Prosím o kontrolu logu - červená tečka u loga seznam účtu

[dreyfus]

Dobrý den, nedávno se mi objevila u profilového loga seznam email účtu ve Firefoxu červená tečka. Nevím, co si mám o ní myslet. Nejedná se ani o novou zprávu ani o oznámení seznamu. Na technické podpoře mi doporučili vymazat historii. To nepomohlo. Nepomohla ani změna hesla. RougeKiller nenašel žádnou škodlivou položku. Pro případ, že byl můj email nějak zneužit, prosím o kontrolu logu. Děkuji.

FRST.txt

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-03-2023
Ran by zdenk (administrator) on DESKTOP-GOCDA6S (Hewlett-Packard HP Pro 3500 Series) (05-03-2023 13:41:12)
Running from C:\Music\Frst
Loaded Profiles: zdenk
Platform: Microsoft Windows 10 Pro Version 21H2 19044.2604 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (ADLICE (ASCOET JULIEN) -> ) C:\Program Files\RogueKiller\RogueKiller64.exe
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(services.exe ->) (ABBYY SOLUTIONS LIMITED -> ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(services.exe ->) (ADLICE (ASCOET JULIEN) -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> ) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\zdenk\AppData\Local\Microsoft\OneDrive\23.033.0212.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
Failed to access process -> firefox.exe
Failed to access process -> RuntimeBroker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [215960 2022-12-29] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [325856 2020-01-23] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [ZaAntiRansomware] => C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe [4231392 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-08-30] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-833874239-3134217361-4166518074-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.EXE [232448 2010-12-07] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-833874239-3134217361-4166518074-1001\...\Run: [EPSON SX130 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.EXE [232448 2010-12-07] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-833874239-3134217361-4166518074-1001\...\Run: [AvastBrowserAutoLaunch_665C8FC4F97EE0B7B4C1184B97B16C5A] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3442200 2023-02-17] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Print\Monitors\EPSON SX130 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMHJE.DLL [118784 2008-11-12] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-02-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\110.0.20215.104\Installer\chrmstp.exe [2023-02-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6937.199\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {064B0B60-989A-42C0-8ECC-062B6FB5F691} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {14767516-B0AA-4E2D-8D8D-C61752FBC527} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [601504 2023-03-01] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {14DA46A9-4EE8-4DA5-A18E-BE093563896D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3442200 2023-02-17] (Avast Software s.r.o. -> AVAST Software)
Task: {3607C952-8EB0-4838-83F5-122CCDAFF347} - System32\Tasks\GoogleUpdateTaskMachineUA{7A12ADBC-5203-4EF5-98CA-F5733A1EC073} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-03-15] (Google Inc -> Google Inc.)
Task: {5656CEE6-C89A-450B-B623-05103CEC417F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4954008 2022-12-29] (Avast Software s.r.o. -> AVAST Software)
Task: {8B2A2E5B-ABE4-429A-8695-A5F77A11BD1F} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {8C1F6413-6CCB-464F-924A-8153C81978BE} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {9D6A125B-00E3-45D8-B37C-F32170A6C5A3} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {A47C9BAB-7228-4187-882F-19DB9434044C} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {A8882187-B240-4315-B8C0-4BD457C1969C} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [666528 2023-03-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {B069B2BB-CBF1-4454-90E2-35D48638818F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2295192 2023-01-31] (Avast Software s.r.o. -> Avast Software)
Task: {D928ABA3-1921-4C82-847F-FCED3A9AE254} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {F8A5CFCB-3898-4242-A63C-ECBD47BEB0C3} - System32\Tasks\GoogleUpdateTaskMachineCore{A1A3FFFE-78FD-403F-8CAD-301B024F2F4F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-03-15] (Google Inc -> Google Inc.)
Task: {F9650EBE-3754-4010-9FB0-82C94AE52F72} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3442200 2023-02-17] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{c87c97ca-3367-4e14-abd7-d037cc44a5ca}: [DhcpNameServer] 192.168.10.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\zdenk\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-20]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: 9myba43u.default
FF ProfilePath: C:\Users\zdenk\AppData\Roaming\Mozilla\Firefox\Profiles\9myba43u.default [2023-03-05]
FF Homepage: Mozilla\Firefox\Profiles\9myba43u.default -> about:blank
FF Extension: (Avast Online Security & Privacy) - C:\Users\zdenk\AppData\Roaming\Mozilla\Firefox\Profiles\9myba43u.default\Extensions\wrc@avast.com.xpi [2023-03-02]
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)

Chrome: 
=======
CHR Profile: C:\Users\zdenk\AppData\Local\Google\Chrome\User Data\Default [2023-03-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zdenk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-01]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY SOLUTIONS LIMITED -> ABBYY)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8553880 2022-12-29] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [597400 2022-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [597400 2022-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\110.0.20215.104\elevation_service.exe [1824504 2023-02-17] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R2 CPEFR; C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe [3274432 2021-04-10] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 CpSbaCipolla; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
R2 CpSbaUpdater; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8967840 2023-02-23] (Malwarebytes Inc. -> Malwarebytes)
R2 RemediationService; C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [18624 2021-03-29] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [14021976 2021-09-02] (ADLICE (ASCOET JULIEN) -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 TESvc; C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe [137920 2021-04-09] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [4528344 2020-01-20] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZAARUpdateService; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe [51936 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [114936 2020-01-20] (Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 aksfridge; C:\WINDOWS\System32\drivers\aksfridge.sys [131072 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
S3 akshasp; C:\WINDOWS\System32\drivers\akshasp.sys [53760 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
S3 akshhl; C:\WINDOWS\System32\drivers\akshhl.sys [56960 2007-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
S3 akspccard; C:\WINDOWS\System32\drivers\akspccard.sys [20736 2007-08-20] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
S3 aksusb; C:\WINDOWS\System32\drivers\aksusb.sys [25344 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31424 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229208 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [391272 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39648 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [267888 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [555560 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [852000 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [695504 2023-02-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [318456 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R2 cpbak; C:\WINDOWS\System32\DRIVERS\cpbak.sys [83248 2020-09-03] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 CPEPMon; C:\WINDOWS\System32\DRIVERS\CPEPMon.sys [153040 2021-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Check Point Software Technologies)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-09-08] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-09-08] (Disc Soft Ltd -> Disc Soft Ltd)
R1 epnetflt; C:\WINDOWS\system32\drivers\epnetflt.sys [135984 2020-12-06] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 epregflt; C:\WINDOWS\system32\drivers\epregflt.sys [133416 2020-12-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
S3 ghsdiag; C:\WINDOWS\System32\drivers\ghsdiag.sys [129304 2011-08-15] (ZTE CORPORATION  -> ZTE Incorporated)
S3 ghsnmea; C:\WINDOWS\System32\drivers\ghsnmea.sys [129304 2011-08-15] (ZTE CORPORATION  -> ZTE Incorporated)
R2 ISWKL; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [56184 2021-01-28] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 massfilter_hs; C:\WINDOWS\System32\drivers\massfilter_hs.sys [18456 2012-01-10] (ZTE CORPORATION  -> HandSet Incorporated)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-02-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-09-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2023-03-05] (Adlice -> )
R1 Vsdatant; C:\WINDOWS\system32\DRIVERS\vsdatant.sys [461240 2018-05-15] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-23] (Microsoft Windows -> Microsoft Corporation)
S3 zgdcat; C:\WINDOWS\System32\drivers\zgdcat.sys [130200 2011-12-12] (ZTE CORPORATION  -> ZTE Incorporated)
S3 zgdcdiag; C:\WINDOWS\System32\drivers\zgdcdiag.sys [130200 2011-12-12] (ZTE CORPORATION  -> ZTE Incorporated)
S3 zghsat; C:\WINDOWS\System32\drivers\zghsat.sys [129432 2011-08-15] (ZTE CORPORATION  -> ZTE Incorporated)
S3 zghsdiag; C:\WINDOWS\System32\drivers\zghsdiag.sys [129432 2011-08-15] (ZTE CORPORATION  -> ZTE Incorporated)
S3 zghsdiagmdm; C:\WINDOWS\System32\drivers\zghsdiagmdm.sys [129432 2011-08-15] (ZTE CORPORATION  -> ZTE Incorporated)
S3 zghsmdm; C:\WINDOWS\system32\DRIVERS\zghsmdm.sys [129432 2011-08-15] (ZTE CORPORATION  -> ZTE Incorporated)
S3 zghsnmea; C:\WINDOWS\System32\drivers\zghsnmea.sys [129432 2011-08-15] (ZTE CORPORATION  -> ZTE Incorporated)
S3 zghsvousb; C:\WINDOWS\System32\drivers\zghsvousb.sys [129432 2011-08-15] (ZTE CORPORATION  -> ZTE Incorporated)
S3 ZTEMSD0292; C:\WINDOWS\System32\Drivers\ZTEMSD0292.sys [26648 2011-09-02] (ZTE CORPORATION  -> ZTE Corporation)
S3 ZTEusbdvbh; C:\WINDOWS\System32\drivers\ZTEusbdvbh.sys [123136 2011-12-09] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbgps; C:\WINDOWS\System32\drivers\ZTEusbgps.sys [123136 2011-12-09] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbMB; C:\WINDOWS\System32\drivers\ZTEusbnmeaext2.sys [123136 2011-12-09] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbnmea; C:\WINDOWS\System32\drivers\ZTEusbnmea.sys [123136 2011-12-09] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbnmeaext; C:\WINDOWS\System32\drivers\ZTEusbnmeaext.sys [123136 2011-12-09] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbser6k; C:\WINDOWS\System32\drivers\ZTEusbser6k.sys [107520 2011-12-09] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbvoice; C:\WINDOWS\System32\drivers\ZTEusbvoice.sys [123136 2011-12-09] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
U3 iswSvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-03-05 12:11 - 2023-03-05 12:12 - 006101850 _____ C:\Users\zdenk\Downloads\20230220_124148.zip.pack
2023-03-05 12:10 - 2023-03-05 12:10 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2023-02-25 17:09 - 2023-02-25 17:11 - 035550563 _____ C:\Users\zdenk\Downloads\Dictionary_of_Alkaloids__2_Ed.pdf
2023-02-24 12:40 - 2023-02-24 13:14 - 624951164 _____ C:\Users\zdenk\Downloads\inthecrack-Marry Queen 3.wmv
2023-02-22 23:28 - 2023-02-22 23:44 - 300719119 _____ C:\Users\zdenk\Downloads\Marry Queen Puffy Network (1).mp4
2023-02-22 00:25 - 2023-02-22 00:28 - 056809180 _____ C:\Users\zdenk\Downloads\1273543_puffy_nipples_on_solo_webcam_girl_with_shaved_cunt.flv
2023-02-21 23:05 - 2023-02-21 23:54 - 894546823 _____ C:\Users\zdenk\Downloads\XXX porn - WetAndPuffy.com - Clip 019 (January 2021) (drzy).mp4
2023-02-21 13:01 - 2023-02-21 13:02 - 022203885 _____ C:\Users\zdenk\Downloads\Joslyn James gets her tight pussy destroyed by a huge cock-Bangbros.flv
2023-02-21 12:25 - 2023-02-21 12:57 - 595171182 _____ C:\Users\zdenk\Downloads\[BangBros] Crystal Chase - Unforgettable Tits (12.11.2022) rq.mp4
2023-02-20 16:00 - 2023-02-20 16:53 - 970223089 _____ C:\Users\zdenk\Downloads\Jayden James.mp4
2023-02-19 23:52 - 2023-02-20 00:09 - 310580797 _____ C:\Users\zdenk\Downloads\Julia Bond - [MonstersOfCock.com][BangBros.com](Double_X_Tits).wmv
2023-02-19 23:36 - 2023-02-19 23:52 - 297006413 _____ C:\Users\zdenk\Downloads\MonsterCurves.22.11.23.Brandy.Renee.Brandys.Hentai.Fantasy.XXX.SD.MP4-KLEENEX.mp4
2023-02-19 23:13 - 2023-02-19 23:35 - 406373182 _____ C:\Users\zdenk\Downloads\MonsterCurves - Jayden James In Ass Craving.wmv
2023-02-19 23:12 - 2023-02-19 23:13 - 022083793 _____ C:\Users\zdenk\Downloads\Jayden James poses in a tiger themed setting and has some solo fun in a video..mp4
2023-02-17 15:53 - 2023-03-04 11:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-02-15 12:00 - 2023-02-15 16:32 - 000000000 ___HD C:\$WinREAgent
2023-02-14 23:51 - 2023-02-15 00:00 - 165953319 _____ C:\Users\zdenk\Downloads\Aletta Ocean - WhiteZilla.wmv
2023-02-14 23:36 - 2023-02-14 23:51 - 265206654 _____ C:\Users\zdenk\Downloads\Nádherná ryšavka masturbuje vo vani_XXX_porn.mp4
2023-02-14 12:20 - 2023-02-14 12:56 - 661061501 _____ C:\Users\zdenk\Downloads\Melisa Mendini Fly With Me.mp4
2023-02-09 10:58 - 2023-02-09 11:54 - 002042580 _____ C:\WINDOWS\Minidump\020923-33718-01.dmp
2023-02-08 00:00 - 2023-02-08 00:00 - 003652584 _____ C:\Users\zdenk\Downloads\molecules-27-04435-v2.pdf
2023-02-07 00:05 - 2023-02-07 00:16 - 189580232 _____ C:\Users\zdenk\Downloads\bangbros-my-big-dick-deep-inside-busty-milf-lisa-ann-27s-butt-hole-so-tight_720p.mp4
2023-02-06 23:26 - 2023-02-07 00:04 - 704376821 _____ C:\Users\zdenk\Downloads\[BangBros] Roxie Sinner, Ashlyn Peaks - How The Dick Stole Christmas (24.12.2022) rq.mp4
2023-02-06 23:08 - 2023-02-06 23:26 - 329837094 _____ C:\Users\zdenk\Downloads\[BangBros] Kyler Quinn - Stepdad s Giant Dick (09.08.2022) rq.mp4
2023-02-03 10:43 - 2023-02-03 10:43 - 000275732 _____ C:\Users\zdenk\Downloads\21491-55771-6-PB.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-03-05 13:43 - 2019-03-19 07:35 - 000000000 ____D C:\FRST
2023-03-05 13:41 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-05 13:29 - 2018-10-18 16:08 - 000000000 ____D C:\Users\zdenk\AppData\LocalLow\Mozilla
2023-03-05 13:10 - 2020-03-15 11:00 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-05 12:47 - 2020-09-28 00:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-05 12:04 - 2018-10-20 13:36 - 000000000 ____D C:\Users\zdenk\AppData\Local\CrashDumps
2023-03-05 11:53 - 2018-10-18 12:39 - 000000000 ___RD C:\Users\zdenk\OneDrive
2023-03-05 00:29 - 2020-09-28 00:20 - 000000000 ____D C:\Users\zdenk
2023-03-04 23:22 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-04 23:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-04 23:21 - 2020-06-05 08:06 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-04 16:45 - 2018-10-18 16:21 - 000000000 ____D C:\Users\zdenk\AppData\Roaming\vlc
2023-03-04 11:38 - 2020-09-28 00:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-04 11:38 - 2020-09-28 00:12 - 000008192 ___SH C:\DumpStack.log.tmp
2023-03-04 11:38 - 2018-10-18 16:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-03-03 10:36 - 2020-09-28 00:52 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-03-02 10:44 - 2021-10-27 08:37 - 000000000 ____D C:\Users\zdenk\AppData\LocalLow\IGDump
2023-03-02 10:13 - 2020-03-15 10:59 - 000000000 ____D C:\Users\zdenk\AppData\Local\Google
2023-03-01 09:26 - 2021-09-25 07:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-03-01 09:26 - 2018-10-18 16:08 - 000001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-02-28 20:49 - 2019-02-08 15:03 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2023-02-28 09:26 - 2021-12-11 23:15 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-833874239-3134217361-4166518074-1001
2023-02-28 09:26 - 2020-09-28 00:52 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-833874239-3134217361-4166518074-1001
2023-02-28 09:26 - 2020-09-28 00:20 - 000002379 _____ C:\Users\zdenk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-02-23 12:01 - 2018-10-18 12:35 - 000000000 ____D C:\Users\zdenk\AppData\Local\Packages
2023-02-19 12:01 - 2018-10-18 16:01 - 000000000 ____D C:\ProgramData\AVAST Software
2023-02-19 11:57 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-02-15 17:48 - 2020-09-28 00:31 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-15 17:48 - 2019-12-07 15:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2023-02-15 17:48 - 2019-12-07 15:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2023-02-15 17:48 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-02-15 17:43 - 2020-09-28 00:12 - 000438936 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-02-15 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-02-15 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-02-15 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-02-15 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-02-15 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-02-15 17:35 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-02-15 17:35 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-02-15 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-02-15 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-02-15 17:33 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-15 17:16 - 2020-09-28 00:17 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-02-15 11:47 - 2018-10-18 13:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-02-15 11:37 - 2018-10-18 13:35 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-02-09 23:04 - 2020-09-28 00:52 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-09 23:04 - 2020-09-28 00:52 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-02-09 11:55 - 2021-01-01 17:35 - 000000000 ____D C:\WINDOWS\Minidump
2023-02-09 10:58 - 2023-01-08 09:01 - 1148500776 _____ C:\WINDOWS\MEMORY.DMP
2023-02-09 01:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports

==================== Files in the root of some directories ========

2019-08-13 11:47 - 2019-08-20 16:26 - 000000163 _____ () C:\Users\zdenk\AppData\Roaming\PLGComp.ini
2022-01-14 09:06 - 2022-01-14 09:06 - 000000000 _____ () C:\Users\zdenk\AppData\Local\{8C44A038-5806-4E90-B621-89A7DD958015}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Addition.txt

Kód: Vybrat vše

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-03-2023
Ran by zdenk (05-03-2023 13:47:27)
Running from C:\Music\Frst
Microsoft Windows 10 Pro Version 21H2 19044.2604 (X64) (2020-09-27 23:54:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-833874239-3134217361-4166518074-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-833874239-3134217361-4166518074-503 - Limited - Disabled)
Guest (S-1-5-21-833874239-3134217361-4166518074-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-833874239-3134217361-4166518074-504 - Limited - Disabled)
zdenk (S-1-5-21-833874239-3134217361-4166518074-1001 - Administrator - Enabled) => C:\Users\zdenk

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: ZoneAlarm Free Firewall Firewall (Enabled) {217C3BCF-3FBD-7C30-A427-2D11E16F3BEB}
FW: ZoneAlarm Free Firewall Firewall (Disabled) {8D637332-9C08-995E-98D7-8237936B0E9F}
FW: ZoneAlarm Free Firewall Firewall (Disabled) {3EB84D8C-4821-F4B8-2DD8-2831FAA29B21}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
7-Zip 22.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2201-000001000000}) (Version: 22.01.00.0 - Igor Pavlov)
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\{F9000000-0018-0000-0000-074957833700}) (Version: 9.01.513.58212 - ABBYY) Hidden
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.12.6044 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 110.0.20215.104 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}) (Version: 2.40.0009 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON SX130 Series Printer Uninstall (HKLM\...\EPSON SX130 Series) (Version:  - SEIKO EPSON Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 110.0.5481.178 - Google LLC)
Heroes of Might and Magic (DOSBox 0.74 emulace) (HKLM-x32\...\Heroes of Might and Magic (DOSBox 0.74 emulace)) (Version:  - )
Check Point SBA (HKLM\...\{405209A1-63AA-4AB5-A6A9-4F088BA951A3}) (Version: 86.6.8560 - Check Point Software Technologies Ltd.) Hidden
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
LibreOffice 6.1.4.2 (HKLM\...\{080C0C39-B1B5-48BB-85AB-4F9A8768CD10}) (Version: 6.1.4.2 - The Document Foundation)
Malwarebytes version 4.5.22.236 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.22.236 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 110.0.1587.63 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 110.0.1587.63 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-833874239-3134217361-4166518074-1001\...\OneDriveSetup.exe) (Version: 23.033.0212.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{89581302-705F-42C5-99B0-E368A845DAD5}) (Version: 3.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24215 (HKLM\...\{EF1EC6A9-17DE-3DA9-B040-686A1E8A8B04}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24215 (HKLM\...\{50A2BC33-C9CD-3BF1-A8FF-53C10A0B183C}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Mozilla Firefox (x86 cs) (HKLM-x32\...\Mozilla Firefox 110.0.1 (x86 cs)) (Version: 110.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0.3 - Mozilla)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
RogueKiller version 15.1.0.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 15.1.0.0 - Adlice Software)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
Uživatelská příručka EPSON SX130 Series (HKLM-x32\...\EPSON SX130 Series Useg) (Version:  - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
ZoneAlarm Anti-Ransomware (HKLM-x32\...\{0B8C3231-9818-4CB9-8213-4AB839836791}) (Version: 1.004.7033 - Check Point Software) Hidden
ZoneAlarm Firewall (HKLM-x32\...\{2F77A309-CAB9-4C8A-8ED0-8C8DA3FF0744}) (Version: 15.8.038.18284 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free Firewall (HKLM-x32\...\ZoneAlarm Free Firewall) (Version: 15.8.038.18284 - Check Point)
ZoneAlarm Security (HKLM-x32\...\{DA17D180-7193-4070-B085-9827DB80C2F8}) (Version: 15.8.038.18284 - Check Point Software Technologies Ltd.) Hidden

Packages:
=========
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2470.2.0_x64__kgqvnymyfvs32 [2023-03-02] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.237.500.0_x64__kgqvnymyfvs32 [2023-02-23] (king.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.16.352.0_x64__rz1tebttyb220 [2023-02-23] (Dolby Laboratories)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-07] (Microsoft Studios) [MS Ad]
WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.777.2143.0_x64__8wekyb3d8bbwe [2023-02-23] (Microsoft Corporation)
WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.777.2143.0_x86__8wekyb3d8bbwe [2023-02-23] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-29] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-05-17] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-05-17] (Malwarebytes Inc. -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=13472&utm_medium=desktop&x-pos=Metro

==================== Loaded Modules (Whitelisted) =============

2022-07-15 18:00 - 2022-07-15 18:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2008-04-11 10:54 - 2008-04-11 10:54 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\MSVCR71.dll
2020-01-20 21:16 - 2020-01-20 21:16 - 000986112 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CheckPoint\ZoneAlarm\dbghelp.dll
2021-04-19 14:12 - 2021-04-19 14:12 - 001156608 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\x86\SQLite.Interop.dll
2021-03-29 12:26 - 2021-03-29 12:26 - 001156608 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\SQLite\SQLite.Interop.dll
2005-01-13 09:47 - 2005-01-13 09:47 - 000049152 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll
2010-03-25 16:57 - 2010-03-25 16:57 - 000055296 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\ScnMgr10.dll
2010-03-25 11:02 - 2010-03-25 11:02 - 000103936 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll
2009-10-21 16:39 - 2009-10-21 16:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
2010-06-23 13:40 - 2010-06-23 13:40 - 000136704 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\ScanEngine30.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.) [File not signed]
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.) [File not signed]

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-10-18 12:45 - 2018-10-18 12:41 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-833874239-3134217361-4166518074-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\zdenk\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\25 beautiful beach wallpapers hd - mixhd wallpapers.jpg
DNS Servers: 192.168.10.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{7232F25D-5CAE-44E7-BEAD-E38E86BC6754}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{4164DC48-E0D9-4C2D-AF49-106697602455}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{9EFBE43A-2536-4486-B40D-138556363B44}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{B6FE54DA-6C05-4099-A563-D5D68BA4D501}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{B3698D9B-99B0-4DFF-82CF-5021A6ADEE48}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4ED8BD26-D8BE-4838-AFAF-570AAB88C6A6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{3FBEB97F-5A9B-4D68-B880-A503A2045770}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{E1C6FF37-6FFF-4F2C-9698-A01BD1C1BA80}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [{94C02499-1481-4F96-8000-3C5BBEF89A07}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3BAF117A-8A91-4304-9C03-4EF715E602B8}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A0FF923B-A0BE-4D2B-B8D7-70FB8036D983}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E8877002-D4F6-46E2-92D8-30411CA6AB06}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F0601D1E-1099-46E5-88A9-0C981807D7C6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3428.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D058ECAE-3195-4E45-9E1C-290889913414}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3428.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D0896993-FE7F-413E-82E9-A0BA5EC53EED}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3428.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F9502BAD-7827-4D43-8427-C9CD7D5A0AB5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3428.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CFE2D6F9-02B3-4DCA-891E-444393D92383}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\110.0.1587.63\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

21-02-2023 01:17:48 Naplánovaný kontrolní bod
03-03-2023 12:33:49 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/05/2023 12:02:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: firefox.exe, verze: 110.0.1.8458, časové razítko: 0x63fd18ab
Název chybujícího modulu: xul.dll, verze: 110.0.1.8458, časové razítko: 0x63fd1a55
Kód výjimky: 0x80000003
Posun chyby: 0x0406d5d0
ID chybujícího procesu: 0x22c4
Čas spuštění chybující aplikace: 0x01d94f50ced92713
Cesta k chybující aplikaci: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Mozilla Firefox\xul.dll
ID zprávy: 155f700e-c1f7-4faf-9197-6b41e9e23a69
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/05/2023 11:59:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.746, časové razítko: 0x5b78739c
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.2130, časové razítko: 0xb5ced1c6
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000063526
ID chybujícího procesu: 0x2668
Čas spuštění chybující aplikace: 0x01d94f50cb036343
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 6099400e-49aa-4063-bce0-49a44099b62b
Úplný název chybujícího balíčku: Microsoft.People_10.2105.4.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (03/04/2023 11:41:00 AM) (Source: SecurityCenter) (EventID: 18) (User: )
Description: Službě Centrum zabezpečení Windows se nepodařilo načíst instance objektu FirewallProduct z úložiště dat.

Error: (03/04/2023 01:14:01 AM) (Source: EventSystem) (EventID: 4622) (User: )
Description: Systém událostí modelu COM+ nemohl sdružit odběratele pro odběr {364CEC46-E328-4360-9195-8BEDEE4232A4}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. Výsledek HRESULT byl 8007071a.

Error: (03/03/2023 08:16:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.2546 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 37d4

Čas spuštění: 01d94db3e10894ad

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

ID hlášení: f153798a-17d1-4a3e-af04-84ad4a02e716

Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.8.19041_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: CortanaUI

Typ zablokování: Quiesce

Error: (03/03/2023 12:32:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na HP_RECOVERY (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (03/03/2023 12:32:11 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na OS (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (03/03/2023 12:23:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na SYSTEM, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (03/04/2023 05:44:20 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (03/04/2023 05:44:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GOCDA6S)
Description: Server Microsoft.Windows.Photos_2022.30120.12007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/04/2023 04:14:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Check Point SandBlast Agent Threat Emulation neuspěla při spuštění v důsledku následující chyby: 
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (03/04/2023 04:14:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Check Point SandBlast Agent Threat Emulation bylo dosaženo časového limitu (30000 ms).

Error: (03/04/2023 04:10:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GOCDA6S)
Description: Server Microsoft.Windows.Photos_2022.30120.12007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/04/2023 12:49:39 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (03/04/2023 11:48:09 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Search přestala během spouštění reagovat.

Error: (03/04/2023 11:39:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba aksfridge neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.


Windows Defender:
================Event[0]:

Date: 2022-04-18 00:20:06
Description: 
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 
Předchozí verze bezpečnostních informací: 1.311.48.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic. 

CodeIntegrity:
===============
Date: 2023-03-05 12:00:45
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2023-03-05 12:00:45
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CheckPoint\Endpoint Security\EFR\CP_AmsiProvider64.dll that did not meet the Windows signing level requirements.

Date: 2023-03-05 11:56:30
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswVmm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2023-03-05 11:52:51
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CheckPoint\Endpoint Security\EFR\CP_AmsiProvider64.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

BIOS: AMI 7.06 06/07/2012
Motherboard: Foxconn 2ABF
Processor: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz
Percentage of memory in use: 83%
Total physical RAM: 3982.02 MB
Available physical RAM: 647.45 MB
Total Virtual: 7438.02 MB
Available Virtual: 2604.94 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:449.19 GB) (Free:294.55 GB) (Model: WDC WD5000AAKX-603CA0) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:16.38 GB) (Free:16.3 GB) (Model: WDC WD5000AAKX-603CA0) NTFS

\\?\Volume{bc66f483-0000-0000-0000-100000000000}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{bc66f483-0000-0000-0000-606a74000000}\ (HP_TOOLS) (Fixed) (Total:0.09 GB) (Free:0.09 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: BC66F483)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=449.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=16.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=101 MB) - (Type=27)

==================== End of Addition.txt =======================

[JaRon]

ahoj,
skus vycistit prehliadace podla Rudyho: https://forum.viry.cz/viewtopic.php?p=1 ... k#p1550006

[dreyfus]

Tak jsem proved vše podle návodu. Junkware removal tool se mi nepodařilo spustit, protože Windows zahlásilo, že nemám oprávnění a soubor smazalo. Bohužel tečka nezmizela. Asi jde o "chybu" seznamu.cz, protože tečka se objevuje i v prohlížeči Google Chrome. Zde je log z Zoek:

Kód: Vybrat vše

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by zdenk on po 06.03.2023 at  9:53:52,26.
Microsoft Windows 10 Pro 10.0.19044  x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\zdenk\OneDrive\Plocha\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

6.3.2023 9:58:20 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Malwarebytes Anti-Malware deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\PROGRA~3\ssh deleted successfully
C:\Users\zdenk\AppData\Local\DBG deleted successfully
C:\Users\zdenk\AppData\Local\PackageStaging deleted successfully
C:\Users\zdenk\AppData\Local\PeerDistRepub deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IswSvc deleted successfully

==== FireFox Fix ======================

Deleted from C:\Users\zdenk\AppData\Roaming\Mozilla\Firefox\Profiles\9myba43u.default\prefs.js:
user_pref("browser.startup.homepage", "about:blank");

Added to C:\Users\zdenk\AppData\Roaming\Mozilla\Firefox\Profiles\9myba43u.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~3\Package Cache deleted
C:\Users\zdenk\AppData\Local\cache deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM21788.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM21E3F.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM228ED.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2298F.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM23355.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM235D8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM23C64.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM249A9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM25588.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM256C8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM25DFE.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2605A.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM26360.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM26D15.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM27562.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM27C26.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2894D.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM28BA8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM28C4F.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM298BF.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM29943.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2A10A.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2A1CB.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2B0B7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2B7D8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2BF20.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2C2D.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2C5C6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2D1E5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2D26A.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2D763.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2ECDA.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2EE22.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2F50F.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2F63C.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tpm-31e4-c18-1cb3c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tpm-558-23b0-35c3ec4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-25a8-28f0-6290c10.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4a8-1e2c-22b11af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5c4-1410-102be6d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b7d88.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b7e26.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b7e86.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b7eb7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b7f55.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b8003.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b80b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b814f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b81ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b824d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b82fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b834b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b8409.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b8459.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b8507.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b8586.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b8672.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b87bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b880c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b884d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b88db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b89e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b8a95.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b8eae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b8ff8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9019.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b90c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b90f8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9252.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9254.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b93cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b941d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9548.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9598.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b95f7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9638.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b96f5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9774.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b97c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b996c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b99ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b99ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9a3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9a5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9ace.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9bf9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9d34.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1020-174c-34b9e3f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd1cb4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd355e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd3ab0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd4234.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd4572.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd468d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd48d1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd4c4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd4dd6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd4ee2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd508a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd5389.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd5570.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd56f8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd5871.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd596d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd5aa8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd5d59.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-10f0-480-5bd621e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-1099ca2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-1099e0b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-1099e9a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-1099eea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-1099f3a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-1099fc9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a0c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a115.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a415.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a455.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a4b5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a544.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a5c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a5e4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a682.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a6e2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109a8c8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109aafd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1108-1980-109ac37.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4b698.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4b7e2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4b842.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4b892.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4b8e2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4b913.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4b9b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4b9f2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4ba61.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4bab2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4baf2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4bb81.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4bc2f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4bcae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4bcbf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4bcf0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4bd21.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4bd81.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-12cc-22dc-ce4bdc1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a59b9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a60d0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a621a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a62f6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6402.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a653d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a66e4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a686d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a69a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6ae2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6baf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6c0f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6cbd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6d1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6d7c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6dcc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6ef7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a6f96.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1318-2b9c-9a7043.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27be924.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bea9d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27beaed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27beb4d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27beb5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bebce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bec4d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27becbd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf068.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf0c8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf0f9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf11a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf15a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf1f9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf268.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf2c8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf2e9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf368.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-13ac-17b4-27bf406.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-ade0bf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-ade16d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-ade1ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-ade24c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-ade2ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-ade415.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-ade4c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-ade59f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adeb4f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-aded45.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adeedd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adf017.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adf20d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adf2ac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adf4c1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adf501.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adf66b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adf6ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1434-31cc-adf7c6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c2cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c31d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c37d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c38f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c3bf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c44e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c4fc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c58b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c619.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c6a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c727.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c738.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c74a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c7aa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c7ea.tmp deleted
mnoho podobných C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1478-568-2791c7ea.tmp deleted smazáno mnou
C:\windows\SysNative\Tasks\Avast Secure Browser Heartbeat Task (Hourly) deleted
C:\windows\SysNative\Tasks\Avast Secure Browser Heartbeat Task (Logon) deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineCore deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineUA deleted
C:\WINDOWS\wininit.ini deleted
C:\Users\zdenk\AppData\Roaming\Mozilla\Firefox\Profiles\9myba43u.default\extensions\staged deleted
"C:\Users\zdenk\AppData\Local\{8C44A038-5806-4E90-B621-89A7DD958015}" deleted
"C:\DumpStack.log.tmp" not deleted
"C:\Users\zdenk\AppData\Local\AVAST Software\Avast\datascan.json" not deleted
"C:\Users\zdenk\AppData\Local\AVAST Software" not deleted
"C:\Users\zdenk\AppData\Local\AVAST Software\Avast" not deleted
"C:\Users\zdenk\AppData\Local\AVAST Software\Avast\Bodyguard" not deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\zdenk\AppData\Roaming\Mozilla\Firefox\Profiles\9myba43u.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\zdenk\AppData\Roaming\Mozilla\Firefox\Profiles\9myba43u.default
- Undetermined - %ProfilePath%\extensions\wrc@avast.com.xpi

==== Firefox Plugins ======================


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
ihcjicgdanjaechkgeegckofjjedodee - No path found[]


==== Chromium Startpages ======================

C:\Users\zdenk\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
ent_settings":[],"creation_flags":1,"events":[],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13268011402996827","location":5,"manifest":{"background":{"persistent":false,"scripts":["background.js"]},"externally_connectable":{"matches":["https://*.teams.microsoft.com/*","https://*.skype.com/*","https://*.teams.live.com/*"]},"incognito":"split","key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAdFAR3ckd5c7G8VSzUj4Ltt/QRInUOD00StG95LweksGcLBlFlYL46cHFVgHHj1gmzcpBtgsURdcrAC3V8yiE7GY4wtpOP+9l+adUGR+cyOG0mw9fLjyH+2Il0QqktsNXzkNiE1ogW4l0h4+PJc262j0vtm4hBzMvR0QScFWcAIcAErlUiWTt4jefXCAYqubV99ed5MvVMWBxe97wOa9hYwAhbCminOepA4RRTg9eyi0TiuHpq/bNI8C5qZgKIQNBAjgiFBaIx9hiMBFlK4NHUbFdgY6Qp/hSCMNurctwz1jpsXEnT4eHg1YWXfquoH8s4swIjkFCMBF6Ejc3cUkQIDAQAB","manifest_version":2,"name":"WebRTC Internals Extension","permissions":["webrtcInternalsPrivate"],"version":"2.0.2"},"never_activated_since_loaded":true,"path":"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\91.0.864.41\\resources\\webrtc_internals","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"nkeimhogjdpnpccoofpliimaahmaaome":{"active_permissions":{"api":["desktopCapture","processes","webrtcAudioPrivate","webrtcDesktopCapturePrivate","webrtcLoggingPrivate","system.cpu","enterprise.hardwarePlatform"],"manifest_permissions":[]},"commands":{},"content_settings":[],"creation_flags":1,"events":["runtime.onConnectExternal"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13296050486473066","location":5,"manifest":{"background":{"page":"background.html","persistent":false},"externally_connectable":{"matches":["https://*.google.com/*","https://*.microsoft.com/*","https://*.skype.com/*"]},"incognito":"split","key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDAQt2ZDdPfoSe/JI6ID5bgLHRCnCu9T36aYczmhw/tnv6QZB2I6WnOCMZXJZlRdqWc7w9jo4BWhYS50Vb4weMfh/I0On7VcRwJUgfAxW2cHB+EkmtI1v4v/OU24OqIa1Nmv9uRVeX0GjhQukdLNhAE6ACWooaf5kqKlCeK+1GOkQIDAQAB","manifest_version":2,"name":"Google Hangouts","permissions":["desktopCapture","enterprise.hardwarePlatform","processes","system.cpu","webrtcAudioPrivate","webrtcDesktopCapturePrivate","webrtcLoggingPrivate"],"version":"1.3.18"},"never_activated_since_loaded":true,"path":"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\101.0.1210.32\\resources\\hangout_services","preferences":{},"regular_only_preferences":{},"service_worker_registration_info":{"version":"1.3.17"},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false}}},"homepage_is_newtabpage":false,"pinned_tabs":[],"protection":{"macs":{"browser":{"show_home_button":"ED1D3E924A358B3098635533C70C88064483A192E634374FFBD57DC90D9E793D"},"default_search_provider_data":{"template_url_data":"FF0B01EEFED813EB1D17DA45C92D0868CCC9E216E1077D8FB778525E70E3F990"},"edge":{"services":{"account_id":"97E89C47CDD71586DFDCDFDE590B684D68D39EC93AB29AEC971538F9798CE4AB","identity":{"schema":"6807EB177A3B81C5302933C405D3BA060D572D291AEC649D5EF373FAC329D54A"},"last_account_id":"0883BB4CC8771B5F78984FD0E7DE83D27BDC04E995B91A16A22778EC02AEB100","last_username":"81B4CF14C49C694E2B5C01D573D2C6602D7B94ECC90544D7C648150B24084590"}},"extensions":{"settings":{"ampmimodbocknpfehkbdjolnnbongejb":"96A224F02DCD66E0C92F1B48AA4C107C87A87AAB9582AF185CF49490FB2A56EC","dgiklkfkllikcanfonkcabmbdfmgleag":"C43BB8D760F6BFCD6D10077BF7D72E291E0C66A51BA4CA0404897FAFD827A0AE","fikbjbembnmfhppjfnmfkahdhfohhjmg":"E5364F89866009937EEDD529AFA1439C9309A3A165C9768CC29712DA6FCA1301","fogppepbgmgkpdkinbojbibkhoffpief":"7B5917570231FB1FD7518F4BEDA8ED0AC8FC1894480C710C2C6C5CA88CE8984C","geiinlhabolacmdgdkbkppfmijlemjep":"25CCA2A9ADB0BF596B079371706F47BE8D134CD9083ABB94749FDABF79EAE30B","iglcjdemknebjbklcgkfaebgojjphkec":"3CA0B147E36762CBF51D0FA56D3AAED0EA91B49428E7E53D5D695FAE7DAB0C35","ihmafllikibpmigkcoadcmckbfhibefp":"C4ECDCD4BD3DCDA80AE5CDFBFC545FCBC6854AA6F97CCEF05275C8E86FC7A3F5","jdiccldimpdaibmpdkjnbmckianbfold":"DA828135C72B81A827BB5E930A85A4D84DF8AA683F3AFD4AF333DC58770350DC","kmendfapggjehodndflmmgagdbamhnfd":"2B8220ACDD4240E5ADC6B83FEAD6EE8444C868EC153D28185F0DDA7FF3254CE5","mhjfbmdgcfjbbpaeojofohoefgiehjai":"97F24EF13829E4B63043E8A56D403070B3B703206F16E90C5AF8CEEC7EB0C08A","ncbjelpjchkpbikbpkcchkhkblodoama":"87EABDFF7C00BDEB2B1848450530914E4B1C02EF6B9195D83DCF31A58A593CAF","nkeimhogjdpnpccoofpliimaahmaaome":"F027A853871EF9D8CF7F457B1691C03F6B17548512784D7137859BAD4FB181D0"}},"homepage":"9060578BAAFDA76EEE48EE0F93A3BDF95120826F0CBC0330A7D4B9237B09CB94","homepage_is_newtabpage":"A18A72B7C5BDAA22472B1B29FECB7CEE9C599BF12A82E0777629EF42DAF62FC5","media":{"cdm":{"origin_data":"F1A1CBA95B534887474C7314DED8FCD730BD4896DA8CADBBE546AA12FA217ED6"},"storage_id_salt":"D24D5287031556489C35421D43BD4E7DB37C21F619D6C47809009339F4023FF6"},"pinned_tabs":"B5620DBF5B137A4C9AA8077D6A59BFAC8FFE48F14315CF6879E42435CA47EDE6","prefs":{"preference_reset_time":"A249C5525282371CA16AC17FAEAF12BC79486048EE0043E7CF83EB0CE662E4D4"},"safebrowsing":{"incidents_sent":"CC27E9B4002DBDBA1F57DD4451214B9B3BCF40A95FC4AF9BB342B7EBD2B10405"},"search_provider_overrides":"3E2C10CFC3D9CF9DA644D6D123D304455CF6018B622029040536D4AA92AE4F0A","session":{"restore_on_startup":"2AEBC41CF62243074A7C0D17B5D32B09B7F6650F9D87D2378B2FF591FE68A022","startup_urls":"F3BBA94A3A5B32433EEE33A5F23AD2FCE643A1F73944C5C59B589B38DFE2671F"},"settings_reset_prompt":{"last_triggered_for_default_search":"16BDDF1926F6CA0333CBC820B90ECD6762BBC9A23577F1E598C3DE32C9A01F52","last_triggered_for_homepage":"8CA8C46BA04B9C749E41C1378F1A48352199ABAD59D49A316029A69A00F333C7","last_triggered_for_startup_urls":"6F15B142EB3C3B96FAE106D6612916EB229EA3D61B02ECD17141B19F311623A6","prompt_wave":"CC9F250AA1508FC933EFC53223FF65468401C2F587011489C60ABCB9FC099227"},"software_reporter":{"prompt_seed":"D946C49A0D48E8A866B5F1AE07987DF50440D60496C556DD1058C85401219369","prompt_version":"C1419D8B02E50C3BEEA51D81F3E059F8133DCFEE52803A661B9882042DE1F223","reporting":"04035D0FC45ABB5C50CD109D37AA432B812884C648BBE3A741ECB74DDC207F2F"}},"super_mac":"AE9F7E846EA5DB9FA2D0ED15D1F4F341C5FA2F2D2A65C3CB7C3D3646A6A1952E"}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\zdenk\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\zdenk\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\zdenk\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\zdenk\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\zdenk\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\zdenk\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\zdenk\AppData\Local\Microsoft\Edge\User Data\Default\Web Data was reset successfully
C:\Users\zdenk\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\zdenk\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Default User\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\zdenk\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\zdenk\AppData\Local\Mozilla\Firefox\Profiles\9myba43u.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\zdenk\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\zdenk\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=4029 folders=3620 428462750 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Reset Hosts File ======================

Hosts File Reset Successfully

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\zdenk\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\DumpStack.log.tmp"  not deleted
"C:\Users\zdenk\AppData\Local\AVAST Software\Avast\datascan.json"  not found
"C:\Users\zdenk\AppData\Local\AVAST Software"  deleted

==== EOF on po 06.03.2023 at 11:03:30,28 ======================

[JaRon]

JRT nie je nevyhnutne pouzit, prescanuj s ADWCleanerom - preventivne

[dreyfus]

Aktualizoval jsem Adwcleaner a RougeKiller. Znovu jsem proved kontrolu a nic nenašel. Zítra se znovu obrátím na technickou podporu seznamu. Dnes už tam nejsou.

[JaRon]

Skus kliknut na profil s bodkou a bude tam nejake oznamenie, ktore by malo zmiznut ,,, snad

[dreyfus]

Problém je vyřešen. Ukázalo se, že mám na seznamu tři účty. Z toho na dvouch jsem měl několik nepřečtených nedůležitých zpráv. Po jejich přečtení a odstranění červená tečka u profilového loga všech účtů zmizela. Omlouvám se za obtěžování, ale snad vyřešení tohoto problému pomůže i někomu jinému.

[JaRon]

OK, aspon mas vycisteny pocitac - zoek