Dobrý den.
Prosím o kontrolu logů. PC je občas pomalé a jednou denně po přihlášení uživatele vytvoří i 1000 spojení do internetu. Po cca 10 - 15 minutách se většina spojení zruší a pak bývá klid...
Log FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-06-2025
Ran by polakovad (administrator) on CERVENA-PC (ATComputers TRILINE PROFI) (25-06-2025 13:07:15)
Running from \\zskola2\user-prac\cervenad\Plocha\FRST64.exe
Loaded Profiles: polakovad & MSSQLFDLauncher$FENIX2019 & SQLTELEMETRY$FENIX2019 & MSSQLLaunchpad$FENIX2019
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe <2>
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Asseco Solutions a.s. -> Asseco Solutions, a.s.) C:\Program Files (x86)\PVT\Fenix\Asseco.Fenix.SpolecnySpoustec.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\AlfaSoftware\Avensio\Avensio.exe ->) (Alfa Software, s.r.o. -> RSM Payroll Centre CZ s.r.o.) C:\AlfaSoftware\Avensio\Avensiovypocet.exe
(C:\AlfaSoftware\Avensio\Avensio.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\Icecream Screen Recorder 7\recorder.exe ->) (ICECREAM APPS LTD -> ) C:\Program Files (x86)\Icecream Screen Recorder 7\uservice.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdhost.exe
(DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\atieclxx.exe
(explorer.exe ->) (Alfa Software, s.r.o. -> RSM Payroll Centre CZ s.r.o.) C:\AlfaSoftware\Avensio\Avensio.exe
(explorer.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\cervenad\AppData\Local\WebEx\WebexHost.exe
(explorer.exe ->) (ICECREAM APPS LTD -> Icecream) C:\Program Files (x86)\Icecream Screen Recorder 7\recorder.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Seyfor, a. s. -> Seyfor, a.s.) C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe
(KOMERCNI BANKA A.S. -> Komerční banka, a.s.) C:\Program Files (x86)\Profibanka\KB_PCB.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.095.0518.0002\Microsoft.SharePoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\atiesrxx.exe
(services.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\Launchpad.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe <2>
(services.exe ->) (Seyfor.BankAgregator.Api) [File not signed] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.exe
(services.exe ->) (Software602 a.s. -> Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mobsync.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5911_none_7dd4fd687cb889e8\TiWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe [1201968 2020-10-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [195760 2025-04-05] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\Installer\setup.exe [7395880 2025-06-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [GpNetworkStartTimeoutPolicyValue] 60
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [S3AutomaticSTART] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [CiscoMeetingDaemon] => C:\Users\cervenad\AppData\Local\WebEx\WebexHost.exe [8077920 2023-12-12] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [Icecream_Screen_Recorder_New_Auto_Start] => C:\Program Files (x86)\Icecream Screen Recorder 7\recorder.exe [6987344 2025-05-05] (ICECREAM APPS LTD -> Icecream)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [MicrosoftEdgeAutoLaunch_A82912258D1D457A596D706B4507A3C9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [MicrosoftEdgeAutoLaunch_97C59669F16695898DE380691D1CE2A8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [S3Automatic] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKLM\...\Windows x64\Print Processors\hpcpp160: C:\Windows\System32\spool\prtprocs\x64\hpcpp160.dll [602912 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW081.DLL [74016 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPMLM135: C:\Windows\system32\hpmlm135.dll [237344 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\rica7Qlm: C:\Windows\system32\rica7Qlm.dll [28160 2013-12-26] (Microsoft Windows Hardware Compatibility Publisher -> RICOH CO.,Ltd.)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [47896 2021-09-23] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\137.0.7151.120\Installer\chrmstp.exe [2025-06-21] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {B5FA014C-2A18-4A1F-9314-EF77E6361579} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.)
Task: {39578F20-1E6D-4226-B440-72E4CBC82957} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {AB048B39-C0CC-4928-A45C-D509166F47D9} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {B97DE14B-6A35-4756-90BB-CDA4C9AE59A7} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [355840 2021-10-05] (Advanced Micro Devices, Inc.) [File not signed]
Task: {F1FAFF53-F422-4CDE-B296-B6D1EDBF87C6} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5974424 2025-06-11] (Microsoft Windows -> Microsoft Corporation)
Task: {3398DB82-809C-4C2F-9AEA-B741AB2BA3D2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7194.0{979D3406-0080-4581-8A4D-7965092B0AAF} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7194.0\updater.exe [7080032 2025-05-22] (Google LLC -> Google LLC)
Task: {9007C027-1B03-4346-9DA1-C1A1E6F92DB6} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {EF8E5F92-86FA-4697-9393-008E3E51FF08} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {CC0E9B46-F5A7-48D3-9950-45C5276121C2} - System32\Tasks\Komercni banka\Profibanka\Profibanka AutoBackup => C:\Program Files (x86)\Profibanka\CreateTaskW10.exe [22552 2015-10-02] (KOMERCNI BANKA A.S. -> ) -> C:\Program#Files#(x86)\profibanka\Backup\backup.bak
Task: {5C99E5D2-0D0E-4CB9-8DDB-ECC5AF64D688} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C93598F6-E3C1-453C-AB6D-02CD44E35389} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {08D1A9BD-780A-4D3E-88AC-0A617895D165} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A30394E1-D3E6-4022-A534-64034E6272CC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC1AB55C-1911-4D37-B033-4FE498409E26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {897D3190-D07C-4655-968F-1C47517AB1BE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F628214-3628-4144-88BB-F39FBA7293D2} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {F3401EAD-F305-4D11-8C4A-8FBCCDF9314D} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {5B3C2F83-E51B-4093-88E1-6924E6AEC52F} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {387E62F4-0FFB-4C3B-9197-12438B08CC0A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {1577F35C-9331-4CE4-9FC0-A806E2CA47B2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F877B03-CC1A-432D-8E81-AB7241FF9E5C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79553ADB-0C2D-43F7-A995-E7597AF52937} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-1194 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {0FF5F2CF-844D-4ED5-8F6E-AF0522AE326A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-2762 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {35E6625F-8F78-4505-A488-6988ED69FAFE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD15D0AD-7FCF-4DB7-88B3-D278C46C3C6D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E08AB79-4B8C-46A1-9824-F87FD90DF58F} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD8C2150-57B5-4102-821F-2C3DCB7BA2AD} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {33250B85-50C8-4AA4-90F8-7690D8DE05FC} - System32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79E81F0F-BC1F-4122-873E-48F44B4383A5} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55288 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CEBCCD32-32EB-44E8-83AB-D4E0B8EC08CC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {8BE217C1-014E-41A0-83EB-9236DD5036D8} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Users\cervenad\AppData\Roaming\Zoom\bin\Zoom.exe [441144 2025-05-27] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{963096d6-22e6-4dfb-976a-5fb00ad683f8}: [NameServer] 10.42.31.4,8.8.8.8
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default [2025-06-25]
Edge Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-06-08]
Edge Extension: (Edge relevant text changes) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-06-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
Chrome:
=======
CHR Profile: C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default [2025-06-25]
CHR Notifications: Default -> hxxps://cz.avon-brochure.com; hxxps://petona.cz; hxxps://upcr.cz; hxxps://www.dobre-knihy.cz
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-06-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-29]
CHR Extension: (FormApps Extension) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-04-15]
CHR Extension: (Cryptoplus KB - podepisovací modul) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldildmkoeoicfkknedfdpjmgjmpkpooc [2023-07-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-19]
CHR HKU\S-1-5-21-2496437920-1329170045-526373181-1159\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 BankAPI Seyfor; C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.exe [139264 2025-04-02] (Seyfor.BankAgregator.Api) [File not signed]
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9499264 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5566320 2025-04-05] (ESET, spol. s r.o. -> ESET)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [58224 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [1529112 2023-08-14] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncHelper.exe [3621688 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [156672 2019-06-20] (Firebird Project) [File not signed]
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [5825024 2019-06-20] (Firebird Project) [File not signed]
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-05-02] (HP Inc. -> HP Inc.)
S3 MonS3Service; C:\Program Files (x86)\Common Files\Solitea\MonS3Service.exe [1765536 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [161040 2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe [626280 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe [199760 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R3 MSSQLFDLauncher$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe [85600 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLLaunchpad$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\launchpad.exe [1228608 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveUpdaterService.exe [3873064 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [917440 2025-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\SQLAGENT.EXE [695912 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\SQLAGENT.EXE [454736 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe [290648 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [20994352 2025-05-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54720 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_50fee1227e96ec14\amdsafd.sys [100792 2021-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\amdkmdag.sys [94358424 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [284672 2021-04-09] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [225144 2025-02-09] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [16336 2022-09-05] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [269056 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [86200 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [128528 2025-02-09] (ESET, spol. s r.o. -> ESET)
R3 GemCCID; C:\Windows\System32\DriverStore\FileRepository\gemccid.inf_amd64_526ec61d10ad09ec\GemCCID.sys [162992 2025-05-15] (Thales DIS CPL USA, Inc. -> Gemalto)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
S4 RsFx0600; C:\Windows\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 usbscan; C:\Windows\System32\drivers\usbscan.sys [49664 2022-07-13] (Microsoft Corporation) [File not signed]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-06-25 13:07 - 2025-06-25 13:07 - 000000000 ____D C:\FRST
2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg
2025-06-24 12:07 - 2025-06-24 12:07 - 000207516 _____ C:\Users\cervenad\Downloads\priloha_1536203059_0_Usneseni_o_zastaveni_rizeni_Polak_Michal.pdf
2025-06-23 08:32 - 2025-06-23 08:32 - 000041455 _____ C:\Users\cervenad\Downloads\1237181070287_6_1132_20250620.pdf
2025-06-18 18:33 - 2025-06-18 18:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-06-17 14:21 - 2025-06-17 14:21 - 000030154 _____ C:\Users\cervenad\Downloads\Potvrzeni o prijmu (1).pdf
2025-06-16 12:30 - 2025-06-16 12:30 - 000060064 _____ C:\Users\cervenad\Downloads\3300461684.pdf
2025-06-13 13:50 - 2025-06-13 13:50 - 000847276 _____ C:\Users\cervenad\Downloads\cza13917_2025-01-10-09_33_08 (2).zip
2025-06-13 12:16 - 2025-06-13 12:16 - 000579513 _____ C:\Users\cervenad\Downloads\2984704686 (1).pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich.pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich (1).pdf
2025-06-12 07:56 - 2025-06-12 07:56 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1) (1).pdf
2025-06-12 07:54 - 2025-06-12 07:54 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1).pdf
2025-06-11 15:17 - 2025-06-11 15:17 - 000000000 ___HD C:\$WinREAgent
2025-06-11 14:56 - 2025-06-11 14:56 - 000579842 _____ C:\Users\cervenad\Downloads\2984704686.pdf
2025-06-10 12:01 - 2025-06-10 12:01 - 000000000 ____D C:\Program Files (x86)\dotnet
2025-06-05 08:35 - 2025-06-05 08:35 - 000088054 _____ C:\Users\cervenad\Downloads\Zpětvzetí žádost o prominutí penále ČSSZ.pdf
2025-06-05 07:38 - 2025-06-05 07:38 - 000194670 _____ C:\Users\cervenad\Downloads\TU_červen 2025.pdf
2025-06-05 07:08 - 2025-06-05 07:08 - 000604115 _____ C:\Users\cervenad\Downloads\2983933586.pdf
2025-06-05 07:07 - 2025-06-05 07:07 - 000609335 _____ C:\Users\cervenad\Downloads\2983933591.pdf
2025-06-04 20:58 - 2025-06-04 20:58 - 000000000 ____D C:\Program Files\HP
2025-06-04 09:33 - 2025-06-04 09:33 - 001868243 _____ C:\Users\cervenad\Downloads\Dalsi_financni_prostredky_pro_skoly_na_rok_2025.xlsx
2025-06-04 09:33 - 2025-06-04 09:33 - 000095106 _____ C:\Users\cervenad\Downloads\Priloha.xlsx
2025-06-02 11:37 - 2025-06-02 11:37 - 002770850 _____ C:\Users\cervenad\Downloads\priloha_1532097212_0_Kantyna_SPS_Trebic.pdf
2025-06-02 11:37 - 2025-06-02 11:37 - 000213966 _____ C:\Users\cervenad\Downloads\priloha_1531693351_0_Polak_Michal.pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000484182 _____ C:\Users\cervenad\Downloads\2979131233 (2).pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000483635 _____ C:\Users\cervenad\Downloads\2981220150 (1).pdf
2025-06-02 08:47 - 2025-06-02 08:47 - 000499269 _____ C:\Users\cervenad\Downloads\bankovní identita.pdf
2025-05-30 09:13 - 2025-05-30 09:13 - 000040293 _____ C:\Users\cervenad\Downloads\1237181070287_5_1132_20250522.pdf
2025-05-30 07:24 - 2025-06-25 13:03 - 000003086 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2025-05-29 14:03 - 2025-05-29 14:03 - 000113977 _____ C:\Users\cervenad\Downloads\Žádost o prominutí penále ČSSZ.pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036 (1).pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000006073 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.p7s
2025-05-27 14:11 - 2025-05-27 14:11 - 000003652 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.pdf
2025-05-27 14:10 - 2025-05-27 14:10 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036.pdf
2025-05-27 08:47 - 2025-05-27 08:47 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KARTDAA49BC9DE0002.pdf
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KART90E5085E5D7003.pdf
2025-05-26 12:57 - 2025-05-26 12:57 - 001579678 _____ C:\Users\cervenad\Downloads\voucher-KARTEE185384845001.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-06-25 13:03 - 2025-02-27 08:17 - 000003118 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2025-06-25 12:55 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-06-25 12:52 - 2021-11-24 10:21 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-06-25 11:39 - 2021-12-28 10:58 - 000000144 _____ C:\Windows\system32\config\netlogon.ftl
2025-06-25 10:26 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-06-25 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-06-25 04:33 - 2021-12-27 19:06 - 000000000 ____D C:\Windows\SystemTemp
2025-06-24 13:04 - 2023-07-19 19:19 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Word
2025-06-24 10:46 - 2023-07-19 19:20 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Excel
2025-06-24 08:07 - 2023-08-28 18:22 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Temp
2025-06-24 08:07 - 2023-07-19 19:03 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Adobe
2025-06-24 07:45 - 2021-12-28 11:30 - 000000000 ____D C:\KBprikazy
2025-06-22 00:32 - 2021-12-27 18:41 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-06-21 08:33 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\Packages
2025-06-21 08:33 - 2021-11-24 10:21 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-06-19 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2025-06-19 10:39 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\D3DSCache
2025-06-19 07:25 - 2023-05-09 10:12 - 000000000 ____D C:\ProgramData\firebird
2025-06-18 18:33 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-06-18 18:32 - 2021-12-28 11:09 - 000000000 ____D C:\Program Files\Microsoft Office
2025-06-18 15:25 - 2021-11-24 10:26 - 002319808 _____ C:\Windows\system32\PerfStringBackup.INI
2025-06-18 15:25 - 2021-04-30 08:05 - 000934756 _____ C:\Windows\system32\perfh005.dat
2025-06-18 15:25 - 2021-04-30 08:05 - 000234006 _____ C:\Windows\system32\perfc005.dat
2025-06-18 15:25 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-06-18 15:21 - 2021-12-28 12:22 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-06-18 15:21 - 2021-12-28 11:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-06-18 15:21 - 2021-11-24 10:21 - 000008192 ___SH C:\DumpStack.log.tmp
2025-06-18 15:21 - 2021-11-24 10:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-06-18 15:21 - 2019-12-07 11:03 - 001310720 _____ C:\Windows\system32\config\BBI
2025-06-18 08:01 - 2021-12-28 11:30 - 000000000 ____D C:\KBvypisy
2025-06-16 07:53 - 2023-08-07 06:25 - 000000000 ____D C:\Users\cervenad\AppData\Local\AMD_Common
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2025-02-06 11:57 - 000003540 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:29 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:19 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2021-12-27 19:08 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2021-11-24 10:27 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-06-14 13:02 - 2021-11-24 10:27 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-06-13 07:32 - 2024-04-19 08:39 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-06-13 07:32 - 2023-03-07 09:20 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2025-06-11 17:37 - 2021-11-24 10:21 - 000447968 _____ C:\Windows\system32\FNTCACHE.DAT
2025-06-11 17:36 - 2024-07-10 08:18 - 000000000 ____D C:\Windows\system32\compatrel
2025-06-11 17:36 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2025-06-11 15:25 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-06-11 15:22 - 2021-11-24 10:24 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-06-11 15:17 - 2021-12-27 18:46 - 000000000 ____D C:\Windows\system32\MRT
2025-06-11 15:15 - 2021-12-27 18:46 - 216824056 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-06-11 14:56 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Outlook
2025-06-11 08:21 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Office
2025-06-10 12:01 - 2021-11-24 10:23 - 000000000 ____D C:\ProgramData\Package Cache
2025-06-10 11:59 - 2021-12-28 12:13 - 000000000 ____D C:\Záloha Fenix
2025-06-10 11:59 - 2021-11-24 09:59 - 000000000 ____D C:\install
2025-06-09 18:11 - 2023-07-19 19:02 - 000000000 ____D C:\Users\cervenad\AVENSIO
2025-06-09 12:56 - 2024-03-19 10:41 - 000000000 ____D C:\Users\cervenad\AppData\Local\CrashDumps
2025-06-05 13:57 - 2023-07-19 16:28 - 000000000 ____D C:\Users\administrator.ZSPRIBYSLAV
2025-06-05 13:57 - 2022-08-25 08:46 - 000000000 ____D C:\Users\knihovna
2025-06-05 13:57 - 2021-12-28 10:59 - 000000000 ____D C:\Users\administrator
2025-06-05 13:57 - 2021-12-27 18:38 - 000000000 ____D C:\Users\dpadmin
2025-06-05 07:05 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad
2025-05-27 14:37 - 2023-10-24 08:40 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Zoom
2025-05-27 08:47 - 2024-12-12 10:00 - 000004256 _____ C:\Windows\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159
2025-05-26 07:21 - 2021-12-28 11:45 - 000000000 ____D C:\Program Files (x86)\Profibanka
==================== Files in the root of some directories ========
2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ () C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalé PC, mnoho spojení ven do internetu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Pomalé PC, mnoho spojení ven do internetu
Log Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-06-2025
Ran by polakovad (25-06-2025 13:08:09)
Running from \\zskola2\user-prac\cervenad\Plocha
Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) (2021-11-24 11:45:55)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-667896778-3875923744-3874593446-500 - Administrator - Disabled) => C:\Users\Administrator <==== ATTENTION
DefaultAccount (S-1-5-21-667896778-3875923744-3874593446-503 - Limited - Disabled)
dpadmin (S-1-5-21-667896778-3875923744-3874593446-1001 - Administrator - Enabled) => C:\Users\dpadmin
Guest (S-1-5-21-667896778-3875923744-3874593446-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-667896778-3875923744-3874593446-504 - Limited - Disabled)
ATTENTION: Domain
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{F8F948EA-5AEA-4158-8821-A2F788ECE936}) (Version: 16.2.1 - Hewlett-Packard) Hidden
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20531 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ALFA MZDY AVENSIO 3.3.0.15 (HKLM-x32\...\{904214E9-4210-4184-B249-CF2B4A511DEB}_is1) (Version: 3.3.0.15 - )
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.3.5 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.10.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Azure Data Studio (HKLM\...\{6591F69E-6588-4980-81ED-C8FCBD7EC4B8}_is1) (Version: 1.32.0 - Microsoft Corporation)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
CryptoPlus KB v1.0 (HKLM-x32\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
CryptoPlus KB v1.0 x64 (HKLM\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 25.400 (20250501_06) - Seyfor, a.s.)
ESET Endpoint Antivirus (HKLM\...\{F8DE2A0C-AE50-4915-9F99-12A9B1DFCADA}) (Version: 12.0.2049.0 - ESET, spol. s r.o.)
ESET Management Agent (HKLM\...\{E92EF3C9-4FFE-4239-8AEA-ABB78CFB7EE0}) (Version: 10.1.1292.0 - ESET, spol. s r.o.)
Firebird 2.5.9.27139 (x64) (HKLM\...\FBDBServer_2_5_x64_is1) (Version: 2.5.9.27139 - Firebird Project)
FormApps Signing Extension (HKLM-x32\...\{615573E2-9A4C-4F60-8AEB-C112DD36EC7D}) (Version: 2.28.0.47 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 137.0.7151.120 - Google LLC)
Helios Fenix 9.91 (HKLM-x32\...\{AE81B074-5F28-11D5-BC42-005004693E0C}) (Version: 9.91.010 - Asseco Solutions, a.s.)
HELIOS Fenix Crystal Reports XI runtime (HKLM-x32\...\{2FC74DFB-4E3B-43C4-954B-0D2D41BD50EE}) (Version: 07.11.09 - Asseco Solutions, a.s.)
HELIOS Fenix Vazba PBP 9.51.000 (HKLM-x32\...\{44352E97-8CC6-4A2E-B5B5-77105DD79086}) (Version: 9.51.000 - Asseco Solutions, a.s.)
HELIOS Fenix - systémové komponenty (HKLM-x32\...\{CC1B0AC8-4A94-43ED-9B5F-22BEF84AA4D8}) (Version: 9.21.000 - Asseco Solutions, a.s.)
HL-1210W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Icecream Screen Recorder verze 7.44 (HKLM-x32\...\{CE9603D0-2A7F-4B94-BF4D-BC4B1389888F}_is1) (Version: 7.44 - Icecream Apps)
Integration Services (HKLM-x32\...\{4938A647-7EA4-4496-A843-5E338B91C07E}) (Version: 15.0.2000.168 - Microsoft Corporation) Hidden
KB QSCD v1.0 (64-bit) (HKLM\...\{511B4472-AF5D-404B-B28A-D8DD14D0C94D}) (Version: 1.0.22.24214 - Monet+, a.s.)
KBSignatureModule (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\KBPodpisovyModul) (Version: 1.0.8 - KB)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.10 (x64) (HKLM\...\{3A80EBC5-6B68-49B9-BEBD-E1A6C966B416}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.16 (x86) (HKLM-x32\...\{E4AF7683-88E6-48B0-BF69-696234A6958B}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.10 (x64) (HKLM\...\{062CD1ED-0A3C-483C-A871-50173240C545}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.16 (x86) (HKLM-x32\...\{BF986506-2994-4DA9-9E17-1163400C97F1}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.10 (x64) (HKLM\...\{15B7D0C2-F209-4C28-AF1C-FD8326F4D58A}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.16 (x86) (HKLM-x32\...\{6BAAA5E0-D0C6-4DC9-BA70-717EBA7F2CAD}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM\...\{9786E83E-B71A-4526-B58F-64F35C7E2CFE}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM-x32\...\{4F1405AB-36A8-4383-9C1A-AE00491C255F}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 8.0.16 - Shared Framework (x86) (HKLM-x32\...\{c1d07152-0f7c-4493-88db-fcdc9e3f2bdb}) (Version: 8.0.16.25216 - Microsoft Corporation)
Microsoft ASP.NET Core 8.0.16 Shared Framework (x86) (HKLM-x32\...\{76EA714A-1D6F-3FE4-BEFC-8E68618FC8EE}) (Version: 8.0.16.25216 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 137.0.3296.93 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 137.0.3296.93 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\{BEFC10C1-7032-3C8E-80BC-621A77BFEABD}) (Version: 2.3.28107 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\Microsoft Help Viewer 2.3) (Version: 2.3.28107 - Microsoft Corporation)
Microsoft MPI (10.0.12498.5) (HKLM\...\{8499ACD3-C1E3-45AB-BF96-DA491727EBE1}) (Version: 10.0.12498.5 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{50D6B005-B0D6-425F-953B-01331E2C7FCB}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{853997DA-6FCB-4FB9-918E-E0FF881FAF65}) (Version: 17.7.2.1 - Microsoft Corporation)
Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10417.20020 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{9D6F8754-28E9-4940-B319-3FC8588CF18F}) (Version: 18.5.0.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.095.0518.0002 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{8F72E2D4-1E48-4534-8DB8-1E8E012899C6}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2014 (HKLM-x32\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 RsFx Driver (HKLM-x32\...\{D4CCB7AC-1A41-4CFA-8708-5EE551538737}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2014 Setup (English) (HKLM-x32\...\{D183B98A-9688-4FC1-9793-E17E42C8BAB1}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{6CC673B9-F743-47AD-8962-C00CA5300016}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version: - Microsoft Corporation)
Microsoft SQL Server 2019 RsFx Driver (HKLM\...\{5825CDC4-4E99-4CF9-91FE-DB60C0E2F5EA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft SQL Server Management Studio - 18.10 (HKLM-x32\...\{c09f71ef-fff8-435a-bdc9-3c242a7c36f3}) (Version: 15.0.18390.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.25.14205 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.22.27821 (HKLM-x32\...\{3BDE80F7-7EC9-448E-8160-4ADA0CDA8879}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.22.27821 (HKLM-x32\...\{1E6FC929-567E-4D22-9206-C5B83F0A21B9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{f895a2f1-ae3f-4212-8af1-7fa1f8c212ea}) (Version: 15.0.27520 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 x64 Hosting Support (HKLM\...\{AFFB9D8D-6E58-38A0-A7DD-F6F1F4247B36}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 x86 Hosting Support (HKLM-x32\...\{9594C97E-6A20-38B3-81BB-2778C4780BE1}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM-x32\...\{20d5df4e-006c-4d6d-a0dc-490d009b9786}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM\...\{805626FF-2BC9-4567-A71E-A76A470D000A}) (Version: 48.67.58484 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM-x32\...\{8d173101-98c1-4e92-97c6-47c6840745a7}) (Version: 6.0.16.32327 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM\...\{614C9740-3FD4-4788-A277-7C35CB4C323B}) (Version: 64.40.21605 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM-x32\...\{d990096d-6282-42c5-8d16-71272c5be274}) (Version: 8.0.10.34118 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{16A6EF42-A2F0-46DE-A16E-D8794DAB9810}) (Version: 64.64.32786 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{82efd5ea-41fb-496a-a50d-48391b80e98d}) (Version: 8.0.16.34817 - Microsoft Corporation)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{EBFC96E5-4409-426E-88B7-650ADB342E78}) (Version: 8.0.50727.42 - The Firebird Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Profibanka (HKLM-x32\...\{08D768F1-EEE8-4E0E-91B4-9063A2705AEE}) (Version: 1.23.301 - Komerční banka, a.s.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
RAIDXpert2 Management Suite (HKLM-x32\...\RAIDXpert2 Management Suite) (Version: 9.3.0.296 - Advanced Micro Devices, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9054.1 - Realtek Semiconductor Corp.)
RyzenMasterSDK (HKLM\...\{82BC68B8-48AD-422A-806D-83663E66BB86}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Service Pack 3 for SQL Server 2014 (KB4022619) (HKLM-x32\...\KB4022619) (Version: 12.3.6024.0 - Microsoft Corporation)
Software602 Form Filler (HKLM-x32\...\{EF8155B1-A395-4AF9-ABB4-88F09FA54DB1}) (Version: 4.80 - Software602 a.s.)
SQL Server 2014 Common Files (HKLM-x32\...\{BFB3B874-8033-4F5E-BE47-0AED2541E57C}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM-x32\...\{F78A23CD-E9A0-46E3-88E2-CF2CC93AE7BA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{71E418D7-C0C5-455A-A248-1A3C3839EEEF}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{A1ED7C85-A91A-4788-B0CC-86FA19C042E8}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{1D1E4532-6A52-471B-B006-EA04A2BBFCE9}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{AA2D8197-6678-4242-9222-3A03993E89B3}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2019 Advanced Analytics (HKLM\...\{BD408334-78B9-4024-A8B5-53184C2E8CB3}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{68B843D3-5C31-4F0C-B61C-662C97FDAD1C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{9F3D48F5-4184-444C-A810-845C6F078721}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{DF21FF12-F208-4012-92A1-CB7420A75FFE}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{EA0ADED4-831D-45B3-B612-C7FD0A1E2BAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Full text search (HKLM\...\{BFF9440C-BC5B-4326-A861-916CC3788A4A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_azul_java (HKLM\...\{FF7B55CB-CDC3-4084-B27A-6C3B65800DD4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_java (HKLM\...\{286E30FF-F22E-463E-ACAB-708AE6D50AF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mpy (HKLM\...\{33D798B3-DD3B-4CEE-AABE-3090625D5E7E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mr (HKLM\...\{B0523C0B-B56B-4C63-9B00-5A91EFF8F948}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{894F30EB-3F0A-422F-9225-EB00DC9414EA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{3F338A1B-1DCF-458F-8189-416B09B7D077}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{A401EAB9-4FC7-4F0C-8D79-9575E4910FDE}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Analysis Services (HKLM\...\{A1CAC3E0-B321-40FE-8907-4739297D5338}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Reporting Services (HKLM\...\{0278A8F5-4DDC-40FF-95CC-1D4725CA074B}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SSMS Post Install Tasks (HKLM\...\{4CB8C759-75FE-492C-8CEB-EEB9D07E2E8D}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.66.5 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Visual Studio 2017 Isolated Shell for SSMS (HKLM-x32\...\{AAA9F15B-AF45-4562-9991-93A848D3A902}) (Version: 15.0.28307.421 - Microsoft Corporation) Hidden
Webex (HKLM\...\{5769D3D0-47C7-5BD4-A88C-01365D7507C6}) (Version: 43.12.0.28111 - Cisco Systems, Inc)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Zoom Workplace (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\ZoomUMX) (Version: 6.4.7 (64367) - Zoom Communications, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2025-06-13] ()
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_159.2.1145.0_x64__v10z8vjag6ke6 [2025-06-09] (HP Inc.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_55.20610.576.0_x64__8wekyb3d8bbwe [2025-06-19] (Microsoft Corporation)
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.19.0_x64__8wekyb3d8bbwe [2023-12-27] (Microsoft Corporation)
Pomocník pro hry v Microsoft Edgi -> C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3336.0_x64__8wekyb3d8bbwe [2025-06-21] (Microsoft Corporation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2023-08-21] (Realtek Semiconductor Corp)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-05] (Skype)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{04271989-C4D2-CBD8-F5AA-CBA22665817E} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{6BE99E87-B6FB-4CC3-AE69-DFCF33303D55} -> [Tiskové exporty z Money S3] => C:\Users\Public\Documents\Solitea\Money S3\PRINT\ [2022-07-11 06:07]
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{EABAE40C-B27C-455A-B672-F234DD780948}\InprocServer32 -> C:\Users\cervenad\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.25.14205\x64\Microsoft.Teams.MeetingAddin.DLL (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-05-09 09:41 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2024-12-06 00:21 - 2024-12-06 00:21 - 000060928 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files\Adobe\Acrobat DC\Acrobat\Locale\cs_cz\Adobe Send\SendAsLinkAddin.CZE
2021-10-05 13:17 - 2021-10-05 13:17 - 001711616 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2023-05-09 09:41 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\brlmw03a.dll
2023-05-09 09:41 - 2013-06-12 19:06 - 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2023-05-09 09:41 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2023-05-09 09:41 - 2013-10-10 21:55 - 002040320 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2023-05-09 09:47 - 2019-06-20 11:20 - 000884224 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbclient.dll
2023-05-09 09:47 - 2019-06-20 11:20 - 000008192 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\ib_util.dll
2023-05-09 09:47 - 2019-06-20 11:21 - 001107968 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\intl\fbintl.DLL
2023-05-09 09:47 - 2019-06-20 11:18 - 000665088 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\plugins\fbtrace.dll
2023-05-09 09:47 - 2019-06-20 11:20 - 000012800 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\UDF\ib_udf.DLL
2023-05-09 09:47 - 2019-06-20 11:20 - 000884224 _____ (Firebird Project) [File not signed] C:\Windows\SYSTEM32\gds32.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000050688 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000066048 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2023-05-09 09:47 - 2019-06-20 11:14 - 001558016 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icudt30.dll
2023-05-09 09:47 - 2019-06-20 11:13 - 000935936 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icuuc30.dll
2023-05-09 09:44 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2025-05-23 15:11 - 2024-11-16 20:43 - 000492032 _____ (Jeremy Skinner) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\FluentValidation.dll
2025-05-23 15:11 - 2024-02-07 22:45 - 000274944 _____ (Jimmy Bogard) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\AutoMapper.dll
2025-05-23 15:11 - 2024-10-09 02:54 - 000011264 _____ (Martijn Bodeman) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\IbanNet.DependencyInjection.ServiceProvider.dll
2025-05-23 15:11 - 2024-10-09 02:54 - 000179200 _____ (Martijn Bodeman) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\IbanNet.dll
2017-09-05 01:15 - 2017-09-05 01:15 - 004396032 _____ (Microsoft Corporation) [File not signed] C:\Program Files\AMD\CNext\CNext\D3DCOMPILER_47.dll
2021-12-28 11:09 - 2021-12-28 11:09 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2021-12-28 11:09 - 2021-12-28 11:09 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2025-05-23 15:11 - 2024-12-09 01:31 - 000035840 _____ (Microsoft;Serilog Contributors) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Serilog.Extensions.Hosting.dll
2025-05-23 15:11 - 2024-12-06 05:11 - 000161280 _____ (Serilog Contributors) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Serilog.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000245760 _____ (Seyfor.BankAgregator.Api) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000049152 _____ (Seyfor.BankAgregator.Data) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Data.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000233472 _____ (Seyfor.BankAgregator.Definition) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Definition.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000932352 _____ (Seyfor.BankAgregator.Providers) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Providers.dll
2023-05-09 09:46 - 2019-12-21 12:55 - 001380864 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\AlfaSoftware\Avensio\libeay32.dll
2023-05-09 09:46 - 2019-12-21 12:55 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\AlfaSoftware\Avensio\ssleay32.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001227776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 006947328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000740352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001110528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000326656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 003798528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000440832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 004255744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000206336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000396800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 102854656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000133120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 005611008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000210432 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 002877440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-12-28 12:04 - 2012-05-09 13:29 - 000145920 _____ (Windows (R) Codename Longhorn DDK provider) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\602xpsui.DLL
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 10.42.31.4 - 8.8.8.8
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek Gaming GbE Family Controller -> rt640x64.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Microsoft MPI\Bin\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files\Azure Data Studio\bin;C:\Program Files\dotnet\
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: )
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B6FAD8CF-6E8B-477F-B980-7D292AA47202}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{90DF03DC-6EA5-4FE7-9A22-7A486EF39F7A}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{00761E6C-ECE2-4258-8F1B-9FCFFBDF45C0}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{658650E7-4DD6-4C8E-A4EF-6E1C3591BD77}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF444C50-5EE7-4475-AF39-2C9B43B2D2EC}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{27733E69-0BF5-43CA-913D-6B27F0DB0376}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CD5554C4-4201-4236-B177-27010C825A4F}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CCD23F23-E99D-4B40-A6A3-662EE575AC4A}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3EC9DCBA-1726-46D1-B2C3-3DF5D6B88C52}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1FD76081-4486-40CB-A673-022C0735F4F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F946DFB9-C280-42F3-AD8C-14B782865C6F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7B38F7EC-622B-4ACB-BFBA-AEBB510DE6B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{72A5D51C-6607-483C-9928-9FD5105AC341}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{7DE38987-455A-48EC-A460-4902DDD88F43}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{137227E8-48CB-4714-9364-54C28CBAA554}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3671BCF-9A61-4AFD-9C7A-7FB04467221B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9691B836-9A34-4A62-8952-BDDEFF534D1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{40111E4C-6CF1-43AA-8486-9AEA0CFC1ABD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3D01EBE3-B8B9-4322-AE2E-F61B8626DF88}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B4710AC3-A08B-44C7-BD1C-90D7AEDF4A95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3223610B-E73B-4B0A-8915-BDB191D6F635}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D351473-386B-492D-A032-855FC9CBCC97}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{42801A16-B68C-4FA5-AA84-8DE1E8657532}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{56A84FC2-9806-4DCB-B724-8D72CF783A3D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E4B5CF59-CE7E-4A55-8E0C-316B1C92338A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DB3DAD22-D2D7-4872-A883-CC7539FD747C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{51686F0D-2D23-4256-A660-9917B8AEC55F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5FF5331A-A330-4D70-AE69-E62F679FDCD2}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C5F33FF6-F221-4754-A3B6-102C0EAEECBE}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D599CAE4-AC1A-4CD4-9492-3420A2200933}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.83\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F04800E-F871-401B-9EE3-E88B5AC137BD}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{30D8CBB8-FA36-4F39-A86A-FB129AC07D26}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C8343CF7-A6F1-4252-ADCF-EFF55E7DF54E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B741E080-377B-4B5B-A8F8-133F7DD08236}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/25/2025 10:25:43 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/22/2025 10:26:17 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/19/2025 10:39:51 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/19/2025 07:15:55 AM) (Source: Microsoft-Windows-Folder Redirection) (EventID: 502) (User: ZSPRIBYSLAV)
Description: Nepodařilo se použít zásady a přesměrovat složku Desktop na \\zskola2\user-prac\polakovad\Plocha.
Možnosti přesměrování: 0x9021.
Došlo k následující chybě:Složku \\zskola2\user-prac\polakovad\Plocha nejde vytvořit..
Podrobnosti o chybě: Tento soubor není momentálně k dispozici pro použití v tomto počítači..
Error: (06/18/2025 03:21:54 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro ZSPRIBYSLAV\CERVENA-PC$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 18 Jun 2025 13:22:49 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 6481906d-e24a-445b-872b-fee9439657cf
Metoda: GET(954ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (06/17/2025 08:43:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program KB_PCB.exe verze 1.23.0.46 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: d84
Čas spuštění: 01dbdb5accc133ce
Čas ukončení: 12
Cesta k aplikaci: C:\Program Files (x86)\Profibanka\KB_PCB.exe
ID hlášení: 745055c6-3047-4d60-8788-1ce8e12558c3
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (06/16/2025 10:24:30 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/13/2025 10:40:04 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
System errors:
=============
Error: (06/25/2025 04:55:24 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80240017): Microsoft - Printer - 6/22/2006 12:00:00 AM - 6.1.7233.1.
Error: (06/25/2025 03:26:43 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (06/25/2025 03:26:43 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (06/25/2025 02:58:14 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\Harddisk2\DR50 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.
Error: (06/25/2025 02:58:14 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\Harddisk2\DR50 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.
Error: (06/25/2025 02:58:14 AM) (Source: Virtual Disk Service) (EventID: 8) (User: )
Description: Otevření zařízení \\?\SCSI#Disk&Ven_Msft&Prod_Virtual_Disk#2&1f4adffe&0&000001#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} se nezdařilo. Kód chyby: C03A001C@020D0002
Error: (06/25/2025 02:58:07 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume99 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.
Error: (06/25/2025 02:58:07 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume99 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.
CodeIntegrity:
===============
Date: 2025-06-25 12:12:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2025-06-25 11:12:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. F14f 10/14/2021
Motherboard: Gigabyte Technology Co., Ltd. A520M S2H
Processor: AMD Ryzen 5 PRO 5650G with Radeon Graphics
Percentage of memory in use: 71%
Total physical RAM: 7550.34 MB
Available physical RAM: 2182.7 MB
Total Virtual: 13292.49 MB
Available Virtual: 4406.56 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:929.72 GB) (Free:575.85 GB) (Model: AMD-RAID Array 1 SCSI Disk Device) NTFS
Drive e: (Elements) (Fixed) (Total:2794.49 GB) (Free:2768.33 GB) (Model: WD Elements 2621 USB Device) NTFS
\\?\Volume{e129094d-2942-486f-b521-10b75f50b432}\ (Recovery tools) (Fixed) (Total:1 GB) (Free:0.41 GB) NTFS
\\?\Volume{7e5111be-5fc1-49a5-bc38-e8ea7f74b8e7}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 2794.5 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt =======================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-06-2025
Ran by polakovad (25-06-2025 13:08:09)
Running from \\zskola2\user-prac\cervenad\Plocha
Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) (2021-11-24 11:45:55)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-667896778-3875923744-3874593446-500 - Administrator - Disabled) => C:\Users\Administrator <==== ATTENTION
DefaultAccount (S-1-5-21-667896778-3875923744-3874593446-503 - Limited - Disabled)
dpadmin (S-1-5-21-667896778-3875923744-3874593446-1001 - Administrator - Enabled) => C:\Users\dpadmin
Guest (S-1-5-21-667896778-3875923744-3874593446-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-667896778-3875923744-3874593446-504 - Limited - Disabled)
ATTENTION: Domain
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{F8F948EA-5AEA-4158-8821-A2F788ECE936}) (Version: 16.2.1 - Hewlett-Packard) Hidden
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20531 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ALFA MZDY AVENSIO 3.3.0.15 (HKLM-x32\...\{904214E9-4210-4184-B249-CF2B4A511DEB}_is1) (Version: 3.3.0.15 - )
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.3.5 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.10.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Azure Data Studio (HKLM\...\{6591F69E-6588-4980-81ED-C8FCBD7EC4B8}_is1) (Version: 1.32.0 - Microsoft Corporation)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
CryptoPlus KB v1.0 (HKLM-x32\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
CryptoPlus KB v1.0 x64 (HKLM\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 25.400 (20250501_06) - Seyfor, a.s.)
ESET Endpoint Antivirus (HKLM\...\{F8DE2A0C-AE50-4915-9F99-12A9B1DFCADA}) (Version: 12.0.2049.0 - ESET, spol. s r.o.)
ESET Management Agent (HKLM\...\{E92EF3C9-4FFE-4239-8AEA-ABB78CFB7EE0}) (Version: 10.1.1292.0 - ESET, spol. s r.o.)
Firebird 2.5.9.27139 (x64) (HKLM\...\FBDBServer_2_5_x64_is1) (Version: 2.5.9.27139 - Firebird Project)
FormApps Signing Extension (HKLM-x32\...\{615573E2-9A4C-4F60-8AEB-C112DD36EC7D}) (Version: 2.28.0.47 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 137.0.7151.120 - Google LLC)
Helios Fenix 9.91 (HKLM-x32\...\{AE81B074-5F28-11D5-BC42-005004693E0C}) (Version: 9.91.010 - Asseco Solutions, a.s.)
HELIOS Fenix Crystal Reports XI runtime (HKLM-x32\...\{2FC74DFB-4E3B-43C4-954B-0D2D41BD50EE}) (Version: 07.11.09 - Asseco Solutions, a.s.)
HELIOS Fenix Vazba PBP 9.51.000 (HKLM-x32\...\{44352E97-8CC6-4A2E-B5B5-77105DD79086}) (Version: 9.51.000 - Asseco Solutions, a.s.)
HELIOS Fenix - systémové komponenty (HKLM-x32\...\{CC1B0AC8-4A94-43ED-9B5F-22BEF84AA4D8}) (Version: 9.21.000 - Asseco Solutions, a.s.)
HL-1210W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Icecream Screen Recorder verze 7.44 (HKLM-x32\...\{CE9603D0-2A7F-4B94-BF4D-BC4B1389888F}_is1) (Version: 7.44 - Icecream Apps)
Integration Services (HKLM-x32\...\{4938A647-7EA4-4496-A843-5E338B91C07E}) (Version: 15.0.2000.168 - Microsoft Corporation) Hidden
KB QSCD v1.0 (64-bit) (HKLM\...\{511B4472-AF5D-404B-B28A-D8DD14D0C94D}) (Version: 1.0.22.24214 - Monet+, a.s.)
KBSignatureModule (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\KBPodpisovyModul) (Version: 1.0.8 - KB)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.10 (x64) (HKLM\...\{3A80EBC5-6B68-49B9-BEBD-E1A6C966B416}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.16 (x86) (HKLM-x32\...\{E4AF7683-88E6-48B0-BF69-696234A6958B}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.10 (x64) (HKLM\...\{062CD1ED-0A3C-483C-A871-50173240C545}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.16 (x86) (HKLM-x32\...\{BF986506-2994-4DA9-9E17-1163400C97F1}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.10 (x64) (HKLM\...\{15B7D0C2-F209-4C28-AF1C-FD8326F4D58A}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.16 (x86) (HKLM-x32\...\{6BAAA5E0-D0C6-4DC9-BA70-717EBA7F2CAD}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM\...\{9786E83E-B71A-4526-B58F-64F35C7E2CFE}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM-x32\...\{4F1405AB-36A8-4383-9C1A-AE00491C255F}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 8.0.16 - Shared Framework (x86) (HKLM-x32\...\{c1d07152-0f7c-4493-88db-fcdc9e3f2bdb}) (Version: 8.0.16.25216 - Microsoft Corporation)
Microsoft ASP.NET Core 8.0.16 Shared Framework (x86) (HKLM-x32\...\{76EA714A-1D6F-3FE4-BEFC-8E68618FC8EE}) (Version: 8.0.16.25216 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 137.0.3296.93 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 137.0.3296.93 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\{BEFC10C1-7032-3C8E-80BC-621A77BFEABD}) (Version: 2.3.28107 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\Microsoft Help Viewer 2.3) (Version: 2.3.28107 - Microsoft Corporation)
Microsoft MPI (10.0.12498.5) (HKLM\...\{8499ACD3-C1E3-45AB-BF96-DA491727EBE1}) (Version: 10.0.12498.5 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{50D6B005-B0D6-425F-953B-01331E2C7FCB}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{853997DA-6FCB-4FB9-918E-E0FF881FAF65}) (Version: 17.7.2.1 - Microsoft Corporation)
Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10417.20020 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{9D6F8754-28E9-4940-B319-3FC8588CF18F}) (Version: 18.5.0.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.095.0518.0002 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{8F72E2D4-1E48-4534-8DB8-1E8E012899C6}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2014 (HKLM-x32\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 RsFx Driver (HKLM-x32\...\{D4CCB7AC-1A41-4CFA-8708-5EE551538737}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2014 Setup (English) (HKLM-x32\...\{D183B98A-9688-4FC1-9793-E17E42C8BAB1}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{6CC673B9-F743-47AD-8962-C00CA5300016}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version: - Microsoft Corporation)
Microsoft SQL Server 2019 RsFx Driver (HKLM\...\{5825CDC4-4E99-4CF9-91FE-DB60C0E2F5EA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft SQL Server Management Studio - 18.10 (HKLM-x32\...\{c09f71ef-fff8-435a-bdc9-3c242a7c36f3}) (Version: 15.0.18390.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.25.14205 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.22.27821 (HKLM-x32\...\{3BDE80F7-7EC9-448E-8160-4ADA0CDA8879}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.22.27821 (HKLM-x32\...\{1E6FC929-567E-4D22-9206-C5B83F0A21B9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{f895a2f1-ae3f-4212-8af1-7fa1f8c212ea}) (Version: 15.0.27520 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 x64 Hosting Support (HKLM\...\{AFFB9D8D-6E58-38A0-A7DD-F6F1F4247B36}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 x86 Hosting Support (HKLM-x32\...\{9594C97E-6A20-38B3-81BB-2778C4780BE1}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM-x32\...\{20d5df4e-006c-4d6d-a0dc-490d009b9786}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM\...\{805626FF-2BC9-4567-A71E-A76A470D000A}) (Version: 48.67.58484 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM-x32\...\{8d173101-98c1-4e92-97c6-47c6840745a7}) (Version: 6.0.16.32327 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM\...\{614C9740-3FD4-4788-A277-7C35CB4C323B}) (Version: 64.40.21605 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM-x32\...\{d990096d-6282-42c5-8d16-71272c5be274}) (Version: 8.0.10.34118 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{16A6EF42-A2F0-46DE-A16E-D8794DAB9810}) (Version: 64.64.32786 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{82efd5ea-41fb-496a-a50d-48391b80e98d}) (Version: 8.0.16.34817 - Microsoft Corporation)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{EBFC96E5-4409-426E-88B7-650ADB342E78}) (Version: 8.0.50727.42 - The Firebird Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Profibanka (HKLM-x32\...\{08D768F1-EEE8-4E0E-91B4-9063A2705AEE}) (Version: 1.23.301 - Komerční banka, a.s.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
RAIDXpert2 Management Suite (HKLM-x32\...\RAIDXpert2 Management Suite) (Version: 9.3.0.296 - Advanced Micro Devices, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9054.1 - Realtek Semiconductor Corp.)
RyzenMasterSDK (HKLM\...\{82BC68B8-48AD-422A-806D-83663E66BB86}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Service Pack 3 for SQL Server 2014 (KB4022619) (HKLM-x32\...\KB4022619) (Version: 12.3.6024.0 - Microsoft Corporation)
Software602 Form Filler (HKLM-x32\...\{EF8155B1-A395-4AF9-ABB4-88F09FA54DB1}) (Version: 4.80 - Software602 a.s.)
SQL Server 2014 Common Files (HKLM-x32\...\{BFB3B874-8033-4F5E-BE47-0AED2541E57C}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM-x32\...\{F78A23CD-E9A0-46E3-88E2-CF2CC93AE7BA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{71E418D7-C0C5-455A-A248-1A3C3839EEEF}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{A1ED7C85-A91A-4788-B0CC-86FA19C042E8}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{1D1E4532-6A52-471B-B006-EA04A2BBFCE9}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{AA2D8197-6678-4242-9222-3A03993E89B3}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2019 Advanced Analytics (HKLM\...\{BD408334-78B9-4024-A8B5-53184C2E8CB3}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{68B843D3-5C31-4F0C-B61C-662C97FDAD1C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{9F3D48F5-4184-444C-A810-845C6F078721}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{DF21FF12-F208-4012-92A1-CB7420A75FFE}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{EA0ADED4-831D-45B3-B612-C7FD0A1E2BAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Full text search (HKLM\...\{BFF9440C-BC5B-4326-A861-916CC3788A4A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_azul_java (HKLM\...\{FF7B55CB-CDC3-4084-B27A-6C3B65800DD4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_java (HKLM\...\{286E30FF-F22E-463E-ACAB-708AE6D50AF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mpy (HKLM\...\{33D798B3-DD3B-4CEE-AABE-3090625D5E7E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mr (HKLM\...\{B0523C0B-B56B-4C63-9B00-5A91EFF8F948}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{894F30EB-3F0A-422F-9225-EB00DC9414EA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{3F338A1B-1DCF-458F-8189-416B09B7D077}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{A401EAB9-4FC7-4F0C-8D79-9575E4910FDE}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Analysis Services (HKLM\...\{A1CAC3E0-B321-40FE-8907-4739297D5338}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Reporting Services (HKLM\...\{0278A8F5-4DDC-40FF-95CC-1D4725CA074B}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SSMS Post Install Tasks (HKLM\...\{4CB8C759-75FE-492C-8CEB-EEB9D07E2E8D}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.66.5 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Visual Studio 2017 Isolated Shell for SSMS (HKLM-x32\...\{AAA9F15B-AF45-4562-9991-93A848D3A902}) (Version: 15.0.28307.421 - Microsoft Corporation) Hidden
Webex (HKLM\...\{5769D3D0-47C7-5BD4-A88C-01365D7507C6}) (Version: 43.12.0.28111 - Cisco Systems, Inc)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Zoom Workplace (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\ZoomUMX) (Version: 6.4.7 (64367) - Zoom Communications, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2025-06-13] ()
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_159.2.1145.0_x64__v10z8vjag6ke6 [2025-06-09] (HP Inc.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_55.20610.576.0_x64__8wekyb3d8bbwe [2025-06-19] (Microsoft Corporation)
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.19.0_x64__8wekyb3d8bbwe [2023-12-27] (Microsoft Corporation)
Pomocník pro hry v Microsoft Edgi -> C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3336.0_x64__8wekyb3d8bbwe [2025-06-21] (Microsoft Corporation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2023-08-21] (Realtek Semiconductor Corp)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-05] (Skype)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{04271989-C4D2-CBD8-F5AA-CBA22665817E} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{6BE99E87-B6FB-4CC3-AE69-DFCF33303D55} -> [Tiskové exporty z Money S3] => C:\Users\Public\Documents\Solitea\Money S3\PRINT\ [2022-07-11 06:07]
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{EABAE40C-B27C-455A-B672-F234DD780948}\InprocServer32 -> C:\Users\cervenad\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.25.14205\x64\Microsoft.Teams.MeetingAddin.DLL (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-05-09 09:41 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2024-12-06 00:21 - 2024-12-06 00:21 - 000060928 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files\Adobe\Acrobat DC\Acrobat\Locale\cs_cz\Adobe Send\SendAsLinkAddin.CZE
2021-10-05 13:17 - 2021-10-05 13:17 - 001711616 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2023-05-09 09:41 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\brlmw03a.dll
2023-05-09 09:41 - 2013-06-12 19:06 - 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2023-05-09 09:41 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2023-05-09 09:41 - 2013-10-10 21:55 - 002040320 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2023-05-09 09:47 - 2019-06-20 11:20 - 000884224 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbclient.dll
2023-05-09 09:47 - 2019-06-20 11:20 - 000008192 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\ib_util.dll
2023-05-09 09:47 - 2019-06-20 11:21 - 001107968 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\intl\fbintl.DLL
2023-05-09 09:47 - 2019-06-20 11:18 - 000665088 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\plugins\fbtrace.dll
2023-05-09 09:47 - 2019-06-20 11:20 - 000012800 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\UDF\ib_udf.DLL
2023-05-09 09:47 - 2019-06-20 11:20 - 000884224 _____ (Firebird Project) [File not signed] C:\Windows\SYSTEM32\gds32.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000050688 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000066048 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2023-05-09 09:47 - 2019-06-20 11:14 - 001558016 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icudt30.dll
2023-05-09 09:47 - 2019-06-20 11:13 - 000935936 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icuuc30.dll
2023-05-09 09:44 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2025-05-23 15:11 - 2024-11-16 20:43 - 000492032 _____ (Jeremy Skinner) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\FluentValidation.dll
2025-05-23 15:11 - 2024-02-07 22:45 - 000274944 _____ (Jimmy Bogard) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\AutoMapper.dll
2025-05-23 15:11 - 2024-10-09 02:54 - 000011264 _____ (Martijn Bodeman) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\IbanNet.DependencyInjection.ServiceProvider.dll
2025-05-23 15:11 - 2024-10-09 02:54 - 000179200 _____ (Martijn Bodeman) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\IbanNet.dll
2017-09-05 01:15 - 2017-09-05 01:15 - 004396032 _____ (Microsoft Corporation) [File not signed] C:\Program Files\AMD\CNext\CNext\D3DCOMPILER_47.dll
2021-12-28 11:09 - 2021-12-28 11:09 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2021-12-28 11:09 - 2021-12-28 11:09 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2025-05-23 15:11 - 2024-12-09 01:31 - 000035840 _____ (Microsoft;Serilog Contributors) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Serilog.Extensions.Hosting.dll
2025-05-23 15:11 - 2024-12-06 05:11 - 000161280 _____ (Serilog Contributors) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Serilog.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000245760 _____ (Seyfor.BankAgregator.Api) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000049152 _____ (Seyfor.BankAgregator.Data) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Data.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000233472 _____ (Seyfor.BankAgregator.Definition) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Definition.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000932352 _____ (Seyfor.BankAgregator.Providers) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Providers.dll
2023-05-09 09:46 - 2019-12-21 12:55 - 001380864 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\AlfaSoftware\Avensio\libeay32.dll
2023-05-09 09:46 - 2019-12-21 12:55 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\AlfaSoftware\Avensio\ssleay32.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001227776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 006947328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000740352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001110528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000326656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 003798528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000440832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 004255744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000206336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000396800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 102854656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000133120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 005611008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000210432 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 002877440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-12-28 12:04 - 2012-05-09 13:29 - 000145920 _____ (Windows (R) Codename Longhorn DDK provider) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\602xpsui.DLL
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 10.42.31.4 - 8.8.8.8
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek Gaming GbE Family Controller -> rt640x64.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Microsoft MPI\Bin\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files\Azure Data Studio\bin;C:\Program Files\dotnet\
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: )
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B6FAD8CF-6E8B-477F-B980-7D292AA47202}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{90DF03DC-6EA5-4FE7-9A22-7A486EF39F7A}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{00761E6C-ECE2-4258-8F1B-9FCFFBDF45C0}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{658650E7-4DD6-4C8E-A4EF-6E1C3591BD77}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF444C50-5EE7-4475-AF39-2C9B43B2D2EC}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{27733E69-0BF5-43CA-913D-6B27F0DB0376}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CD5554C4-4201-4236-B177-27010C825A4F}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CCD23F23-E99D-4B40-A6A3-662EE575AC4A}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3EC9DCBA-1726-46D1-B2C3-3DF5D6B88C52}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1FD76081-4486-40CB-A673-022C0735F4F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F946DFB9-C280-42F3-AD8C-14B782865C6F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7B38F7EC-622B-4ACB-BFBA-AEBB510DE6B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{72A5D51C-6607-483C-9928-9FD5105AC341}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{7DE38987-455A-48EC-A460-4902DDD88F43}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{137227E8-48CB-4714-9364-54C28CBAA554}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3671BCF-9A61-4AFD-9C7A-7FB04467221B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9691B836-9A34-4A62-8952-BDDEFF534D1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{40111E4C-6CF1-43AA-8486-9AEA0CFC1ABD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3D01EBE3-B8B9-4322-AE2E-F61B8626DF88}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B4710AC3-A08B-44C7-BD1C-90D7AEDF4A95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3223610B-E73B-4B0A-8915-BDB191D6F635}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D351473-386B-492D-A032-855FC9CBCC97}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{42801A16-B68C-4FA5-AA84-8DE1E8657532}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{56A84FC2-9806-4DCB-B724-8D72CF783A3D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E4B5CF59-CE7E-4A55-8E0C-316B1C92338A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DB3DAD22-D2D7-4872-A883-CC7539FD747C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{51686F0D-2D23-4256-A660-9917B8AEC55F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5FF5331A-A330-4D70-AE69-E62F679FDCD2}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C5F33FF6-F221-4754-A3B6-102C0EAEECBE}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D599CAE4-AC1A-4CD4-9492-3420A2200933}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.83\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F04800E-F871-401B-9EE3-E88B5AC137BD}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{30D8CBB8-FA36-4F39-A86A-FB129AC07D26}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C8343CF7-A6F1-4252-ADCF-EFF55E7DF54E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B741E080-377B-4B5B-A8F8-133F7DD08236}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/25/2025 10:25:43 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/22/2025 10:26:17 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/19/2025 10:39:51 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/19/2025 07:15:55 AM) (Source: Microsoft-Windows-Folder Redirection) (EventID: 502) (User: ZSPRIBYSLAV)
Description: Nepodařilo se použít zásady a přesměrovat složku Desktop na \\zskola2\user-prac\polakovad\Plocha.
Možnosti přesměrování: 0x9021.
Došlo k následující chybě:Složku \\zskola2\user-prac\polakovad\Plocha nejde vytvořit..
Podrobnosti o chybě: Tento soubor není momentálně k dispozici pro použití v tomto počítači..
Error: (06/18/2025 03:21:54 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro ZSPRIBYSLAV\CERVENA-PC$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 18 Jun 2025 13:22:49 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 6481906d-e24a-445b-872b-fee9439657cf
Metoda: GET(954ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (06/17/2025 08:43:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program KB_PCB.exe verze 1.23.0.46 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: d84
Čas spuštění: 01dbdb5accc133ce
Čas ukončení: 12
Cesta k aplikaci: C:\Program Files (x86)\Profibanka\KB_PCB.exe
ID hlášení: 745055c6-3047-4d60-8788-1ce8e12558c3
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (06/16/2025 10:24:30 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/13/2025 10:40:04 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
System errors:
=============
Error: (06/25/2025 04:55:24 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80240017): Microsoft - Printer - 6/22/2006 12:00:00 AM - 6.1.7233.1.
Error: (06/25/2025 03:26:43 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (06/25/2025 03:26:43 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (06/25/2025 02:58:14 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\Harddisk2\DR50 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.
Error: (06/25/2025 02:58:14 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\Harddisk2\DR50 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.
Error: (06/25/2025 02:58:14 AM) (Source: Virtual Disk Service) (EventID: 8) (User: )
Description: Otevření zařízení \\?\SCSI#Disk&Ven_Msft&Prod_Virtual_Disk#2&1f4adffe&0&000001#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} se nezdařilo. Kód chyby: C03A001C@020D0002
Error: (06/25/2025 02:58:07 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume99 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.
Error: (06/25/2025 02:58:07 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume99 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.
CodeIntegrity:
===============
Date: 2025-06-25 12:12:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2025-06-25 11:12:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. F14f 10/14/2021
Motherboard: Gigabyte Technology Co., Ltd. A520M S2H
Processor: AMD Ryzen 5 PRO 5650G with Radeon Graphics
Percentage of memory in use: 71%
Total physical RAM: 7550.34 MB
Available physical RAM: 2182.7 MB
Total Virtual: 13292.49 MB
Available Virtual: 4406.56 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:929.72 GB) (Free:575.85 GB) (Model: AMD-RAID Array 1 SCSI Disk Device) NTFS
Drive e: (Elements) (Fixed) (Total:2794.49 GB) (Free:2768.33 GB) (Model: WD Elements 2621 USB Device) NTFS
\\?\Volume{e129094d-2942-486f-b521-10b75f50b432}\ (Recovery tools) (Fixed) (Total:1 GB) (Free:0.41 GB) NTFS
\\?\Volume{7e5111be-5fc1-49a5-bc38-e8ea7f74b8e7}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 2794.5 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 119390
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC, mnoho spojení ven do internetu
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC, mnoho spojení ven do internetu
Po skenu mi to nabídlo pouze karanténu. Restart nebyl.
Log:
# -------------------------------
# Malwarebytes AdwCleaner 8.5.0.595
# -------------------------------
# Build: 03-05-2025
# Database: 2024-10-23.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-25-2025
# Duration: 00:00:02
# OS: Windows 10 (Build 19045.5965)
# Cleaned: 2
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\cervenad_OLD\AppData\Local\Seznam.cz
Deleted C:\Users\cervenad_OLD\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1553 octets] - [25/06/2025 13:52:35]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Log:
# -------------------------------
# Malwarebytes AdwCleaner 8.5.0.595
# -------------------------------
# Build: 03-05-2025
# Database: 2024-10-23.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-25-2025
# Duration: 00:00:02
# OS: Windows 10 (Build 19045.5965)
# Cleaned: 2
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\cervenad_OLD\AppData\Local\Seznam.cz
Deleted C:\Users\cervenad_OLD\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1553 octets] - [25/06/2025 13:52:35]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 119390
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC, mnoho spojení ven do internetu
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC, mnoho spojení ven do internetu
FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-06-2025
Ran by polakovad (administrator) on CERVENA-PC (ATComputers TRILINE PROFI) (25-06-2025 14:52:13)
Running from \\zskola2\user-prac\cervenad\Plocha\FRST64.exe
Loaded Profiles: polakovad & MSSQLFDLauncher$FENIX2019 & SQLTELEMETRY$FENIX2019 & MSSQLLaunchpad$FENIX2019
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdhost.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\Launchpad.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teamsupdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mobsync.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5911_none_7dd4fd687cb889e8\TiWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe [1201968 2020-10-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [195760 2025-04-05] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\Installer\setup.exe [7395880 2025-06-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [GpNetworkStartTimeoutPolicyValue] 60
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [S3AutomaticSTART] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [CiscoMeetingDaemon] => C:\Users\cervenad\AppData\Local\WebEx\WebexHost.exe [8077920 2023-12-12] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [Icecream_Screen_Recorder_New_Auto_Start] => C:\Program Files (x86)\Icecream Screen Recorder 7\recorder.exe [6987344 2025-05-05] (ICECREAM APPS LTD -> Icecream)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [MicrosoftEdgeAutoLaunch_A82912258D1D457A596D706B4507A3C9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [MicrosoftEdgeAutoLaunch_97C59669F16695898DE380691D1CE2A8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [S3Automatic] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKLM\...\Windows x64\Print Processors\hpcpp160: C:\Windows\System32\spool\prtprocs\x64\hpcpp160.dll [602912 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW081.DLL [74016 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPMLM135: C:\Windows\system32\hpmlm135.dll [237344 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\rica7Qlm: C:\Windows\system32\rica7Qlm.dll [28160 2013-12-26] (Microsoft Windows Hardware Compatibility Publisher -> RICOH CO.,Ltd.)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [47896 2021-09-23] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\137.0.7151.120\Installer\chrmstp.exe [2025-06-21] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {B5FA014C-2A18-4A1F-9314-EF77E6361579} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.)
Task: {A56280EC-4FEE-4AD0-BB81-D59853A493DE} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {C91BB302-8023-4471-9B55-6E496849942D} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {B97DE14B-6A35-4756-90BB-CDA4C9AE59A7} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [355840 2021-10-05] (Advanced Micro Devices, Inc.) [File not signed]
Task: {F1FAFF53-F422-4CDE-B296-B6D1EDBF87C6} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5974424 2025-06-11] (Microsoft Windows -> Microsoft Corporation)
Task: {3398DB82-809C-4C2F-9AEA-B741AB2BA3D2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7194.0{979D3406-0080-4581-8A4D-7965092B0AAF} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7194.0\updater.exe [7080032 2025-05-22] (Google LLC -> Google LLC)
Task: {9007C027-1B03-4346-9DA1-C1A1E6F92DB6} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {EF8E5F92-86FA-4697-9393-008E3E51FF08} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {CC0E9B46-F5A7-48D3-9950-45C5276121C2} - System32\Tasks\Komercni banka\Profibanka\Profibanka AutoBackup => C:\Program Files (x86)\Profibanka\CreateTaskW10.exe [22552 2015-10-02] (KOMERCNI BANKA A.S. -> ) -> C:\Program#Files#(x86)\profibanka\Backup\backup.bak
Task: {5C99E5D2-0D0E-4CB9-8DDB-ECC5AF64D688} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C93598F6-E3C1-453C-AB6D-02CD44E35389} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {08D1A9BD-780A-4D3E-88AC-0A617895D165} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A30394E1-D3E6-4022-A534-64034E6272CC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC1AB55C-1911-4D37-B033-4FE498409E26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {897D3190-D07C-4655-968F-1C47517AB1BE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F628214-3628-4144-88BB-F39FBA7293D2} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {F3401EAD-F305-4D11-8C4A-8FBCCDF9314D} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {5B3C2F83-E51B-4093-88E1-6924E6AEC52F} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {387E62F4-0FFB-4C3B-9197-12438B08CC0A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {1577F35C-9331-4CE4-9FC0-A806E2CA47B2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F877B03-CC1A-432D-8E81-AB7241FF9E5C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79553ADB-0C2D-43F7-A995-E7597AF52937} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-1194 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {0FF5F2CF-844D-4ED5-8F6E-AF0522AE326A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-2762 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {35E6625F-8F78-4505-A488-6988ED69FAFE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD15D0AD-7FCF-4DB7-88B3-D278C46C3C6D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E08AB79-4B8C-46A1-9824-F87FD90DF58F} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD8C2150-57B5-4102-821F-2C3DCB7BA2AD} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {33250B85-50C8-4AA4-90F8-7690D8DE05FC} - System32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79E81F0F-BC1F-4122-873E-48F44B4383A5} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55288 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CEBCCD32-32EB-44E8-83AB-D4E0B8EC08CC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {8BE217C1-014E-41A0-83EB-9236DD5036D8} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Users\cervenad\AppData\Roaming\Zoom\bin\Zoom.exe [441144 2025-05-27] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{963096d6-22e6-4dfb-976a-5fb00ad683f8}: [NameServer] 10.42.31.4
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default [2025-06-25]
Edge Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-06-08]
Edge Extension: (Edge relevant text changes) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-06-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
Chrome:
=======
CHR Profile: C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default [2025-06-25]
CHR Notifications: Default -> hxxps://cz.avon-brochure.com; hxxps://petona.cz; hxxps://upcr.cz; hxxps://www.dobre-knihy.cz
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-06-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-29]
CHR Extension: (FormApps Extension) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-04-15]
CHR Extension: (Cryptoplus KB - podepisovací modul) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldildmkoeoicfkknedfdpjmgjmpkpooc [2023-07-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-19]
CHR HKU\S-1-5-21-2496437920-1329170045-526373181-1159\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
S2 BankAPI Seyfor; C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.exe [139264 2025-04-02] (Seyfor.BankAgregator.Api) [File not signed]
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9499264 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5566320 2025-04-05] (ESET, spol. s r.o. -> ESET)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [58224 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [1529112 2023-08-14] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncHelper.exe [3621688 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [156672 2019-06-20] (Firebird Project) [File not signed]
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [5825024 2019-06-20] (Firebird Project) [File not signed]
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-05-02] (HP Inc. -> HP Inc.)
S3 MonS3Service; C:\Program Files (x86)\Common Files\Solitea\MonS3Service.exe [1765536 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [161040 2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe [626280 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe [199760 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R3 MSSQLFDLauncher$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe [85600 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLLaunchpad$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\launchpad.exe [1228608 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveUpdaterService.exe [3873064 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [917440 2025-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\SQLAGENT.EXE [695912 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\SQLAGENT.EXE [454736 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe [290648 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [20994352 2025-05-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54720 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_50fee1227e96ec14\amdsafd.sys [100792 2021-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\amdkmdag.sys [94358424 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [284672 2021-04-09] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [225144 2025-02-09] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [16336 2022-09-05] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [269056 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [86200 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [128528 2025-02-09] (ESET, spol. s r.o. -> ESET)
R3 GemCCID; C:\Windows\System32\DriverStore\FileRepository\gemccid.inf_amd64_526ec61d10ad09ec\GemCCID.sys [162992 2025-05-15] (Thales DIS CPL USA, Inc. -> Gemalto)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
S4 RsFx0600; C:\Windows\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 usbscan; C:\Windows\System32\drivers\usbscan.sys [49664 2022-07-13] (Microsoft Corporation) [File not signed]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-06-25 13:52 - 2025-06-25 13:53 - 000000000 ____D C:\AdwCleaner
2025-06-25 13:07 - 2025-06-25 14:52 - 000000000 ____D C:\FRST
2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg
2025-06-24 12:07 - 2025-06-24 12:07 - 000207516 _____ C:\Users\cervenad\Downloads\priloha_1536203059_0_Usneseni_o_zastaveni_rizeni_Polak_Michal.pdf
2025-06-23 08:32 - 2025-06-23 08:32 - 000041455 _____ C:\Users\cervenad\Downloads\1237181070287_6_1132_20250620.pdf
2025-06-18 18:33 - 2025-06-18 18:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-06-17 14:21 - 2025-06-17 14:21 - 000030154 _____ C:\Users\cervenad\Downloads\Potvrzeni o prijmu (1).pdf
2025-06-16 12:30 - 2025-06-16 12:30 - 000060064 _____ C:\Users\cervenad\Downloads\3300461684.pdf
2025-06-13 13:50 - 2025-06-13 13:50 - 000847276 _____ C:\Users\cervenad\Downloads\cza13917_2025-01-10-09_33_08 (2).zip
2025-06-13 12:16 - 2025-06-13 12:16 - 000579513 _____ C:\Users\cervenad\Downloads\2984704686 (1).pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich.pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich (1).pdf
2025-06-12 07:56 - 2025-06-12 07:56 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1) (1).pdf
2025-06-12 07:54 - 2025-06-12 07:54 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1).pdf
2025-06-11 15:17 - 2025-06-11 15:17 - 000000000 ___HD C:\$WinREAgent
2025-06-11 14:56 - 2025-06-11 14:56 - 000579842 _____ C:\Users\cervenad\Downloads\2984704686.pdf
2025-06-10 12:01 - 2025-06-10 12:01 - 000000000 ____D C:\Program Files (x86)\dotnet
2025-06-05 08:35 - 2025-06-05 08:35 - 000088054 _____ C:\Users\cervenad\Downloads\Zpětvzetí žádost o prominutí penále ČSSZ.pdf
2025-06-05 07:38 - 2025-06-05 07:38 - 000194670 _____ C:\Users\cervenad\Downloads\TU_červen 2025.pdf
2025-06-05 07:08 - 2025-06-05 07:08 - 000604115 _____ C:\Users\cervenad\Downloads\2983933586.pdf
2025-06-05 07:07 - 2025-06-05 07:07 - 000609335 _____ C:\Users\cervenad\Downloads\2983933591.pdf
2025-06-04 20:58 - 2025-06-04 20:58 - 000000000 ____D C:\Program Files\HP
2025-06-04 09:33 - 2025-06-04 09:33 - 001868243 _____ C:\Users\cervenad\Downloads\Dalsi_financni_prostredky_pro_skoly_na_rok_2025.xlsx
2025-06-04 09:33 - 2025-06-04 09:33 - 000095106 _____ C:\Users\cervenad\Downloads\Priloha.xlsx
2025-06-02 11:37 - 2025-06-02 11:37 - 002770850 _____ C:\Users\cervenad\Downloads\priloha_1532097212_0_Kantyna_SPS_Trebic.pdf
2025-06-02 11:37 - 2025-06-02 11:37 - 000213966 _____ C:\Users\cervenad\Downloads\priloha_1531693351_0_Polak_Michal.pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000484182 _____ C:\Users\cervenad\Downloads\2979131233 (2).pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000483635 _____ C:\Users\cervenad\Downloads\2981220150 (1).pdf
2025-06-02 08:47 - 2025-06-02 08:47 - 000499269 _____ C:\Users\cervenad\Downloads\bankovní identita.pdf
2025-05-30 09:13 - 2025-05-30 09:13 - 000040293 _____ C:\Users\cervenad\Downloads\1237181070287_5_1132_20250522.pdf
2025-05-30 07:24 - 2025-06-25 14:51 - 000003086 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2025-05-29 14:03 - 2025-05-29 14:03 - 000113977 _____ C:\Users\cervenad\Downloads\Žádost o prominutí penále ČSSZ.pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036 (1).pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000006073 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.p7s
2025-05-27 14:11 - 2025-05-27 14:11 - 000003652 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.pdf
2025-05-27 14:10 - 2025-05-27 14:10 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036.pdf
2025-05-27 08:47 - 2025-05-27 08:47 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KARTDAA49BC9DE0002.pdf
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KART90E5085E5D7003.pdf
2025-05-26 12:57 - 2025-05-26 12:57 - 001579678 _____ C:\Users\cervenad\Downloads\voucher-KARTEE185384845001.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-06-25 14:51 - 2025-02-27 08:17 - 000003118 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2025-06-25 14:34 - 2021-11-24 10:21 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-06-25 14:31 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-06-25 14:31 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-06-25 14:31 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-06-25 13:49 - 2023-05-09 10:12 - 000000000 ____D C:\ProgramData\firebird
2025-06-25 13:25 - 2021-12-28 10:58 - 000000144 _____ C:\Windows\system32\config\netlogon.ftl
2025-06-25 13:08 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-06-25 04:33 - 2021-12-27 19:06 - 000000000 ____D C:\Windows\SystemTemp
2025-06-24 13:04 - 2023-07-19 19:19 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Word
2025-06-24 10:46 - 2023-07-19 19:20 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Excel
2025-06-24 08:07 - 2023-08-28 18:22 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Temp
2025-06-24 08:07 - 2023-07-19 19:03 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Adobe
2025-06-24 07:45 - 2021-12-28 11:30 - 000000000 ____D C:\KBprikazy
2025-06-22 00:32 - 2021-12-27 18:41 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-06-21 08:33 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\Packages
2025-06-21 08:33 - 2021-11-24 10:21 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-06-19 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2025-06-19 10:39 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\D3DSCache
2025-06-18 18:33 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-06-18 18:32 - 2021-12-28 11:09 - 000000000 ____D C:\Program Files\Microsoft Office
2025-06-18 15:25 - 2021-11-24 10:26 - 002319808 _____ C:\Windows\system32\PerfStringBackup.INI
2025-06-18 15:25 - 2021-04-30 08:05 - 000934756 _____ C:\Windows\system32\perfh005.dat
2025-06-18 15:25 - 2021-04-30 08:05 - 000234006 _____ C:\Windows\system32\perfc005.dat
2025-06-18 15:21 - 2021-12-28 12:22 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-06-18 15:21 - 2021-12-28 11:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-06-18 15:21 - 2021-11-24 10:21 - 000008192 ___SH C:\DumpStack.log.tmp
2025-06-18 15:21 - 2021-11-24 10:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-06-18 15:21 - 2019-12-07 11:03 - 001310720 _____ C:\Windows\system32\config\BBI
2025-06-18 08:01 - 2021-12-28 11:30 - 000000000 ____D C:\KBvypisy
2025-06-16 07:53 - 2023-08-07 06:25 - 000000000 ____D C:\Users\cervenad\AppData\Local\AMD_Common
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2025-02-06 11:57 - 000003540 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:29 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:19 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2021-12-27 19:08 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2021-11-24 10:27 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-06-14 13:02 - 2021-11-24 10:27 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-06-13 07:32 - 2024-04-19 08:39 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-06-13 07:32 - 2023-03-07 09:20 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2025-06-11 17:37 - 2021-11-24 10:21 - 000447968 _____ C:\Windows\system32\FNTCACHE.DAT
2025-06-11 17:36 - 2024-07-10 08:18 - 000000000 ____D C:\Windows\system32\compatrel
2025-06-11 17:36 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2025-06-11 15:25 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-06-11 15:22 - 2021-11-24 10:24 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-06-11 15:17 - 2021-12-27 18:46 - 000000000 ____D C:\Windows\system32\MRT
2025-06-11 15:15 - 2021-12-27 18:46 - 216824056 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-06-11 14:56 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Outlook
2025-06-11 08:21 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Office
2025-06-10 12:01 - 2021-11-24 10:23 - 000000000 ____D C:\ProgramData\Package Cache
2025-06-10 11:59 - 2021-12-28 12:13 - 000000000 ____D C:\Záloha Fenix
2025-06-10 11:59 - 2021-11-24 09:59 - 000000000 ____D C:\install
2025-06-09 18:11 - 2023-07-19 19:02 - 000000000 ____D C:\Users\cervenad\AVENSIO
2025-06-09 12:56 - 2024-03-19 10:41 - 000000000 ____D C:\Users\cervenad\AppData\Local\CrashDumps
2025-06-05 13:57 - 2023-07-19 16:28 - 000000000 ____D C:\Users\administrator.ZSPRIBYSLAV
2025-06-05 13:57 - 2022-08-25 08:46 - 000000000 ____D C:\Users\knihovna
2025-06-05 13:57 - 2021-12-28 10:59 - 000000000 ____D C:\Users\administrator
2025-06-05 13:57 - 2021-12-27 18:38 - 000000000 ____D C:\Users\dpadmin
2025-06-05 07:05 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad
2025-05-27 14:37 - 2023-10-24 08:40 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Zoom
2025-05-27 08:47 - 2024-12-12 10:00 - 000004256 _____ C:\Windows\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159
2025-05-26 07:21 - 2021-12-28 11:45 - 000000000 ____D C:\Program Files (x86)\Profibanka
==================== Files in the root of some directories ========
2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ () C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-06-2025
Ran by polakovad (administrator) on CERVENA-PC (ATComputers TRILINE PROFI) (25-06-2025 14:52:13)
Running from \\zskola2\user-prac\cervenad\Plocha\FRST64.exe
Loaded Profiles: polakovad & MSSQLFDLauncher$FENIX2019 & SQLTELEMETRY$FENIX2019 & MSSQLLaunchpad$FENIX2019
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdhost.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\Launchpad.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teamsupdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mobsync.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5911_none_7dd4fd687cb889e8\TiWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe [1201968 2020-10-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [195760 2025-04-05] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\Installer\setup.exe [7395880 2025-06-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [GpNetworkStartTimeoutPolicyValue] 60
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [S3AutomaticSTART] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [CiscoMeetingDaemon] => C:\Users\cervenad\AppData\Local\WebEx\WebexHost.exe [8077920 2023-12-12] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [Icecream_Screen_Recorder_New_Auto_Start] => C:\Program Files (x86)\Icecream Screen Recorder 7\recorder.exe [6987344 2025-05-05] (ICECREAM APPS LTD -> Icecream)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [MicrosoftEdgeAutoLaunch_A82912258D1D457A596D706B4507A3C9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [MicrosoftEdgeAutoLaunch_97C59669F16695898DE380691D1CE2A8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [S3Automatic] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKLM\...\Windows x64\Print Processors\hpcpp160: C:\Windows\System32\spool\prtprocs\x64\hpcpp160.dll [602912 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW081.DLL [74016 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPMLM135: C:\Windows\system32\hpmlm135.dll [237344 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\rica7Qlm: C:\Windows\system32\rica7Qlm.dll [28160 2013-12-26] (Microsoft Windows Hardware Compatibility Publisher -> RICOH CO.,Ltd.)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [47896 2021-09-23] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\137.0.7151.120\Installer\chrmstp.exe [2025-06-21] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {B5FA014C-2A18-4A1F-9314-EF77E6361579} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.)
Task: {A56280EC-4FEE-4AD0-BB81-D59853A493DE} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {C91BB302-8023-4471-9B55-6E496849942D} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {B97DE14B-6A35-4756-90BB-CDA4C9AE59A7} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [355840 2021-10-05] (Advanced Micro Devices, Inc.) [File not signed]
Task: {F1FAFF53-F422-4CDE-B296-B6D1EDBF87C6} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5974424 2025-06-11] (Microsoft Windows -> Microsoft Corporation)
Task: {3398DB82-809C-4C2F-9AEA-B741AB2BA3D2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7194.0{979D3406-0080-4581-8A4D-7965092B0AAF} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7194.0\updater.exe [7080032 2025-05-22] (Google LLC -> Google LLC)
Task: {9007C027-1B03-4346-9DA1-C1A1E6F92DB6} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {EF8E5F92-86FA-4697-9393-008E3E51FF08} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {CC0E9B46-F5A7-48D3-9950-45C5276121C2} - System32\Tasks\Komercni banka\Profibanka\Profibanka AutoBackup => C:\Program Files (x86)\Profibanka\CreateTaskW10.exe [22552 2015-10-02] (KOMERCNI BANKA A.S. -> ) -> C:\Program#Files#(x86)\profibanka\Backup\backup.bak
Task: {5C99E5D2-0D0E-4CB9-8DDB-ECC5AF64D688} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C93598F6-E3C1-453C-AB6D-02CD44E35389} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {08D1A9BD-780A-4D3E-88AC-0A617895D165} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A30394E1-D3E6-4022-A534-64034E6272CC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC1AB55C-1911-4D37-B033-4FE498409E26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {897D3190-D07C-4655-968F-1C47517AB1BE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F628214-3628-4144-88BB-F39FBA7293D2} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {F3401EAD-F305-4D11-8C4A-8FBCCDF9314D} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {5B3C2F83-E51B-4093-88E1-6924E6AEC52F} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {387E62F4-0FFB-4C3B-9197-12438B08CC0A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {1577F35C-9331-4CE4-9FC0-A806E2CA47B2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F877B03-CC1A-432D-8E81-AB7241FF9E5C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79553ADB-0C2D-43F7-A995-E7597AF52937} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-1194 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {0FF5F2CF-844D-4ED5-8F6E-AF0522AE326A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-2762 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {35E6625F-8F78-4505-A488-6988ED69FAFE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD15D0AD-7FCF-4DB7-88B3-D278C46C3C6D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E08AB79-4B8C-46A1-9824-F87FD90DF58F} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD8C2150-57B5-4102-821F-2C3DCB7BA2AD} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {33250B85-50C8-4AA4-90F8-7690D8DE05FC} - System32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79E81F0F-BC1F-4122-873E-48F44B4383A5} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55288 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CEBCCD32-32EB-44E8-83AB-D4E0B8EC08CC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {8BE217C1-014E-41A0-83EB-9236DD5036D8} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Users\cervenad\AppData\Roaming\Zoom\bin\Zoom.exe [441144 2025-05-27] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{963096d6-22e6-4dfb-976a-5fb00ad683f8}: [NameServer] 10.42.31.4
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default [2025-06-25]
Edge Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-06-08]
Edge Extension: (Edge relevant text changes) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-06-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
Chrome:
=======
CHR Profile: C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default [2025-06-25]
CHR Notifications: Default -> hxxps://cz.avon-brochure.com; hxxps://petona.cz; hxxps://upcr.cz; hxxps://www.dobre-knihy.cz
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-06-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-29]
CHR Extension: (FormApps Extension) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-04-15]
CHR Extension: (Cryptoplus KB - podepisovací modul) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldildmkoeoicfkknedfdpjmgjmpkpooc [2023-07-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-19]
CHR HKU\S-1-5-21-2496437920-1329170045-526373181-1159\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
S2 BankAPI Seyfor; C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.exe [139264 2025-04-02] (Seyfor.BankAgregator.Api) [File not signed]
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9499264 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5566320 2025-04-05] (ESET, spol. s r.o. -> ESET)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [58224 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [1529112 2023-08-14] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncHelper.exe [3621688 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [156672 2019-06-20] (Firebird Project) [File not signed]
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [5825024 2019-06-20] (Firebird Project) [File not signed]
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-05-02] (HP Inc. -> HP Inc.)
S3 MonS3Service; C:\Program Files (x86)\Common Files\Solitea\MonS3Service.exe [1765536 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [161040 2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe [626280 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe [199760 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R3 MSSQLFDLauncher$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe [85600 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLLaunchpad$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\launchpad.exe [1228608 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveUpdaterService.exe [3873064 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [917440 2025-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\SQLAGENT.EXE [695912 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\SQLAGENT.EXE [454736 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe [290648 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [20994352 2025-05-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54720 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_50fee1227e96ec14\amdsafd.sys [100792 2021-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\amdkmdag.sys [94358424 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [284672 2021-04-09] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [225144 2025-02-09] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [16336 2022-09-05] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [269056 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [86200 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [128528 2025-02-09] (ESET, spol. s r.o. -> ESET)
R3 GemCCID; C:\Windows\System32\DriverStore\FileRepository\gemccid.inf_amd64_526ec61d10ad09ec\GemCCID.sys [162992 2025-05-15] (Thales DIS CPL USA, Inc. -> Gemalto)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
S4 RsFx0600; C:\Windows\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 usbscan; C:\Windows\System32\drivers\usbscan.sys [49664 2022-07-13] (Microsoft Corporation) [File not signed]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-06-25 13:52 - 2025-06-25 13:53 - 000000000 ____D C:\AdwCleaner
2025-06-25 13:07 - 2025-06-25 14:52 - 000000000 ____D C:\FRST
2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg
2025-06-24 12:07 - 2025-06-24 12:07 - 000207516 _____ C:\Users\cervenad\Downloads\priloha_1536203059_0_Usneseni_o_zastaveni_rizeni_Polak_Michal.pdf
2025-06-23 08:32 - 2025-06-23 08:32 - 000041455 _____ C:\Users\cervenad\Downloads\1237181070287_6_1132_20250620.pdf
2025-06-18 18:33 - 2025-06-18 18:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-06-17 14:21 - 2025-06-17 14:21 - 000030154 _____ C:\Users\cervenad\Downloads\Potvrzeni o prijmu (1).pdf
2025-06-16 12:30 - 2025-06-16 12:30 - 000060064 _____ C:\Users\cervenad\Downloads\3300461684.pdf
2025-06-13 13:50 - 2025-06-13 13:50 - 000847276 _____ C:\Users\cervenad\Downloads\cza13917_2025-01-10-09_33_08 (2).zip
2025-06-13 12:16 - 2025-06-13 12:16 - 000579513 _____ C:\Users\cervenad\Downloads\2984704686 (1).pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich.pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich (1).pdf
2025-06-12 07:56 - 2025-06-12 07:56 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1) (1).pdf
2025-06-12 07:54 - 2025-06-12 07:54 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1).pdf
2025-06-11 15:17 - 2025-06-11 15:17 - 000000000 ___HD C:\$WinREAgent
2025-06-11 14:56 - 2025-06-11 14:56 - 000579842 _____ C:\Users\cervenad\Downloads\2984704686.pdf
2025-06-10 12:01 - 2025-06-10 12:01 - 000000000 ____D C:\Program Files (x86)\dotnet
2025-06-05 08:35 - 2025-06-05 08:35 - 000088054 _____ C:\Users\cervenad\Downloads\Zpětvzetí žádost o prominutí penále ČSSZ.pdf
2025-06-05 07:38 - 2025-06-05 07:38 - 000194670 _____ C:\Users\cervenad\Downloads\TU_červen 2025.pdf
2025-06-05 07:08 - 2025-06-05 07:08 - 000604115 _____ C:\Users\cervenad\Downloads\2983933586.pdf
2025-06-05 07:07 - 2025-06-05 07:07 - 000609335 _____ C:\Users\cervenad\Downloads\2983933591.pdf
2025-06-04 20:58 - 2025-06-04 20:58 - 000000000 ____D C:\Program Files\HP
2025-06-04 09:33 - 2025-06-04 09:33 - 001868243 _____ C:\Users\cervenad\Downloads\Dalsi_financni_prostredky_pro_skoly_na_rok_2025.xlsx
2025-06-04 09:33 - 2025-06-04 09:33 - 000095106 _____ C:\Users\cervenad\Downloads\Priloha.xlsx
2025-06-02 11:37 - 2025-06-02 11:37 - 002770850 _____ C:\Users\cervenad\Downloads\priloha_1532097212_0_Kantyna_SPS_Trebic.pdf
2025-06-02 11:37 - 2025-06-02 11:37 - 000213966 _____ C:\Users\cervenad\Downloads\priloha_1531693351_0_Polak_Michal.pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000484182 _____ C:\Users\cervenad\Downloads\2979131233 (2).pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000483635 _____ C:\Users\cervenad\Downloads\2981220150 (1).pdf
2025-06-02 08:47 - 2025-06-02 08:47 - 000499269 _____ C:\Users\cervenad\Downloads\bankovní identita.pdf
2025-05-30 09:13 - 2025-05-30 09:13 - 000040293 _____ C:\Users\cervenad\Downloads\1237181070287_5_1132_20250522.pdf
2025-05-30 07:24 - 2025-06-25 14:51 - 000003086 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2025-05-29 14:03 - 2025-05-29 14:03 - 000113977 _____ C:\Users\cervenad\Downloads\Žádost o prominutí penále ČSSZ.pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036 (1).pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000006073 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.p7s
2025-05-27 14:11 - 2025-05-27 14:11 - 000003652 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.pdf
2025-05-27 14:10 - 2025-05-27 14:10 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036.pdf
2025-05-27 08:47 - 2025-05-27 08:47 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KARTDAA49BC9DE0002.pdf
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KART90E5085E5D7003.pdf
2025-05-26 12:57 - 2025-05-26 12:57 - 001579678 _____ C:\Users\cervenad\Downloads\voucher-KARTEE185384845001.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-06-25 14:51 - 2025-02-27 08:17 - 000003118 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2025-06-25 14:34 - 2021-11-24 10:21 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-06-25 14:31 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-06-25 14:31 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-06-25 14:31 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-06-25 13:49 - 2023-05-09 10:12 - 000000000 ____D C:\ProgramData\firebird
2025-06-25 13:25 - 2021-12-28 10:58 - 000000144 _____ C:\Windows\system32\config\netlogon.ftl
2025-06-25 13:08 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-06-25 04:33 - 2021-12-27 19:06 - 000000000 ____D C:\Windows\SystemTemp
2025-06-24 13:04 - 2023-07-19 19:19 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Word
2025-06-24 10:46 - 2023-07-19 19:20 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Excel
2025-06-24 08:07 - 2023-08-28 18:22 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Temp
2025-06-24 08:07 - 2023-07-19 19:03 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Adobe
2025-06-24 07:45 - 2021-12-28 11:30 - 000000000 ____D C:\KBprikazy
2025-06-22 00:32 - 2021-12-27 18:41 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-06-21 08:33 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\Packages
2025-06-21 08:33 - 2021-11-24 10:21 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-06-19 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2025-06-19 10:39 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\D3DSCache
2025-06-18 18:33 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-06-18 18:32 - 2021-12-28 11:09 - 000000000 ____D C:\Program Files\Microsoft Office
2025-06-18 15:25 - 2021-11-24 10:26 - 002319808 _____ C:\Windows\system32\PerfStringBackup.INI
2025-06-18 15:25 - 2021-04-30 08:05 - 000934756 _____ C:\Windows\system32\perfh005.dat
2025-06-18 15:25 - 2021-04-30 08:05 - 000234006 _____ C:\Windows\system32\perfc005.dat
2025-06-18 15:21 - 2021-12-28 12:22 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-06-18 15:21 - 2021-12-28 11:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-06-18 15:21 - 2021-11-24 10:21 - 000008192 ___SH C:\DumpStack.log.tmp
2025-06-18 15:21 - 2021-11-24 10:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-06-18 15:21 - 2019-12-07 11:03 - 001310720 _____ C:\Windows\system32\config\BBI
2025-06-18 08:01 - 2021-12-28 11:30 - 000000000 ____D C:\KBvypisy
2025-06-16 07:53 - 2023-08-07 06:25 - 000000000 ____D C:\Users\cervenad\AppData\Local\AMD_Common
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2025-02-06 11:57 - 000003540 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:29 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:19 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2021-12-27 19:08 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2021-11-24 10:27 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-06-14 13:02 - 2021-11-24 10:27 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-06-13 07:32 - 2024-04-19 08:39 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-06-13 07:32 - 2023-03-07 09:20 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2025-06-11 17:37 - 2021-11-24 10:21 - 000447968 _____ C:\Windows\system32\FNTCACHE.DAT
2025-06-11 17:36 - 2024-07-10 08:18 - 000000000 ____D C:\Windows\system32\compatrel
2025-06-11 17:36 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2025-06-11 15:25 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-06-11 15:22 - 2021-11-24 10:24 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-06-11 15:17 - 2021-12-27 18:46 - 000000000 ____D C:\Windows\system32\MRT
2025-06-11 15:15 - 2021-12-27 18:46 - 216824056 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-06-11 14:56 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Outlook
2025-06-11 08:21 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Office
2025-06-10 12:01 - 2021-11-24 10:23 - 000000000 ____D C:\ProgramData\Package Cache
2025-06-10 11:59 - 2021-12-28 12:13 - 000000000 ____D C:\Záloha Fenix
2025-06-10 11:59 - 2021-11-24 09:59 - 000000000 ____D C:\install
2025-06-09 18:11 - 2023-07-19 19:02 - 000000000 ____D C:\Users\cervenad\AVENSIO
2025-06-09 12:56 - 2024-03-19 10:41 - 000000000 ____D C:\Users\cervenad\AppData\Local\CrashDumps
2025-06-05 13:57 - 2023-07-19 16:28 - 000000000 ____D C:\Users\administrator.ZSPRIBYSLAV
2025-06-05 13:57 - 2022-08-25 08:46 - 000000000 ____D C:\Users\knihovna
2025-06-05 13:57 - 2021-12-28 10:59 - 000000000 ____D C:\Users\administrator
2025-06-05 13:57 - 2021-12-27 18:38 - 000000000 ____D C:\Users\dpadmin
2025-06-05 07:05 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad
2025-05-27 14:37 - 2023-10-24 08:40 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Zoom
2025-05-27 08:47 - 2024-12-12 10:00 - 000004256 _____ C:\Windows\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159
2025-05-26 07:21 - 2021-12-28 11:45 - 000000000 ____D C:\Program Files (x86)\Profibanka
==================== Files in the root of some directories ========
2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ () C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: Pomalé PC, mnoho spojení ven do internetu
Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-06-2025
Ran by polakovad (25-06-2025 14:53:01)
Running from \\zskola2\user-prac\cervenad\Plocha
Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) (2021-11-24 11:45:55)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-667896778-3875923744-3874593446-500 - Administrator - Disabled) => C:\Users\Administrator <==== ATTENTION
DefaultAccount (S-1-5-21-667896778-3875923744-3874593446-503 - Limited - Disabled)
dpadmin (S-1-5-21-667896778-3875923744-3874593446-1001 - Administrator - Enabled) => C:\Users\dpadmin
Guest (S-1-5-21-667896778-3875923744-3874593446-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-667896778-3875923744-3874593446-504 - Limited - Disabled)
ATTENTION: Domain
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{F8F948EA-5AEA-4158-8821-A2F788ECE936}) (Version: 16.2.1 - Hewlett-Packard) Hidden
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20531 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ALFA MZDY AVENSIO 3.3.0.15 (HKLM-x32\...\{904214E9-4210-4184-B249-CF2B4A511DEB}_is1) (Version: 3.3.0.15 - )
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.3.5 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.10.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Azure Data Studio (HKLM\...\{6591F69E-6588-4980-81ED-C8FCBD7EC4B8}_is1) (Version: 1.32.0 - Microsoft Corporation)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
CryptoPlus KB v1.0 (HKLM-x32\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
CryptoPlus KB v1.0 x64 (HKLM\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 25.400 (20250501_06) - Seyfor, a.s.)
ESET Endpoint Antivirus (HKLM\...\{F8DE2A0C-AE50-4915-9F99-12A9B1DFCADA}) (Version: 12.0.2049.0 - ESET, spol. s r.o.)
ESET Management Agent (HKLM\...\{E92EF3C9-4FFE-4239-8AEA-ABB78CFB7EE0}) (Version: 10.1.1292.0 - ESET, spol. s r.o.)
Firebird 2.5.9.27139 (x64) (HKLM\...\FBDBServer_2_5_x64_is1) (Version: 2.5.9.27139 - Firebird Project)
FormApps Signing Extension (HKLM-x32\...\{615573E2-9A4C-4F60-8AEB-C112DD36EC7D}) (Version: 2.28.0.47 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 137.0.7151.120 - Google LLC)
Helios Fenix 9.91 (HKLM-x32\...\{AE81B074-5F28-11D5-BC42-005004693E0C}) (Version: 9.91.010 - Asseco Solutions, a.s.)
HELIOS Fenix Crystal Reports XI runtime (HKLM-x32\...\{2FC74DFB-4E3B-43C4-954B-0D2D41BD50EE}) (Version: 07.11.09 - Asseco Solutions, a.s.)
HELIOS Fenix Vazba PBP 9.51.000 (HKLM-x32\...\{44352E97-8CC6-4A2E-B5B5-77105DD79086}) (Version: 9.51.000 - Asseco Solutions, a.s.)
HELIOS Fenix - systémové komponenty (HKLM-x32\...\{CC1B0AC8-4A94-43ED-9B5F-22BEF84AA4D8}) (Version: 9.21.000 - Asseco Solutions, a.s.)
HL-1210W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Icecream Screen Recorder verze 7.44 (HKLM-x32\...\{CE9603D0-2A7F-4B94-BF4D-BC4B1389888F}_is1) (Version: 7.44 - Icecream Apps)
Integration Services (HKLM-x32\...\{4938A647-7EA4-4496-A843-5E338B91C07E}) (Version: 15.0.2000.168 - Microsoft Corporation) Hidden
KB QSCD v1.0 (64-bit) (HKLM\...\{511B4472-AF5D-404B-B28A-D8DD14D0C94D}) (Version: 1.0.22.24214 - Monet+, a.s.)
KBSignatureModule (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\KBPodpisovyModul) (Version: 1.0.8 - KB)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.10 (x64) (HKLM\...\{3A80EBC5-6B68-49B9-BEBD-E1A6C966B416}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.16 (x86) (HKLM-x32\...\{E4AF7683-88E6-48B0-BF69-696234A6958B}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.10 (x64) (HKLM\...\{062CD1ED-0A3C-483C-A871-50173240C545}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.16 (x86) (HKLM-x32\...\{BF986506-2994-4DA9-9E17-1163400C97F1}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.10 (x64) (HKLM\...\{15B7D0C2-F209-4C28-AF1C-FD8326F4D58A}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.16 (x86) (HKLM-x32\...\{6BAAA5E0-D0C6-4DC9-BA70-717EBA7F2CAD}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM\...\{9786E83E-B71A-4526-B58F-64F35C7E2CFE}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM-x32\...\{4F1405AB-36A8-4383-9C1A-AE00491C255F}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 8.0.16 - Shared Framework (x86) (HKLM-x32\...\{c1d07152-0f7c-4493-88db-fcdc9e3f2bdb}) (Version: 8.0.16.25216 - Microsoft Corporation)
Microsoft ASP.NET Core 8.0.16 Shared Framework (x86) (HKLM-x32\...\{76EA714A-1D6F-3FE4-BEFC-8E68618FC8EE}) (Version: 8.0.16.25216 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 137.0.3296.93 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 137.0.3296.93 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\{BEFC10C1-7032-3C8E-80BC-621A77BFEABD}) (Version: 2.3.28107 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\Microsoft Help Viewer 2.3) (Version: 2.3.28107 - Microsoft Corporation)
Microsoft MPI (10.0.12498.5) (HKLM\...\{8499ACD3-C1E3-45AB-BF96-DA491727EBE1}) (Version: 10.0.12498.5 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{50D6B005-B0D6-425F-953B-01331E2C7FCB}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{853997DA-6FCB-4FB9-918E-E0FF881FAF65}) (Version: 17.7.2.1 - Microsoft Corporation)
Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10417.20020 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{9D6F8754-28E9-4940-B319-3FC8588CF18F}) (Version: 18.5.0.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.095.0518.0002 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{8F72E2D4-1E48-4534-8DB8-1E8E012899C6}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2014 (HKLM-x32\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 RsFx Driver (HKLM-x32\...\{D4CCB7AC-1A41-4CFA-8708-5EE551538737}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2014 Setup (English) (HKLM-x32\...\{D183B98A-9688-4FC1-9793-E17E42C8BAB1}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{6CC673B9-F743-47AD-8962-C00CA5300016}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version: - Microsoft Corporation)
Microsoft SQL Server 2019 RsFx Driver (HKLM\...\{5825CDC4-4E99-4CF9-91FE-DB60C0E2F5EA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft SQL Server Management Studio - 18.10 (HKLM-x32\...\{c09f71ef-fff8-435a-bdc9-3c242a7c36f3}) (Version: 15.0.18390.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.25.14205 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.22.27821 (HKLM-x32\...\{3BDE80F7-7EC9-448E-8160-4ADA0CDA8879}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.22.27821 (HKLM-x32\...\{1E6FC929-567E-4D22-9206-C5B83F0A21B9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{f895a2f1-ae3f-4212-8af1-7fa1f8c212ea}) (Version: 15.0.27520 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 x64 Hosting Support (HKLM\...\{AFFB9D8D-6E58-38A0-A7DD-F6F1F4247B36}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 x86 Hosting Support (HKLM-x32\...\{9594C97E-6A20-38B3-81BB-2778C4780BE1}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM-x32\...\{20d5df4e-006c-4d6d-a0dc-490d009b9786}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM\...\{805626FF-2BC9-4567-A71E-A76A470D000A}) (Version: 48.67.58484 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM-x32\...\{8d173101-98c1-4e92-97c6-47c6840745a7}) (Version: 6.0.16.32327 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM\...\{614C9740-3FD4-4788-A277-7C35CB4C323B}) (Version: 64.40.21605 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM-x32\...\{d990096d-6282-42c5-8d16-71272c5be274}) (Version: 8.0.10.34118 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{16A6EF42-A2F0-46DE-A16E-D8794DAB9810}) (Version: 64.64.32786 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{82efd5ea-41fb-496a-a50d-48391b80e98d}) (Version: 8.0.16.34817 - Microsoft Corporation)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{EBFC96E5-4409-426E-88B7-650ADB342E78}) (Version: 8.0.50727.42 - The Firebird Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Profibanka (HKLM-x32\...\{08D768F1-EEE8-4E0E-91B4-9063A2705AEE}) (Version: 1.23.301 - Komerční banka, a.s.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
RAIDXpert2 Management Suite (HKLM-x32\...\RAIDXpert2 Management Suite) (Version: 9.3.0.296 - Advanced Micro Devices, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9054.1 - Realtek Semiconductor Corp.)
RyzenMasterSDK (HKLM\...\{82BC68B8-48AD-422A-806D-83663E66BB86}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Service Pack 3 for SQL Server 2014 (KB4022619) (HKLM-x32\...\KB4022619) (Version: 12.3.6024.0 - Microsoft Corporation)
Software602 Form Filler (HKLM-x32\...\{EF8155B1-A395-4AF9-ABB4-88F09FA54DB1}) (Version: 4.80 - Software602 a.s.)
SQL Server 2014 Common Files (HKLM-x32\...\{BFB3B874-8033-4F5E-BE47-0AED2541E57C}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM-x32\...\{F78A23CD-E9A0-46E3-88E2-CF2CC93AE7BA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{71E418D7-C0C5-455A-A248-1A3C3839EEEF}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{A1ED7C85-A91A-4788-B0CC-86FA19C042E8}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{1D1E4532-6A52-471B-B006-EA04A2BBFCE9}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{AA2D8197-6678-4242-9222-3A03993E89B3}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2019 Advanced Analytics (HKLM\...\{BD408334-78B9-4024-A8B5-53184C2E8CB3}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{68B843D3-5C31-4F0C-B61C-662C97FDAD1C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{9F3D48F5-4184-444C-A810-845C6F078721}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{DF21FF12-F208-4012-92A1-CB7420A75FFE}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{EA0ADED4-831D-45B3-B612-C7FD0A1E2BAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Full text search (HKLM\...\{BFF9440C-BC5B-4326-A861-916CC3788A4A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_azul_java (HKLM\...\{FF7B55CB-CDC3-4084-B27A-6C3B65800DD4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_java (HKLM\...\{286E30FF-F22E-463E-ACAB-708AE6D50AF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mpy (HKLM\...\{33D798B3-DD3B-4CEE-AABE-3090625D5E7E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mr (HKLM\...\{B0523C0B-B56B-4C63-9B00-5A91EFF8F948}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{894F30EB-3F0A-422F-9225-EB00DC9414EA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{3F338A1B-1DCF-458F-8189-416B09B7D077}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{A401EAB9-4FC7-4F0C-8D79-9575E4910FDE}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Analysis Services (HKLM\...\{A1CAC3E0-B321-40FE-8907-4739297D5338}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Reporting Services (HKLM\...\{0278A8F5-4DDC-40FF-95CC-1D4725CA074B}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SSMS Post Install Tasks (HKLM\...\{4CB8C759-75FE-492C-8CEB-EEB9D07E2E8D}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.66.5 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Visual Studio 2017 Isolated Shell for SSMS (HKLM-x32\...\{AAA9F15B-AF45-4562-9991-93A848D3A902}) (Version: 15.0.28307.421 - Microsoft Corporation) Hidden
Webex (HKLM\...\{5769D3D0-47C7-5BD4-A88C-01365D7507C6}) (Version: 43.12.0.28111 - Cisco Systems, Inc)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Zoom Workplace (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\ZoomUMX) (Version: 6.4.7 (64367) - Zoom Communications, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2025-06-13] ()
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_159.2.1145.0_x64__v10z8vjag6ke6 [2025-06-09] (HP Inc.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_55.20610.576.0_x64__8wekyb3d8bbwe [2025-06-19] (Microsoft Corporation)
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.19.0_x64__8wekyb3d8bbwe [2023-12-27] (Microsoft Corporation)
Pomocník pro hry v Microsoft Edgi -> C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3336.0_x64__8wekyb3d8bbwe [2025-06-21] (Microsoft Corporation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2023-08-21] (Realtek Semiconductor Corp)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-05] (Skype)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{04271989-C4D2-CBD8-F5AA-CBA22665817E} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{6BE99E87-B6FB-4CC3-AE69-DFCF33303D55} -> [Tiskové exporty z Money S3] => C:\Users\Public\Documents\Solitea\Money S3\PRINT\ [2022-07-11 06:07]
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{EABAE40C-B27C-455A-B672-F234DD780948}\InprocServer32 -> C:\Users\cervenad\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.25.14205\x64\Microsoft.Teams.MeetingAddin.DLL (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-05-09 09:47 - 2019-06-20 11:20 - 000884224 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbclient.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000050688 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000066048 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2023-05-09 09:47 - 2019-06-20 11:14 - 001558016 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icudt30.dll
2023-05-09 09:47 - 2019-06-20 11:13 - 000935936 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icuuc30.dll
2023-05-09 09:44 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 10.42.31.4
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek Gaming GbE Family Controller -> rt640x64.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Microsoft MPI\Bin\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files\Azure Data Studio\bin;C:\Program Files\dotnet\
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: )
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B6FAD8CF-6E8B-477F-B980-7D292AA47202}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{90DF03DC-6EA5-4FE7-9A22-7A486EF39F7A}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{00761E6C-ECE2-4258-8F1B-9FCFFBDF45C0}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{658650E7-4DD6-4C8E-A4EF-6E1C3591BD77}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF444C50-5EE7-4475-AF39-2C9B43B2D2EC}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{27733E69-0BF5-43CA-913D-6B27F0DB0376}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CD5554C4-4201-4236-B177-27010C825A4F}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CCD23F23-E99D-4B40-A6A3-662EE575AC4A}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3EC9DCBA-1726-46D1-B2C3-3DF5D6B88C52}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1FD76081-4486-40CB-A673-022C0735F4F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F946DFB9-C280-42F3-AD8C-14B782865C6F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7B38F7EC-622B-4ACB-BFBA-AEBB510DE6B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{72A5D51C-6607-483C-9928-9FD5105AC341}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{7DE38987-455A-48EC-A460-4902DDD88F43}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{137227E8-48CB-4714-9364-54C28CBAA554}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3671BCF-9A61-4AFD-9C7A-7FB04467221B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9691B836-9A34-4A62-8952-BDDEFF534D1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{40111E4C-6CF1-43AA-8486-9AEA0CFC1ABD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3D01EBE3-B8B9-4322-AE2E-F61B8626DF88}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B4710AC3-A08B-44C7-BD1C-90D7AEDF4A95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3223610B-E73B-4B0A-8915-BDB191D6F635}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D351473-386B-492D-A032-855FC9CBCC97}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{42801A16-B68C-4FA5-AA84-8DE1E8657532}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{56A84FC2-9806-4DCB-B724-8D72CF783A3D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E4B5CF59-CE7E-4A55-8E0C-316B1C92338A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DB3DAD22-D2D7-4872-A883-CC7539FD747C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{51686F0D-2D23-4256-A660-9917B8AEC55F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D599CAE4-AC1A-4CD4-9492-3420A2200933}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.83\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F04800E-F871-401B-9EE3-E88B5AC137BD}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{30D8CBB8-FA36-4F39-A86A-FB129AC07D26}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C8343CF7-A6F1-4252-ADCF-EFF55E7DF54E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B741E080-377B-4B5B-A8F8-133F7DD08236}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/25/2025 01:53:11 PM) (Source: MSSQL$FENIX2019) (EventID: 30089) (User: )
Description: The fulltext filter daemon host (FDHost) process has stopped abnormally. This can occur if an incorrectly configured or malfunctioning linguistic component, such as a wordbreaker, stemmer or filter has caused an irrecoverable error during full-text indexing or query processing. The process will be restarted automatically.
Error: (06/25/2025 10:25:43 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/22/2025 10:26:17 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/19/2025 10:39:51 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/19/2025 07:15:55 AM) (Source: Microsoft-Windows-Folder Redirection) (EventID: 502) (User: ZSPRIBYSLAV)
Description: Nepodařilo se použít zásady a přesměrovat složku Desktop na \\zskola2\user-prac\polakovad\Plocha.
Možnosti přesměrování: 0x9021.
Došlo k následující chybě:Složku \\zskola2\user-prac\polakovad\Plocha nejde vytvořit..
Podrobnosti o chybě: Tento soubor není momentálně k dispozici pro použití v tomto počítači..
Error: (06/18/2025 03:21:54 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro ZSPRIBYSLAV\CERVENA-PC$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 18 Jun 2025 13:22:49 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 6481906d-e24a-445b-872b-fee9439657cf
Metoda: GET(954ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (06/17/2025 08:43:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program KB_PCB.exe verze 1.23.0.46 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: d84
Čas spuštění: 01dbdb5accc133ce
Čas ukončení: 12
Cesta k aplikaci: C:\Program Files (x86)\Profibanka\KB_PCB.exe
ID hlášení: 745055c6-3047-4d60-8788-1ce8e12558c3
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (06/16/2025 10:24:30 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
System errors:
=============
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BrYNSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BankAPI Seyfor byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Microsoft Update Health Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Firebird Server - DefaultInstance byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Print Scan Doctor Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Firebird Guardian - DefaultInstance byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
CodeIntegrity:
===============
Date: 2025-06-25 14:12:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2025-06-25 13:12:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. F14f 10/14/2021
Motherboard: Gigabyte Technology Co., Ltd. A520M S2H
Processor: AMD Ryzen 5 PRO 5650G with Radeon Graphics
Percentage of memory in use: 56%
Total physical RAM: 7550.34 MB
Available physical RAM: 3294.76 MB
Total Virtual: 13253.03 MB
Available Virtual: 7802.52 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:929.72 GB) (Free:576.2 GB) (Model: AMD-RAID Array 1 SCSI Disk Device) NTFS
Drive e: (Elements) (Fixed) (Total:2794.49 GB) (Free:2768.33 GB) (Model: WD Elements 2621 USB Device) NTFS
\\?\Volume{e129094d-2942-486f-b521-10b75f50b432}\ (Recovery tools) (Fixed) (Total:1 GB) (Free:0.41 GB) NTFS
\\?\Volume{7e5111be-5fc1-49a5-bc38-e8ea7f74b8e7}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 2794.5 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt =======================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-06-2025
Ran by polakovad (25-06-2025 14:53:01)
Running from \\zskola2\user-prac\cervenad\Plocha
Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) (2021-11-24 11:45:55)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-667896778-3875923744-3874593446-500 - Administrator - Disabled) => C:\Users\Administrator <==== ATTENTION
DefaultAccount (S-1-5-21-667896778-3875923744-3874593446-503 - Limited - Disabled)
dpadmin (S-1-5-21-667896778-3875923744-3874593446-1001 - Administrator - Enabled) => C:\Users\dpadmin
Guest (S-1-5-21-667896778-3875923744-3874593446-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-667896778-3875923744-3874593446-504 - Limited - Disabled)
ATTENTION: Domain
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{F8F948EA-5AEA-4158-8821-A2F788ECE936}) (Version: 16.2.1 - Hewlett-Packard) Hidden
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20531 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ALFA MZDY AVENSIO 3.3.0.15 (HKLM-x32\...\{904214E9-4210-4184-B249-CF2B4A511DEB}_is1) (Version: 3.3.0.15 - )
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.3.5 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.10.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Azure Data Studio (HKLM\...\{6591F69E-6588-4980-81ED-C8FCBD7EC4B8}_is1) (Version: 1.32.0 - Microsoft Corporation)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
CryptoPlus KB v1.0 (HKLM-x32\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
CryptoPlus KB v1.0 x64 (HKLM\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 25.400 (20250501_06) - Seyfor, a.s.)
ESET Endpoint Antivirus (HKLM\...\{F8DE2A0C-AE50-4915-9F99-12A9B1DFCADA}) (Version: 12.0.2049.0 - ESET, spol. s r.o.)
ESET Management Agent (HKLM\...\{E92EF3C9-4FFE-4239-8AEA-ABB78CFB7EE0}) (Version: 10.1.1292.0 - ESET, spol. s r.o.)
Firebird 2.5.9.27139 (x64) (HKLM\...\FBDBServer_2_5_x64_is1) (Version: 2.5.9.27139 - Firebird Project)
FormApps Signing Extension (HKLM-x32\...\{615573E2-9A4C-4F60-8AEB-C112DD36EC7D}) (Version: 2.28.0.47 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 137.0.7151.120 - Google LLC)
Helios Fenix 9.91 (HKLM-x32\...\{AE81B074-5F28-11D5-BC42-005004693E0C}) (Version: 9.91.010 - Asseco Solutions, a.s.)
HELIOS Fenix Crystal Reports XI runtime (HKLM-x32\...\{2FC74DFB-4E3B-43C4-954B-0D2D41BD50EE}) (Version: 07.11.09 - Asseco Solutions, a.s.)
HELIOS Fenix Vazba PBP 9.51.000 (HKLM-x32\...\{44352E97-8CC6-4A2E-B5B5-77105DD79086}) (Version: 9.51.000 - Asseco Solutions, a.s.)
HELIOS Fenix - systémové komponenty (HKLM-x32\...\{CC1B0AC8-4A94-43ED-9B5F-22BEF84AA4D8}) (Version: 9.21.000 - Asseco Solutions, a.s.)
HL-1210W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Icecream Screen Recorder verze 7.44 (HKLM-x32\...\{CE9603D0-2A7F-4B94-BF4D-BC4B1389888F}_is1) (Version: 7.44 - Icecream Apps)
Integration Services (HKLM-x32\...\{4938A647-7EA4-4496-A843-5E338B91C07E}) (Version: 15.0.2000.168 - Microsoft Corporation) Hidden
KB QSCD v1.0 (64-bit) (HKLM\...\{511B4472-AF5D-404B-B28A-D8DD14D0C94D}) (Version: 1.0.22.24214 - Monet+, a.s.)
KBSignatureModule (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\KBPodpisovyModul) (Version: 1.0.8 - KB)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.10 (x64) (HKLM\...\{3A80EBC5-6B68-49B9-BEBD-E1A6C966B416}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.16 (x86) (HKLM-x32\...\{E4AF7683-88E6-48B0-BF69-696234A6958B}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.10 (x64) (HKLM\...\{062CD1ED-0A3C-483C-A871-50173240C545}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.16 (x86) (HKLM-x32\...\{BF986506-2994-4DA9-9E17-1163400C97F1}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.10 (x64) (HKLM\...\{15B7D0C2-F209-4C28-AF1C-FD8326F4D58A}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.16 (x86) (HKLM-x32\...\{6BAAA5E0-D0C6-4DC9-BA70-717EBA7F2CAD}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM\...\{9786E83E-B71A-4526-B58F-64F35C7E2CFE}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM-x32\...\{4F1405AB-36A8-4383-9C1A-AE00491C255F}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 8.0.16 - Shared Framework (x86) (HKLM-x32\...\{c1d07152-0f7c-4493-88db-fcdc9e3f2bdb}) (Version: 8.0.16.25216 - Microsoft Corporation)
Microsoft ASP.NET Core 8.0.16 Shared Framework (x86) (HKLM-x32\...\{76EA714A-1D6F-3FE4-BEFC-8E68618FC8EE}) (Version: 8.0.16.25216 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 137.0.3296.93 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 137.0.3296.93 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\{BEFC10C1-7032-3C8E-80BC-621A77BFEABD}) (Version: 2.3.28107 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\Microsoft Help Viewer 2.3) (Version: 2.3.28107 - Microsoft Corporation)
Microsoft MPI (10.0.12498.5) (HKLM\...\{8499ACD3-C1E3-45AB-BF96-DA491727EBE1}) (Version: 10.0.12498.5 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{50D6B005-B0D6-425F-953B-01331E2C7FCB}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{853997DA-6FCB-4FB9-918E-E0FF881FAF65}) (Version: 17.7.2.1 - Microsoft Corporation)
Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10417.20020 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{9D6F8754-28E9-4940-B319-3FC8588CF18F}) (Version: 18.5.0.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.095.0518.0002 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{8F72E2D4-1E48-4534-8DB8-1E8E012899C6}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2014 (HKLM-x32\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 RsFx Driver (HKLM-x32\...\{D4CCB7AC-1A41-4CFA-8708-5EE551538737}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2014 Setup (English) (HKLM-x32\...\{D183B98A-9688-4FC1-9793-E17E42C8BAB1}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{6CC673B9-F743-47AD-8962-C00CA5300016}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version: - Microsoft Corporation)
Microsoft SQL Server 2019 RsFx Driver (HKLM\...\{5825CDC4-4E99-4CF9-91FE-DB60C0E2F5EA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft SQL Server Management Studio - 18.10 (HKLM-x32\...\{c09f71ef-fff8-435a-bdc9-3c242a7c36f3}) (Version: 15.0.18390.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.25.14205 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.22.27821 (HKLM-x32\...\{3BDE80F7-7EC9-448E-8160-4ADA0CDA8879}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.22.27821 (HKLM-x32\...\{1E6FC929-567E-4D22-9206-C5B83F0A21B9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{f895a2f1-ae3f-4212-8af1-7fa1f8c212ea}) (Version: 15.0.27520 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 x64 Hosting Support (HKLM\...\{AFFB9D8D-6E58-38A0-A7DD-F6F1F4247B36}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 x86 Hosting Support (HKLM-x32\...\{9594C97E-6A20-38B3-81BB-2778C4780BE1}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM-x32\...\{20d5df4e-006c-4d6d-a0dc-490d009b9786}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM\...\{805626FF-2BC9-4567-A71E-A76A470D000A}) (Version: 48.67.58484 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM-x32\...\{8d173101-98c1-4e92-97c6-47c6840745a7}) (Version: 6.0.16.32327 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM\...\{614C9740-3FD4-4788-A277-7C35CB4C323B}) (Version: 64.40.21605 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM-x32\...\{d990096d-6282-42c5-8d16-71272c5be274}) (Version: 8.0.10.34118 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{16A6EF42-A2F0-46DE-A16E-D8794DAB9810}) (Version: 64.64.32786 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{82efd5ea-41fb-496a-a50d-48391b80e98d}) (Version: 8.0.16.34817 - Microsoft Corporation)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{EBFC96E5-4409-426E-88B7-650ADB342E78}) (Version: 8.0.50727.42 - The Firebird Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Profibanka (HKLM-x32\...\{08D768F1-EEE8-4E0E-91B4-9063A2705AEE}) (Version: 1.23.301 - Komerční banka, a.s.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
RAIDXpert2 Management Suite (HKLM-x32\...\RAIDXpert2 Management Suite) (Version: 9.3.0.296 - Advanced Micro Devices, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9054.1 - Realtek Semiconductor Corp.)
RyzenMasterSDK (HKLM\...\{82BC68B8-48AD-422A-806D-83663E66BB86}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Service Pack 3 for SQL Server 2014 (KB4022619) (HKLM-x32\...\KB4022619) (Version: 12.3.6024.0 - Microsoft Corporation)
Software602 Form Filler (HKLM-x32\...\{EF8155B1-A395-4AF9-ABB4-88F09FA54DB1}) (Version: 4.80 - Software602 a.s.)
SQL Server 2014 Common Files (HKLM-x32\...\{BFB3B874-8033-4F5E-BE47-0AED2541E57C}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM-x32\...\{F78A23CD-E9A0-46E3-88E2-CF2CC93AE7BA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{71E418D7-C0C5-455A-A248-1A3C3839EEEF}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{A1ED7C85-A91A-4788-B0CC-86FA19C042E8}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{1D1E4532-6A52-471B-B006-EA04A2BBFCE9}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{AA2D8197-6678-4242-9222-3A03993E89B3}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2019 Advanced Analytics (HKLM\...\{BD408334-78B9-4024-A8B5-53184C2E8CB3}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{68B843D3-5C31-4F0C-B61C-662C97FDAD1C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{9F3D48F5-4184-444C-A810-845C6F078721}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{DF21FF12-F208-4012-92A1-CB7420A75FFE}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{EA0ADED4-831D-45B3-B612-C7FD0A1E2BAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Full text search (HKLM\...\{BFF9440C-BC5B-4326-A861-916CC3788A4A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_azul_java (HKLM\...\{FF7B55CB-CDC3-4084-B27A-6C3B65800DD4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_java (HKLM\...\{286E30FF-F22E-463E-ACAB-708AE6D50AF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mpy (HKLM\...\{33D798B3-DD3B-4CEE-AABE-3090625D5E7E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mr (HKLM\...\{B0523C0B-B56B-4C63-9B00-5A91EFF8F948}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{894F30EB-3F0A-422F-9225-EB00DC9414EA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{3F338A1B-1DCF-458F-8189-416B09B7D077}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{A401EAB9-4FC7-4F0C-8D79-9575E4910FDE}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Analysis Services (HKLM\...\{A1CAC3E0-B321-40FE-8907-4739297D5338}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Reporting Services (HKLM\...\{0278A8F5-4DDC-40FF-95CC-1D4725CA074B}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SSMS Post Install Tasks (HKLM\...\{4CB8C759-75FE-492C-8CEB-EEB9D07E2E8D}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.66.5 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Visual Studio 2017 Isolated Shell for SSMS (HKLM-x32\...\{AAA9F15B-AF45-4562-9991-93A848D3A902}) (Version: 15.0.28307.421 - Microsoft Corporation) Hidden
Webex (HKLM\...\{5769D3D0-47C7-5BD4-A88C-01365D7507C6}) (Version: 43.12.0.28111 - Cisco Systems, Inc)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Zoom Workplace (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\ZoomUMX) (Version: 6.4.7 (64367) - Zoom Communications, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2025-06-13] ()
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_159.2.1145.0_x64__v10z8vjag6ke6 [2025-06-09] (HP Inc.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_55.20610.576.0_x64__8wekyb3d8bbwe [2025-06-19] (Microsoft Corporation)
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.19.0_x64__8wekyb3d8bbwe [2023-12-27] (Microsoft Corporation)
Pomocník pro hry v Microsoft Edgi -> C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3336.0_x64__8wekyb3d8bbwe [2025-06-21] (Microsoft Corporation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2023-08-21] (Realtek Semiconductor Corp)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-05] (Skype)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{04271989-C4D2-CBD8-F5AA-CBA22665817E} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{6BE99E87-B6FB-4CC3-AE69-DFCF33303D55} -> [Tiskové exporty z Money S3] => C:\Users\Public\Documents\Solitea\Money S3\PRINT\ [2022-07-11 06:07]
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{EABAE40C-B27C-455A-B672-F234DD780948}\InprocServer32 -> C:\Users\cervenad\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.25.14205\x64\Microsoft.Teams.MeetingAddin.DLL (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-05-09 09:47 - 2019-06-20 11:20 - 000884224 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbclient.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000050688 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000066048 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2023-05-09 09:47 - 2019-06-20 11:14 - 001558016 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icudt30.dll
2023-05-09 09:47 - 2019-06-20 11:13 - 000935936 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icuuc30.dll
2023-05-09 09:44 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 10.42.31.4
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek Gaming GbE Family Controller -> rt640x64.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Microsoft MPI\Bin\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files\Azure Data Studio\bin;C:\Program Files\dotnet\
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: )
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B6FAD8CF-6E8B-477F-B980-7D292AA47202}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{90DF03DC-6EA5-4FE7-9A22-7A486EF39F7A}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{00761E6C-ECE2-4258-8F1B-9FCFFBDF45C0}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{658650E7-4DD6-4C8E-A4EF-6E1C3591BD77}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF444C50-5EE7-4475-AF39-2C9B43B2D2EC}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{27733E69-0BF5-43CA-913D-6B27F0DB0376}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CD5554C4-4201-4236-B177-27010C825A4F}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CCD23F23-E99D-4B40-A6A3-662EE575AC4A}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3EC9DCBA-1726-46D1-B2C3-3DF5D6B88C52}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1FD76081-4486-40CB-A673-022C0735F4F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F946DFB9-C280-42F3-AD8C-14B782865C6F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7B38F7EC-622B-4ACB-BFBA-AEBB510DE6B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{72A5D51C-6607-483C-9928-9FD5105AC341}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{7DE38987-455A-48EC-A460-4902DDD88F43}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{137227E8-48CB-4714-9364-54C28CBAA554}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3671BCF-9A61-4AFD-9C7A-7FB04467221B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9691B836-9A34-4A62-8952-BDDEFF534D1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{40111E4C-6CF1-43AA-8486-9AEA0CFC1ABD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3D01EBE3-B8B9-4322-AE2E-F61B8626DF88}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B4710AC3-A08B-44C7-BD1C-90D7AEDF4A95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3223610B-E73B-4B0A-8915-BDB191D6F635}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D351473-386B-492D-A032-855FC9CBCC97}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{42801A16-B68C-4FA5-AA84-8DE1E8657532}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{56A84FC2-9806-4DCB-B724-8D72CF783A3D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E4B5CF59-CE7E-4A55-8E0C-316B1C92338A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DB3DAD22-D2D7-4872-A883-CC7539FD747C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{51686F0D-2D23-4256-A660-9917B8AEC55F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D599CAE4-AC1A-4CD4-9492-3420A2200933}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.83\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F04800E-F871-401B-9EE3-E88B5AC137BD}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{30D8CBB8-FA36-4F39-A86A-FB129AC07D26}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C8343CF7-A6F1-4252-ADCF-EFF55E7DF54E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B741E080-377B-4B5B-A8F8-133F7DD08236}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/25/2025 01:53:11 PM) (Source: MSSQL$FENIX2019) (EventID: 30089) (User: )
Description: The fulltext filter daemon host (FDHost) process has stopped abnormally. This can occur if an incorrectly configured or malfunctioning linguistic component, such as a wordbreaker, stemmer or filter has caused an irrecoverable error during full-text indexing or query processing. The process will be restarted automatically.
Error: (06/25/2025 10:25:43 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/22/2025 10:26:17 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/19/2025 10:39:51 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (06/19/2025 07:15:55 AM) (Source: Microsoft-Windows-Folder Redirection) (EventID: 502) (User: ZSPRIBYSLAV)
Description: Nepodařilo se použít zásady a přesměrovat složku Desktop na \\zskola2\user-prac\polakovad\Plocha.
Možnosti přesměrování: 0x9021.
Došlo k následující chybě:Složku \\zskola2\user-prac\polakovad\Plocha nejde vytvořit..
Podrobnosti o chybě: Tento soubor není momentálně k dispozici pro použití v tomto počítači..
Error: (06/18/2025 03:21:54 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro ZSPRIBYSLAV\CERVENA-PC$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 18 Jun 2025 13:22:49 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 6481906d-e24a-445b-872b-fee9439657cf
Metoda: GET(954ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (06/17/2025 08:43:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program KB_PCB.exe verze 1.23.0.46 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: d84
Čas spuštění: 01dbdb5accc133ce
Čas ukončení: 12
Cesta k aplikaci: C:\Program Files (x86)\Profibanka\KB_PCB.exe
ID hlášení: 745055c6-3047-4d60-8788-1ce8e12558c3
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (06/16/2025 10:24:30 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
System errors:
=============
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BrYNSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BankAPI Seyfor byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Microsoft Update Health Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Firebird Server - DefaultInstance byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Print Scan Doctor Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Firebird Guardian - DefaultInstance byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
CodeIntegrity:
===============
Date: 2025-06-25 14:12:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2025-06-25 13:12:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. F14f 10/14/2021
Motherboard: Gigabyte Technology Co., Ltd. A520M S2H
Processor: AMD Ryzen 5 PRO 5650G with Radeon Graphics
Percentage of memory in use: 56%
Total physical RAM: 7550.34 MB
Available physical RAM: 3294.76 MB
Total Virtual: 13253.03 MB
Available Virtual: 7802.52 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:929.72 GB) (Free:576.2 GB) (Model: AMD-RAID Array 1 SCSI Disk Device) NTFS
Drive e: (Elements) (Fixed) (Total:2794.49 GB) (Free:2768.33 GB) (Model: WD Elements 2621 USB Device) NTFS
\\?\Volume{e129094d-2942-486f-b521-10b75f50b432}\ (Recovery tools) (Fixed) (Total:1 GB) (Free:0.41 GB) NTFS
\\?\Volume{7e5111be-5fc1-49a5-bc38-e8ea7f74b8e7}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 2794.5 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 119390
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC, mnoho spojení ven do internetu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do \\zskola2\user-prac\cervenad\Plocha plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC, mnoho spojení ven do internetu
Fix result of Farbar Recovery Scan Tool (x64) Version: 25-06-2025
Ran by polakovad (25-06-2025 20:14:45) Run:1
Running from \\zskola2\user-prac\cervenad\Plocha
Loaded Profiles: polakovad & dpadmin & MSSQLFDLauncher$FENIX2019 & SQLTELEMETRY$FENIX2019 & MSSQLLaunchpad$FENIX2019
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED} => removed successfully
HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE => removed successfully
HKLM\Software\Classes\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{605727E7-318C-4943-BD61-4C925A024053}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{70A5288E-5853-40F6-A9DF-F5003EA27B0A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{94BD3882-9609-43DC-93A7-BA5EDB39F885}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8C81609B-725A-49B2-931C-FC9BDE7FE01E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{24B3F7ED-DB44-485B-A000-085140FB129E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E95793B3-F517-435F-886B-791355DAAF20}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{78685302-AE12-4ECD-BAC9-23448309F3A7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B141C95A-DE06-454F-ABCE-6097C6F79AF3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2DDC055A-AEB2-4749-B89D-D3E514253575}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C43259AC-A4ED-408C-97AD-2D409C8458C9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50D54DA6-3E55-497E-BC0C-16A95D07460F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{148E443C-7437-403C-8CB3-FE393F74CE0C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{32ECEFD4-33B2-4A93-B217-7252B7824E72}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\\"fDenyTSConnections"="1" => value restored successfully
C:\ProgramData\NTUSER.pol => moved successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 19173523 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 11800351 B
Edge => 0 B
Chrome => 5246038508 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 20 B
systemprofile32 => 20 B
LocalService => 911057 B
NetworkService => 917439 B
cervenad => 764795682 B
administrator.ZSPRIBYSLAV => 779520627 B
knihovna => 779809515 B
administrator => 780523719 B
dpadmin => 782944396 B
MSSQLFDLauncher$FENIX2019 => 782944396 B
SQLTELEMETRY$FENIX2019 => 782944396 B
MSSQL$FENIX2019 => 782944396 B
MSSQLLaunchpad$FENIX2019 => 782944396 B
RecycleBin => 1077202 B
EmptyTemp: => 11.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:38:18 ====
Ran by polakovad (25-06-2025 20:14:45) Run:1
Running from \\zskola2\user-prac\cervenad\Plocha
Loaded Profiles: polakovad & dpadmin & MSSQLFDLauncher$FENIX2019 & SQLTELEMETRY$FENIX2019 & MSSQLLaunchpad$FENIX2019
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED} => removed successfully
HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE => removed successfully
HKLM\Software\Classes\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{605727E7-318C-4943-BD61-4C925A024053}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{70A5288E-5853-40F6-A9DF-F5003EA27B0A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{94BD3882-9609-43DC-93A7-BA5EDB39F885}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8C81609B-725A-49B2-931C-FC9BDE7FE01E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{24B3F7ED-DB44-485B-A000-085140FB129E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E95793B3-F517-435F-886B-791355DAAF20}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{78685302-AE12-4ECD-BAC9-23448309F3A7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B141C95A-DE06-454F-ABCE-6097C6F79AF3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2DDC055A-AEB2-4749-B89D-D3E514253575}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C43259AC-A4ED-408C-97AD-2D409C8458C9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50D54DA6-3E55-497E-BC0C-16A95D07460F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{148E443C-7437-403C-8CB3-FE393F74CE0C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{32ECEFD4-33B2-4A93-B217-7252B7824E72}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\\"fDenyTSConnections"="1" => value restored successfully
C:\ProgramData\NTUSER.pol => moved successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 19173523 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 11800351 B
Edge => 0 B
Chrome => 5246038508 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 20 B
systemprofile32 => 20 B
LocalService => 911057 B
NetworkService => 917439 B
cervenad => 764795682 B
administrator.ZSPRIBYSLAV => 779520627 B
knihovna => 779809515 B
administrator => 780523719 B
dpadmin => 782944396 B
MSSQLFDLauncher$FENIX2019 => 782944396 B
SQLTELEMETRY$FENIX2019 => 782944396 B
MSSQL$FENIX2019 => 782944396 B
MSSQLLaunchpad$FENIX2019 => 782944396 B
RecycleBin => 1077202 B
EmptyTemp: => 11.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:38:18 ====
-
Rudy
- Site Admin
- Příspěvky: 119390
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC, mnoho spojení ven do internetu
Vše smazáno, log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC, mnoho spojení ven do internetu
Zítra vyzkoušíme.
Díky moc!
Díky moc!
-
Rudy
- Site Admin
- Příspěvky: 119390
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC, mnoho spojení ven do internetu
OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?