ZOEK 2. část:
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceab8a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceab9c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceabae.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceabbf.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceabe0.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceabf2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceac04.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceac15.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceac37.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceac48.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceac5a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceac6b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceac7d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceac8f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceacb0.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceacc2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceacd3.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-2ec-1304-1ceace5.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b76f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b771.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b783.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b785.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b787.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b798.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b79a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b79c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b79e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7b0.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7b2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7b4.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7c5.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7c7.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7c9.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7cb.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7dd.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7ef.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-3094-1a1c-29b7f1.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba86d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba87f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba881.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba892.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba8f2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba913.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba925.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba937.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba939.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba94a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba94c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba94e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba96f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba971.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba983.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba995.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba9a6.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba9a8.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-30e8-2324-ba9ba.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed2c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed2e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed3f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed41.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed53.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed55.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed67.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed69.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed7a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed7c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed8e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21ed90.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21eda1.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21eda3.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21edb5.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21edb7.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21edc9.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21edcb.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-5b4-1f44-21eddc.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b5e7.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b5e9.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b5fb.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b5fd.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b5ff.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b62f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b631.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b633.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b645.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b647.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b649.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b65b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b65d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b65f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b670.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b672.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b674.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b686.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6ac-12c8-26b688.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329c3a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329c3c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329c3e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329c60.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329c71.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329c92.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329ca4.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329cc5.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329cc7.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329cc9.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329cdb.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329cdd.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329cef.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329cf1.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329cf3.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329d04.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329d06.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329d08.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-6b8-2e28-329d1a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6af7c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6af7e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6af80.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6af92.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6af94.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6afa5.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6afa7.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6afb9.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6afbb.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6afbd.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6afce.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6afd0.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6afe2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6afe4.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6b005.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6b007.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6b019.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6b01b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-78c-2f54-2d6b03c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-29261c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-29261e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292620.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292631.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292633.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292635.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292637.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292649.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-29264b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-29264d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-29265f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292661.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292663.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292665.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292667.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-292678.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-29267a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-29267c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-874-d5c-29268e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff54.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff56.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff58.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff6a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff6c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff7d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff7f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff81.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff93.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff95.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ff97.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ffa9.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ffab.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ffbc.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ffbe.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ffc0.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ffd2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ffd4.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-8c4-1db0-342ffd6.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b970a1.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b970b2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b970b4.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b970c6.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b970f7.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b97109.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b97139.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b9714b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b9715d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b9717e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b97190.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b971a1.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b971c2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b971e4.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b971f5.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b97226.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b97238.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b97249.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-930-1cec-4b9724b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb1b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb2c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb2e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb30.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb42.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb44.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb55.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb57.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb59.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb6b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb6d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb6f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb90.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb92.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adb94.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adba6.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adba8.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adbaa.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-a28-99c-adbbc.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad5f1.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad602.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad604.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad616.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad618.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad639.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad65b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad66c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad66e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad670.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad682.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad6a3.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad6b5.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad6d6.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad6f7.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad718.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad73a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad75b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-c34-3248-3ad75d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa15f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa171.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa182.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa184.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa196.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa198.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa19a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa1ac.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa1ae.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa1bf.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa1d1.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa1d3.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa1e4.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa1f6.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa1f8.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa1fa.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa21b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa21d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-dbc-2be0-43aa21f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-12498.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124a9.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124ab.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124ad.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124af.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124c1.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124c3.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124c5.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124c7.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124c9.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124db.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124dd.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124df.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124e1.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124f2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124f4.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124f6.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-124f8.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-e68-e90-1250a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333713.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333725.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333727.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333729.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-33373a.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-33373c.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-33373e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333750.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333752.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333754.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333765.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333767.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333769.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-33376b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-33377d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-33377f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333781.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333783.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ee0-2268-333795.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244140.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244152.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244163.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244165.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244177.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244179.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-124418b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-12441db.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-12441ec.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-124420e.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-124421f.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244221.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244243.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244254.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244266.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244268.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-1244289.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-124428b.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-eec-2868-124429d.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b7893.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78a5.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78a7.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78a9.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78ab.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78bc.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78be.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78c0.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78c2.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78d4.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78d6.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78d8.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78ea.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78ec.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78ee.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b78f0.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b7901.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b7903.tmp deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\tw-ff0-5a0-b7905.tmp deleted
C:\Users\bretislav.lebloch\AppData\LocalLow\Unity deleted
C:\windows\SysNative\GroupPolicy\DataStore deleted
"C:\DumpStack.log.tmp" not deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\BRETIS~1.LEB\AppData\Roaming\Mozilla\Firefox\Profiles\qinpcg0u.default-release
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
==== Firefox Plugins ======================
==== Chromium Look ======================
Crypto Web - bretislav.lebloch\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mhhmkoogppocgeaedlcikkhenhagbmnj
Crypto Web - BRETIS~1.LEB\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mhhmkoogppocgeaedlcikkhenhagbmnj
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
==== Reset Google Chrome ======================
C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\servis1\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\servis1\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Edge\User Data\Default\Web Data will be reset at reboot
C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal will be reset at reboot
C:\Users\servis1\AppData\Local\Microsoft\Edge\User Data\Default\Web Data was reset successfully
C:\Users\servis1\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal was reset successfully
C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Edge\User Data\Default\Web Data will be reset at reboot
C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal will be reset at reboot
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Edge Cache ======================
Edge Cache Emptied Successfully
==== Empty Chrome Cache ======================
C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Edge\User Data\Default\Cache will be emptied at reboot
C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Edge\User Data\Default\Cache will be emptied at reboot
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=76 folders=927 445649929 bytes)
==== Empty Temp Folders ======================
C:\Users\admin\AppData\Local\Temp emptied successfully
C:\Users\bretislav.lebloch\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\servis1\AppData\Local\Temp emptied successfully
C:\Users\BRETIS~1.LEB\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\BRETIS~1.LEB\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\DumpStack.log.tmp" not deleted
"C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Edge\User Data\Default\Web Data" not found
"C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal" not found
"C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Edge\User Data\Default\Web Data" not found
"C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal" not found
"C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data" deleted
"C:\Users\BRETIS~1.LEB\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data" not found
==== EOF on 05.10.2022 at 18:54:38,72 ======================
Prosím o kontrolu logu Vyřešeno
Re: Prosím o kontrolu logu
Heslo:"Lepší živý posera, než mrtvý hrdina."
Re: Prosím o kontrolu logu
ZEMANA:
Informace o kontroly
Název produktu : Zemana AntiMalware
Stav kontroly : Dokončena
Datum kontroly : 05.10.2022 19:00:57
Typ kontroly : Inteligentní kontrola
Čas trvání : 00:00:29
Zkontrolované objekty : 2118
Zjištěné objekty : 0
Vyloučené objekty : 0
Automatické odesílání : Ano
Operační systém : Windows 10 x64
Procesor : 4X Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Režim systému BIOS : UEFI
Informace o doméně : ZSHORNINEMCI,True,NetSetupDomainName
CUID : 124B5E0B9209A9F904D720
Informace o kontroly
Název produktu : Zemana AntiMalware
Stav kontroly : Dokončena
Datum kontroly : 05.10.2022 19:00:57
Typ kontroly : Inteligentní kontrola
Čas trvání : 00:00:29
Zkontrolované objekty : 2118
Zjištěné objekty : 0
Vyloučené objekty : 0
Automatické odesílání : Ano
Operační systém : Windows 10 x64
Procesor : 4X Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Režim systému BIOS : UEFI
Informace o doméně : ZSHORNINEMCI,True,NetSetupDomainName
CUID : 124B5E0B9209A9F904D720
Heslo:"Lepší živý posera, než mrtvý hrdina."
Re: Prosím o kontrolu logu
Nový HJT:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:04:19, on 05.10.2022
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.1566)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe
C:\Users\bretislav.lebloch\Desktop\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: ::1 localhost
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.34\BHO\ie_to_edge_bho.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office16\GROOVEEX.DLL
O4 - HKCU\..\Run: [OneDrive] "C:\Users\bretislav.lebloch\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CiscoSpark] C:\Users\bretislav.lebloch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webex\Webex.lnk /minimized /autostartedWithWindows=true
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_F4D67F32E862673C7C6D7218AEF13601] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~2\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Poslat do On&eNotu - res://C:\PROGRA~2\MICROS~2\Office16\ONBttnIE.dll/105
O9 - Extra button: Poslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Poslat do On&eNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = zshorninemci.local
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = zshorninemci.local
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\Windows\System32\DriverStore\FileRepository\u0373234.inf_amd64_2f2bf0ce197fd0ec\B371260\atiesrxx.exe
O23 - Service: AtherosSvc - Unknown owner - C:\Windows\System32\drivers\AdminService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHDCPSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_7de64 - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EHttpSrv) - ESET - C:\Program Files\ESET\ESET Security\ehttpsrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Management Agent (EraAgentSvc) - ESET - C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
O23 - Service: @oem12.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Unknown owner - C:\Windows\System32\Intel\DPTF\esif_uf.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Graphics Command Center Service (igccservice) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe
O23 - Service: @oem67.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) - Intel(R) Corporation - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
O23 - Service: @oem67.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) - Intel(R) Corporation - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: RogueKiller RTP (rkrtservice) - Unknown owner - C:\Program Files\RogueKiller\RogueKillerSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: SACSrv - Gemalto - C:\Program Files\SafeNet\Authentication\SAC\x64\SACSRV.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\Windows\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer - TeamViewer Germany GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Intel(R) Management Engine WMI Provider Registration (WMIRegistrationService) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12630 bytes
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:04:19, on 05.10.2022
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.1566)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe
C:\Users\bretislav.lebloch\Desktop\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: ::1 localhost
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.34\BHO\ie_to_edge_bho.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office16\GROOVEEX.DLL
O4 - HKCU\..\Run: [OneDrive] "C:\Users\bretislav.lebloch\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CiscoSpark] C:\Users\bretislav.lebloch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webex\Webex.lnk /minimized /autostartedWithWindows=true
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\bretislav.lebloch\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_F4D67F32E862673C7C6D7218AEF13601] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~2\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Poslat do On&eNotu - res://C:\PROGRA~2\MICROS~2\Office16\ONBttnIE.dll/105
O9 - Extra button: Poslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Poslat do On&eNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = zshorninemci.local
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = zshorninemci.local
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\Windows\System32\DriverStore\FileRepository\u0373234.inf_amd64_2f2bf0ce197fd0ec\B371260\atiesrxx.exe
O23 - Service: AtherosSvc - Unknown owner - C:\Windows\System32\drivers\AdminService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHDCPSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_7de64 - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EHttpSrv) - ESET - C:\Program Files\ESET\ESET Security\ehttpsrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Management Agent (EraAgentSvc) - ESET - C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
O23 - Service: @oem12.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Unknown owner - C:\Windows\System32\Intel\DPTF\esif_uf.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Graphics Command Center Service (igccservice) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe
O23 - Service: @oem67.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) - Intel(R) Corporation - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
O23 - Service: @oem67.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) - Intel(R) Corporation - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: RogueKiller RTP (rkrtservice) - Unknown owner - C:\Program Files\RogueKiller\RogueKillerSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: SACSrv - Gemalto - C:\Program Files\SafeNet\Authentication\SAC\x64\SACSRV.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\Windows\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer - TeamViewer Germany GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Intel(R) Management Engine WMI Provider Registration (WMIRegistrationService) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12630 bytes
Heslo:"Lepší živý posera, než mrtvý hrdina."
Re: Prosím o kontrolu logu
Žádné problémy jsem nezaznamenal, vypadá to, že vše nyní šlape.
Pokud je nějaký nápad, prosím, zkus se zeptat hodně konkrétně.
Děkuji moc za pomoc.
Pokud je nějaký nápad, prosím, zkus se zeptat hodně konkrétně.
Děkuji moc za pomoc.
Heslo:"Lepší živý posera, než mrtvý hrdina."
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43062
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Už nic.
Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu Vyřešeno
# DelFix v1.010 - Logfile created 05/10/2022 at 20:00:05
# Updated 26/04/2015 by Xplode
# Username : bretislav.lebloch - REDITEL-NB
# Operating System : Windows 10 Enterprise (64 bits)
~ Removing disinfection tools ...
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\bretislav.lebloch\Desktop\adwcleaner(1).exe
Deleted : C:\Users\bretislav.lebloch\Desktop\AdwCleaner.exe
Deleted : C:\Users\bretislav.lebloch\Desktop\JRT (1).exe
Deleted : C:\Users\bretislav.lebloch\Desktop\JRT.txt
Deleted : C:\Users\bretislav.lebloch\Desktop\HijackThis.exe
Deleted : C:\Users\bretislav.lebloch\Desktop\hijackthis.log
Deleted : C:\Users\bretislav.lebloch\Desktop\RogueKiller_setup.exe
Deleted : C:\Users\bretislav.lebloch\Desktop\TFC.exe
Deleted : C:\Users\bretislav.lebloch\Desktop\zoek1.rar
Deleted : C:\Users\Public\Desktop\RogueKiller.lnk
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
~ Cleaning system restore ...
Deleted : RP #79 [Instalační služba modulů systému Windows | 09/14/2022 07:37:42]
Deleted : RP #80 [Naplánovaný kontrolní bod | 09/26/2022 10:07:35]
Deleted : RP #81 [JRT Pre-Junkware Removal | 10/05/2022 13:19:24]
New restore point created !
########## - EOF - ##########
Děkuji moc za pomoc.
# Updated 26/04/2015 by Xplode
# Username : bretislav.lebloch - REDITEL-NB
# Operating System : Windows 10 Enterprise (64 bits)
~ Removing disinfection tools ...
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\bretislav.lebloch\Desktop\adwcleaner(1).exe
Deleted : C:\Users\bretislav.lebloch\Desktop\AdwCleaner.exe
Deleted : C:\Users\bretislav.lebloch\Desktop\JRT (1).exe
Deleted : C:\Users\bretislav.lebloch\Desktop\JRT.txt
Deleted : C:\Users\bretislav.lebloch\Desktop\HijackThis.exe
Deleted : C:\Users\bretislav.lebloch\Desktop\hijackthis.log
Deleted : C:\Users\bretislav.lebloch\Desktop\RogueKiller_setup.exe
Deleted : C:\Users\bretislav.lebloch\Desktop\TFC.exe
Deleted : C:\Users\bretislav.lebloch\Desktop\zoek1.rar
Deleted : C:\Users\Public\Desktop\RogueKiller.lnk
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
~ Cleaning system restore ...
Deleted : RP #79 [Instalační služba modulů systému Windows | 09/14/2022 07:37:42]
Deleted : RP #80 [Naplánovaný kontrolní bod | 09/26/2022 10:07:35]
Deleted : RP #81 [JRT Pre-Junkware Removal | 10/05/2022 13:19:24]
New restore point created !
########## - EOF - ##########
Děkuji moc za pomoc.
Heslo:"Lepší živý posera, než mrtvý hrdina."
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 3 hosti