Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Extrémně pomalý NTB

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Marek007
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 21 zář 2010 15:43

Extrémně pomalý NTB

#1 Příspěvek od Marek007 »

Dobrý den,
prosím o kontrolu logu. NTB je extrémně pomalý.

děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-03-2023
Ran by Asus (administrator) on ASUSBEAST (ASUSTeK COMPUTER INC. GL553VD) (18-03-2023 12:01:48)
Running from C:\Users\Asus\Downloads
Loaded Profiles: Asus
Platform: Microsoft Windows 10 Home Version 22H2 19045.2486 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (CleverFiles) [File not signed] D:\Games\cfbackd.w32.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvamig.inf_amd64_0c50dc64ed3c91bc\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2300_none_7e14edbc7c88b7d5\TiWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [220056 2023-03-11] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [83251992 2022-11-20] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\Run: [ProductAuthenticationService] => C:\Users\Asus\AppData\Roaming\ProductAuthenticationService\pas.exe [1003024 2019-06-15] (DVJ LIMITED -> DVJ LIMITED) <==== ATTENTION
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\Run: [Discord] => C:\Users\Asus\AppData\Local\Discord\Update.exe [1525016 2022-10-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {11dacb45-e4dc-11ec-b7c1-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {163eb37f-db6e-11ec-b7bb-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {3f3fe341-c3bd-11ec-b7b6-c821588f66d6} - "F:\OriginInstaller.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {62c92c58-cd59-11ec-b7b9-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {799c76a0-707f-11ec-b7a5-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {799c7b01-707f-11ec-b7a5-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {93a910fc-3292-11ed-b7d2-6045cb276792} - "G:\autoplay.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {95e72f21-10e4-11ed-b7cb-6045cb276792} - "F:\Autorun.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {b033999d-0ea4-11ed-b7cb-6045cb276792} - "F:\Autorun.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {c6d07453-a13b-11ec-b7af-c821588f66d6} - "F:\autorun.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {eca360a6-be4b-11ec-b7b3-c821588f66d6} - "F:\Setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\110.0.5481.177\Installer\chrmstp.exe [2023-02-25] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.19987.120\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6782.184\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
AlternateShell:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0512EF5D-3315-4187-891D-A8EC5F3DA046} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\AutoUpdate.exe /auto (No File)
Task: {0D3A7461-118A-47F5-8477-89989439F92D} - System32\Tasks\Top Data Protector SkipUAC(Asus) => C:\Program Files (x86)\Top Data Protector\DataProtector.exe [2720768 2022-02-23] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {0E466705-9185-4206-8106-B95E6F32245B} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2023-01-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {11E29F5E-E81D-43DC-935A-7949B909F756} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1592E31A-DB99-49E1-8BA8-D59A1D898CB8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2105D9B2-9AE7-4B31-9C6A-5FCD7BD2155C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-07] (Google Inc -> Google Inc.)
Task: {2E4B1923-14E9-42D1-B67E-29BCCC3F287A} - System32\Tasks\ROG Gaming Center => C:\Program Files (x86)\ASUSTeK COMPUTER INC\ROG Gaming Center\ROGGamingKey.exe [4702168 2017-09-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {3026827B-7CF0-4998-BF5E-EBDD39932DB3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {31F6CE87-FEC9-41E5-83AC-FBEF9752091F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3BD22657-4F62-47A8-95E3-F49CED9296FF} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_445_pepper.exe [1497656 2020-10-14] (Adobe Inc. -> Adobe)
Task: {4EA3F8DC-FF89-40B6-9B1F-2895B568D6C7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {504B096F-922D-4EC6-A4A5-4BFB4D60CFA6} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d8ce1098-48b3-406b-a1b4-65f22342378d" --version "6.10.10347" --silent
Task: {51B41C5F-3DAA-43E5-B375-00F1ED9EFB0B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168840 2023-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {552D7AC9-1D17-4A4C-BCCC-BBC35E9A7574} - System32\Tasks\Driver Booster SkipUAC (Asus) => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\DriverBooster.exe /skipuac (No File)
Task: {56AEF544-0E3C-4F22-BD40-38E168E485A7} - System32\Tasks\update-S-1-5-21-3248472963-2801587185-3735586389-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {59D0C457-E118-458D-8139-05FE539FA1A1} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-07-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {6359C15A-D2C3-493D-9372-123789DF25D0} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {640AAB8F-D013-4E88-AAE7-EB6ED60942D5} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-10-14] (Adobe Inc. -> Adobe)
Task: {64382910-9178-4B8D-8D3C-CDFD0D37C095} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {66651206-FA8D-44F6-867F-87C6C3844672} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4184976 2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {66CE26B2-2504-495F-B079-ED16FD103676} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {6A97C034-65B3-4557-AF6D-7C3D7BFC4F35} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3248472963-2801587185-3735586389-1001 => C:\Users\Asus\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2019-05-14] (Mega Limited -> Mega Limited)
Task: {6F8B5C10-5BDA-4B9B-8A35-84FFB7C52CCA} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5000600 2023-03-11] (Avast Software s.r.o. -> AVAST Software)
Task: {70577C3F-EB7E-48BD-B5EE-2B30A9944162} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2295192 2023-01-30] (Avast Software s.r.o. -> Avast Software)
Task: {74ABB22E-EDDC-4EFC-9C14-73ACF136FCBB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2023-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {7B463CF3-57F3-4F77-8881-0C30E0A8A01D} - System32\Tasks\iTop Data Recovery SkipUAC (Asus) => C:\Program Files (x86)\iTop Data Recovery\iTopDataRecovery.exe [3596544 2022-09-15] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {7CDC2231-910C-49D4-AC0F-5AED9517E240} - System32\Tasks\Altening Alt Loader => %windir%\System32\cmd.exe /C start %AppData%\altening\altening.launcher.exe --background
Task: {87E721E5-0CE4-4C2C-B6F4-DE0976961A3B} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {950EE525-C6AC-4D8C-A8D1-25916B939B8A} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {9A9CA199-8977-4AAE-A229-5E807C7D5FEB} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3248472963-2801587185-3735586389-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4184976 2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F927A7B-0CF4-4A5B-AE9C-92DE32405D32} - System32\Tasks\CCleanerSkipUAC - Asus => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A07684A2-3828-4406-9D59-109365013DBA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B38EF7FC-88C2-4449-BFBA-D8148B8165B9} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B38F3744-B3CB-4B95-A21E-C9D0F683C2CC} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-07-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {BE1A408F-3D5B-4ABB-A8B2-DF4D4270E885} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C7DF3D9C-269B-441C-87CB-85CAC6E6649C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe --type=heartbeat --logon (No File)
Task: {CB3CF6EA-90D2-43A4-BC23-786D6958B21B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-17] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E08B1C96-2AFF-4E9B-AC63-C85EE0C3DBDA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-08-30] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E0EBEC46-FC3A-4CF4-BAB2-1F5B95F4D756} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2023-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {E5E5F34E-B85B-48C2-A9AF-69316F5A06E6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {FBD39C08-B620-4EE1-956E-4C07E867DF49} - System32\Tasks\GoogleUpdateTaskMachineCore{FEC2DC10-3080-40F5-AAA6-24B784B6545A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-07] (Google Inc -> Google Inc.)
Task: {FD5C8F1C-ECB1-4B75-89A0-BC13BCD4A6FD} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2023-01-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {FFB454D6-A5A4-44E2-8042-35AE4C136FA1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe --type=heartbeat --hourly (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-3248472963-2801587185-3735586389-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9ce1ca87-9066-48cc-a3d3-a7cb99cc8f01}: [DhcpNameServer] 192.168.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
DownloadDir: C:\Users\Asus\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-3248472963-2801587185-3735586389-1001 -> hxxps://www.yandex.ru/?win=402&clid=2257472-1
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-18]
Edge Profile: C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-03-18]
Edge Extension: (Buster: Captcha Solver for Humans) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\admkpobhocmdideidcndkfaeffadipkc [2023-01-04]
Edge Extension: (7TV) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ammjkodgmmoknidbanneddgankgfejfh [2022-08-28]
Edge Extension: (Seznam doplněk - Email) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2022-02-09]
Edge Extension: (Avast Passwords) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2022-02-09]
Edge Extension: (FrankerFaceZ) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2022-02-09]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2023-01-04]
Edge Extension: (McAfee® WebAdvisor) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2023-01-04]
Edge Extension: (Return YouTube Dislike) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gebbhagfogifgggkldgodflihgfeippi [2023-01-04]
Edge Extension: (Google Mail Checker) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\glbpkcehjkihaknkjifkehdpjfngbdga [2022-02-09]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-01-04]
Edge Extension: (BetterTTV) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\icllegkipkooaicfmdfaloehobmglglb [2023-01-04]

FireFox:
========
FF DefaultProfile: c7i09aze.default
FF ProfilePath: C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\c7i09aze.default [2022-07-31]
FF ProfilePath: C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\49xrstrs.default-release-1659909953413 [2023-03-18]
FF Plugin: @java.com/DTPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll [2022-11-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\plugin2\npjp2.dll [2022-11-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update2.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [No File]
FF Plugin-x32: @update2.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [No File]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default [2023-03-18]
CHR Extension: (Překladač Google) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-07-16]
CHR Extension: (Torrent Scanner) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-03-18]
CHR Extension: (BetterTTV) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2023-03-18]
CHR Extension: (7TV) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ammjkodgmmoknidbanneddgankgfejfh [2023-03-18]
CHR Extension: (Zhasnout světla) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2022-07-16]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-03-18]
CHR Extension: (Social Blade) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfidkbgamfhdgmedldkagjopnbobdmdn [2022-09-07] [UpdateUrl:hxxps://addon.socialblade.com/updates.json] <==== ATTENTION
CHR Extension: (Dark Reader) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2023-01-14]
CHR Extension: (Volume Booster) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejkiikneibegknkgimmihdpcbcedgmpo [2022-07-16]
CHR Extension: (Avast Passwords) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2022-01-27]
CHR Extension: (Urban VPN Proxy) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppiocemhmnlbhjplcgkofciiegomcon [2023-03-18]
CHR Extension: (FrankerFaceZ) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2021-12-31]
CHR Extension: (Return YouTube Dislike) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2023-03-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-18]
CHR Extension: (360 Internet Protection) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2022-12-31]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-01-15]
CHR Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhinadidafjejdhmfkjgnolgimiaplp [2023-03-18]
CHR Extension: (Zoom for Google Chrome) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd [2022-07-16]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-04-15]
CHR Extension: (Shazam: Hledejte názvy skladeb v prohlížeči) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2023-02-25]
CHR Extension: (Buster: Captcha Solver for Humans) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl [2022-12-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Asus\AppData\Local\Google\Chrome\User Data\System Profile [2023-03-18]
CHR HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ibknafobnmndicojahlppolcaaibngjf]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]

Yandex:
=======
YAN Profile: C:\Users\Asus\AppData\Local\Yandex\YandexBrowser\User Data\Default [2023-03-18]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S4 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-10-14] (Adobe Inc. -> Adobe)
S4 AsHidService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [127864 2017-07-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8905624 2023-03-11] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [583064 2023-03-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2197912 2023-03-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [583576 2023-03-11] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-27] (Avast Software s.r.o. -> AVAST Software)
R2 cfbackd; D:\Games\cfbackd.w32.exe [279040 2022-07-14] (CleverFiles) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12512256 2023-03-11] (Microsoft Corporation -> Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4816272 2021-09-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-05-14] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncHelper.exe [3484544 2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
S2 iTopDataRecoveryService3; C:\Program Files (x86)\iTop Data Recovery\IDRService.exe [1947824 2022-06-15] (ORANGE VIEW LIMITED -> iTop Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.007.0109.0004\OneDriveUpdaterService.exe [3854208 2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-10-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-10-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2022-05-27] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2458576 2022-07-23] (Rockstar Games, Inc. -> Rockstar Games)
S4 ROGGamingCenterService; C:\Program Files (x86)\ASUSTeK COMPUTER INC\ROG Gaming Center\ROGGamingCenterService.exe [31744 2017-09-11] (ASUSTeK COMPUTER INC.) [File not signed]
S3 TopDataProtectorService; C:\Program Files (x86)\Top Data Protector\TDPService.exe [1340416 2022-02-16] (ORANGE VIEW LIMITED -> iTop Inc.)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [334208 2021-04-15] (Twitch Interactive, Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2023-01-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2023-01-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvamig.inf_amd64_0c50dc64ed3c91bc\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvamig.inf_amd64_0c50dc64ed3c91bc\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31424 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [231808 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [391856 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297880 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-12] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39648 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [268480 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [557136 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [941928 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [699624 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212640 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-07] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319056 2023-03-11] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R1 dokan1; C:\WINDOWS\System32\DRIVERS\dokan1.sys [138760 2021-01-14] (ADAPP SASU -> Dokan Project)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-02-01] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-02-01] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 MpKsl68f2f5d5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A4C77F48-BF93-49D0-80A3-D6711C0067D9}\MpKslDrv.sys [214280 2023-01-26] (Microsoft Windows -> Microsoft Corporation)
R1 ndextlag; C:\WINDOWS\system32\DRIVERS\ndextlag.sys [48640 2018-04-11] (Mainline Net Holdings Limited -> SKOWSAND SERVICOS DE PROVEDORES E INTERNET LTDA - ME)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [79504 2016-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [347224 2021-04-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [207344 2021-09-25] (Disc Soft Ltd -> Duplex Secure Ltd)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-07-04] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R2 TopDPFilter; C:\Program Files (x86)\Top Data Protector\TopDPFilter.sys [58128 2022-02-17] (ORANGE VIEW LIMITED -> iTop Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2023-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [473376 2023-01-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2023-01-22] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2022-11-20] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
S3 Imf8HpRegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpRegFilter.sys [X]
S3 IMFEFSFileControl; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFEFSFileControl.sys [X]
S3 ImfHpFileFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpFileFilter.sys [X]
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [X]
S3 IUProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [X]
S3 IURegistryFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-03-18 12:01 - 2023-03-18 12:09 - 000038940 _____ C:\Users\Asus\Downloads\FRST.txt
2023-03-18 11:57 - 2023-03-18 12:07 - 000000000 ____D C:\FRST
2023-03-18 11:55 - 2023-03-18 11:55 - 002378752 _____ (Farbar) C:\Users\Asus\Downloads\FRST64.exe
2023-03-18 11:34 - 2023-03-18 11:42 - 000000000 ____D C:\AdwCleaner
2023-03-18 11:34 - 2023-03-18 11:34 - 008791352 _____ (Malwarebytes) C:\Users\Asus\Downloads\adwcleaner.exe
2023-03-18 11:08 - 2023-03-18 11:16 - 000000000 ____D C:\Program Files\chrome_url_fetcher_23412_474734160
2023-03-17 18:35 - 2023-03-17 18:35 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-03-17 18:35 - 2023-03-17 18:35 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-03-17 18:35 - 2023-03-17 18:35 - 000002888 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Asus
2023-03-17 18:35 - 2023-03-17 18:35 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2023-03-17 18:35 - 2023-03-17 18:35 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-03-17 18:35 - 2023-03-17 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2023-03-17 18:33 - 2023-03-18 11:47 - 000000000 ____D C:\Program Files\CCleaner
2023-03-17 18:30 - 2023-03-17 18:31 - 054286968 _____ (Piriform Software Ltd) C:\Users\Asus\Downloads\ccsetup610.exe
2023-03-17 18:08 - 2023-03-17 18:08 - 000000000 ___HD C:\$WinREAgent
2023-03-17 17:45 - 2023-03-17 17:45 - 000000000 ____D C:\Program Files\chrome_BITS_1312_56533986
2023-03-17 17:44 - 2023-03-17 17:46 - 000000000 ____D C:\Program Files\chrome_url_fetcher_1312_1979445905
2023-03-11 16:54 - 2023-03-11 16:54 - 000000000 ____D C:\Program Files\chrome_url_fetcher_1824_1240477792
2023-03-11 16:51 - 2023-03-11 16:53 - 000000000 ____D C:\Program Files\chrome_url_fetcher_9256_885882009
2023-03-11 16:14 - 2023-03-17 17:53 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-03-11 15:39 - 2023-03-11 15:38 - 000308120 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-03-18 12:09 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-18 12:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-18 11:45 - 2020-10-28 20:20 - 000000000 ____D C:\ProgramData\NVIDIA
2023-03-18 11:43 - 2021-03-18 15:16 - 000000000 ____D C:\Users\TEMP\AppData\Roaming\IObit
2023-03-18 11:43 - 2019-09-28 14:25 - 000000000 ____D C:\Users\Asus\AppData\Roaming\Lavasoft
2023-03-18 11:43 - 2019-09-28 14:25 - 000000000 ____D C:\Users\Asus\AppData\Local\Lavasoft
2023-03-18 11:43 - 2019-09-28 14:25 - 000000000 ____D C:\ProgramData\Lavasoft
2023-03-18 11:43 - 2019-09-28 14:25 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2023-03-18 11:43 - 2019-07-23 23:50 - 000000000 ____D C:\Users\Asus\AppData\LocalLow\IObit
2023-03-18 11:43 - 2019-07-23 23:50 - 000000000 ____D C:\Program Files (x86)\IObit
2023-03-18 11:43 - 2019-07-23 23:49 - 000000000 ____D C:\Users\Asus\AppData\Roaming\IObit
2023-03-18 11:43 - 2019-01-17 13:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2023-03-18 11:43 - 2018-05-30 12:43 - 000000000 ____D C:\ProgramData\ASUS
2023-03-18 11:43 - 2017-12-01 19:36 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-03-18 11:38 - 2019-02-07 17:11 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-18 11:27 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-18 11:13 - 2022-07-23 00:35 - 000000000 ____D C:\Program Files (x86)\Wise
2023-03-18 11:11 - 2017-12-01 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2023-03-18 11:05 - 2021-01-25 21:29 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2023-03-18 11:01 - 2019-03-05 15:50 - 000000000 ____D C:\Users\Asus\AppData\Local\AVAST Software
2023-03-18 11:00 - 2019-02-07 17:13 - 000000000 ____D C:\ProgramData\AVAST Software
2023-03-18 10:51 - 2019-02-07 17:03 - 000000000 ____D C:\Users\Asus\AppData\Local\Packages
2023-03-18 10:38 - 2018-05-30 13:27 - 000000000 __SHD C:\Users\Asus\IntelGraphicsProfiles
2023-03-17 18:40 - 2019-02-08 14:11 - 000000000 ____D C:\Users\Asus\AppData\Local\CrashDumps
2023-03-17 18:19 - 2023-01-22 13:39 - 000000000 ____D C:\Program Files\Microsoft Office
2023-03-17 18:08 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-03-17 17:57 - 2022-08-09 20:37 - 000008192 ___SH C:\DumpStack.log.tmp
2023-03-17 17:57 - 2021-03-18 15:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-17 17:57 - 2018-05-30 12:16 - 000000000 ___HD C:\Intel
2023-03-17 17:56 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-03-17 17:53 - 2021-03-18 14:48 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-17 17:53 - 2021-03-18 14:48 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-03-17 17:49 - 2020-05-17 11:28 - 000000000 ____D C:\Users\Asus\AppData\Roaming\Easeware
2023-03-17 17:49 - 2020-05-17 11:28 - 000000000 ____D C:\Program Files\Easeware
2023-03-17 17:46 - 2019-07-23 23:50 - 000000000 ____D C:\ProgramData\IObit
2023-03-17 17:39 - 2019-02-08 14:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-03-17 17:13 - 2019-02-08 14:24 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-03-12 14:53 - 2023-01-23 18:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-03-11 16:13 - 2022-11-16 17:21 - 000000406 _____ C:\WINDOWS\Tasks\update-sys.job
2023-03-11 16:13 - 2022-11-16 17:21 - 000000406 _____ C:\WINDOWS\Tasks\update-S-1-5-21-3248472963-2801587185-3735586389-1001.job
2023-03-11 15:39 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-03-11 15:26 - 2021-03-18 15:14 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-03-11 15:26 - 2021-03-18 15:14 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-03-11 15:13 - 2019-07-23 23:50 - 000000000 ____D C:\ProgramData\ProductData
2023-02-26 01:54 - 2023-02-01 21:35 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-02-26 01:54 - 2023-01-20 20:05 - 000002556 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2023-02-26 01:54 - 2022-11-20 15:42 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-26 01:54 - 2022-11-20 15:42 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-26 01:54 - 2022-11-20 15:41 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-26 01:54 - 2022-11-20 15:41 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-26 01:54 - 2022-11-20 15:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-26 01:54 - 2022-11-20 15:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-26 01:54 - 2022-11-20 15:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-26 01:54 - 2022-11-20 15:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-26 01:54 - 2022-11-20 15:41 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-26 01:54 - 2022-11-16 17:21 - 000003042 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-3248472963-2801587185-3735586389-1001
2023-02-26 01:54 - 2022-11-16 17:21 - 000002786 _____ C:\WINDOWS\system32\Tasks\update-sys
2023-02-26 01:54 - 2022-08-31 18:55 - 000003254 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{FEC2DC10-3080-40F5-AAA6-24B784B6545A}
2023-02-26 01:54 - 2022-07-23 00:54 - 000002282 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2023-02-26 01:54 - 2022-03-18 22:49 - 000002558 _____ C:\WINDOWS\system32\Tasks\Top Data Protector SkipUAC(Asus)
2023-02-26 01:54 - 2022-02-25 20:05 - 000002566 _____ C:\WINDOWS\system32\Tasks\iTop Data Recovery SkipUAC (Asus)
2023-02-26 01:54 - 2021-12-13 14:46 - 000003070 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3248472963-2801587185-3735586389-1001
2023-02-26 01:54 - 2021-03-18 15:14 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-02-26 01:54 - 2021-03-18 15:14 - 000002394 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Asus)
2023-02-26 01:54 - 2021-03-18 15:14 - 000002346 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2023-02-26 01:54 - 2021-03-18 15:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-02-26 01:54 - 2021-03-18 14:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-02-25 20:42 - 2019-02-07 17:12 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-02-25 20:42 - 2019-02-07 17:12 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-02-25 20:11 - 2022-03-16 20:19 - 000071745 _____ C:\Users\Asus\Desktop\fivem.txt

==================== Files in the root of some directories ========

2019-07-11 23:55 - 2019-07-11 23:55 - 000000000 ___SH () C:\Users\Asus\AppData\Local\LumaEmu
2020-09-11 15:00 - 2020-09-11 15:00 - 000016438 _____ () C:\Users\Asus\AppData\Local\partner.bmp
2022-04-03 15:50 - 2022-04-24 20:25 - 000041203 _____ () C:\Users\Asus\AppData\Local\PlariumPlay.log
2022-11-16 17:21 - 2022-11-16 17:21 - 000000003 _____ () C:\Users\Asus\AppData\Local\updater.log
2022-11-16 17:21 - 2022-11-24 17:09 - 000000059 _____ () C:\Users\Asus\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Extrémně pomalý NTB

#2 Příspěvek od Rudy »

Zdravím!
Spuaťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Marek007
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 21 zář 2010 15:43

Re: Extrémně pomalý NTB

#3 Příspěvek od Marek007 »

# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 03-18-2023
# Duration: 00:00:42
# OS: Windows 10 (Build 19045.2486)
# Scanned: 32102
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[C00].txt - [7169 octets] - [18/03/2023 11:43:52]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Extrémně pomalý NTB

#4 Příspěvek od Rudy »

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {11dacb45-e4dc-11ec-b7c1-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {163eb37f-db6e-11ec-b7bb-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {3f3fe341-c3bd-11ec-b7b6-c821588f66d6} - "F:\OriginInstaller.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {62c92c58-cd59-11ec-b7b9-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {799c76a0-707f-11ec-b7a5-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {799c7b01-707f-11ec-b7a5-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {93a910fc-3292-11ed-b7d2-6045cb276792} - "G:\autoplay.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {95e72f21-10e4-11ed-b7cb-6045cb276792} - "F:\Autorun.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {b033999d-0ea4-11ed-b7cb-6045cb276792} - "F:\Autorun.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {c6d07453-a13b-11ec-b7af-c821588f66d6} - "F:\autorun.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {eca360a6-be4b-11ec-b7b3-c821588f66d6} - "F:\Setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {2105D9B2-9AE7-4B31-9C6A-5FCD7BD2155C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-07] (Google Inc -> Google Inc.)
Task: {552D7AC9-1D17-4A4C-BCCC-BBC35E9A7574} - System32\Tasks\Driver Booster SkipUAC (Asus) => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\DriverBooster.exe /skipuac (No File)
Task: {FBD39C08-B620-4EE1-956E-4C07E867DF49} - System32\Tasks\GoogleUpdateTaskMachineCore{FEC2DC10-3080-40F5-AAA6-24B784B6545A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-07] (Google Inc -> Google Inc.)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
FF Plugin-x32: @update2.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [No File]
FF Plugin-x32: @update2.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [No File]
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [X]
S3 IUProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [X]
S3 IURegistryFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [X]
C:\DumpStack.log.tmp
C:\WINDOWS\Tasks\update-S-1-5-21-3248472963-2801587185-3735586389-1001.job
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{FEC2DC10-3080-40F5-AAA6-24B784B6545A}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA

EmptyTemp:
End
Uložte do C:\Users\Asus\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Marek007
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 21 zář 2010 15:43

Re: Extrémně pomalý NTB

#5 Příspěvek od Marek007 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 18-03-2023
Ran by Asus (18-03-2023 21:23:21) Run:1
Running from C:\Users\Asus\Downloads
Loaded Profiles: Asus
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {11dacb45-e4dc-11ec-b7c1-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {163eb37f-db6e-11ec-b7bb-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {3f3fe341-c3bd-11ec-b7b6-c821588f66d6} - "F:\OriginInstaller.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {62c92c58-cd59-11ec-b7b9-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {799c76a0-707f-11ec-b7a5-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {799c7b01-707f-11ec-b7a5-c821588f66d6} - "F:\setup.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {93a910fc-3292-11ed-b7d2-6045cb276792} - "G:\autoplay.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {95e72f21-10e4-11ed-b7cb-6045cb276792} - "F:\Autorun.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {b033999d-0ea4-11ed-b7cb-6045cb276792} - "F:\Autorun.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {c6d07453-a13b-11ec-b7af-c821588f66d6} - "F:\autorun.exe"
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\...\MountPoints2: {eca360a6-be4b-11ec-b7b3-c821588f66d6} - "F:\Setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {2105D9B2-9AE7-4B31-9C6A-5FCD7BD2155C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-07] (Google Inc -> Google Inc.)
Task: {552D7AC9-1D17-4A4C-BCCC-BBC35E9A7574} - System32\Tasks\Driver Booster SkipUAC (Asus) => C:\Program Files (x86)\IObit\Driver Booster\9.1.0\DriverBooster.exe /skipuac (No File)
Task: {FBD39C08-B620-4EE1-956E-4C07E867DF49} - System32\Tasks\GoogleUpdateTaskMachineCore{FEC2DC10-3080-40F5-AAA6-24B784B6545A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-07] (Google Inc -> Google Inc.)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
FF Plugin-x32: @update2.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [No File]
FF Plugin-x32: @update2.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [No File]
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [X]
S3 IUProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [X]
S3 IURegistryFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [X]
C:\DumpStack.log.tmp
C:\WINDOWS\Tasks\update-S-1-5-21-3248472963-2801587185-3735586389-1001.job
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{FEC2DC10-3080-40F5-AAA6-24B784B6545A}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11dacb45-e4dc-11ec-b7c1-c821588f66d6} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{163eb37f-db6e-11ec-b7bb-c821588f66d6} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f3fe341-c3bd-11ec-b7b6-c821588f66d6} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{62c92c58-cd59-11ec-b7b9-c821588f66d6} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{799c76a0-707f-11ec-b7a5-c821588f66d6} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{799c7b01-707f-11ec-b7a5-c821588f66d6} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{93a910fc-3292-11ed-b7d2-6045cb276792} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{95e72f21-10e4-11ed-b7cb-6045cb276792} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b033999d-0ea4-11ed-b7cb-6045cb276792} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c6d07453-a13b-11ec-b7af-c821588f66d6} => removed successfully
HKU\S-1-5-21-3248472963-2801587185-3735586389-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{eca360a6-be4b-11ec-b7b3-c821588f66d6} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2105D9B2-9AE7-4B31-9C6A-5FCD7BD2155C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2105D9B2-9AE7-4B31-9C6A-5FCD7BD2155C}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{552D7AC9-1D17-4A4C-BCCC-BBC35E9A7574}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{552D7AC9-1D17-4A4C-BCCC-BBC35E9A7574}" => removed successfully
C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Asus) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (Asus)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FBD39C08-B620-4EE1-956E-4C07E867DF49}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FBD39C08-B620-4EE1-956E-4C07E867DF49}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{FEC2DC10-3080-40F5-AAA6-24B784B6545A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{FEC2DC10-3080-40F5-AAA6-24B784B6545A}" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@update2.avastbrowser.com/Avast Browser;version=3 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@update2.avastbrowser.com/Avast Browser;version=9 => removed successfully
HKLM\System\CurrentControlSet\Services\IUFileFilter => removed successfully
IUFileFilter => service removed successfully
HKLM\System\CurrentControlSet\Services\IUProcessFilter => removed successfully
IUProcessFilter => service removed successfully
HKLM\System\CurrentControlSet\Services\IURegistryFilter => removed successfully
IURegistryFilter => service removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\WINDOWS\Tasks\update-S-1-5-21-3248472963-2801587185-3735586389-1001.job => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{FEC2DC10-3080-40F5-AAA6-24B784B6545A}" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9903926 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 272503271 B
Windows/system/drivers => 85171359 B
Edge => 29559 B
Chrome => 20929851 B
Yandex => 21491 B
Firefox => 32374278 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 9243 B
LocalService => 13915 B
NetworkService => 119077939 B
Asus => 168679001 B

RecycleBin => 0 B
EmptyTemp: => 677.1 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 18-03-2023 21:32:46)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 21:32:46 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Extrémně pomalý NTB

#6 Příspěvek od Rudy »

Smazáno. Zrychlil se chod?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Marek007
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 21 zář 2010 15:43

Re: Extrémně pomalý NTB

#7 Příspěvek od Marek007 »

Dobrý večer,
je to lepší,ale ještě pomalé.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Extrémně pomalý NTB

#8 Příspěvek od Rudy »

Zkuste ještě defragmentovat disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Marek007
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 21 zář 2010 15:43

Re: Extrémně pomalý NTB

#9 Příspěvek od Marek007 »

Dobrý den,
disk jsem defragmentoval. NTB se nijak zvlášť nezrychlil. Lepší to už asi nebude.

Děkuji za pomoc

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Extrémně pomalý NTB

#10 Příspěvek od Rudy »

Ještě je možné defragmentovat registry: https://www.zive.cz/programy/free-regis ... ag/pr-3696 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět