Fix result of Farbar Recovery Scan Tool (x64) Version: 29-03-2020
Ran by asus (05-04-2020 14:27:08) Run:1
Running from C:\Users\asus\Desktop
Loaded Profiles: asus (Available Profiles: asus)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CreateRestorePoint:
CloseProcesses:
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2987826816-1455516208-1627320750-1001\...\MountPoints2: {e5f99822-6350-11ea-bdb1-04d4c4e4c4f6} - "E:\.\setup.exe" 
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {11E70B29-A477-497A-B7FC-D0FD88AD6E9F} - System32\Tasks\Microsoft\Windows\Wininet\Winlogui => winlogui.exe <==== ATTENTION
Task: {16FCAC46-FBA5-4C96-912A-7B4FB3CF5D93} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {1ACD88EA-DEDC-4C62-9737-2C3BCE47EBB5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
Task: {C5B974DE-17AA-478B-883F-95182DF1E339} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\winrmsrv => winrmsrv.exe <==== ATTENTION
S2 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]
2020-04-04 16:54 - 2020-04-04 16:55 - 003480040 _____ (McAfee, Inc.) C:\Users\asus\Desktop\MCPR.exe
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: McAfee VirusScan (Enabled - Up to date) {4DE344F8-6897-65B4-CED0-82B3AF2591B4}
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
FirewallRules: [{9A9878B6-8C45-46CC-9B72-9CE6A49BE195}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_cdacbd58a24d27d4\ASUSLinkRemote\LinktoMyASUS_Agent-remote.exe No File
FirewallRules: [{6739F4CB-D9E8-4B7F-BA9A-114250E790AF}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_cdacbd58a24d27d4\ASUSLinkRemote\LinktoMyASUS_Agent-remote.exe No File
FirewallRules: [{E5500F92-855F-4899-87F3-362B7957E0E2}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_cdacbd58a24d27d4\ASUSLinkRemote\LinktoMyASUS_Agent-remote.exe No File
FirewallRules: [{0C187F94-CC18-4C45-AC32-EB66024B917C}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_cdacbd58a24d27d4\ASUSLinkRemote\LinktoMyASUS_Agent-remote.exe No File
FirewallRules: [TCP Query User{86B9F015-6E12-4F8A-81BD-1C1830523E6A}C:\program files\android\android studio1\jre\bin\java.exe] => (Allow) C:\program files\android\android studio1\jre\bin\java.exe No File
FirewallRules: [UDP Query User{0A31AEF7-1098-4EAD-B40C-E821880B4DEF}C:\program files\android\android studio1\jre\bin\java.exe] => (Allow) C:\program files\android\android studio1\jre\bin\java.exe No File
FirewallRules: [TCP Query User{C706BB9A-680A-4D24-935D-2C7DADB920AB}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{035AED66-F871-445A-A632-455D6855244B}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{BA58459C-74C6-4731-B3B4-557C248BC938}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{5AC95D6E-E6A1-499F-AE2A-7189A1D6CF9F}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{4BD03EDD-FF2C-42F3-B4DD-39A158802265}D:\games\doom.2016\doomx64.exe] => (Allow) D:\games\doom.2016\doomx64.exe No File
FirewallRules: [UDP Query User{DAE7176E-F540-4EA4-B14C-95607A55D78B}D:\games\doom.2016\doomx64.exe] => (Allow) D:\games\doom.2016\doomx64.exe No File
FirewallRules: [TCP Query User{0B176D98-AD20-4A66-BEBF-2F5DE9456524}C:\program files\android\android studio1\jre\bin\java.exe] => (Allow) C:\program files\android\android studio1\jre\bin\java.exe No File
FirewallRules: [UDP Query User{75FE936B-C026-43A0-8B17-150E458B82A4}C:\program files\android\android studio1\jre\bin\java.exe] => (Allow) C:\program files\android\android studio1\jre\bin\java.exe No File
FirewallRules: [TCP Query User{F0D86C67-C82B-43BE-B0D3-8D099E09CE6E}D:\games\doom.2016\doomx64.exe] => (Allow) D:\games\doom.2016\doomx64.exe No File
FirewallRules: [UDP Query User{32C09130-B65D-4032-95EE-521E88A0E3BB}D:\games\doom.2016\doomx64.exe] => (Allow) D:\games\doom.2016\doomx64.exe No File
FirewallRules: [{AAF3F56C-0DAF-4659-B517-9EA7DB729EA4}] => (Allow) D:\Games\Grand Theft Auto V\GTA5.exe No File
FirewallRules: [{90060D29-511B-4B8E-9AC3-030AF96EE629}] => (Allow) D:\Games\Grand Theft Auto V\GTA5.exe No File
FirewallRules: [{F2BD04F7-198B-4CD2-8ACE-BC6A4CC976FB}] => (Allow) C:\WINDOWS\system32\winrmsrv.exe No File
C:\Program Files\AVAST Software
CMD: netsh int ip reset
CMD: ipconfig /flushDNS
EmptyTemp:

*****************

Restore point was successfully created.
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AvastUI.exe" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-2987826816-1455516208-1627320750-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e5f99822-6350-11ea-bdb1-04d4c4e4c4f6} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{11E70B29-A477-497A-B7FC-D0FD88AD6E9F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11E70B29-A477-497A-B7FC-D0FD88AD6E9F}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Wininet\Winlogui => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Wininet\Winlogui" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{16FCAC46-FBA5-4C96-912A-7B4FB3CF5D93}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{16FCAC46-FBA5-4C96-912A-7B4FB3CF5D93}" => removed successfully
C:\WINDOWS\System32\Tasks\Avast Emergency Update => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Emergency Update" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{1ACD88EA-DEDC-4C62-9737-2C3BCE47EBB5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1ACD88EA-DEDC-4C62-9737-2C3BCE47EBB5}" => removed successfully
C:\WINDOWS\System32\Tasks\Avast Software\Overseer => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C5B974DE-17AA-478B-883F-95182DF1E339}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C5B974DE-17AA-478B-883F-95182DF1E339}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Error Reporting\winrmsrv => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Error Reporting\winrmsrv" => removed successfully
HKLM\System\CurrentControlSet\Services\AvastWscReporter => removed successfully
AvastWscReporter => service removed successfully
C:\Users\asus\Desktop\MCPR.exe => moved successfully
"AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}" => removed successfully
"AS: McAfee VirusScan (Enabled - Up to date) {4DE344F8-6897-65B4-CED0-82B3AF2591B4}" => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9A9878B6-8C45-46CC-9B72-9CE6A49BE195}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6739F4CB-D9E8-4B7F-BA9A-114250E790AF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E5500F92-855F-4899-87F3-362B7957E0E2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0C187F94-CC18-4C45-AC32-EB66024B917C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{86B9F015-6E12-4F8A-81BD-1C1830523E6A}C:\program files\android\android studio1\jre\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0A31AEF7-1098-4EAD-B40C-E821880B4DEF}C:\program files\android\android studio1\jre\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C706BB9A-680A-4D24-935D-2C7DADB920AB}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{035AED66-F871-445A-A632-455D6855244B}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BA58459C-74C6-4731-B3B4-557C248BC938}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5AC95D6E-E6A1-499F-AE2A-7189A1D6CF9F}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4BD03EDD-FF2C-42F3-B4DD-39A158802265}D:\games\doom.2016\doomx64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DAE7176E-F540-4EA4-B14C-95607A55D78B}D:\games\doom.2016\doomx64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0B176D98-AD20-4A66-BEBF-2F5DE9456524}C:\program files\android\android studio1\jre\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{75FE936B-C026-43A0-8B17-150E458B82A4}C:\program files\android\android studio1\jre\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F0D86C67-C82B-43BE-B0D3-8D099E09CE6E}D:\games\doom.2016\doomx64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{32C09130-B65D-4032-95EE-521E88A0E3BB}D:\games\doom.2016\doomx64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AAF3F56C-0DAF-4659-B517-9EA7DB729EA4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{90060D29-511B-4B8E-9AC3-030AF96EE629}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F2BD04F7-198B-4CD2-8ACE-BC6A4CC976FB}" => removed successfully
C:\Program Files\AVAST Software => moved successfully

========= netsh int ip reset =========

Resetting Compartment Forwarding, OK!
Resetting Compartment, OK!
Resetting Control Protocol, OK!
Resetting Echo Sequence Request, OK!
Resetting Global, OK!
Resetting Interface, OK!
Resetting Anycast Address, OK!
Resetting Multicast Address, OK!
Resetting Unicast Address, OK!
Resetting Neighbor, OK!
Resetting Path, OK!
Resetting Potential, OK!
Resetting Prefix Policy, OK!
Resetting Proxy Neighbor, OK!
Resetting Route, OK!
Resetting Site Prefix, OK!
Resetting Subinterface, OK!
Resetting Wakeup Pattern, OK!
Resetting Resolve Neighbor, OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , failed.
Access is denied.

Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Restart the computer to complete this action.


========= End of CMD: =========


========= ipconfig /flushDNS =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 143095852 B
Java, Flash, Steam htmlcache => 82278585 B
Windows/system/drivers => 8993698 B
Edge => 2332113 B
Chrome => 0 B
Firefox => 1104093537 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 658770 B
systemprofile32 => 658770 B
LocalService => 839776 B
NetworkService => 938494 B
asus => 7272771667 B

RecycleBin => 0 B
EmptyTemp: => 8 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:40:41 ====