VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu logu. Děkuji.

https://forum.viry.cz:443/viewtopic.php?t=157833

Stránka 1 z 1

Prosím o kontrolu logu. Děkuji.

Napsal: 29 led 2021 23:46
od roman7
Prosím o kontrolu logu. Problém s myší v prohlížeči ...(nereaguje na klik levým tlačítkem). Děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-01-2021
Ran by Roman (administrator) on DESKTOP-5C2V1IG (29-01-2021 23:36:09)
Running from C:\Users\Roman\Desktop
Loaded Profiles: Roman
Platform: Windows 10 Pro Version 2004 19041.746 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\DAODx.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atiesrxx.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2101.15643.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117352 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8483032 2015-05-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-128406778-2638418637-827040753-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-128406778-2638418637-827040753-1001\...\Run: [Opera Browser Assistant] => C:\Users\Roman\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3366424 2020-12-08] (Opera Software AS -> Opera Software)
HKLM\...\Windows x64\Print Processors\us005PC: C:\Windows\System32\spool\prtprocs\x64\us005pc.dll [43520 2014-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Windows x64\Print Processors\us015PC: C:\Windows\System32\spool\prtprocs\x64\us015pc.dll [52088 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\us005 Langmon: C:\WINDOWS\system32\us005lm.dll [22528 2014-11-25] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: us008lm.dll
HKLM\...\Print\Monitors\us015 Langmon: C:\WINDOWS\system32\us015lm.dll [31096 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\87.1.7587.142\Installer\chrmstp.exe [2021-01-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {17A17766-81C3-48C7-A0BE-BC55928ED010} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1F15F962-994B-4B84-9854-BE698B7006DB} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4621920 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
Task: {264237B4-B513-45FF-9DCF-F5FDC6A59338} - System32\Tasks\Opera scheduled assistant Autoupdate 1585845267 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Roman\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {2DC55ED9-E11A-48A6-BE54-96BB451D7394} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {306BC4AB-BBAE-472A-84CB-DDA9B5162B12} - System32\Tasks\Opera scheduled Autoupdate 1572383546 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software)
Task: {34227566-749A-4F85-887E-32013D9E1ED5} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3B074D41-A1F4-4C1C-B0FF-04BFC6D359FC} - System32\Tasks\ASUS\RunDAOD => C:\WINDOWS\DAODx.exe [32768 2009-03-30] () [File not signed]
Task: {4084DD6B-9970-4C70-8398-EDDB65C50DDC} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [752200 2018-05-21] (HP Inc. -> )
Task: {4A2EEAD4-BBB4-44B3-B245-936D8EB786B2} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {4B411F70-95DE-4C39-8150-85674BA9DB6A} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {4D5D36A4-D2A0-470A-82EC-CA8EDB93874C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
Task: {5E691FD7-12E9-45E7-8BD2-A13F13ED35F2} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [1426232 2013-10-18] (ASUSTeK Computer Inc. -> )
Task: {5E7CC867-948E-4CC9-9356-70B5A71AA350} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [328504 2013-02-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {7B733476-8B80-4B4C-990A-DD84C3AE195E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7C890C95-8027-46FC-BD9A-23F32C2D2488} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7FB437E3-DBF7-4271-A80A-F361D23623AC} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {940AADAA-E746-451D-AD13-BC58B7A07E80} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe [967480 2013-08-26] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {9873A753-B7ED-4366-B84D-C804201D9371} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [90112 2011-09-09] () [File not signed]
Task: {9AC89552-E14B-4697-A121-B2AB7A76628A} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
Task: {A9AB8724-AA03-48B0-80A3-EB3F043D51E9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2174832 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
Task: {ACC1A794-D902-468D-A625-56E7C0936E84} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2935424 2012-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {C9247D83-C0D9-4C01-8809-153F881A3707} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {F70D7DF3-C979-4ADF-89B3-7DCA7C6463B8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2174832 2021-01-08] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f02d60bc-40be-4e2a-a15c-aa7546e56a7e}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\Roman\Downloads
Edge Profile: C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-28]
Edge DownloadDir: C:\Users\Roman\Downloads

FireFox:
========
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2020-04-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-03] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-09-03] (Avast Software s.r.o. -> AVAST Software)
FF Plugin HKU\S-1-5-21-128406778-2638418637-827040753-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)

Opera:
=======
OPR Profile: C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable [2021-01-29]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-23]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-09-17] (ASUSTeK Computer Inc. -> )
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2013-09-17] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2020-04-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256 2020-04-08] (ASUSTeK Computer Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8477080 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621728 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1230608 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [351848 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-09-03] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\87.1.7587.142\elevation_service.exe [1408840 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
S4 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\\spdsvc.exe [508488 2018-05-24] (HP Inc. -> )
S4 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2015-02-07] (Samsung Electronics CO., LTD. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-14] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2013-01-15] (ASUSTeK Computer Inc. -> )
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208672 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332880 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97360 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42424 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176384 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522480 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108928 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84496 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851256 2020-12-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [468888 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324904 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrd.sys [32840 2013-02-21] (Realtek Semiconductor Corp -> NT Kernel Resources)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-29 23:36 - 2021-01-29 23:36 - 000022917 _____ C:\Users\Roman\Desktop\FRST.txt
2021-01-29 23:35 - 2021-01-29 23:36 - 000000000 ____D C:\FRST
2021-01-29 23:34 - 2021-01-29 23:34 - 002297856 _____ (Farbar) C:\Users\Roman\Desktop\FRST64.exe
2021-01-25 22:04 - 2021-01-25 22:04 - 000498732 _____ C:\Users\Roman\Desktop\Cenová nabídka stěna.pdf
2021-01-23 17:12 - 2021-01-23 17:12 - 153583616 _____ C:\Users\Roman\Documents\mydiscimage5.iso
2021-01-23 17:12 - 2021-01-23 17:12 - 000141214 _____ C:\Users\Roman\Desktop\192105363 tiskárna Samsung.pdf
2021-01-23 16:32 - 2021-01-23 16:32 - 556007424 _____ C:\Users\Roman\Documents\mydiscimage4.iso
2021-01-23 15:46 - 2021-01-23 15:46 - 529006592 _____ C:\Users\Roman\Documents\mydiscimage3.iso
2021-01-23 15:16 - 2021-01-23 15:17 - 2187952128 _____ C:\Users\Roman\Documents\mydiscimage2.iso
2021-01-16 21:43 - 2021-01-16 21:43 - 008458096 _____ (Malwarebytes) C:\Users\Roman\Desktop\adwcleaner_8.0.9.exe
2021-01-14 22:03 - 2021-01-14 22:03 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-14 22:03 - 2021-01-14 22:03 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-14 22:03 - 2021-01-14 22:03 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-14 22:03 - 2021-01-14 22:03 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-14 22:03 - 2021-01-14 22:03 - 000467968 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-14 22:03 - 2021-01-14 22:03 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-14 22:03 - 2021-01-14 22:03 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-14 22:03 - 2021-01-14 22:03 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2021-01-14 22:03 - 2021-01-14 22:03 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-14 22:03 - 2021-01-14 22:03 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2021-01-14 22:03 - 2021-01-14 22:03 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-14 22:03 - 2021-01-14 22:03 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-14 22:03 - 2021-01-14 22:03 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-14 22:03 - 2021-01-14 22:03 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-14 22:02 - 2021-01-14 22:02 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-14 22:02 - 2021-01-14 22:02 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-14 22:02 - 2021-01-14 22:02 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-14 22:02 - 2021-01-14 22:02 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-14 22:02 - 2021-01-14 22:02 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-14 22:02 - 2021-01-14 22:02 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-14 22:02 - 2021-01-14 22:02 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-14 22:02 - 2021-01-14 22:02 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-14 22:02 - 2021-01-14 22:02 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-14 22:02 - 2021-01-14 22:02 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-14 22:01 - 2021-01-14 22:01 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-14 22:01 - 2021-01-14 22:01 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-14 22:01 - 2021-01-14 22:01 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-14 22:01 - 2021-01-14 22:01 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-14 22:01 - 2021-01-14 22:01 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-14 22:01 - 2021-01-14 22:01 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-14 22:01 - 2021-01-14 22:01 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-14 22:01 - 2021-01-14 22:01 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-14 22:01 - 2021-01-14 22:01 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-14 22:00 - 2021-01-14 22:00 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-14 22:00 - 2021-01-14 22:00 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-14 22:00 - 2021-01-14 22:00 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-14 22:00 - 2021-01-14 22:00 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-14 22:00 - 2021-01-14 22:00 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-14 22:00 - 2021-01-14 22:00 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-14 21:59 - 2021-01-14 21:59 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-14 21:59 - 2021-01-14 21:59 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-14 21:59 - 2021-01-14 21:59 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-14 21:59 - 2021-01-14 21:59 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-14 21:59 - 2021-01-14 21:59 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-10 18:26 - 2021-01-10 18:26 - 000008738 _____ C:\Users\Roman\Documents\cc_20210110_182653.reg
2021-01-02 19:00 - 2021-01-02 19:00 - 000283346 _____ C:\Users\Roman\Desktop\Mimoradne-opatreni-narizeni-poskytovatelum-akutni-luzkove-pece-a-poskytovatelum-nasledne-luzkove-pece-s-ucinnosti-od-31-12-2020.pdf
2021-01-01 11:36 - 2021-01-01 11:36 - 000000188 _____ C:\Users\Roman\Documents\čti.txt
2021-01-01 11:01 - 2021-01-01 11:01 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-01-01 11:01 - 2021-01-01 11:01 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-01-01 11:01 - 2021-01-01 11:01 - 000000000 ____D C:\Program Files\MSBuild
2021-01-01 11:01 - 2021-01-01 11:01 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-01-01 10:11 - 2021-01-01 10:13 - 000000000 ____D C:\Users\Roman\Desktop\Novoročenly
2020-12-30 16:03 - 2020-12-30 16:03 - 000888999 _____ C:\Users\Roman\Desktop\cestovni_prikaz_velky (1).pdf
2020-12-30 15:58 - 2020-12-30 15:58 - 000054582 _____ C:\Users\Roman\Desktop\cestovni_prikaz.pdf
2020-12-30 15:50 - 2020-12-30 15:50 - 000888999 _____ C:\Users\Roman\Desktop\cestovni_prikaz_velky.pdf
2020-12-30 11:02 - 2021-01-28 22:02 - 000002724 _____ C:\WINDOWS\system32\Tasks\EPM Preload
2020-12-30 11:02 - 2020-12-30 11:02 - 000000000 ____D C:\Program Files\Common Files\Common Desktop Agent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-29 23:12 - 2020-11-06 22:28 - 001693568 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-29 23:12 - 2019-12-07 15:43 - 000716874 _____ C:\WINDOWS\system32\perfh005.dat
2021-01-29 23:12 - 2019-12-07 15:43 - 000145052 _____ C:\WINDOWS\system32\perfc005.dat
2021-01-29 23:12 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-29 23:12 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-29 23:12 - 2019-11-01 15:56 - 000000000 ____D C:\Program Files\CCleaner
2021-01-29 23:11 - 2020-04-08 06:35 - 000000000 _____ C:\WINDOWS\Path.idx
2021-01-29 23:06 - 2020-04-08 06:34 - 001048576 _____ C:\WINDOWS\PE_Rom.dll
2021-01-29 23:06 - 2019-11-01 16:16 - 000000000 ____D C:\ProgramData\AVAST Software
2021-01-29 23:05 - 2020-11-06 22:29 - 000003126 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2021-01-29 23:05 - 2020-11-06 22:29 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-01-29 23:05 - 2020-11-06 22:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-29 23:05 - 2020-11-06 22:19 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-29 23:05 - 2019-11-17 15:17 - 000000638 _____ C:\WINDOWS\Tasks\TrackerAutoUpdate.job
2021-01-28 22:03 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-28 22:03 - 2019-10-29 19:58 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-01-28 22:02 - 2020-11-06 22:32 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b4835897e39e
2021-01-28 22:02 - 2020-11-06 22:29 - 000003764 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1585845267
2021-01-28 22:02 - 2020-11-06 22:29 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-28 22:02 - 2020-11-06 22:29 - 000003510 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1572383546
2021-01-28 22:02 - 2020-11-06 22:29 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-28 22:02 - 2020-11-06 22:29 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-28 22:02 - 2020-11-06 22:29 - 000002878 _____ C:\WINDOWS\system32\Tasks\TrackerAutoUpdate
2021-01-28 22:02 - 2020-11-06 22:29 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-128406778-2638418637-827040753-1001
2021-01-28 22:02 - 2020-11-06 22:29 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2021-01-28 22:02 - 2020-11-06 22:29 - 000002234 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-01-28 22:02 - 2020-11-06 22:29 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-01-28 22:02 - 2020-11-06 22:29 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-01-28 22:01 - 2020-11-06 22:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-01-28 21:49 - 2020-11-06 22:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-28 21:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-28 21:40 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-28 21:40 - 2019-10-29 19:56 - 000000000 ____D C:\Users\Roman\AppData\Local\Packages
2021-01-28 21:27 - 2020-01-25 08:36 - 000000000 ____D C:\Users\Roman\AppData\Local\CrashDumps
2021-01-28 21:20 - 2020-06-10 18:01 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-28 21:20 - 2019-12-18 21:23 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-01-25 22:31 - 2019-10-29 21:54 - 000000000 ____D C:\Users\Roman\AppData\Local\GHISLER
2021-01-24 19:51 - 2020-11-08 20:13 - 000000000 ____D C:\Users\Roman\AppData\Roaming\audacity
2021-01-24 19:47 - 2019-12-19 15:49 - 000000000 ____D C:\Users\Roman\AppData\Roaming\vlc
2021-01-24 19:30 - 2019-10-29 20:14 - 000000000 ____D C:\Users\Roman\AppData\Local\ElevatedDiagnostics
2021-01-23 17:13 - 2020-11-06 22:21 - 000000000 ____D C:\Users\Roman
2021-01-23 16:47 - 2019-11-03 12:13 - 000000000 ____D C:\Users\Roman\AppData\Local\D3DSCache
2021-01-23 11:33 - 2020-09-30 19:16 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-01-18 22:15 - 2019-10-29 22:12 - 000001405 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-01-17 22:38 - 2020-12-19 21:24 - 000000000 ____D C:\Users\Roman\AppData\Local\AMD_Common
2021-01-15 20:34 - 2020-11-06 22:19 - 000443160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-14 22:07 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-14 22:07 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-14 22:07 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-14 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-14 22:07 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-14 21:59 - 2020-11-06 22:22 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-14 21:48 - 2019-10-31 20:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-14 21:45 - 2019-10-31 20:15 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-14 20:33 - 2019-11-01 19:51 - 000000000 ____D C:\Users\Roman\Documents\Scan
2021-01-14 20:32 - 2019-11-01 19:51 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-01-10 18:30 - 2020-11-04 20:14 - 000000000 ___DC C:\WINDOWS\Panther
2021-01-08 21:04 - 2020-04-02 17:34 - 000468888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-01-07 21:30 - 2020-12-16 22:09 - 000214808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-01-07 21:30 - 2020-04-02 17:34 - 000324904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-01-01 11:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-01-01 11:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-01-01 11:01 - 2019-10-30 20:20 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-12-30 15:15 - 2019-10-29 21:24 - 000000000 ____D C:\Users\Roman\AppData\Local\PlaceholderTileLogoFolder
2020-12-30 11:38 - 2020-11-19 17:55 - 000002287 _____ C:\Users\Roman\Desktop\Samsung Easy Printer Manager.lnk
2020-12-30 11:02 - 2019-11-01 19:30 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers

==================== Files in the root of some directories ========

2020-08-18 14:02 - 2020-08-18 14:02 - 000007597 _____ () C:\Users\Roman\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Addition.zip
(12.11 KiB) Staženo 67 x

Re: Prosím o kontrolu logu. Děkuji.

Napsal: 30 led 2021 10:48
od Diallix
Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.

Re: Prosím o kontrolu logu. Děkuji.

Napsal: 30 led 2021 20:15
od roman7
Zdravím

Malwarebytes AdwCleaner 8.0.9.1
# -------------------------------
# Build: 01-20-2021
# Database: 2021-01-11.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 01-30-2021
# Duration: 00:00:30
# OS: Windows 10 Pro
# Scanned: 31956
# Detected: 2


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.SamsungEasyDocumentCreator Folder C:\Program Files (x86)\SAMSUNG\EASY DOCUMENT CREATOR
Preinstalled.SamsungEasyDocumentCreator Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Samsung Easy Document Creator



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Re: Prosím o kontrolu logu. Děkuji.

Napsal: 31 led 2021 10:06
od Diallix
Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {306BC4AB-BBAE-472A-84CB-DDA9B5162B12} - System32\Tasks\Opera scheduled Autoupdate 1572383546 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software)
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
FirewallRules: [{299EE7EE-5089-487A-BA40-4C7FAE05D180}] => (Allow) LPort=1900
FirewallRules: [{E9EC7265-7B6C-412D-9D96-67ECA9D6F9FC}] => (Allow) LPort=2869
FirewallRules: [{651C79D2-B54C-4418-B8C0-8ECA31C27E4B}] => (Allow) LPort=2869
FirewallRules: [{FA292335-F75F-4359-8BF1-30EF40ED743C}] => (Allow) LPort=1900

EmptyTemp:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.

Re: Prosím o kontrolu logu. Děkuji.

Napsal: 31 led 2021 16:36
od roman7
Fix result of Farbar Recovery Scan Tool (x64) Version: 27-01-2021
Ran by Roman (31-01-2021 16:36:26) Run:1
Running from C:\Users\Roman\Desktop
Loaded Profiles: Roman
Boot Mode: Normal
==============================================

fixlist content:
*****************
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {306BC4AB-BBAE-472A-84CB-DDA9B5162B12} - System32\Tasks\Opera scheduled Autoupdate 1572383546 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software)
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
FirewallRules: [{299EE7EE-5089-487A-BA40-4C7FAE05D180}] => (Allow) LPort=1900
FirewallRules: [{E9EC7265-7B6C-412D-9D96-67ECA9D6F9FC}] => (Allow) LPort=2869
FirewallRules: [{651C79D2-B54C-4418-B8C0-8ECA31C27E4B}] => (Allow) LPort=2869
FirewallRules: [{FA292335-F75F-4359-8BF1-30EF40ED743C}] => (Allow) LPort=1900

EmptyTemp:

*****************

"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{306BC4AB-BBAE-472A-84CB-DDA9B5162B12}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{306BC4AB-BBAE-472A-84CB-DDA9B5162B12}" => removed successfully
C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1572383546 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1572383546" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32\\SunJavaUpdateSched" => removed successfully
"HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{299EE7EE-5089-487A-BA40-4C7FAE05D180}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E9EC7265-7B6C-412D-9D96-67ECA9D6F9FC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{651C79D2-B54C-4418-B8C0-8ECA31C27E4B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FA292335-F75F-4359-8BF1-30EF40ED743C}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 83160192 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 42650719 B
Edge => 0 B
Firefox => 0 B
Opera => 304939576 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 15668 B
NetworkService => 15668 B
Roman => 26669101 B

RecycleBin => 0 B
EmptyTemp: => 446 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:36:40 ====

Re: Prosím o kontrolu logu. Děkuji.

Napsal: 31 led 2021 18:10
od Diallix
ako je na tom pocitac?

Re: Prosím o kontrolu logu. Děkuji.

Napsal: 03 úno 2021 21:53
od roman7
pc zrychlilo a zatím je to dobrý. Děkuji.

Re: Prosím o kontrolu logu. Děkuji.

Napsal: 03 úno 2021 23:02
od Diallix
Nemate zaco :]]
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz