Zavireny pocitac

[Chrostik]

Zdravim, pravdepodobne som chytil nejaky virus, parkrat za den mi vyhodi Avast, ze zachytil trojskeho kona... mozem poprosit o kontrolu? Dakujem.



Btw, Avast mi vyhodil aj FRST





Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11.03.2024
Ran by Michal (administrator) on CHROSTIK (ASUSTeK COMPUTER INC. Vivobook_ASUSLaptop X1505ZA_X1505ZA) (12-03-2024 08:37:56)
Running from C:\Users\Michal\Downloads\FRST64.exe
Loaded Profiles: Michal
Platform: Microsoft Windows 11 Home Version 23H2 22631.3155 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\ModuleDll\HWSettings\AsusOLEDShifter.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOSD.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_24033.1005.2701.7380_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.80\msedgewebview2.exe <6>
(DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_7218f3b363a821fe\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_7218f3b363a821fe\ipf_helper.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <14>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\GlideX\GlideXService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\GlideX\GlideXServiceExt.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSystemAnalysis.exe <2>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_64d7fcfcde9b9c10\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_d6f52e3fdecf287d\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_346bd04e375689ec\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_7218f3b363a821fe\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_f3c201b4c28c14d0\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_06dd582276d3f601\AS\IAS\IntelAudioService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_4e93878658043b21\OneApp.IGCC.WinService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9741ef1f4093481f\IntelCpHDCPSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.270.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe <3>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [423320 2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2024-01-06] (Adobe Inc. -> )
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-816273166-2319128817-3269457040-1001\...\Run: [MicrosoftEdgeAutoLaunch_3D9802976EF00A6AE9398D528BE31C4A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4060608 2024-03-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-816273166-2319128817-3269457040-1001\...\Run: [Folkesygdommenes] => c:\windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe [423424 2024-02-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-816273166-2319128817-3269457040-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45018016 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-816273166-2319128817-3269457040-1001\Environment: [Anomali220] powershell.exe <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.112\Installer\chrmstp.exe [2024-03-08] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {5F1F8D4C-2139-47F8-A4BF-D46A020F7A76} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusHotkey.exe [311944 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {9938B124-7C55-4C33-985F-AE96DA70FB30} - System32\Tasks\ASUS Update Checker 2.0 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusUpdateChecker.exe [802440 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {FE1F65BD-AB32-4F5C-8F1E-C0BC80671C84} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4789384 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {C267B63C-4101-4A91-9FA6-75651E8A7605} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5167512 2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {814DA660-0356-473B-8D37-FA191B2470E4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2024-01-05] (Avast Software s.r.o. -> Avast Software)
Task: {F96B792E-DF14-4786-8A24-61D43CBF220B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {2D7FC76C-DC88-41A5-9332-148ECAB8EACC} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "d0bc5a6b-2656-45dc-92f0-cc3d4cdcd884" --version "6.21.10918" --silent
Task: {4386AC13-0661-4FC1-9E2E-455E1777D5C7} - System32\Tasks\CCleanerSkipUAC - Michal => C:\Program Files\CCleaner\CCleaner.exe [38778272 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {EC392282-621B-47D1-891B-C6C868E3B7D1} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem124.0.6342.2{FADDFB4A-49AC-496F-9110-3E5F9959924E} => C:\Program Files (x86)\Google\GoogleUpdater\124.0.6342.2\updater.exe [4721952 2024-03-06] (Google LLC -> Google LLC)
Task: {24D861F2-614A-43C7-8567-5730E3E87F51} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {64D2FA95-8EF3-49FB-A268-53CC34D05539} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {ABA5C0EB-F0DB-44A1-B0D7-6B38A5EF92E1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {A0D8A1E9-1FB0-4E82-AF28-9BA8C7AD780F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3054EF1-1A6E-4F51-8CA9-05F0E1F74274} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170024 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {6A470B26-9714-425D-BAD3-C0E65B6B6E01} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-06] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {58F8C632-348D-4405-99B3-96BF6D51D0C6} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-816273166-2319128817-3269457040-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-06] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {1A667643-4FBE-4765-9CD2-8540FFEF1A5B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-03-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {DCEC6671-2A3A-4F4B-A55B-42F01D05CF0E} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-816273166-2319128817-3269457040-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\Windows\System32\wpninprc.dll [65536 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {09468A27-833E-4E9D-9576-135D1CA5B02D} - System32\Tasks\RtkAudUService64_BG => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe [1961360 2023-11-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1e871d3c-148b-49b6-a4ee-7f4f37951217}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1e871d3c-148b-49b6-a4ee-7f4f37951217}\14355535F59334: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1e871d3c-148b-49b6-a4ee-7f4f37951217}\348627F6374796B6D22374: [DhcpNameServer] 192.168.9.1
Tcpip\..\Interfaces\{ed115195-9fe7-4f44-b8f5-03bb5e350a45}: [DhcpNameServer] 10.66.112.1
Tcpip\..\Interfaces\{ed115195-9fe7-4f44-b8f5-03bb5e350a45}: [DhcpDomain] F2F10DL1.COM

Edge:
=======
Edge Profile: C:\Users\Michal\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-12]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\Michal\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-03]
Edge Extension: (Edge relevant text changes) - C:\Users\Michal\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF DefaultProfile: scwlywnk.default
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\scwlywnk.default [2024-01-05]
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\5sgw1db1.default-release [2024-03-12]
FF Extension: (AdBlocker Ultimate) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\5sgw1db1.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2024-02-19]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-02-04] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default [2024-03-11]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-04]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-02-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-05]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2024-03-11]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsusAppService; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\AsusAppService\AsusAppService.exe [1177224 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimization.exe [529552 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusScreenXpertHostService; C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe [1738904 2024-01-30] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManager.exe [1369232 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSwitch\AsusSwitch.exe [641272 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4789384 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [845456 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9138072 2024-03-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [765848 2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1180568 2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2024-01-05] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14097992 2024-03-04] (Microsoft Corporation -> Microsoft Corporation)
R2 dptftcs; C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_d6f52e3fdecf287d\ipfsvc.exe [546416 2022-12-02] (Intel Corporation -> Intel Corporation)
R2 DtsApo4Service; C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe [434000 2023-02-22] (DTS, Inc. -> DTS Inc.)
R2 GlideXService; C:\Program Files\ASUS\GlideX\GlideXService.exe [5076624 2022-12-30] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 GlideXServiceExt; C:\Program Files\ASUS\GlideX\GlideXServiceExt.exe [229520 2022-12-30] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 GoogleUpdaterInternalService124.0.6342.2; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6342.2\updater.exe [4721952 2024-03-06] (Google LLC -> Google LLC)
S2 GoogleUpdaterService124.0.6342.2; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6342.2\updater.exe [4721952 2024-03-06] (Google LLC -> Google LLC)
S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_367008a610747d24\lib\PlatformLicenseManagerService.exe [749048 2022-12-20] (Intel Corporation -> Intel(R) Corporation)
R2 IntelAudioService; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_06dd582276d3f601\AS\IAS\IntelAudioService.exe [532024 2022-06-02] (Intel Corporation -> Intel)
R2 ipfsvc; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_7218f3b363a821fe\ipf_uf.exe [2781336 2022-12-02] (Intel Corporation -> Intel Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2024-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2024-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusPTPDrv; C:\Windows\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_93fc123351137141\AsusPTPFilter.sys [155568 2023-01-04] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSAIO.sys [49224 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [20544 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [230976 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [379976 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [292936 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [84440 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [27760 2024-02-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [28632 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [264664 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [548824 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [93768 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [69080 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [935496 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [694728 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [201792 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [306248 2024-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 ATKWMIACPIIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusWmiAcpi.sys [48928 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2023-08-13] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-08-13] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R0 fse; C:\Windows\System32\drivers\fse.sys [218592 2024-01-06] (Microsoft Windows -> Microsoft Corporation)
S3 GSCAuxDriver; C:\Windows\System32\DriverStore\FileRepository\gscauxdriver.inf_amd64_ed9efe698065da9c\GSCAuxDriverx64.sys [108056 2022-11-20] (Intel Corporation -> Intel Corporation)
S3 GSCx64; C:\Windows\System32\DriverStore\FileRepository\gscheci.inf_amd64_96e1e5abf52e018c\TeeDriverGSCW8x64.sys [278048 2022-11-20] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-18] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-18] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_SPI_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_spi_adl.inf_amd64_334c460fea9b11a4\iaLPSS2_SPI_ADL.sys [171608 2022-10-18] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_UART2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_uart2_adl.inf_amd64_43d5df63d19fde70\iaLPSS2_UART2_ADL.sys [329320 2022-10-18] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1605296 2022-09-16] (Intel Corporation -> Intel Corporation)
S3 IntcSdwBus; C:\Windows\System32\DriverStore\FileRepository\intcsdwbus.inf_amd64_4f92127e9a9f0760\IntcSdwBus.sys [509992 2022-06-02] (Intel Corporation -> Intel(R) Corporation)
R3 IntcUSB; C:\Windows\System32\DriverStore\FileRepository\intcusb.inf_amd64_d97909364d9908a5\IntcUSB.sys [892968 2022-06-02] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\Windows\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-22] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\Windows\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_f2084be6bb835256\ipf_acpi.sys [87192 2022-12-02] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_7218f3b363a821fe\ipf_cpu.sys [80536 2022-12-02] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_7218f3b363a821fe\ipf_lf.sys [445080 2022-12-02] (Intel Corporation -> Intel Corporation)
S3 rtu53cx21x64; C:\Windows\System32\DriverStore\FileRepository\rtu53cx21x64sta.inf_amd64_9a89b296dced10dd\rtu53cx21x64.sys [849712 2021-07-29] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 rtux64w10; C:\Windows\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2024-01-06] (Microsoft Windows -> )
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [55856 2024-01-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [594304 2024-01-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2024-01-06] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-03-12 08:37 - 2024-03-12 08:38 - 000029707 _____ C:\Users\Michal\Downloads\FRST.txt
2024-03-12 08:37 - 2024-03-12 08:37 - 002390528 _____ (Farbar) C:\Users\Michal\Downloads\FRST64.exe
2024-03-12 08:09 - 2024-03-12 08:10 - 000028367 _____ C:\Users\Michal\Desktop\Addition.txt
2024-03-12 08:06 - 2024-03-12 08:38 - 000000000 ____D C:\FRST
2024-03-12 08:06 - 2024-03-12 08:10 - 000049829 _____ C:\Users\Michal\Desktop\FRST.txt
2024-03-11 18:05 - 2024-03-11 18:05 - 000000000 ____D C:\Users\Michal\AppData\Local\ESET
2024-03-11 18:04 - 2024-03-11 18:04 - 009798776 _____ (ESET) C:\Users\Michal\Downloads\eset_internet_security_live_installer.exe
2024-03-11 14:53 - 2024-03-12 08:18 - 000000000 ____D C:\Program Files\CCleaner
2024-03-11 14:53 - 2024-03-11 19:52 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-03-11 14:53 - 2024-03-11 14:53 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-03-11 14:53 - 2024-03-11 14:53 - 000003380 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-03-11 14:53 - 2024-03-11 14:53 - 000002894 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Michal
2024-03-11 14:53 - 2024-03-11 14:53 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-03-11 14:53 - 2024-03-11 14:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-03-11 14:49 - 2024-03-11 14:49 - 079156784 _____ (Piriform Software Ltd) C:\Users\Michal\Downloads\ccsetup621.exe
2024-03-11 12:06 - 2024-03-11 12:06 - 000000418 _____ C:\Users\Michal\Downloads\res.auto.rsc
2024-03-11 12:03 - 2024-03-11 12:03 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Mikrotik
2024-03-11 12:02 - 2024-03-11 12:03 - 002292568 _____ C:\Users\Michal\Downloads\winbox64.exe
2024-03-09 19:27 - 2024-03-09 19:27 - 000021840 _____ C:\Users\Michal\Downloads\J6J4OKIO4BEGZIA5YEP2E7NTUI.avif
2024-03-09 19:24 - 2024-03-09 19:24 - 000017456 _____ C:\Users\Michal\Downloads\201801181836670061996-p2.jpeg.webp
2024-03-09 17:38 - 2024-03-09 17:51 - 000000000 ____D C:\Users\Michal\AppData\Roaming\GHISLER
2024-03-09 17:38 - 2024-03-09 17:51 - 000000000 ____D C:\Users\Michal\AppData\Local\GHISLER
2024-03-08 18:55 - 2024-03-08 18:55 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-03-08 18:09 - 2024-03-12 07:54 - 000000000 ____D C:\Users\Michal\AppData\Roaming\4K
2024-03-08 18:09 - 2024-03-11 10:02 - 000000000 ____D C:\Users\Michal\AppData\Local\GRAPHISOFT_ArchiCAD_27_Bu
2024-03-08 18:09 - 2024-03-08 18:09 - 000000000 ____D C:\Users\Michal\Documents\Adobe
2024-03-08 18:08 - 2024-03-08 18:08 - 000000000 ____D C:\Users\Michal\AppData\Local\Seasonal
2024-03-08 18:06 - 2024-03-08 18:06 - 000000000 ___HD C:\$AV_ASW
2024-03-08 17:33 - 2024-03-08 17:33 - 1897567142 _____ C:\Users\Michal\Downloads\the.rookie.s06e01.1080p.web.h264-successfulcrab (1).mkv
2024-03-06 08:20 - 2024-03-08 19:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-03-05 10:49 - 2024-03-05 10:49 - 000314264 _____ (Gen Digital Inc.) C:\Windows\system32\aswBoot.exe
2024-03-03 21:41 - 2024-03-03 21:41 - 002910872 _____ C:\Users\Michal\Downloads\image0.jpeg
2024-03-03 13:39 - 2024-03-11 17:32 - 000000000 ____D C:\Users\Michal\Downloads\TOTO
2024-03-03 08:53 - 2024-03-03 08:53 - 000212831 _____ C:\Users\Michal\Downloads\Financial Statement-Mar-02-24.pdf
2024-03-02 10:37 - 2024-03-12 08:19 - 000000000 ____D C:\Users\Michal\AppData\Local\CrashDumps
2024-03-02 10:08 - 2024-03-02 10:11 - 000000000 ____D C:\Users\Michal\Downloads\Hokej skeny
2024-03-01 15:07 - 2024-03-01 15:07 - 000000000 ____D C:\Program Files (x86)\Windows
2024-02-23 20:18 - 2024-02-23 20:24 - 000000000 ____D C:\Users\Michal\Downloads\Nový priečinok (3)
2024-02-23 08:29 - 2024-02-23 08:30 - 785798385 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E18_Peterův přívěsek _ Tóča.mkv
2024-02-23 08:28 - 2024-02-23 08:29 - 745088948 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E20_Zelenáč _ Vyměňovač.mkv
2024-02-23 08:26 - 2024-02-23 08:28 - 772618267 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E21_Nepořádek Tety May _ Pěna všude.mkv
2024-02-23 08:25 - 2024-02-23 08:26 - 744495044 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E25_Panika v průvodu _ Případ knižního bandity.mkv
2024-02-23 08:22 - 2024-02-23 08:23 - 774465170 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E23_Chapadlorožec _ Dýňový problém.mkv
2024-02-23 08:21 - 2024-02-23 08:22 - 784726334 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E17_Skřetí ostrov _ Doktorka Ok a Šoktoboti.mkv
2024-02-23 08:21 - 2024-02-23 08:21 - 770297872 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E22_Stát_ Je tu tým Spidey _ Lepkavé pavučiny.mkv
2024-02-23 08:19 - 2024-02-23 08:20 - 773059735 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E16_Umění útočí_ _ Štěněcí povyk_.mkv
2024-02-23 08:18 - 2024-02-23 08:19 - 780866071 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E15_Spin přispěchá na pomoc _ Padouši na mostě.mkv
2024-02-23 08:17 - 2024-02-23 08:17 - 762345226 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E14_Poklad Pavo-vouse _ Potopa.mkv
2024-02-23 08:14 - 2024-02-23 08:14 - 767565502 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E13_Stromy v parku _ Čistící sliz.mkv
2024-02-23 08:08 - 2024-02-23 08:08 - 790902745 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E12_Pavoučí Vánoce _ Gobby na ledě.mkv
2024-02-23 07:52 - 2024-02-23 07:53 - 773062743 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E11_Kočičí katastrofa _ Hudební hypnóza.mkv
2024-02-22 19:01 - 2024-02-22 19:01 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2024-02-21 07:57 - 2024-02-21 07:57 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-02-18 14:21 - 2024-02-18 14:25 - 790612723 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E10_Hodný Gobby _ Chápan.mkv
2024-02-18 14:20 - 2024-02-18 14:21 - 774652201 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E09_Gob-zilla _ Honička za dortem.mkv
2024-02-18 14:18 - 2024-02-18 14:20 - 777832737 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E08_Létající Rhino_ _ Halloweenská honička.mkv
2024-02-18 14:16 - 2024-02-18 14:18 - 772471799 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E07_Stará přehrada _ Zelené loupení.mkv
2024-02-18 14:15 - 2024-02-18 14:16 - 766258943 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E06_Splašený den matek _ Zábavný dům.mkv
2024-02-18 14:14 - 2024-02-18 14:15 - 781724344 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E05_Holubí padouši _ Zelená bouřka.mkv
2024-02-18 14:12 - 2024-02-18 14:14 - 772530542 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E04_Vetřelec v Pavučárně _ Vyzkoušej tvou super sílu.mkv
2024-02-18 14:11 - 2024-02-18 14:12 - 787513432 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E03_Super chobotnice doktorky Ock _ Chechtací plyn útočí.mkv
2024-02-18 14:10 - 2024-02-18 14:11 - 771232087 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E02_Superhrdinská škytavka _ Ztracený batoh.mkv
2024-02-18 14:07 - 2024-02-18 14:10 - 775859480 _____ C:\Users\Michal\Downloads\Spidey a jeho úžasní přátelé_S01E01_Síla týmu Spidey _ Panterská trpělivost.mkv
2024-02-14 19:22 - 2024-02-14 19:22 - 000019222 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-02-14 19:22 - 2024-02-14 19:22 - 000019222 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-03-12 08:37 - 2024-01-05 07:55 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-03-12 08:36 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-12 08:32 - 2024-01-05 14:41 - 000003752 _____ C:\Windows\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2024-03-12 08:22 - 2023-08-13 00:19 - 000804932 _____ C:\Windows\system32\PerfStringBackup.INI
2024-03-12 08:22 - 2022-05-07 06:22 - 000000000 ____D C:\Windows\INF
2024-03-12 08:18 - 2024-01-05 07:57 - 000000000 ____D C:\ProgramData\Avast Software
2024-03-12 08:18 - 2023-08-13 00:22 - 000001623 _____ C:\Windows\system32\config\VSMIDK
2024-03-12 08:18 - 2022-06-03 14:49 - 000012288 ___SH C:\DumpStack.log.tmp
2024-03-12 08:18 - 2022-06-03 14:49 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-03-12 08:18 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemTemp
2024-03-12 08:18 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ServiceState
2024-03-12 08:17 - 2022-05-07 06:17 - 000524288 _____ C:\Windows\system32\config\BBI
2024-03-12 08:13 - 2022-05-07 06:24 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-03-12 08:13 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-12 08:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\AppReadiness
2024-03-12 07:54 - 2024-01-05 07:50 - 000000000 ____D C:\Users\Michal\AppData\Local\Packages
2024-03-12 07:54 - 2022-06-03 14:52 - 000000000 ____D C:\ProgramData\Packages
2024-03-11 21:40 - 2024-01-05 15:37 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Excel
2024-03-11 21:38 - 2022-06-03 14:49 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-03-11 17:04 - 2024-01-05 07:50 - 000000000 ____D C:\Users\Michal\AppData\Local\D3DSCache
2024-03-11 14:56 - 2022-06-03 15:23 - 000000000 ____D C:\Windows\Panther
2024-03-09 18:17 - 2022-06-03 14:49 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-09 17:18 - 2024-01-05 07:58 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2024-03-09 17:18 - 2024-01-05 07:51 - 000003062 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-816273166-2319128817-3269457040-1001
2024-03-09 17:18 - 2024-01-05 07:51 - 000002858 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-816273166-2319128817-3269457040-1001
2024-03-09 17:18 - 2023-08-13 00:17 - 000002854 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-816273166-2319128817-3269457040-500
2024-03-09 17:18 - 2023-08-13 00:14 - 000002452 _____ C:\Windows\system32\Tasks\RtkAudUService64_BG
2024-03-09 17:18 - 2023-08-13 00:13 - 000003116 _____ C:\Windows\system32\Tasks\ASUS Update Checker 2.0
2024-03-09 17:18 - 2023-08-13 00:13 - 000003034 _____ C:\Windows\system32\Tasks\ASUS Optimization 36D18D69AFC3
2024-03-09 17:18 - 2022-06-03 14:49 - 000003560 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-03-09 17:18 - 2022-06-03 14:49 - 000003336 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-09 13:22 - 2024-01-05 09:14 - 000000000 ____D C:\Michal
2024-03-09 12:30 - 2024-01-05 07:50 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Adobe
2024-03-09 10:16 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\LiveKernelReports
2024-03-09 08:54 - 2024-01-06 09:48 - 000000000 ____D C:\Users\Michal\AppData\Local\Adobe
2024-03-09 07:45 - 2024-01-05 07:58 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2024-03-08 19:13 - 2024-01-05 07:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-03-08 18:54 - 2022-06-03 14:52 - 000000000 ____D C:\Program Files\Microsoft Office
2024-03-08 18:20 - 2024-01-06 09:50 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-03-08 18:20 - 2024-01-06 09:50 - 000000000 ____D C:\Program Files\Adobe
2024-03-08 18:12 - 2024-01-06 09:48 - 000000000 ____D C:\ProgramData\Adobe
2024-03-08 18:09 - 2024-01-07 12:36 - 000000000 ____D C:\Users\Michal\AppData\Roaming\com.adobe.dunamis
2024-03-08 18:09 - 2024-01-06 10:11 - 000000000 ____D C:\Users\Michal\AppData\LocalLow\Adobe
2024-03-08 18:08 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\Resources
2024-03-08 18:05 - 2024-01-06 09:50 - 000000000 ____D C:\Program Files (x86)\Adobe
2024-03-08 18:01 - 2024-01-05 08:24 - 000000000 ____D C:\ProgramData\Package Cache
2024-03-08 17:33 - 2024-01-05 14:53 - 000000000 ____D C:\Users\Michal\AppData\Roaming\vlc
2024-03-08 17:10 - 2024-01-05 07:59 - 000000000 ____D C:\Users\Michal\AppData\Local\Avast Software
2024-03-08 16:41 - 2024-01-05 08:00 - 000002261 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-03-08 16:41 - 2024-01-05 08:00 - 000002220 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-03-06 13:49 - 2024-01-05 07:54 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-03-06 07:35 - 2024-01-05 07:51 - 000002372 _____ C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-03-05 19:49 - 2024-01-12 11:42 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Word
2024-03-05 10:49 - 2024-01-05 07:58 - 000935496 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSnx.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000694728 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSP.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000548824 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswNetHub.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000379976 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsdriver.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000306248 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswVmm.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000292936 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsh.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000264664 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswMonFlt.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000230976 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArPot.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000093768 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRdr2.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000084440 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbuniv.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000069080 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRvrt.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000028632 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswKbd.sys
2024-03-05 10:49 - 2024-01-05 07:58 - 000020544 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArDisk.sys
2024-03-04 08:16 - 2024-01-05 15:21 - 000000000 ____D C:\Users\Michal\Downloads\Michal
2024-02-29 20:03 - 2024-01-05 15:22 - 000000000 ____D C:\Users\Michal\Downloads\Nový priečinok (2)
2024-02-21 17:26 - 2024-01-05 07:54 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-02-21 10:05 - 2024-01-05 07:59 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-21 07:56 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\AppLocker
2024-02-20 19:27 - 2024-01-25 16:25 - 000003274 _____ C:\Windows\system32\Tasks\Optimize Push Notification Data File-S-1-5-21-816273166-2319128817-3269457040-1001
2024-02-19 15:20 - 2024-01-05 07:47 - 000000000 ____D C:\Users\Michal
2024-02-17 08:17 - 2024-01-05 07:58 - 000027760 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswElam.sys
2024-02-16 11:10 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-02-16 10:53 - 2022-06-03 14:49 - 000475784 _____ C:\Windows\system32\FNTCACHE.DAT
2024-02-16 10:52 - 2024-01-06 15:33 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\UUS
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemResources
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\setup
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\oobe
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\appraiser
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellComponents
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\Provisioning
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\BrowserCore
2024-02-16 10:52 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\bcastdvr
2024-02-15 18:13 - 2022-05-07 06:17 - 000032768 _____ C:\Windows\system32\config\ELAM
2024-02-14 19:34 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\CbsTemp
2024-02-14 19:32 - 2024-01-06 15:15 - 000000000 ____D C:\Windows\system32\MRT
2024-02-14 19:29 - 2024-01-06 15:15 - 191155960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-02-14 19:22 - 2022-06-03 14:51 - 003212800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[Chrostik]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11.03.2024
Ran by Michal (12-03-2024 08:40:16)
Running from C:\Users\Michal\Downloads
Microsoft Windows 11 Home Version 23H2 22631.3155 (X64) (2024-01-05 13:39:18)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-816273166-2319128817-3269457040-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-816273166-2319128817-3269457040-503 - Limited - Disabled)
Guest (S-1-5-21-816273166-2319128817-3269457040-501 - Limited - Disabled)
Michal (S-1-5-21-816273166-2319128817-3269457040-1001 - Administrator - Enabled) => C:\Users\Michal
WDAGUtilityAccount (S-1-5-21-816273166-2319128817-3269457040-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe InDesign 2022 (HKLM-x32\...\IDSN_17_3) (Version: 17.3 - Adobe Inc.)
Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_4_1) (Version: 22.4.1.211 - Adobe Inc.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.2.6104 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.21 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1651.5 - Piriform Software) Hidden
GlideX Service Installer (HKLM\...\{A06BDD76-D95C-4AC7-A0DA-73971F366D9B}) (Version: 2.0.3.0 - ASUSTeK COMPUTER INC.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 122.0.6261.112 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.17328.20162 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 122.0.2365.80 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 122.0.2365.80 - Microsoft Corporation)
Microsoft Office 2019 Professional Plus - sk-sk (HKLM\...\ProPlus2019Retail - sk-sk) (Version: 16.0.17328.20162 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-816273166-2319128817-3269457040-1001\...\OneDriveSetup.exe) (Version: 24.025.0204.0003 - Microsoft Corporation)
Microsoft OneNote - sk-sk (HKLM\...\OneNoteFreeRetail - sk-sk) (Version: 16.0.17328.20162 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31326 (HKLM-x32\...\{2d507699-404c-4c8b-a54a-38e352f32cdd}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326 (HKLM-x32\...\{817e21c1-6b3a-4bc1-8c49-67e4e1887b3a}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31326 (HKLM\...\{38624EB5-356D-4B08-8357-C33D89A5C0C5}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31326 (HKLM\...\{C96241EA-9900-4FE8-85B3-1E238D509DF6}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31326 (HKLM-x32\...\{A250E750-DB3F-40C1-8460-8EF77C7582DA}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31326 (HKLM-x32\...\{46E11E7F-01E1-44D0-BB86-C67342D253DD}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
MKVToolNix 82.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 82.0.0 - Moritz Bunkus)
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 123.0.1 (x64 sk)) (Version: 123.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 121.0 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17328.20142 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17328.20108 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)

Packages:
=========

AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5336.0_x64__8j3eq9eme6ctt [2024-02-13] (INTEL CORP) [Startup Task]
B9ECED6F.ScreenPadMaster -> C:\Program Files\WindowsApps\B9ECED6F.ScreenPadMaster_3.1.26.0_x64__qmba6cd70vzyy [2024-02-27] (ASUSTeK COMPUTER INC.)
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1100.416.0_x64__8wekyb3d8bbwe [2024-02-23] (Microsoft Corporation)
DTS Audio Processing -> C:\Program Files\WindowsApps\DTSInc.DTSAudioProcessing_1.10.15.0_x64__t5j2fzbtdg37r [2024-01-05] (DTS, Inc.)
GlideX -> C:\Program Files\WindowsApps\B9ECED6F.Glidex_3.1.12.0_x64__qmba6cd70vzyy [2024-02-06] (ASUSTeK COMPUTER INC.)
Microsoft.D3DMappingLayers -> C:\Program Files\WindowsApps\Microsoft.D3DMappingLayers_1.2403.1.0_x64__8wekyb3d8bbwe [2024-03-05] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\Windows\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-01-11] (Microsoft Corporation)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy [2024-02-07] (ASUSTeK COMPUTER INC.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.48.312.0_x64__dt26b99r8h8gj [2024-02-07] (Realtek Semiconductor Corp)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.19.1262.0_x64__8wekyb3d8bbwe [2024-02-01] (Microsoft Studios) [MS Ad]
Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-02-16] (Microsoft Corporation)
WinRAR -> C:\Program Files\WinRAR [2024-01-05] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-08] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-08] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-08] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-08] (Adobe Inc. -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-08] (Adobe Inc. -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-03-05] (Avast Software s.r.o. -> Gen Digital Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2022-05-07 06:24 - 2022-05-07 06:22 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-816273166-2319128817-3269457040-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{81A23F76-3EB8-4B7F-9A10-1CC573E0340C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AA19BF3C-52FE-40F0-B6C2-3F708E55F444}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B788C1BD-9FE7-49F1-900E-70D7C8023BB3}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{7BE8DA3C-E807-4D0A-B932-23218864BB12}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{A8628673-E838-472F-B324-5E13121F3018}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{36ACA950-C521-432B-8BD7-F6B175F8636F}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9C26F9E0-6B20-4FB1-BACD-AE9118E17AC8}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{311C4B43-4769-496D-95BA-7F0BFA07EF16}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F1E00D23-2927-45E4-8E19-3B9728ADF7EF}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{E9CF526F-6598-41B2-B007-3FA84A8CD995}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24033.1005.2701.7380_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8ABA25F3-A9CD-480D-9D56-233FDCC0C092}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24033.1005.2701.7380_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4EF55FE3-609D-4D52-B680-4702FD946327}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.66\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{578755DE-DB87-4B48-9817-59F3587AD6DE}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F44D92C6-14B7-49F9-8680-E34FC1D40A85}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.80\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A5C85429-BDCC-4AF1-A792-9FCB20195F44}C:\users\michal\downloads\winbox64.exe] => (Allow) C:\users\michal\downloads\winbox64.exe (SIA "Mikrotīkls" -> )
FirewallRules: [UDP Query User{42BA1C40-8C40-4E8D-BA0B-F226F6FBA4AF}C:\users\michal\downloads\winbox64.exe] => (Allow) C:\users\michal\downloads\winbox64.exe (SIA "Mikrotīkls" -> )
FirewallRules: [{3C56A28D-DAA2-43CE-8650-A82CD1FD9CC1}] => (Allow) C:\Program Files\ASUS\GlideX\GlideXService.exe (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)

==================== Restore Points =========================

06-03-2024 16:54:42 Windows Update
08-03-2024 18:00:51 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/12/2024 08:19:08 AM) (Source: Application Error) (EventID: 1000) (User: Chrostik)
Description: Názov chybujúcej aplikácie: wab.exe, verzia: 10.0.22621.1, časová značka: 0x65c50234
Názov chybujúceho modulu: KERNELBASE.dll, verzia: 10.0.22621.3155, časová značka: 0x587de32b
Kód výnimky: 0xe0434352
Odstup chyby: 0x00149542
Identifikácia chybujúceho procesu: 0x0xd4c
Čas spustenia chybujúcej aplikácie: 0x0x1da744d89843144
Cesta chybujúcej aplikácie: C:\Program Files (x86)\windows mail\wab.exe
Cesta chybujúceho modulu: C:\Windows\System32\KERNELBASE.dll
Identifikácia hlásenia: 9ad9d9ce-a823-4935-9c5d-31713441b1cb
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (03/12/2024 08:19:08 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: wab.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Runtime.InteropServices.ExternalException
at System.Windows.Forms.Clipboard.ThrowIfFailed(Int32)
at System.Windows.Forms.Clipboard.GetDataObject(Int32, Int32)
at System.Windows.Forms.Clipboard.GetDataObject()
at System.Windows.Forms.Clipboard.ContainsText(System.Windows.Forms.TextDataFormat)
at System.Windows.Forms.Clipboard.ContainsText()
at ૈ䰅䠷ꈱ㏝㯞ퟴ⸘뛩袍─莍⒢戰星㸝瞧韒㕖+䆧鈞䞌僺槻墇៳᫴㜻㢾䝩剙蘱灼략ꭒ몉맋 絩.⯔屳夾἞ꣁ헗ऀ툴㢟Ṽ◆䎳麺멷蛀ঔ╖鈷ꖥ()
at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (03/11/2024 09:38:09 PM) (Source: Application Error) (EventID: 1000) (User: Chrostik)
Description: Názov chybujúcej aplikácie: wab.exe, verzia: 10.0.22621.1, časová značka: 0x65c50234
Názov chybujúceho modulu: KERNELBASE.dll, verzia: 10.0.22621.3155, časová značka: 0x587de32b
Kód výnimky: 0xe0434352
Odstup chyby: 0x00149542
Identifikácia chybujúceho procesu: 0x0x4470
Čas spustenia chybujúcej aplikácie: 0x0x1da73e5645e4cec
Cesta chybujúcej aplikácie: C:\Program Files (x86)\windows mail\wab.exe
Cesta chybujúceho modulu: C:\Windows\System32\KERNELBASE.dll
Identifikácia hlásenia: 95592c6e-a9ae-4a93-a48b-e668f5ffc4e6
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (03/11/2024 09:38:08 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: wab.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Runtime.InteropServices.ExternalException
at System.Windows.Forms.Clipboard.ThrowIfFailed(Int32)
at System.Windows.Forms.Clipboard.GetDataObject(Int32, Int32)
at System.Windows.Forms.Clipboard.GetDataObject()
at System.Windows.Forms.Clipboard.ContainsText(System.Windows.Forms.TextDataFormat)
at System.Windows.Forms.Clipboard.ContainsText()
at ૈ䰅䠷ꈱ㏝㯞ퟴ⸘뛩袍─莍⒢戰星㸝瞧韒㕖+䆧鈞䞌僺槻墇៳᫴㜻㢾䝩剙蘱灼략ꭒ몉맋 絩.⯔屳夾἞ꣁ헗ऀ툴㢟Ṽ◆䎳麺멷蛀ঔ╖鈷ꖥ()
at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (03/11/2024 06:19:55 PM) (Source: Microsoft Security Client) (EventID: 3002) (User: )
Description: Event-ID 3002

Error: (03/11/2024 06:19:55 PM) (Source: Microsoft Security Client) (EventID: 2002) (User: )
Description: Event-ID 2002

Error: (03/11/2024 06:19:55 PM) (Source: Microsoft Security Client) (EventID: 2003) (User: )
Description: Event-ID 2003

Error: (03/11/2024 05:14:39 PM) (Source: Application Error) (EventID: 1000) (User: Chrostik)
Description: Názov chybujúcej aplikácie: wab.exe, verzia: 10.0.22621.1, časová značka: 0x65c50234
Názov chybujúceho modulu: KERNELBASE.dll, verzia: 10.0.22621.3155, časová značka: 0x587de32b
Kód výnimky: 0xe0434352
Odstup chyby: 0x00149542
Identifikácia chybujúceho procesu: 0x0x43c8
Čas spustenia chybujúcej aplikácie: 0x0x1da73c93471d9dd
Cesta chybujúcej aplikácie: C:\Program Files (x86)\windows mail\wab.exe
Cesta chybujúceho modulu: C:\Windows\System32\KERNELBASE.dll
Identifikácia hlásenia: 06623b8b-faac-46b7-8313-b9e18fc4616c
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (03/12/2024 08:20:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Služba Google Update (gupdate) zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (03/12/2024 08:20:18 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Služba Google Update (gupdate) bol dosiahnutý časový limit (30000 ms).

Error: (03/12/2024 07:53:28 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {102a296e-c858-4efc-82ac-a3ed5158a1aa}, had event 74

Error: (03/11/2024 07:54:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Služba Google Update (gupdate) zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (03/11/2024 07:54:39 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Služba Google Update (gupdate) bol dosiahnutý časový limit (30000 ms).

Error: (03/11/2024 07:52:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Host Network Service zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (03/11/2024 06:03:27 PM) (Source: DCOM) (EventID: 10000) (User: Chrostik)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (03/11/2024 04:30:55 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {102a296e-c858-4efc-82ac-a3ed5158a1aa}, had event 74


CodeIntegrity:
===============
Date: 2024-03-12 08:25:18
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2024-03-12 08:19:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2024-03-12 08:18:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends International, LLC. X1505ZA.309 03/15/2023
Motherboard: ASUSTeK COMPUTER INC. X1505ZA
Processor: 12th Gen Intel(R) Core(TM) i5-1235U
Percentage of memory in use: 39%
Total physical RAM: 16077.93 MB
Available physical RAM: 9801.91 MB
Total Virtual: 17101.93 MB
Available Virtual: 10411.27 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:475.49 GB) (Free:308.76 GB) (Model: NVMe Micron_2400_MTFDKBA512QFM) NTFS

\\?\Volume{c39ceeba-a7ae-486c-afef-50a792ce91ea}\ (RECOVERY) (Fixed) (Total:0.93 GB) (Free:0.07 GB) NTFS
\\?\Volume{b9dffcfe-782f-4fae-b170-b67c2e2e978c}\ (MYASUS) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
\\?\Volume{0c4c20c6-0273-4438-9b43-02652bc963d8}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 9FA6E338)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Zdravím!
Některé AV jsou paranoidní. Pochopil jste, že pro použití FRST je nutno AV vypnout. Spusťte nejdřív tento sken :

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Chrostik]

# -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-03-04.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-12-2024
# Duration: 00:00:02
# OS: Windows 11 (Build 22631.3155)
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1420 octets] - [12/03/2024 09:18:33]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
at ૈ䰅䠷ꈱ㏝㯞ퟴ⸘뛩袍─莍⒢戰星㸝瞧韒㕖+䆧鈞䞌僺槻墇៳᫴㜻㢾䝩剙蘱灼략ꭒ몉맋 絩.⯔屳夾἞ꣁ헗ऀ툴㢟Ṽ◆䎳麺멷蛀ঔ╖鈷ꖥ()
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-816273166-2319128817-3269457040-1001\...\Run: [Folkesygdommenes] => c:\windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe [423424 2024-02-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-816273166-2319128817-3269457040-1001\Environment: [Anomali220] powershell.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
U1 aswbdisk; no ImagePath

EmptyTemp:
End

Uložte do C:\Users\Michal\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Chrostik]

Fix result of Farbar Recovery Scan Tool (x64) Version: 11.03.2024
Ran by Michal (12-03-2024 13:13:09) Run:1
Running from C:\Users\Michal\Downloads
Loaded Profiles: Michal
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
at ૈ䰅䠷ꈱ㏝㯞ퟴ⸘뛩袍─莍⒢戰星㸝瞧韒㕖+䆧鈞䞌僺槻墇៳᫴㜻㢾䝩剙蘱灼략ꭒ몉맋 絩.⯔屳夾἞ꣁ헗ऀ툴㢟Ṽ◆䎳麺멷蛀ঔ╖鈷ꖥ()
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-816273166-2319128817-3269457040-1001\...\Run: [Folkesygdommenes] => c:\windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe [423424 2024-02-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-816273166-2319128817-3269457040-1001\Environment: [Anomali220] powershell.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
U1 aswbdisk; no ImagePath

EmptyTemp:
End
*****************

Processes closed successfully.
at ૈ䰅䠷ꈱ㏝㯞ퟴ⸘뛩袍─莍⒢戰星㸝瞧韒㕖+䆧鈞䞌僺槻墇៳᫴㜻㢾䝩剙蘱灼략ꭒ몉맋 絩.⯔屳夾἞ꣁ헗ऀ툴㢟Ṽ◆䎳麺멷蛀ঔ╖鈷ꖥ() => Error: No automatic fix found for this entry.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKU\S-1-5-21-816273166-2319128817-3269457040-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Folkesygdommenes" => removed successfully
"HKU\S-1-5-21-816273166-2319128817-3269457040-1001\Environment\\Anomali220" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 42090185 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 3561190 B
Edge => 0 B
Chrome => 63708581 B
Firefox => 1346652573 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 680050 B
NetworkService => 680050 B
Michal => 11896290 B

RecycleBin => 171486 B
EmptyTemp: => 1.4 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 12-03-2024 13:16:09)


Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected

==== End of Fixlog 13:16:09 ====

[Rudy]

Smazáno, PC by již měl být čistý.

[Chrostik]

Super, dakujem krasne za pomoc

[Rudy]

Nemáte zač!