Dobrý den
poprosím o kontrolu logu. Objevily se problémy s on-line aplikacemi v cloudu Adobe, nedaří se je spustit, odinstalovat, ani přeinstalovat.
Logy
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-05-2025
Ran by Maja (administrator) on MAJA (ASUS System Product Name) (06-05-2025 19:36:01)
Running from C:\Users\Maja\Desktop\FRST64.exe
Loaded Profiles: Maja
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5737 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
(C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Users\Maja\Downloads\Creative_Cloud_Set-Up.exe <2>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Adobe Crash Processor.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <5>
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\135.0.3179.98\msedgewebview2.exe <20>
(explorer.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <19>
(explorer.exe ->) (Rainmeter Team -> Rainmeter) [File not signed] C:\Program Files\Rainmeter\Rainmeter.exe
(explorer.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe <2>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_6.0.0.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1002272 2019-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-05-08] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [DesktopPortal] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750680 2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [114681064 2024-09-28] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1145256 2025-05-06] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\Run: [Discord] => C:\Users\Maja\AppData\Local\Discord\Update.exe [1526504 2024-09-23] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4693600 2025-04-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Maja\AppData\Local\Microsoft\Teams\Update.exe [2593816 2024-05-22] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3647928 2025-02-23] (Skutta Software GmbH -> )
HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [41352088 2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\136.0.7103.48\Installer\chrmstp.exe [2025-05-02] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\Users\Maja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2025-04-22]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Rainmeter Team -> Rainmeter) [File not signed]
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {214F390E-19C4-412A-897D-946B22FA62B1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.)
Task: {717E3063-8B01-40E6-BC08-6D63D41C59DD} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7156.0{12D31FB5-0CF0-4E08-8815-3CF8648B44A7} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7156.0\updater.exe [7096416 2025-05-02] (Google LLC -> Google LLC)
Task: {8F336BC4-E8D5-47FD-A767-F5145E3805EE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B5458A40-E28B-49D9-95C7-9E3E8504316C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1FAECFB2-DEFA-4CBB-8CB1-E3FDC7F6C57F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EB58C27D-E61A-465D-A461-54BC80769D42} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F85A3166-81B1-4CDA-833C-67A03E993208} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-09-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {DAACED9F-A9C3-46DC-AB59-A4C2C30C2C19} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2980111542-369625552-1897353692-1002 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-09-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {8FB30446-D573-46E5-AED6-9D8AB8E9649D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34888 2024-09-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {3070194A-FC43-4083-B8FF-CA9336CC59A6} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {F594DB72-2543-4B6F-A159-C319CF51940D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6976D615-A315-42F8-8D6A-62A2649DDAB1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C8E07E4D-A312-4C49-B755-1431311AECF1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {5DB1ABAD-DB9B-410B-8439-30FC2A274AEE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {886B1F26-0305-4C8C-AC9F-F545E0B18907} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4DBE02E5-6B82-429C-A7D6-E3EA9ED30808} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4C56684C-09B4-466F-ADD8-91B2F2304F10} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {15E23194-6B09-4A10-8C28-9CFA46450C9E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9C70F51-F639-49FF-A603-325E7217A222} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {74599280-52AF-4190-A057-EB2769B050F9} - System32\Tasks\Opera scheduled assistant Autoupdate 1721312826 => C:\Users\Maja\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\Maja\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {86EEA7EA-FDE4-48CD-A7B0-FFF4E0C99D18} - System32\Tasks\Opera scheduled Autoupdate 1721312821 => C:\Users\Maja\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe --scheduledtask --bypasslauncher $(Arg0) (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1029025a-2df4-4d38-8dfe-9d8a80b04550}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Maja\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-02]
Edge Profile: C:\Users\Maja\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2025-04-09]
Edge Profile: C:\Users\Maja\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2025-04-13]
FireFox:
========
FF DefaultProfile: 2jn2mttz.default
FF ProfilePath: C:\Users\Maja\AppData\Roaming\Mozilla\Firefox\Profiles\2jn2mttz.default [2020-12-22]
FF ProfilePath: C:\Users\Maja\AppData\Roaming\Mozilla\Firefox\Profiles\miwr2zk5.default-release [2024-07-03]
FF Plugin: @java.com/DTPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2025-05-06] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2025-05-06] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default [2025-05-06]
CHR Notifications: Default -> hxxps://www.tiktok.com
CHR NewTab: Default -> Not-active:"chrome-extension://nejhkijpoolnciimnadfphhlhkmdljge/tab.html"
CHR Extension: (Stylish - Custom themes for any website) - C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2024-05-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02]
CHR Extension: (Shimeji Browser Extension) - C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\Extensions\gohjpllcolmccldfdggmamodembldgpc [2024-04-13]
CHR Extension: (Sad Aesthetic Wallpaper HD Custom New Tab) - C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\Extensions\nejhkijpoolnciimnadfphhlhkmdljge [2020-12-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-19]
CHR HKU\S-1-5-21-2980111542-369625552-1897353692-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944040 2025-05-06] (Adobe Inc. -> Adobe Inc.)
S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2704864 2024-05-23] (PROXIMA BETA PTE. LIMITED -> ANTICHEATEXPERT.COM)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [838760 2025-04-09] (ASUSTeK Computer Inc. -> )
R2 DTSAPO3Service; C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe [222104 2020-03-20] (DTS, Inc. -> )
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2024-03-07] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559304 2025-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACE-BASE; C:\Windows\system32\drivers\ACE-BASE.sys [1896736 2024-06-03] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 HoYoProtect; C:\Windows\system32\HoYoKProtect.sys [3869880 2025-03-26] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
R3 KslD; C:\Windows\System32\drivers\wd\KslD.sys [331168 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20016 2025-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [605576 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-06 19:36 - 2025-05-06 19:36 - 000022569 _____ C:\Users\Maja\Desktop\FRST.txt
2025-05-06 19:33 - 2025-05-06 19:36 - 000000000 ____D C:\FRST
2025-05-06 19:33 - 2025-05-06 19:33 - 002405376 _____ (Farbar) C:\Users\Maja\Desktop\FRST64.exe
2025-05-06 19:30 - 2025-05-06 19:30 - 003345664 _____ (Adobe Inc.) C:\Users\Maja\Downloads\Creative_Cloud_Set-Up.exe
2025-05-06 19:17 - 2025-05-06 19:17 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2025-05-06 19:09 - 2025-05-06 19:09 - 000000000 ____D C:\Users\Maja\AppData\Local\Discord
2025-04-09 14:38 - 2025-04-09 14:38 - 000000000 ____D C:\inetpub
2025-04-09 13:53 - 2025-04-09 13:53 - 000000000 ___HD C:\$WinREAgent
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-06 19:30 - 2020-12-22 18:59 - 000000000 ____D C:\Users\Maja\AppData\Local\Adobe
2025-05-06 19:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-06 19:24 - 2021-06-01 19:03 - 000000000 ____D C:\Program Files (x86)\Steam
2025-05-06 19:20 - 2022-09-20 19:48 - 000000000 ___RD C:\Users\Maja\Creative Cloud Files
2025-05-06 19:17 - 2020-12-15 09:00 - 000000000 ____D C:\ProgramData\Package Cache
2025-05-06 19:16 - 2022-09-20 19:45 - 000000000 ____D C:\Program Files\Common Files\Adobe
2025-05-06 19:16 - 2022-09-20 19:45 - 000000000 ____D C:\Program Files\Adobe
2025-05-06 19:16 - 2020-12-22 19:01 - 000000000 ____D C:\Program Files (x86)\Adobe
2025-05-06 19:16 - 2020-12-22 17:56 - 000000000 ____D C:\Users\Maja\AppData\Roaming\Adobe
2025-05-06 19:15 - 2022-09-17 11:57 - 000000000 ____D C:\Users\Maja\AppData\Roaming\com.adobe.dunamis
2025-05-06 19:14 - 2021-12-24 00:50 - 000000000 ____D C:\Windows\SystemTemp
2025-05-06 19:12 - 2020-12-15 09:22 - 000000000 ____D C:\ProgramData\NVIDIA
2025-05-06 19:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-05-06 19:11 - 2020-12-22 18:47 - 000000000 ____D C:\Users\Maja\AppData\Local\SquirrelTemp
2025-05-06 19:09 - 2021-09-17 15:47 - 000000000 ____D C:\Users\Maja\AppData\Local\CrashDumps
2025-05-06 19:09 - 2021-01-24 21:03 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-05-06 19:09 - 2021-01-24 21:03 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-05-06 19:09 - 2020-12-22 18:47 - 000000000 ____D C:\Users\Maja\AppData\Roaming\Microsoft\Teams
2025-05-04 18:57 - 2020-12-22 17:56 - 000000000 ____D C:\Users\Maja\AppData\Local\Packages
2025-05-04 18:56 - 2021-03-25 11:21 - 000000000 ____D C:\Users\Maja\AppData\Local\D3DSCache
2025-05-04 18:54 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-04 15:32 - 2020-12-26 13:36 - 000000000 ____D C:\Users\Maja\AppData\Local\Roblox
2025-05-04 14:25 - 2020-12-26 13:34 - 000000000 ____D C:\Users\Maja\AppData\Roaming\Star Stable Online
2025-05-04 13:47 - 2020-12-15 08:40 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-05-04 13:26 - 2024-05-24 10:14 - 000000000 ____D C:\Users\Maja\AppData\LocalLow\Temp
2025-05-04 12:13 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-05-04 10:45 - 2021-12-11 15:24 - 000001988 _____ C:\Users\Maja\Desktop\Genshin Impact.lnk
2025-05-04 10:28 - 2024-06-17 16:42 - 000000000 ____D C:\Program Files\HoYoPlay
2025-05-04 10:27 - 2020-12-26 13:38 - 000001390 _____ C:\Users\Maja\Desktop\Roblox Player.lnk
2025-05-04 10:27 - 2020-12-26 13:36 - 000001218 _____ C:\Users\Maja\Desktop\Roblox Studio.lnk
2025-05-04 10:27 - 2020-12-26 13:36 - 000000000 ____D C:\Users\Maja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2025-05-04 10:20 - 2024-01-19 16:43 - 000000000 ____D C:\Users\Maja\AppData\Roaming\Rainmeter
2025-05-04 10:09 - 2021-01-24 21:03 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-04 10:09 - 2021-01-24 21:03 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-05-02 20:06 - 2022-10-14 15:22 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-05-02 20:06 - 2020-12-22 19:01 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2025-05-02 20:00 - 2020-12-15 09:08 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-04-22 18:25 - 2025-03-21 22:22 - 000378432 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy_8.dll
2025-04-22 18:25 - 2024-08-01 20:01 - 002901544 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2025-04-22 18:25 - 2024-08-01 20:01 - 000796224 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2025-04-22 18:25 - 2024-08-01 20:01 - 000267840 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2025-04-22 18:25 - 2024-08-01 20:01 - 000243240 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2025-04-22 18:25 - 2024-08-01 20:01 - 000153152 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2025-04-22 18:25 - 2024-08-01 20:01 - 000124480 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe
2025-04-22 18:25 - 2024-08-01 20:01 - 000075304 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe
2025-04-22 18:23 - 2024-01-19 16:43 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2025-04-22 18:23 - 2024-01-19 16:43 - 000000000 ____D C:\Program Files\Rainmeter
2025-04-12 17:58 - 2020-12-26 15:39 - 000000000 ____D C:\Users\Maja\AppData\Roaming\.minecraft
2025-04-12 17:55 - 2020-12-26 15:39 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2025-04-10 14:54 - 2020-12-15 08:40 - 000000000 ____D C:\Windows\system32\Drivers\wd
2025-04-10 14:53 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-04-09 16:47 - 2020-12-15 08:45 - 001693568 _____ C:\Windows\system32\PerfStringBackup.INI
2025-04-09 16:47 - 2019-12-07 16:41 - 000716874 _____ C:\Windows\system32\perfh005.dat
2025-04-09 16:47 - 2019-12-07 16:41 - 000145052 _____ C:\Windows\system32\perfc005.dat
2025-04-09 16:40 - 2020-12-15 08:40 - 000838760 _____ C:\Windows\system32\AsusUpdateCheck.exe
2025-04-09 16:40 - 2020-12-15 08:40 - 000008192 ___SH C:\DumpStack.log.tmp
2025-04-09 16:40 - 2020-12-15 08:40 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-04-09 16:39 - 2020-12-15 08:40 - 000877320 _____ C:\Windows\system32\wpbbin.exe
2025-04-09 14:39 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2025-04-09 14:38 - 2024-07-17 21:03 - 000000000 ____D C:\Windows\system32\compatrel
2025-04-09 14:38 - 2020-12-15 08:40 - 000456680 _____ C:\Windows\system32\FNTCACHE.DAT
2025-04-09 14:38 - 2020-07-20 10:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-04-09 14:38 - 2019-12-07 16:42 - 000000000 ____D C:\Windows\system32\OpenSSH
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2025-04-09 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-04-09 13:57 - 2020-12-15 08:43 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2025
Ran by Maja (06-05-2025 19:37:10)
Running from C:\Users\Maja\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.5737 (X64) (2020-12-22 15:51:01)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2980111542-369625552-1897353692-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2980111542-369625552-1897353692-503 - Limited - Disabled)
Guest (S-1-5-21-2980111542-369625552-1897353692-501 - Limited - Disabled)
Maja (S-1-5-21-2980111542-369625552-1897353692-1002 - Administrator - Enabled) => C:\Users\Maja
WDAGUtilityAccount (S-1-5-21-2980111542-369625552-1897353692-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20474 - Adobe)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.6.0.611 - Adobe Inc.)
Adobe Illustrator 2022 (HKLM-x32\...\ILST_26_5) (Version: 26.5 - Adobe Inc.)
Adobe InDesign 2024 (HKLM-x32\...\IDSN_19_0_1) (Version: 19.0.1 - Adobe Inc.)
Adobe Photoshop 2022 (HKLM-x32\...\PHSP_23_5_1) (Version: 23.5.1.724 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.07.14.327 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.80 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 4.13.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 6.0.0.3 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver Alpha (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{07585caf-a143-476e-ab31-0e026584239d}) (Version: 2.07.14.327 - Advanced Micro Devices, Inc.) Hidden
BlueStacks X (HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\BlueStacks X) (Version: 0.12.1.8 - BlueStack Systems, Inc.)
Discord (HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\Discord) (Version: 0.0.309 - Discord Inc.)
Genshin Impact (HKLM\...\Genshin Impact) (Version: 2.33.7.0 - miHoYo Co.,Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 136.0.7103.48 - Google LLC)
HoYoPlay (HKLM\...\HYP_1_0_global) (Version: 1.5.2.229 - COGNOSPHERE PTE. LTD.)
IrfanView 4.56 (64-bit) (HKLM\...\IrfanView64) (Version: 4.56 - Irfan Skiljan)
Java 8 Update 401 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180401F0}) (Version: 8.0.4010.10 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
LibreOffice 7.0.4.2 (HKLM\...\{B3171B83-4945-43E0-A101-841638C05506}) (Version: 7.0.4.2 - The Document Foundation)
Live2D Cubism 4.0.09 (HKLM-x32\...\Live2D Cubism) (Version: 4.0.09 - Live2D Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.50 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 135.0.3179.98 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\OneDriveSetup.exe) (Version: 24.086.0428.0003 - Microsoft Corporation)
Microsoft Teams classic (HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\Teams) (Version: 1.7.00.10152 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Minecraft Launcher (HKLM-x32\...\{27B34E47-68AE-4802-822A-9F0C187AF84A}) (Version: 1.0.0.0 - Mojang)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 127.0.2 (x64 cs)) (Version: 127.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0.1 - Mozilla)
N0va Desktop (HKLM\...\人工桌面) (Version: 2.2.1.3 - COGNOSPHERE Co.,Ltd)
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.5.23 - Rainmeter)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.38.1118.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8832.1 - Realtek Semiconductor Corp.)
Roblox Player for Maja (HKU\S-1-5-21-2980111542-369625552-1897353692-1002\...\roblox-player) (Version: - Roblox Corporation)
Star Rail (HKLM\...\Star Rail) (Version: 2.24.2.0 - COGNOSPHERE PTE. LTD.)
Star Stable Online 2.46.0 (HKLM\...\8c663ade-0de5-52b6-812d-f5cd25f943ac) (Version: 2.46.0 - Star Stable Entertainment AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_6.0.0.1_x86__enpm4xejd91yc [2024-05-22] (Adobe Systems Incorporated)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-08-06] (Microsoft Corporation)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa [2025-04-07] (Apple Inc.) [Startup Task]
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.7301.0_x64__8wekyb3d8bbwe [2025-04-12] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [2025-02-23] (Microsoft Studios)
Minecraft Windows Preview -> C:\Program Files\WindowsApps\Microsoft.MinecraftWindowsBeta_1.21.9021.0_x64__8wekyb3d8bbwe [2025-05-04] (Microsoft Studios)
PowerPoint -> C:\Program Files\WindowsApps\powerpoint.office.com-3532D2AB_1.0.0.1_neutral__sxc7ffma4ybfy [2023-11-02] (powerpoint.office.com)
Spotify – hudba a podcasty -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0 [2025-05-04] (Spotify AB) [Startup Task]
Word -> C:\Program Files\WindowsApps\word.office.com-51E922F2_1.0.0.1_neutral__jc2kecmnkxwqc [2023-11-02] (word.office.com)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-2DE84CCF587A} -> [Creative Cloud Files] => C:\Users\Maja\Creative Cloud Files [2022-09-20 19:48]
CustomCLSID: HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Maja\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
CustomCLSID: HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\Maja\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-03] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-03] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-03] (Adobe Inc. -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-03] (Adobe Inc. -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-03] (Adobe Inc. -> )
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2024-11-06 19:05 - 2024-12-03 22:40 - 005378048 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavcodec-61.dll
2024-11-06 19:05 - 2024-12-03 22:40 - 000875008 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavfilter-10.dll
2024-11-06 19:05 - 2024-12-03 22:40 - 001674240 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavformat-61.dll
2024-11-06 19:05 - 2024-12-03 22:40 - 001640960 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavutil-59.dll
2024-11-06 19:05 - 2024-12-03 22:40 - 000630272 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswresample-5.dll
2024-11-06 19:05 - 2024-12-03 22:40 - 001092608 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswscale-8.dll
2020-12-22 18:34 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2025-04-12 19:31 - 2025-04-12 19:31 - 002654136 _____ (Rainmeter Team -> Rainmeter) [File not signed] C:\Program Files\Rainmeter\Rainmeter.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Windows\tracing:? [16]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-1.8\bin\ssv.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-1.8\bin\jp2ssv.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-2980111542-369625552-1897353692-1002\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek PCIe 2.5GbE Family Controller -> rt640x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{2C16213A-6473-497C-A033-24484EC54FBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F141FE17-AA9A-4C8F-B9C2-D3FC900D4726}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B9A017EE-F902-44A3-8B00-6E4E7F7B931C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9B2332AE-CC62-4253-AE55-25EE895C93E9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CE391DE1-40A4-44CC-B7E0-55BA207AE5BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{69A6F464-EBE9-4C1D-93D8-E259E894B9DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70814EAC-7521-4BE4-BD04-A81D6A994B32}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A7FFD70A-A811-4012-827D-ABBC32D3D609}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{33F1D007-5933-4A4F-AB18-C10D91A2948D}C:\users\maja\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\maja\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{E41DD256-095F-42F1-887A-699748CE9EA1}C:\users\maja\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\maja\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{659ED612-9D00-4218-87E8-1274309B63E3}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{56759518-2E40-40C7-AEE9-3152625B822B}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6081FAC0-73F3-4B0C-BD70-431137154FE1}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{6BDD0BE3-F6AB-4AD4-928A-C4B54016CDAB}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{95201EB5-27BA-4389-91FB-362BE384BD1C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F926E0B0-B282-45B9-BA39-365D8683C150}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{D80A45BB-421A-4C34-BAC0-35378FCCE224}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe
FirewallRules: [UDP Query User{8E2C9707-2C4E-4363-8B4E-9C64FBBBF5F8}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe
FirewallRules: [{6921F123-2562-4106-AEB7-4D1FDE9370CC}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe (Bluestack Systems, Inc -> Bluestack Systems, Inc.)
FirewallRules: [{C007AB5D-1C4D-471D-A799-0DBE099BF1BF}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe (Bluestack Systems, Inc -> Bluestack Systems, Inc.)
FirewallRules: [{45D954E9-E99F-47F3-AC1C-E34696989D58}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [TCP Query User{434F1A36-FC61-43AD-B60B-CFB71A5A1255}C:\program files\genshin impact\genshin impact game\genshinimpact.exe] => (Allow) C:\program files\genshin impact\genshin impact game\genshinimpact.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [UDP Query User{FC7B9ED4-6D68-433A-8723-92CF169506C8}C:\program files\genshin impact\genshin impact game\genshinimpact.exe] => (Allow) C:\program files\genshin impact\genshin impact game\genshinimpact.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [{69ACA029-D246-46DF-9565-9F39D1D961A4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D1003BA2-6978-4BA3-87D9-4A43BAA97197}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{16434C50-76F7-4914-9EB5-8ED1A848BB6A}C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{146E8D53-3656-4EAB-8B16-EF1CD35F5722}C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [TCP Query User{47CA054E-DFD2-487D-96B6-0DFC93662EE5}C:\program files\genshin impact\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe] => (Block) C:\program files\genshin impact\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [UDP Query User{5D8F3CE9-FDC2-4E1F-8393-3F6B39835CB3}C:\program files\genshin impact\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe] => (Block) C:\program files\genshin impact\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [TCP Query User{66D49877-0310-4143-B84C-B01DB6394953}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe => No File
FirewallRules: [UDP Query User{D64E5224-9285-4CDB-B3ED-176B0B29EAD6}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe => No File
FirewallRules: [TCP Query User{F4B39B0E-7F80-49D0-804A-64B5B38382A9}C:\program files\star rail\games\starrail.exe] => (Block) C:\program files\star rail\games\starrail.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [UDP Query User{5FC8D3FB-0DFB-449C-B9E3-EF35FFFB954E}C:\program files\star rail\games\starrail.exe] => (Block) C:\program files\star rail\games\starrail.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [{3DF71462-6020-4E79-84C0-E53753353966}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{A13EA666-D066-4119-A524-5B45A6303253}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{715E9B75-AA5A-4EC8-A571-29AEE2B4D4ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DELTARUNEdemo\DELTARUNE.exe () [File not signed]
FirewallRules: [{E7D8E490-3877-494D-9622-ADD01939FEC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DELTARUNEdemo\DELTARUNE.exe () [File not signed]
FirewallRules: [{FE61D59A-591F-4661-8A4C-47259FA245A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe (Toby Fox) [File not signed]
FirewallRules: [{CB66BA23-6A16-4CD8-88F6-D844B09A3CFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe (Toby Fox) [File not signed]
FirewallRules: [{A1E1AD1B-DDD4-4FE3-A436-78D311F288C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\launch.exe () [File not signed]
FirewallRules: [{2A418384-EB14-469B-9EE3-C88F52CD4D77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\launch.exe () [File not signed]
FirewallRules: [TCP Query User{8F69563C-22E1-430F-90CC-BD25AB40BB74}C:\program files (x86)\steam\steamapps\common\vrchat\vrchat.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\vrchat\vrchat.exe () [File not signed]
FirewallRules: [UDP Query User{7D1D7CFB-4404-4D08-A812-B1DE84079668}C:\program files (x86)\steam\steamapps\common\vrchat\vrchat.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\vrchat\vrchat.exe () [File not signed]
FirewallRules: [TCP Query User{B3B127EF-1A72-494E-BA49-620C79A2C16F}C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{9B0BC6E8-DD7B-4916-900C-49FDB0955D06}C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{F95A7067-270B-46EF-A4EB-96BF6ABF9684}C:\wuthering waves\wuthering waves game\client\binaries\win64\client-win64-shipping.exe] => (Allow) C:\wuthering waves\wuthering waves game\client\binaries\win64\client-win64-shipping.exe (KURO TECHNOLOGY (HONG KONG) CO., LIMITED -> KURO TECHNOLOGY (HONG KONG) CO., LIMITED)
FirewallRules: [UDP Query User{F15AFD68-035B-4A43-80B3-486665CA5DA1}C:\wuthering waves\wuthering waves game\client\binaries\win64\client-win64-shipping.exe] => (Allow) C:\wuthering waves\wuthering waves game\client\binaries\win64\client-win64-shipping.exe (KURO TECHNOLOGY (HONG KONG) CO., LIMITED -> KURO TECHNOLOGY (HONG KONG) CO., LIMITED)
FirewallRules: [TCP Query User{5E1BE896-3FF7-4E0B-B16B-83C300E68478}C:\program files (x86)\minecraft launcher\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{E2D492DB-CEDA-458E-AE0D-CD13C7CC19DC}C:\program files (x86)\minecraft launcher\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [{82525AFC-D254-4CBE-B13A-EFB6173BA900}] => (Allow) C:\Users\Maja\AppData\Local\Programs\Opera\opera.exe => No File
FirewallRules: [{8B05883F-F0D8-4C09-B97C-CD48EB08CD07}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{351ECA6A-589D-4C92-AB79-ADFF5D77383D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{9C359B50-90C6-45AF-93DA-91F32BB71BF4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{4A12D04F-CF9E-4F61-8483-F2CCC3814F81}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{4EE63767-C472-4365-95BD-F3EA4124C3AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{0C0E5FE8-B61B-45C9-A96B-97109163E2BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{BC7A01F6-5B40-4448-A9A0-614A7AC421F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C817E90C-CA8B-4FBD-AC74-1E8D25336A52}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{B26965B4-20D0-430C-B880-1B9A7CD6578E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{516EB090-0DAA-4351-9A93-177A318524E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C735EFCE-CB10-4109-8ABB-0C08E52F58EA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{40972207-248E-48F5-9950-0E2D839A9F93}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{07AE8DBD-9DC4-4662-A82B-C898BF0A092D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1926CE80-29FB-4B90-9D2C-7178DC014451}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{89586FA3-33CB-4121-ADE1-5C9A52402A0B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{A15D328F-1910-413E-83EE-B1FC4F8AFADF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{23F8F365-8C34-422F-B49F-4806C89D703E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{616FCF07-3D6D-4534-8C80-07DA5F97662F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6C807AA6-3F42-42CF-9CF4-59AB80B90DFC}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{90B1ECC1-3650-4EAA-A3C1-C01F3339FBEB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{BB307109-8D6A-4B37-A398-7728CEB2EE6C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{955611A9-F122-4AC0-A57C-A3CD316CFADA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12137.1.3025.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{23280A2B-BD37-41EF-ABF8-BDD121478AE0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7CD35031-CEC8-42B1-B657-864DFC366CBB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{ABF835BF-A929-4CF9-A5A0-FB387E64D338}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FA89F059-EF12-45A3-A434-769A284F941E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9E36382B-5A90-4DB1-BA0B-ECEAC1078347}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F6E42D0B-B173-416B-8FEB-36DB3AB825E4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EECAE99C-1F66-43A3-A0CD-A62C11C10A4A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{541D3592-8739-4046-870D-9731990479AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B4DB77A8-C653-4A0A-8530-9607B44C746D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4F7133B5-A82B-481A-AA7D-8143ECF18B66}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.261.443.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2D5C044B-652E-436F-953C-22A00A628AA8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6CEE2142-4FC4-4F57-A7B5-43530FC23547}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B52467EE-2AA9-441A-8FCC-2E45A902201C}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F22DE811-1880-4F1A-8CD0-A0E59808BF85}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\135.0.3179.98\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{047286DA-1B87-473C-AAFF-AD466480420F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CD6CFF71-E4E9-4B26-BF72-4D555950B4D9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D9E5036-F4AF-4A3F-82FE-A71B820D1CD6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{AC03AD80-069F-4B8A-80C5-4CCB10DC8D8E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CC568439-E07C-48D7-AF53-44EEADAE8354}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9A4882F1-85B4-42F4-91B3-3B113623B98D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5DF17A25-BD85-4A2E-8A41-EFE706802CCD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E65EAB9A-A840-489F-B851-4E086043203B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{AA156C6B-2F6A-475A-A5C7-63858E1E9E17}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{09EDDF73-9821-418E-A71C-FE1939582E11}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
==================== Restore Points =========================
22-04-2025 18:45:02 Naplánovaný kontrolní bod
02-05-2025 20:14:25 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31931
04-05-2025 12:12:38 Instalační služba modulů systému Windows
06-05-2025 19:16:48 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/06/2025 07:10:21 PM) (Source: MsiInstaller) (EventID: 11001) (User: MAJA)
Description: Product: Microsoft Teams Meeting Add-in for Microsoft Office -- Error 1001. Error 1001. InstallUtilLib.dll:CorBindToRuntimeHost (hr=0x80070003): Systém nemůže nalézt uvedenou cestu.
(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (05/06/2025 07:10:21 PM) (Source: MsiInstaller) (EventID: 11001) (User: MAJA)
Description: Product: Microsoft Teams Meeting Add-in for Microsoft Office -- Error 1001. Error 1001. InstallUtilLib.dll:CorBindToRuntimeHost (hr=0x80070003): Systém nemůže nalézt uvedenou cestu.
(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (05/06/2025 07:09:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: jusched.exe, verze: 2.8.401.10, časové razítko: 0x65819757
Název chybujícího modulu: jusched.exe, verze: 2.8.401.10, časové razítko: 0x65819757
Kód výjimky: 0xc0000409
Posun chyby: 0x00053e12
ID chybujícího procesu: 0x3a28
Čas spuštění chybující aplikace: 0x01dbbea9ad14e0b4
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
ID zprávy: d93b2e99-3500-438c-9287-d8b3ffe7dd10
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/04/2025 06:54:37 PM) (Source: MsiInstaller) (EventID: 11001) (User: MAJA)
Description: Product: Microsoft Teams Meeting Add-in for Microsoft Office -- Error 1001. Error 1001. InstallUtilLib.dll:CorBindToRuntimeHost (hr=0x80070003): Systém nemůže nalézt uvedenou cestu.
(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (05/04/2025 06:54:37 PM) (Source: MsiInstaller) (EventID: 11001) (User: MAJA)
Description: Product: Microsoft Teams Meeting Add-in for Microsoft Office -- Error 1001. Error 1001. InstallUtilLib.dll:CorBindToRuntimeHost (hr=0x80070003): Systém nemůže nalézt uvedenou cestu.
(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (05/04/2025 06:54:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: jusched.exe, verze: 2.8.401.10, časové razítko: 0x65819757
Název chybujícího modulu: jusched.exe, verze: 2.8.401.10, časové razítko: 0x65819757
Kód výjimky: 0xc0000409
Posun chyby: 0x00053e12
ID chybujícího procesu: 0x1b84
Čas spuštění chybující aplikace: 0x01dbbd1525abf225
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
ID zprávy: f5b75e58-5490-4848-b0ff-3f56d576843c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/04/2025 10:27:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RobloxPlayerBeta.exe, verze: 0.668.0.61525, časové razítko: 0xb6fc2609
Název chybujícího modulu: RobloxPlayerBeta.exe, verze: 0.668.0.61525, časové razítko: 0xb6fc2609
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000708f57
ID chybujícího procesu: 0x2ac0
Čas spuštění chybující aplikace: 0x01dbbcce505359a3
Cesta k chybující aplikaci: C:\Users\Maja\AppData\Local\Roblox\Versions\version-c2c9efad42eb44e5\RobloxPlayerBeta.exe
Cesta k chybujícímu modulu: C:\Users\Maja\AppData\Local\Roblox\Versions\version-c2c9efad42eb44e5\RobloxPlayerBeta.exe
ID zprávy: eb128969-43d7-4035-b358-89c25fc98b93
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/04/2025 10:09:10 AM) (Source: MsiInstaller) (EventID: 11001) (User: MAJA)
Description: Product: Microsoft Teams Meeting Add-in for Microsoft Office -- Error 1001. Error 1001. InstallUtilLib.dll:CorBindToRuntimeHost (hr=0x80070003): Systém nemůže nalézt uvedenou cestu.
(NULL)(NULL)(NULL)(NULL)(NULL)
System errors:
=============
Error: (05/06/2025 07:09:17 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/04/2025 06:58:15 PM) (Source: DCOM) (EventID: 10010) (User: MAJA)
Description: Server microsoft.windowscommunicationsapps_16005.14326.22342.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/04/2025 06:53:32 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/04/2025 02:29:45 PM) (Source: DCOM) (EventID: 10010) (User: MAJA)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/04/2025 12:13:21 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NCBCSZSJRSB-SpotifyAB.SpotifyMusic.
Error: (05/04/2025 12:01:00 PM) (Source: DCOM) (EventID: 10010) (User: MAJA)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/04/2025 11:01:38 AM) (Source: DCOM) (EventID: 10010) (User: MAJA)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/04/2025 10:28:31 AM) (Source: DCOM) (EventID: 10010) (User: MAJA)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2025-05-06 19:37:08
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUADlManager:Win32/DotBundler
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Users\Maja\Downloads\LDPlayer4_ens_com.devsisters.ck_3040_ld (1).exe; file:_C:\Users\Maja\Downloads\LDPlayer4_ens_com.devsisters.ck_3040_ld.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Users\Maja\Desktop\FRST64.exe
Security intelligence Version: AV: 1.427.663.0, AS: 1.427.663.0, NIS: 1.427.663.0
Engine Version: AM: 1.1.25030.1, NIS: 1.1.25030.1
Date: 2025-05-06 19:37:07
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUADlManager:Win32/DotBundler
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Users\Maja\Downloads\LDPlayer4_ens_com.devsisters.ck_3040_ld (1).exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Users\Maja\Desktop\FRST64.exe
Security intelligence Version: AV: 1.427.663.0, AS: 1.427.663.0, NIS: 1.427.663.0
Engine Version: AM: 1.1.25030.1, NIS: 1.1.25030.1
Date: 2025-04-12 17:21:55
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: Trojan:Win32/Wacatac.B!ml
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Maja\AppData\Local\Microsoft\Windows\INetCache\IE\8C7JGIO9\Rainmeter-4.5.22[1].exe; file:_C:\Users\Maja\AppData\Roaming\Rainmeter\Updates\Rainmeter-4.5.22.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files\Rainmeter\Rainmeter.exe
Security intelligence Version: AV: 1.427.220.0, AS: 1.427.220.0, NIS: 1.427.220.0
Engine Version: AM: 1.1.25030.1, NIS: 1.1.25030.1
Date: 2025-04-12 17:21:51
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: Trojan:Win32/Wacatac.B!ml
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Maja\AppData\Roaming\Rainmeter\Updates\Rainmeter-4.5.22.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files\Rainmeter\Rainmeter.exe
Security intelligence Version: AV: 1.427.220.0, AS: 1.427.220.0, NIS: 1.427.220.0
Engine Version: AM: 1.1.25030.1, NIS: 1.1.25030.1
Date: 2025-04-12 16:32:28
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
CodeIntegrity:
===============
Date: 2022-11-30 14:25:40
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Mozilla Firefox\mozavcodec.dll that did not meet the Microsoft signing level requirements.
Date: 2022-11-30 14:25:40
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Mozilla Firefox\mozavutil.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0321 05/13/2020
Motherboard: ASUSTeK COMPUTER INC. TUF GAMING B550M-PLUS
Processor: AMD Ryzen 5 3500X 6-Core Processor
Percentage of memory in use: 45%
Total physical RAM: 16292.69 MB
Available physical RAM: 8896.37 MB
Total Virtual: 17316.69 MB
Available Virtual: 7828.25 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:953.21 GB) (Free:684.61 GB) (Model: XPG GAMMIX S11 Pro) NTFS
\\?\Volume{4558d204-14dd-4318-8a8a-ce09e8c2268c}\ () (Fixed) (Total:0.54 GB) (Free:0.07 GB) NTFS
\\?\Volume{36800d4a-5029-4005-8622-4c56a425a411}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu FRST
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu FRST
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [DesktopPortal] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750680 2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X] <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Maja\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
AlternateDataStreams: C:\Windows\tracing:? [16]
FirewallRules: [{45D954E9-E99F-47F3-AC1C-E34696989D58}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [TCP Query User{66D49877-0310-4143-B84C-B01DB6394953}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe => No File
FirewallRules: [UDP Query User{D64E5224-9285-4CDB-B3ED-176B0B29EAD6}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe => No File
FirewallRules: [{82525AFC-D254-4CBE-B13A-EFB6173BA900}] => (Allow) C:\Users\Maja\AppData\Local\Programs\Opera\opera.exe => No File
FirewallRules: [{8B05883F-F0D8-4C09-B97C-CD48EB08CD07}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{351ECA6A-589D-4C92-AB79-ADFF5D77383D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{9C359B50-90C6-45AF-93DA-91F32BB71BF4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{4A12D04F-CF9E-4F61-8483-F2CCC3814F81}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{4EE63767-C472-4365-95BD-F3EA4124C3AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{0C0E5FE8-B61B-45C9-A96B-97109163E2BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{BC7A01F6-5B40-4448-A9A0-614A7AC421F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C817E90C-CA8B-4FBD-AC74-1E8D25336A52}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{B26965B4-20D0-430C-B880-1B9A7CD6578E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{516EB090-0DAA-4351-9A93-177A318524E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
C:\Users\Maja\Downloads\LDPlayer4_ens_com.devsisters.ck_3040_ld (1).exe
C:\Users\Maja\AppData\Local\Microsoft\Windows\INetCache\IE\8C7JGIO9\Rainmeter-4.5.22[1].exe
C:\Users\Maja\AppData\Roaming\Rainmeter\Updates\Rainmeter-4.5.22.exe
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu FRST
Ještě jednou dobrý večer.
Postup byl aplikován, FRST několikrát "vytuhl", každopádně se zdá, že práci dokončil, vytvořil log a poté se PC zrestartovalo.
Loh přikládám, snad je to on.
Fix result of Farbar Recovery Scan Tool (x64) Version: 06-05-2025
Ran by Maja (06-05-2025 21:42:42) Run:1
Running from C:\Users\Maja\Desktop
Loaded Profiles: Maja
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [DesktopPortal] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750680 2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X] <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Maja\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
AlternateDataStreams: C:\Windows\tracing:? [16]
FirewallRules: [{45D954E9-E99F-47F3-AC1C-E34696989D58}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [TCP Query User{66D49877-0310-4143-B84C-B01DB6394953}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe => No File
FirewallRules: [UDP Query User{D64E5224-9285-4CDB-B3ED-176B0B29EAD6}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe => No File
FirewallRules: [{82525AFC-D254-4CBE-B13A-EFB6173BA900}] => (Allow) C:\Users\Maja\AppData\Local\Programs\Opera\opera.exe => No File
FirewallRules: [{8B05883F-F0D8-4C09-B97C-CD48EB08CD07}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{351ECA6A-589D-4C92-AB79-ADFF5D77383D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{9C359B50-90C6-45AF-93DA-91F32BB71BF4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{4A12D04F-CF9E-4F61-8483-F2CCC3814F81}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{4EE63767-C472-4365-95BD-F3EA4124C3AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{0C0E5FE8-B61B-45C9-A96B-97109163E2BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{BC7A01F6-5B40-4448-A9A0-614A7AC421F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C817E90C-CA8B-4FBD-AC74-1E8D25336A52}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{B26965B4-20D0-430C-B880-1B9A7CD6578E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{516EB090-0DAA-4351-9A93-177A318524E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
C:\Users\Maja\Downloads\LDPlayer4_ens_com.devsisters.ck_3040_ld (1).exe
C:\Users\Maja\AppData\Local\Microsoft\Windows\INetCache\IE\8C7JGIO9\Rainmeter-4.5.22[1].exe
C:\Users\Maja\AppData\Roaming\Rainmeter\Updates\Rainmeter-4.5.22.exe
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\DesktopPortal" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\System\CurrentControlSet\Services\cpuz136 => removed successfully
cpuz136 => service removed successfully
HKLM\System\CurrentControlSet\Services\GPUZ => removed successfully
GPUZ => service removed successfully
HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92} => removed successfully
C:\Windows\tracing => ":?" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{45D954E9-E99F-47F3-AC1C-E34696989D58}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{66D49877-0310-4143-B84C-B01DB6394953}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D64E5224-9285-4CDB-B3ED-176B0B29EAD6}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{82525AFC-D254-4CBE-B13A-EFB6173BA900}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8B05883F-F0D8-4C09-B97C-CD48EB08CD07}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{351ECA6A-589D-4C92-AB79-ADFF5D77383D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9C359B50-90C6-45AF-93DA-91F32BB71BF4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4A12D04F-CF9E-4F61-8483-F2CCC3814F81}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4EE63767-C472-4365-95BD-F3EA4124C3AC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0C0E5FE8-B61B-45C9-A96B-97109163E2BC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BC7A01F6-5B40-4448-A9A0-614A7AC421F0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C817E90C-CA8B-4FBD-AC74-1E8D25336A52}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B26965B4-20D0-430C-B880-1B9A7CD6578E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{516EB090-0DAA-4351-9A93-177A318524E3}" => removed successfully
C:\Users\Maja\Downloads\LDPlayer4_ens_com.devsisters.ck_3040_ld (1).exe => moved successfully
"C:\Users\Maja\AppData\Local\Microsoft\Windows\INetCache\IE\8C7JGIO9\Rainmeter-4.5.22[1].exe" => not found
"C:\Users\Maja\AppData\Roaming\Rainmeter\Updates\Rainmeter-4.5.22.exe" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 631944817 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1446128660 B
Windows/system/drivers => 17146583 B
Edge => 0 B
Chrome => 888543729 B
Firefox => 1783802510 B
Opera => 7998729 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 201 B
systemprofile32 => 201 B
LocalService => 201 B
NetworkService => 7328795 B
Maja => 1452899704 B
RecycleBin => 957574732 B
EmptyTemp: => 6.7 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:45:43 ====
Postup byl aplikován, FRST několikrát "vytuhl", každopádně se zdá, že práci dokončil, vytvořil log a poté se PC zrestartovalo.
Loh přikládám, snad je to on.
Fix result of Farbar Recovery Scan Tool (x64) Version: 06-05-2025
Ran by Maja (06-05-2025 21:42:42) Run:1
Running from C:\Users\Maja\Desktop
Loaded Profiles: Maja
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [DesktopPortal] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750680 2023-12-19] (Oracle America, Inc. -> Oracle Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X] <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Maja\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
AlternateDataStreams: C:\Windows\tracing:? [16]
FirewallRules: [{45D954E9-E99F-47F3-AC1C-E34696989D58}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [TCP Query User{66D49877-0310-4143-B84C-B01DB6394953}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe => No File
FirewallRules: [UDP Query User{D64E5224-9285-4CDB-B3ED-176B0B29EAD6}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe] => (Allow) C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe => No File
FirewallRules: [{82525AFC-D254-4CBE-B13A-EFB6173BA900}] => (Allow) C:\Users\Maja\AppData\Local\Programs\Opera\opera.exe => No File
FirewallRules: [{8B05883F-F0D8-4C09-B97C-CD48EB08CD07}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{351ECA6A-589D-4C92-AB79-ADFF5D77383D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{9C359B50-90C6-45AF-93DA-91F32BB71BF4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{4A12D04F-CF9E-4F61-8483-F2CCC3814F81}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{4EE63767-C472-4365-95BD-F3EA4124C3AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{0C0E5FE8-B61B-45C9-A96B-97109163E2BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{BC7A01F6-5B40-4448-A9A0-614A7AC421F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C817E90C-CA8B-4FBD-AC74-1E8D25336A52}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{B26965B4-20D0-430C-B880-1B9A7CD6578E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{516EB090-0DAA-4351-9A93-177A318524E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.258.498.0_x64__zpdnekdrzrea0\Spotify.exe => No File
C:\Users\Maja\Downloads\LDPlayer4_ens_com.devsisters.ck_3040_ld (1).exe
C:\Users\Maja\AppData\Local\Microsoft\Windows\INetCache\IE\8C7JGIO9\Rainmeter-4.5.22[1].exe
C:\Users\Maja\AppData\Roaming\Rainmeter\Updates\Rainmeter-4.5.22.exe
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\DesktopPortal" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\System\CurrentControlSet\Services\cpuz136 => removed successfully
cpuz136 => service removed successfully
HKLM\System\CurrentControlSet\Services\GPUZ => removed successfully
GPUZ => service removed successfully
HKU\S-1-5-21-2980111542-369625552-1897353692-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92} => removed successfully
C:\Windows\tracing => ":?" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{45D954E9-E99F-47F3-AC1C-E34696989D58}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{66D49877-0310-4143-B84C-B01DB6394953}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D64E5224-9285-4CDB-B3ED-176B0B29EAD6}C:\users\maja\appdata\local\discord\app-1.0.9012\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{82525AFC-D254-4CBE-B13A-EFB6173BA900}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8B05883F-F0D8-4C09-B97C-CD48EB08CD07}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{351ECA6A-589D-4C92-AB79-ADFF5D77383D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9C359B50-90C6-45AF-93DA-91F32BB71BF4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4A12D04F-CF9E-4F61-8483-F2CCC3814F81}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4EE63767-C472-4365-95BD-F3EA4124C3AC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0C0E5FE8-B61B-45C9-A96B-97109163E2BC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BC7A01F6-5B40-4448-A9A0-614A7AC421F0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C817E90C-CA8B-4FBD-AC74-1E8D25336A52}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B26965B4-20D0-430C-B880-1B9A7CD6578E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{516EB090-0DAA-4351-9A93-177A318524E3}" => removed successfully
C:\Users\Maja\Downloads\LDPlayer4_ens_com.devsisters.ck_3040_ld (1).exe => moved successfully
"C:\Users\Maja\AppData\Local\Microsoft\Windows\INetCache\IE\8C7JGIO9\Rainmeter-4.5.22[1].exe" => not found
"C:\Users\Maja\AppData\Roaming\Rainmeter\Updates\Rainmeter-4.5.22.exe" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 631944817 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1446128660 B
Windows/system/drivers => 17146583 B
Edge => 0 B
Chrome => 888543729 B
Firefox => 1783802510 B
Opera => 7998729 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 201 B
systemprofile32 => 201 B
LocalService => 201 B
NetworkService => 7328795 B
Maja => 1452899704 B
RecycleBin => 957574732 B
EmptyTemp: => 6.7 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:45:43 ====
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu FRST
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu FRST
Dobrý den,
bohužel, Adobe Creative Cloud stále nefunguje (i přes to, že jsem přihlášena), prostě nenačte sdílené soubory. Na ostatních zařízeních pak funguje normálně.
bohužel, Adobe Creative Cloud stále nefunguje (i přes to, že jsem přihlášena), prostě nenačte sdílené soubory. Na ostatních zařízeních pak funguje normálně.
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu FRST
OK. Spusťte tuto utilitu: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179. Stáhněte, spusťte nechte pracovat a po skončení akce smažte vše, co najde. Poitzor, popis v odkazu platí pro starší verzi utility.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu FRST
Tak utilita nic nenašla, pouze některé procesy označila jako "lock"
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu FRST
Tzn, je to problém Adobe a nikoliv malware. Jelikož nejsme odborníci na produkty Adobe, kontaktujte jejich technickou podporu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?