Prosím o kontrolu, pomalé načítání stránek internet.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05.03.2024
Ran by Roman (administrator) on DESKTOP-9RDGM5O (Gigabyte Technology Co., Ltd. B550 GAMING X V2) (06-03-2024 22:03:24)
Running from C:\Users\rosmy\Desktop\FRST64.exe
Loaded Profiles: Roman
Platform: Microsoft Windows 11 Pro Version 23H2 22631.3155 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> Software Security System) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\Ekag20nt.exe
(C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> The CefSharp Authors) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.170.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.66\msedgewebview2.exe <6>
(C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0399660.inf_amd64_d7fa3539ce499e50\B399655\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399660.inf_amd64_d7fa3539ce499e50\B399655\atieclxx.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) () [File not signed] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399660.inf_amd64_d7fa3539ce499e50\B399655\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AntiTrackSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.232.997.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe
(svchost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe
(svchost.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\GraphicsCardEngineStarter.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21830.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21830.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.170.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [423320 2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe [3495808 2022-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Sovos] => C:\Program Files (x86)\Canyon CND-SGM14RGB Gaming Mouse\OemDrv.exe [2450944 2019-08-22] () [File not signed]
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45018016 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [MicrosoftEdgeAutoLaunch_8C26541BB0E90087424048CEDDA8EBAF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4060728 2024-03-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [2044248 2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
HKLM\...\Print\Monitors\us016 Langmon: C:\WINDOWS\system32\us016lm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\121.0.23992.186\Installer\chrmstp.exe [2024-02-21] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2024-01-31]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {8BEC6140-6821-4EB6-ADB6-8DD717D6FB78} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2024-01-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {9C477DA2-C7FA-4895-A59B-113DDFD77D5A} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2024-01-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {6975AF37-DF0E-4F55-B3C9-38A05826E77C} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [183736 2024-01-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {D4320795-2895-405A-8E85-58A8943A4E0B} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5167512 2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {918178E5-0883-4930-9AB6-0AA208007710} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3117856 2024-02-16] (Avast Software s.r.o. -> AVAST Software)
Task: {FC518DE8-AB60-451F-9B46-D8728D4B3743} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3117856 2024-02-16] (Avast Software s.r.o. -> AVAST Software)
Task: {9F75D102-8281-4AD6-B789-B1818C45A236} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1425816 2024-01-30] (Avast Software s.r.o. -> AVAST Software)
Task: {82A5154E-CE57-42A9-B0E6-E9DCED2B030A} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4920728 2024-01-30] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {FC11A5C0-A082-4CA2-AE6B-20123FDE5FD2} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7498648 2024-01-23] (Avast Software s.r.o. -> Avast Software)
Task: {FAB9E7A1-A527-4490-9456-A0E02D30DD9A} - System32\Tasks\Avast Software\AvastAntiTrackPremiumStart => C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe [812456 2024-01-31] (Avast Software s.r.o. -> AVAST Software)
Task: {2B217388-9CD4-4E9E-9AEF-896CE417608C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-04] (Avast Software s.r.o. -> Avast Software)
Task: {1C195D11-92A2-488B-B81F-F3976018B61D} - System32\Tasks\AvastBrowserProtectS-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1682328 2024-02-07] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {0CCD4B86-66E2-4131-9A15-9360A72B929F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-03-13] (Avast Software s.r.o. -> AVAST Software)
Task: {089E6D52-65FA-44B3-941D-62B9C4C5C47D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-03-13] (Avast Software s.r.o. -> AVAST Software)
Task: {6E740B85-1A2A-453B-803B-A5796A4677FF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {1BB0B5A1-1EE1-49AC-88B5-F12B8FAC8876} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "a6108a6b-07b7-475f-b5c7-fa4c9abad6b0" --version "6.21.10918" --silent
Task: {90FFD2A9-E249-4B28-81BE-5383D1713D0A} - System32\Tasks\CCleanerSkipUAC - Roman => C:\Program Files\CCleaner\CCleaner.exe [38778272 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4CEA4CD4-1BE0-4833-8108-F6513736CFF0} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\avast software\browser\application\avastbrowser.exe [3117856 2024-02-16] (Avast Software s.r.o. -> AVAST Software) -> "hxxps://www.cfos.de/en/traffic-shaping/speed-gu ... cfops:3926, (the data entry has 1001 more characters).
Task: {CFD52840-6B84-4B57-8EBE-177A99806DAE} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [738816 2022-05-24] () [File not signed]
Task: {740B57A7-2C7B-4B0E-BD92-36827651D625} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [237672 2023-06-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {B45267C1-616E-40C4-8A14-571EEDF68566} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2060.8.218.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2169592 2024-03-02] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.)
Task: {9BCBEA99-9EB2-4FE3-9EDE-13E78ABC06C1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {580CA1FB-8DD4-459D-9EC8-4BBD7C79DC43} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2024-01-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {4889881E-9D74-4972-991F-9F3125B64C7D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60344 2024-01-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {21CFC649-B737-41A3-86D5-0A030A6C7E9F} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324024 2024-01-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{99b877ff-3a1c-4207-bddb-9e3233fbea3d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bd812113-704b-4ed9-b905-a3488fc7687b}: [NameServer] 100.120.150.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-06]
Edge HomePage: Default -> hxxp://seznam.cz/
Edge Session Restore: Default -> is enabled.
Edge Extension: (Dokumenty Google offline) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-04]
Edge Extension: (Edge relevant text changes) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-01]
FireFox:
========
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-03-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-03-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-01-21] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9138072 2024-03-05] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-03-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [765848 2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2243480 2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1180568 2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastAntiTrackSvc; C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe [6013848 2024-01-23] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-03-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\121.0.23992.186\elevation_service.exe [1832224 2024-02-16] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-03-13] (Avast Software s.r.o. -> AVAST Software)
R2 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [150640 2023-11-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S2 GBTECService; C:\Program Files (x86)\Gigabyte\GBTECService\OLEDDisplayService.exe [19560 2023-06-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [File not signed]
R2 NativePushService; C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [130152 2023-06-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\spdsvc.exe [508488 2018-07-24] (HP Inc. -> )
S3 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2015-02-07] (Samsung Electronics CO., LTD. -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [11913112 2024-01-30] (Avast Software s.r.o. -> AVAST Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534592 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [861328 2024-03-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [36736 2023-05-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [48328 2024-01-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S2 AMDRyzenMasterDriverV20; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [48328 2024-01-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0399660.inf_amd64_d7fa3539ce499e50\B399655\amdkmdag.sys [106387984 2024-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [230976 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [379976 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [292936 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84440 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27760 2024-02-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28632 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [264664 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548824 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [93768 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69080 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [935496 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [694728 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [201792 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306248 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [78632 2024-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [174480 2024-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [34512 2024-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [45248 2023-01-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [124952 2023-01-28] (Avast Software s.r.o. -> Windows (R) Win 7 DDK provider)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_fbf50634f3ddb33d\rt68cx21x64.sys [779728 2023-12-05] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [14224 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2023-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [473336 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-03-06 22:03 - 2024-03-06 22:03 - 000029504 _____ C:\Users\rosmy\Desktop\FRST.txt
2024-03-06 22:03 - 2024-03-06 22:03 - 000000000 ____D C:\Users\rosmy\Desktop\FRST-OlderVersion
2024-03-06 20:42 - 2024-03-06 20:42 - 008790880 _____ (Malwarebytes) C:\Users\rosmy\Desktop\adwcleaner.exe
2024-03-06 20:42 - 2024-03-06 20:42 - 000001284 _____ C:\Users\rosmy\Documents\cc_20240306_204232.reg
2024-03-05 21:24 - 2024-03-05 21:24 - 000314264 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2024-03-04 20:06 - 2024-03-04 20:06 - 000000580 _____ C:\Users\rosmy\Documents\cc_20240304_200636.reg
2024-03-04 18:42 - 2024-03-04 18:42 - 000046828 _____ C:\Users\rosmy\Documents\Informace k platbe Vaseho pojisteni c 4781673741.zip
2024-03-04 18:41 - 2024-03-04 18:41 - 000033581 _____ C:\Users\rosmy\Documents\0447-20240201-20240229-2-MCZB.pdf
2024-02-29 20:11 - 2024-02-29 20:11 - 000405555 _____ C:\Users\rosmy\Documents\Nabidka erding bytovka 23-5034_P_1.pdf
2024-02-25 10:00 - 2024-02-25 10:00 - 000335522 _____ C:\Users\rosmy\Downloads\Ozn%C3%A1men%C3%AD%20%C3%BArazu.tiff
2024-02-21 22:15 - 2024-02-21 22:15 - 000000221 _____ C:\Users\rosmy\Documents\Klávesnice má přednastavené módy, k.txt
2024-02-21 20:59 - 2024-02-21 20:59 - 000012455 _____ C:\Users\rosmy\Documents\Re_ Fwd_ oprava stupaček.mbs
2024-02-21 20:57 - 2024-02-21 20:57 - 000043999 _____ C:\Users\rosmy\Documents\0447-20231231-CZB-PAD.pdf
2024-02-21 20:52 - 2024-02-21 20:52 - 000033500 _____ C:\Users\rosmy\Documents\0447-20240101-20240131-1-MCZB.pdf
2024-02-21 20:49 - 2024-02-21 20:49 - 000033915 _____ C:\Users\rosmy\Downloads\1624260597.pdf
2024-02-21 20:43 - 2024-02-21 20:43 - 000008479 _____ C:\Users\rosmy\Documents\Fwd_ Odměny.mbs
2024-02-21 20:42 - 2024-02-21 20:42 - 000022016 _____ C:\Users\rosmy\Documents\2023 navýšení záloh za plyn.xls
2024-02-21 20:38 - 2024-02-21 20:38 - 000010192 _____ C:\Users\rosmy\Documents\Re_ Výbor.mbs
2024-02-21 20:37 - 2024-02-21 20:37 - 000007342 _____ C:\Users\rosmy\Documents\Fwd_ kotelna.mbs
2024-02-21 20:35 - 2024-02-21 20:35 - 000007771 _____ C:\Users\rosmy\Documents\Fwd_ Re_ kotelna.mbs
2024-02-21 20:35 - 2024-02-21 20:35 - 000007747 _____ C:\Users\rosmy\Documents\Re_ koteln.mbs
2024-02-21 20:33 - 2024-02-21 20:33 - 000008489 _____ C:\Users\rosmy\Documents\Fwd_ Oprava komínu a hřebenáčů na domě Komenského 777, Bučovice.mbs
2024-02-21 20:33 - 2024-02-21 20:33 - 000006704 _____ C:\Users\rosmy\Documents\Re_ Fwd_ Pozdrav.mbs
2024-02-21 20:26 - 2024-02-21 20:26 - 000520097 _____ C:\Users\rosmy\Documents\Nabidka dveře-obrazky-12200367.pdf
2024-02-21 20:26 - 2024-02-21 20:26 - 000007773 _____ C:\Users\rosmy\Documents\MUDr.Nezdařilová Tamara.mht
2024-02-21 20:25 - 2024-02-21 20:25 - 000498235 _____ C:\Users\rosmy\Documents\Smlouva_family700688.mht
2024-02-21 20:20 - 2024-02-21 20:20 - 002923443 _____ C:\Users\rosmy\Documents\RE_ operace.mht
2024-02-21 20:19 - 2024-02-21 20:19 - 001728428 _____ C:\Users\rosmy\Documents\Fwd_ RE_ objednávka.mbs
2024-02-21 20:15 - 2024-02-21 20:16 - 001728428 _____ C:\Users\rosmy\Documents\Fwd_ RE_ objednávka.mht
2024-02-21 20:09 - 2024-02-21 20:09 - 000298413 _____ C:\Users\rosmy\Documents\Bytovka Komenského 777 - půdorys.pdf
2024-02-21 20:07 - 2024-02-21 20:07 - 000001664 _____ C:\Users\rosmy\Documents\cc_20240221_200724.reg
2024-02-20 22:38 - 2024-02-20 22:38 - 000135588 _____ C:\Users\rosmy\Downloads\Technický list.pdf
2024-02-18 19:09 - 2024-02-18 19:09 - 000691102 _____ C:\WINDOWS\system32\perfh005.dat
2024-02-18 19:09 - 2024-02-18 19:09 - 000143008 _____ C:\WINDOWS\system32\perfc005.dat
2024-02-16 23:44 - 2024-02-16 23:44 - 000004222 _____ C:\Users\rosmy\Documents\cc_20240216_234452.reg
2024-02-13 21:30 - 2024-02-13 21:30 - 000019222 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-02-13 21:29 - 2024-02-13 21:29 - 000019222 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-02-13 21:27 - 2024-02-13 21:28 - 000000000 ___HD C:\$WinREAgent
2024-02-07 23:33 - 2024-02-07 23:33 - 000000174 _____ C:\Users\rosmy\Documents\cc_20240207_233318.reg
2024-02-06 19:13 - 2024-02-06 19:13 - 000694234 _____ C:\Users\rosmy\Downloads\61722530.pkpasses
2024-02-06 19:13 - 2024-02-06 19:13 - 000054119 _____ C:\Users\rosmy\Documents\vstupenky komunal prostějov 16.3.246940941805.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-03-06 22:03 - 2023-03-12 22:32 - 000000000 ____D C:\FRST
2024-03-06 22:03 - 2023-03-12 22:23 - 002390016 _____ (Farbar) C:\Users\rosmy\Desktop\FRST64.exe
2024-03-06 21:57 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-06 20:58 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-06 20:58 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-03-06 20:44 - 2023-01-28 11:42 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-03-06 20:44 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-03-06 20:43 - 2023-01-31 23:00 - 000000000 ____D C:\Program Files\CCleaner
2024-03-06 20:29 - 2024-01-23 21:33 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2024-03-06 20:29 - 2023-10-31 20:50 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2024-03-06 20:29 - 2023-01-28 15:20 - 000000000 ____D C:\Users\rosmy\AppData\Local\AvastAntiTrackPremium
2024-03-06 20:28 - 2023-01-30 22:25 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2024-03-06 20:28 - 2023-01-30 22:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-03-06 20:28 - 2023-01-28 15:09 - 000000000 ____D C:\ProgramData\AVAST Software
2024-03-06 20:28 - 2023-01-28 11:40 - 000089232 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2024-03-06 20:28 - 2023-01-28 11:15 - 000875536 _____ C:\WINDOWS\system32\wpbbin.exe
2024-03-06 20:28 - 2023-01-28 11:15 - 000861328 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2024-03-06 20:28 - 2023-01-28 11:15 - 000012288 ___SH C:\DumpStack.log.tmp
2024-03-05 22:34 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-03-05 21:48 - 2023-01-28 11:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\D3DSCache
2024-03-05 21:38 - 2023-02-13 22:31 - 000000000 ____D C:\Users\rosmy\AppData\Local\AMD_Common
2024-03-05 21:26 - 2023-01-30 22:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-03-05 21:24 - 2023-03-13 09:37 - 000935496 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000694728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000548824 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000379976 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000306248 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000292936 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000264664 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000230976 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000093768 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000084440 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000069080 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2024-03-05 21:24 - 2023-03-13 09:37 - 000028632 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2024-03-05 21:24 - 2023-01-30 22:25 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2024-03-05 21:24 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-03-05 21:22 - 2023-01-30 22:25 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-03-05 21:22 - 2023-01-30 22:25 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-04 22:05 - 2023-01-30 22:15 - 000000000 ____D C:\Users\rosmy
2024-03-04 20:06 - 2023-02-26 12:55 - 000000000 ____D C:\WINDOWS\Minidump
2024-03-04 19:59 - 2023-01-31 23:00 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-03-03 21:23 - 2023-01-28 11:15 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-02 23:45 - 2024-01-23 21:33 - 000002402 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2024-03-02 23:45 - 2024-01-11 20:59 - 000002594 _____ C:\WINDOWS\system32\Tasks\GraphicsCardEngine
2024-03-02 23:45 - 2023-10-31 20:50 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2024-03-02 23:45 - 2023-01-31 23:00 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-03-02 23:45 - 2023-01-31 23:00 - 000002952 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-03-02 23:45 - 2023-01-31 23:00 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Roman
2024-03-02 23:45 - 2023-01-30 22:25 - 000002194 _____ C:\WINDOWS\system32\Tasks\StartCN
2024-03-02 23:45 - 2023-01-30 22:25 - 000002114 _____ C:\WINDOWS\system32\Tasks\StartDVR
2024-03-02 23:45 - 2023-01-30 22:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2024-03-02 23:37 - 2023-01-28 15:39 - 000000364 _____ C:\Users\rosmy\Desktop\Ethernet – zástupce.lnk
2024-02-29 20:43 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2024-02-28 18:59 - 2023-02-13 18:50 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\Microsoft\Word
2024-02-21 22:20 - 2023-03-13 09:43 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2024-02-21 20:07 - 2023-01-28 16:48 - 000000000 ____D C:\Users\rosmy\AppData\Local\CrashDumps
2024-02-20 21:18 - 2023-03-13 09:37 - 000027760 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswElam.sys
2024-02-18 19:09 - 2023-01-30 22:28 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-02-18 10:16 - 2023-01-28 11:35 - 000000000 ____D C:\Program Files\AMD
2024-02-16 20:32 - 2023-12-19 22:16 - 000000000 ____D C:\Users\rosmy\Downloads\Nová složka
2024-02-14 17:37 - 2023-01-28 11:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\Packages
2024-02-13 22:13 - 2023-01-30 22:24 - 000479688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-02-13 22:12 - 2023-10-11 21:07 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-02-13 22:12 - 2022-05-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\AppV
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-02-13 22:12 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-02-13 21:43 - 2023-01-28 11:40 - 000000000 ____D C:\ProgramData\Packages
2024-02-13 21:43 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-02-13 21:31 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-02-13 21:30 - 2023-01-30 22:25 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-02-13 21:25 - 2023-01-28 14:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-02-13 21:24 - 2023-01-28 14:30 - 191155960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kntrolu logu. Děkuji.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kntrolu logu. Děkuji.
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
C:\DumpStack.log.tmp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kntrolu logu. Děkuji.
Zdravím,
omlouvám se za pozdní reakci byl jsem mimo domova.
Fix result of Farbar Recovery Scan Tool (x64) Version: 08.03.2024
Ran by Roman (10-03-2024 11:53:38) Run:5
Running from C:\Users\rosmy\Desktop
Loaded Profiles: Roman
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
C:\DumpStack.log.tmp
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10699447 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 5526915 B
Edge => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 14238 B
NetworkService => 14238 B
rosmy => 142337890 B
RecycleBin => 0 B
EmptyTemp: => 152.5 MB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 10-03-2024 11:54:37)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 11:54:37 ====
omlouvám se za pozdní reakci byl jsem mimo domova.
Fix result of Farbar Recovery Scan Tool (x64) Version: 08.03.2024
Ran by Roman (10-03-2024 11:53:38) Run:5
Running from C:\Users\rosmy\Desktop
Loaded Profiles: Roman
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
C:\DumpStack.log.tmp
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10699447 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 5526915 B
Edge => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 14238 B
NetworkService => 14238 B
rosmy => 142337890 B
RecycleBin => 0 B
EmptyTemp: => 152.5 MB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 10-03-2024 11:54:37)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 11:54:37 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kntrolu logu. Děkuji.
Nic se neděje a bylo smazáno. Zrychlilo se načítání?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kntrolu logu. Děkuji.
Je to lepší. Děkuji.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kntrolu logu. Děkuji.
Rádo se stalo. Ještě můžete zkusit defragmentovat disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?