VIRY.CZ

Dobré odpoledne

rád bych Vás zase poprosil o asistenci

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-04-2022
Ran by Zdeněk (administrator) on DESKTOP-QJEFONI (Micro-Star International Co., Ltd. MS-7B51) (11-04-2022 15:30:12)
Running from C:\Users\Zdeněk\Desktop
Loaded Profiles: Zdeněk
Platform: Microsoft Windows 10 Enterprise Version 20H2 19042.1586 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation) [File not signed] C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3dd75df32535321a\RtkAudUService64.exe <2>
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1525_none_7e00daaa7c97a563\TiWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3dd75df32535321a\RtkAudUService64.exe [1361000 2021-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-1331974727-954974268-3080333680-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1331974727-954974268-3080333680-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267928 2021-10-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-1331974727-954974268-3080333680-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35888256 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\100.0.4896.75\Installer\chrmstp.exe [2022-04-08] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05B0AC1A-B8B8-4FB2-9FB3-ECDB7C4DC503} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {06E64693-979C-438B-BAA1-400EC84AD9DF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {072C0A25-5E5D-4729-B91A-C246E973ACB1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {1B91AFB1-E299-4882-BCA4-DD00058EFC18} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1E1B9F14-378B-4AF9-B369-578AFB1D6CEC} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {271AB665-6FEB-4DCA-A147-C900DE4970FF} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Zdeněk\Desktop\esetonlinescanner_csy.exe LOGON (No File)
Task: {3501EA13-EA3F-4DFF-ADF4-CF59DC3878D7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4F57CCAF-3C05-4C22-8BE9-7B38D59D7BAE} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Zdeněk\Desktop\esetonlinescanner_csy.exe SCHED (No File)
Task: {5188C291-1F8D-4E00-8C56-9412123D61F9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c (No File)
Task: {6A4F370E-B0BD-4400-B7DE-47F589E3A859} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6F12DE4B-E12C-43DF-81D4-15A8F510FEE2} - System32\Tasks\GoogleUpdateTaskMachineUA1d580e13625d808 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-12-31] (Google Inc -> Google Inc.)
Task: {71BE10C5-FE05-4F10-9318-2AC8AA4CAEC0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7DED3EE8-072C-4192-BA5D-2E3BDAFF4831} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {828E8370-D413-4A9A-A7F7-5F96EAF1DD8E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-03-10] (Piriform Software Ltd -> Piriform)
Task: {95883B47-26C4-42BA-B12B-61DC11C7D7FB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A9AA1459-B7A3-4E5B-8A34-BA6E91169934} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler (No File)
Task: {B93175E0-2969-48E9-9FBA-9D417B109088} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B9D55709-3124-40BA-A0D3-F906548F7F8A} - System32\Tasks\CCleanerSkipUAC - Zdeněk => C:\Program Files\CCleaner\CCleaner.exe [30053504 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BB447011-7527-495F-B433-0C7130904030} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CB1A9CA3-A477-4D8A-91B0-521808FF1112} - System32\Tasks\GoogleUpdateTaskMachineCore1d580e1362375d7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-12-31] (Google Inc -> Google Inc.)
Task: {CE827AE1-C9BE-4E50-94D4-9BBEF14FEC58} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D7DBADAE-44D8-4894-AC05-CDBD39115269} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E22F672C-1B8A-45D5-838E-FB1CED019E7B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F5D1CF69-FAF0-422D-BE04-80B7D719372D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{fc72edb7-76ca-4e03-bf5a-d95e557f6625}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Zdeněk\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-26]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-03-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1331974727-954974268-3080333680-1001: ubisoft.com/uplaypc -> D:\sett\Data\Base\_Dbg\Bin\Release\orbit\npuplaypc.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default [2022-04-11]
CHR DownloadDir: C:\Users\Zdeněk\Desktop
CHR Extension: (Prezentace) - C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-29]
CHR Extension: (Dokumenty) - C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-29]
CHR Extension: (Disk Google) - C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-29]
CHR Extension: (Tabulky) - C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-18]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-03-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Zdeněk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3644008 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811120 2021-06-24] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [505856 2018-05-02] (Intel Corporation) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2020-02-22] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [107832 2020-02-22] (Even Balance, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6228008 2022-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2019-01-02] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2019-01-02] (Disc Soft Ltd -> Disc Soft Ltd)
R3 MpKsl329fb721; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3841D679-A44F-483C-B340-FDB3267A0C9C}\MpKslDrv.sys [139536 2022-04-11] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-04-11 15:30 - 2022-04-11 15:30 - 000018566 _____ C:\Users\Zdeněk\Desktop\FRST.txt
2022-04-11 15:29 - 2022-04-11 15:30 - 000000000 ____D C:\FRST
2022-04-11 15:29 - 2022-04-11 15:29 - 002365952 _____ (Farbar) C:\Users\Zdeněk\Desktop\FRST64.exe
2022-03-21 18:28 - 2022-03-21 18:34 - 000000000 ____D C:\Users\Zdeněk\AppData\Roaming\SyberiaTWB
2022-03-21 18:24 - 2022-03-21 18:24 - 000000000 ____D C:\Users\Zdeněk\AppData\LocalLow\Microids
2022-03-13 15:43 - 2022-03-13 15:43 - 000000000 ____D C:\Users\Zden�k
2022-03-13 15:41 - 2022-03-13 15:41 - 000000000 ____D C:\Users\Zdeněk\AppData\Roaming\Goldberg SocialClub Emu Saves
2022-03-13 15:34 - 2022-03-13 15:34 - 000000663 _____ C:\Users\Public\Desktop\Red Dead Redemption 2.lnk
2022-03-13 15:34 - 2022-03-13 15:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Dead Redemption 2
2022-03-13 09:02 - 2022-03-13 09:02 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-03-13 09:02 - 2022-03-13 09:02 - 000195584 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2022-03-13 09:02 - 2022-03-13 09:02 - 000011911 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-03-13 09:01 - 2022-03-13 09:01 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-03-13 09:01 - 2022-03-13 09:01 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-03-13 09:01 - 2022-03-13 09:01 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-03-13 08:55 - 2022-03-13 08:55 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-04-11 15:30 - 2020-01-06 13:06 - 000000000 ____D C:\Program Files\CCleaner
2022-04-11 15:30 - 2018-12-31 10:30 - 000000000 ____D C:\ProgramData\NVIDIA
2022-04-11 15:30 - 2018-12-31 10:26 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-11 15:28 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-11 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-04-10 07:05 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-08 14:30 - 2018-12-31 10:01 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-04-08 14:27 - 2020-09-03 20:03 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-04-08 14:27 - 2018-12-31 10:26 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-04-06 16:06 - 2020-09-19 17:47 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-04-06 16:02 - 2022-03-08 15:43 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d81917cb7bbad4
2022-04-06 16:02 - 2022-01-26 17:33 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-03-25 18:54 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-03-25 15:40 - 2019-08-15 18:29 - 000000000 ____D C:\Users\Zdeněk\AppData\Local\D3DSCache
2022-03-23 21:13 - 2020-09-19 17:47 - 000601432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2022-03-23 21:12 - 2020-09-19 17:47 - 000483664 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2022-03-21 19:23 - 2019-01-02 11:27 - 000000000 ____D C:\Users\Zdeněk\AppData\Roaming\vlc
2022-03-21 18:04 - 2022-01-26 17:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-03-18 15:28 - 2019-01-02 10:10 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-03-14 14:32 - 2022-01-26 17:38 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-03-14 14:32 - 2019-12-07 16:43 - 000716762 _____ C:\WINDOWS\system32\perfh005.dat
2022-03-14 14:32 - 2019-12-07 16:43 - 000144940 _____ C:\WINDOWS\system32\perfc005.dat
2022-03-14 14:27 - 2018-12-31 10:17 - 000000000 ____D C:\Users\Zdeněk\AppData\Local\Packages
2022-03-14 14:25 - 2022-01-26 17:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-03-14 14:25 - 2022-01-26 17:29 - 000008192 ___SH C:\DumpStack.log.tmp
2022-03-13 17:20 - 2022-01-26 17:29 - 000276720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-03-13 17:20 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-03-13 17:19 - 2019-12-07 16:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-03-13 17:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-03-13 17:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-03-13 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-03-13 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-03-13 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-03-13 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-03-13 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-03-13 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-03-13 17:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-03-13 15:40 - 2020-12-28 16:37 - 000000000 ____D C:\Users\ZdenGLCache
2022-03-13 15:40 - 2019-11-26 10:55 - 000000000 ____D C:\Users\Zdeněk\Documents\Rockstar Games
2022-03-13 15:40 - 2019-11-26 10:54 - 000000000 ____D C:\Users\Zdeněk\AppData\Local\Rockstar Games
2022-03-13 15:39 - 2020-10-04 20:05 - 000000000 ____D C:\Users\Zdeněk\AppData\Roaming\EMPRESS
2022-03-13 09:03 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-03-13 09:01 - 2022-01-26 17:33 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-03-13 08:55 - 2019-01-02 10:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-03-12 18:17 - 2019-01-02 10:07 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ========

2021-03-28 10:28 - 2021-05-07 16:54 - 000012288 _____ () C:\Users\Zdeněk\AppData\Roaming\emp.bin
2019-09-06 13:10 - 2022-01-10 19:30 - 000007680 _____ () C:\Users\Zdeněk\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-09-17 16:27 - 2020-09-17 16:27 - 000000000 ___SH () C:\Users\Zdeněk\AppData\Local\LumaEmu
2019-09-02 17:38 - 2020-02-18 07:21 - 000007613 _____ () C:\Users\Zdeněk\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)



ATTENTION: ==> Could not access BCD. -> 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
==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-04-2022
Ran by Zdeněk (11-04-2022 15:31:15)
Running from C:\Users\Zdeněk\Desktop
Microsoft Windows 10 Enterprise Version 20H2 19042.1586 (X64) (2022-01-26 15:33:56)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1331974727-954974268-3080333680-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1331974727-954974268-3080333680-503 - Limited - Disabled)
Guest (S-1-5-21-1331974727-954974268-3080333680-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1331974727-954974268-3080333680-504 - Limited - Disabled)
Zdeněk (S-1-5-21-1331974727-954974268-3080333680-1001 - Administrator - Enabled) => C:\Users\Zdeněk

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 22.001.20085 - Adobe Systems Incorporated)
Assassins Creed Valhalla (HKLM-x32\...\Assassins Creed Valhalla_is1) (Version: - )
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.59.24655 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
CCleaner (HKLM\...\CCleaner) (Version: 5.91 - Piriform)
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-1331974727-954974268-3080333680-1001\...\Cities: Skylines - ČEŠTINA) (Version: - )
CPUID CPU-Z 1.91 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.91 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0677 - Disc Soft Ltd)
Days Gone (HKU\S-1-5-21-1331974727-954974268-3080333680-1001\...\FLT_Days Gone) (Version: - )
Dying Light: The Following – Enhanced Edition (HKLM-x32\...\1448452156_is1) (Version: 1.45.0 - GOG.com)
FastShare.cz verze 2.3.1 (HKLM-x32\...\FastShare.cz_is1) (Version: 2.3.1 - )
FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.58.64628 - Electronic Arts)
Generation Zero Resistance (HKLM-x32\...\Generation Zero Resistance_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 100.0.4896.75 - Google LLC)
Hitman 3 (HKLM-x32\...\Hitman 3_is1) (Version: - )
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1828.12.0.1151 - Intel Corporation)
Intel(R) Network Connections 23.2.0.1006 (HKLM\...\PROSetDX) (Version: 23.2.0.1006 - Intel)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.369.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{aa81bdf2-96a6-4400-a596-c7d1916ce9f7}) (Version: 1.50.369.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Medal of Honor - Allied Assault War Chest (HKLM-x32\...\GOGPACKMEDALOFHONORPACK_is1) (Version: 2.0.0.21 - GOG.com)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 100.0.1185.36 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}) (Version: 2.0.675.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM\...\{90160000-001F-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM\...\{90160000-001F-041B-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.94 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 497.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 497.29 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8514 - Realtek Semiconductor Corp.)
Red Dead Redemption 2 (HKLM-x32\...\Red Dead Redemption 2_is1) (Version: - )
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
Sherlock Holmes: Chapter One (HKLM-x32\...\Sherlock Holmes: Chapter One_is1) (Version: - )
Sniper Ghost Warrior Contracts 2 (HKLM-x32\...\Sniper Ghost Warrior Contracts 2_is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Syberia The World Before (HKLM-x32\...\FLT_Syberia_-_The_World_Before) (Version: - )
Two Point Hospital A Stitch in Time (HKLM-x32\...\Two Point Hospital A Stitch in Time_is1) (Version: - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.5 - VideoLAN)
Watch_Dogs - Complete Edition verze 1.06.329 (HKLM-x32\...\{914F68F5-BE18-46C5-A7F7-EBC155F9F45A}_is1) (Version: 1.06.329 - )
Webshare klient (HKLM-x32\...\Webshare klient) (Version: - )
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-01-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-01-26] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-26] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.29.256.0_x64__dt26b99r8h8gj [2021-12-11] (Realtek Semiconductor Corp)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\nvshext.dll [2021-12-15] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-05-03 12:30 - 2018-05-03 12:30 - 000349696 _____ (Intel(R) Corporation) [File not signed] C:\Windows\system32\NCS2Setp.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 09:31 - 2020-03-29 11:58 - 000000841 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1331974727-954974268-3080333680-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Zdeněk\Desktop\Island-Beach-2560x1600.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "Reflect UI"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-1331974727-954974268-3080333680-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1331974727-954974268-3080333680-1001\...\StartupApproved\Run: => "SpyEmergency"
HKU\S-1-5-21-1331974727-954974268-3080333680-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1331974727-954974268-3080333680-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{8889E181-7A4F-40F1-9BAE-304D016EF2C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{27392BB3-A0DB-443A-B3BE-807565E48C77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{7A4F54CC-974E-4DDE-9F87-42A2E9C9B41B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{81F796E7-0B04-4681-99BD-6DAE9CC98431}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{7AA757EF-0D7D-4820-A1A1-A10097F39949}E:\medal of honor - allied assault war chest\mohaa.exe] => (Block) E:\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [TCP Query User{14BC9007-9A43-49B6-BA9C-0A5F6546ACEA}E:\medal of honor - allied assault war chest\mohaa.exe] => (Block) E:\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{06E845EA-6E73-40E3-9362-E7D43C20EBD4}E:\dying light\dyinglightgame.exe] => (Block) E:\dying light\dyinglightgame.exe (Techland S.A. -> Techland)
FirewallRules: [TCP Query User{6EA0FF99-EF89-47BF-925F-4078A4A681B5}E:\dying light\dyinglightgame.exe] => (Block) E:\dying light\dyinglightgame.exe (Techland S.A. -> Techland)
FirewallRules: [UDP Query User{0A349C58-D1BA-4A64-A28A-9BDD1B805F7B}E:\forza horizon 5\forzahorizon5.exe] => (Block) E:\forza horizon 5\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{F9CE9326-8103-44C9-8E73-05BD5BE18969}E:\forza horizon 5\forzahorizon5.exe] => (Block) E:\forza horizon 5\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{B9AA2F8E-6BFD-43FF-97E0-64FE97B73433}E:\age of empires iv\reliccardinal.exe] => (Block) E:\age of empires iv\reliccardinal.exe => No File
FirewallRules: [TCP Query User{27DFF20B-8079-44C1-B1B4-0391D03BD17A}E:\age of empires iv\reliccardinal.exe] => (Block) E:\age of empires iv\reliccardinal.exe => No File
FirewallRules: [UDP Query User{55E463D9-2C2D-452E-BD90-DBB80B35B817}E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe] => (Block) E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe => No File
FirewallRules: [TCP Query User{1616772A-0CBB-4288-B7BE-E60E23285143}E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe] => (Block) E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe => No File
FirewallRules: [UDP Query User{7CBB64D1-AA70-4089-A687-E73A4FCDCDF5}E:\battlefield 4\bf4.exe] => (Block) E:\battlefield 4\bf4.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [TCP Query User{97AB3944-084F-475B-81E6-73FF8CE32D28}E:\battlefield 4\bf4.exe] => (Block) E:\battlefield 4\bf4.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{319288B8-A402-4EA4-AB61-785F757D2032}] => (Allow) E:\bat5\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{B8258F12-8A50-406B-8329-5A9766834FCF}] => (Allow) E:\bat5\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{332C831A-FB35-4672-A20F-02BAD06ABCED}] => (Allow) E:\bat5\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{260BDF5E-650D-4814-A876-CBC270BE2D71}] => (Allow) E:\bat5\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{6AA52CE5-A2D6-4FA1-A1B2-8AA7C6AD47CF}E:\sniper ghost warrior contracts 2\win_x64\sgwcontracts2.exe] => (Block) E:\sniper ghost warrior contracts 2\win_x64\sgwcontracts2.exe (CI Games S.A.) [File not signed]
FirewallRules: [TCP Query User{6C64E323-ACF8-4F05-99F3-219B8A115C66}E:\sniper ghost warrior contracts 2\win_x64\sgwcontracts2.exe] => (Block) E:\sniper ghost warrior contracts 2\win_x64\sgwcontracts2.exe (CI Games S.A.) [File not signed]
FirewallRules: [UDP Query User{395850B5-9877-48D9-B060-64DB276EFEC5}E:\zombie army 4 - dead war\bin\za4_vulkan.exe] => (Block) E:\zombie army 4 - dead war\bin\za4_vulkan.exe (Rebellion) [File not signed]
FirewallRules: [TCP Query User{7D0485EA-4CDB-4B76-BEC8-A4C8760CA989}E:\zombie army 4 - dead war\bin\za4_vulkan.exe] => (Block) E:\zombie army 4 - dead war\bin\za4_vulkan.exe (Rebellion) [File not signed]
FirewallRules: [{33BB5E7F-25F5-4FD7-82ED-76B71C7EBDFA}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{38D1C026-4E73-4C5E-8E0D-F9066C117BBD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B73D91FE-E8B3-4ED3-BDC2-E9F8044FDA6E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7FCF5C76-9A6D-4069-B621-A7D1BDCEA307}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [{D2AF486E-A044-4178-AB72-7FF55A986497}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [{4BB3C5B1-3C53-43C0-B368-88ABCCEB1943}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{55AF79E7-15D4-4395-981C-5FE03648824B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8CB47108-ACFA-4E82-A3F2-1F98487587F5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{653CEDED-8ACF-4C44-A5D9-529244328452}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A3575A06-EAF6-4286-AF10-94578C24E506}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{1BF384D8-526F-452B-A1FA-E5E3F5790F51}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{0E87C132-6E00-424A-875F-238124344F21}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{9FA06D24-1024-4F68-909B-4591364E0305}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [TCP Query User{FEF10CD6-FE40-4F3E-93F7-067A946DE69D}E:\age of empires iv dll\reliccardinal.exe] => (Block) E:\age of empires iv dll\reliccardinal.exe (RELIC ENTERTAINMENT, INC. -> Relic Entertainment)
FirewallRules: [UDP Query User{9BF562F1-4EFE-4E17-9A66-009CCD915410}E:\age of empires iv dll\reliccardinal.exe] => (Block) E:\age of empires iv dll\reliccardinal.exe (RELIC ENTERTAINMENT, INC. -> Relic Entertainment)
FirewallRules: [TCP Query User{8D1A0323-FDB7-4885-A59D-CE1C49F514FC}E:\generation zero resistance\generationzero_f.exe] => (Block) E:\generation zero resistance\generationzero_f.exe (Fatalist Development AB -> )
FirewallRules: [UDP Query User{E94B5A93-3782-47CA-98BA-6879FCD51CB7}E:\generation zero resistance\generationzero_f.exe] => (Block) E:\generation zero resistance\generationzero_f.exe (Fatalist Development AB -> )
FirewallRules: [{DD482741-7521-4A20-96CA-05E4DFFB04C9}] => (Allow) E:\Red Dead Redemption 2\RDR2.exe (Rockstar Games) [File not signed]
FirewallRules: [{46307F53-E769-418C-B2FE-C89C29DBEE67}] => (Allow) E:\Red Dead Redemption 2\RDR2.exe (Rockstar Games) [File not signed]
FirewallRules: [{D2ED34A9-6B33-4804-B5EC-E64448B46E01}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

28-03-2022 14:54:53 Windows Zálohování
06-04-2022 16:05:08 Windows Zálohování
11-04-2022 15:30:50 Windows Zálohování

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/30/2022 03:19:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.1566, časové razítko: 0x66a7e2c5
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x737577d0
ID chybujícího procesu: 0x1d10
Čas spuštění chybující aplikace: 0x01d84438bf0d6d84
Cesta k chybující aplikaci: C:\WINDOWS\SysWOW64\explorer.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: c2888942-3ee9-4ebd-94ac-ff4c1aad76d7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/21/2022 05:26:47 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Záloha (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (03/13/2022 05:18:40 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program RDR2.exe verze 1.0.1311.23 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 274c

Čas spuštění: 01d836dfff434a8f

Čas ukončení: 4294967295

Cesta k aplikaci: E:\Red Dead Redemption 2\RDR2.exe

ID hlášení: cf2545d7-5201-40e2-8f39-cdf83ea80ee4

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Top level window is idle

Error: (03/11/2022 03:44:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WatchDogsLegion.exe, verze: 0.1.0.1, časové razítko: 0x61324b9e
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000001d000
ID chybujícího procesu: 0x1350
Čas spuštění chybující aplikace: 0x01d8354e11651533
Cesta k chybující aplikaci: E:\Watch Dogs Legion\bin\WatchDogsLegion.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: e672b98f-7580-4aca-a3ed-94d8be1663bb
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/11/2022 03:43:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WatchDogsLegion.exe, verze: 0.1.0.1, časové razítko: 0x61324b9e
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000001d000
ID chybujícího procesu: 0x1574
Čas spuštění chybující aplikace: 0x01d8354df2610b60
Cesta k chybující aplikaci: E:\Watch Dogs Legion\bin\WatchDogsLegion.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 3a84c98e-9aa0-4659-904e-4451d87f2452
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/10/2022 05:32:21 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Záloha (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (03/07/2022 04:07:47 PM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: Zálohování nebylo úspěšné. Chyba: Programu Windows Zálohování se nezdařilo získání výhradního zámku k systémovému oddílu EFI (ESP). K tomu může dojít, pokud soubory v oddílu ESP používá nějaká jiná aplikace. Zkuste operaci opakovat. (0x8078011E).

Error: (03/07/2022 04:07:44 PM) (Source: Microsoft-Windows-Backup) (EventID: 517) (User: NT AUTHORITY)
Description: Operace zálohování spuštěná v 2022-03-07T13:57:38.1382036Z se nezdařila s kódem chyby 0x8078011e (Programu Windows Zálohování se nezdařilo získání výhradního zámku k systémovému oddílu EFI (ESP). K tomu může dojít, pokud soubory v oddílu ESP používá nějaká jiná aplikace. Zkuste operaci opakovat.
). V podrobnostech o události vyhledejte řešení problému a po jeho vyřešení spusťte operaci zálohování znovu.


System errors:
=============
Error: (04/07/2022 06:33:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QJEFONI)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/07/2022 06:33:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QJEFONI)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/07/2022 06:33:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QJEFONI)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2022 06:21:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QJEFONI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2022 06:21:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QJEFONI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2022 06:21:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QJEFONI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2022 06:21:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QJEFONI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2022 06:21:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QJEFONI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2022-03-25 14:39:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {75905C21-8794-4825-B5C5-1887F8EF0AAB}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-03-13 11:36:26
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B743A0B7-2D74-4790-903D-94E4052306CA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-03-11 14:43:32
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Crack!MSR
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_E:\Watch Dogs Legion\bin\EMP.dll
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QJEFONI\Zdeněk
Název procesu: E:\Watch Dogs Legion\bin\WatchDogsLegion.exe
Verze bezpečnostních informací: AV: 1.359.1772.0, AS: 1.359.1772.0, NIS: 1.359.1772.0
Verze modulu: AM: 1.1.18900.3, NIS: 1.1.18900.3

Date: 2022-03-11 14:43:22
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Crack!MSR
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_E:\Watch Dogs Legion\bin\EMP.dll
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QJEFONI\Zdeněk
Název procesu: E:\Watch Dogs Legion\bin\WatchDogsLegion.exe
Verze bezpečnostních informací: AV: 1.359.1623.0, AS: 1.359.1623.0, NIS: 1.359.1623.0
Verze modulu: AM: 1.1.18900.3, NIS: 1.1.18900.3

Date: 2022-03-11 14:43:11
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Crack!MSR
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_E:\Watch Dogs Legion\bin\EMP.dll
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QJEFONI\Zdeněk
Název procesu: E:\Watch Dogs Legion\bin\WatchDogsLegion.exe
Verze bezpečnostních informací: AV: 1.359.1623.0, AS: 1.359.1623.0, NIS: 1.359.1623.0
Verze modulu: AM: 1.1.18900.3, NIS: 1.1.18900.3

CodeIntegrity:
===============
Date: 2022-03-21 16:24:13
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 1.10 08/22/2018
Motherboard: Micro-Star International Co., Ltd. MPG Z390 GAMING PLUS (MS-7B51)
Processor: Intel(R) Core(TM) i5-9600K CPU @ 3.70GHz
Percentage of memory in use: 26%
Total physical RAM: 16323.55 MB
Available physical RAM: 11917.59 MB
Total Virtual: 18755.55 MB
Available Virtual: 12886.34 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.97 GB) (Free:161.25 GB) NTFS
Drive d: (Záloha) (Fixed) (Total:931.51 GB) (Free:197.88 GB) NTFS
Drive e: (Games) (Fixed) (Total:931.5 GB) (Free:132.63 GB) NTFS

\\?\Volume{d3e16997-6aa7-4d89-a675-b825a91508da}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.03 GB) NTFS
\\?\Volume{e6a644e5-e696-4aa9-b80d-d1faf7634f2d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 75A66AF1)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
Task: {271AB665-6FEB-4DCA-A147-C900DE4970FF} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Zdeněk\Desktop\esetonlinescanner_csy.exe LOGON (No File)
Task: {4F57CCAF-3C05-4C22-8BE9-7B38D59D7BAE} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Zdeněk\Desktop\esetonlinescanner_csy.exe SCHED (No File)
Task: {5188C291-1F8D-4E00-8C56-9412123D61F9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c (No File)
Task: {6F12DE4B-E12C-43DF-81D4-15A8F510FEE2} - System32\Tasks\GoogleUpdateTaskMachineUA1d580e13625d808 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-12-31] (Google Inc -> Google Inc.)
Task: {A9AA1459-B7A3-4E5B-8A34-BA6E91169934} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler (No File)
Task: {CB1A9CA3-A477-4D8A-91B0-521808FF1112} - System32\Tasks\GoogleUpdateTaskMachineCore1d580e1362375d7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-12-31] (Google Inc -> Google Inc.)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
FF Plugin HKU\S-1-5-21-1331974727-954974268-3080333680-1001: ubisoft.com/uplaypc -> D:\sett\Data\Base\_Dbg\Bin\Release\orbit\npuplaypc.dll [No File]
C:\Users\Zdeněk\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ATTENTION: ==> Could not access BCD. -> 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
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [UDP Query User{0A349C58-D1BA-4A64-A28A-9BDD1B805F7B}E:\forza horizon 5\forzahorizon5.exe] => (Block) E:\forza horizon 5\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{F9CE9326-8103-44C9-8E73-05BD5BE18969}E:\forza horizon 5\forzahorizon5.exe] => (Block) E:\forza horizon 5\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{B9AA2F8E-6BFD-43FF-97E0-64FE97B73433}E:\age of empires iv\reliccardinal.exe] => (Block) E:\age of empires iv\reliccardinal.exe => No File
FirewallRules: [TCP Query User{27DFF20B-8079-44C1-B1B4-0391D03BD17A}E:\age of empires iv\reliccardinal.exe] => (Block) E:\age of empires iv\reliccardinal.exe => No File
FirewallRules: [UDP Query User{55E463D9-2C2D-452E-BD90-DBB80B35B817}E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe] => (Block) E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe => No File
FirewallRules: [TCP Query User{1616772A-0CBB-4288-B7BE-E60E23285143}E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe] => (Block) E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe => No File
E:\Watch Dogs Legion\bin\EMP.dll

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Zde

Fix result of Farbar Recovery Scan Tool (x64) Version: 13-04-2022 01
Ran by Zdeněk (13-04-2022 15:19:55) Run:1
Running from C:\Users\Zdeněk\Desktop
Loaded Profiles: Zdeněk
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Task: {271AB665-6FEB-4DCA-A147-C900DE4970FF} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Zdeněk\Desktop\esetonlinescanner_csy.exe LOGON (No File)
Task: {4F57CCAF-3C05-4C22-8BE9-7B38D59D7BAE} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Zdeněk\Desktop\esetonlinescanner_csy.exe SCHED (No File)
Task: {5188C291-1F8D-4E00-8C56-9412123D61F9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c (No File)
Task: {6F12DE4B-E12C-43DF-81D4-15A8F510FEE2} - System32\Tasks\GoogleUpdateTaskMachineUA1d580e13625d808 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-12-31] (Google Inc -> Google Inc.)
Task: {A9AA1459-B7A3-4E5B-8A34-BA6E91169934} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler (No File)
Task: {CB1A9CA3-A477-4D8A-91B0-521808FF1112} - System32\Tasks\GoogleUpdateTaskMachineCore1d580e1362375d7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-12-31] (Google Inc -> Google Inc.)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
FF Plugin HKU\S-1-5-21-1331974727-954974268-3080333680-1001: ubisoft.com/uplaypc -> D:\sett\Data\Base\_Dbg\Bin\Release\orbit\npuplaypc.dll [No File]
C:\Users\Zdeněk\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ATTENTION: ==> Could not access BCD. -> 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
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [UDP Query User{0A349C58-D1BA-4A64-A28A-9BDD1B805F7B}E:\forza horizon 5\forzahorizon5.exe] => (Block) E:\forza horizon 5\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{F9CE9326-8103-44C9-8E73-05BD5BE18969}E:\forza horizon 5\forzahorizon5.exe] => (Block) E:\forza horizon 5\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{B9AA2F8E-6BFD-43FF-97E0-64FE97B73433}E:\age of empires iv\reliccardinal.exe] => (Block) E:\age of empires iv\reliccardinal.exe => No File
FirewallRules: [TCP Query User{27DFF20B-8079-44C1-B1B4-0391D03BD17A}E:\age of empires iv\reliccardinal.exe] => (Block) E:\age of empires iv\reliccardinal.exe => No File
FirewallRules: [UDP Query User{55E463D9-2C2D-452E-BD90-DBB80B35B817}E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe] => (Block) E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe => No File
FirewallRules: [TCP Query User{1616772A-0CBB-4288-B7BE-E60E23285143}E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe] => (Block) E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe => No File
E:\Watch Dogs Legion\bin\EMP.dll

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{271AB665-6FEB-4DCA-A147-C900DE4970FF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{271AB665-6FEB-4DCA-A147-C900DE4970FF}" => removed successfully
C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onLogOn => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EOSv3 Scheduler onLogOn" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4F57CCAF-3C05-4C22-8BE9-7B38D59D7BAE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4F57CCAF-3C05-4C22-8BE9-7B38D59D7BAE}" => removed successfully
C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onTime => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EOSv3 Scheduler onTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5188C291-1F8D-4E00-8C56-9412123D61F9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5188C291-1F8D-4E00-8C56-9412123D61F9}" => removed successfully
C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DropboxUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6F12DE4B-E12C-43DF-81D4-15A8F510FEE2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6F12DE4B-E12C-43DF-81D4-15A8F510FEE2}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d580e13625d808 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d580e13625d808" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A9AA1459-B7A3-4E5B-8A34-BA6E91169934}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A9AA1459-B7A3-4E5B-8A34-BA6E91169934}" => removed successfully
C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DropboxUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CB1A9CA3-A477-4D8A-91B0-521808FF1112}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB1A9CA3-A477-4D8A-91B0-521808FF1112}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d580e1362375d7 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1d580e1362375d7" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKU\S-1-5-21-1331974727-954974268-3080333680-1001\Software\MozillaPlugins\ubisoft.com/uplaypc => removed successfully
"D:\sett\Data\Base\_Dbg\Bin\Release\orbit\npuplaypc.dll" => not found
C:\Users\Zdeněk\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
ATTENTION: ==> Could not access BCD. -> 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rror: No automatic fix found for this entry.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0A349C58-D1BA-4A64-A28A-9BDD1B805F7B}E:\forza horizon 5\forzahorizon5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F9CE9326-8103-44C9-8E73-05BD5BE18969}E:\forza horizon 5\forzahorizon5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B9AA2F8E-6BFD-43FF-97E0-64FE97B73433}E:\age of empires iv\reliccardinal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{27DFF20B-8079-44C1-B1B4-0391D03BD17A}E:\age of empires iv\reliccardinal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{55E463D9-2C2D-452E-BD90-DBB80B35B817}E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1616772A-0CBB-4288-B7BE-E60E23285143}E:\state of decay 2 juggernaut edition plague territory\stateofdecay2\binaries\win64\stateofdecay2-win64-shipping.exe" => removed successfully
"E:\Watch Dogs Legion\bin\EMP.dll" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 45373306 B
Java, Flash, Steam htmlcache => 8326325 B
Windows/system/drivers => 20774590 B
Edge => 8889972 B
Chrome => 477815002 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 97708 B
Zdeněk => 14936043703 B

RecycleBin => 8841092 B
EmptyTemp: => 14.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:20:22 ====

Smazáno, log je již OK.

Fůůůha, to byla tentokrát rychlovka )

Takže děkuji a příště zas

A rovnou pak přihodím i nějakou kačku

Nemáte zač!