VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Kontrola logu

https://forum.viry.cz:443/viewtopic.php?t=159718

Stránka 1 z 1

Kontrola logu

Napsal: 22 črc 2024 13:50
od mill
Dobrý deň,
prosím o kontrolu logu FRST.
Notebook už trochu spomaľuje, tak neviem či sa niečo nedeje.
A tiež po dokončení FRST mi AVG napísalo že FRST64.exe bol presunutý do karantény pretože bol napadnutý IDP.Generic, tak nieviem či je to teraz normálne.
Ďakujem.
Prikladám TXT a adition:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21.07.2024
Ran by Asus (administrator) on LAPTOP-3MOTFP9C (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop K3502ZA_K3502ZA) (22-07-2024 14:44:36)
Running from C:\Users\Asus\Desktop\FRST64.exe
Loaded Profiles: Asus
Platform: Microsoft Windows 11 Home Version 23H2 22631.3880 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy\ModuleDll\HWSettings\AsusOLEDShifter.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSOptimization\AsusOSD.exe
(AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe
(C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertReunion.exe
(C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUI.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertUserUI.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(drivers\Intel\ICPS\IDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\Intel\ICPS\IDBWM.exe
(drivers\Intel\ICPS\IntelConnectService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\Intel\ICPS\IntelConnect.exe
(DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\AsusAppService\AsusAppService.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\ProgramData\ASUS\AsusSurvey\AsusSurvey.exe
(DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_981643a3a0403bb6\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_981643a3a0403bb6\ipf_helper.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Program Files\ASUS\GlideX\GlideXRemote\GlideXRemoteService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\GlideX\GlideXNear\GlideXNearService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\GlideX\GlideXService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\GlideX\GlideXServiceExt.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSystemAnalysis\AsusSystemAnalysis.exe <2>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_3f40b95d353a9eb5\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_e769ee9bce5bb697\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_07bea76bdbdaf3eb\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a6198784ead14106\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_981643a3a0403bb6\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_ab7d4ea1d12c01d4\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\Intel\ICPS\IntelAnalyticsService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\Intel\ICPS\IntelConnectivityService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_fa98a0d039ca4663\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\Intel\ICPS\IDBWMService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\Intel\ICPS\IntelConnectService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> wondershare) C:\ProgramData\Wondershare\wsServices\WsidService.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2428.8.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.16300.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5349479f7c9fe8a6\RtkAudUService64.exe <3>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [464320 2024-07-10] (AVG Technologies USA, LLC -> Gen Digital Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919200 2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919200 2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3540662351-1736542185-4018234834-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919200 2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3540662351-1736542185-4018234834-1001\...\Run: [MicrosoftEdgeAutoLaunch_E27E50BD5633453D54C19716A813DFE6] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon TS3300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDG3.DLL [509952 2019-08-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3300 series: C:\WINDOWS\system32\CNMLMG3.DLL [1338368 2019-08-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\PDF Print Monitor BZ101: C:\Program Files\Common Files\STORMWARE\PDF Printer\Ports\STORMWARE\bzpdf.dll [210944 2013-10-04] (Bullzip) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.182\Installer\chrmstp.exe [2024-07-18] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1A31D018-1682-4677-99F2-004867CC57A7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {337E3AAB-2D4E-4397-9E2E-E07B0E67E79C} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSOptimization\AsusHotkey.exe [324560 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {E687FF5C-B5B8-4984-B13D-4371DEC36930} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSoftwareManager\AsusUpdateChecker.exe [792296 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {60C4AD1B-C18E-491B-B6A8-510E92DD65C1} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5097936 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {288BCA2D-552A-4F27-904E-56B719147C4F} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5131704 2024-07-10] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {B1D99936-8E9B-46D7-8977-015875284740} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [8027576 2024-06-20] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {44631559-F615-4650-B73E-B4ED6C71C6D7} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2181560 2023-08-02] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {95A28637-22FA-458C-B4EF-2CEB1E75DD55} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (No File)
Task: {44A282AE-05E9-4CA8-B072-73DDB0A35B93} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{01D184CB-EF21-4E75-B79A-6A07987E40EA} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {7F4B18C7-F17F-44B7-AAA9-2EF99BFEC5DF} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64472 2024-06-19] (HP Inc. -> HP Inc.)
Task: {35AA5380-2926-472E-A5A7-E60437DF116A} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64472 2024-06-19] (HP Inc. -> HP Inc.)
Task: {FEBA0FAA-B5D7-49B4-AFAE-BBC80097F556} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {3374DAFC-B708-48A1-A8D5-E602E5436243} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {B62269E0-1A95-464A-9DD7-BD91668407D5} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {649887FE-C999-45F1-8905-5D504341C804} - System32\Tasks\McAfeeTsk\OOBEUpgrader => C:\Program Files\McAfee\MSC\OOBE_Upgrader.exe /Run (No File)
Task: {EEEAD0FC-40D4-4D5F-9609-851968D537FE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {CFA579FC-6D78-4677-9F44-D17A7B89B564} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {00ABBFF3-E057-4D57-9894-DE635DF3D382} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309936 2024-07-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {60964DB8-B069-4948-9C6C-17DF1A6B0F28} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309936 2024-07-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA8A8158-AF97-4E66-B710-8E2582F31077} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [169408 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6C945C1-DF47-42AC-982D-9A581240CA3D} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\WINDOWS\system32\rundll32.exe [90112 2024-07-10] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {DD474368-2404-404F-9C2D-6B6EA7C4A438} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209056 2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC67AD1A-35B0-4809-8EF3-0EF0ABE2434E} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3540662351-1736542185-4018234834-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209056 2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {EFD90DD7-3677-4548-BC8C-AC19D0866058} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-3540662351-1736542185-4018234834-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2024-04-24] (Microsoft Windows -> Microsoft Corporation)
Task: {99827A7C-388F-4304-9899-FC4DDBDFF435} - System32\Tasks\Remove AdwCleaner Application => C:\WINDOWS\system32\CMD.EXE [323584 2024-05-30] (Microsoft Windows -> Microsoft Corporation) -> /C DEL /F /Q "C:\Users\Asus\Desktop\AdwCleaner.exe"
Task: {79B829BB-8A1D-4EFB-9227-1A2CD8BAC5D9} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5349479f7c9fe8a6\RtkAudUService64.exe [1951648 2023-12-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{68d4e4e2-4ff5-4bbf-9ad2-8a542dd36a3b}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{68d4e4e2-4ff5-4bbf-9ad2-8a542dd36a3b}\7416C6168797021453233702537464137373: [DhcpNameServer] 192.168.204.90
Tcpip\..\Interfaces\{68d4e4e2-4ff5-4bbf-9ad2-8a542dd36a3b}\7416C6168797023523330224232363: [DhcpNameServer] 192.168.139.91
Tcpip\..\Interfaces\{68d4e4e2-4ff5-4bbf-9ad2-8a542dd36a3b}\A54554D2155553730515: [DhcpNameServer] 192.168.1.1 195.146.128.62

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-22]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
Edge Extension: (Edge relevant text changes) - C:\Users\Asus\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default [2024-07-22]
CHR StartupUrls: Default -> "hxxps://www.google.sk/"
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-06]
CHR HKU\S-1-5-21-3540662351-1736542185-4018234834-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\AsusAppService\AsusAppService.exe [1199464 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSOptimization\AsusOptimization.exe [558032 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusScreenXpertHostService; C:\Program Files\ASUS\AsusScreenXpert\AsusScreenXpertHostService.exe [1781112 2024-05-31] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSoftwareManager\AsusSoftwareManager.exe [1377632 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSwitch\AsusSwitch.exe [650704 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5097936 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [865744 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [802744 2024-07-10] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1239992 2024-07-10] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9077176 2024-07-10] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2022-07-14] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14023752 2024-06-26] (Microsoft Corporation -> Microsoft Corporation)
R2 DFWSIDService; C:\ProgramData\Wondershare\wsServices\WsidService.exe [3963120 2024-01-30] (Wondershare Technology Group Co.,Ltd -> wondershare)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_3f40b95d353a9eb5\ipfsvc.exe [544952 2022-01-20] (Intel Corporation -> Intel Corporation)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [44056 2024-06-20] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [292888 2024-06-20] (Intel Corporation -> Intel)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [434000 2023-02-22] (DTS, Inc. -> DTS Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncHelper.exe [3519392 2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
R2 GlideXNearService; C:\Program Files\ASUS\GlideX\GlideXNear\GlideXNearService.exe [1753464 2024-06-24] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 GlideXRemoteService; C:\Program Files\ASUS\GlideX\GlideXRemote\GlideXRemoteService.exe [488312 2024-06-21] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
R2 GlideXService; C:\Program Files\ASUS\GlideX\GlideXService.exe [2707832 2024-06-24] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 GlideXServiceExt; C:\Program Files\ASUS\GlideX\GlideXServiceExt.exe [322424 2024-06-24] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-06-19] (HP Inc. -> HP Inc.)
R2 IDBWM; C:\WINDOWS\System32\drivers\Intel\ICPS\IDBWMService.exe [74888 2022-01-04] (Intel Corporation -> Intel® Corporation)
R2 Intel Analytics Service; C:\WINDOWS\System32\drivers\Intel\ICPS\IntelAnalyticsService.exe [1996992 2022-01-04] (Intel Corporation -> Intel)
R2 Intel Connectivity Service; C:\WINDOWS\System32\drivers\Intel\ICPS\IntelConnectivityService.exe [2359944 2022-01-04] (Intel Corporation -> Intel)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_9783a0a827c7c2a2\lib\PlatformLicenseManagerService.exe [741488 2023-09-04] (Intel Corporation -> Intel(R) Corporation)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_fa98a0d039ca4663\AS\IAS\IntelAudioService.exe [530520 2023-11-08] (Intel Corporation -> Intel)
R2 IntelConnectService; C:\WINDOWS\System32\drivers\Intel\ICPS\IntelConnectService.exe [74888 2022-01-04] (Intel Corporation -> Intel® Corporation)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_981643a3a0403bb6\ipf_uf.exe [2736792 2022-01-20] (Intel Corporation -> Intel Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.126.0623.0001\OneDriveUpdaterService.exe [3860400 2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ElevationService; C:\ProgramData\Wondershare\wsServices\ElevationService.exe [X]
S2 WirelessBackupService; C:\Program Files (x86)\Wondershare\drfone\Addins\Recovery\WirelessBackupService.exe [X]
S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [552960 2022-05-07] (Microsoft Corporation) [File not signed]
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_93fc123351137141\AsusPTPFilter.sys [155568 2023-01-05] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSystemAnalysis\AsusSAIO.sys [49320 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSOptimization\AsusWmiAcpi.sys [49064 2024-06-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [20544 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [229952 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [380992 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [292936 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [84544 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [27760 2024-02-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [28736 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [271944 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [548928 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [97856 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [69184 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [942536 2024-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [1195992 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [203736 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [306648 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-09-29] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-09-29] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_5559a053c66c287c\iaLPSS2_GPIO2_ADL.sys [139928 2021-12-23] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_1c06c20c35bb4d6d\iaLPSS2_I2C_ADL.sys [209552 2021-12-23] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1587944 2021-12-15] (Intel Corporation -> Intel Corporation)
R3 INTCCoSvc; C:\WINDOWS\System32\drivers\Intel\ICPS\IntcCo11X64.sys [179904 2022-01-04] (Intel Corporation -> Intel Corporation)
R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_cdadcbaa7b661890\IntcUSB.sys [923224 2023-11-08] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_19ceb7ce67a7cf8b\gna.sys [87208 2021-09-23] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_fd309261dbf4456e\ipf_acpi.sys [85648 2022-01-20] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_981643a3a0403bb6\ipf_cpu.sys [79512 2022-01-20] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_981643a3a0403bb6\ipf_lf.sys [431248 2022-01-20] (Intel Corporation -> Intel Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-07-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-07-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-09] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-07-22 14:44 - 2024-07-22 14:44 - 000033668 _____ C:\Users\Asus\Desktop\FRST.txt
2024-07-22 14:43 - 2024-07-22 14:43 - 002396672 _____ (Farbar) C:\Users\Asus\Desktop\FRST64.exe
2024-07-22 14:31 - 2024-07-22 14:31 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-11 07:29 - 2024-07-11 07:29 - 000068044 _____ C:\WINDOWS\system32\perfh01B.dat
2024-07-11 07:29 - 2024-07-11 07:29 - 000017740 _____ C:\WINDOWS\system32\perfc01B.dat
2024-07-11 07:25 - 2024-07-10 03:16 - 000314816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-07-05 12:39 - 2024-07-05 12:39 - 000000000 ____D C:\Users\Asus\AppData\Local\PDF Writer
2024-06-28 08:15 - 2024-06-28 08:33 - 000013970 _____ C:\Users\Asus\Desktop\Offer.xlsx
2024-06-28 08:12 - 2024-06-28 08:13 - 000013730 _____ C:\Users\Asus\Desktop\Request Honeywell 250624.xlsx
2024-06-27 08:58 - 2024-06-27 08:58 - 000011042 _____ C:\Users\Asus\Desktop\zoznam_AWISO.xlsx
2024-06-26 10:34 - 2024-06-26 10:34 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-06-26 10:34 - 2024-06-26 10:34 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-06-26 09:52 - 2024-06-26 09:52 - 000000000 ____D C:\Program Files (x86)\Intel

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-07-22 14:44 - 2023-08-04 12:18 - 000000000 ____D C:\FRST
2024-07-22 14:43 - 2022-09-29 18:42 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2024-07-22 14:43 - 2022-07-07 04:19 - 000000000 ____D C:\Users\Asus\AppData\Local\D3DSCache
2024-07-22 14:41 - 2022-09-29 18:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-22 14:41 - 2022-07-14 14:16 - 000000000 ____D C:\ProgramData\AVG
2024-07-22 14:41 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-22 14:41 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-07-22 14:41 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-22 14:40 - 2022-07-10 16:01 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-07-22 14:40 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-07-22 14:40 - 2021-10-04 23:52 - 000012288 ___SH C:\DumpStack.log.tmp
2024-07-22 14:38 - 2022-07-11 15:55 - 000000000 ___RD C:\Users\Asus\Downloads\B9ECED6F.ASUSPCAssistant_qmba6cd70vzyy!App
2024-07-22 14:38 - 2022-07-10 13:50 - 000000000 ____D C:\Users\Asus\Documents\Súbory programu Outlook
2024-07-22 14:38 - 2022-07-10 12:07 - 000000000 ____D C:\Users\Asus\AppData\Roaming\Microsoft\Office
2024-07-22 14:38 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-07-22 14:35 - 2023-10-01 12:14 - 000000000 ____D C:\ProgramData\WinZip
2024-07-22 14:35 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-22 14:35 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-22 14:33 - 2022-08-21 19:16 - 000000000 ____D C:\Users\Asus\AppData\Local\CrashDumps
2024-07-22 14:29 - 2022-07-07 04:19 - 000000000 ____D C:\Users\Asus\AppData\Local\Packages
2024-07-22 13:48 - 2022-09-29 18:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-22 10:02 - 2023-04-12 12:27 - 006393841 _____ C:\Users\Asus\Desktop\AutomaNet inventory file.xlsx
2024-07-21 17:40 - 2022-07-10 19:26 - 000000000 ____D C:\Faktúry
2024-07-19 19:16 - 2023-01-16 08:01 - 000002246 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-07-19 19:16 - 2021-10-04 23:52 - 000002408 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-19 14:34 - 2022-07-11 10:09 - 000000000 ____D C:\Users\Asus\AppData\Roaming\Microsoft\Excel
2024-07-19 08:49 - 2022-07-10 12:07 - 000000000 ____D C:\Users\Asus\AppData\Roaming\Microsoft\Word
2024-07-18 14:36 - 2022-07-10 19:25 - 000000000 ____D C:\CD_PL
2024-07-18 14:04 - 2022-07-06 14:53 - 000002221 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-07-18 14:04 - 2022-07-06 14:53 - 000002180 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-07-12 16:07 - 2022-07-10 12:04 - 000000000 ____D C:\Program Files\Microsoft Office
2024-07-12 07:25 - 2022-09-29 18:42 - 000003630 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-12 07:25 - 2022-09-29 18:42 - 000003506 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-11 07:40 - 2022-09-29 18:42 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2024-07-11 07:40 - 2022-09-29 18:42 - 000003756 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3
2024-07-11 07:29 - 2022-09-29 18:43 - 000915924 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-11 07:25 - 2022-09-29 18:42 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3540662351-1736542185-4018234834-1001
2024-07-11 07:25 - 2022-09-29 18:42 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-07-11 07:25 - 2022-09-29 18:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-07-11 07:25 - 2022-09-29 18:40 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2024-07-11 07:25 - 2022-07-14 14:18 - 000942536 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2024-07-11 07:25 - 2022-07-10 12:06 - 000002082 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-11 07:25 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-10 03:31 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-07-10 03:16 - 2022-07-14 14:18 - 001195992 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgSP.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000548928 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000380992 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000306648 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000292936 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000271944 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000229952 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000097856 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000084544 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000069184 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000028736 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2024-07-10 03:16 - 2022-07-14 14:18 - 000020544 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2024-07-10 03:15 - 2022-09-29 18:40 - 000473928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-10 03:14 - 2023-09-27 18:50 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-07-10 03:14 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-10 03:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-10 03:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-07-10 03:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-07-10 03:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-07-10 03:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-10 00:31 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-10 00:13 - 2022-07-07 04:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-07-10 00:10 - 2022-07-07 04:25 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-07-03 07:08 - 2024-01-07 15:08 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-07-01 07:38 - 2024-04-21 17:21 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-07-01 07:38 - 2024-04-21 17:21 - 000002023 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-06-30 17:44 - 2022-09-29 18:42 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-06-28 08:58 - 2021-10-04 23:54 - 000000000 ____D C:\ProgramData\Packages
2024-06-26 17:06 - 2023-12-05 17:07 - 000000000 ____D C:\WINDOWS\InboxApps
2024-06-26 17:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-06-26 17:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-06-26 17:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-06-26 17:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-06-26 17:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-06-26 17:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-06-26 17:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-06-26 17:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-06-26 10:34 - 2022-09-29 18:41 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-06-26 09:52 - 2023-05-11 18:43 - 000001472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2024-06-26 09:52 - 2022-07-06 15:15 - 000000000 ____D C:\ProgramData\Package Cache
2024-06-24 18:41 - 2023-08-18 13:02 - 000000000 ____D C:\Schneider pricelist 2023 MAY_KEMERI_CUSTOMER

==================== Files in the root of some directories ========

2024-05-02 11:26 - 2024-05-02 11:26 - 000383494 _____ () C:\Users\Asus\AppData\Local\ars.cache
2024-05-02 11:27 - 2024-05-02 11:27 - 001082163 _____ () C:\Users\Asus\AppData\Local\census.cache
2024-05-02 11:20 - 2024-05-02 11:20 - 000000036 _____ () C:\Users\Asus\AppData\Local\housecall.guid.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21.07.2024
Ran by Asus (22-07-2024 14:45:34)
Running from C:\Users\Asus\Desktop
Microsoft Windows 11 Home Version 23H2 22631.3880 (X64) (2022-09-29 16:42:47)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3540662351-1736542185-4018234834-500 - Administrator - Disabled)
Asus (S-1-5-21-3540662351-1736542185-4018234834-1001 - Administrator - Enabled) => C:\Users\Asus
DefaultAccount (S-1-5-21-3540662351-1736542185-4018234834-503 - Limited - Disabled)
Guest (S-1-5-21-3540662351-1736542185-4018234834-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3540662351-1736542185-4018234834-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
7-Zip 23.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2300-000001000000}) (Version: 23.00.00.0 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 24.002.20895 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Apple Mobile Device Support (HKLM\...\{F9CEF01A-3907-4614-824F-CF5D3E4675EF}) (Version: 14.1.0.35 - Apple Inc.)
AVG AntiVirus Free (HKLM\...\AVG Antivirus) (Version: 24.6.9241.1898 - Gen Digital Inc.)
AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1693.6 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Documentation Manager (HKLM\...\{D1259A1F-3E93-452F-8F61-9F63F41C91D8}) (Version: 22.130.0.5 - Intel Corporation) Hidden
Elcomm (HKLM-x32\...\Elcomm) (Version: - )
GlideX Service Installer (HKLM\...\{A06BDD76-D95C-4AC7-A0DA-73971F366D9B}) (Version: 3.3.1.0 - ASUSTeK COMPUTER INC.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 126.0.6478.182 - Google LLC)
Intel Driver && Support Assistant (HKLM-x32\...\{A3A258AC-BF95-41DA-8693-807E4A5BF10D}) (Version: 24.3.26.8 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{318C30A1-C7AF-414E-890F-6345E6E0FD33}) (Version: 2.4.09084 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{0703311b-31d5-4c17-9668-c48dee4b7749}) (Version: 3.11.1.0 - Intel) Hidden
Intel® Driver & Support Assistant (HKLM-x32\...\{D162161F-8200-475E-A86A-693E7C951444}) (Version: 24.3.26.8 - Intel)
Intel® Software Installer (HKLM-x32\...\{85cb0eee-e264-4335-ac48-f589f2d69657}) (Version: 22.130.0.5 - Intel Corporation) Hidden
MetaTrader 4 IC Markets (HKLM-x32\...\MetaTrader 4 IC Markets) (Version: 4.00 - MetaQuotes Ltd.)
Microsoft .NET Core Host - 3.1.28 (x64) (HKLM\...\{26ECE92F-518E-40AF-9108-7B7B444A46DE}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.28 (x64) (HKLM\...\{CDEA72F4-1367-4E0A-AC5F-0EBAF7C6825A}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM\...\{3691148D-EF42-4812-8956-AE11FC413B8D}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM-x32\...\{231e3b76-4d0f-4e60-9d69-f11c9c448630}) (Version: 3.1.28.31513 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 126.0.2592.113 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 126.0.2592.113 - Microsoft Corporation)
Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - sk-sk (HKLM\...\ProPlus2021Retail - sk-sk) (Version: 16.0.17726.20160 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.126.0623.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17628.20110 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17726.20108 - Microsoft Corporation) Hidden
SenderMatic emailer 3 (HKLM-x32\...\{8047C598-E776-4794-87A3-529E36C0CF53}) (Version: 3.1.4801.0 - UtilStudio) Hidden
SenderMatic emailer 3 (HKLM-x32\...\{f1f19ab0-5446-4151-8493-08a5559f9eb1}) (Version: 3.1.4801.0 - UtilStudio)
STORMWARE PDF Printer 10.1.0.1871 (HKLM\...\STORMWARE PDF Printer_is1) (Version: 10.1.0.1871 - STORMWARE)
STORMWARE POHODA SK Standard (HKLM-x32\...\{0B4941C5-BDE2-44DF-B890-F1801129B5B5}) (Version: 12000.158 - STORMWARE)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Windows Driver Package - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Windows Driver Package - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Windows Driver Package - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-16] ()
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt [2024-06-16] (INTEL CORP) [Startup Task]
B9ECED6F.ScreenPadMaster -> C:\Program Files\WindowsApps\B9ECED6F.ScreenPadMaster_3.1.37.0_x64__qmba6cd70vzyy [2024-06-17] (ASUSTeK COMPUTER INC.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2024-06-10] (Disney)
DTS Audio Processing -> C:\Program Files\WindowsApps\DTSInc.DTSAudioProcessing_1.10.15.0_x64__t5j2fzbtdg37r [2023-08-30] (DTS, Inc.)
Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.15005.0_x64__8wekyb3d8bbwe [2024-07-17] (Microsoft Corporation) [Startup Task]
GlideX -> C:\Program Files\WindowsApps\B9ECED6F.Glidex_3.3.2.0_x64__qmba6cd70vzyy [2024-07-15] (ASUSTeK COMPUTER INC.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_154.2.1075.0_x64__v10z8vjag6ke6 [2024-06-27] (HP Inc.)
Intel® Connectivity Performance Suite -> C:\Program Files\WindowsApps\AppUp.IntelConnectivityPerformanceSuite_1.1021.1221.0_x64__8j3eq9eme6ctt [2022-07-07] (INTEL CORP) [Startup Task]
IrfanView -> C:\Program Files\WindowsApps\30067IrfanSkiljanIrfanVie.IrfanView_4.6.7.0_x86__psgec73n2n7ne [2024-04-17] (Irfan Skiljan (IrfanView))
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-15] (Microsoft Corp.)
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-07-21] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24061.40.0_x64__cw5n1h2txyewy [2024-07-11] (Microsoft Windows) [Startup Task]
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy [2024-07-03] (ASUSTeK COMPUTER INC.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.49.318.0_x64__dt26b99r8h8gj [2024-03-15] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0 [2024-07-17] (Spotify AB) [Startup Task]
Tile -> C:\Program Files\WindowsApps\Tile.TileWindowsApplication_3.3.27.0_x64__91frwjk5eeyew [2022-10-15] (Tile) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2428.8.0_x64__cv1g1gvanyjgm [2024-07-19] (WhatsApp Inc.) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-11] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-10] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-07-10] (Microsoft Windows)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3540662351-1736542185-4018234834-1001_Classes\CLSID\{04271989-C4D2-E578-45A6-3CA3566CAC42} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3540662351-1736542185-4018234834-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3540662351-1736542185-4018234834-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3540662351-1736542185-4018234834-1001_Classes\CLSID\{92a10339-c580-dfd8-94c3-030311ba18f4}\localserver32 -> C:\ProgramData\ASUS\AsusSurvey\AsusSurvey.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-07-10] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-07-10] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-05-07] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-07-10] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-07-10] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-05-07] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncShell64.dll [2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-05-07] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-07-10] (AVG Technologies USA, LLC -> Gen Digital Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-07-10 17:42 - 2013-10-04 09:42 - 000210944 _____ (Bullzip) [File not signed] C:\Program Files\Common Files\STORMWARE\PDF Printer\Ports\STORMWARE\bzpdf.dll
2024-02-20 11:13 - 2023-09-12 11:52 - 008382976 _____ (wondershare) [File not signed] C:\ProgramData\Wondershare\wsServices\WsidClient.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-06-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-06-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-06-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-06-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-07-01] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2021-06-05 14:08 - 2021-06-05 14:08 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3540662351-1736542185-4018234834-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Intel(R) Wi-Fi 6E AX211 160MHz -> Netwtw12.sys

netvsc_vfpp: Microsoft NetVsc Failover VF Protocol

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D7016017-0569-4D77-9098-362BC0268999}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)
FirewallRules: [{71C7AC8B-8C9E-4947-9901-67DDD2949615}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)
FirewallRules: [{0D3C5027-2A1C-4B3C-8079-763A31A01302}] => (Allow) LPort=21346
FirewallRules: [{325C6D1D-52E2-4CE3-BC98-61FA6F70ABB4}] => (Allow) LPort=21346
FirewallRules: [{83F1FC66-5A64-4A5A-A01E-8E2CD02603EA}] => (Allow) LPort=68
FirewallRules: [{014E7522-BA75-4C4A-B04F-D4B16B0EF76F}] => (Allow) LPort=68
FirewallRules: [{FF2C51EE-5F36-45A1-B520-EBB7BA3B5FA0}] => (Allow) LPort=67
FirewallRules: [{5F27666F-4A04-430A-9FB6-1D37AA4D966E}] => (Allow) LPort=67
FirewallRules: [{386EA214-DD8B-48B1-8FFF-3C15DD44ADDF}] => (Allow) LPort=21735
FirewallRules: [{D8800268-2F78-4E93-AD24-B50AF5D8F442}] => (Allow) LPort=21735
FirewallRules: [{452A4115-FA0A-404F-9C03-8C0BE82E13FF}] => (Allow) LPort=9876
FirewallRules: [{94BE30C6-AD8A-4744-9031-73BD84D351E4}] => (Allow) LPort=9876
FirewallRules: [{7F00DBCD-A27C-4084-9D1F-3A90B66476D8}] => (Allow) LPort=31637
FirewallRules: [{3F44A98A-800E-472F-A6F2-353B2ABF89E1}] => (Allow) LPort=31637
FirewallRules: [{C69E5174-96DD-495C-AE36-884DF82AFB84}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid.exe => No File
FirewallRules: [{6AF56CC5-6067-42CC-B443-D5EC16D18E08}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid.exe => No File
FirewallRules: [{FF818C2F-C87D-4E26-9666-4F8142F8124F}] => (Allow) C:\Users\Asus\Downloads\win-ts3300-1_4-n_mcd\win\MSetup64.exe => No File
FirewallRules: [{B79808BA-2F67-45FC-8EA9-25E9C591AB33}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{78469A40-4E37-4D7C-86A0-DA01F22A8525}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{832FF0E8-AE7D-4296-9A06-FEF71695790E}] => (Allow) C:\Program Files\MetaTrader 5 IC Markets (SC)\metatester64.exe => No File
FirewallRules: [{BBCC1A84-D6D1-4ACB-9033-0BDBDA0E5344}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B6E98419-CBC7-4957-8865-AA86BCA61407}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BC3CE4F0-27CB-46C3-82AA-E1AEF57442AA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7AB7122A-530D-469A-98F8-87B1658875CB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3946B401-0A49-412E-A90F-D7EACB49A2E1}] => (Allow) C:\program files (x86)\wondershare\drfone\drfonetoolkit.exe => No File
FirewallRules: [{20CBEA2F-ABDA-43AE-A8F7-4E8E202B1A25}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid (1).exe => No File
FirewallRules: [{7CB86967-86A1-454D-A038-A8A21DF9E0AC}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid (1).exe => No File
FirewallRules: [{0F834CD3-A46E-42A4-A559-B63B8D45A8DB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C105DAAA-CDE9-4C09-8658-EAAC09B0F5B9}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{58EC8B3F-CE6C-4BED-8639-B7187A08AC81}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9C7A6186-2F88-49CC-AA89-C17870EAC3AE}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{7C14A75D-4ACF-42BD-ACDF-50867F9A6398}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{AE38D608-85C9-435A-AF0D-41472EBF62F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CB8AC2A9-4811-41D8-8E5B-17F1270246E6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EDD0AD19-B388-47BF-8971-D4DB454D4B6E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0D6AE6E1-CC95-40C3-8E0D-5D5EE7AA7CC7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{979F7B22-53E3-48F0-84BC-4735E210731B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6CA8FAB5-D34C-444B-A1DD-4820FB7CCEDE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6B360C72-6394-43C9-B6F8-BAF4B1C422B3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FCDD88D4-27F9-49F9-B96B-BB39A41095DF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CC258AAE-9E69-454D-849A-E0F4B06C0ED4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D548EDF0-EA6B-4846-A4DE-EC58B19A281F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8BEEA628-9D0B-4887-BDF5-9CC7B4AAD18D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24165.1306.2986.9504_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8BAAF777-33D9-4BD8-8502-475F3947B866}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24165.1306.2986.9504_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{40D96319-15B7-4F44-B118-8D852826209D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{920D1814-B928-4590-BB54-405754E8E196}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.113\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{698D0EE6-5828-41B3-AEEE-0B6DD2B57FF7}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F6A65784-C457-4FB3-8E08-A9B49E66787E}] => (Allow) C:\Program Files\ASUS\GlideX\GlideXNear\GlideXNearService.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{DCA2EEF8-CFC4-4DAC-9AB9-32A44317256A}] => (Allow) C:\Program Files\ASUS\GlideX\GlideXService.exe (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
FirewallRules: [{0789D86A-CD08-43E2-8ABF-C255E4D51D34}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_ad7e5f4b857611df\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{4064CF12-7A16-4B64-A7CF-C3FE3CD7113E}] => (Allow) C:\Program Files\ASUS\GlideX\GlideXRemote\GlideXRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
FirewallRules: [{E9B692DD-9B77-4CFD-AF0A-7B79EA598E2A}] => (Allow) C:\Program Files\ASUS\GlideX\GlideXRemote\GlideXRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)

==================== Restore Points =========================

07-07-2024 09:46:57 Windows Update
10-07-2024 15:58:22 Windows Update
10-07-2024 15:58:33 Windows Update
13-07-2024 19:33:23 Windows Update
17-07-2024 07:10:43 Windows Update
20-07-2024 08:13:28 Windows Update
22-07-2024 14:34:52 Removed WinZip 28.0.

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================

System errors:
=============
Error: (07/22/2024 02:43:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Služba Google Update (gupdate) zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (07/22/2024 02:43:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Služba Google Update (gupdate) bol dosiahnutý časový limit (30000 ms).

Error: (07/22/2024 02:41:07 PM) (Source: Schannel) (EventID: 4113) (User: NT AUTHORITY)
Description: Platnosť certifikátu prijatého z vzdialeného servera uplynula alebo certifikát ešte nie je platný. Požiadavka na pripojenie TLS zlyhala. Priložené údaje obsahujú certifikát servera.
proces klienta SSPI AVGSvc (PID: 3888).

Error: (07/22/2024 02:41:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Wondershare InstallAssist zlyhalo kvôli nasledujúcej chybe:
The system cannot find the file specified.

Error: (07/22/2024 02:41:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby WirelessBackupService zlyhalo kvôli nasledujúcej chybe:
The system cannot find the file specified.

Error: (07/22/2024 02:41:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby ElevationService zlyhalo kvôli nasledujúcej chybe:
The system cannot find the file specified.

Error: (07/22/2024 02:38:05 PM) (Source: DCOM) (EventID: 10000) (User: LAPTOP-3MOTFP9C)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (07/22/2024 07:00:52 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {b8d55541-734e-4cd1-9431-d647ee4cf9cd}, had event 74


CodeIntegrity:
===============
Date: 2024-07-22 14:44:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2024-07-22 14:44:30
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswidsagent.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends International, LLC. K3502ZA.305 04/26/2022
Motherboard: ASUSTeK COMPUTER INC. K3502ZA
Processor: 12th Gen Intel(R) Core(TM) i7-12700H
Percentage of memory in use: 38%
Total physical RAM: 16007.39 MB
Available physical RAM: 9844.39 MB
Total Virtual: 17031.39 MB
Available Virtual: 11022.13 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:952.47 GB) (Free:790.27 GB) (Model: NVMe Micron_2450_MTFDKBA1T0TFK) NTFS

\\?\Volume{3b4edf24-e26b-496c-90ab-e6b42a4f824a}\ (RECOVERY) (Fixed) (Total:0.93 GB) (Free:0.07 GB) NTFS
\\?\Volume{c6442623-9ac6-485c-a4e5-b67ba30d280e}\ (MYASUS) (Fixed) (Total:0.19 GB) (Free:0.12 GB) FAT32
\\?\Volume{739ad729-4a89-4b23-90a3-2df394b0769d}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.19 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 304FB2EB)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Kontrola logu

Napsal: 23 črc 2024 15:16
od Rudy
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {B62269E0-1A95-464A-9DD7-BD91668407D5} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {649887FE-C999-45F1-8905-5D504341C804} - System32\Tasks\McAfeeTsk\OOBEUpgrader => C:\Program Files\McAfee\MSC\OOBE_Upgrader.exe /Run (No File)
FirewallRules: [{C69E5174-96DD-495C-AE36-884DF82AFB84}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid.exe => No File
FirewallRules: [{6AF56CC5-6067-42CC-B443-D5EC16D18E08}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid.exe => No File
FirewallRules: [{FF818C2F-C87D-4E26-9666-4F8142F8124F}] => (Allow) C:\Users\Asus\Downloads\win-ts3300-1_4-n_mcd\win\MSetup64.exe => No File
FirewallRules: [{B79808BA-2F67-45FC-8EA9-25E9C591AB33}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{78469A40-4E37-4D7C-86A0-DA01F22A8525}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{832FF0E8-AE7D-4296-9A06-FEF71695790E}] => (Allow) C:\Program Files\MetaTrader 5 IC Markets (SC)\metatester64.exe => No File
FirewallRules: [{20CBEA2F-ABDA-43AE-A8F7-4E8E202B1A25}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid (1).exe => No File
FirewallRules: [{7CB86967-86A1-454D-A038-A8A21DF9E0AC}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid (1).exe => No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte. Bez obav, sken řádně proběhl. Některé AV mohou mít výhrady k některým servisním utilitám.

Re: Kontrola logu

Napsal: 23 črc 2024 15:47
od mill
Fix result of Farbar Recovery Scan Tool (x64) Version: 21.07.2024
Ran by Asus (23-07-2024 16:40:57) Run:1
Running from C:\Users\Asus\Desktop
Loaded Profiles: Asus
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {B62269E0-1A95-464A-9DD7-BD91668407D5} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {649887FE-C999-45F1-8905-5D504341C804} - System32\Tasks\McAfeeTsk\OOBEUpgrader => C:\Program Files\McAfee\MSC\OOBE_Upgrader.exe /Run (No File)
FirewallRules: [{C69E5174-96DD-495C-AE36-884DF82AFB84}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid.exe => No File
FirewallRules: [{6AF56CC5-6067-42CC-B443-D5EC16D18E08}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid.exe => No File
FirewallRules: [{FF818C2F-C87D-4E26-9666-4F8142F8124F}] => (Allow) C:\Users\Asus\Downloads\win-ts3300-1_4-n_mcd\win\MSetup64.exe => No File
FirewallRules: [{B79808BA-2F67-45FC-8EA9-25E9C591AB33}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{78469A40-4E37-4D7C-86A0-DA01F22A8525}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{832FF0E8-AE7D-4296-9A06-FEF71695790E}] => (Allow) C:\Program Files\MetaTrader 5 IC Markets (SC)\metatester64.exe => No File
FirewallRules: [{20CBEA2F-ABDA-43AE-A8F7-4E8E202B1A25}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid (1).exe => No File
FirewallRules: [{7CB86967-86A1-454D-A038-A8A21DF9E0AC}] => (Allow) C:\Users\Asus\Downloads\4ukeyforandroid (1).exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B62269E0-1A95-464A-9DD7-BD91668407D5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B62269E0-1A95-464A-9DD7-BD91668407D5}" => removed successfully
C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{649887FE-C999-45F1-8905-5D504341C804}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{649887FE-C999-45F1-8905-5D504341C804}" => removed successfully
C:\WINDOWS\System32\Tasks\McAfeeTsk\OOBEUpgrader => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfeeTsk\OOBEUpgrader" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C69E5174-96DD-495C-AE36-884DF82AFB84}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6AF56CC5-6067-42CC-B443-D5EC16D18E08}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FF818C2F-C87D-4E26-9666-4F8142F8124F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B79808BA-2F67-45FC-8EA9-25E9C591AB33}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{78469A40-4E37-4D7C-86A0-DA01F22A8525}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{832FF0E8-AE7D-4296-9A06-FEF71695790E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{20CBEA2F-ABDA-43AE-A8F7-4E8E202B1A25}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7CB86967-86A1-454D-A038-A8A21DF9E0AC}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10738355 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 4778708 B
Edge => 0 B
Chrome => 458232344 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 19822697 B
systemprofile32 => 19822697 B
LocalService => 19826565 B
NetworkService => 19826565 B
Asus => 270911298 B

RecycleBin => 0 B
EmptyTemp: => 787.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:41:08 ====

Re: Kontrola logu

Napsal: 23 črc 2024 16:49
od Rudy
Smazáno, log by měl již být OK.

Re: Kontrola logu

Napsal: 23 črc 2024 19:06
od mill
A Malwarebyte nemusím spúšťať?

Re: Kontrola logu

Napsal: 23 črc 2024 20:11
od Rudy
Pokud se nemýlím, v PC jsou jen zbytečnosti. Malware jsem tam neviděl, Malwarebytes je antivir. Pokud PC stále nefunguje jak má, spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Kontrola logu

Napsal: 24 črc 2024 14:39
od mill
# -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-03-04.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-24-2024
# Duration: 00:00:03
# OS: Windows 11 (Build 22631.3880)
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\WinThruster

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1451 octets] - [24/07/2024 15:38:14]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Re: Kontrola logu

Napsal: 24 črc 2024 15:51
od Rudy
Byl tam jeden AdWare a byl smazán. Teď by to mělo být OK.

Re: Kontrola logu

Napsal: 24 črc 2024 16:12
od mill
Tak to je všetko? či mám ešte niečo?
Ďakujem.

Re: Kontrola logu

Napsal: 24 črc 2024 16:46
od Rudy
Pokud PC funguje, jak má, je to z mé strany vše.

Re: Kontrola logu

Napsal: 24 črc 2024 17:27
od mill
super. Ďakujem ešte raz.

Re: Kontrola logu

Napsal: 24 črc 2024 17:42
od Rudy
Nemáte zač! :-)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz