Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by kedar on 16.11.2021 at 14:52:06,15.
Microsoft Windows 10 Home 10.0.19043 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\kedar\OneDrive\Plocha\cisteni\cist\zoek1\zoek (1).exe [Scan all users] [Script inserted]
==== Older Logs ======================
C:\zoek-results2021-11-08-203416.log 895994 bytes
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\Users\kedar\AppData\Local\DBG deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\hpikgdpu.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Added to C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\hpikgdpu.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Deleted from C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\lq14w118.default-1522607936553\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Added to C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\lq14w118.default-1522607936553\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Deleted from C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\nqbl1xsv.default-1581607266712\prefs.js:
user_pref("browser.newtab.url", "about:newtab");
Added to C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\nqbl1xsv.default-1581607266712\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\Users\kedar\AppData\Roaming\discord deleted
C:\Users\kedar\AppData\Roaming\Spotify deleted
C:\PROGRA~3\{6A1798B4-4BC3-42D3-8545-B1A43208F7FC} deleted
C:\Users\kedar\AppData\Local\oobelibMkey.log deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-19234b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-19239b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-1923ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-1923be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-1923d0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-1923e2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-192403.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-192405.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-192426.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-192447.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-192469.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-1924a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-1924ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-19252a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-19256b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-19257c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-1925cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-19263c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1868-116c-192747.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579735.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579737.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579749.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-57974b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-57974d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-57974f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579760.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579762.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579764.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579766.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579788.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-57978a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-5797ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-5797cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-5797de.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-5797ff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579811.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579813.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c34-39c8-579815.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c3d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c3f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c68.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c6a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c7c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c7e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c80.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c91.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702c93.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702ca5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702ca7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702ca9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702cbb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702cbd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e2c-5658-702cce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d5775.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d5777.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d5788.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d578a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d578c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d579e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57a0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57b6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57e3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e4-5788-d57f7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a57b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a57c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a57c6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a57d7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a57f8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a580a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a580c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a581e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a582f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a5831.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a5833.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a5845.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a5847.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a5859.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a587a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a588b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a588d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a588f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45d4-3c58-a58a1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254add.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254aef.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254af1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254af3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b05.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b07.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b09.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b1a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b1c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b1e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b30.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b32.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b34.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b48.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b4a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b4c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b5d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-520c-4ce0-254b5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af03.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af15.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af26.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af28.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af3a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af3c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af4d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af6f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af71.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af82.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af84.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539af96.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539afa8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539afd8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539afda.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539affc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539b02d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539b03e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-72dc-8ce0-539b050.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc660.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc662.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc674.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc685.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc697.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc6a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc6da.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc6dc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc6de.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc6ef.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc701.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc712.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc714.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc736.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc747.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc759.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc76b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc77c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d68-d5c-cc78e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-26ff25.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-26ff46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-26ff58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-26ff79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-26ff8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-26ff8d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-26ff9e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-27006b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-27008d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-2700be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-2700ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-270110.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-270131.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-270152.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-270173.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-270185.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-2701a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-2701b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-3e94-2701ca.tmp deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\WINDOWS\Syswow64\GroupPolicy\gpt.ini deleted
"C:\DumpStack.log.tmp" not deleted
"C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\oobelibMkey.log" not deleted
"C:\Users\kedar\AppData\Local\Avast Software\Avast\datascan.json" not deleted
"C:\Users\kedar\AppData\Local\Avast Software" not deleted
"C:\Users\kedar\AppData\Local\Avast Software\Avast" not deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\hpikgdpu.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\lq14w118.default-1522607936553
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\nqbl1xsv.default-1581607266712
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
ProfilePath: C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\hpikgdpu.default
- __MSG_avastAppName__ - %ProfilePath%\extensions\sp@avast.com.xpi
- Avast Online Security - %ProfilePath%\extensions\wrc@avast.com.xpi
- short_ __MSG_name__ - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
ProfilePath: C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\lq14w118.default-1522607936553
- short_ FFZ - %ProfilePath%\extensions\frankerfacez@frankerfacez.com.xpi
- short_ passwords - %ProfilePath%\extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi
- Avast Online Security - %ProfilePath%\extensions\wrc@avast.com.xpi
- short_ __MSG_name__ - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
ProfilePath: C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\nqbl1xsv.default-1581607266712
- short_ FFZ - %ProfilePath%\extensions\frankerfacez@frankerfacez.com.xpi
- short_ uBlock\u2080 - %ProfilePath%\extensions\uBlock0@raymondhill.net.xpi
- short_ 1Password - %ProfilePath%\extensions\{d634138d-c276-4fc8-924b-40a0ea21d284}.xpi
==== Firefox Plugins ======================
Profilepath: C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\hpikgdpu.default
- C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_113.dll - [?]
- C:\Program Files x86\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll - [?]
- C:\Program Files x86\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll - [?]
Profilepath: C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\lq14w118.default-1522607936553
- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_142.dll - [?]
- C:\Program Files x86\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll - [?]
- C:\Program Files x86\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll - [?]
Profilepath: C:\Users\kedar\AppData\Roaming\Mozilla\Firefox\Profiles\nqbl1xsv.default-1581607266712
- C:\Program Files x86\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll - [?]
- C:\Program Files x86\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll - [?]
124FA95972259D35F25B6133DD4DC425 - C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll - Silverlight Plug-In
29D9DD280A871C15C8517D30969A65D5 - C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrlui.dll - Microsoft® Silverlight
==== Chromium Look ======================
Streamlabs Export To StreamElements - kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\micpdieddpifbgnnlbelgamnfpeonkpe
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} -
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} -
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} -
http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} -
http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
==== Reset Google Chrome ======================
C:\Users\kedar\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\kedar\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\kedar\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\kedar\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\kedar\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\kedar\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\kedar\AppData\Local\Microsoft\Edge\User Data\Default\Web Data was reset successfully
C:\Users\kedar\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal was reset successfully
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\kedar\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\kedar\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
C:\Users\kedar\AppData\Local\Mozilla\Firefox\Profiles\nqbl1xsv.default-1581607266712\cache2 emptied successfully
==== Empty Edge Cache ======================
Edge Cache Emptied Successfully
==== Empty Chrome Cache ======================
C:\Users\kedar\AppData\Local\CCleaner Browser\User Data\Default\Cache emptied successfully
C:\Users\kedar\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\kedar\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=14309 folders=11909 4344274083 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\kedar\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\kedar\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\DumpStack.log.tmp" not deleted
"C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\oobelibMkey.log" not deleted
"C:\Users\kedar\AppData\Local\Avast Software\Avast\datascan.json" not found
"C:\Users\kedar\AppData\Local\Avast Software" not found
==== EOF on 16.11.2021 at 15:48:49,17 ======================
produktu : Zemana AntiMalware
Stav kontroly : Dokončena
Datum kontroly : 16.11.2021 15:55:49
Typ kontroly : Inteligentní kontrola
Čas trvání : 00:00:33
Zkontrolované objekty : 2639
Zjištěné objekty : 0
Vyloučené objekty : 0
Automatické odesílání : Ano
Operační systém : Windows 10 x64
Procesor : 8X Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Režim systému BIOS : UEFI
Informace o doméně : WORKGROUP,False,NetSetupWorkgroupName
CUID : 12A128054FC0BD8C9B6786
Malwarebytes
www.malwarebytes.com-Podrobnosti logovacího souboru-
Datum skenování: 16.11.21
Čas skenování: 15:57
Logovací soubor: 790db218-46ed-11ec-a1e1-40167ead14e1.json
-Informace o softwaru-
Verze: 4.4.10.144
Verze komponentů: 1.0.1499
Aktualizovat verzi balíku komponent: 1.0.47256
Licence: Zkušební
-Systémová informace-
OS: Windows 10 (Build 19043.1348)
CPU: x64
Systém souborů: NTFS
Uživatel: Kjodar\kedar
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 506055
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 6 min, 12 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
WMI: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)