Prosím o pomoc s vyskakující reklamou

[Sobi]

Dobrý den,

prosím o pomoc s vyskakující reklamou, která se objevuje vpravo dole na obrazovce nad hodinami. Asi jsem na něco špatného klikl. Děkuji moc.

Níže je log z FRST :

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-05-2020 01
Ran by Jan (administrator) on JIRKA (01-06-2020 11:42:44)
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jan & Jirka
Platform: Windows 10 Pro Version 1809 17763.1039 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Foxit Software Incorporated -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(Google LLC -> Google LLC) C:\Users\Jirka\AppData\Local\Google\Chrome\Application\chrome.exe <10>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\JirkaClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Jirka\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rdpclip.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Seagull Scientific, Inc -> Seagull Scientific, Inc.) C:\Program Files\Seagull\BarTender Suite\BtSystem.Service.exe
(Seagull Scientific, Inc -> Seagull Scientific, Inc.) C:\Program Files\Seagull\BarTender Suite\Integration.Service.exe
(Seagull Scientific, Inc -> Seagull Scientific, Inc.) C:\Program Files\Seagull\BarTender Suite\Maestro.Service.exe
(Seagull Scientific, Inc -> Seagull Scientific, Inc.) C:\Program Files\Seagull\BarTender Suite\PrintScheduler.Service.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
0 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
0 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
0 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19111.24110.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
0 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\YourPhone.exe
0 C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20022.11011.0_x64__8wekyb3d8bbwe\Video.UI.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5694640 2017-03-29] (VIA Technologies Inc. -> VIA)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-06-16] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-1002822495-3348159901-391683250-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29072568 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1002822495-3348159901-391683250-1002\...\Run: [Google Update] => C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-23] (Google LLC -> Google LLC)
HKU\S-1-5-21-1002822495-3348159901-391683250-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29072568 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\hpcpp101: C:\Windows\System32\spool\prtprocs\x64\hpcpp101.dll [323584 2010-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\up003pp: C:\Windows\System32\spool\prtprocs\x64\up003pp.dll [119296 2015-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Windows x64\Print Processors\us008PC: C:\Windows\System32\spool\prtprocs\x64\us008pc.dll [52248 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\HP Fax Port: C:\WINDOWS\system32\hppfaxprintermon5.dll [27704 2014-04-28] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [120072 2016-07-25] (pdfforge GmbH -> pdfforge GmbH)
HKLM\...\Print\Monitors\up003 Langmon: C:\WINDOWS\system32\up003lm.dll [22528 2014-08-08] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\ux003 Langmon: C:\WINDOWS\system32\ux003lm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {21B45663-93D9-494E-975B-CCFC0B51E72F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002UA => C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe [156456 2019-04-04] (Google Inc -> Google LLC)
Task: {351A52A3-2CF8-400B-9AFA-D858190BB474} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4085BEDF-C0DC-4BE8-B41E-0D3D533B2E24} - System32\Tasks\Microsoft\Jirka\Jirka Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\JirkaC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {5029CD10-11F7-4D7A-A939-DE619DED4A29} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002Core => C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe [156456 2019-04-04] (Google Inc -> Google LLC)
Task: {50860610-ECAD-40B2-A252-0652921DB448} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5BBAD6DA-19CC-439D-8AF3-2689ECEE6A1F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6F9412B9-D3DF-4EED-A771-F3AC249B5FDA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7EDD8168-CA28-4DD8-81B1-9C91F3AD0EF8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24690360 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {81CADA01-B893-4295-8B12-F20D257F1393} - System32\Tasks\Microsoft\Jirka\Jirka Feature Updates Logon => C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\sdxhelper.exe [124752 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {83D4B7AD-3A58-4B8D-88B0-9BCC8949D92C} - System32\Tasks\Microsoft\Jirka\Jirka ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\JirkaC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {844748A9-6C31-4AD2-B8B2-DC692C306635} - System32\Tasks\Microsoft\Jirka\Jirka Feature Updates => C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\sdxhelper.exe [124752 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {CEA409DE-8AD3-46A6-9D81-BBE033390E04} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E6C5B8AE-410D-44DF-A232-452FA25F18DF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {EB8A097C-636F-4455-B2A1-9BFB1FB88592} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-04] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{c4ba4df9-8063-4670-97e7-890e6129ae4f}: [NameServer] 8.8.8.8,10.0.0.1

Internet Explorer:
==================
HKU\S-1-5-21-1002822495-3348159901-391683250-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-1002822495-3348159901-391683250-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1001 -> DefaultScope {42CFB9FD-61D2-4B02-958A-ECDC05297945} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1001 -> {42CFB9FD-61D2-4B02-958A-ECDC05297945} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1002 -> DefaultScope {63EEBAA1-B5ED-4223-953D-CA919622ADB9} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1002 -> {63EEBAA1-B5ED-4223-953D-CA919622ADB9} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Jirka\root\VFS\ProgramFilesX64\Microsoft Jirka\Jirka16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-29] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-29] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 BarTender Integration Service; C:\Program Files\Seagull\BarTender Suite\Integration.Service.exe [35088 2017-09-12] (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
R2 BarTender Print Scheduler; C:\Program Files\Seagull\BarTender Suite\PrintScheduler.Service.exe [32016 2017-09-12] (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
R2 BarTender System Service; C:\Program Files\Seagull\BarTender Suite\BtSystem.Service.exe [43280 2017-09-12] (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\JirkaClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2018-04-17] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-24] (HP) [File not signed]
R2 Maestro; C:\Program Files\Seagull\BarTender Suite\Maestro.Service.exe [239376 2017-09-12] (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5378320 2019-10-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7773712 2020-04-20] (TeamViewer Germany GmbH -> TeamViewer GmbH)
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies Inc. -> VIA Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-04] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 VIAHdAudAddService; C:\WINDOWS\system32\drivers\viahduaa.sys [701136 2015-06-22] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-05-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [394680 2020-05-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-06-01 10:52 - 2020-06-01 11:43 - 000020060 ____C C:\Users\Jirka\Desktop\FRST.txt
2020-06-01 10:52 - 2020-06-01 11:43 - 000000000 ____D C:\FRST
2020-06-01 10:51 - 2020-06-01 10:51 - 000000750 ____C C:\Users\Jirka\Desktop\Objednávky.lnk
2020-06-01 10:47 - 2020-06-01 10:47 - 002289152 _____ (Farbar) C:\Users\Jirka\Desktop\FRST64.exe
2020-06-01 10:28 - 2020-06-01 10:28 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-06-01 10:28 - 2020-06-01 10:28 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-06-01 10:27 - 2020-06-01 10:27 - 025859024 _____ (Piriform Software Ltd) C:\Users\Jirka\Downloads\ccsetup567.exe
2020-05-28 15:13 - 2020-05-28 15:13 - 000027060 _____ C:\Users\Jirka\Desktop\Cenová nabídka dodávek obalového materiálu + drogerie Zeman 28.5-2020_.xlsx
2020-05-27 11:14 - 2020-05-29 14:23 - 000032999 _____ C:\Users\Jirka\Desktop\drogerka tab..xlsx
2020-05-22 13:40 - 2020-05-26 15:13 - 000030678 _____ C:\Users\Jirka\Desktop\drogerie poptávky.xlsx
2020-05-15 07:50 - 2020-05-15 07:50 - 000011902 _____ C:\Users\Jirka\Desktop\HOSTI 15.5..xlsx
2020-05-14 10:37 - 2020-05-15 07:30 - 000019541 _____ C:\Users\Jirka\Desktop\Nicator 14.5..xlsx
2020-05-14 07:03 - 2020-05-14 07:03 - 000000000 ___HD C:\OneDriveTemp
2020-05-13 11:46 - 2020-05-13 11:46 - 000062174 _____ C:\Users\Jirka\Desktop\Kopie - Bezpohybovky _13.05.2020.xlsx
2020-05-12 15:34 - 2020-05-22 11:07 - 000016867 _____ C:\Users\Jirka\Desktop\Kopie - Drogistickýý_sortiment_poptýývka_5-2020 (004).xlsx
2020-05-07 13:56 - 2020-05-07 13:56 - 000000977 ____C C:\Users\Jirka\Desktop\Kontejner CZ.lnk
2020-05-06 08:14 - 2020-05-06 08:14 - 000010907 _____ C:\Users\Jirka\Desktop\Kopie - Aktuální stav skladu.xlsx
2020-05-05 09:37 - 2020-05-05 12:51 - 000012579 _____ C:\Users\Jirka\Desktop\Propak květen.xlsx
2020-05-04 11:44 - 2020-05-04 11:44 - 000011984 ____C C:\Users\Jirka\Desktop\hosti vzor.xlsx

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-06-01 11:42 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-01 11:42 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2020-06-01 11:19 - 2016-07-26 11:28 - 000000000 ___DC C:\Users\Jirka\Documents\Soubory aplikace Outlook
2020-06-01 10:41 - 2019-02-12 11:31 - 001609722 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-01 10:41 - 2018-09-15 19:39 - 000682526 _____ C:\WINDOWS\system32\perfh005.dat
2020-06-01 10:41 - 2018-09-15 19:39 - 000137244 _____ C:\WINDOWS\system32\perfc005.dat
2020-06-01 10:35 - 2019-02-12 11:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-06-01 10:35 - 2016-07-25 23:59 - 000000000 ___RD C:\Users\Jirka\OneDrive
2020-06-01 10:34 - 2018-09-15 08:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-06-01 10:30 - 2019-01-28 07:51 - 000000000 ___DC C:\WINDOWS\Panther
2020-06-01 10:30 - 2016-07-25 23:48 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-06-01 10:28 - 2017-04-03 15:59 - 000000000 ____D C:\Program Files\CCleaner
2020-06-01 08:37 - 2017-12-20 08:05 - 000000000 ___DC C:\Users\Jirka\AppData\Local\Packages
2020-06-01 08:26 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-06-01 08:26 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-06-01 08:05 - 2019-02-12 11:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-06-01 07:32 - 2019-08-23 08:19 - 000000649 ____C C:\Users\Jirka\Desktop\Maguire server - přihlášení uživatele.website
2020-05-29 07:00 - 2019-02-12 11:34 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1002822495-3348159901-391683250-1002
2020-05-29 07:00 - 2019-02-12 11:25 - 000002364 ____C C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-05-28 15:12 - 2019-09-02 11:25 - 000000000 ___DC C:\Users\Jirka\Desktop\staré - Marci
2020-05-28 12:56 - 2019-04-04 09:31 - 000002503 ____C C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-28 12:56 - 2019-04-04 09:31 - 000002466 ____C C:\Users\Jirka\Desktop\Google Chrome.lnk
2020-05-28 07:08 - 2019-08-22 08:35 - 000000000 ___DC C:\Users\Jirka\Desktop\Archivace MAQUIRE
2020-05-27 08:33 - 2019-12-17 11:16 - 000013946 ____C C:\Users\Jirka\Desktop\Kontejner USD.xlsx
2020-05-26 15:16 - 2020-01-31 09:01 - 000000000 ___DC C:\Users\Jirka\Desktop\SPECIFIKACE
2020-05-26 15:16 - 2020-01-13 13:47 - 000000000 ___DC C:\Users\Jirka\Desktop\certifikáty
2020-05-26 15:15 - 2020-02-20 13:02 - 000000000 ___DC C:\Users\Jirka\Desktop\poptávky
2020-05-26 13:59 - 2018-05-28 07:04 - 000000000 ___DC C:\Users\Jirka\AppData\Roaming\Foxit Software
2020-05-26 12:26 - 2016-07-26 12:24 - 000000034 ____H C:\WINDOWS\sys6153
2020-05-26 12:26 - 2016-07-26 12:24 - 000000034 ____H C:\WINDOWS\stmp2025
2020-05-26 12:26 - 2016-07-26 12:24 - 000000034 ____H C:\WINDOWS\kds1005
2020-05-26 12:26 - 2016-07-26 12:24 - 000000034 ____H C:\WINDOWS\drvr491
2020-05-25 07:02 - 2016-10-18 15:54 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-22 11:45 - 2019-12-09 07:53 - 000000000 ___DC C:\Users\Jirka\Desktop\foto
2020-05-22 07:03 - 2017-06-21 16:57 - 000000000 ____D C:\Program Files (x86)\Microsoft Jirka
2020-05-14 13:46 - 2019-04-03 14:44 - 000012438 _____ C:\Users\Jirka\Desktop\TIR.xlsx
2020-05-13 07:05 - 2016-07-26 12:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-05-13 07:01 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-13 07:01 - 2016-07-26 12:06 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-05-04 07:01 - 2018-03-01 13:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


A tady je Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-05-2020 01
Ran by Jan (01-06-2020 11:44:34)
Running from C:\Users\Jirka\Desktop
Windows 10 Pro Version 1809 17763.1039 (X64) (2019-02-12 09:34:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

$BarTender_Security$ (S-1-5-21-1002822495-3348159901-391683250-1008 - Limited - Enabled)
$Printer_Maestro$ (S-1-5-21-1002822495-3348159901-391683250-1013 - Limited - Enabled)
Administrator (S-1-5-21-1002822495-3348159901-391683250-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1002822495-3348159901-391683250-503 - Limited - Disabled)
Guest (S-1-5-21-1002822495-3348159901-391683250-501 - Limited - Disabled)
Jirka (S-1-5-21-1002822495-3348159901-391683250-1002 - Limited - Enabled) => C:\Users\Jirka
Jan (S-1-5-21-1002822495-3348159901-391683250-1001 - Administrator - Enabled) => C:\Users\Jan
WDAGUtilityAccount (S-1-5-21-1002822495-3348159901-391683250-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{C788B026-20BD-4E96-B698-533F1D6C5013}) (Version: 7.2.4 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.009.20065 - Adobe Systems Incorporated)
BarTender 2016 R5 (HKLM\...\{6D7A7476-9B22-4531-923C-A74AFCD8E7BF}) (Version: 11.0.3132 - Seagull Scientific) Hidden
BarTender 2016 R5 (HKLM\...\BarTender Suite) (Version: 11.0.3132 - Seagull Scientific)
Brother MFL-Pro Suite MFC-L2700DW series (HKLM-x32\...\{F8ECC2FD-CE2B-4ED4-BDCC-90D0D34206FD}) (Version: 1.0.3.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.67 - Piriform)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
D-Link SmartConsole Utility (HKLM-x32\...\{B562C735-BAB2-473D-AF3C-80D1C8284020}) (Version: 2.10.02 - D-Link)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.1.0.5096 - Foxit Software Inc.)
Google Chrome (HKU\S-1-5-21-1002822495-3348159901-391683250-1002\...\Google Chrome) (Version: 83.0.4103.61 - Google LLC)
HP LaserJet Professional M1530 MFP Series (HKLM-x32\...\{74280B5D-A0AF-46c5-9C85-D9EA078262F1}) (Version: 15.0.15188.928 - Hewlett-Packard)
HP LJ M1530 MFP Series HP Scan (HKLM-x32\...\{C05002F1-06F8-4A15-B6F8-E4DC655C28AA}) (Version: 1.0.302.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPLaserJetHelp_LearnCenter (HKLM-x32\...\{B2AA0F22-E167-4C4A-BAE2-E0025028E61B}) (Version: 1.02.0000 - Hewlett-Packard)
hppFaxDrvM1530 (HKLM-x32\...\{E34509E5-FF1D-48EB-807F-D8E24D1AA2B0}) (Version: 004.000.00001 - Hewlett-Packard) Hidden
hppLaserJetService (HKLM-x32\...\{0C4C3664-157A-4D69-B474-31EBF2EE1AE3}) (Version: 009.033.00926 - Hewlett-Packard) Hidden
hppM1530LaserJetService (HKLM-x32\...\{A1D53426-D6F3-4886-A72B-E1A8C82259E9}) (Version: 001.008.00477 - Hewlett-Packard) Hidden
hppSendFaxM1530 (HKLM-x32\...\{A340E04F-6152-4058-B5BD-A202C2B30EF1}) (Version: 004.000.00001 - Hewlett-Packard) Hidden
hppTLBXFXM1530 (HKLM-x32\...\{9112FEA9-0F64-453C-BEA5-9A782F87EDAA}) (Version: 001.012.00948 - Hewlett-Packard) Hidden
I.R.I.S. OCR (HKLM-x32\...\{F20A04CF-5BE6-404A-9295-D59046238245}) (Version: 12.3.6.6 - HP)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Microsoft Jirka 2016 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1002822495-3348159901-391683250-1001\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1002822495-3348159901-391683250-1002\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.2.0 - Mozilla)
Mozilla Thunderbird 52.2.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 52.2.0 (x86 cs)) (Version: 52.2.0 - Mozilla)
NirSoft NK2Edit (HKLM-x32\...\NirSoft NK2Edit) (Version: - )
Jirka 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Jirka 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Jirka 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Jirka 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.3.2 - pdfforge GmbH)
Pervasive PSQL v11 Client (32-bit) (HKLM-x32\...\{0A3238D7-AA32-1130-B717-F3E3F18B4A8C}) (Version: 11.30.061 - Pervasive Software) Hidden
Pervasive PSQL v11 Client (32-bit) SP3 (HKLM-x32\...\Pervasive PSQL v11 Client (32-bit)) (Version: 11.30.061 - Pervasive Software)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.19.726.2013 - Realtek)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.51.00(2014.06.19) - Samsung Electronics Co., Ltd.)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.252065 - TeamViewer)
ToolboxProxy (HKLM-x32\...\{B64E0B43-A452-4B25-93DD-E5C6645A534A}) (Version: 035.024.006 - HP) Hidden
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-15] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.442\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.422\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{62634D95-960B-4834-8E71-A70408AD8FD9}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.34.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Jirka\AppData\Local\Google\Chrome\Application\83.0.4103.61\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.302\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-04-16] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2016-02-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-04-16] (Foxit Software Incorporated -> Foxit Software Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2017-09-12 12:19 - 2017-09-12 12:19 - 000827392 _____ ( (Seagull Scientific, Inc.) [File not signed]) [File is in use ] C:\Program Files\Seagull\BarTender Suite\DriverInteropLibrary.dll
2019-03-29 13:27 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000556544 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Interop.BarTender\b558f971555b5bfc7d5f78bf179884af\Interop.BarTender.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000310784 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Interop.Dri41e2da2e#\264e63c4aeb6e977514fe420cb94b12e\Interop.DriverAutomationLibrary.ni.dll
2020-05-14 12:46 - 2020-05-14 12:46 - 000294912 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Interop.MSClusterLib\4282ee108c924bf5d063ddece7ea55c6\Interop.MSClusterLib.ni.dll
2017-03-29 09:03 - 2005-04-22 06:36 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2017-03-29 09:04 - 2013-06-12 20:06 - 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2017-03-29 09:04 - 2010-09-29 18:07 - 000180224 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2019-03-29 13:28 - 2013-10-10 22:55 - 002040320 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2017-05-22 20:19 - 2014-06-16 16:45 - 000137728 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2017-05-22 20:19 - 2014-06-16 17:03 - 000083968 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2017-05-22 20:19 - 2014-06-16 17:03 - 017955328 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2017-05-22 20:19 - 2014-06-16 17:04 - 000080384 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLEng.dll
2017-03-29 09:03 - 2013-03-08 08:44 - 000087040 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2009-09-16 18:44 - 2009-09-16 18:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll
2009-09-16 18:45 - 2009-09-16 18:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll
2009-09-16 11:44 - 2009-09-16 11:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2009-09-16 18:45 - 2009-09-16 18:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll
2020-04-19 10:02 - 2020-04-19 10:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\AppvIsvSubsystems32.dll
2020-04-19 10:02 - 2020-04-19 10:02 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\c2r32.dll
2020-05-14 12:46 - 2020-05-14 12:46 - 001556480 _____ (Microsoft® Corporation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Data83d0a0fd#\5454be15ba34bf51038daadc1b88787f\System.Data.SqlServerCe.ni.dll
2020-05-14 12:36 - 2020-05-14 12:36 - 002274304 _____ (NLog) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NLog\fa017d5a59f8dfd1b1cd4a83c9729b61\NLog.ni.dll
2020-05-14 12:39 - 2020-05-14 12:39 - 000210944 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\BtSystem.Client\93b1ab75ed612c56473861d6e2921fe2\BtSystem.Client.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000503808 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\BtSystem.DataAccess\d672a17fbf5c90e14d33e269e12a15e0\BtSystem.DataAccess.ni.dll
2020-05-14 12:39 - 2020-05-14 12:39 - 000295424 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\BtSystem.Interfaces\4a10205ef14afbd28194f42b81f6d5fb\BtSystem.Interfaces.ni.dll
2020-05-14 12:39 - 2020-05-14 12:39 - 000040960 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\BtSystem.Network\66622224c43cd77575a2aba10dbe5551\BtSystem.Network.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 001105920 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\BtSystem.Server\2b2eec3d3e859a313af4aacc357cf457\BtSystem.Server.ni.dll
2020-05-14 12:39 - 2020-05-14 12:39 - 000392192 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\BtSystem.Strings\2d8f6d510243fb9bcff77cd2e1b8d3a1\BtSystem.Strings.ni.dll
2020-05-14 12:39 - 2020-05-14 12:39 - 000262656 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\BtSystem.Support\0c3be0b2eed39355da414630381e5c35\BtSystem.Support.ni.dll
2020-05-14 12:39 - 2020-05-14 12:39 - 000623104 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\BtSystem.UI\e013439157997b0951bb81a803d3f85c\BtSystem.UI.ni.dll
2020-05-14 12:46 - 2020-05-14 12:46 - 000384512 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DriverInteropLibrary\c26d3545344cd06563c888d65c1af319\DriverInteropLibrary.ni.dll
2020-05-14 12:46 - 2020-05-14 12:46 - 000130560 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\EventSystem.Router\c155bd521c25f388b6bbc3c939f27494\EventSystem.Router.ni.dll
2020-05-14 12:46 - 2020-05-14 12:46 - 000126464 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Maestro.Clustering\717b9fad72e603dfd0054462e18aaf54\Maestro.Clustering.ni.dll
2020-05-14 12:42 - 2020-05-14 12:42 - 000116736 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Maestro.Interface\2f01d335c65243a6ff6a9ab5d359e680\Maestro.Interface.ni.dll
2020-05-14 12:42 - 2020-05-14 12:42 - 000824832 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Maestro.Library\8acb4e0b6f1c1dd47504890ef3e9e0a8\Maestro.Library.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 001742848 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Bar52f6c96c#\fa6e3aec6109c85149db4099164e0b9f\Seagull.BarTender.Print.ni.dll
2020-05-14 12:34 - 2020-05-14 12:34 - 005080064 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Framework\94686fb41049130b6665fd01c7ee75ec\Seagull.Framework.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 003716096 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Integrations\5356369624aaadc4369af1a261570a62\Seagull.Integrations.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000426496 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Interop\0ddf5ada15c7fcceb6ceef646dc5d7b0\Seagull.Interop.ni.dll
2020-05-14 12:39 - 2020-05-14 12:39 - 001179136 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Libe73a82db#\55c8feeaf28a9caaa0ae19dfd7f75d2c\Seagull.Librarian.Core.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000124928 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Performance\042dcab85ce0be87874b5e5a8431c773\Seagull.Performance.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000926208 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Repository\e210ec976af58775ac0feea79eaa66e2\Seagull.Repository.ni.dll
2020-05-14 12:45 - 2020-05-14 12:45 - 000043008 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser0cdd02dd#\26854fe0ea04085d612f991be0913d58\Seagull.Services.Performance.Server.ni.dll
2020-05-14 12:45 - 2020-05-14 12:45 - 000074752 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser1943360d#\05d53975d850b4bd6be1644a297aa2e2\Seagull.Services.Hosts.Integration.ni.dll
2020-05-14 12:45 - 2020-05-14 12:45 - 000131072 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser25568677#\b4f89b0a470e907a671e6198c4172b7c\Seagull.Services.StorageSite.Server.ni.dll
2020-05-14 12:45 - 2020-05-14 12:45 - 000029696 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser3c1f8901#\d095fe7cacfcfdde45ed5df31c6d54b2\Seagull.Services.Hosts.StorageSite.ni.dll
2020-05-14 12:45 - 2020-05-14 12:45 - 000256000 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser56c8031c#\54ed5d07f3e0750e8333d81aadeef9c9\Seagull.Services.Deployment.Server.ni.dll
2020-05-14 12:42 - 2020-05-14 12:42 - 000123392 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser6016f0bf#\6aaa490ab575f48889bb0a91f30cd7a7\Seagull.Services.Integration.Contracts.ni.dll
2020-05-14 12:44 - 2020-05-14 12:44 - 000161792 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser67342d28#\43f3bc5ed005887050ac85e05ec5036f\Seagull.Services.PrintScheduler.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000382464 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser68508cfb#\bb6f7fc3c9d2ada3b430e05f4a0e00b2\Seagull.Services.Integration.Server.ni.dll
2020-05-14 12:45 - 2020-05-14 12:45 - 000061952 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser7500b1f8#\1b541c24c3221d769e8cba7b20b8a4ac\Seagull.Services.Deployment.Contracts.ni.dll
2020-05-14 12:45 - 2020-05-14 12:45 - 000203776 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Ser99e01c43#\46e2232223266b3d6dddb94c6f4fa88e\Seagull.Services.PrintScheduler.Server.ni.dll
2020-05-14 12:44 - 2020-05-14 12:44 - 000090624 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Sera65c0687#\eee6538f1a5f293163d666aa09f1405a\Seagull.Services.PrintScheduler.Contracts.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000030720 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Serccbfad00#\ba7150648e0cc02fbe82dfe2c1e13ea5\Seagull.Services.StorageSite.Accounts.ni.dll
2020-05-14 12:45 - 2020-05-14 12:45 - 000046080 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Serd4a3fad5#\ebcfba09d018c3368cd7646811777663\Seagull.Services.Hosts.PrintScheduler.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000044032 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Seref26334d#\4113cf2f26be95a37f586e9380d42cbf\Seagull.Services.Hosts.Integration.Messaging.ni.dll
2020-05-14 12:45 - 2020-05-14 12:45 - 000035840 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Serf42f3459#\17636882297b7ef9a255e344760a5bb5\Seagull.Services.Performance.Contracts.ni.dll
2020-05-14 12:43 - 2020-05-14 12:43 - 000083456 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Serf533a9b3#\13020b95a3216d514f2eacb570a9123b\Seagull.Services.StorageSite.Contracts.ni.dll
2020-05-14 12:42 - 2020-05-14 12:42 - 000207872 _____ (Seagull Scientific, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Seagull.Serfcd89b0d#\a374261b836ca4f8bd45340b482deee7\Seagull.Services.Integration.Management.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Jirka\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 09:24 - 2015-10-30 09:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Pervasive Software\PSQL\bin\;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1002822495-3348159901-391683250-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jan\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-1002822495-3348159901-391683250-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 8.8.8.8 - 10.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-1002822495-3348159901-391683250-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1002822495-3348159901-391683250-1001\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{5469A4B2-875D-41B2-BC9B-EAC82BE07ADD}\\server2012\magis\magic940\mgrntw.exe] => (Block) \\server2012\magis\magic940\mgrntw.exe => No File
FirewallRules: [TCP Query User{5AD272AE-0D9D-489B-BC58-6EDBED2AF571}\\server2012\magis\magic940\mgrntw.exe] => (Block) \\server2012\magis\magic940\mgrntw.exe => No File
FirewallRules: [{142B30A5-DB36-44FD-967F-1A628583AA90}] => (Allow) C:\Program Files\Seagull\BarTender Suite\Maestro.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{8F17B2EA-CC54-4D6A-A723-A4573AA54A34}] => (Allow) C:\Program Files\Seagull\BarTender Suite\Maestro.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{45E7250A-B6A1-48BC-9B93-FF98D744D900}] => (Allow) C:\Program Files\Seagull\BarTender Suite\Maestro.Service.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{86D15ED9-E6DB-43FD-B032-BE67EC456267}] => (Allow) C:\Program Files\Seagull\BarTender Suite\Maestro.Service.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{E3F0D7BA-FC1C-4E0E-9D73-AD321638B379}] => (Allow) C:\Program Files\Seagull\BarTender Suite\SystemDatabaseWizard.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{513D8CC6-69E2-4166-8798-ADC6419E23EE}] => (Allow) C:\Program Files\Seagull\BarTender Suite\SystemDatabaseWizard.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{443FB479-C599-4E52-A584-336840036DAA}] => (Allow) C:\Program Files\Seagull\BarTender Suite\AdminConsole.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{685C91E1-E877-4FE4-96A9-796D265B50B6}] => (Allow) C:\Program Files\Seagull\BarTender Suite\AdminConsole.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{79C01907-DA71-474D-9314-9E5049AF1318}] => (Allow) C:\Program Files\Seagull\BarTender Suite\ReprintConsole.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{831DBE99-60C9-455B-B784-AEE5CB636517}] => (Allow) C:\Program Files\Seagull\BarTender Suite\ReprintConsole.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{C4F76467-C4DA-4E97-A086-A8F5E539D80B}] => (Allow) C:\Program Files\Seagull\BarTender Suite\HistoryExplorer.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{76233B93-70CF-4B6D-B475-E316766835E1}] => (Allow) C:\Program Files\Seagull\BarTender Suite\HistoryExplorer.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{43306B38-6C03-42CF-87E3-5AA638AA792C}] => (Allow) C:\Program Files\Seagull\BarTender Suite\IntegrationBuilder.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{CED55C2F-51B2-48C9-86C4-6FD13AD3EAAE}] => (Allow) C:\Program Files\Seagull\BarTender Suite\IntegrationBuilder.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{CA267912-73EA-47FE-9D8D-3CC07F4CB1C7}] => (Allow) C:\Program Files\Seagull\BarTender Suite\Integration.Service.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{E4AAEDF3-0A64-4FEB-97BC-9471C6A86200}] => (Allow) C:\Program Files\Seagull\BarTender Suite\Integration.Service.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{E4687013-FE9D-4008-83C3-F78623FB7C97}] => (Allow) C:\Program Files\Seagull\BarTender Suite\PrintScheduler.Service.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{D9BA6CCB-4757-4AC6-8907-F82DA5292396}] => (Allow) C:\Program Files\Seagull\BarTender Suite\PrintScheduler.Service.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{79EA2581-0785-436C-B222-241C4366BCA2}] => (Allow) C:\Program Files\Seagull\BarTender Suite\BtSystem.Service.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [{BEF77CD0-8BAB-45D3-8070-E76FD3991F70}] => (Allow) C:\Program Files\Seagull\BarTender Suite\BtSystem.Service.exe (Seagull Scientific, Inc -> Seagull Scientific, Inc.)
FirewallRules: [UDP Query User{C2218C6A-EB3B-4906-AC6A-BD2071EB3AED}C:\program files (x86)\d-link smartconsole utility\d-link smartconsole utility.exe] => (Allow) C:\program files (x86)\d-link smartconsole utility\d-link smartconsole utility.exe (D-Link) [File not signed]
FirewallRules: [TCP Query User{C22FF0C6-10D7-462F-B83D-401A32F49EFF}C:\program files (x86)\d-link smartconsole utility\d-link smartconsole utility.exe] => (Allow) C:\program files (x86)\d-link smartconsole utility\d-link smartconsole utility.exe (D-Link) [File not signed]
FirewallRules: [{650378D2-8DE4-4AF5-9EA0-1D768BC16DF1}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{0BF4691A-5D0E-4D89-809A-0F40F9AC5A40}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{7F141C77-E261-4584-A1ED-7D83DF930FBC}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{6DA86DC0-53B2-4128-B7E2-2785440F54B8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{5F70089A-FE9F-40E0-9EC6-67A66DD8020B}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{84C2DF0D-762B-456C-86C7-444C7B54F175}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{8DDC01DE-2200-4E57-819A-09B01EB279A5}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{5125E0E7-5CF9-4460-B471-064988BC5EBE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{D83465BC-221E-4070-B991-256751F30777}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{B1CF1D26-81FB-481F-8A87-4467C2FD0102}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{40885082-403A-45F5-8C1E-66DFD508B280}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{45C4CF29-A90F-4392-9823-001A66840C50}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{4E1B79F9-CA1F-45EF-BE8D-062B5BFC36E1}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{B25A1D37-31B6-444C-8088-7011C05B2FB9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{7F19BAA4-1878-4884-8342-9FF60588AD5A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{47654B5C-E229-4C78-9EE6-9A27D30022F8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{8291320A-3B0A-4B78-9543-95536B0ADA8E}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{5D293AFA-1841-445B-A10C-2F457C6BAA54}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [UDP Query User{E09E4AC4-6A89-4CF4-A1AC-F4D21A8CC838}\\10.0.0.163\magis\unipaas19\unirte.exe] => (Allow) \\10.0.0.163\magis\unipaas19\unirte.exe => No File
FirewallRules: [TCP Query User{481D3A98-551D-4717-915C-878F15CF5EB0}\\10.0.0.163\magis\unipaas19\unirte.exe] => (Allow) \\10.0.0.163\magis\unipaas19\unirte.exe => No File
FirewallRules: [{D3249BBD-3717-4917-958B-7B7D906726D7}] => (Allow) C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe (Pervasive Software Inc. -> Pervasive Software Inc.)
FirewallRules: [TCP Query User{4D87D29A-E71D-447A-98A0-8E1AC425CC24}\\server2012\magis\unipaas19\unirte.exe] => (Block) \\server2012\magis\unipaas19\unirte.exe => No File
FirewallRules: [UDP Query User{0BB76175-071C-48E1-B4DF-2B1A24EFCF93}\\server2012\magis\unipaas19\unirte.exe] => (Block) \\server2012\magis\unipaas19\unirte.exe => No File
FirewallRules: [{9F84196A-0DD4-4FFC-A12A-D5BE065563A3}] => (Allow) C:\Program Files (x86)\Brother\Brmfl14d\FAXRX.EXE (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{EFF178B3-C5D8-41F7-9913-D9FF0EC5BDFC}] => (Allow) LPort=54925
FirewallRules: [TCP Query User{BBF3CBC9-3147-4A5A-8E46-0D3B087BFE9F}C:\users\jiri\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\jiri\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{F80B6B1E-BEF3-4D51-8877-5BA1BD6C5A2D}C:\users\jiri\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\jiri\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{BBB43DD9-426C-4A11-A7F9-D34C009B5FAF}] => (Allow) C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{59D73357-2C7C-4382-875E-DB8C312202FA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{639D7D1E-76A7-427B-A0AA-7F6C1AE0CB71}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{01F005E1-BBB7-4B7B-8579-1CDEB16A7EC4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{61236751-1A91-40DE-9280-F3A20925FB71}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{9090E92F-E078-442D-845D-DDEAA5AF06D7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4244D6E3-D5E7-4FCC-84D0-DA0D7B2CE6E1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3D2E3E30-9458-48F9-81D1-61CCA11506A6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{76802B56-43FA-43F1-B327-12BC9FAD1A18}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BC7BDEB2-CAC9-4320-B9CE-C16A141477F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D70F208D-A197-48C3-BF73-57E36C1EC609}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B922D154-DC17-41EB-AEA0-EF11F70BD26F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{914E0D0C-E0C5-45F7-96B4-AE3494092EF0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:111.24 GB) (Free:4.15 GB) (4%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/01/2020 10:39:04 AM) (Source: Microsoft Jirka 16) (EventID: 2000) (User: )
Description: Microsoft Outlook: Accepted Safe Mode action : Naposledy se nepodařilo spustit Outlook. Problém byste mohli odstranit pomocí nouzového režimu, některé funkce ale v tomto režimu nemusí být dostupné.

Chcete použít spuštění v nouzovém režimu?.
Accepted Safe Mode action : Microsoft Outlook.

Error: (06/01/2020 10:18:15 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Users\Jirka\AppData\Local\Microsoft\Outlook\~jiri@sapler.cz.ost.tmp z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Microsoft Outlook.

Program: Microsoft Outlook
Soubor: C:\Users\Jirka\AppData\Local\Microsoft\Outlook\~jiri@sapler.cz.ost.tmp

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C000007F
Typ disku: 3

Error: (06/01/2020 10:18:15 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: OUTLOOK.EXE, verze: 16.0.12730.20270, časové razítko: 0x5eb5c44b
Název chybujícího modulu: VCRUNTIME140.dll, verze: 14.16.27033.0, časové razítko: 0x5d30ea7c
Kód výjimky: 0xc0000006
Posun chyby: 0x00002a30
ID chybujícího procesu: 0x25d0
Čas spuštění chybující aplikace: 0x01d637ed327f8413
Cesta k chybující aplikaci: C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\OUTLOOK.EXE
Cesta k chybujícímu modulu: C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\VCRUNTIME140.dll
ID zprávy: ca906041-72c2-4b1d-99bf-af354d869105
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/01/2020 10:17:33 AM) (Source: ESENT) (EventID: 481) (User: )
Description: DllHost (10016,D,0) Microsoft.Windows.Cortana_cw5n1h2txyewy_NOEDP_LEGACY_IDB: Pokus o čtení ze souboru C:\Users\Jirka\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.edb na posunu 458752 (0x0000000000070000) o 32768 (0x00008000) bajtů po 0.005 sekundách selhal. Došlo k systémové chybě 112 (0x00000070): Na disku není dost místa. . Operace čtení selže a dojde k chybě -1808 (0xfffff8f0). Pokud s tím budou dál problémy, může být soubor poškozený a budete ho možná muset obnovit z předchozí zálohy.

Error: (06/01/2020 10:16:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program OUTLOOK.EXE verze 16.0.12730.20270 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: aac

Čas spuštění: 01d637ec3633e685

Čas ukončení: 69

Cesta k aplikaci: C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\OUTLOOK.EXE

ID hlášení: 90485dc7-aa57-4347-8bfc-7e0085e8cda6

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Cross-thread

Error: (06/01/2020 10:11:05 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Users\Jirka\AppData\Local\Microsoft\Outlook\~jiri@sapler.cz.ost.tmp z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Microsoft Outlook.

Program: Microsoft Outlook
Soubor: C:\Users\Jirka\AppData\Local\Microsoft\Outlook\~jiri@sapler.cz.ost.tmp

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C000007F
Typ disku: 3

Error: (06/01/2020 10:11:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: OUTLOOK.EXE, verze: 16.0.12730.20270, časové razítko: 0x5eb5c44b
Název chybujícího modulu: VCRUNTIME140.dll, verze: 14.16.27033.0, časové razítko: 0x5d30ea7c
Kód výjimky: 0xc0000006
Posun chyby: 0x00002a30
ID chybujícího procesu: 0xfec
Čas spuštění chybující aplikace: 0x01d637ec25dbb5d3
Cesta k chybující aplikaci: C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\OUTLOOK.EXE
Cesta k chybujícímu modulu: C:\Program Files (x86)\Microsoft Jirka\root\Jirka16\VCRUNTIME140.dll
ID zprávy: f1593635-88df-47e8-a6e4-e6013e2a781b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/01/2020 10:10:46 AM) (Source: Microsoft Jirka 16) (EventID: 2000) (User: )
Description: Microsoft Outlook: Accepted Safe Mode action : Naposledy se nepodařilo spustit Outlook. Problém byste mohli odstranit pomocí nouzového režimu, některé funkce ale v tomto režimu nemusí být dostupné.

Chcete použít spuštění v nouzovém režimu?.
Accepted Safe Mode action : Microsoft Outlook.


System errors:
=============
Error: (06/01/2020 11:12:44 AM) (Source: DCOM) (EventID: 10016) (User: JIRKA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
a APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
uživateli JIRKA\Jirka (SID: S-1-5-21-1002822495-3348159901-391683250-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/01/2020 11:12:44 AM) (Source: DCOM) (EventID: 10016) (User: JIRKA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
a APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
uživateli JIRKA\Jirka (SID: S-1-5-21-1002822495-3348159901-391683250-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/01/2020 11:12:44 AM) (Source: DCOM) (EventID: 10016) (User: JIRKA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
a APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
uživateli JIRKA\Jirka (SID: S-1-5-21-1002822495-3348159901-391683250-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/01/2020 10:52:55 AM) (Source: DCOM) (EventID: 10016) (User: JIRKA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
a APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
uživateli JIRKA\Jirka (SID: S-1-5-21-1002822495-3348159901-391683250-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/01/2020 10:52:55 AM) (Source: DCOM) (EventID: 10016) (User: JIRKA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
a APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
uživateli JIRKA\Jirka (SID: S-1-5-21-1002822495-3348159901-391683250-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/01/2020 10:52:55 AM) (Source: DCOM) (EventID: 10016) (User: JIRKA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
a APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
uživateli JIRKA\Jirka (SID: S-1-5-21-1002822495-3348159901-391683250-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/01/2020 10:52:18 AM) (Source: DCOM) (EventID: 10016) (User: JIRKA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
a APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
uživateli JIRKA\Jirka (SID: S-1-5-21-1002822495-3348159901-391683250-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/01/2020 10:52:18 AM) (Source: DCOM) (EventID: 10016) (User: JIRKA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
a APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
uživateli JIRKA\Jirka (SID: S-1-5-21-1002822495-3348159901-391683250-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2020-05-14 14:38:24.514
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {445087CF-08FF-470B-A8F1-44BC26E2A6DC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-05-14 14:03:32.955
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1D2412B4-A579-4DA6-BD8B-6104F5709DC1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-05-14 12:51:09.469
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {CAAD6BF9-75FE-4985-BF18-9A564B985A59}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-05-14 12:34:47.479
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {CE37AE69-F4E6-416E-BD81-77E77351660D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-05-13 12:14:49.647
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {32394F30-331C-453A-B1A6-F2014F6D27B6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-06-01 10:10:04.691
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.317.373.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17100.2
Kód chyby: 0x80070643
Popis chyby ři instalaci došlo k závažné chybě.

Date: 2020-06-01 10:10:04.579
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.317.373.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17100.2
Kód chyby: 0x80070070
Popis chyby :Na disku není dost místa.

Date: 2020-06-01 10:10:04.579
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.317.373.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17100.2
Kód chyby: 0x80070070
Popis chyby :Na disku není dost místa.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 0606 08/08/2012
Motherboard: ASUSTeK COMPUTER INC. P8B75-M LX
Processor: Intel(R) Celeron(R) CPU G550 @ 2.60GHz
Percentage of memory in use: 48%
Total physical RAM: 7862.25 MB
Available physical RAM: 4044.25 MB
Total Virtual: 9078.25 MB
Available Virtual: 4978.34 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.24 GB) (Free:4.15 GB) NTFS
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:124.77 GB) NTFS

\\?\Volume{3a94d2cf-4b7a-454c-b68d-8ebd7cfe0571}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
\\?\Volume{3a34e5af-e98e-4a88-8135-c9dc2d6d956d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: B8C2E6AE)

Partition: GPT.

==========================================================
Disk: 1 (Size: 111.8 GB) (Disk ID: 00005456)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Sobi]

Zdarvím,

děkuji moc za pomoc. Tady je log.

# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-05-26.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-01-2020
# Duration: 00:00:02
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1405 octets] - [01/06/2020 13:28:43]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle America, Inc. -> Oracle Corporation)
Task: {21B45663-93D9-494E-975B-CCFC0B51E72F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002UA => C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe [156456 2019-04-04] (Google Inc -> Google LLC)
Task: {5029CD10-11F7-4D7A-A939-DE619DED4A29} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002Core => C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe [156456 2019-04-04] (Google Inc -> Google LLC)
Task: {50860610-ECAD-40B2-A252-0652921DB448} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.442\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.422\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{62634D95-960B-4834-8E71-A70408AD8FD9}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.34.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.302\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
AlternateDataStreams: C:\Users\Jirka\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]FirewallRules: [UDP Query User{E09E4AC4-6A89-4CF4-A1AC-F4D21A8CC838}\\10.0.0.163\magis\unipaas19\unirte.exe] => (Allow) \\10.0.0.163\magis\unipaas19\unirte.exe => No File
FirewallRules: [TCP Query User{481D3A98-551D-4717-915C-878F15CF5EB0}\\10.0.0.163\magis\unipaas19\unirte.exe] => (Allow) \\10.0.0.163\magis\unipaas19\unirte.exe => No File
FirewallRules: [TCP Query User{4D87D29A-E71D-447A-98A0-8E1AC425CC24}\\server2012\magis\unipaas19\unirte.exe] => (Block) \\server2012\magis\unipaas19\unirte.exe => No File
FirewallRules: [UDP Query User{0BB76175-071C-48E1-B4DF-2B1A24EFCF93}\\server2012\magis\unipaas19\unirte.exe] => (Block) \\server2012\magis\unipaas19\unirte.exe => No File
FirewallRules: [UDP Query User{E09E4AC4-6A89-4CF4-A1AC-F4D21A8CC838}\\10.0.0.163\magis\unipaas19\unirte.exe] => (Allow) \\10.0.0.163\magis\unipaas19\unirte.exe => No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Sobi]

Log je níže. Musel jsem to spustit na 2x, protože jsem to napoprvé zapomněl pustit jako správce. Proto už tam některé soubory nejsou.



Fix result of Farbar Recovery Scan Tool (x64) Version: 31-05-2020 01
Ran by Jan (01-06-2020 15:19:39) Run:2
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jan & Jirka
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle America, Inc. -> Oracle Corporation)
Task: {21B45663-93D9-494E-975B-CCFC0B51E72F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002UA => C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe [156456 2019-04-04] (Google Inc -> Google LLC)
Task: {5029CD10-11F7-4D7A-A939-DE619DED4A29} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002Core => C:\Users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe [156456 2019-04-04] (Google Inc -> Google LLC)
Task: {50860610-ECAD-40B2-A252-0652921DB448} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1002822495-3348159901-391683250-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.442\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.422\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{62634D95-960B-4834-8E71-A70408AD8FD9}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.34.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Jirka\AppData\Local\Google\Update\1.3.35.302\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
AlternateDataStreams: C:\Users\Jirka\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]FirewallRules: [UDP Query User{E09E4AC4-6A89-4CF4-A1AC-F4D21A8CC838}\\10.0.0.163\magis\unipaas19\unirte.exe] => (Allow) \\10.0.0.163\magis\unipaas19\unirte.exe => No File
FirewallRules: [TCP Query User{481D3A98-551D-4717-915C-878F15CF5EB0}\\10.0.0.163\magis\unipaas19\unirte.exe] => (Allow) \\10.0.0.163\magis\unipaas19\unirte.exe => No File
FirewallRules: [TCP Query User{4D87D29A-E71D-447A-98A0-8E1AC425CC24}\\server2012\magis\unipaas19\unirte.exe] => (Block) \\server2012\magis\unipaas19\unirte.exe => No File
FirewallRules: [UDP Query User{0BB76175-071C-48E1-B4DF-2B1A24EFCF93}\\server2012\magis\unipaas19\unirte.exe] => (Block) \\server2012\magis\unipaas19\unirte.exe => No File
FirewallRules: [UDP Query User{E09E4AC4-6A89-4CF4-A1AC-F4D21A8CC838}\\10.0.0.163\magis\unipaas19\unirte.exe] => (Allow) \\10.0.0.163\magis\unipaas19\unirte.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" => not found
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21B45663-93D9-494E-975B-CCFC0B51E72F}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002UA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002UA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5029CD10-11F7-4D7A-A939-DE619DED4A29}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002Core" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1002822495-3348159901-391683250-1002Core" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50860610-ECAD-40B2-A252-0652921DB448}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
HKU\S-1-5-21-1002822495-3348159901-391683250-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKU\S-1-5-21-1002822495-3348159901-391683250-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE} => not found
HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54} => not found
HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{62634D95-960B-4834-8E71-A70408AD8FD9} => not found
HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401} => not found
HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5} => not found
HKU\S-1-5-21-1002822495-3348159901-391683250-1002_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => not found
C:\Users\Jirka\OneDrive => ":${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]FirewallRules:" ADS could not remove.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{481D3A98-551D-4717-915C-878F15CF5EB0}\\10.0.0.163\magis\unipaas19\unirte.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4D87D29A-E71D-447A-98A0-8E1AC425CC24}\\server2012\magis\unipaas19\unirte.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0BB76175-071C-48E1-B4DF-2B1A24EFCF93}\\server2012\magis\unipaas19\unirte.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E09E4AC4-6A89-4CF4-A1AC-F4D21A8CC838}\\10.0.0.163\magis\unipaas19\unirte.exe" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9778872 B
Java, Flash, Steam htmlcache => 492 B
Windows/system/drivers => 2902076 B
Edge => 23129 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 5426 B
Jan => 93197 B
Jirka => 190981 B

RecycleBin => 0 B
EmptyTemp: => 22.4 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:20:20 ====

[Rudy]

OK. Nastala nějaká změna?

[Sobi]

Ono se to neobjevuje pořád. Jen jednou za čas. Vyzkouším a dám vědět. Děkuji za pomoc.

[Rudy]

OK. Zatím nemáte zač!

[Sobi]

Zdravím,

zatím to vypadá dobře, tak doufám, že je to pryč. Děkuji za pomoc.

[Rudy]

Tak to jsem rád! Nemáte zač!