VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Pomalé PC, mnoho spojení ven do internetu

https://forum.viry.cz:443/viewtopic.php?t=160408

Stránka 1 z 1

Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 12:11
od Zakov
Dobrý den.

Prosím o kontrolu logů. PC je občas pomalé a jednou denně po přihlášení uživatele vytvoří i 1000 spojení do internetu. Po cca 10 - 15 minutách se většina spojení zruší a pak bývá klid...

Log FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-06-2025
Ran by polakovad (administrator) on CERVENA-PC (ATComputers TRILINE PROFI) (25-06-2025 13:07:15)
Running from \\zskola2\user-prac\cervenad\Plocha\FRST64.exe
Loaded Profiles: polakovad & MSSQLFDLauncher$FENIX2019 & SQLTELEMETRY$FENIX2019 & MSSQLLaunchpad$FENIX2019
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe <2>
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Asseco Solutions a.s. -> Asseco Solutions, a.s.) C:\Program Files (x86)\PVT\Fenix\Asseco.Fenix.SpolecnySpoustec.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\AlfaSoftware\Avensio\Avensio.exe ->) (Alfa Software, s.r.o. -> RSM Payroll Centre CZ s.r.o.) C:\AlfaSoftware\Avensio\Avensiovypocet.exe
(C:\AlfaSoftware\Avensio\Avensio.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\Icecream Screen Recorder 7\recorder.exe ->) (ICECREAM APPS LTD -> ) C:\Program Files (x86)\Icecream Screen Recorder 7\uservice.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdhost.exe
(DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\atieclxx.exe
(explorer.exe ->) (Alfa Software, s.r.o. -> RSM Payroll Centre CZ s.r.o.) C:\AlfaSoftware\Avensio\Avensio.exe
(explorer.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\cervenad\AppData\Local\WebEx\WebexHost.exe
(explorer.exe ->) (ICECREAM APPS LTD -> Icecream) C:\Program Files (x86)\Icecream Screen Recorder 7\recorder.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Seyfor, a. s. -> Seyfor, a.s.) C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe
(KOMERCNI BANKA A.S. -> Komerční banka, a.s.) C:\Program Files (x86)\Profibanka\KB_PCB.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.095.0518.0002\Microsoft.SharePoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\atiesrxx.exe
(services.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\Launchpad.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe <2>
(services.exe ->) (Seyfor.BankAgregator.Api) [File not signed] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.exe
(services.exe ->) (Software602 a.s. -> Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mobsync.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5911_none_7dd4fd687cb889e8\TiWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe [1201968 2020-10-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [195760 2025-04-05] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\Installer\setup.exe [7395880 2025-06-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [GpNetworkStartTimeoutPolicyValue] 60
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [S3AutomaticSTART] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [CiscoMeetingDaemon] => C:\Users\cervenad\AppData\Local\WebEx\WebexHost.exe [8077920 2023-12-12] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [Icecream_Screen_Recorder_New_Auto_Start] => C:\Program Files (x86)\Icecream Screen Recorder 7\recorder.exe [6987344 2025-05-05] (ICECREAM APPS LTD -> Icecream)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [MicrosoftEdgeAutoLaunch_A82912258D1D457A596D706B4507A3C9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [MicrosoftEdgeAutoLaunch_97C59669F16695898DE380691D1CE2A8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [S3Automatic] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKLM\...\Windows x64\Print Processors\hpcpp160: C:\Windows\System32\spool\prtprocs\x64\hpcpp160.dll [602912 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW081.DLL [74016 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPMLM135: C:\Windows\system32\hpmlm135.dll [237344 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\rica7Qlm: C:\Windows\system32\rica7Qlm.dll [28160 2013-12-26] (Microsoft Windows Hardware Compatibility Publisher -> RICOH CO.,Ltd.)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [47896 2021-09-23] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\137.0.7151.120\Installer\chrmstp.exe [2025-06-21] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {B5FA014C-2A18-4A1F-9314-EF77E6361579} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.)
Task: {39578F20-1E6D-4226-B440-72E4CBC82957} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {AB048B39-C0CC-4928-A45C-D509166F47D9} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {B97DE14B-6A35-4756-90BB-CDA4C9AE59A7} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [355840 2021-10-05] (Advanced Micro Devices, Inc.) [File not signed]
Task: {F1FAFF53-F422-4CDE-B296-B6D1EDBF87C6} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5974424 2025-06-11] (Microsoft Windows -> Microsoft Corporation)
Task: {3398DB82-809C-4C2F-9AEA-B741AB2BA3D2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7194.0{979D3406-0080-4581-8A4D-7965092B0AAF} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7194.0\updater.exe [7080032 2025-05-22] (Google LLC -> Google LLC)
Task: {9007C027-1B03-4346-9DA1-C1A1E6F92DB6} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {EF8E5F92-86FA-4697-9393-008E3E51FF08} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {CC0E9B46-F5A7-48D3-9950-45C5276121C2} - System32\Tasks\Komercni banka\Profibanka\Profibanka AutoBackup => C:\Program Files (x86)\Profibanka\CreateTaskW10.exe [22552 2015-10-02] (KOMERCNI BANKA A.S. -> ) -> C:\Program#Files#(x86)\profibanka\Backup\backup.bak
Task: {5C99E5D2-0D0E-4CB9-8DDB-ECC5AF64D688} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C93598F6-E3C1-453C-AB6D-02CD44E35389} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {08D1A9BD-780A-4D3E-88AC-0A617895D165} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A30394E1-D3E6-4022-A534-64034E6272CC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC1AB55C-1911-4D37-B033-4FE498409E26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {897D3190-D07C-4655-968F-1C47517AB1BE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F628214-3628-4144-88BB-F39FBA7293D2} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {F3401EAD-F305-4D11-8C4A-8FBCCDF9314D} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {5B3C2F83-E51B-4093-88E1-6924E6AEC52F} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {387E62F4-0FFB-4C3B-9197-12438B08CC0A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {1577F35C-9331-4CE4-9FC0-A806E2CA47B2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F877B03-CC1A-432D-8E81-AB7241FF9E5C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79553ADB-0C2D-43F7-A995-E7597AF52937} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-1194 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {0FF5F2CF-844D-4ED5-8F6E-AF0522AE326A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-2762 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {35E6625F-8F78-4505-A488-6988ED69FAFE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD15D0AD-7FCF-4DB7-88B3-D278C46C3C6D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E08AB79-4B8C-46A1-9824-F87FD90DF58F} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD8C2150-57B5-4102-821F-2C3DCB7BA2AD} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {33250B85-50C8-4AA4-90F8-7690D8DE05FC} - System32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79E81F0F-BC1F-4122-873E-48F44B4383A5} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55288 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CEBCCD32-32EB-44E8-83AB-D4E0B8EC08CC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {8BE217C1-014E-41A0-83EB-9236DD5036D8} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Users\cervenad\AppData\Roaming\Zoom\bin\Zoom.exe [441144 2025-05-27] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{963096d6-22e6-4dfb-976a-5fb00ad683f8}: [NameServer] 10.42.31.4,8.8.8.8

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default [2025-06-25]
Edge Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-06-08]
Edge Extension: (Edge relevant text changes) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-06-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)

Chrome:
=======
CHR Profile: C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default [2025-06-25]
CHR Notifications: Default -> hxxps://cz.avon-brochure.com; hxxps://petona.cz; hxxps://upcr.cz; hxxps://www.dobre-knihy.cz
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-06-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-29]
CHR Extension: (FormApps Extension) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-04-15]
CHR Extension: (Cryptoplus KB - podepisovací modul) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldildmkoeoicfkknedfdpjmgjmpkpooc [2023-07-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-19]
CHR HKU\S-1-5-21-2496437920-1329170045-526373181-1159\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 BankAPI Seyfor; C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.exe [139264 2025-04-02] (Seyfor.BankAgregator.Api) [File not signed]
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9499264 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5566320 2025-04-05] (ESET, spol. s r.o. -> ESET)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [58224 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [1529112 2023-08-14] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncHelper.exe [3621688 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [156672 2019-06-20] (Firebird Project) [File not signed]
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [5825024 2019-06-20] (Firebird Project) [File not signed]
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-05-02] (HP Inc. -> HP Inc.)
S3 MonS3Service; C:\Program Files (x86)\Common Files\Solitea\MonS3Service.exe [1765536 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [161040 2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe [626280 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe [199760 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R3 MSSQLFDLauncher$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe [85600 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLLaunchpad$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\launchpad.exe [1228608 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveUpdaterService.exe [3873064 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [917440 2025-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\SQLAGENT.EXE [695912 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\SQLAGENT.EXE [454736 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe [290648 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [20994352 2025-05-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54720 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_50fee1227e96ec14\amdsafd.sys [100792 2021-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\amdkmdag.sys [94358424 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [284672 2021-04-09] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [225144 2025-02-09] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [16336 2022-09-05] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [269056 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [86200 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [128528 2025-02-09] (ESET, spol. s r.o. -> ESET)
R3 GemCCID; C:\Windows\System32\DriverStore\FileRepository\gemccid.inf_amd64_526ec61d10ad09ec\GemCCID.sys [162992 2025-05-15] (Thales DIS CPL USA, Inc. -> Gemalto)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
S4 RsFx0600; C:\Windows\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 usbscan; C:\Windows\System32\drivers\usbscan.sys [49664 2022-07-13] (Microsoft Corporation) [File not signed]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-06-25 13:07 - 2025-06-25 13:07 - 000000000 ____D C:\FRST
2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg
2025-06-24 12:07 - 2025-06-24 12:07 - 000207516 _____ C:\Users\cervenad\Downloads\priloha_1536203059_0_Usneseni_o_zastaveni_rizeni_Polak_Michal.pdf
2025-06-23 08:32 - 2025-06-23 08:32 - 000041455 _____ C:\Users\cervenad\Downloads\1237181070287_6_1132_20250620.pdf
2025-06-18 18:33 - 2025-06-18 18:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-06-17 14:21 - 2025-06-17 14:21 - 000030154 _____ C:\Users\cervenad\Downloads\Potvrzeni o prijmu (1).pdf
2025-06-16 12:30 - 2025-06-16 12:30 - 000060064 _____ C:\Users\cervenad\Downloads\3300461684.pdf
2025-06-13 13:50 - 2025-06-13 13:50 - 000847276 _____ C:\Users\cervenad\Downloads\cza13917_2025-01-10-09_33_08 (2).zip
2025-06-13 12:16 - 2025-06-13 12:16 - 000579513 _____ C:\Users\cervenad\Downloads\2984704686 (1).pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich.pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich (1).pdf
2025-06-12 07:56 - 2025-06-12 07:56 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1) (1).pdf
2025-06-12 07:54 - 2025-06-12 07:54 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1).pdf
2025-06-11 15:17 - 2025-06-11 15:17 - 000000000 ___HD C:\$WinREAgent
2025-06-11 14:56 - 2025-06-11 14:56 - 000579842 _____ C:\Users\cervenad\Downloads\2984704686.pdf
2025-06-10 12:01 - 2025-06-10 12:01 - 000000000 ____D C:\Program Files (x86)\dotnet
2025-06-05 08:35 - 2025-06-05 08:35 - 000088054 _____ C:\Users\cervenad\Downloads\Zpětvzetí žádost o prominutí penále ČSSZ.pdf
2025-06-05 07:38 - 2025-06-05 07:38 - 000194670 _____ C:\Users\cervenad\Downloads\TU_červen 2025.pdf
2025-06-05 07:08 - 2025-06-05 07:08 - 000604115 _____ C:\Users\cervenad\Downloads\2983933586.pdf
2025-06-05 07:07 - 2025-06-05 07:07 - 000609335 _____ C:\Users\cervenad\Downloads\2983933591.pdf
2025-06-04 20:58 - 2025-06-04 20:58 - 000000000 ____D C:\Program Files\HP
2025-06-04 09:33 - 2025-06-04 09:33 - 001868243 _____ C:\Users\cervenad\Downloads\Dalsi_financni_prostredky_pro_skoly_na_rok_2025.xlsx
2025-06-04 09:33 - 2025-06-04 09:33 - 000095106 _____ C:\Users\cervenad\Downloads\Priloha.xlsx
2025-06-02 11:37 - 2025-06-02 11:37 - 002770850 _____ C:\Users\cervenad\Downloads\priloha_1532097212_0_Kantyna_SPS_Trebic.pdf
2025-06-02 11:37 - 2025-06-02 11:37 - 000213966 _____ C:\Users\cervenad\Downloads\priloha_1531693351_0_Polak_Michal.pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000484182 _____ C:\Users\cervenad\Downloads\2979131233 (2).pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000483635 _____ C:\Users\cervenad\Downloads\2981220150 (1).pdf
2025-06-02 08:47 - 2025-06-02 08:47 - 000499269 _____ C:\Users\cervenad\Downloads\bankovní identita.pdf
2025-05-30 09:13 - 2025-05-30 09:13 - 000040293 _____ C:\Users\cervenad\Downloads\1237181070287_5_1132_20250522.pdf
2025-05-30 07:24 - 2025-06-25 13:03 - 000003086 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2025-05-29 14:03 - 2025-05-29 14:03 - 000113977 _____ C:\Users\cervenad\Downloads\Žádost o prominutí penále ČSSZ.pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036 (1).pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000006073 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.p7s
2025-05-27 14:11 - 2025-05-27 14:11 - 000003652 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.pdf
2025-05-27 14:10 - 2025-05-27 14:10 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036.pdf
2025-05-27 08:47 - 2025-05-27 08:47 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KARTDAA49BC9DE0002.pdf
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KART90E5085E5D7003.pdf
2025-05-26 12:57 - 2025-05-26 12:57 - 001579678 _____ C:\Users\cervenad\Downloads\voucher-KARTEE185384845001.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-06-25 13:03 - 2025-02-27 08:17 - 000003118 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2025-06-25 12:55 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-06-25 12:52 - 2021-11-24 10:21 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-06-25 11:39 - 2021-12-28 10:58 - 000000144 _____ C:\Windows\system32\config\netlogon.ftl
2025-06-25 10:26 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-06-25 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-06-25 04:33 - 2021-12-27 19:06 - 000000000 ____D C:\Windows\SystemTemp
2025-06-24 13:04 - 2023-07-19 19:19 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Word
2025-06-24 10:46 - 2023-07-19 19:20 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Excel
2025-06-24 08:07 - 2023-08-28 18:22 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Temp
2025-06-24 08:07 - 2023-07-19 19:03 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Adobe
2025-06-24 07:45 - 2021-12-28 11:30 - 000000000 ____D C:\KBprikazy
2025-06-22 00:32 - 2021-12-27 18:41 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-06-21 08:33 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\Packages
2025-06-21 08:33 - 2021-11-24 10:21 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-06-19 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2025-06-19 10:39 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\D3DSCache
2025-06-19 07:25 - 2023-05-09 10:12 - 000000000 ____D C:\ProgramData\firebird
2025-06-18 18:33 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-06-18 18:32 - 2021-12-28 11:09 - 000000000 ____D C:\Program Files\Microsoft Office
2025-06-18 15:25 - 2021-11-24 10:26 - 002319808 _____ C:\Windows\system32\PerfStringBackup.INI
2025-06-18 15:25 - 2021-04-30 08:05 - 000934756 _____ C:\Windows\system32\perfh005.dat
2025-06-18 15:25 - 2021-04-30 08:05 - 000234006 _____ C:\Windows\system32\perfc005.dat
2025-06-18 15:25 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-06-18 15:21 - 2021-12-28 12:22 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-06-18 15:21 - 2021-12-28 11:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-06-18 15:21 - 2021-11-24 10:21 - 000008192 ___SH C:\DumpStack.log.tmp
2025-06-18 15:21 - 2021-11-24 10:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-06-18 15:21 - 2019-12-07 11:03 - 001310720 _____ C:\Windows\system32\config\BBI
2025-06-18 08:01 - 2021-12-28 11:30 - 000000000 ____D C:\KBvypisy
2025-06-16 07:53 - 2023-08-07 06:25 - 000000000 ____D C:\Users\cervenad\AppData\Local\AMD_Common
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2025-02-06 11:57 - 000003540 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:29 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:19 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2021-12-27 19:08 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2021-11-24 10:27 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-06-14 13:02 - 2021-11-24 10:27 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-06-13 07:32 - 2024-04-19 08:39 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-06-13 07:32 - 2023-03-07 09:20 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2025-06-11 17:37 - 2021-11-24 10:21 - 000447968 _____ C:\Windows\system32\FNTCACHE.DAT
2025-06-11 17:36 - 2024-07-10 08:18 - 000000000 ____D C:\Windows\system32\compatrel
2025-06-11 17:36 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2025-06-11 15:25 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-06-11 15:22 - 2021-11-24 10:24 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-06-11 15:17 - 2021-12-27 18:46 - 000000000 ____D C:\Windows\system32\MRT
2025-06-11 15:15 - 2021-12-27 18:46 - 216824056 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-06-11 14:56 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Outlook
2025-06-11 08:21 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Office
2025-06-10 12:01 - 2021-11-24 10:23 - 000000000 ____D C:\ProgramData\Package Cache
2025-06-10 11:59 - 2021-12-28 12:13 - 000000000 ____D C:\Záloha Fenix
2025-06-10 11:59 - 2021-11-24 09:59 - 000000000 ____D C:\install
2025-06-09 18:11 - 2023-07-19 19:02 - 000000000 ____D C:\Users\cervenad\AVENSIO
2025-06-09 12:56 - 2024-03-19 10:41 - 000000000 ____D C:\Users\cervenad\AppData\Local\CrashDumps
2025-06-05 13:57 - 2023-07-19 16:28 - 000000000 ____D C:\Users\administrator.ZSPRIBYSLAV
2025-06-05 13:57 - 2022-08-25 08:46 - 000000000 ____D C:\Users\knihovna
2025-06-05 13:57 - 2021-12-28 10:59 - 000000000 ____D C:\Users\administrator
2025-06-05 13:57 - 2021-12-27 18:38 - 000000000 ____D C:\Users\dpadmin
2025-06-05 07:05 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad
2025-05-27 14:37 - 2023-10-24 08:40 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Zoom
2025-05-27 08:47 - 2024-12-12 10:00 - 000004256 _____ C:\Windows\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159
2025-05-26 07:21 - 2021-12-28 11:45 - 000000000 ____D C:\Program Files (x86)\Profibanka

==================== Files in the root of some directories ========

2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ () C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 12:12
od Zakov
Log Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-06-2025
Ran by polakovad (25-06-2025 13:08:09)
Running from \\zskola2\user-prac\cervenad\Plocha
Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) (2021-11-24 11:45:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-667896778-3875923744-3874593446-500 - Administrator - Disabled) => C:\Users\Administrator <==== ATTENTION
DefaultAccount (S-1-5-21-667896778-3875923744-3874593446-503 - Limited - Disabled)
dpadmin (S-1-5-21-667896778-3875923744-3874593446-1001 - Administrator - Enabled) => C:\Users\dpadmin
Guest (S-1-5-21-667896778-3875923744-3874593446-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-667896778-3875923744-3874593446-504 - Limited - Disabled)

ATTENTION: Domain

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{F8F948EA-5AEA-4158-8821-A2F788ECE936}) (Version: 16.2.1 - Hewlett-Packard) Hidden
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20531 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ALFA MZDY AVENSIO 3.3.0.15 (HKLM-x32\...\{904214E9-4210-4184-B249-CF2B4A511DEB}_is1) (Version: 3.3.0.15 - )
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.3.5 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.10.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Azure Data Studio (HKLM\...\{6591F69E-6588-4980-81ED-C8FCBD7EC4B8}_is1) (Version: 1.32.0 - Microsoft Corporation)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
CryptoPlus KB v1.0 (HKLM-x32\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
CryptoPlus KB v1.0 x64 (HKLM\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 25.400 (20250501_06) - Seyfor, a.s.)
ESET Endpoint Antivirus (HKLM\...\{F8DE2A0C-AE50-4915-9F99-12A9B1DFCADA}) (Version: 12.0.2049.0 - ESET, spol. s r.o.)
ESET Management Agent (HKLM\...\{E92EF3C9-4FFE-4239-8AEA-ABB78CFB7EE0}) (Version: 10.1.1292.0 - ESET, spol. s r.o.)
Firebird 2.5.9.27139 (x64) (HKLM\...\FBDBServer_2_5_x64_is1) (Version: 2.5.9.27139 - Firebird Project)
FormApps Signing Extension (HKLM-x32\...\{615573E2-9A4C-4F60-8AEB-C112DD36EC7D}) (Version: 2.28.0.47 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 137.0.7151.120 - Google LLC)
Helios Fenix 9.91 (HKLM-x32\...\{AE81B074-5F28-11D5-BC42-005004693E0C}) (Version: 9.91.010 - Asseco Solutions, a.s.)
HELIOS Fenix Crystal Reports XI runtime (HKLM-x32\...\{2FC74DFB-4E3B-43C4-954B-0D2D41BD50EE}) (Version: 07.11.09 - Asseco Solutions, a.s.)
HELIOS Fenix Vazba PBP 9.51.000 (HKLM-x32\...\{44352E97-8CC6-4A2E-B5B5-77105DD79086}) (Version: 9.51.000 - Asseco Solutions, a.s.)
HELIOS Fenix - systémové komponenty (HKLM-x32\...\{CC1B0AC8-4A94-43ED-9B5F-22BEF84AA4D8}) (Version: 9.21.000 - Asseco Solutions, a.s.)
HL-1210W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Icecream Screen Recorder verze 7.44 (HKLM-x32\...\{CE9603D0-2A7F-4B94-BF4D-BC4B1389888F}_is1) (Version: 7.44 - Icecream Apps)
Integration Services (HKLM-x32\...\{4938A647-7EA4-4496-A843-5E338B91C07E}) (Version: 15.0.2000.168 - Microsoft Corporation) Hidden
KB QSCD v1.0 (64-bit) (HKLM\...\{511B4472-AF5D-404B-B28A-D8DD14D0C94D}) (Version: 1.0.22.24214 - Monet+, a.s.)
KBSignatureModule (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\KBPodpisovyModul) (Version: 1.0.8 - KB)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.10 (x64) (HKLM\...\{3A80EBC5-6B68-49B9-BEBD-E1A6C966B416}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.16 (x86) (HKLM-x32\...\{E4AF7683-88E6-48B0-BF69-696234A6958B}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.10 (x64) (HKLM\...\{062CD1ED-0A3C-483C-A871-50173240C545}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.16 (x86) (HKLM-x32\...\{BF986506-2994-4DA9-9E17-1163400C97F1}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.10 (x64) (HKLM\...\{15B7D0C2-F209-4C28-AF1C-FD8326F4D58A}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.16 (x86) (HKLM-x32\...\{6BAAA5E0-D0C6-4DC9-BA70-717EBA7F2CAD}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM\...\{9786E83E-B71A-4526-B58F-64F35C7E2CFE}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM-x32\...\{4F1405AB-36A8-4383-9C1A-AE00491C255F}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 8.0.16 - Shared Framework (x86) (HKLM-x32\...\{c1d07152-0f7c-4493-88db-fcdc9e3f2bdb}) (Version: 8.0.16.25216 - Microsoft Corporation)
Microsoft ASP.NET Core 8.0.16 Shared Framework (x86) (HKLM-x32\...\{76EA714A-1D6F-3FE4-BEFC-8E68618FC8EE}) (Version: 8.0.16.25216 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 137.0.3296.93 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 137.0.3296.93 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\{BEFC10C1-7032-3C8E-80BC-621A77BFEABD}) (Version: 2.3.28107 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\Microsoft Help Viewer 2.3) (Version: 2.3.28107 - Microsoft Corporation)
Microsoft MPI (10.0.12498.5) (HKLM\...\{8499ACD3-C1E3-45AB-BF96-DA491727EBE1}) (Version: 10.0.12498.5 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{50D6B005-B0D6-425F-953B-01331E2C7FCB}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{853997DA-6FCB-4FB9-918E-E0FF881FAF65}) (Version: 17.7.2.1 - Microsoft Corporation)
Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10417.20020 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{9D6F8754-28E9-4940-B319-3FC8588CF18F}) (Version: 18.5.0.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.095.0518.0002 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{8F72E2D4-1E48-4534-8DB8-1E8E012899C6}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2014 (HKLM-x32\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 RsFx Driver (HKLM-x32\...\{D4CCB7AC-1A41-4CFA-8708-5EE551538737}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2014 Setup (English) (HKLM-x32\...\{D183B98A-9688-4FC1-9793-E17E42C8BAB1}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{6CC673B9-F743-47AD-8962-C00CA5300016}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version: - Microsoft Corporation)
Microsoft SQL Server 2019 RsFx Driver (HKLM\...\{5825CDC4-4E99-4CF9-91FE-DB60C0E2F5EA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft SQL Server Management Studio - 18.10 (HKLM-x32\...\{c09f71ef-fff8-435a-bdc9-3c242a7c36f3}) (Version: 15.0.18390.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.25.14205 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.22.27821 (HKLM-x32\...\{3BDE80F7-7EC9-448E-8160-4ADA0CDA8879}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.22.27821 (HKLM-x32\...\{1E6FC929-567E-4D22-9206-C5B83F0A21B9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{f895a2f1-ae3f-4212-8af1-7fa1f8c212ea}) (Version: 15.0.27520 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 x64 Hosting Support (HKLM\...\{AFFB9D8D-6E58-38A0-A7DD-F6F1F4247B36}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 x86 Hosting Support (HKLM-x32\...\{9594C97E-6A20-38B3-81BB-2778C4780BE1}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM-x32\...\{20d5df4e-006c-4d6d-a0dc-490d009b9786}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM\...\{805626FF-2BC9-4567-A71E-A76A470D000A}) (Version: 48.67.58484 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM-x32\...\{8d173101-98c1-4e92-97c6-47c6840745a7}) (Version: 6.0.16.32327 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM\...\{614C9740-3FD4-4788-A277-7C35CB4C323B}) (Version: 64.40.21605 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM-x32\...\{d990096d-6282-42c5-8d16-71272c5be274}) (Version: 8.0.10.34118 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{16A6EF42-A2F0-46DE-A16E-D8794DAB9810}) (Version: 64.64.32786 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{82efd5ea-41fb-496a-a50d-48391b80e98d}) (Version: 8.0.16.34817 - Microsoft Corporation)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{EBFC96E5-4409-426E-88B7-650ADB342E78}) (Version: 8.0.50727.42 - The Firebird Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Profibanka (HKLM-x32\...\{08D768F1-EEE8-4E0E-91B4-9063A2705AEE}) (Version: 1.23.301 - Komerční banka, a.s.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
RAIDXpert2 Management Suite (HKLM-x32\...\RAIDXpert2 Management Suite) (Version: 9.3.0.296 - Advanced Micro Devices, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9054.1 - Realtek Semiconductor Corp.)
RyzenMasterSDK (HKLM\...\{82BC68B8-48AD-422A-806D-83663E66BB86}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Service Pack 3 for SQL Server 2014 (KB4022619) (HKLM-x32\...\KB4022619) (Version: 12.3.6024.0 - Microsoft Corporation)
Software602 Form Filler (HKLM-x32\...\{EF8155B1-A395-4AF9-ABB4-88F09FA54DB1}) (Version: 4.80 - Software602 a.s.)
SQL Server 2014 Common Files (HKLM-x32\...\{BFB3B874-8033-4F5E-BE47-0AED2541E57C}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM-x32\...\{F78A23CD-E9A0-46E3-88E2-CF2CC93AE7BA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{71E418D7-C0C5-455A-A248-1A3C3839EEEF}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{A1ED7C85-A91A-4788-B0CC-86FA19C042E8}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{1D1E4532-6A52-471B-B006-EA04A2BBFCE9}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{AA2D8197-6678-4242-9222-3A03993E89B3}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2019 Advanced Analytics (HKLM\...\{BD408334-78B9-4024-A8B5-53184C2E8CB3}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{68B843D3-5C31-4F0C-B61C-662C97FDAD1C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{9F3D48F5-4184-444C-A810-845C6F078721}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{DF21FF12-F208-4012-92A1-CB7420A75FFE}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{EA0ADED4-831D-45B3-B612-C7FD0A1E2BAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Full text search (HKLM\...\{BFF9440C-BC5B-4326-A861-916CC3788A4A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_azul_java (HKLM\...\{FF7B55CB-CDC3-4084-B27A-6C3B65800DD4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_java (HKLM\...\{286E30FF-F22E-463E-ACAB-708AE6D50AF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mpy (HKLM\...\{33D798B3-DD3B-4CEE-AABE-3090625D5E7E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mr (HKLM\...\{B0523C0B-B56B-4C63-9B00-5A91EFF8F948}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{894F30EB-3F0A-422F-9225-EB00DC9414EA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{3F338A1B-1DCF-458F-8189-416B09B7D077}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{A401EAB9-4FC7-4F0C-8D79-9575E4910FDE}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Analysis Services (HKLM\...\{A1CAC3E0-B321-40FE-8907-4739297D5338}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Reporting Services (HKLM\...\{0278A8F5-4DDC-40FF-95CC-1D4725CA074B}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SSMS Post Install Tasks (HKLM\...\{4CB8C759-75FE-492C-8CEB-EEB9D07E2E8D}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.66.5 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Visual Studio 2017 Isolated Shell for SSMS (HKLM-x32\...\{AAA9F15B-AF45-4562-9991-93A848D3A902}) (Version: 15.0.28307.421 - Microsoft Corporation) Hidden
Webex (HKLM\...\{5769D3D0-47C7-5BD4-A88C-01365D7507C6}) (Version: 43.12.0.28111 - Cisco Systems, Inc)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Zoom Workplace (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\ZoomUMX) (Version: 6.4.7 (64367) - Zoom Communications, Inc.)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2025-06-13] ()
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_159.2.1145.0_x64__v10z8vjag6ke6 [2025-06-09] (HP Inc.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_55.20610.576.0_x64__8wekyb3d8bbwe [2025-06-19] (Microsoft Corporation)
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.19.0_x64__8wekyb3d8bbwe [2023-12-27] (Microsoft Corporation)
Pomocník pro hry v Microsoft Edgi -> C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3336.0_x64__8wekyb3d8bbwe [2025-06-21] (Microsoft Corporation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2023-08-21] (Realtek Semiconductor Corp)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-05] (Skype)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{04271989-C4D2-CBD8-F5AA-CBA22665817E} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{6BE99E87-B6FB-4CC3-AE69-DFCF33303D55} -> [Tiskové exporty z Money S3] => C:\Users\Public\Documents\Solitea\Money S3\PRINT\ [2022-07-11 06:07]
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{EABAE40C-B27C-455A-B672-F234DD780948}\InprocServer32 -> C:\Users\cervenad\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.25.14205\x64\Microsoft.Teams.MeetingAddin.DLL (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2023-05-09 09:41 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2024-12-06 00:21 - 2024-12-06 00:21 - 000060928 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files\Adobe\Acrobat DC\Acrobat\Locale\cs_cz\Adobe Send\SendAsLinkAddin.CZE
2021-10-05 13:17 - 2021-10-05 13:17 - 001711616 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2023-05-09 09:41 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\brlmw03a.dll
2023-05-09 09:41 - 2013-06-12 19:06 - 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2023-05-09 09:41 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2023-05-09 09:41 - 2013-10-10 21:55 - 002040320 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2023-05-09 09:47 - 2019-06-20 11:20 - 000884224 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbclient.dll
2023-05-09 09:47 - 2019-06-20 11:20 - 000008192 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\ib_util.dll
2023-05-09 09:47 - 2019-06-20 11:21 - 001107968 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\intl\fbintl.DLL
2023-05-09 09:47 - 2019-06-20 11:18 - 000665088 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\plugins\fbtrace.dll
2023-05-09 09:47 - 2019-06-20 11:20 - 000012800 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\UDF\ib_udf.DLL
2023-05-09 09:47 - 2019-06-20 11:20 - 000884224 _____ (Firebird Project) [File not signed] C:\Windows\SYSTEM32\gds32.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000050688 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000066048 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2023-05-09 09:47 - 2019-06-20 11:14 - 001558016 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icudt30.dll
2023-05-09 09:47 - 2019-06-20 11:13 - 000935936 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icuuc30.dll
2023-05-09 09:44 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2025-05-23 15:11 - 2024-11-16 20:43 - 000492032 _____ (Jeremy Skinner) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\FluentValidation.dll
2025-05-23 15:11 - 2024-02-07 22:45 - 000274944 _____ (Jimmy Bogard) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\AutoMapper.dll
2025-05-23 15:11 - 2024-10-09 02:54 - 000011264 _____ (Martijn Bodeman) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\IbanNet.DependencyInjection.ServiceProvider.dll
2025-05-23 15:11 - 2024-10-09 02:54 - 000179200 _____ (Martijn Bodeman) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\IbanNet.dll
2017-09-05 01:15 - 2017-09-05 01:15 - 004396032 _____ (Microsoft Corporation) [File not signed] C:\Program Files\AMD\CNext\CNext\D3DCOMPILER_47.dll
2021-12-28 11:09 - 2021-12-28 11:09 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2021-12-28 11:09 - 2021-12-28 11:09 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2025-05-23 15:11 - 2024-12-09 01:31 - 000035840 _____ (Microsoft;Serilog Contributors) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Serilog.Extensions.Hosting.dll
2025-05-23 15:11 - 2024-12-06 05:11 - 000161280 _____ (Serilog Contributors) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Serilog.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000245760 _____ (Seyfor.BankAgregator.Api) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000049152 _____ (Seyfor.BankAgregator.Data) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Data.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000233472 _____ (Seyfor.BankAgregator.Definition) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Definition.dll
2025-05-23 15:11 - 2025-04-02 08:51 - 000932352 _____ (Seyfor.BankAgregator.Providers) [File not signed] [File is in use] C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Providers.dll
2023-05-09 09:46 - 2019-12-21 12:55 - 001380864 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\AlfaSoftware\Avensio\libeay32.dll
2023-05-09 09:46 - 2019-12-21 12:55 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\AlfaSoftware\Avensio\ssleay32.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001227776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 006947328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000740352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001110528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000326656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 003798528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000440832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 004255744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000206336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000396800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 102854656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000133120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 005611008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000210432 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 002877440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-12-28 12:04 - 2012-05-09 13:29 - 000145920 _____ (Windows (R) Codename Longhorn DDK provider) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\602xpsui.DLL

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 10.42.31.4 - 8.8.8.8
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek Gaming GbE Family Controller -> rt640x64.sys

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Microsoft MPI\Bin\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files\Azure Data Studio\bin;C:\Program Files\dotnet\
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: )
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)


==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B6FAD8CF-6E8B-477F-B980-7D292AA47202}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{90DF03DC-6EA5-4FE7-9A22-7A486EF39F7A}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{00761E6C-ECE2-4258-8F1B-9FCFFBDF45C0}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{658650E7-4DD6-4C8E-A4EF-6E1C3591BD77}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF444C50-5EE7-4475-AF39-2C9B43B2D2EC}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{27733E69-0BF5-43CA-913D-6B27F0DB0376}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CD5554C4-4201-4236-B177-27010C825A4F}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CCD23F23-E99D-4B40-A6A3-662EE575AC4A}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3EC9DCBA-1726-46D1-B2C3-3DF5D6B88C52}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1FD76081-4486-40CB-A673-022C0735F4F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F946DFB9-C280-42F3-AD8C-14B782865C6F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7B38F7EC-622B-4ACB-BFBA-AEBB510DE6B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{72A5D51C-6607-483C-9928-9FD5105AC341}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{7DE38987-455A-48EC-A460-4902DDD88F43}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{137227E8-48CB-4714-9364-54C28CBAA554}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3671BCF-9A61-4AFD-9C7A-7FB04467221B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9691B836-9A34-4A62-8952-BDDEFF534D1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{40111E4C-6CF1-43AA-8486-9AEA0CFC1ABD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3D01EBE3-B8B9-4322-AE2E-F61B8626DF88}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B4710AC3-A08B-44C7-BD1C-90D7AEDF4A95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3223610B-E73B-4B0A-8915-BDB191D6F635}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D351473-386B-492D-A032-855FC9CBCC97}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{42801A16-B68C-4FA5-AA84-8DE1E8657532}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{56A84FC2-9806-4DCB-B724-8D72CF783A3D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E4B5CF59-CE7E-4A55-8E0C-316B1C92338A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DB3DAD22-D2D7-4872-A883-CC7539FD747C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{51686F0D-2D23-4256-A660-9917B8AEC55F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5FF5331A-A330-4D70-AE69-E62F679FDCD2}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C5F33FF6-F221-4754-A3B6-102C0EAEECBE}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D599CAE4-AC1A-4CD4-9492-3420A2200933}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.83\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F04800E-F871-401B-9EE3-E88B5AC137BD}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{30D8CBB8-FA36-4F39-A86A-FB129AC07D26}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C8343CF7-A6F1-4252-ADCF-EFF55E7DF54E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B741E080-377B-4B5B-A8F8-133F7DD08236}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (06/25/2025 10:25:43 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (06/22/2025 10:26:17 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (06/19/2025 10:39:51 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (06/19/2025 07:15:55 AM) (Source: Microsoft-Windows-Folder Redirection) (EventID: 502) (User: ZSPRIBYSLAV)
Description: Nepodařilo se použít zásady a přesměrovat složku Desktop na \\zskola2\user-prac\polakovad\Plocha.
Možnosti přesměrování: 0x9021.
Došlo k následující chybě:Složku \\zskola2\user-prac\polakovad\Plocha nejde vytvořit..
Podrobnosti o chybě: Tento soubor není momentálně k dispozici pro použití v tomto počítači..

Error: (06/18/2025 03:21:54 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro ZSPRIBYSLAV\CERVENA-PC$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 18 Jun 2025 13:22:49 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 6481906d-e24a-445b-872b-fee9439657cf

Metoda: GET(954ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (06/17/2025 08:43:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program KB_PCB.exe verze 1.23.0.46 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: d84

Čas spuštění: 01dbdb5accc133ce

Čas ukončení: 12

Cesta k aplikaci: C:\Program Files (x86)\Profibanka\KB_PCB.exe

ID hlášení: 745055c6-3047-4d60-8788-1ce8e12558c3

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (06/16/2025 10:24:30 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (06/13/2025 10:40:04 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).


System errors:
=============
Error: (06/25/2025 04:55:24 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80240017): Microsoft - Printer - 6/22/2006 12:00:00 AM - 6.1.7233.1.

Error: (06/25/2025 03:26:43 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (06/25/2025 03:26:43 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (06/25/2025 02:58:14 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\Harddisk2\DR50 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.

Error: (06/25/2025 02:58:14 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\Harddisk2\DR50 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.

Error: (06/25/2025 02:58:14 AM) (Source: Virtual Disk Service) (EventID: 8) (User: )
Description: Otevření zařízení \\?\SCSI#Disk&Ven_Msft&Prod_Virtual_Disk#2&1f4adffe&0&000001#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} se nezdařilo. Kód chyby: C03A001C@020D0002

Error: (06/25/2025 02:58:07 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume99 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.

Error: (06/25/2025 02:58:07 AM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume99 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.


CodeIntegrity:
===============
Date: 2025-06-25 12:12:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2025-06-25 11:12:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends International, LLC. F14f 10/14/2021
Motherboard: Gigabyte Technology Co., Ltd. A520M S2H
Processor: AMD Ryzen 5 PRO 5650G with Radeon Graphics
Percentage of memory in use: 71%
Total physical RAM: 7550.34 MB
Available physical RAM: 2182.7 MB
Total Virtual: 13292.49 MB
Available Virtual: 4406.56 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:929.72 GB) (Free:575.85 GB) (Model: AMD-RAID Array 1 SCSI Disk Device) NTFS
Drive e: (Elements) (Fixed) (Total:2794.49 GB) (Free:2768.33 GB) (Model: WD Elements 2621 USB Device) NTFS

\\?\Volume{e129094d-2942-486f-b521-10b75f50b432}\ (Recovery tools) (Fixed) (Total:1 GB) (Free:0.41 GB) NTFS
\\?\Volume{7e5111be-5fc1-49a5-bc38-e8ea7f74b8e7}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 2794.5 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 12:47
od Rudy
Zdravím!
Spusťte nejprve tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 12:55
od Zakov
Po skenu mi to nabídlo pouze karanténu. Restart nebyl.
Log:
# -------------------------------
# Malwarebytes AdwCleaner 8.5.0.595
# -------------------------------
# Build: 03-05-2025
# Database: 2024-10-23.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-25-2025
# Duration: 00:00:02
# OS: Windows 10 (Build 19045.5965)
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\cervenad_OLD\AppData\Local\Seznam.cz
Deleted C:\Users\cervenad_OLD\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1553 octets] - [25/06/2025 13:52:35]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 13:48
od Rudy
Dejte nové logy FRST+Addition.

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 13:55
od Zakov
FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-06-2025
Ran by polakovad (administrator) on CERVENA-PC (ATComputers TRILINE PROFI) (25-06-2025 14:52:13)
Running from \\zskola2\user-prac\cervenad\Plocha\FRST64.exe
Loaded Profiles: polakovad & MSSQLFDLauncher$FENIX2019 & SQLTELEMETRY$FENIX2019 & MSSQLLaunchpad$FENIX2019
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdhost.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
(services.exe ->) (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\Launchpad.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teamsupdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mobsync.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5911_none_7dd4fd687cb889e8\TiWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe [1201968 2020-10-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [195760 2025-04-05] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\Installer\setup.exe [7395880 2025-06-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [GpNetworkStartTimeoutPolicyValue] 60
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [S3AutomaticSTART] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [CiscoMeetingDaemon] => C:\Users\cervenad\AppData\Local\WebEx\WebexHost.exe [8077920 2023-12-12] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [Icecream_Screen_Recorder_New_Auto_Start] => C:\Program Files (x86)\Icecream Screen Recorder 7\recorder.exe [6987344 2025-05-05] (ICECREAM APPS LTD -> Icecream)
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\Run: [MicrosoftEdgeAutoLaunch_A82912258D1D457A596D706B4507A3C9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\...\Run: [MicrosoftEdgeAutoLaunch_97C59669F16695898DE380691D1CE2A8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966728 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [S3Automatic] => C:\Program Files (x86)\Solitea\Money S3\MS3Auto.exe [23842968 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
HKLM\...\Windows x64\Print Processors\hpcpp160: C:\Windows\System32\spool\prtprocs\x64\hpcpp160.dll [602912 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW081.DLL [74016 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPMLM135: C:\Windows\system32\hpmlm135.dll [237344 2013-12-03] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\rica7Qlm: C:\Windows\system32\rica7Qlm.dll [28160 2013-12-26] (Microsoft Windows Hardware Compatibility Publisher -> RICOH CO.,Ltd.)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [47896 2021-09-23] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\137.0.7151.120\Installer\chrmstp.exe [2025-06-21] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {B5FA014C-2A18-4A1F-9314-EF77E6361579} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.)
Task: {A56280EC-4FEE-4AD0-BB81-D59853A493DE} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {C91BB302-8023-4471-9B55-6E496849942D} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {B97DE14B-6A35-4756-90BB-CDA4C9AE59A7} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [355840 2021-10-05] (Advanced Micro Devices, Inc.) [File not signed]
Task: {F1FAFF53-F422-4CDE-B296-B6D1EDBF87C6} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5974424 2025-06-11] (Microsoft Windows -> Microsoft Corporation)
Task: {3398DB82-809C-4C2F-9AEA-B741AB2BA3D2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7194.0{979D3406-0080-4581-8A4D-7965092B0AAF} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7194.0\updater.exe [7080032 2025-05-22] (Google LLC -> Google LLC)
Task: {9007C027-1B03-4346-9DA1-C1A1E6F92DB6} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {EF8E5F92-86FA-4697-9393-008E3E51FF08} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [79312 2025-05-02] (HP Inc. -> HP Inc.)
Task: {CC0E9B46-F5A7-48D3-9950-45C5276121C2} - System32\Tasks\Komercni banka\Profibanka\Profibanka AutoBackup => C:\Program Files (x86)\Profibanka\CreateTaskW10.exe [22552 2015-10-02] (KOMERCNI BANKA A.S. -> ) -> C:\Program#Files#(x86)\profibanka\Backup\backup.bak
Task: {5C99E5D2-0D0E-4CB9-8DDB-ECC5AF64D688} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C93598F6-E3C1-453C-AB6D-02CD44E35389} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23572056 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {08D1A9BD-780A-4D3E-88AC-0A617895D165} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A30394E1-D3E6-4022-A534-64034E6272CC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209936 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC1AB55C-1911-4D37-B033-4FE498409E26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {897D3190-D07C-4655-968F-1C47517AB1BE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514960 2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F628214-3628-4144-88BB-F39FBA7293D2} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {F3401EAD-F305-4D11-8C4A-8FBCCDF9314D} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\Windows\system32\gpupdate.exe [30720 2025-04-09] (Microsoft Windows -> Microsoft Corporation)
Task: {5B3C2F83-E51B-4093-88E1-6924E6AEC52F} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {387E62F4-0FFB-4C3B-9197-12438B08CC0A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {1577F35C-9331-4CE4-9FC0-A806E2CA47B2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F877B03-CC1A-432D-8E81-AB7241FF9E5C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79553ADB-0C2D-43F7-A995-E7597AF52937} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-1194 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {0FF5F2CF-844D-4ED5-8F6E-AF0522AE326A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-2762 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {35E6625F-8F78-4505-A488-6988ED69FAFE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4104191108-630384649-3272312177-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD15D0AD-7FCF-4DB7-88B3-D278C46C3C6D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E08AB79-4B8C-46A1-9824-F87FD90DF58F} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD8C2150-57B5-4102-821F-2C3DCB7BA2AD} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {33250B85-50C8-4AA4-90F8-7690D8DE05FC} - System32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001 => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {79E81F0F-BC1F-4122-873E-48F44B4383A5} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55288 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CEBCCD32-32EB-44E8-83AB-D4E0B8EC08CC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {8BE217C1-014E-41A0-83EB-9236DD5036D8} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159 => C:\Users\cervenad\AppData\Roaming\Zoom\bin\Zoom.exe [441144 2025-05-27] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{963096d6-22e6-4dfb-976a-5fb00ad683f8}: [NameServer] 10.42.31.4

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default [2025-06-25]
Edge Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-06-08]
Edge Extension: (Edge relevant text changes) - C:\Users\cervenad\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-06-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)

Chrome:
=======
CHR Profile: C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default [2025-06-25]
CHR Notifications: Default -> hxxps://cz.avon-brochure.com; hxxps://petona.cz; hxxps://upcr.cz; hxxps://www.dobre-knihy.cz
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-06-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-29]
CHR Extension: (FormApps Extension) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-04-15]
CHR Extension: (Cryptoplus KB - podepisovací modul) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldildmkoeoicfkknedfdpjmgjmpkpooc [2023-07-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\cervenad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-19]
CHR HKU\S-1-5-21-2496437920-1329170045-526373181-1159\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
S2 BankAPI Seyfor; C:\Program Files (x86)\Seyfor\BankApi\Seyfor.BankAgregator.Api.exe [139264 2025-04-02] (Seyfor.BankAgregator.Api) [File not signed]
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9499264 2025-05-25] (Microsoft Corporation -> Microsoft Corporation)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5566320 2025-04-05] (ESET, spol. s r.o. -> ESET)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [58224 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4529832 2025-04-05] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [1529112 2023-08-14] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncHelper.exe [3621688 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [156672 2019-06-20] (Firebird Project) [File not signed]
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [5825024 2019-06-20] (Firebird Project) [File not signed]
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-05-02] (HP Inc. -> HP Inc.)
S3 MonS3Service; C:\Program Files (x86)\Common Files\Solitea\MonS3Service.exe [1765536 2025-05-23] (Seyfor, a. s. -> Seyfor, a.s.)
S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [161040 2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlservr.exe [626280 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\sqlservr.exe [199760 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R3 MSSQLFDLauncher$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\fdlauncher.exe [85600 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLLaunchpad$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\launchpad.exe [1228608 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.095.0518.0002\OneDriveUpdaterService.exe [3873064 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [917440 2025-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\SQLAGENT.EXE [695912 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$PROFIBANKA; C:\Program Files (x86)\Profibanka\System\Binn\MSSQL12.PROFIBANKA\MSSQL\Binn\SQLAGENT.EXE [454736 2018-09-07] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$FENIX2019; C:\Program Files\Microsoft SQL Server\MSSQL15.FENIX2019\MSSQL\Binn\sqlceip.exe [290648 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [20994352 2025-05-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54720 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_50fee1227e96ec14\amdsafd.sys [100792 2021-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0381941.inf_amd64_e1aaf87b06e2b6d9\B380668\amdkmdag.sys [94358424 2022-08-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [284672 2021-04-09] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [225144 2025-02-09] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [16336 2022-09-05] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [269056 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [86200 2025-02-09] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [128528 2025-02-09] (ESET, spol. s r.o. -> ESET)
R3 GemCCID; C:\Windows\System32\DriverStore\FileRepository\gemccid.inf_amd64_526ec61d10ad09ec\GemCCID.sys [162992 2025-05-15] (Thales DIS CPL USA, Inc. -> Gemalto)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
S4 RsFx0600; C:\Windows\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 usbscan; C:\Windows\System32\drivers\usbscan.sys [49664 2022-07-13] (Microsoft Corporation) [File not signed]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-06-25 13:52 - 2025-06-25 13:53 - 000000000 ____D C:\AdwCleaner
2025-06-25 13:07 - 2025-06-25 14:52 - 000000000 ____D C:\FRST
2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg
2025-06-24 12:07 - 2025-06-24 12:07 - 000207516 _____ C:\Users\cervenad\Downloads\priloha_1536203059_0_Usneseni_o_zastaveni_rizeni_Polak_Michal.pdf
2025-06-23 08:32 - 2025-06-23 08:32 - 000041455 _____ C:\Users\cervenad\Downloads\1237181070287_6_1132_20250620.pdf
2025-06-18 18:33 - 2025-06-18 18:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-06-17 14:21 - 2025-06-17 14:21 - 000030154 _____ C:\Users\cervenad\Downloads\Potvrzeni o prijmu (1).pdf
2025-06-16 12:30 - 2025-06-16 12:30 - 000060064 _____ C:\Users\cervenad\Downloads\3300461684.pdf
2025-06-13 13:50 - 2025-06-13 13:50 - 000847276 _____ C:\Users\cervenad\Downloads\cza13917_2025-01-10-09_33_08 (2).zip
2025-06-13 12:16 - 2025-06-13 12:16 - 000579513 _____ C:\Users\cervenad\Downloads\2984704686 (1).pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich.pdf
2025-06-12 09:48 - 2025-06-12 09:48 - 000117784 _____ C:\Users\cervenad\Downloads\faktura_erich (1).pdf
2025-06-12 07:56 - 2025-06-12 07:56 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1) (1).pdf
2025-06-12 07:54 - 2025-06-12 07:54 - 000549677 _____ C:\Users\cervenad\Downloads\Reindex CZ (1).pdf
2025-06-11 15:17 - 2025-06-11 15:17 - 000000000 ___HD C:\$WinREAgent
2025-06-11 14:56 - 2025-06-11 14:56 - 000579842 _____ C:\Users\cervenad\Downloads\2984704686.pdf
2025-06-10 12:01 - 2025-06-10 12:01 - 000000000 ____D C:\Program Files (x86)\dotnet
2025-06-05 08:35 - 2025-06-05 08:35 - 000088054 _____ C:\Users\cervenad\Downloads\Zpětvzetí žádost o prominutí penále ČSSZ.pdf
2025-06-05 07:38 - 2025-06-05 07:38 - 000194670 _____ C:\Users\cervenad\Downloads\TU_červen 2025.pdf
2025-06-05 07:08 - 2025-06-05 07:08 - 000604115 _____ C:\Users\cervenad\Downloads\2983933586.pdf
2025-06-05 07:07 - 2025-06-05 07:07 - 000609335 _____ C:\Users\cervenad\Downloads\2983933591.pdf
2025-06-04 20:58 - 2025-06-04 20:58 - 000000000 ____D C:\Program Files\HP
2025-06-04 09:33 - 2025-06-04 09:33 - 001868243 _____ C:\Users\cervenad\Downloads\Dalsi_financni_prostredky_pro_skoly_na_rok_2025.xlsx
2025-06-04 09:33 - 2025-06-04 09:33 - 000095106 _____ C:\Users\cervenad\Downloads\Priloha.xlsx
2025-06-02 11:37 - 2025-06-02 11:37 - 002770850 _____ C:\Users\cervenad\Downloads\priloha_1532097212_0_Kantyna_SPS_Trebic.pdf
2025-06-02 11:37 - 2025-06-02 11:37 - 000213966 _____ C:\Users\cervenad\Downloads\priloha_1531693351_0_Polak_Michal.pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000484182 _____ C:\Users\cervenad\Downloads\2979131233 (2).pdf
2025-06-02 09:46 - 2025-06-02 09:46 - 000483635 _____ C:\Users\cervenad\Downloads\2981220150 (1).pdf
2025-06-02 08:47 - 2025-06-02 08:47 - 000499269 _____ C:\Users\cervenad\Downloads\bankovní identita.pdf
2025-05-30 09:13 - 2025-05-30 09:13 - 000040293 _____ C:\Users\cervenad\Downloads\1237181070287_5_1132_20250522.pdf
2025-05-30 07:24 - 2025-06-25 14:51 - 000003086 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2025-05-29 14:03 - 2025-05-29 14:03 - 000113977 _____ C:\Users\cervenad\Downloads\Žádost o prominutí penále ČSSZ.pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036 (1).pdf
2025-05-27 14:11 - 2025-05-27 14:11 - 000006073 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.p7s
2025-05-27 14:11 - 2025-05-27 14:11 - 000003652 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036-1634566842-potvrzeni.pdf
2025-05-27 14:10 - 2025-05-27 14:10 - 000012467 _____ C:\Users\cervenad\Downloads\DADPIS-0070944938-20250527-141036.pdf
2025-05-27 08:47 - 2025-05-27 08:47 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KARTDAA49BC9DE0002.pdf
2025-05-26 12:58 - 2025-05-26 12:58 - 001579688 _____ C:\Users\cervenad\Downloads\voucher-KART90E5085E5D7003.pdf
2025-05-26 12:57 - 2025-05-26 12:57 - 001579678 _____ C:\Users\cervenad\Downloads\voucher-KARTEE185384845001.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-06-25 14:51 - 2025-02-27 08:17 - 000003118 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2025-06-25 14:34 - 2021-11-24 10:21 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-06-25 14:31 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-06-25 14:31 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-06-25 14:31 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-06-25 13:49 - 2023-05-09 10:12 - 000000000 ____D C:\ProgramData\firebird
2025-06-25 13:25 - 2021-12-28 10:58 - 000000144 _____ C:\Windows\system32\config\netlogon.ftl
2025-06-25 13:08 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-06-25 04:33 - 2021-12-27 19:06 - 000000000 ____D C:\Windows\SystemTemp
2025-06-24 13:04 - 2023-07-19 19:19 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Word
2025-06-24 10:46 - 2023-07-19 19:20 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Excel
2025-06-24 08:07 - 2023-08-28 18:22 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Temp
2025-06-24 08:07 - 2023-07-19 19:03 - 000000000 ____D C:\Users\cervenad\AppData\LocalLow\Adobe
2025-06-24 07:45 - 2021-12-28 11:30 - 000000000 ____D C:\KBprikazy
2025-06-22 00:32 - 2021-12-27 18:41 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-06-21 08:33 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\Packages
2025-06-21 08:33 - 2021-11-24 10:21 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-06-19 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2025-06-19 10:39 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad\AppData\Local\D3DSCache
2025-06-18 18:33 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-06-18 18:32 - 2021-12-28 11:09 - 000000000 ____D C:\Program Files\Microsoft Office
2025-06-18 15:25 - 2021-11-24 10:26 - 002319808 _____ C:\Windows\system32\PerfStringBackup.INI
2025-06-18 15:25 - 2021-04-30 08:05 - 000934756 _____ C:\Windows\system32\perfh005.dat
2025-06-18 15:25 - 2021-04-30 08:05 - 000234006 _____ C:\Windows\system32\perfc005.dat
2025-06-18 15:21 - 2021-12-28 12:22 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-06-18 15:21 - 2021-12-28 11:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-06-18 15:21 - 2021-11-24 10:21 - 000008192 ___SH C:\DumpStack.log.tmp
2025-06-18 15:21 - 2021-11-24 10:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-06-18 15:21 - 2019-12-07 11:03 - 001310720 _____ C:\Windows\system32\config\BBI
2025-06-18 08:01 - 2021-12-28 11:30 - 000000000 ____D C:\KBvypisy
2025-06-16 07:53 - 2023-08-07 06:25 - 000000000 ____D C:\Users\cervenad\AppData\Local\AMD_Common
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2025-02-06 11:57 - 000003546 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2025-02-06 11:57 - 000003540 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:29 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-500
2025-06-14 13:02 - 2023-07-19 16:19 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2496437920-1329170045-526373181-1159
2025-06-14 13:02 - 2021-12-27 19:08 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-667896778-3875923744-3874593446-1001
2025-06-14 13:02 - 2021-11-24 10:27 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-06-14 13:02 - 2021-11-24 10:27 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-06-13 07:32 - 2024-04-19 08:39 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-06-13 07:32 - 2023-03-07 09:20 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2025-06-11 17:37 - 2021-11-24 10:21 - 000447968 _____ C:\Windows\system32\FNTCACHE.DAT
2025-06-11 17:36 - 2024-07-10 08:18 - 000000000 ____D C:\Windows\system32\compatrel
2025-06-11 17:36 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-06-11 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2025-06-11 15:25 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-06-11 15:22 - 2021-11-24 10:24 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-06-11 15:17 - 2021-12-27 18:46 - 000000000 ____D C:\Windows\system32\MRT
2025-06-11 15:15 - 2021-12-27 18:46 - 216824056 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-06-11 14:56 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Outlook
2025-06-11 08:21 - 2023-07-19 19:18 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Microsoft\Office
2025-06-10 12:01 - 2021-11-24 10:23 - 000000000 ____D C:\ProgramData\Package Cache
2025-06-10 11:59 - 2021-12-28 12:13 - 000000000 ____D C:\Záloha Fenix
2025-06-10 11:59 - 2021-11-24 09:59 - 000000000 ____D C:\install
2025-06-09 18:11 - 2023-07-19 19:02 - 000000000 ____D C:\Users\cervenad\AVENSIO
2025-06-09 12:56 - 2024-03-19 10:41 - 000000000 ____D C:\Users\cervenad\AppData\Local\CrashDumps
2025-06-05 13:57 - 2023-07-19 16:28 - 000000000 ____D C:\Users\administrator.ZSPRIBYSLAV
2025-06-05 13:57 - 2022-08-25 08:46 - 000000000 ____D C:\Users\knihovna
2025-06-05 13:57 - 2021-12-28 10:59 - 000000000 ____D C:\Users\administrator
2025-06-05 13:57 - 2021-12-27 18:38 - 000000000 ____D C:\Users\dpadmin
2025-06-05 07:05 - 2023-07-19 18:51 - 000000000 ____D C:\Users\cervenad
2025-05-27 14:37 - 2023-10-24 08:40 - 000000000 ____D C:\Users\cervenad\AppData\Roaming\Zoom
2025-05-27 08:47 - 2024-12-12 10:00 - 000004256 _____ C:\Windows\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2496437920-1329170045-526373181-1159
2025-05-26 07:21 - 2021-12-28 11:45 - 000000000 ____D C:\Program Files (x86)\Profibanka

==================== Files in the root of some directories ========

2025-06-24 14:55 - 2025-06-24 14:59 - 000007655 _____ () C:\Users\cervenad\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 13:56
od Zakov
Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-06-2025
Ran by polakovad (25-06-2025 14:53:01)
Running from \\zskola2\user-prac\cervenad\Plocha
Microsoft Windows 10 Pro Version 22H2 19045.5965 (X64) (2021-11-24 11:45:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-667896778-3875923744-3874593446-500 - Administrator - Disabled) => C:\Users\Administrator <==== ATTENTION
DefaultAccount (S-1-5-21-667896778-3875923744-3874593446-503 - Limited - Disabled)
dpadmin (S-1-5-21-667896778-3875923744-3874593446-1001 - Administrator - Enabled) => C:\Users\dpadmin
Guest (S-1-5-21-667896778-3875923744-3874593446-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-667896778-3875923744-3874593446-504 - Limited - Disabled)

ATTENTION: Domain

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{F8F948EA-5AEA-4158-8821-A2F788ECE936}) (Version: 16.2.1 - Hewlett-Packard) Hidden
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20531 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ALFA MZDY AVENSIO 3.3.0.15 (HKLM-x32\...\{904214E9-4210-4184-B249-CF2B4A511DEB}_is1) (Version: 3.3.0.15 - )
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.3.5 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.10.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Azure Data Studio (HKLM\...\{6591F69E-6588-4980-81ED-C8FCBD7EC4B8}_is1) (Version: 1.32.0 - Microsoft Corporation)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
CryptoPlus KB v1.0 (HKLM-x32\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
CryptoPlus KB v1.0 x64 (HKLM\...\CryptoPlus KB v1.0) (Version: 3.0.2 - Monet+,a.s.)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 25.400 (20250501_06) - Seyfor, a.s.)
ESET Endpoint Antivirus (HKLM\...\{F8DE2A0C-AE50-4915-9F99-12A9B1DFCADA}) (Version: 12.0.2049.0 - ESET, spol. s r.o.)
ESET Management Agent (HKLM\...\{E92EF3C9-4FFE-4239-8AEA-ABB78CFB7EE0}) (Version: 10.1.1292.0 - ESET, spol. s r.o.)
Firebird 2.5.9.27139 (x64) (HKLM\...\FBDBServer_2_5_x64_is1) (Version: 2.5.9.27139 - Firebird Project)
FormApps Signing Extension (HKLM-x32\...\{615573E2-9A4C-4F60-8AEB-C112DD36EC7D}) (Version: 2.28.0.47 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 137.0.7151.120 - Google LLC)
Helios Fenix 9.91 (HKLM-x32\...\{AE81B074-5F28-11D5-BC42-005004693E0C}) (Version: 9.91.010 - Asseco Solutions, a.s.)
HELIOS Fenix Crystal Reports XI runtime (HKLM-x32\...\{2FC74DFB-4E3B-43C4-954B-0D2D41BD50EE}) (Version: 07.11.09 - Asseco Solutions, a.s.)
HELIOS Fenix Vazba PBP 9.51.000 (HKLM-x32\...\{44352E97-8CC6-4A2E-B5B5-77105DD79086}) (Version: 9.51.000 - Asseco Solutions, a.s.)
HELIOS Fenix - systémové komponenty (HKLM-x32\...\{CC1B0AC8-4A94-43ED-9B5F-22BEF84AA4D8}) (Version: 9.21.000 - Asseco Solutions, a.s.)
HL-1210W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Icecream Screen Recorder verze 7.44 (HKLM-x32\...\{CE9603D0-2A7F-4B94-BF4D-BC4B1389888F}_is1) (Version: 7.44 - Icecream Apps)
Integration Services (HKLM-x32\...\{4938A647-7EA4-4496-A843-5E338B91C07E}) (Version: 15.0.2000.168 - Microsoft Corporation) Hidden
KB QSCD v1.0 (64-bit) (HKLM\...\{511B4472-AF5D-404B-B28A-D8DD14D0C94D}) (Version: 1.0.22.24214 - Monet+, a.s.)
KBSignatureModule (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\KBPodpisovyModul) (Version: 1.0.8 - KB)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.10 (x64) (HKLM\...\{3A80EBC5-6B68-49B9-BEBD-E1A6C966B416}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.16 (x86) (HKLM-x32\...\{E4AF7683-88E6-48B0-BF69-696234A6958B}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.10 (x64) (HKLM\...\{062CD1ED-0A3C-483C-A871-50173240C545}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.16 (x86) (HKLM-x32\...\{BF986506-2994-4DA9-9E17-1163400C97F1}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.10 (x64) (HKLM\...\{15B7D0C2-F209-4C28-AF1C-FD8326F4D58A}) (Version: 64.40.21578 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.16 (x86) (HKLM-x32\...\{6BAAA5E0-D0C6-4DC9-BA70-717EBA7F2CAD}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM\...\{9786E83E-B71A-4526-B58F-64F35C7E2CFE}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft Analysis Services OLE DB Provider (HKLM-x32\...\{4F1405AB-36A8-4383-9C1A-AE00491C255F}) (Version: 15.0.2000.568 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 8.0.16 - Shared Framework (x86) (HKLM-x32\...\{c1d07152-0f7c-4493-88db-fcdc9e3f2bdb}) (Version: 8.0.16.25216 - Microsoft Corporation)
Microsoft ASP.NET Core 8.0.16 Shared Framework (x86) (HKLM-x32\...\{76EA714A-1D6F-3FE4-BEFC-8E68618FC8EE}) (Version: 8.0.16.25216 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 137.0.3296.93 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 137.0.3296.93 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\{BEFC10C1-7032-3C8E-80BC-621A77BFEABD}) (Version: 2.3.28107 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.3 (HKLM-x32\...\Microsoft Help Viewer 2.3) (Version: 2.3.28107 - Microsoft Corporation)
Microsoft MPI (10.0.12498.5) (HKLM\...\{8499ACD3-C1E3-45AB-BF96-DA491727EBE1}) (Version: 10.0.12498.5 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{50D6B005-B0D6-425F-953B-01331E2C7FCB}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{853997DA-6FCB-4FB9-918E-E0FF881FAF65}) (Version: 17.7.2.1 - Microsoft Corporation)
Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10417.20020 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{9D6F8754-28E9-4940-B319-3FC8588CF18F}) (Version: 18.5.0.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.095.0518.0002 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{8F72E2D4-1E48-4534-8DB8-1E8E012899C6}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2014 (HKLM-x32\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 RsFx Driver (HKLM-x32\...\{D4CCB7AC-1A41-4CFA-8708-5EE551538737}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2014 Setup (English) (HKLM-x32\...\{D183B98A-9688-4FC1-9793-E17E42C8BAB1}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{6CC673B9-F743-47AD-8962-C00CA5300016}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version: - Microsoft Corporation)
Microsoft SQL Server 2019 RsFx Driver (HKLM\...\{5825CDC4-4E99-4CF9-91FE-DB60C0E2F5EA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft SQL Server Management Studio - 18.10 (HKLM-x32\...\{c09f71ef-fff8-435a-bdc9-3c242a7c36f3}) (Version: 15.0.18390.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.25.14205 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.22.27821 (HKLM-x32\...\{3BDE80F7-7EC9-448E-8160-4ADA0CDA8879}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.22.27821 (HKLM-x32\...\{1E6FC929-567E-4D22-9206-C5B83F0A21B9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{f895a2f1-ae3f-4212-8af1-7fa1f8c212ea}) (Version: 15.0.27520 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 x64 Hosting Support (HKLM\...\{AFFB9D8D-6E58-38A0-A7DD-F6F1F4247B36}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2017 x86 Hosting Support (HKLM-x32\...\{9594C97E-6A20-38B3-81BB-2778C4780BE1}) (Version: 15.0.27520 - Microsoft Corporation) Hidden
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM-x32\...\{20d5df4e-006c-4d6d-a0dc-490d009b9786}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM\...\{805626FF-2BC9-4567-A71E-A76A470D000A}) (Version: 48.67.58484 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.16 (x64) (HKLM-x32\...\{8d173101-98c1-4e92-97c6-47c6840745a7}) (Version: 6.0.16.32327 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM\...\{614C9740-3FD4-4788-A277-7C35CB4C323B}) (Version: 64.40.21605 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM-x32\...\{d990096d-6282-42c5-8d16-71272c5be274}) (Version: 8.0.10.34118 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{16A6EF42-A2F0-46DE-A16E-D8794DAB9810}) (Version: 64.64.32786 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.16 (x86) (HKLM-x32\...\{82efd5ea-41fb-496a-a50d-48391b80e98d}) (Version: 8.0.16.34817 - Microsoft Corporation)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{EBFC96E5-4409-426E-88B7-650ADB342E78}) (Version: 8.0.50727.42 - The Firebird Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.10417.20020 - Microsoft Corporation) Hidden
Profibanka (HKLM-x32\...\{08D768F1-EEE8-4E0E-91B4-9063A2705AEE}) (Version: 1.23.301 - Komerční banka, a.s.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
RAIDXpert2 Management Suite (HKLM-x32\...\RAIDXpert2 Management Suite) (Version: 9.3.0.296 - Advanced Micro Devices, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9054.1 - Realtek Semiconductor Corp.)
RyzenMasterSDK (HKLM\...\{82BC68B8-48AD-422A-806D-83663E66BB86}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Service Pack 3 for SQL Server 2014 (KB4022619) (HKLM-x32\...\KB4022619) (Version: 12.3.6024.0 - Microsoft Corporation)
Software602 Form Filler (HKLM-x32\...\{EF8155B1-A395-4AF9-ABB4-88F09FA54DB1}) (Version: 4.80 - Software602 a.s.)
SQL Server 2014 Common Files (HKLM-x32\...\{BFB3B874-8033-4F5E-BE47-0AED2541E57C}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM-x32\...\{F78A23CD-E9A0-46E3-88E2-CF2CC93AE7BA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{71E418D7-C0C5-455A-A248-1A3C3839EEEF}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM-x32\...\{A1ED7C85-A91A-4788-B0CC-86FA19C042E8}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{1D1E4532-6A52-471B-B006-EA04A2BBFCE9}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM-x32\...\{AA2D8197-6678-4242-9222-3A03993E89B3}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server 2019 Advanced Analytics (HKLM\...\{BD408334-78B9-4024-A8B5-53184C2E8CB3}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{68B843D3-5C31-4F0C-B61C-662C97FDAD1C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools (HKLM\...\{9F3D48F5-4184-444C-A810-845C6F078721}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{DF21FF12-F208-4012-92A1-CB7420A75FFE}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Client Tools Extensions (HKLM\...\{EA0ADED4-831D-45B3-B612-C7FD0A1E2BAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Full text search (HKLM\...\{BFF9440C-BC5B-4326-A861-916CC3788A4A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_azul_java (HKLM\...\{FF7B55CB-CDC3-4084-B27A-6C3B65800DD4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_java (HKLM\...\{286E30FF-F22E-463E-ACAB-708AE6D50AF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mpy (HKLM\...\{33D798B3-DD3B-4CEE-AABE-3090625D5E7E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 sql_inst_mr (HKLM\...\{B0523C0B-B56B-4C63-9B00-5A91EFF8F948}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{894F30EB-3F0A-422F-9225-EB00DC9414EA}) (Version: 12.3.6024.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{3F338A1B-1DCF-458F-8189-416B09B7D077}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{A401EAB9-4FC7-4F0C-8D79-9575E4910FDE}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Analysis Services (HKLM\...\{A1CAC3E0-B321-40FE-8907-4739297D5338}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Reporting Services (HKLM\...\{0278A8F5-4DDC-40FF-95CC-1D4725CA074B}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
SSMS Post Install Tasks (HKLM\...\{4CB8C759-75FE-492C-8CEB-EEB9D07E2E8D}) (Version: 15.0.18390.0 - Microsoft Corporation) Hidden
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.66.5 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Visual Studio 2017 Isolated Shell for SSMS (HKLM-x32\...\{AAA9F15B-AF45-4562-9991-93A848D3A902}) (Version: 15.0.28307.421 - Microsoft Corporation) Hidden
Webex (HKLM\...\{5769D3D0-47C7-5BD4-A88C-01365D7507C6}) (Version: 43.12.0.28111 - Cisco Systems, Inc)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Zoom Workplace (HKU\S-1-5-21-2496437920-1329170045-526373181-1159\...\ZoomUMX) (Version: 6.4.7 (64367) - Zoom Communications, Inc.)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2025-06-13] ()
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_159.2.1145.0_x64__v10z8vjag6ke6 [2025-06-09] (HP Inc.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_55.20610.576.0_x64__8wekyb3d8bbwe [2025-06-19] (Microsoft Corporation)
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.19.0_x64__8wekyb3d8bbwe [2023-12-27] (Microsoft Corporation)
Pomocník pro hry v Microsoft Edgi -> C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3336.0_x64__8wekyb3d8bbwe [2025-06-21] (Microsoft Corporation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2023-08-21] (Realtek Semiconductor Corp)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-05] (Skype)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{04271989-C4D2-CBD8-F5AA-CBA22665817E} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{6BE99E87-B6FB-4CC3-AE69-DFCF33303D55} -> [Tiskové exporty z Money S3] => C:\Users\Public\Documents\Solitea\Money S3\PRINT\ [2022-07-11 06:07]
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{EABAE40C-B27C-455A-B672-F234DD780948}\InprocServer32 -> C:\Users\cervenad\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.25.14205\x64\Microsoft.Teams.MeetingAddin.DLL (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.095.0518.0002\FileSyncShell64.dll [2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-04-05] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2023-05-09 09:47 - 2019-06-20 11:20 - 000884224 _____ (Firebird Project) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\fbclient.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000050688 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2013-11-15 00:47 - 2013-11-15 00:47 - 000066048 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2023-05-09 09:47 - 2019-06-20 11:14 - 001558016 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icudt30.dll
2023-05-09 09:47 - 2019-06-20 11:13 - 000935936 _____ (IBM Corporation and others) [File not signed] C:\Program Files\Firebird\Firebird_2_5\bin\icuuc30.dll
2023-05-09 09:44 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-06-18] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 10.42.31.4
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek Gaming GbE Family Controller -> rt640x64.sys

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Microsoft MPI\Bin\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files\Azure Data Studio\bin;C:\Program Files\dotnet\
HKU\S-1-5-21-2496437920-1329170045-526373181-1159\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-667896778-3875923744-3874593446-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-80-114141689-1879193004-1034857213-2089710861-3707162680\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-1505278109-670671082-1469591077-705002473-3960138673\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-909382125-310599901-4005563289-2766013183-973844813\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: )
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)


==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B6FAD8CF-6E8B-477F-B980-7D292AA47202}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{90DF03DC-6EA5-4FE7-9A22-7A486EF39F7A}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{00761E6C-ECE2-4258-8F1B-9FCFFBDF45C0}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{658650E7-4DD6-4C8E-A4EF-6E1C3591BD77}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF444C50-5EE7-4475-AF39-2C9B43B2D2EC}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{27733E69-0BF5-43CA-913D-6B27F0DB0376}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CD5554C4-4201-4236-B177-27010C825A4F}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CCD23F23-E99D-4B40-A6A3-662EE575AC4A}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3EC9DCBA-1726-46D1-B2C3-3DF5D6B88C52}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{1FD76081-4486-40CB-A673-022C0735F4F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F946DFB9-C280-42F3-AD8C-14B782865C6F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7B38F7EC-622B-4ACB-BFBA-AEBB510DE6B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{72A5D51C-6607-483C-9928-9FD5105AC341}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{7DE38987-455A-48EC-A460-4902DDD88F43}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{137227E8-48CB-4714-9364-54C28CBAA554}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3671BCF-9A61-4AFD-9C7A-7FB04467221B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9691B836-9A34-4A62-8952-BDDEFF534D1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{40111E4C-6CF1-43AA-8486-9AEA0CFC1ABD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3D01EBE3-B8B9-4322-AE2E-F61B8626DF88}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B4710AC3-A08B-44C7-BD1C-90D7AEDF4A95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3223610B-E73B-4B0A-8915-BDB191D6F635}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D351473-386B-492D-A032-855FC9CBCC97}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{42801A16-B68C-4FA5-AA84-8DE1E8657532}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.223.1125.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{56A84FC2-9806-4DCB-B724-8D72CF783A3D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E4B5CF59-CE7E-4A55-8E0C-316B1C92338A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DB3DAD22-D2D7-4872-A883-CC7539FD747C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{51686F0D-2D23-4256-A660-9917B8AEC55F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D599CAE4-AC1A-4CD4-9492-3420A2200933}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.83\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F04800E-F871-401B-9EE3-E88B5AC137BD}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{30D8CBB8-FA36-4F39-A86A-FB129AC07D26}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25153.1010.3727.5483_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C8343CF7-A6F1-4252-ADCF-EFF55E7DF54E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B741E080-377B-4B5B-A8F8-133F7DD08236}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (06/25/2025 01:53:11 PM) (Source: MSSQL$FENIX2019) (EventID: 30089) (User: )
Description: The fulltext filter daemon host (FDHost) process has stopped abnormally. This can occur if an incorrectly configured or malfunctioning linguistic component, such as a wordbreaker, stemmer or filter has caused an irrecoverable error during full-text indexing or query processing. The process will be restarted automatically.

Error: (06/25/2025 10:25:43 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (06/22/2025 10:26:17 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (06/19/2025 10:39:51 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (06/19/2025 07:15:55 AM) (Source: Microsoft-Windows-Folder Redirection) (EventID: 502) (User: ZSPRIBYSLAV)
Description: Nepodařilo se použít zásady a přesměrovat složku Desktop na \\zskola2\user-prac\polakovad\Plocha.
Možnosti přesměrování: 0x9021.
Došlo k následující chybě:Složku \\zskola2\user-prac\polakovad\Plocha nejde vytvořit..
Podrobnosti o chybě: Tento soubor není momentálně k dispozici pro použití v tomto počítači..

Error: (06/18/2025 03:21:54 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro ZSPRIBYSLAV\CERVENA-PC$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 18 Jun 2025 13:22:49 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 6481906d-e24a-445b-872b-fee9439657cf

Metoda: GET(954ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (06/17/2025 08:43:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program KB_PCB.exe verze 1.23.0.46 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: d84

Čas spuštění: 01dbdb5accc133ce

Čas ukončení: 12

Cesta k aplikaci: C:\Program Files (x86)\Profibanka\KB_PCB.exe

ID hlášení: 745055c6-3047-4d60-8788-1ce8e12558c3

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (06/16/2025 10:24:30 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).


System errors:
=============
Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BrYNSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BankAPI Seyfor byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Microsoft Update Health Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Firebird Server - DefaultInstance byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Print Scan Doctor Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/25/2025 01:53:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Firebird Guardian - DefaultInstance byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.


CodeIntegrity:
===============
Date: 2025-06-25 14:12:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2025-06-25 13:12:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends International, LLC. F14f 10/14/2021
Motherboard: Gigabyte Technology Co., Ltd. A520M S2H
Processor: AMD Ryzen 5 PRO 5650G with Radeon Graphics
Percentage of memory in use: 56%
Total physical RAM: 7550.34 MB
Available physical RAM: 3294.76 MB
Total Virtual: 13253.03 MB
Available Virtual: 7802.52 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:929.72 GB) (Free:576.2 GB) (Model: AMD-RAID Array 1 SCSI Disk Device) NTFS
Drive e: (Elements) (Fixed) (Total:2794.49 GB) (Free:2768.33 GB) (Model: WD Elements 2621 USB Device) NTFS

\\?\Volume{e129094d-2942-486f-b521-10b75f50b432}\ (Recovery tools) (Fixed) (Total:1 GB) (Free:0.41 GB) NTFS
\\?\Volume{7e5111be-5fc1-49a5-bc38-e8ea7f74b8e7}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 2794.5 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 15:04
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

EmptyTemp:
End
Uložte do \\zskola2\user-prac\cervenad\Plocha plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 20:06
od Zakov
Fix result of Farbar Recovery Scan Tool (x64) Version: 25-06-2025
Ran by polakovad (25-06-2025 20:14:45) Run:1
Running from \\zskola2\user-prac\cervenad\Plocha
Loaded Profiles: polakovad & dpadmin & MSSQLFDLauncher$FENIX2019 & SQLTELEMETRY$FENIX2019 & MSSQLLaunchpad$FENIX2019
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\cervenad\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
FirewallRules: [{605727E7-318C-4943-BD61-4C925A024053}] => (Allow) C:\Users\cervenad\AppData\Local\Temp\7zS7354\HPEasyStart\HP.EasyStart.exe => No File
FirewallRules: [{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{70A5288E-5853-40F6-A9DF-F5003EA27B0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{94BD3882-9609-43DC-93A7-BA5EDB39F885}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{8C81609B-725A-49B2-931C-FC9BDE7FE01E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{24B3F7ED-DB44-485B-A000-085140FB129E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{E95793B3-F517-435F-886B-791355DAAF20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{78685302-AE12-4ECD-BAC9-23448309F3A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{B141C95A-DE06-454F-ABCE-6097C6F79AF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{2DDC055A-AEB2-4749-B89D-D3E514253575}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{C43259AC-A4ED-408C-97AD-2D409C8458C9}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe => No File
FirewallRules: [{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{50D54DA6-3E55-497E-BC0C-16A95D07460F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{148E443C-7437-403C-8CB3-FE393F74CE0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{32ECEFD4-33B2-4A93-B217-7252B7824E72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED} => removed successfully
HKU\S-1-5-21-2496437920-1329170045-526373181-1159_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE => removed successfully
HKLM\Software\Classes\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{605727E7-318C-4943-BD61-4C925A024053}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6803757F-F7C8-42B1-ABBA-654CF83FE2A5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3EBB9177-8D8C-4C66-A0BE-55729DCA2587}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{70A5288E-5853-40F6-A9DF-F5003EA27B0A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{94BD3882-9609-43DC-93A7-BA5EDB39F885}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7CF1A0A1-DD7A-4CBE-B2B7-785E59DCA002}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{21D8F081-D594-43A7-9CE6-A05F2B9D0ACF}C:\users\cervenad\appdata\local\microsoft\teams\current\teams.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4BA2740B-61A0-4D5C-B0D3-C87C408A4C9D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8C81609B-725A-49B2-931C-FC9BDE7FE01E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0E0E11CD-E86F-4DE3-ADC1-7F3E831F2208}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{24B3F7ED-DB44-485B-A000-085140FB129E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E95793B3-F517-435F-886B-791355DAAF20}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{78685302-AE12-4ECD-BAC9-23448309F3A7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B141C95A-DE06-454F-ABCE-6097C6F79AF3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FCF7942E-277C-4F9C-8442-FD64CDF9ABE9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2DDC055A-AEB2-4749-B89D-D3E514253575}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C43259AC-A4ED-408C-97AD-2D409C8458C9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{92F6A6DE-78AA-41E7-9AA3-D51B72E0B5A8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2F8FC0EB-D8C5-4982-A0A4-C8B902099105}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50D54DA6-3E55-497E-BC0C-16A95D07460F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{148E443C-7437-403C-8CB3-FE393F74CE0C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{32ECEFD4-33B2-4A93-B217-7252B7824E72}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\\"fDenyTSConnections"="1" => value restored successfully
C:\ProgramData\NTUSER.pol => moved successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 19173523 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 11800351 B
Edge => 0 B
Chrome => 5246038508 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 20 B
systemprofile32 => 20 B
LocalService => 911057 B
NetworkService => 917439 B
cervenad => 764795682 B
administrator.ZSPRIBYSLAV => 779520627 B
knihovna => 779809515 B
administrator => 780523719 B
dpadmin => 782944396 B
MSSQLFDLauncher$FENIX2019 => 782944396 B
SQLTELEMETRY$FENIX2019 => 782944396 B
MSSQL$FENIX2019 => 782944396 B
MSSQLLaunchpad$FENIX2019 => 782944396 B

RecycleBin => 1077202 B
EmptyTemp: => 11.5 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:38:18 ====

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 20:30
od Rudy
Vše smazáno, log je již OK.

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 25 čer 2025 20:31
od Zakov
Zítra vyzkoušíme.

Díky moc!

Re: Pomalé PC, mnoho spojení ven do internetu

Napsal: 26 čer 2025 08:17
od Rudy
OK.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz