prosím o kontrolu logu. Jde o počítač důchodců, najednou jim tam začlo vyskakovat upozornění na trojský kůň v počítači. Pravděpodobně šlo jen o oznámení nějaké podvodné stránky, všechny oznámení jsem povypínal, ale pro jistotu dávám log na kontrolu.
Trochu problém je, že k tomu počítači se dostanu až za 14 dní, takže pokud budu mít něco udělat, nebude to dřív než za těch 14 dní. Měl bych jen prosbu, pokud aspoň tento log bude v pořádku, jen napsat, že vypadá v pořádku. Oni si zrovna zřídili internetové bankovnictví a zatím se do něj nechtějí přihlašovat, když jim to hlásilo trojského koně,což se jim ani nedivím. Pokud log bude ok, tak jim napíšu, ať ho vyzkouší. Děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-11-2025
Ran by suvov (administrator) on DESKTOP-SEM5LO4 (ASUS System Product Name) (08-11-2025 18:42:41)
Running from C:\Users\suvov\OneDrive\Plocha\FRST64.exe
Loaded Profiles: suvov
Platform: Microsoft Windows 10 Home Version 22H2 19045.6456 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud UI Helper.exe <5>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(CompPkgSrv.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atieclxx.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25290.205.4069.4894_x64__8wekyb3d8bbwe\ms-teams.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Roblox Corporation -> Roblox Corporation) C:\Users\suvov\AppData\Local\Roblox\Versions\version-7a4a5d7d1fb3449f\RobloxPlayerBeta.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <14>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\NisSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2510.1001.55.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9246656 2018-11-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [FastPCProf] => C:\Program Files (x86)\FastPCProf\FastPCProf.exe [38310920 2022-11-05] (FastPCProfInc -> ) [File not signed]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2535400 2025-10-09] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\Run: [Microsoft Edge Update] => C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.207.5\MicrosoftEdgeUpdateCore.exe [277048 2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\Run: [Viewndow] => C:\Users\suvov\AppData\Local\Programs\Viewndow\Viewndow.exe (No File)
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\Run: [MicrosoftEdgeAutoLaunch_C8972CFD32CDF1D6C3CCF8216DEED926] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4253224 2025-10-30] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\Run: [Teams] => C:\Users\suvov\AppData\Local\Microsoft\WindowsApps\MSTeams_8wekyb3d8bbwe\ms-teams.exe [0 0] () [symlink -> ]
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\MountPoints2: {1ca89703-5e20-11ef-a17a-04421a1f5d06} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\MountPoints2: {87793207-3a65-11ed-a0f5-a8a15924be71} - "D:\OnePlus_setup.exe" /s
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\MountPoints2: {8f8f224a-4c6f-11f0-a1b7-04421a1f5d06} - "E:\OnePlus_setup.exe" /s
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\MountPoints2: {c7344862-36b8-11ef-a173-04421a1f5d06} - "E:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-4264802661-2104710373-3371355710-500\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-4264802661-2104710373-3371355710-500\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {966A0800-7AF1-45D7-8BC8-4BF039225E35} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [91144 2025-08-25] (HP Inc. -> HP Inc.)
Task: {F6DF3FEF-CAAD-4D62-9718-3B5FF7A34F77} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [91144 2025-08-25] (HP Inc. -> HP Inc.)
Task: {4D40F589-560E-4434-96E4-AB8FCAABA6C3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpCmdRun.exe [1790640 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B2CA94BF-15DF-41C5-A331-76CE9F2B5E40} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpCmdRun.exe [1790640 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {45ECD11F-57A8-4237-86AB-B3319FDDE00C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpCmdRun.exe [1790640 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {776507EC-A129-4408-8D45-74A405833E0C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpCmdRun.exe [1790640 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EECDB976-A4E6-4812-BE5F-362C4B477DAF} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4264802661-2104710373-3371355710-1002Core => C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205768 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B18D4F4-7FF5-453E-8324-630D2E8BC4ED} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4264802661-2104710373-3371355710-1002UA => C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205768 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D1CA5C8-1EC4-47FD-8C83-38934732A89E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [693888 2025-10-28] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {9B885D31-8261-4BC5-86FD-DBD9DCE24B0E} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4264802661-2104710373-3371355710-1002 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [693888 2025-10-28] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {1F67CD2A-5785-4007-9DC5-254501C4F542} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34944 2025-10-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {3754CF9A-FEA5-4639-AEE9-E3E393C63E08} - System32\Tasks\OneDrive Startup Task-S-1-5-21-4264802661-2104710373-3371355710-1002 => C:\Users\suvov\AppData\Local\Microsoft\OneDrive\25.194.1005.0003\OneDriveLauncher.exe [725864 2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {1A31708E-160F-492D-B9CC-588A0D478A93} - System32\Tasks\Opera scheduled Autoupdate 1667664997 => C:\Users\suvov\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5959128 2025-11-04] (Opera Norway AS -> Opera Software)
Task: {D9E7336B-4EDF-4409-B3DD-D8BFADE3FCFB} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {6806FB51-34E4-48D1-9187-F9113BFDE1AA} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog9 17 %windir%\system32\vsocklib.dll => No File
Winsock: Catalog9 18 %windir%\system32\vsocklib.dll => No File
Winsock: Catalog9-x64 17 %windir%\system32\vsocklib.dll => No File
Winsock: Catalog9-x64 18 %windir%\system32\vsocklib.dll => No File
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{0e146916-55b2-4002-96c3-bc86720f7566}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{59747436-5333-4435-b96d-4b8a98e70c18}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{b702abec-8b3f-452a-b2a1-327b1149bea7}: [DhcpNameServer] 10.0.0.1 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\suvov\AppData\Local\Microsoft\Edge\User Data\Default [2025-11-08]
Edge Extension: (Dokumenty Google offline) - C:\Users\suvov\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-02]
Edge Extension: (Edge relevant text changes) - C:\Users\suvov\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
FireFox:
========
FF DefaultProfile: c2x3uqjq.default
FF ProfilePath: C:\Users\suvov\AppData\Roaming\Mozilla\Firefox\Profiles\c2x3uqjq.default [2019-12-07]
FF ProfilePath: C:\Users\suvov\AppData\Roaming\Mozilla\Firefox\Profiles\uvrxavp7.default-release [2025-11-08]
FF Homepage: Mozilla\Firefox\Profiles\uvrxavp7.default-release -> hxxp://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\uvrxavp7.default-release -> hxxps://kutnohorsky.denik.cz; hxxps://www.gogy.com
FF Extension: (New Tab) - C:\Users\suvov\AppData\Roaming\Mozilla\Firefox\Profiles\uvrxavp7.default-release\Extensions\newtab@mozilla.org.xpi [2025-10-22]
FF Extension: (Data Leak Blocker) - C:\Users\suvov\AppData\Roaming\Mozilla\Firefox\Profiles\uvrxavp7.default-release\features\{2fe5b6e6-ff2b-4843-9014-6ef4a0c45188}\data-leak-blocker@mozilla.com.xpi [2025-10-05]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2025-10-09] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2025-10-09] (Adobe Inc. -> Adobe Systems)
Opera:
=======
OPR Profile: C:\Users\suvov\AppData\Roaming\Opera Software\Opera Stable [2023-09-07]
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={s ... utEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Rich Hints Agent) - C:\Users\suvov\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-07-01]
OPR Extension: (Opera Wallet) - C:\Users\suvov\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-07-01]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\suvov\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-11-05]
OPR Extension: (Opera AI Prompts) - C:\Users\suvov\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-07-01]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944608 2025-10-09] (Adobe Inc. -> Adobe Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2018-11-26] (ASUSTeK Computer Inc. -> ) [File not signed]
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [842128 2025-11-04] (ASUSTeK Computer Inc. -> )
S2 AuraproductionsMegivo; C:\Program Files (x86)\AuraproductionsMegivo\AuraproductionsMegivo.exe [36791384 2022-11-01] (EmeraldMonarctronicsBase -> Bank Dorilo) [File not signed]
S3 GameInputRedistService; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [141680 2025-10-20] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243720 2025-08-25] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpDefenderCoreService.exe [2026144 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\NisSrv.exe [4418608 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MsMpEng.exe [282440 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Browser; %SystemRoot%\System32\browser.dll [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2018-11-26] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [287232 2022-06-17] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-04-17] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333216 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20888 2025-10-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [629128 2025-10-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102832 2025-10-23] (Microsoft Windows -> Microsoft Corporation)
S3 AIDA64Driver; \??\D:\_OTHERS\AIDA64 Business Edition Portable 6.20.5300 Final (CZ,SK)\kerneld.x64 [X]
S3 rsDwf; \SystemRoot\system32\DRIVERS\rsDwf.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-11-08 18:42 - 2025-11-08 18:43 - 000018597 _____ C:\Users\suvov\OneDrive\Plocha\FRST.txt
2025-11-08 18:42 - 2025-11-08 18:43 - 000000000 ____D C:\FRST
2025-11-08 18:41 - 2025-11-08 18:41 - 002443776 _____ (Farbar) C:\Users\suvov\OneDrive\Plocha\FRST64.exe
2025-11-03 14:39 - 2025-11-03 14:39 - 000102194 _____ C:\Users\suvov\Downloads\Prehled_plateb_515729740217_03_11_2025_14_39.pdf
2025-11-03 14:16 - 2025-11-03 14:16 - 000139593 _____ C:\Users\suvov\Downloads\Vypis_515729740217_20251001_20251001.pdf
2025-10-31 18:15 - 2025-10-31 18:15 - 000000000 ____D C:\Program Files\Windows Kits
2025-10-31 18:15 - 2025-10-31 18:15 - 000000000 ____D C:\Program Files\Microsoft GameInput
2025-10-28 18:14 - 2025-11-03 22:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-10-16 16:40 - 2025-10-16 16:40 - 000033205 _____ C:\Users\suvov\OneDrive\Dokumenty\zelená rajčata.odt
2025-10-09 16:46 - 2025-10-09 16:46 - 000001386 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2025-10-09 16:46 - 2025-10-09 16:46 - 000000000 ____D C:\Users\Public\NGL
2025-10-09 16:46 - 2025-10-09 16:46 - 000000000 ____D C:\Users\Public\Adobe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-11-08 18:42 - 2022-02-10 14:21 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-11-08 18:34 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-11-08 18:27 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-11-08 18:26 - 2021-10-02 09:56 - 000000000 ____D C:\Users\suvov\AppData\Local\Roblox
2025-11-08 17:44 - 2021-12-18 23:15 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-11-08 16:55 - 2023-07-18 13:55 - 000001401 _____ C:\Users\suvov\OneDrive\Plocha\Roblox Player.lnk
2025-11-08 16:55 - 2021-10-02 09:56 - 000000000 ____D C:\Users\suvov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2025-11-08 16:55 - 2019-12-07 14:39 - 000000000 ____D C:\Users\suvov\AppData\Local\D3DSCache
2025-11-08 16:41 - 2020-06-30 07:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-11-08 14:29 - 2025-03-01 15:41 - 000000000 ____D C:\Program Files (x86)\Steam
2025-11-07 20:10 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-11-07 20:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-11-07 18:37 - 2022-11-05 17:17 - 000004236 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1667664997
2025-11-07 18:37 - 2022-11-05 17:16 - 000001390 _____ C:\Users\suvov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2025-11-05 21:52 - 2025-09-24 16:12 - 000432496 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_b.dll
2025-11-05 21:52 - 2025-03-01 15:31 - 004213112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-11-05 21:52 - 2025-03-01 15:31 - 000878968 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-11-05 21:52 - 2025-03-01 15:31 - 000285048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-11-05 21:52 - 2025-03-01 15:31 - 000244088 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-11-05 21:52 - 2025-03-01 15:31 - 000166264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-11-05 21:52 - 2025-03-01 15:31 - 000153976 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-11-05 21:52 - 2025-03-01 15:31 - 000076152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-11-04 17:43 - 2020-06-30 07:31 - 001596402 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-11-04 17:43 - 2019-12-07 15:41 - 000667072 _____ C:\WINDOWS\system32\perfh005.dat
2025-11-04 17:43 - 2019-12-07 15:41 - 000132328 _____ C:\WINDOWS\system32\perfc005.dat
2025-11-04 17:39 - 2022-12-01 21:54 - 000880672 _____ C:\WINDOWS\system32\wpbbin.exe
2025-11-04 17:39 - 2022-12-01 21:54 - 000842128 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2025-11-04 17:39 - 2020-06-30 07:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-11-04 17:39 - 2020-06-30 07:27 - 000008192 ___SH C:\DumpStack.log.tmp
2025-11-03 22:34 - 2019-12-07 14:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-11-03 14:23 - 2022-07-20 19:44 - 000003902 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4264802661-2104710373-3371355710-1002UA
2025-11-03 14:23 - 2022-07-20 19:44 - 000003836 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4264802661-2104710373-3371355710-1002Core
2025-11-02 18:05 - 2020-06-12 22:26 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-11-02 17:59 - 2020-06-30 07:32 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-11-02 17:59 - 2020-06-30 07:32 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-10-31 18:22 - 2025-02-06 00:16 - 000003576 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-4264802661-2104710373-3371355710-1002
2025-10-31 18:22 - 2021-12-12 21:50 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4264802661-2104710373-3371355710-1002
2025-10-31 18:22 - 2020-06-30 07:32 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4264802661-2104710373-3371355710-1002
2025-10-31 18:22 - 2020-06-30 07:27 - 000002383 _____ C:\Users\suvov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-10-31 18:14 - 2025-09-24 16:12 - 000436592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_b.dll.0
2025-10-31 18:14 - 2025-03-01 15:31 - 000878968 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll.0
2025-10-29 20:16 - 2019-12-07 14:39 - 000000000 ____D C:\Users\suvov\AppData\Local\Packages
2025-10-28 18:19 - 2021-10-05 18:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-10-28 18:19 - 2019-12-07 14:45 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-10-25 18:18 - 2019-12-07 14:41 - 000000000 ____D C:\Users\suvov\AppData\Local\PlaceholderTileLogoFolder
2025-10-23 16:39 - 2019-11-24 13:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-10-20 11:32 - 2025-09-24 16:12 - 000981368 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInputRedist.dll
2025-10-20 11:32 - 2025-09-24 16:12 - 000022904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInputRedist.dll
2025-10-18 22:03 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-10-18 21:59 - 2025-03-01 15:42 - 000000000 ____D C:\Users\suvov\AppData\Local\Steam
2025-10-18 20:55 - 2020-06-30 07:27 - 000456688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-10-18 20:54 - 2024-07-14 14:25 - 000000000 ____D C:\WINDOWS\system32\compatrel
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2025-10-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-10-18 20:53 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-10-18 20:53 - 2019-11-24 17:20 - 214534944 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-10-18 20:53 - 2019-11-24 17:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-10-18 20:50 - 2020-06-30 07:30 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-10-11 19:03 - 2025-08-30 14:02 - 000000000 ____D C:\Users\suvov\AppData\Local\CrashDumps
2025-10-09 16:46 - 2024-09-21 19:02 - 000000000 ____D C:\Program Files\Common Files\Adobe
2025-10-09 16:46 - 2024-09-21 19:02 - 000000000 ____D C:\Program Files\Adobe
2025-10-09 16:46 - 2024-09-21 19:02 - 000000000 ____D C:\Program Files (x86)\Adobe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-11-2025
Ran by suvov (08-11-2025 18:44:48)
Running from C:\Users\suvov\OneDrive\Plocha
Microsoft Windows 10 Home Version 22H2 19045.6456 (X64) (2020-06-30 06:32:33)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-4264802661-2104710373-3371355710-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-4264802661-2104710373-3371355710-503 - Limited - Disabled)
Guest (S-1-5-21-4264802661-2104710373-3371355710-501 - Limited - Disabled)
suvov (S-1-5-21-4264802661-2104710373-3371355710-1002 - Administrator - Enabled) => C:\Users\suvov
WDAGUtilityAccount (S-1-5-21-4264802661-2104710373-3371355710-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.8.0.821 - Adobe Inc.)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2020.0821.1329.24282 - Advanced Micro Devices, Inc.)
Kontrola stavu osobního počítače s Windows (HKLM\...\{7DED818B-F556-4115-9CC0-ACE3F614CE63}) (Version: 4.0.2410.23001 - Microsoft Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
LibreOffice 6.3.3.2 (HKLM\...\{4DACF7A7-C851-4943-A63D-3CAE495C48E0}) (Version: 6.3.3.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 142.0.3595.53 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 142.0.3595.53 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM\...\{ECB4BDD1-984C-9F25-299C-A9EF75C14197}) (Version: 10.1.26100.6879 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\OneDriveSetup.exe) (Version: 25.194.1005.0003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4264802661-2104710373-3371355710-500\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox) (Version: 144.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.3.0 - Mozilla)
Mozilla Thunderbird (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 128.8.1 (x86 cs)) (Version: 128.8.1 - Mozilla)
Opera Stable 123.0.5669.47 (HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\Opera 123.0.5669.47) (Version: 123.0.5669.47 - Opera Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.35.510.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8339 - Realtek Semiconductor Corp.)
Roblox Player for suvov (HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for suvov (HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\roblox-studio) (Version: - Roblox Corporation)
SOS - Pomoc s počítačem (HKLM-x32\...\{898BAEBF-0858-6007-4D91-ADF1ACE44632}) (Version: 7.11.760 - LogMeIn, Inc.)
SSOption (HKLM-x32\...\Bank Dorilo) (Version: 4.9.8.8 - ) <==== ATTENTION
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{B8D93870-98D1-4980-AFCA-E26563CDFB79}) (Version: 8.94.0.0 - Microsoft Corporation)
Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_10.8.1.0_x64__kgqvnymyfvs32 [2025-11-07] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_4.17.4.0_x64__kgqvnymyfvs32 [2025-10-30] (king.com)
Free Live Football TV -> C:\Program Files\WindowsApps\62413Webay.FreeLiveFootballTV_1.0.4.0_x64__pwmdsy9yk98rc [2022-11-08] (Webay)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_161.1.1087.0_x64__v10z8vjag6ke6 [2025-08-25] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-09-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-09-07] (Microsoft Corporation) [MS Ad]
Minecraft Education -> C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.9301.0_x64__8wekyb3d8bbwe [2025-10-31] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [2025-08-29] (Microsoft Studios)
O2 TV -> C:\Program Files\WindowsApps\D8378DF7.O2TVGo_20182.1.0.0_x64__tqn3m7kee4xc8 [2023-06-19] (O2 Czech Republic a.s.)
Spotify – hudba a podcasty -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0 [2025-10-24] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{1108FD1C-492F-4251-B9DB-77F0274267B2}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.187.37\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{1C67DF85-7959-43C0-92F8-2CAD0314C31C}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.201.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{2ABD6384-2E18-40E8-8439-F06D21E0B03D}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.43\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{2EF7E390-2F7C-4F9A-9B7D-4A87B56B711D}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.173.51\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{2FDB3305-19B8-4FE2-972B-ED5E97CBBD6E}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.39\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{38971E90-14FD-44F6-AA45-1447B653F873}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.173.45\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{41B09861-5409-4D44-8CA4-D49FBFAA2E6F}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.49\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> C:\Users\suvov\AppData\Local\Microsoft\OneDrive\25.194.1005.0003\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{4FFB4BD8-A109-4F25-A4DB-313678B19417}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.31\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{5EA43877-C6D8-4885-B77A-C0BB27E94372}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.207.5\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{5FC44EBC-3A1F-4FBB-85E5-34405788C8D7}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.187.41\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{608D599A-DCA6-4A7C-BED7-AFCD8465345A}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.175.29\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{64C6EFB9-8F79-4106-B975-067448DC768F}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.177.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{6A49690B-7DB6-424B-81CE-F51078F2A58D}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.203.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{6DD6748E-7DAE-47EF-B4D5-03AA1B06D697}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.187.39\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{72726D01-426C-4B35-8266-B4496CAA889E}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.183.29\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{78C1ADF4-6DAE-4164-AEFA-4E3EAD9E750A}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.19\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{79F05C14-E714-4C12-9924-93C812894CB0}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.57\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{7C9A348D-C321-47AC-904F-150312A5430F}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.175.27\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{7EFB4924-4B93-4C43-9832-9C3D05E85214}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.59\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{81093D63-7825-417B-BFC8-ADC63FA4E53D}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.207.5\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{83F21C4B-8643-4A08-A29A-822AFD835037}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.193.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{88B20FC8-EBD6-4181-B5F6-50F45BFF722E}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.167.21\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> C:\Users\suvov\AppData\Local\Microsoft\OneDrive\25.194.1005.0003\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{997809F3-33FD-4FD6-A2ED-CEF50F3263B1}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.169.31\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{A087E49F-1F8E-4603-A200-55537B737421}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.25\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{A78355B5-2A4D-486B-B97A-43448FC8C34D}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.207.5\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{AA0C8DF4-8EEB-489C-A922-5B6D264C19E8}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.161.35\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{ABF66F82-B04C-4FE4-8272-661539463FE1}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.171.37\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{AE1542A7-3989-481B-93A9-1500C5F56B14}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.185.27\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{B258532D-3529-4BEB-BF38-F08F98B3968C}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{B29F5F83-90DF-479A-BDE7-8A9F4412E394}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.171.39\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{BB04C6F8-598E-4733-ABB4-07489C863436}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.205.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{BC4C72EF-3055-4A6D-86E1-AE4D24DB63CA}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.35\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{C88B3957-621C-415B-8EE5-B688FC7EF924}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.61\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{CAE1760A-CB07-481B-8F9A-BC65510AF5D5}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.185.21\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{D1CE12B0-2529-4B24-BE8E-189735EA0DC1}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.165.21\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{D2188EEC-2B0F-488C-8ECA-5285E8ECD87D}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.69\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{D8599F80-3D26-46D2-8CF1-0AD21B0ECF31}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.65\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{DAA7499A-B3AC-4419-A89B-124318504051}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.185.29\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{E3D57E77-FE71-4D06-BD34-D48820074909}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.181.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{E76F97B1-1AE9-497C-9FA4-F57BBABAD54A}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.185.17\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{E8791438-3525-48BF-A600-C577AD1674C2}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.173.49\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{ECCE2756-C45D-4E13-BC2D-EC9F138997E6}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.199.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{F1CBF5EB-347F-4E4C-90AC-E43339FC34EC}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.173.55\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4264802661-2104710373-3371355710-1002_Classes\CLSID\{F46A78BD-06FC-442C-88DF-0500F08F2379}\InprocServer32 -> C:\Users\suvov\AppData\Local\Microsoft\EdgeUpdate\1.3.195.45\psuser_64.dll => No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-07-14 17:32 - 2020-07-14 17:32 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2020-08-21 13:19 - 2020-08-21 13:19 - 001562624 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000413696 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000519168 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 001431040 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 001180672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2020-08-21 13:28 - 2020-08-21 13:28 - 006010880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 006345216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 001078272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 004000256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 003802624 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 001083904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000205312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000376320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 092323328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 005560832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000188416 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 002888704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000287232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000329216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000312320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-07-14 17:32 - 2020-07-14 17:32 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-08-21 13:28 - 2020-08-21 13:28 - 000085504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\suvov\Downloads\file: wobbly.life.v0.7.7 .lnk [2182]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2022-09-07 10:44 - 000000855 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 10.0.0.138
Windows Firewall is enabled.
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\suvov\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\16060766773820058203\134070140832630017.jpg
HKU\S-1-5-21-4264802661-2104710373-3371355710-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 5) (TamperProtectionSource: )
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "FastPCProf"
HKU\S-1-5-21-4264802661-2104710373-3371355710-1002\...\StartupApproved\Run: => "Viewndow"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{25FB79AF-C212-4AB9-8F0B-EB958CF5B2F5}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{80F2E927-5EA8-47BF-99D8-C1E7FC20E167}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{81C31C19-2ECA-4A4B-8E29-7A6279BEDE98}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D5372C91-FDD2-411F-BC29-B073E5C59FB8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DFBADC0C-2610-4AA4-9970-FF48E9204800}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{27592296-236D-482C-BD8C-0423774FEB41}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E36EB4A7-C195-4710-943D-09AD96A725E5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{D3909C86-8CA3-4A5B-AF11-C614E60509C0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C1D4B026-E963-40C4-8861-F1A0765074A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{D8847A9A-E3A5-4536-86C2-2C8EDA3F053A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{01088055-BC74-4A73-A1F3-671F4787C1C8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{6EF6D51D-423B-4C46-8291-BEBDEC5AD03D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{480C6602-A8F0-4CD4-AA2D-AB8069EA5E9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9E6EFAB9-EFA3-4B1E-B67D-E4ECCBA59176}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{01DF0815-250E-4BEF-A399-C43432F6D46B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9B70DF6-3CB5-42AC-9DE3-6A0E1C192420}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9E52163E-11BF-46CF-8506-8DDBA10C29D0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{A2B3DFFC-FE15-4A57-ADD5-C8AEB6466B45}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{4FCCF173-2EB4-4B90-BA1D-8C0EFA11E984}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C9FDECA4-F98C-493B-8C62-42B0BB065603}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{DEE8A9E1-566F-4D95-9FA2-EF951DE91161}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{9D94CA15-D619-4FAE-BE26-6B4EB72B7DCE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C6D4F3AA-3BCF-4B49-9F45-D83553929B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BF3CD61F-05C3-4AEB-86E1-F47F8C58BB95}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3407.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{38B8FB13-D8A7-4B9A-9755-BFFED90781D2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A9A88F7C-9B11-4D81-A970-6668F1EAE010}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9EA9F55A-E15D-4B69-9FA6-56767B7A61D8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0E1BBD19-50DB-4E78-A8C7-DCFAE908457F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DA8457E8-1409-47D6-8A64-373491293A49}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.137.3425.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E0E0CC89-F7C9-4197-9499-85B53D841E09}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.137.3425.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{08B42035-72D1-47F3-A626-C4ABB19E87B6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.137.3425.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E8EFEF5F-7815-41FB-85BE-1EC28E10E663}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.137.3425.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5B70E44F-0F4D-4A68-A562-B62D398BF65E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0532F352-9195-4EF9-B292-F112BC3E9CB0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B771ED05-4196-4DB6-973C-04886ADFE91B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3687F5D6-E57F-4B74-9303-5DFFC97FD7DD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{741C2877-69CA-4699-80F6-E8E9C0CC3EB0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BA3293B5-A4D8-494C-8736-389D69EE8355}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DBE31E0-73FE-4417-BD37-BD7DAF639B05}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{EA820ED8-5CC2-4B5D-8208-619739E61498}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{5831D8E8-6782-4427-927F-87044F5E6790}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BD8AEA4D-4102-4991-801F-96EC50101209}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BA69808C-A82B-484A-ACF4-1ED0130C306A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{A75B4F1D-6483-4290-A7B7-9E1E3CBD94F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{988034EF-DE26-41CC-A8E7-EFDD544D25A9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3213.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{517B9AFC-A306-4EC3-BD1D-84A900C2D983}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3213.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BBBFEEF2-805D-4E5C-AD74-7CB8F8893BC4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3213.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0B0FB79F-FE98-4467-8471-09B556535188}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3213.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8293CE54-E036-41E7-B2F4-249713438D0D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{651F41E2-9E22-45D2-82F3-3B0A4C11827E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2552806F-BEC7-4C4B-876D-A4ACE2781857}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{7F3C9DBD-1FA4-42FD-843E-83FB063CE17F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{D6D21049-BC4B-485E-8F5C-4745EE07F2C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [{9C826FDE-332F-48B9-930C-F1C7301D63D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [{959DAD4A-C3F3-4247-B180-E14F868FF332}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D400AC33-08A5-4503-970C-6F63C75724F8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{87B7E5F6-C485-43EB-AFDA-1EDB89851F60}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F830AE36-DC40-4096-AD15-11D688DC0BD5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{73C1E636-2D7A-4DE8-9CD2-4B2D7DE103E1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2CF466E9-4F58-4FA6-9BE2-6940FFC4EC30}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{76A6035C-D44F-4D7C-8E19-5405ED8EC3E5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FCBAA279-63A9-48AE-962A-2ABC65A2D554}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{53DB6A82-0CB1-49D1-BE83-D7819D55ADD4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7DD9BDD1-895B-461D-9F7A-1DAB614C7C59}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FD600924-B16F-489B-8574-7488E77D567D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{967A7F11-FF5E-44BF-90B0-656D2A42C666}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2DBD5EAB-99B6-4571-8912-AA07DAB8B867}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{52805DFE-E149-4F25-8593-B9EF36BB37F4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.9301.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe (Microsoft Corporation -> )
FirewallRules: [{B8891337-3A5F-4A38-B0AF-46B834B742B6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.9301.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe (Microsoft Corporation -> )
FirewallRules: [{40A2B928-4C33-4D91-A39B-0E98158E80EB}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25290.205.4069.4894_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C0082566-72F8-4C1B-BB2F-2B15470BC92E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25290.205.4069.4894_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{70B66C5F-ABBA-4350-A0ED-3191EA3D1BE5}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25290.205.4069.4894_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F8F14D14-853E-4093-9536-DD7C6090372B}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25290.205.4069.4894_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DA01AB85-4813-4383-BEE2-9FECC0B327E8}] => (Allow) C:\Users\suvov\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
==================== Restore Points =========================
29-10-2025 20:13:48 Naplánovaný kontrolní bod
06-11-2025 20:16:19 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/11/2025 07:03:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 7.325.9112.0, časové razítko: 0x68c327ec
Název chybujícího modulu: InputHost.dll, verze: 10.0.19041.5794, časové razítko: 0x661b1ff1
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000e5f7
ID chybujícího procesu: 0x179c
Čas spuštění chybující aplikace: 0x01dc3ad95e22f25b
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.325.9112.0_x64__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\InputHost.dll
ID zprávy: ad63dcf5-958c-4433-867f-85e747a26055
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_7.325.9112.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (09/27/2025 07:37:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_InstallService, verze: 10.0.19041.5794, časové razítko: 0x11bd0919
Název chybujícího modulu: combase.dll, verze: 10.0.19041.6093, časové razítko: 0xeb8a8ba0
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000054884
ID chybujícího procesu: 0x1b88
Čas spuštění chybující aplikace: 0x01dc2fdb82696d4a
Cesta k chybující aplikaci: C:\WINDOWS\System32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: 833c3263-25ec-4921-b44b-821345d35db1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/27/2025 06:00:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RobloxPlayerInstaller.exe, verze: 1.6.0.19441, časové razítko: 0x3ee3416b
Název chybujícího modulu: RobloxPlayerInstaller.exe, verze: 1.6.0.19441, časové razítko: 0x3ee3416b
Kód výjimky: 0xc0000409
Posun chyby: 0x00563016
ID chybujícího procesu: 0x187c
Čas spuštění chybující aplikace: 0x01dc2fd0456a2095
Cesta k chybující aplikaci: C:\Users\suvov\AppData\Local\Roblox\Versions\version-8afc5a7d5e894d22\RobloxPlayerInstaller.exe
Cesta k chybujícímu modulu: C:\Users\suvov\AppData\Local\Roblox\Versions\version-8afc5a7d5e894d22\RobloxPlayerInstaller.exe
ID zprávy: e4915656-8f1b-440d-aa4b-1886b200ea66
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/13/2025 04:27:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RobloxPlayerInstaller.exe, verze: 1.6.0.9605, časové razítko: 0x4cbce9fc
Název chybujícího modulu: RobloxPlayerInstaller.exe, verze: 1.6.0.9605, časové razítko: 0x4cbce9fc
Kód výjimky: 0xc0000409
Posun chyby: 0x005619b3
ID chybujícího procesu: 0x37c8
Čas spuštění chybující aplikace: 0x01dc24c2e209a319
Cesta k chybující aplikaci: C:\Users\suvov\AppData\Local\Roblox\Versions\version-c1ac69007bdc4e48\RobloxPlayerInstaller.exe
Cesta k chybujícímu modulu: C:\Users\suvov\AppData\Local\Roblox\Versions\version-c1ac69007bdc4e48\RobloxPlayerInstaller.exe
ID zprávy: cd6eacb4-9973-4464-95e0-d11284a7b06f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/07/2025 12:28:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: XboxGameBarWidgets.exe, verze: 2508.1001.27.0, časové razítko: 0x68941b39
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000071208
ID chybujícího procesu: 0x2fdc
Čas spuštění chybující aplikace: 0x01dc1fea8c2d5ec8
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingApp_2508.1001.27.0_x64__8wekyb3d8bbwe\XboxGameBarWidgets.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: a9addc95-329d-47b7-b2f0-61aebef8d3ec
Úplný název chybujícího balíčku: Microsoft.GamingApp_2508.1001.27.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: Microsoft.Xbox.WidgetsApp
Error: (09/07/2025 12:28:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 7.325.7090.0, časové razítko: 0x686e331b
Název chybujícího modulu: InputHost.dll, verze: 10.0.19041.5794, časové razítko: 0x661b1ff1
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000e5f7
ID chybujícího procesu: 0x27f8
Čas spuštění chybující aplikace: 0x01dc1fea895ea510
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.325.7090.0_x64__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\InputHost.dll
ID zprávy: fe158c00-7e57-4dac-8003-9e85097cd132
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_7.325.7090.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (09/06/2025 04:23:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RobloxPlayerInstaller.exe, verze: 1.6.1.65120, časové razítko: 0xc56af0d2
Název chybujícího modulu: RobloxPlayerInstaller.exe, verze: 1.6.1.65120, časové razítko: 0xc56af0d2
Kód výjimky: 0xc0000409
Posun chyby: 0x00561263
ID chybujícího procesu: 0x48c0
Čas spuštění chybující aplikace: 0x01dc1f422cc7378b
Cesta k chybující aplikaci: C:\Users\suvov\AppData\Local\Roblox\Versions\version-65664807ac1d4e85\RobloxPlayerInstaller.exe
Cesta k chybujícímu modulu: C:\Users\suvov\AppData\Local\Roblox\Versions\version-65664807ac1d4e85\RobloxPlayerInstaller.exe
ID zprávy: 718efcda-b820-4b73-bc64-41371abfc643
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/30/2025 03:12:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RobloxPlayerInstaller.exe, verze: 1.6.0.55071, časové razítko: 0x947f9a84
Název chybujícího modulu: RobloxPlayerInstaller.exe, verze: 1.6.0.55071, časové razítko: 0x947f9a84
Kód výjimky: 0xc0000409
Posun chyby: 0x00536be3
ID chybujícího procesu: 0x4b2c
Čas spuštění chybující aplikace: 0x01dc19b822f600b6
Cesta k chybující aplikaci: C:\Users\suvov\AppData\Local\Roblox\Versions\version-89b6c70d8f7f42ac\RobloxPlayerInstaller.exe
Cesta k chybujícímu modulu: C:\Users\suvov\AppData\Local\Roblox\Versions\version-89b6c70d8f7f42ac\RobloxPlayerInstaller.exe
ID zprávy: 7f413c36-11b3-420b-8079-0d9585b995d7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (11/08/2025 04:42:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Browser neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (11/08/2025 04:42:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Browser bylo dosaženo časového limitu (30000 ms).
Error: (11/08/2025 04:42:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Browser neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (11/08/2025 04:42:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Browser bylo dosaženo časového limitu (30000 ms).
Error: (11/08/2025 04:42:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Browser neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (11/08/2025 04:42:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Browser bylo dosaženo časového limitu (30000 ms).
Error: (11/08/2025 04:42:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Browser neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (11/08/2025 04:42:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Browser bylo dosaženo časového limitu (30000 ms).
Windows Defender:
================
Date: 2025-11-08 18:31:25
Description:
Antivirová ochrana v programu Microsoft Defender ѕсдπ ђдŝ ьέεη ŝţоφрєð вĕƒőřë ċõmрĺεţíθñ.%ή %ŧŠçāʼn ĬÐ:%ъ{2253A1EB-90FF-4456-A5FD-782A7530DEB9}%ⁿ %ťŚ¢αʼn Τÿр℮:%вAntimalwarový program%ŋ %ţŠсаņ Рäřдмėŧēřş:%вRychlé prohledávání%ń %τŪšεг:%ьNT AUTHORITY\SYSTEM%ʼn %ťŚŧòρ Řêâšóп:%ъŜ¢ĥзδůŀėď ѕčаň ẃªś ѕκϊφρзđ ъε¢άύśé тнė ļǻşт šџ¢čзššƒцľ śĉåή ώãŝ щīŧнĩň τћė ľάŝŧ 7 đªγś
Date: 2025-11-07 20:06:11
Description:
Antivirová ochrana v programu Microsoft Defender ѕсдπ ђдŝ ьέεη ŝţоφрєð вĕƒőřë ċõmрĺεţíθñ.%ή %ŧŠçāʼn ĬÐ:%ъ{54EC51C1-CC7F-4678-B1E4-DF04627B43FE}%ⁿ %ťŚ¢αʼn Τÿр℮:%вAntimalwarový program%ŋ %ţŠсаņ Рäřдмėŧēřş:%вRychlé prohledávání%ń %τŪšεг:%ьNT AUTHORITY\SYSTEM%ʼn %ťŚŧòρ Řêâšóп:%ъŜ¢ĥзδůŀėď ѕčаň ẃªś ѕκϊφρзđ ъε¢άύśé тнė ļǻşт šџ¢čзššƒцľ śĉåή ώãŝ щīŧнĩň τћė ľάŝŧ 7 đªγś
Date: 2025-11-06 20:15:17
Description:
Antivirová ochrana v programu Microsoft Defender ѕсдπ ђдŝ ьέεη ŝţоφрєð вĕƒőřë ċõmрĺεţíθñ.%ή %ŧŠçāʼn ĬÐ:%ъ{D3463808-AE86-4C27-8284-054097786258}%ⁿ %ťŚ¢αʼn Τÿр℮:%вAntimalwarový program%ŋ %ţŠсаņ Рäřдмėŧēřş:%вRychlé prohledávání%ń %τŪšεг:%ьNT AUTHORITY\SYSTEM%ʼn %ťŚŧòρ Řêâšóп:%ъŜ¢ĥзδůŀėď ѕčаň ẃªś ѕκϊφρзđ ъε¢άύśé тнė ļǻşт šџ¢čзššƒцľ śĉåή ώãŝ щīŧнĩň τћė ľάŝŧ 7 đªγś
Date: 2025-11-05 21:46:52
Description:
Antivirová ochrana v programu Microsoft Defender ѕсдπ ђдŝ ьέεη ŝţоφрєð вĕƒőřë ċõmрĺεţíθñ.%ή %ŧŠçāʼn ĬÐ:%ъ{FC16F41C-FD18-4948-95EA-D44B8E7C1DF0}%ⁿ %ťŚ¢αʼn Τÿр℮:%вAntimalwarový program%ŋ %ţŠсаņ Рäřдмėŧēřş:%вRychlé prohledávání%ń %τŪšεг:%ьNT AUTHORITY\SYSTEM%ʼn %ťŚŧòρ Řêâšóп:%ъŜ¢ĥзδůŀėď ѕčаň ẃªś ѕκϊφρзđ ъε¢άύśé тнė ļǻşт šџ¢čзššƒцľ śĉåή ώãŝ щīŧнĩň τћė ľάŝŧ 7 đªγś
Date: 2025-11-03 18:19:34
Description:
Antivirová ochrana v programu Microsoft Defender ѕсдπ ђдŝ ьέεη ŝţоφрєð вĕƒőřë ċõmрĺεţíθñ.%ή %ŧŠçāʼn ĬÐ:%ъ{A67562EE-C6F9-48F4-8863-036FD7013BA7}%ⁿ %ťŚ¢αʼn Τÿр℮:%вAntimalwarový program%ŋ %ţŠсаņ Рäřдмėŧēřş:%вRychlé prohledávání%ń %τŪšεг:%ьNT AUTHORITY\SYSTEM%ʼn %ťŚŧòρ Řêâšóп:%ъŜ¢ĥзδůŀėď ѕčаň ẃªś ѕκϊφρзđ ъε¢άύśé тнė ļǻşт šџ¢čзššƒцľ śĉåή ώãŝ щīŧнĩň τћė ľάŝŧ 7 đªγś
Event[0]:
Date: 2023-07-15 20:56:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.377.1344.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19700.3
Kód chyby: 0x80240017
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2022-11-05 17:16:52
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o nahrání podezřelého souboru pro další analýzu.
Název souboru: C:\program files (x86)\auraproductionsmegivo\uninstall.exe
Sha256: 4895a16e57dca9f16178cc660d3e86a693d6d2a9d4d9feaeb489f01ad9bee9aa
Aktuální verze bezpečnostních informací: AV: 1.377.1344.0, AS: 1.377.1344.0
Aktuální verze modulu: 1.1.19700.3
Kód chyby: 0x80071112
CodeIntegrity:
===============
Date: 2023-10-08 16:50:16
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\EdgeCore\117.0.2045.60\prefs_enclave_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-10-08 16:50:13
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\EdgeCore\117.0.2045.60\dual_engine_adapter_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-10-05 17:27:37
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\prefs_enclave_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-10-05 17:27:37
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\dual_engine_adapter_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-10-01 12:58:25
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\EdgeCore\117.0.2045.47\prefs_enclave_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-10-01 12:58:22
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\EdgeCore\117.0.2045.47\dual_engine_adapter_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-09-27 18:08:30
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\EdgeCore\117.0.2045.36\prefs_enclave_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-09-27 18:08:29
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\EdgeCore\117.0.2045.36\dual_engine_adapter_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 3202 06/16/2021
Motherboard: ASUSTeK COMPUTER INC. PRIME B450M-K II
Processor: AMD Ryzen 3 3200G with Radeon Vega Graphics
Percentage of memory in use: 69%
Total physical RAM: 6046.59 MB
Available physical RAM: 1829.96 MB
Total Virtual: 11422.59 MB
Available Virtual: 3919.96 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.19 GB) (Free:274.65 GB) (Model: KINGSTON SA2000M8500G) NTFS
\\?\Volume{1f2c95e9-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 1F2C95E9)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Přispějete na provoz fóra?