019-03-13 18:09:42.666
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80240016
Popis chybyři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2019-03-13 18:09:42.650
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80240016
Popis chybyři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
==================== Memory info ===========================
BIOS: American Megatrends Inc. X550CA.300 03/24/2014
Motherboard: ASUSTeK COMPUTER INC. X550CA
Processor: Intel(R) Core(TM) i3-3217U CPU @ 1.80GHz
Percentage of memory in use: 43%
Total physical RAM: 5005.73 MB
Available physical RAM: 2835.66 MB
Total Virtual: 8973.73 MB
Available Virtual: 5897.15 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:129.4 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:253.35 GB) (Free:252.91 GB) NTFS
\\?\Volume{0bf1dab6-610e-4a84-ae0f-8274f6807a44}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.59 GB) NTFS
\\?\Volume{ca229434-e4a1-4428-a741-5df3557f21a5}\ (Restore) (Fixed) (Total:20.01 GB) (Free:9.35 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: F9B6E95E)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by asus (administrator) on ASUSPC (ASUSTeK COMPUTER INC. X550CA) (25-01-2021 15:10:31)
Running from C:\Users\asus\Downloads
Loaded Profiles: asus & Administrator
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Default browser: IE
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUS Cloud Corporation -> ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSPanel.exe
(ASUS Cloud Corporation) [File not signed] C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <3>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.22013_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(WildTangent Inc -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AuditSHD] => C:\windows\system32\oobe\auditshd.exe [30208 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [652624 2007-10-25] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [1840720 2007-09-13] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117352 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [63296 2014-08-20] (ASUS Cloud Corporation -> )
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-930457372-468796732-3498796432-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53540200 2019-03-26] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-930457372-468796732-3498796432-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon MP190 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9I.DLL [27648 2008-02-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP190 series: C:\WINDOWS\system32\CNMLM9I.DLL [279040 2008-02-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-16] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {03E4A1B0-1BA6-4563-B7AD-E26DE4147B33} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
Task: {042A87C3-C993-4BC4-9F7A-5F9806A6ACF8} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2762552 2019-04-02] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {0B6ED6AF-DF7E-4C3D-B2A9-B07732FCAECD} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4621920 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
Task: {1280F063-E035-4634-9F41-581452A6288F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1124032 2012-09-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {3EA3FFA1-BC05-4544-9C36-6E8F842A2705} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [1038648 2014-02-11] (ASUSTeK Computer Inc. -> ASUS)
Task: {45CB1007-F877-4F17-B6B6-5C629B6214EB} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18232 2014-02-13] (ASUSTeK Computer Inc. -> AsusTek)
Task: {6DA30928-130F-473E-8776-AD799C09F6DD} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1271424 2014-09-02] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
Task: {739DC5D8-DDCC-46E4-BD8B-4729ACBE8964} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {76E91676-ABC6-47F7-B410-C1F2565DA01B} - System32\Tasks\P4GIntlCtrl => C:\Program Files\ASUS\P4G\IntlDPST.exe [74112 2014-02-11] (ASUSTeK Computer Inc. -> )
Task: {81427200-772F-424B-958D-28CCFBA1BF20} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-11-01] (Avast Software s.r.o. -> Avast Software)
Task: {8329C4C9-656B-4C3B-90E0-3207189ECA35} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
Task: {8AAE411C-90E5-4AB3-8A3D-F9573F708064} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8F9878E1-DA6A-48B4-9C35-FF1A21A72115} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [181360 2013-10-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {A7C902AF-8D59-4053-8C9A-C8C377BCE434} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {CD678631-A591-4F53-AAB8-7D4C31868298} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [1957040 2013-11-04] (ASUSTeK Computer Inc. -> ) [File not signed]
Task: {DA6B531F-23F7-4A67-9F96-6B60C8460B41} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55880 2013-10-07] (ASUSTeK Computer Inc. -> ASUS)
Task: {E7AFF97C-1A8D-4FB5-96E0-F41467D77F49} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143672 2019-04-02] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {EFB5E6DB-E3C8-48EF-ACB3-4E27C6FA4367} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2762552 2019-04-02] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {F396A968-E767-4AB0-AE36-EA9A2DAA6CF3} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{661A21E9-61F4-4971-8E4B-09F0AA9B69E4}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{BA537BE0-B290-4FB9-931E-71B59EB814FC}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\asus\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-25]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2021-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2021-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
Chrome:
=======
CHR Profile: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default [2021-01-25]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (AdBlock — best ad blocker) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-01-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-05]
CHR Extension: (Chrome Media Router) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [71168 2014-08-20] (ASUS Cloud Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8477080 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [621728 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [351848 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1640240 2020-10-05] (WildTangent Inc -> )
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36792 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208672 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332880 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97360 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42424 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176384 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522480 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108928 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84496 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851256 2020-12-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [468888 2021-01-16] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324904 2021-01-16] (Avast Software s.r.o. -> AVAST Software)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [70928 2014-02-13] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2021-01-25] (Malwarebytes Corporation -> Malwarebytes)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197792 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [141472 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 mfesapsn; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-25 15:10 - 2021-01-25 15:11 - 000019402 _____ C:\Users\asus\Downloads\FRST.txt
2021-01-25 15:09 - 2021-01-25 15:09 - 002297344 _____ (Farbar) C:\Users\asus\Downloads\FRST64.exe
2021-01-25 14:06 - 2021-01-25 14:06 - 000000000 ____D C:\Users\asus\AppData\LocalLow\IGDump
2021-01-25 13:54 - 2021-01-25 13:54 - 000197792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-01-25 13:54 - 2021-01-25 13:54 - 000141472 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-01-25 13:54 - 2021-01-25 13:54 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-01-25 13:52 - 2021-01-25 13:52 - 000001978 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-01-25 13:52 - 2021-01-25 13:52 - 000001966 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-01-25 13:52 - 2021-01-25 13:52 - 000001966 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-01-25 13:52 - 2021-01-25 13:52 - 000000000 ____D C:\Users\asus\AppData\Local\mbam
2021-01-25 13:51 - 2021-01-25 13:51 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-01-25 13:51 - 2021-01-25 13:51 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-01-25 13:51 - 2021-01-25 13:50 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-01-25 13:50 - 2021-01-25 13:50 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-01-25 13:49 - 2021-01-25 13:49 - 000000000 ____D C:\Program Files\Malwarebytes
2021-01-25 13:40 - 2021-01-25 13:41 - 000000000 ____D C:\AdwCleaner
2021-01-25 13:39 - 2021-01-25 13:39 - 008457584 _____ (Malwarebytes) C:\Users\asus\Downloads\adwcleaner_8.0.9.1.exe
2021-01-25 13:39 - 2021-01-25 13:39 - 002086424 _____ (Malwarebytes) C:\Users\asus\Downloads\MBSetup.exe
2021-01-25 12:48 - 2021-01-25 12:48 - 000000000 ____D C:\rsit
2021-01-25 12:48 - 2021-01-25 12:48 - 000000000 ____D C:\Program Files\trend micro
2021-01-25 12:47 - 2021-01-25 12:47 - 001222144 _____ C:\Users\asus\Desktop\RSITx64.exe
2021-01-25 12:26 - 2021-01-25 15:11 - 000000000 ____D C:\FRST
2021-01-17 00:22 - 2021-01-17 00:22 - 000000000 ____D C:\Users\asus\AppData\Roaming\Sun
2021-01-16 17:47 - 2021-01-25 00:50 - 000000000 ____D C:\Users\asus\AppData\Roaming\.tlauncher
2021-01-16 17:47 - 2021-01-16 17:47 - 000000000 ____D C:\Users\asus\AppData\Roaming\java
2021-01-16 17:47 - 2021-01-08 02:21 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-16 17:47 - 2021-01-08 02:13 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-16 17:46 - 2021-01-17 00:22 - 000192168 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2021-01-16 17:46 - 2021-01-17 00:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-01-16 17:46 - 2021-01-17 00:22 - 000000000 ____D C:\Program Files\Java
2021-01-16 17:46 - 2021-01-16 17:46 - 000000000 ____D C:\Users\asus\AppData\LocalLow\Oracle
2021-01-16 17:46 - 2021-01-16 17:46 - 000000000 ____D C:\ProgramData\Sun
2021-01-16 17:46 - 2021-01-16 17:46 - 000000000 ____D C:\ProgramData\Oracle
2021-01-16 17:45 - 2021-01-16 17:45 - 000000000 ____D C:\Users\asus\AppData\LocalLow\Sun
2021-01-16 17:44 - 2021-01-19 17:10 - 000000000 ____D C:\Users\asus\AppData\Roaming\.minecraft
2021-01-16 17:44 - 2021-01-16 17:44 - 017115424 _____ (TLauncher Inc.) C:\Users\asus\Downloads\TLauncher-2.75-Installer-0.6.9.exe
2021-01-16 17:44 - 2021-01-16 17:44 - 000001897 _____ C:\Users\asus\Desktop\TLauncher.lnk
2020-12-26 19:14 - 2020-10-13 05:31 - 002132992 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2020-12-26 19:14 - 2020-10-13 05:09 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2020-12-26 19:07 - 2020-12-26 19:07 - 000044568 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2020-12-26 18:37 - 2021-01-16 17:26 - 000214808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-12-26 18:37 - 2020-12-26 18:36 - 000340576 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-25 15:06 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-01-25 14:11 - 2018-05-13 20:45 - 000003594 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-930457372-468796732-3498796432-1001
2021-01-25 14:06 - 2020-09-10 18:49 - 000002243 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-25 14:06 - 2020-09-10 18:49 - 000002202 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-25 14:06 - 2020-09-10 18:49 - 000002202 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-01-25 12:31 - 2020-09-10 18:48 - 000003484 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-25 12:31 - 2020-09-10 18:48 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-25 12:31 - 2019-05-06 14:16 - 000000000 ____D C:\Program Files\CCleaner
2021-01-25 12:27 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2021-01-25 12:19 - 2018-05-13 20:42 - 000000074 _____ C:\Users\asus\AppData\Roaming\sp_data.sys
2021-01-25 12:18 - 2016-08-11 17:30 - 000000000 __RDO C:\Users\asus\OneDrive
2021-01-25 01:40 - 2018-05-11 21:04 - 000000000 ____D C:\Users\asus
2021-01-25 01:39 - 2019-08-03 13:10 - 000000000 ____D C:\Users\asus\AppData\Local\CrashDumps
2021-01-25 00:41 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-23 21:38 - 2019-03-14 18:02 - 000000000 ____D C:\ProgramData\AVAST Software
2021-01-23 18:58 - 2014-10-21 12:24 - 001116146 _____ C:\WINDOWS\system32\perfh005.dat
2021-01-23 18:58 - 2014-10-21 12:24 - 000271400 _____ C:\WINDOWS\system32\perfc005.dat
2021-01-23 18:58 - 2014-10-21 12:14 - 000916138 _____ C:\WINDOWS\system32\perfh015.dat
2021-01-23 18:58 - 2014-10-21 12:14 - 000279534 _____ C:\WINDOWS\system32\perfc015.dat
2021-01-23 18:58 - 2014-03-18 16:26 - 000005680 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-22 20:52 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-22 20:52 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-16 23:59 - 2013-08-22 15:44 - 000337768 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-16 23:52 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache
2021-01-16 23:49 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2021-01-16 23:49 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2021-01-16 23:39 - 2013-08-22 16:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-16 23:11 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2021-01-16 23:10 - 2018-05-25 17:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-16 23:07 - 2018-05-25 17:38 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-16 17:31 - 2019-03-14 18:17 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-16 17:31 - 2019-03-14 18:17 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-01-16 17:31 - 2019-03-14 18:17 - 000002205 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-01-16 17:26 - 2019-03-14 18:07 - 000468888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-01-16 17:24 - 2019-03-14 18:07 - 000324904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-01-16 17:17 - 2019-05-06 14:16 - 000003870 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-16 17:17 - 2019-03-14 18:07 - 000004168 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-12-26 19:39 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-12-26 19:02 - 2019-05-06 14:16 - 000002802 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-12-26 19:02 - 2019-03-14 18:12 - 000003386 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-26 19:02 - 2019-03-14 18:12 - 000003258 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-26 19:02 - 2018-12-23 19:04 - 000003474 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update1
2020-12-26 19:02 - 2018-05-16 13:51 - 000003464 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update2
2020-12-26 19:02 - 2018-05-16 13:51 - 000003382 _____ C:\WINDOWS\system32\Tasks\Update Checker
2020-12-26 19:02 - 2016-05-05 10:07 - 000003266 _____ C:\WINDOWS\system32\Tasks\AsusVibeSchedule
2020-12-26 19:02 - 2016-05-05 10:07 - 000003054 _____ C:\WINDOWS\system32\Tasks\ASUS P4G
2020-12-26 19:02 - 2016-05-05 10:07 - 000003026 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus
2020-12-26 19:02 - 2016-05-05 10:07 - 000003002 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ColorU
2020-12-26 19:02 - 2016-05-05 10:07 - 000002986 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ACMON
2020-12-26 19:02 - 2016-05-05 10:01 - 000003538 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher
2020-12-26 19:02 - 2016-05-05 09:58 - 000003138 _____ C:\WINDOWS\system32\Tasks\RtHDVBg
2020-12-26 19:02 - 2016-05-05 09:58 - 000003132 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2020-12-26 18:41 - 2019-03-14 18:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-12-26 18:36 - 2020-11-01 22:42 - 000176384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-12-26 18:36 - 2020-04-16 21:05 - 000522480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000851256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000247888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000208672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000108928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000097360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000084496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000042424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-12-26 18:36 - 2019-03-14 18:07 - 000036792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-12-26 18:35 - 2019-03-14 18:07 - 000332880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
==================== Files in the root of some directories ========
2018-05-13 20:42 - 2021-01-25 12:19 - 000000074 _____ () C:\Users\asus\AppData\Roaming\sp_data.sys
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-01-17 20:36
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-01-2021 01
Ran by asus (25-01-2021 15:13:33)
Running from C:\Users\asus\Downloads
Windows 8.1 (Update) (X64) (2018-05-11 20:09:29)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-930457372-468796732-3498796432-500 - Administrator - Disabled) => C:\Users\Administrator
asus (S-1-5-21-930457372-468796732-3498796432-1001 - Administrator - Enabled) => C:\Users\asus
Guest (S-1-5-21-930457372-468796732-3498796432-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-930457372-468796732-3498796432-1003 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ASUS Backtracker (HKLM-x32\...\{C15C060C-ED1C-49EB-83B3-F7C0FD1CD661}) (Version: 3.0.4 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.8 - ASUS)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 1.0.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.10 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0021 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUSDVD (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5712.52 - CyberLink Corp.) Hidden
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5712.52 - CyberLink Corp.)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.311 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0031 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.10.2442 - Avast Software)
Canon MP Navigator EX 1.2 (HKLM-x32\...\MP Navigator EX 1.2) (Version: - )
Canon MP190 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP190_series) (Version: - )
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: - )
Canon Utilities Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.)
Foxit PhantomPDF (HKLM-x32\...\{FC76E6BB-7CBB-4CD6-8178-3BCADC0526C3}) (Version: 6.0.62.801 - Foxit Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Java 8 Update 271 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180271F0}) (Version: 8.0.2710.9 - Oracle Corporation)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4641.3004 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 201021 - Kakao Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.27040 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.19.726.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7188 - Realtek Semiconductor Corp.)
Skype verze 8.42 (HKLM-x32\...\Skype_is1) (Version: 8.42 - Skype Technologies S.A.)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.11.399 - ASUS Cloud Corporation)
WildTangent Helper (HKLM-x32\...\{A39303AB-4898-4F12-BAA0-0B8630F86DB4}) (Version: 1.0.0.428 - WildTangent) Hidden
WildTangent ShortcutProvider (HKLM-x32\...\{80831F60-19D7-43B3-A60C-5CAF8C478DF6}) (Version: 5.0.0.240 - WildTangent) Hidden
Windows Driver Package - ASUS (ATP) Mouse (01/07/2014 1.0.0.197) (HKLM\...\2BEE838DC3D664A0CAB23AEA0332BB3877ED0685) (Version: 01/07/2014 1.0.0.197 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
Packages:
=========
- Games App - -> C:\Program Files\WindowsApps\WildTangentGames.-GamesApp-_1.0.3.28_x86__qt5r5pa5dyg8m [2016-07-03] (WildTangent Games)
ASUS WebStorage -> C:\Program Files\WindowsApps\ASUSCloudCorporation.MobileFileExplorer_1.0.24.190_x86__wk4d32h0cvhem [2016-07-03] (ASUS Cloud Corporation)
DOC Viewer Free -> C:\Program Files\WindowsApps\62307pauljohn.DOCViewerFree_1.1.0.1_x86__7sv5v3m8wq0b2 [2019-05-10] (pauljohn)
Flipboard -> C:\Program Files\WindowsApps\Flipboard.Flipboard_2.1.3.0_neutral__3f5azkryzdbc4 [2017-08-03] (Flipboard)
Fresh Paint -> C:\Program Files\WindowsApps\Microsoft.FreshPaint_2.0.15133.0_x86__8wekyb3d8bbwe [2016-07-02] (Microsoft Corporation)
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2016-05-05] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2016-07-02] (Microsoft Corporation) [MS Ad]
LINE -> C:\Program Files\WindowsApps\NAVER.LINEwin8_1.0.15.112_x64__8ptj331gd3tyt [2016-10-12] (LINE Corporation)
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2016-08-13] (Microsoft Corporation) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-07-03] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2016-07-02] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-25] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-07-03] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2016-08-13] (Microsoft Corporation) [MS Ad]
MSN Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-07-03] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_2.3.1055.0_x64__a2t3txkz9j1jw [2017-06-15] (MAGIX)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2016-08-13] (Skype) [MS Ad]
Skype WiFi -> C:\Program Files\WindowsApps\Microsoft.SkypeWiFi_1.2.0.7_x86__kzf8qxf38zg5c [2016-08-13] (Skype)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.2.0.24_neutral__qj0v5chwq8f2g [2016-05-05] (TripAdvisor LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_1.1.13.8_x64__wgeqdkkx372wm [2014-10-21] (Twitter Inc.)
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2016-07-02] (Microsoft Corporation) [MS Ad]
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2016-07-03] (Zinio LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2013-12-18] (Foxit Corporation -> Foxit Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSContextMenu.dll [2014-08-20] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-25] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2013-09-09 18:23 - 2013-09-09 18:23 - 000162816 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2013-06-26 04:26 - 2013-06-26 04:26 - 001479168 _____ (ASUS Cloud Corporation.) [File not signed] C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll
2016-05-05 10:08 - 2016-05-05 10:08 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD10\MSVCR71.dll
2013-05-14 19:58 - 2013-05-14 19:58 - 001600000 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll
2013-05-24 17:31 - 2013-05-24 17:31 - 001609216 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-930457372-468796732-3498796432-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-930457372-468796732-3498796432-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-930457372-468796732-3498796432-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-930457372-468796732-3498796432-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll [2021-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll [2021-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-930457372-468796732-3498796432-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-930457372-468796732-3498796432-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\asus\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\dětičky.jpg
HKU\S-1-5-21-930457372-468796732-3498796432-500\Control Panel\Desktop\\Wallpaper -> C:\windows\asus\wallpapers\asus.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "CanonMyPrinter"
HKU\S-1-5-21-930457372-468796732-3498796432-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-930457372-468796732-3498796432-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9FF28AA5-8828-48D9-A89B-9DEDF7C73A7D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BF4ABA69-D2FE-4D9D-BE50-539E9FF083B4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{CE3E3616-60B6-4E9E-A9BE-AFEC55031D84}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A22A00B6-0F34-4BD5-81DD-9A2C0C22277B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CD2732FE-9934-4974-92FE-13E7FE6AEEA4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{A4FCF435-A7AF-4B0A-A2A4-78A9AF93F60C}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe
FirewallRules: [UDP Query User{BCC45C2D-A58C-49EE-8C37-04C181BA4B52}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe
==================== Restore Points =========================
26-12-2020 18:19:43 Windows Update
16-01-2021 23:04:44 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/25/2021 01:38:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: javaw.exe, verze: 8.0.2710.9, časové razítko: 0x5f626874
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.18362.1, časové razítko: 0x5cbddb81
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006d3be
ID chybujícího procesu: 0xf28
Čas spuštění chybující aplikace: 0x01d6f2abb7f53c2f
Cesta k chybující aplikaci: C:\Program Files\Java\jre1.8.0_271\bin\javaw.exe
Cesta k chybujícímu modulu: C:\Program Files\Java\jre1.8.0_271\bin\ucrtbase.DLL
ID zprávy: 990c5733-5ea5-11eb-82b3-e03f49d86037
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/24/2021 07:40:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: javaw.exe, verze: 8.0.2710.9, časové razítko: 0x5f626874
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.18362.1, časové razítko: 0x5cbddb81
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006d3be
ID chybujícího procesu: 0xd64
Čas spuštění chybující aplikace: 0x01d6f260b1bf4144
Cesta k chybující aplikaci: C:\Program Files\Java\jre1.8.0_271\bin\javaw.exe
Cesta k chybujícímu modulu: C:\Program Files\Java\jre1.8.0_271\bin\ucrtbase.DLL
ID zprávy: a38b40e4-5e73-11eb-82b2-e03f49d86037
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/24/2021 02:02:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: javaw.exe, verze: 8.0.2710.9, časové razítko: 0x5f626874
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.18362.1, časové razítko: 0x5cbddb81
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006d3be
ID chybujícího procesu: 0xfdc
Čas spuštění chybující aplikace: 0x01d6f1b3413214c3
Cesta k chybující aplikaci: C:\Program Files\Java\jre1.8.0_271\bin\javaw.exe
Cesta k chybujícímu modulu: C:\Program Files\Java\jre1.8.0_271\bin\ucrtbase.DLL
ID zprávy: c89c89b7-5ddf-11eb-82b2-e03f49d86037
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/23/2021 06:58:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.
Error: (01/23/2021 06:58:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (01/23/2021 06:58:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (01/23/2021 06:58:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (01/23/2021 06:50:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: javaw.exe, verze: 8.0.2710.9, časové razítko: 0x5f626874
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.18362.1, časové razítko: 0x5cbddb81
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006d3be
ID chybujícího procesu: 0x1384
Čas spuštění chybující aplikace: 0x01d6f1aad7fd9f9b
Cesta k chybující aplikaci: C:\Program Files\Java\jre1.8.0_271\bin\javaw.exe
Cesta k chybujícímu modulu: C:\Program Files\Java\jre1.8.0_271\bin\ucrtbase.DLL
ID zprávy: 85655358-5da3-11eb-82b1-e03f49d86037
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (01/25/2021 03:06:46 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10
Error: (01/25/2021 03:06:46 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10
Error: (01/25/2021 03:06:46 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10
Error: (01/25/2021 03:06:46 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10
Error: (01/25/2021 12:41:32 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (19:32:34, 24/01/2021) bylo neočekávané.
Error: (01/20/2021 07:12:02 PM) (Source: DCOM) (EventID: 10010) (User: ASUSPC)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/20/2021 02:06:09 AM) (Source: DCOM) (EventID: 10010) (User: ASUSPC)
Description: Server {D63B10C5-BB46-4990-A94F-E40B9D520160} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/20/2021 02:06:09 AM) (Source: DCOM) (EventID: 10010) (User: ASUSPC)
Description: Server {D63B10C5-BB46-4990-A94F-E40B9D520160} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2019-03-13 18:49:38.647
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {78C73B22-DD4F-4C7C-B750-CCEC4CEB03DA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-02-02 20:39:18.065
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {F97D18FD-E0A7-4B64-B12B-5E4756D88A29}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: asuspc\asus
Date: 2019-01-19 16:29:45.386
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {5CD0CDCC-A746-4873-AEE0-B1BEE9C834BB}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2018-11-29 18:39:39.208
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {F6C7CB61-A1B8-4250-811F-492BA4116E54}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2018-11-08 18:41:45.033
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {9CDEFB7F-2AF7-4E26-950F-8D964604CCEE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-13 18:10:04.887
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.
Date: 2019-03-13 18:10:04.887
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.
Date: 2019-03-13 18:09:42.666
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80240016
Popis chyby
ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. Date: 2019-03-13 18:09:42.666
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80240016
Popis chyby
ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. Date: 2019-03-13 18:09:42.650
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.285.791.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15600.4
Kód chyby: 0x80240016
Popis chyby
ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. ==================== Memory info ===========================
BIOS: American Megatrends Inc. X550CA.300 03/24/2014
Motherboard: ASUSTeK COMPUTER INC. X550CA
Processor: Intel(R) Core(TM) i3-3217U CPU @ 1.80GHz
Percentage of memory in use: 43%
Total physical RAM: 5005.73 MB
Available physical RAM: 2835.66 MB
Total Virtual: 8973.73 MB
Available Virtual: 5897.15 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:129.4 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:253.35 GB) (Free:252.91 GB) NTFS
\\?\Volume{0bf1dab6-610e-4a84-ae0f-8274f6807a44}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.59 GB) NTFS
\\?\Volume{ca229434-e4a1-4428-a741-5df3557f21a5}\ (Restore) (Fixed) (Total:20.01 GB) (Free:9.35 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: F9B6E95E)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu, pomalý pc
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\asus\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {03E4A1B0-1BA6-4563-B7AD-E26DE4147B33} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
Task: {8329C4C9-656B-4C3B-90E0-3207189ECA35} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-930457372-468796732-3498796432-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu, pomalý pc
Fix result of Farbar Recovery Scan Tool (x64) Version: 24-01-2021 01
Ran by asus (25-01-2021 16:09:53) Run:1
Running from C:\Users\asus\Downloads
Loaded Profiles: asus & Administrator
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {03E4A1B0-1BA6-4563-B7AD-E26DE4147B33} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
Task: {8329C4C9-656B-4C3B-90E0-3207189ECA35} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-930457372-468796732-3498796432-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{03E4A1B0-1BA6-4563-B7AD-E26DE4147B33}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03E4A1B0-1BA6-4563-B7AD-E26DE4147B33}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8329C4C9-656B-4C3B-90E0-3207189ECA35}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8329C4C9-656B-4C3B-90E0-3207189ECA35}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKU\S-1-5-21-930457372-468796732-3498796432-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\dssrequest => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\sacore => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7663277 B
Java, Flash, Steam htmlcache => 1141 B
Windows/system/drivers => 85881 B
Edge => 0 B
Chrome => 147456 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 474531 B
systemprofile32 => 474659 B
LocalService => 476313 B
NetworkService => 1382265 B
asus => 4093903 B
Administrator => 4100273 B
RecycleBin => 0 B
EmptyTemp: => 26 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:10:02 ====
Ran by asus (25-01-2021 16:09:53) Run:1
Running from C:\Users\asus\Downloads
Loaded Profiles: asus & Administrator
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {03E4A1B0-1BA6-4563-B7AD-E26DE4147B33} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
Task: {8329C4C9-656B-4C3B-90E0-3207189ECA35} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-14] (Google Inc -> Google Inc.)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-03-14] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-930457372-468796732-3498796432-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-03-14] (Google Inc -> Google Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{03E4A1B0-1BA6-4563-B7AD-E26DE4147B33}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03E4A1B0-1BA6-4563-B7AD-E26DE4147B33}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8329C4C9-656B-4C3B-90E0-3207189ECA35}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8329C4C9-656B-4C3B-90E0-3207189ECA35}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKU\S-1-5-21-930457372-468796732-3498796432-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\dssrequest => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\sacore => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7663277 B
Java, Flash, Steam htmlcache => 1141 B
Windows/system/drivers => 85881 B
Edge => 0 B
Chrome => 147456 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 474531 B
systemprofile32 => 474659 B
LocalService => 476313 B
NetworkService => 1382265 B
asus => 4093903 B
Administrator => 4100273 B
RecycleBin => 0 B
EmptyTemp: => 26 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:10:02 ====
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu, pomalý pc
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu, pomalý pc
Vypadá to líp ale ten disk je furt dost vytížený klidně na 100%
Edit: Když smažu ty předinstalovaný softwary nemůžu smazat něco důležitého? Jsou tam zbytečně podle mě
Edit: Když smažu ty předinstalovaný softwary nemůžu smazat něco důležitého? Jsou tam zbytečně podle mě
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu, pomalý pc
1. Jsou to obvykle utility od výrobce NB (ve vašem případě ASUS), které výrobce přidává do Windows. Pokud je nepoužíváte, smazat je samozřejmě můžete ( ve standarních Windows přímo od MS nejsou).
2. Otevřte správce úloh a zjistěte, který proces disk nejvíce zatěžuje.
2. Otevřte správce úloh a zjistěte, který proces disk nejvíce zatěžuje.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu, pomalý pc
Smazal jsem ty predinstalovaný kraviny a vypadá to že je to o dost lepší a řekl bych že ztoho víc asi nevytáhnu na jednu stranu je to dost starý ntb.
Moc děkuji za pomoc!
na jednu stranu je to dost starý ntb.Moc děkuji za pomoc!
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu, pomalý pc
Ještě můžete defragmentovat disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?