Prosím o kontrolu logu -- kombinace XP a W10

Zpráva

misut · #1 Příspěvek od **misut** » 08 led 2018 16:44

Prosím o kontrolu logu a jeho vyčištění .
Experimentoval jsem s W10 a nyní se mi při bootu objevují W10-ky dvě. Jen jedna je ale funkční , problém nastal při formátování oddílu s w10 , kdy vypla el. .Po zapnutí jsem oddíl znovu naformátoval a nainstaloval znovu.Od té doby jsou při spuštění dvě verze W10. Špatná se nerozběhne , protože se objeví hláška /C:\Windows\System32\Logfiles\Srt\SrtTrail.txt/ - ta ,ale fakticky v PC není .Prošel jsem přes google všechna možná témata k tomu , ale nic.
Např. Problém soubor protokolu.... "SrtTrail.txt - poradna Živě.cz - Zive.cz
Nejde boot Windows 10 [srtTrail.txt] - PC-HELP.CZ
různé fixy na youtube . Dle jednoho návodu jsem nastavil obrazovku na 5sec. dal Xp jako primární a
je to . Druhá W10 je funkční
Prosím o kontrolu protože jsem tam natáhl věcí

Zkoušel jsem z uvedených stránek
Stažení FRSTLauncheru
Odkaz ke stažení: http://viry.xf.cz/pro_usery/FRSTLauncher.exe

ale po spuštění mi napíše ," že musím stáhnout verzi PC - 32 bit." Ta je , ale stažená správně , proto
log z FRST

Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02.01.2018
Ran by Josef (administrator) on MISUT (08-01-2018 16:07:03)
Running from C:\Documents and Settings\Josef\Plocha
Loaded Profiles: Josef (Available Profiles: Josef & Administrator & Guest)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Nero AG) C:\Program Files\Nero\Tools\InCD\InCDSrv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Nero AG) C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(PS Media s.r.o.) C:\WINDOWS\system32\ssins.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Policies\Explorer\Run: [javar] => C:\Documents and Settings\Josef\Data aplikací\java\java.exe
HKU\S-1-5-21-2659733977-570214497-571619954-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6564776 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-2659733977-570214497-571619954-1004\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [204288 2009-02-04] (Microsoft Corporation)
HKU\S-1-5-21-2659733977-570214497-571619954-1004\...\Policies\Explorer\Run: [java] => C:\Documents and Settings\Josef\Data aplikací\java\java.exe
HKU\S-1-5-21-2659733977-570214497-571619954-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssmypics.scr [47104 2008-04-14] (Microsoft Corporation)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{45D39D7E-DCDA-4B5C-8AC0-202930864B89}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4FA81D10-A15A-4D37-946E-9A1F29A4BABF}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2659733977-570214497-571619954-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
SearchScopes: HKU\S-1-5-21-2659733977-570214497-571619954-1004 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2659733977-570214497-571619954-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll [2004-05-12] (Hewlett-Packard Company)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093 [2018-01-08]
FF Homepage: C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093 -> hxxps://www.seznam.cz/
FF Extension: (Google Translator for Firefox) - C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093\Extensions\translator@zoli.bod.xpi [2017-02-02] [Legacy]
FF Extension: (uBlock Origin) - C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093\Extensions\uBlock0@raymondhill.net.xpi [2017-12-25]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2011-09-23] (Nero AG)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-12-12] (Adobe Systems Incorporated) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1349576 2014-10-01] (ESET)
R2 InCDSrv; C:\Program Files\Nero\Tools\InCD\InCDSrv.exe [1420592 2009-10-16] (Nero AG)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [641832 2011-09-23] (Nero AG)
R2 NeroRegInCDSrv; C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe [53560 2009-10-16] (Nero AG)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
S3 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [65536 2004-03-18] (HP) [File not signed]
S2 SkypeUpdate; C:\Program Files\Skype\Updater\Updater.exe [317400 2017-04-05] (Skype Technologies) [File not signed]
R2 ssinstall; C:\WINDOWS\System32\ssins.exe [4696960 2017-05-13] (PS Media s.r.o.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7757040 2017-04-06] (TeamViewer GmbH)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Apowersoft_AudioDevice; C:\WINDOWS\System32\drivers\Apowersoft_AudioDevice.sys [26032 2014-04-09] (Wondershare)
S3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1763584 2011-07-28] (Atheros Communications, Inc.) [File not signed]
S3 BazisVirtualCDBus; C:\WINDOWS\System32\DRIVERS\BazisVirtualCDBus.sys [121688 2015-09-28] (Sysprogs OU)
R3 BCMTPM; C:\WINDOWS\System32\DRIVERS\btpmw32.sys [17290 2006-05-25] (Broadcom Corp.)
R1 BIOS; C:\WINDOWS\system32\drivers\BIOS.sys [13696 2005-03-16] (BIOSTAR Group) [File not signed]
S3 btwmodem; C:\WINDOWS\System32\DRIVERS\btwmodem.sys [30189 2006-05-12] (Broadcom Corporation.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [191928 2014-10-10] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135296 2014-10-10] (ESET)
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [176448 2014-10-10] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [39464 2014-10-10] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [63160 2014-10-10] (ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\DRIVERS\ew_usbccgpfilter.sys [15360 2017-04-11] (Huawei Technologies Co., Ltd.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [51088 2004-06-21] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2004-06-21] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21744 2004-06-21] (HP)
R3 InCDFs; C:\WINDOWS\System32\DRIVERS\InCDFs.sys [130200 2009-10-16] (Nero AG)
R3 InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [48280 2009-10-16] (Nero AG)
R1 InCDRec; C:\WINDOWS\System32\DRIVERS\InCDRec.sys [19096 2009-10-16] (Nero AG)
S3 IT9135BDA; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [145280 2013-03-01] (ITE )
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2011-11-20] (Padus, Inc.) [File not signed]
S3 snpstd2; C:\WINDOWS\System32\DRIVERS\snpstd2.sys [334080 2004-07-28] ()
R2 thdudf; C:\WINDOWS\System32\DRIVERS\thdudf.sys [66944 2011-07-21] (TOSHIBA Corporation) [File not signed]
R3 WinDriver6; C:\WINDOWS\System32\drivers\windrvr6.sys [186592 2007-06-17] (Jungo) [File not signed]
S3 btaudio; system32\drivers\btaudio.sys [X]
S3 BTDriver; system32\DRIVERS\btport.sys [X]
S3 BTKRNL; system32\DRIVERS\btkrnl.sys [X]
S3 BTWDNDIS; system32\DRIVERS\btwdndis.sys [X]
S3 BTWUSB; System32\Drivers\btwusb.sys [X]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2017-04-11] (Huawei Technologies Co., Ltd.)
U5 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2011-12-13] () [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-08 16:07 - 2018-01-08 16:07 - 000011502 _____ C:\Documents and Settings\Josef\Plocha\FRST.txt
2018-01-08 16:05 - 2018-01-08 16:05 - 000112640 _____ (forum.viry.cz) C:\Documents and Settings\Josef\Plocha\FRSTLauncher.exe
2018-01-08 16:04 - 2018-01-08 16:06 - 000029696 _____ C:\Documents and Settings\Josef\Local Settings\Data aplikací\MSGBOX.EXE
2018-01-08 16:01 - 2018-01-08 16:01 - 001753600 _____ (Farbar) C:\Documents and Settings\Josef\Plocha\FRST.exe
2018-01-07 19:41 - 2018-01-07 19:41 - 000000818 _____ C:\Documents and Settings\Josef\Plocha\Zástupce - egui.lnk
2018-01-07 16:45 - 2018-01-07 16:45 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\Nová složka
2018-01-07 11:09 - 2018-01-07 11:09 - 000000000 ____D C:\Temp
2018-01-06 15:34 - 2018-01-06 16:26 - 000000210 _____ C:\Documents and Settings\Josef\Plocha\boot.ini.ini
2018-01-06 15:05 - 2018-01-06 16:26 - 000000218 _____ C:\Documents and Settings\Josef\Plocha\boot.i.txt
2018-01-06 12:23 - 2018-01-06 12:23 - 000000000 ___HD C:\$SysReset
2018-01-06 12:09 - 2018-01-06 12:09 - 000000000 ____D C:\Program Files\EaseUS
2018-01-04 15:16 - 2018-01-04 15:16 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\Jihosoft ISO Maker
2018-01-04 15:15 - 2018-01-04 15:15 - 000000000 ____D C:\Program Files\ISO Maker Free
2018-01-04 15:08 - 2018-01-04 15:08 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\WinCDEmu
2018-01-04 06:43 - 2018-01-07 12:01 - 000008192 __RSH C:\BOOTSECT.BAK
2018-01-04 06:43 - 2017-11-26 12:19 - 000397754 __RSH C:\bootmgr
2018-01-04 06:43 - 2017-09-29 12:49 - 000000001 ___SH C:\BOOTNXT
2018-01-01 18:22 - 2018-01-05 22:38 - 000094032 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
2018-01-01 15:53 - 2018-01-01 15:53 - 000000000 ____D C:\Documents and Settings\Josef\Local Settings\Data aplikací\ImageMaster
2017-12-31 17:21 - 2018-01-08 15:08 - 000000222 ____C C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2017-12-31 17:21 - 2017-12-31 18:28 - 000000216 ____C C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2017-12-31 15:53 - 2017-12-31 15:53 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2934207$
2017-12-31 15:53 - 2017-12-31 15:53 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2930275$
2017-12-31 15:53 - 2017-12-31 15:53 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2922229$
2017-12-31 15:43 - 2017-12-31 15:43 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2017-12-31 15:43 - 2017-12-31 15:43 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2884256$
2017-12-31 15:14 - 2014-02-27 00:28 - 000013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2017-12-31 15:14 - 2014-02-27 00:28 - 000013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
2017-12-31 14:39 - 2017-12-31 14:39 - 000000000 ____D C:\Program Files\ESET
2017-12-31 14:39 - 2017-12-31 14:39 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
2017-12-31 14:39 - 2017-12-31 14:39 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\ESET
2017-12-31 14:32 - 2017-12-31 14:32 - 000000000 ____D C:\Program Files\Duolabs
2017-12-31 13:59 - 2017-12-31 13:59 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\ESET(3)

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-08 16:07 - 2016-11-14 10:21 - 000000000 ____D C:\FRST
2018-01-08 16:07 - 2016-02-20 15:48 - 000000000 ____D C:\Documents and Settings\Josef\Local Settings\Temp
2018-01-08 16:07 - 2011-11-17 09:29 - 000000000 ____D C:\Documents and Settings\Josef\Plocha
2018-01-08 16:06 - 2011-11-17 09:29 - 000000000 ___HD C:\Documents and Settings\Josef\Local Settings\Data aplikací
2018-01-08 15:56 - 2017-07-08 10:34 - 000000914 ____C C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-01-08 15:10 - 2004-08-18 13:00 - 000012598 ____C C:\WINDOWS\system32\wpa.dbl
2018-01-08 15:08 - 2016-03-26 01:29 - 000000278 ____C C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2659733977-570214497-571619954-1004.job
2018-01-08 15:08 - 2011-09-29 12:29 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2018-01-08 14:21 - 2011-11-17 09:29 - 000000178 __SHC C:\Documents and Settings\Josef\ntuser.ini
2018-01-08 14:21 - 2011-09-29 12:29 - 000032380 _____ C:\WINDOWS\SchedLgU.Txt
2018-01-08 10:37 - 2011-11-17 17:04 - 000000466 ___HC C:\WINDOWS\Tasks\User_Feed_Synchronization-{02D609C1-B138-47A6-B631-4C8C2E89B3B5}.job
2018-01-08 08:53 - 2017-05-17 12:42 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\dream
2018-01-07 22:13 - 2011-09-29 14:18 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-01-07 21:55 - 2012-10-12 11:52 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\Skype
2018-01-07 21:21 - 2016-01-24 14:01 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\espana
2018-01-07 19:39 - 2011-09-29 14:16 - 000000210 ___SH C:\boot.ini
2018-01-07 19:39 - 2004-08-18 13:00 - 000000792 ____C C:\WINDOWS\win.ini
2018-01-07 19:39 - 2004-08-18 13:00 - 000000246 ____C C:\WINDOWS\system.ini
2018-01-07 17:15 - 2012-04-02 16:05 - 000000000 ____D C:\Program Files\Unlocker
2018-01-07 17:13 - 2011-09-29 14:18 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-01-07 17:12 - 2011-11-17 09:29 - 000000000 ___RD C:\Documents and Settings\Josef\Nabídka Start\Programy
2018-01-07 16:28 - 2016-03-26 01:29 - 000000286 ____C C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2659733977-570214497-571619954-1004.job
2018-01-07 13:19 - 2011-11-17 09:29 - 000000000 ___RD C:\Documents and Settings\Josef\Nabídka Start
2018-01-07 12:56 - 2013-04-02 11:03 - 000000000 ____D C:\WINDOWS\system32\NtmsData
2018-01-07 10:01 - 2011-11-20 19:05 - 000000354 ____H C:\Boot.BAK
2018-01-07 09:51 - 2016-04-10 19:23 - 000000028 ____C C:\WINDOWS\OutLog.txt
2018-01-06 18:05 - 2014-01-15 16:16 - 000001224 ___HC C:\WINDOWS\EPMBatch.ept
2018-01-06 18:02 - 2016-04-10 19:19 - 000000000 ____C C:\WINDOWS\BcdLog.txt
2018-01-06 17:34 - 2011-09-29 14:11 - 000000000 ____D C:\WINDOWS\security
2018-01-06 16:17 - 2012-04-16 12:10 - 000000000 ____D C:\WINDOWS\pss
2018-01-06 16:13 - 2011-11-17 09:29 - 000000000 __RHD C:\Documents and Settings\Josef\Data aplikací
2018-01-06 14:53 - 2011-09-29 14:19 - 001100766 ____C C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-06 14:53 - 2004-08-18 13:00 - 000468274 ____C C:\WINDOWS\system32\perfh005.dat
2018-01-06 14:53 - 2004-08-18 13:00 - 000094656 ____C C:\WINDOWS\system32\perfc005.dat
2018-01-05 22:38 - 2011-09-29 12:29 - 000000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2018-01-04 20:46 - 2011-09-29 14:11 - 000000000 ___HD C:\WINDOWS\inf
2018-01-04 15:17 - 2011-11-17 09:29 - 000000000 ___RD C:\Documents and Settings\Josef\Dokumenty
2018-01-04 12:33 - 2014-07-28 12:21 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\sejmout
2018-01-04 07:31 - 2011-09-29 14:11 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
2018-01-04 07:30 - 2016-11-10 18:57 - 000004507 ____C C:\WINDOWS\imsins.BAK
2018-01-03 21:38 - 2017-06-18 09:42 - 000000559 ____C C:\Documents and Settings\Josef\Plocha\rcc.ini
2018-01-03 18:36 - 2013-03-02 20:06 - 000002562 ____C C:\WINDOWS\diagwrn.xml
2018-01-03 18:36 - 2013-03-02 20:06 - 000001908 ____C C:\WINDOWS\diagerr.xml
2018-01-02 15:22 - 2016-02-27 13:36 - 000000000 ____D C:\AdwCleaner
2018-01-02 15:22 - 2011-09-29 12:29 - 000000178 __SHC C:\Documents and Settings\LocalService\ntuser.ini
2018-01-02 15:17 - 2011-11-17 09:29 - 000000000 ____D C:\Documents and Settings\Josef
2018-01-01 21:54 - 2011-11-27 16:24 - 000000000 ____D C:\WINDOWS\Minidump
2018-01-01 15:58 - 2011-09-29 14:18 - 000000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2018-01-01 14:09 - 2011-11-17 11:07 - 000000000 ____D C:\Documents and Settings\Josef\Dokumenty\Stažené soubory
2017-12-31 17:21 - 2016-02-20 17:00 - 000153176 ____C C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-31 14:50 - 2016-04-12 12:37 - 000940958 ____C C:\WINDOWS\ntbtlog.txt
2017-12-31 14:32 - 2017-06-18 15:21 - 000000000 ____D C:\Documents and Settings\Guest
2017-12-31 14:32 - 2013-12-16 17:12 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Duolabs
2017-12-31 14:32 - 2011-11-17 12:30 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
2017-12-31 14:32 - 2011-09-29 12:55 - 000000000 ____D C:\Documents and Settings\Administrator
2017-12-31 14:32 - 2011-09-29 12:29 - 000000000 __SHD C:\Documents and Settings\NetworkService
2017-12-31 14:32 - 2011-09-29 12:29 - 000000000 __SHD C:\Documents and Settings\LocalService
2017-12-31 14:32 - 2011-09-29 12:23 - 000000000 ____D C:\WINDOWS\Registration
2017-12-27 18:04 - 2016-07-20 15:00 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\Vso
2017-12-27 16:42 - 2011-11-18 08:28 - 000000000 ____D C:\Documents and Settings\Josef\Local Settings\Data aplikací\ApplicationHistory
2017-12-26 21:16 - 2016-02-20 15:48 - 000000000 ____D C:\Documents and Settings\NetworkService\Local Settings\temp
2017-12-26 10:35 - 2011-11-17 09:29 - 000000000 ___HD C:\Documents and Settings\Josef\Okolní síť
2017-12-25 22:26 - 2015-02-14 17:52 - 000000000 ____D C:\Program Files\KMPlayer
2017-12-15 10:59 - 2011-11-25 22:22 - 000001189 ____C C:\Documents and Settings\Josef\Data aplikací\vso_ts_preview.xml
2017-12-12 12:56 - 2017-10-14 18:56 - 009497600 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2017-12-12 12:56 - 2015-11-14 17:37 - 000803328 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-12-12 12:56 - 2015-11-14 17:37 - 000144896 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-12-12 12:56 - 2011-09-29 12:25 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-12-10 16:44 - 2012-10-29 17:21 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\vlc

==================== Files in the root of some directories =======

2015-03-15 19:26 - 2015-03-05 13:55 - 000000093 ____C () C:\Program Files\dependentlibs.list
2015-03-15 19:26 - 2015-03-05 14:06 - 000000899 ____C () C:\Program Files\freebl3.chk
2015-03-15 19:26 - 2015-03-15 19:33 - 000017516 ____C () C:\Program Files\install.log
2015-03-15 19:26 - 2015-03-05 14:06 - 000000899 ____C () C:\Program Files\nssdbm3.chk
2015-03-15 19:26 - 2015-03-05 15:39 - 000002166 ____C () C:\Program Files\precomplete
2015-03-15 19:26 - 2015-03-05 12:39 - 000000662 ____C () C:\Program Files\removed-files
2015-03-15 19:26 - 2015-03-05 14:06 - 000000899 ____C () C:\Program Files\softokn3.chk
2015-03-15 19:26 - 2015-03-05 14:05 - 000002260 ____C () C:\Program Files\voucher.bin
2013-03-13 08:03 - 2013-03-13 08:03 - 002174976 ____C (Advanced Micro Devices Inc.) C:\Program Files\Common Files\atimpenc.dll
2011-12-13 16:38 - 2013-11-23 15:34 - 000000744 ____C () C:\Documents and Settings\Josef\Data aplikací\filterclsid.dat
2011-11-25 22:22 - 2017-12-15 10:59 - 000001189 ____C () C:\Documents and Settings\Josef\Data aplikací\vso_ts_preview.xml
2011-11-17 10:13 - 2017-05-12 08:52 - 000093184 ____C () C:\Documents and Settings\Josef\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-11-18 08:28 - 2011-11-18 08:28 - 000000125 ____C () C:\Documents and Settings\Josef\Local Settings\Data aplikací\fusioncache.dat
2018-01-08 16:04 - 2018-01-08 16:06 - 000029696 _____ () C:\Documents and Settings\Josef\Local Settings\Data aplikací\MSGBOX.EXE
2011-11-20 10:08 - 2011-11-20 10:59 - 000001658 ____C () C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
2011-12-13 10:00 - 2014-07-21 09:44 - 000000000 ____C () C:\Documents and Settings\All Users\Data aplikací\LauncherAccess.dt
2013-02-03 15:22 - 2013-02-03 15:22 - 000000144 ____C () C:\Documents and Settings\All Users\Data aplikací\LmeUSB.log
2013-02-03 15:22 - 2013-02-03 15:22 - 000000144 ____C () C:\Documents and Settings\All Users\Data aplikací\LSDmbTH.log
2013-11-23 16:36 - 2013-11-23 16:36 - 000004104 ____C () C:\Documents and Settings\All Users\Data aplikací\ojobkspa.ako
2013-02-03 15:22 - 2013-02-03 15:22 - 000000147 ____C () C:\Documents and Settings\All Users\Data aplikací\PipShareTuner.log

Some files in TEMP:
====================
2016-10-19 16:11 - 2016-10-19 16:11 - 002458672 ____C (The OpenSSL Project, http://www.openssl.org/) C:\Documents and Settings\Josef\Local Settings\Temp\libeay32.dll
2016-10-19 16:11 - 2016-10-19 16:11 - 000970912 ____C (Microsoft Corporation) C:\Documents and Settings\Josef\Local Settings\Temp\msvcr120.dll
2016-10-19 16:11 - 2016-10-19 16:11 - 000772672 ____C () C:\Documents and Settings\Josef\Local Settings\Temp\sqlite3.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Omlouvám se , nevšiml jsem si a zkopíroval 2x stejný

misut · #2 Příspěvek od **misut** » 08 led 2018 16:58

dodatečně log Addition

#3 Příspěvek od **Rudy** » 08 led 2018 17:54

Zdravím!
Máte tu 2x Addition. Postrádám ale obsah souboru frst.txt.

misut · #4 Příspěvek od **misut** » 08 led 2018 18:46

Opraveno , omlouvám se

#5 Příspěvek od **Rudy** » 08 led 2018 18:53

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

misut · #6 Příspěvek od **misut** » 08 led 2018 19:54

Stáhl , ale nejde spustit protože se nejdná o platnou aplikaci typu Win32.
Přešel jsem na stránky - filehippo.com - kde jsou všechny verze a verze 7---- nejdou spustit,
která jde - je 6.0.4.6- a z této přikládám log . / při kontrolách jsem používal verzi 6.0.3.?/

# AdwCleaner v6.046 - Log vytvořen 08/01/2018 v 19:35:02
# Aktualizováno dne 24/04/2017 z Malwarebytes
# Databáze : 2017-04-24.1 [Místní]
# Operační systém : Microsoft Windows XP Service Pack 3 (X86)
# Uživatelské jméno : Josef - MISUT
# Spuštěno z : C:\Documents and Settings\Josef\Plocha\adwcleaner_6.046.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support

***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.

***** [ Složky ] *****

Složka nalezena: C:\sh4ldr

***** [ Soubory ] *****

Soubor nalezen: C:\sh4_service.log
Soubor nalezen: C:\shldr
Soubor nalezen: C:\WINDOWS\system32\sh4native.exe

***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL.

***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.

***** [ Zástupci ] *****

Žádný infikovaný zástupce nenalezen.

***** [ Naplánované úlohy ] *****

Žádná nebezpečná úloha nenalezena.

***** [ Registry ] *****

Nebyly nalezeny žádné škodlivé položky registru.

***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [2782 Bajty] - [27/02/2016 13:54:17]
C:\AdwCleaner\AdwCleaner[C2].txt - [2109 Bajty] - [04/03/2016 13:36:34]
C:\AdwCleaner\AdwCleaner[C3].txt - [2612 Bajty] - [02/01/2018 15:22:10]
C:\AdwCleaner\AdwCleaner[R0].txt - [2368 Bajty] - [13/11/2016 22:44:07]
C:\AdwCleaner\AdwCleaner[S0].txt - [2449 Bajty] - [13/11/2016 22:45:07]
C:\AdwCleaner\AdwCleaner[S10].txt - [2382 Bajty] - [19/11/2017 10:13:51]
C:\AdwCleaner\AdwCleaner[S11].txt - [2457 Bajty] - [29/11/2017 16:47:00]
C:\AdwCleaner\AdwCleaner[S12].txt - [2532 Bajty] - [04/12/2017 20:13:07]
C:\AdwCleaner\AdwCleaner[S13].txt - [2607 Bajty] - [17/12/2017 10:03:59]
C:\AdwCleaner\AdwCleaner[S14].txt - [2682 Bajty] - [27/12/2017 00:10:34]
C:\AdwCleaner\AdwCleaner[S15].txt - [2757 Bajty] - [31/12/2017 00:11:20]
C:\AdwCleaner\AdwCleaner[S16].txt - [2832 Bajty] - [31/12/2017 10:00:49]
C:\AdwCleaner\AdwCleaner[S17].txt - [2907 Bajty] - [01/01/2018 12:52:03]
C:\AdwCleaner\AdwCleaner[S18].txt - [2982 Bajty] - [02/01/2018 15:20:43]
C:\AdwCleaner\AdwCleaner[S19].txt - [3131 Bajty] - [08/01/2018 19:24:50]
C:\AdwCleaner\AdwCleaner[S1].txt - [2481 Bajty] - [27/02/2016 13:36:29]
C:\AdwCleaner\AdwCleaner[S20].txt - [2473 Bajty] - [08/01/2018 19:35:02]
C:\AdwCleaner\AdwCleaner[S2].txt - [2681 Bajty] - [04/03/2016 13:35:18]
C:\AdwCleaner\AdwCleaner[S3].txt - [2215 Bajty] - [04/03/2016 13:43:29]
C:\AdwCleaner\AdwCleaner[S4].txt - [1115 Bajty] - [06/03/2016 10:12:57]
C:\AdwCleaner\AdwCleaner[S5].txt - [1925 Bajty] - [13/11/2016 17:04:03]
C:\AdwCleaner\AdwCleaner[S6].txt - [1999 Bajty] - [13/11/2016 17:51:30]
C:\AdwCleaner\AdwCleaner[S7].txt - [2140 Bajty] - [13/11/2016 18:10:48]
C:\AdwCleaner\AdwCleaner[S8].txt - [2232 Bajty] - [31/10/2017 08:39:34]
C:\AdwCleaner\AdwCleaner[S9].txt - [2306 Bajty] - [05/11/2017 08:31:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S20].txt - [3131 Bajty] ##########

#7 Příspěvek od **Rudy** » 08 led 2018 19:58

Ano, promiňte, nové verze pod XP opravdu neběží. Omlouvám se. Dejte nový log FRST.

misut · #8 Příspěvek od **misut** » 08 led 2018 20:02

A kdybych přešel na tu funkční W10 projedou ty 7.-.- i XP ?

misut · #9 Příspěvek od **misut** » 08 led 2018 20:10

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02.01.2018
Ran by Josef (administrator) on MISUT (08-01-2018 20:04:00)
Running from C:\Documents and Settings\Josef\Plocha
Loaded Profiles: Josef (Available Profiles: Josef & Administrator & Guest)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Nero AG) C:\Program Files\Nero\Tools\InCD\InCDSrv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Nero AG) C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(PS Media s.r.o.) C:\WINDOWS\system32\ssins.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Policies\Explorer\Run: [javar] => C:\Documents and Settings\Josef\Data aplikací\java\java.exe
HKU\S-1-5-21-2659733977-570214497-571619954-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6564776 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-2659733977-570214497-571619954-1004\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [204288 2009-02-04] (Microsoft Corporation)
HKU\S-1-5-21-2659733977-570214497-571619954-1004\...\Policies\Explorer\Run: [java] => C:\Documents and Settings\Josef\Data aplikací\java\java.exe
HKU\S-1-5-21-2659733977-570214497-571619954-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssmypics.scr [47104 2008-04-14] (Microsoft Corporation)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{45D39D7E-DCDA-4B5C-8AC0-202930864B89}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4FA81D10-A15A-4D37-946E-9A1F29A4BABF}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2659733977-570214497-571619954-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
SearchScopes: HKU\S-1-5-21-2659733977-570214497-571619954-1004 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2659733977-570214497-571619954-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll [2004-05-12] (Hewlett-Packard Company)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093 [2018-01-08]
FF Homepage: C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093 -> hxxps://www.seznam.cz/
FF Extension: (Google Translator for Firefox) - C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093\Extensions\translator@zoli.bod.xpi [2017-02-02] [Legacy]
FF Extension: (uBlock Origin) - C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093\Extensions\uBlock0@raymondhill.net.xpi [2017-12-25]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2011-09-23] (Nero AG)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-12-12] (Adobe Systems Incorporated) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1349576 2014-10-01] (ESET)
R2 InCDSrv; C:\Program Files\Nero\Tools\InCD\InCDSrv.exe [1420592 2009-10-16] (Nero AG)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [641832 2011-09-23] (Nero AG)
R2 NeroRegInCDSrv; C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe [53560 2009-10-16] (Nero AG)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
S3 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [65536 2004-03-18] (HP) [File not signed]
S2 SkypeUpdate; C:\Program Files\Skype\Updater\Updater.exe [317400 2017-04-05] (Skype Technologies) [File not signed]
R2 ssinstall; C:\WINDOWS\System32\ssins.exe [4696960 2017-05-13] (PS Media s.r.o.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7757040 2017-04-06] (TeamViewer GmbH)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Apowersoft_AudioDevice; C:\WINDOWS\System32\drivers\Apowersoft_AudioDevice.sys [26032 2014-04-09] (Wondershare)
S3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1763584 2011-07-28] (Atheros Communications, Inc.) [File not signed]
S3 BazisVirtualCDBus; C:\WINDOWS\System32\DRIVERS\BazisVirtualCDBus.sys [121688 2015-09-28] (Sysprogs OU)
R3 BCMTPM; C:\WINDOWS\System32\DRIVERS\btpmw32.sys [17290 2006-05-25] (Broadcom Corp.)
R1 BIOS; C:\WINDOWS\system32\drivers\BIOS.sys [13696 2005-03-16] (BIOSTAR Group) [File not signed]
S3 btwmodem; C:\WINDOWS\System32\DRIVERS\btwmodem.sys [30189 2006-05-12] (Broadcom Corporation.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [191928 2014-10-10] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135296 2014-10-10] (ESET)
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [176448 2014-10-10] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [39464 2014-10-10] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [63160 2014-10-10] (ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\DRIVERS\ew_usbccgpfilter.sys [15360 2017-04-11] (Huawei Technologies Co., Ltd.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [51088 2004-06-21] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2004-06-21] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21744 2004-06-21] (HP)
R3 InCDFs; C:\WINDOWS\System32\DRIVERS\InCDFs.sys [130200 2009-10-16] (Nero AG)
R3 InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [48280 2009-10-16] (Nero AG)
R1 InCDRec; C:\WINDOWS\System32\DRIVERS\InCDRec.sys [19096 2009-10-16] (Nero AG)
S3 IT9135BDA; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [145280 2013-03-01] (ITE )
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2011-11-20] (Padus, Inc.) [File not signed]
S3 snpstd2; C:\WINDOWS\System32\DRIVERS\snpstd2.sys [334080 2004-07-28] ()
R2 thdudf; C:\WINDOWS\System32\DRIVERS\thdudf.sys [66944 2011-07-21] (TOSHIBA Corporation) [File not signed]
R3 WinDriver6; C:\WINDOWS\System32\drivers\windrvr6.sys [186592 2007-06-17] (Jungo) [File not signed]
S3 btaudio; system32\drivers\btaudio.sys [X]
S3 BTDriver; system32\DRIVERS\btport.sys [X]
S3 BTKRNL; system32\DRIVERS\btkrnl.sys [X]
S3 BTWDNDIS; system32\DRIVERS\btwdndis.sys [X]
S3 BTWUSB; System32\Drivers\btwusb.sys [X]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2017-04-11] (Huawei Technologies Co., Ltd.)
U5 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2011-12-13] () [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-08 19:48 - 2018-01-08 19:48 - 008198432 _____ (Malwarebytes) C:\Documents and Settings\Josef\Plocha\adwcleaner_7.0.6.0.exe
2018-01-08 19:32 - 2018-01-08 19:32 - 004102600 _____ C:\Documents and Settings\Josef\Plocha\adwcleaner_6.046.exe
2018-01-08 16:07 - 2018-01-08 20:04 - 000011493 _____ C:\Documents and Settings\Josef\Plocha\FRST.txt
2018-01-08 16:05 - 2018-01-08 16:05 - 000112640 _____ (forum.viry.cz) C:\Documents and Settings\Josef\Plocha\FRSTLauncher.exe
2018-01-08 16:04 - 2018-01-08 16:35 - 000029696 _____ C:\Documents and Settings\Josef\Local Settings\Data aplikací\MSGBOX.EXE
2018-01-08 16:01 - 2018-01-08 16:01 - 001753600 _____ (Farbar) C:\Documents and Settings\Josef\Plocha\FRST.exe
2018-01-07 19:41 - 2018-01-07 19:41 - 000000818 _____ C:\Documents and Settings\Josef\Plocha\Zástupce - egui.lnk
2018-01-07 16:45 - 2018-01-07 16:45 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\Nová složka
2018-01-07 11:09 - 2018-01-07 11:09 - 000000000 ____D C:\Temp
2018-01-06 15:34 - 2018-01-06 16:26 - 000000210 _____ C:\Documents and Settings\Josef\Plocha\boot.ini.ini
2018-01-06 15:05 - 2018-01-06 16:26 - 000000218 _____ C:\Documents and Settings\Josef\Plocha\boot.i.txt
2018-01-06 12:23 - 2018-01-06 12:23 - 000000000 ___HD C:\$SysReset
2018-01-06 12:09 - 2018-01-06 12:09 - 000000000 ____D C:\Program Files\EaseUS
2018-01-04 15:16 - 2018-01-04 15:16 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\Jihosoft ISO Maker
2018-01-04 15:15 - 2018-01-04 15:15 - 000000000 ____D C:\Program Files\ISO Maker Free
2018-01-04 15:08 - 2018-01-04 15:08 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\WinCDEmu
2018-01-04 06:43 - 2018-01-07 12:01 - 000008192 __RSH C:\BOOTSECT.BAK
2018-01-04 06:43 - 2017-11-26 12:19 - 000397754 __RSH C:\bootmgr
2018-01-04 06:43 - 2017-09-29 12:49 - 000000001 ___SH C:\BOOTNXT
2018-01-01 18:22 - 2018-01-08 19:37 - 000094032 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
2018-01-01 15:53 - 2018-01-01 15:53 - 000000000 ____D C:\Documents and Settings\Josef\Local Settings\Data aplikací\ImageMaster
2017-12-31 17:21 - 2018-01-08 19:39 - 000000222 ____C C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2017-12-31 17:21 - 2017-12-31 18:28 - 000000216 ____C C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2017-12-31 15:53 - 2017-12-31 15:53 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2934207$
2017-12-31 15:53 - 2017-12-31 15:53 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2930275$
2017-12-31 15:53 - 2017-12-31 15:53 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2922229$
2017-12-31 15:43 - 2017-12-31 15:43 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2017-12-31 15:43 - 2017-12-31 15:43 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2884256$
2017-12-31 15:14 - 2014-02-27 00:28 - 000013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2017-12-31 15:14 - 2014-02-27 00:28 - 000013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
2017-12-31 14:39 - 2017-12-31 14:39 - 000000000 ____D C:\Program Files\ESET
2017-12-31 14:39 - 2017-12-31 14:39 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
2017-12-31 14:39 - 2017-12-31 14:39 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\ESET
2017-12-31 14:32 - 2017-12-31 14:32 - 000000000 ____D C:\Program Files\Duolabs
2017-12-31 13:59 - 2017-12-31 13:59 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\ESET(3)

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-08 20:04 - 2016-02-20 15:48 - 000000000 ____D C:\Documents and Settings\Josef\Local Settings\Temp
2018-01-08 20:04 - 2011-11-17 09:29 - 000000000 ____D C:\Documents and Settings\Josef\Plocha
2018-01-08 20:03 - 2016-11-14 10:21 - 000000000 ____D C:\FRST
2018-01-08 20:03 - 2016-01-24 14:01 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\espana
2018-01-08 19:56 - 2017-07-08 10:34 - 000000914 ____C C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-01-08 19:41 - 2004-08-18 13:00 - 000012598 ____C C:\WINDOWS\system32\wpa.dbl
2018-01-08 19:40 - 2016-02-27 13:36 - 000000000 ____D C:\AdwCleaner
2018-01-08 19:39 - 2016-03-26 01:29 - 000000278 ____C C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2659733977-570214497-571619954-1004.job
2018-01-08 19:39 - 2011-09-29 12:29 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2018-01-08 19:38 - 2011-09-29 12:29 - 000000178 __SHC C:\Documents and Settings\LocalService\ntuser.ini
2018-01-08 19:37 - 2011-11-17 09:29 - 000000178 __SHC C:\Documents and Settings\Josef\ntuser.ini
2018-01-08 19:37 - 2011-09-29 12:29 - 000032380 _____ C:\WINDOWS\SchedLgU.Txt
2018-01-08 19:37 - 2011-09-29 12:29 - 000000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2018-01-08 19:30 - 2011-11-17 17:04 - 000000466 ___HC C:\WINDOWS\Tasks\User_Feed_Synchronization-{02D609C1-B138-47A6-B631-4C8C2E89B3B5}.job
2018-01-08 19:19 - 2012-10-12 11:52 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\Skype
2018-01-08 16:35 - 2011-11-17 09:29 - 000000000 ___HD C:\Documents and Settings\Josef\Local Settings\Data aplikací
2018-01-08 08:53 - 2017-05-17 12:42 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\dream
2018-01-07 22:13 - 2011-09-29 14:18 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-01-07 19:39 - 2011-09-29 14:16 - 000000210 ___SH C:\boot.ini
2018-01-07 19:39 - 2004-08-18 13:00 - 000000792 ____C C:\WINDOWS\win.ini
2018-01-07 19:39 - 2004-08-18 13:00 - 000000246 ____C C:\WINDOWS\system.ini
2018-01-07 17:15 - 2012-04-02 16:05 - 000000000 ____D C:\Program Files\Unlocker
2018-01-07 17:13 - 2011-09-29 14:18 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-01-07 17:12 - 2011-11-17 09:29 - 000000000 ___RD C:\Documents and Settings\Josef\Nabídka Start\Programy
2018-01-07 16:28 - 2016-03-26 01:29 - 000000286 ____C C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2659733977-570214497-571619954-1004.job
2018-01-07 13:19 - 2011-11-17 09:29 - 000000000 ___RD C:\Documents and Settings\Josef\Nabídka Start
2018-01-07 12:56 - 2013-04-02 11:03 - 000000000 ____D C:\WINDOWS\system32\NtmsData
2018-01-07 10:01 - 2011-11-20 19:05 - 000000354 ____H C:\Boot.BAK
2018-01-07 09:51 - 2016-04-10 19:23 - 000000028 ____C C:\WINDOWS\OutLog.txt
2018-01-06 18:05 - 2014-01-15 16:16 - 000001224 ___HC C:\WINDOWS\EPMBatch.ept
2018-01-06 18:02 - 2016-04-10 19:19 - 000000000 ____C C:\WINDOWS\BcdLog.txt
2018-01-06 17:34 - 2011-09-29 14:11 - 000000000 ____D C:\WINDOWS\security
2018-01-06 16:17 - 2012-04-16 12:10 - 000000000 ____D C:\WINDOWS\pss
2018-01-06 16:13 - 2011-11-17 09:29 - 000000000 __RHD C:\Documents and Settings\Josef\Data aplikací
2018-01-06 14:53 - 2011-09-29 14:19 - 001100766 ____C C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-06 14:53 - 2004-08-18 13:00 - 000468274 ____C C:\WINDOWS\system32\perfh005.dat
2018-01-06 14:53 - 2004-08-18 13:00 - 000094656 ____C C:\WINDOWS\system32\perfc005.dat
2018-01-04 20:46 - 2011-09-29 14:11 - 000000000 ___HD C:\WINDOWS\inf
2018-01-04 15:17 - 2011-11-17 09:29 - 000000000 ___RD C:\Documents and Settings\Josef\Dokumenty
2018-01-04 12:33 - 2014-07-28 12:21 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\sejmout
2018-01-04 07:31 - 2011-09-29 14:11 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
2018-01-04 07:30 - 2016-11-10 18:57 - 000004507 ____C C:\WINDOWS\imsins.BAK
2018-01-03 21:38 - 2017-06-18 09:42 - 000000559 ____C C:\Documents and Settings\Josef\Plocha\rcc.ini
2018-01-03 18:36 - 2013-03-02 20:06 - 000002562 ____C C:\WINDOWS\diagwrn.xml
2018-01-03 18:36 - 2013-03-02 20:06 - 000001908 ____C C:\WINDOWS\diagerr.xml
2018-01-02 15:17 - 2011-11-17 09:29 - 000000000 ____D C:\Documents and Settings\Josef
2018-01-01 21:54 - 2011-11-27 16:24 - 000000000 ____D C:\WINDOWS\Minidump
2018-01-01 15:58 - 2011-09-29 14:18 - 000000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2018-01-01 14:09 - 2011-11-17 11:07 - 000000000 ____D C:\Documents and Settings\Josef\Dokumenty\Stažené soubory
2017-12-31 17:21 - 2016-02-20 17:00 - 000153176 ____C C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-31 14:50 - 2016-04-12 12:37 - 000940958 ____C C:\WINDOWS\ntbtlog.txt
2017-12-31 14:32 - 2017-06-18 15:21 - 000000000 ____D C:\Documents and Settings\Guest
2017-12-31 14:32 - 2013-12-16 17:12 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Duolabs
2017-12-31 14:32 - 2011-11-17 12:30 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
2017-12-31 14:32 - 2011-09-29 12:55 - 000000000 ____D C:\Documents and Settings\Administrator
2017-12-31 14:32 - 2011-09-29 12:29 - 000000000 __SHD C:\Documents and Settings\NetworkService
2017-12-31 14:32 - 2011-09-29 12:29 - 000000000 __SHD C:\Documents and Settings\LocalService
2017-12-31 14:32 - 2011-09-29 12:23 - 000000000 ____D C:\WINDOWS\Registration
2017-12-27 18:04 - 2016-07-20 15:00 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\Vso
2017-12-27 16:42 - 2011-11-18 08:28 - 000000000 ____D C:\Documents and Settings\Josef\Local Settings\Data aplikací\ApplicationHistory
2017-12-26 21:16 - 2016-02-20 15:48 - 000000000 ____D C:\Documents and Settings\NetworkService\Local Settings\temp
2017-12-26 10:35 - 2011-11-17 09:29 - 000000000 ___HD C:\Documents and Settings\Josef\Okolní síť
2017-12-25 22:26 - 2015-02-14 17:52 - 000000000 ____D C:\Program Files\KMPlayer
2017-12-15 10:59 - 2011-11-25 22:22 - 000001189 ____C C:\Documents and Settings\Josef\Data aplikací\vso_ts_preview.xml
2017-12-12 12:56 - 2017-10-14 18:56 - 009497600 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2017-12-12 12:56 - 2015-11-14 17:37 - 000803328 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-12-12 12:56 - 2015-11-14 17:37 - 000144896 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-12-12 12:56 - 2011-09-29 12:25 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-12-10 16:44 - 2012-10-29 17:21 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\vlc

==================== Files in the root of some directories =======

2015-03-15 19:26 - 2015-03-05 13:55 - 000000093 ____C () C:\Program Files\dependentlibs.list
2015-03-15 19:26 - 2015-03-05 14:06 - 000000899 ____C () C:\Program Files\freebl3.chk
2015-03-15 19:26 - 2015-03-15 19:33 - 000017516 ____C () C:\Program Files\install.log
2015-03-15 19:26 - 2015-03-05 14:06 - 000000899 ____C () C:\Program Files\nssdbm3.chk
2015-03-15 19:26 - 2015-03-05 15:39 - 000002166 ____C () C:\Program Files\precomplete
2015-03-15 19:26 - 2015-03-05 12:39 - 000000662 ____C () C:\Program Files\removed-files
2015-03-15 19:26 - 2015-03-05 14:06 - 000000899 ____C () C:\Program Files\softokn3.chk
2015-03-15 19:26 - 2015-03-05 14:05 - 000002260 ____C () C:\Program Files\voucher.bin
2013-03-13 08:03 - 2013-03-13 08:03 - 002174976 ____C (Advanced Micro Devices Inc.) C:\Program Files\Common Files\atimpenc.dll
2011-12-13 16:38 - 2013-11-23 15:34 - 000000744 ____C () C:\Documents and Settings\Josef\Data aplikací\filterclsid.dat
2011-11-25 22:22 - 2017-12-15 10:59 - 000001189 ____C () C:\Documents and Settings\Josef\Data aplikací\vso_ts_preview.xml
2011-11-17 10:13 - 2017-05-12 08:52 - 000093184 ____C () C:\Documents and Settings\Josef\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-11-18 08:28 - 2011-11-18 08:28 - 000000125 ____C () C:\Documents and Settings\Josef\Local Settings\Data aplikací\fusioncache.dat
2018-01-08 16:04 - 2018-01-08 16:35 - 000029696 _____ () C:\Documents and Settings\Josef\Local Settings\Data aplikací\MSGBOX.EXE
2011-11-20 10:08 - 2011-11-20 10:59 - 000001658 ____C () C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
2011-12-13 10:00 - 2014-07-21 09:44 - 000000000 ____C () C:\Documents and Settings\All Users\Data aplikací\LauncherAccess.dt
2013-02-03 15:22 - 2013-02-03 15:22 - 000000144 ____C () C:\Documents and Settings\All Users\Data aplikací\LmeUSB.log
2013-02-03 15:22 - 2013-02-03 15:22 - 000000144 ____C () C:\Documents and Settings\All Users\Data aplikací\LSDmbTH.log
2013-11-23 16:36 - 2013-11-23 16:36 - 000004104 ____C () C:\Documents and Settings\All Users\Data aplikací\ojobkspa.ako
2013-02-03 15:22 - 2013-02-03 15:22 - 000000147 ____C () C:\Documents and Settings\All Users\Data aplikací\PipShareTuner.log

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

misut · #10 Příspěvek od **misut** » 08 led 2018 20:32

log z w10 adware--- 7.0.60
W10 je funkční pouze nejde zvuk a tím když jsem stahoval realtek apod./ které nemůžu naistalovat.Naistaluju do prog.files ale nejdou , stále tam mám ty instalované při instalaci
-řadiče zvuku,videa a her:
Live!cam Sync HD VF0770
Zvuk.zařízení Hight Definitioin Audio
ale oba i přes aktualizaci ovladače je vše OK , zvuk je vidět v liště jak bliká ale není nic slyšet.

# AdwCleaner 7.0.6.0 - Logfile created on Mon Jan 08 19:17:45 2018
# Updated on 2017/21/12 by Malwarebytes
# Database: 01-05-2018.1
# Running on Windows 10 Pro (X86)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Legacy, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
PUP.Optional.Legacy, C:\Program Files\DriverToolkit
PUP.Optional.Legacy, C:\Users\Josef\AppData\Local\DriverToolkit

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy, DRIVERTOOLKIT AUTORUN

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3089734574-3972175116-1217192946-1001\Software\DriverToolkit
PUP.Optional.Legacy, [Key] - HKCU\Software\DriverToolkit
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

#11 Příspěvek od **Rudy** » 08 led 2018 21:02

V ADW klikněte na mazání a restartujte. Pokud máte ty ostatní win řádně nainstalovány, měly by běžet, Je to ale dost krkolomná kombinace, musí řádně fungovat volba systémů, která se zobrazí před vlasním bootem. Log FRST dosjte znovu, potřebuji viděte až ten, který bude sejmut po mazání ADW.

misut · #12 Příspěvek od **misut** » 08 led 2018 21:12

log ADW W10

# AdwCleaner 7.0.6.0 - Logfile created on Mon Jan 08 20:09:15 2018
# Updated on 2017/21/12 by Malwarebytes
# Running on Windows 10 Pro (X86)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

No malicious registry entries deleted.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [1495 B] - [2018/1/8 19:20:28]
C:/AdwCleaner/AdwCleaner[S0].txt - [1399 B] - [2018/1/8 19:17:45]
C:/AdwCleaner/AdwCleaner[S1].txt - [1078 B] - [2018/1/8 20:8:58]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########

přidáno

log z FRST W10

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02.01.2018
Ran by Josef (administrator) on DESKTOP-99CIVEE (08-01-2018 21:17:02)
Running from C:\Users\Josef\Desktop
Loaded Profiles: Josef (Available Profiles: Josef)
Platform: Microsoft Windows 10 Pro Version 1709 16299.125 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [488344 2017-09-29] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{95625049-203d-49cd-9574-75d0f64c645f}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2891976 2017-11-26] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [279408 2017-09-29] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [86696 2017-09-29] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [37440 2017-09-29] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [253848 2017-09-29] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [98200 2017-09-29] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-08 21:17 - 2018-01-08 21:17 - 000003788 _____ C:\Users\Josef\Desktop\FRST.txt
2018-01-08 21:16 - 2018-01-08 21:17 - 000000000 ____D C:\FRST
2018-01-08 21:15 - 2018-01-08 21:15 - 001753600 _____ (Farbar) C:\Users\Josef\Desktop\FRST.exe
2018-01-08 20:20 - 2018-01-08 20:20 - 000000000 ____D C:\Users\Josef\AppData\Local\PeerDistRepub
2018-01-08 20:15 - 2018-01-08 21:10 - 000000000 ____D C:\AdwCleaner
2018-01-08 20:15 - 2018-01-08 20:15 - 008198432 _____ (Malwarebytes) C:\Users\Josef\Desktop\adwcleaner_7.0.6.0.exe
2018-01-08 14:50 - 2018-01-08 14:50 - 000000000 ____D C:\Users\Josef\AppData\Local\DBG
2018-01-08 08:34 - 2018-01-08 08:34 - 000000000 ____D C:\Users\Josef\AppData\Roaming\WinRAR
2018-01-08 08:34 - 2018-01-08 08:34 - 000000000 ____D C:\Users\Josef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-01-08 08:34 - 2018-01-08 08:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-01-08 08:34 - 2018-01-08 08:34 - 000000000 ____D C:\Program Files\WinRAR
2018-01-08 08:32 - 2018-01-08 08:32 - 000008463 _____ C:\Users\Josef\Downloads\Driver Genius Professional Edition 10.0.0.712 + crack,serial.rar
2018-01-08 08:11 - 2018-01-08 08:11 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2018-01-07 19:10 - 2017-12-03 23:38 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2018-01-07 19:10 - 2017-12-03 23:38 - 000177656 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2018-01-07 19:05 - 2018-01-08 14:54 - 000000000 ___HD C:\Program Files\Temp
2018-01-07 19:05 - 2018-01-07 19:05 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2018-01-07 19:05 - 2018-01-07 19:05 - 000000000 ____D C:\Program Files\Realtek
2018-01-07 19:05 - 2013-09-13 18:44 - 002080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2018-01-07 18:55 - 2018-01-07 18:29 - 000450720 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-01-07 18:49 - 2018-01-07 18:53 - 000000000 ____D C:\Windows\system32\MRT
2018-01-07 18:49 - 2018-01-07 18:49 - 130448288 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-01-07 18:48 - 2018-01-08 08:33 - 000000000 ____D C:\Users\Josef\AppData\Local\PlaceholderTileLogoFolder
2018-01-07 18:48 - 2018-01-07 18:49 - 130448288 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-01-07 18:40 - 2017-12-07 23:39 - 006092664 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2018-01-07 18:40 - 2017-12-07 23:23 - 006478528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2018-01-07 18:40 - 2017-12-07 23:08 - 019336192 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-01-07 18:40 - 2017-12-07 23:05 - 006037504 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2018-01-07 18:40 - 2017-11-26 11:36 - 013703168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2018-01-07 18:40 - 2017-10-25 04:30 - 005615968 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2018-01-07 18:40 - 2017-10-25 04:28 - 004648528 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2018-01-07 18:40 - 2017-10-25 04:22 - 006015200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2018-01-07 18:40 - 2017-10-25 04:22 - 002465848 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2018-01-07 18:40 - 2017-10-25 04:01 - 012687360 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-01-07 18:40 - 2017-10-25 03:58 - 001959424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2018-01-07 18:39 - 2017-12-07 23:58 - 004145488 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2018-01-07 18:39 - 2017-12-07 23:57 - 001506712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2018-01-07 18:39 - 2017-12-07 23:57 - 000649304 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2018-01-07 18:39 - 2017-12-07 23:55 - 001490328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2018-01-07 18:39 - 2017-12-07 23:37 - 006403480 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-01-07 18:39 - 2017-12-07 23:34 - 003484840 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2018-01-07 18:39 - 2017-12-07 23:32 - 020286120 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-01-07 18:39 - 2017-12-07 23:31 - 001522176 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2018-01-07 18:39 - 2017-12-07 23:31 - 001246432 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2018-01-07 18:39 - 2017-12-07 23:31 - 000982016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2018-01-07 18:39 - 2017-12-07 23:31 - 000456232 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2018-01-07 18:39 - 2017-12-07 23:30 - 000717464 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2018-01-07 18:39 - 2017-12-07 23:13 - 002905600 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2018-01-07 18:39 - 2017-12-07 23:13 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2018-01-07 18:39 - 2017-12-07 23:10 - 018916352 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2018-01-07 18:39 - 2017-12-07 23:10 - 006466048 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2018-01-07 18:39 - 2017-12-07 23:08 - 001130496 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2018-01-07 18:39 - 2017-12-07 23:06 - 003702784 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-01-07 18:39 - 2017-12-07 23:06 - 002022400 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-07 18:39 - 2017-12-07 23:05 - 002062848 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2018-01-07 18:39 - 2017-12-07 23:05 - 000664576 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-01-07 18:39 - 2017-12-07 23:05 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-01-07 18:39 - 2017-12-07 23:04 - 003678208 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-01-07 18:39 - 2017-12-07 23:04 - 001626112 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2018-01-07 18:39 - 2017-12-07 23:04 - 001321472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2018-01-07 18:39 - 2017-12-07 23:04 - 000657920 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2018-01-07 18:39 - 2017-12-07 23:03 - 002467840 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2018-01-07 18:39 - 2017-12-07 23:03 - 002247168 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2018-01-07 18:39 - 2017-12-07 23:03 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-01-07 18:39 - 2017-12-07 23:02 - 001288704 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2018-01-07 18:39 - 2017-12-07 23:00 - 001509888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2018-01-07 18:39 - 2017-12-07 22:59 - 001982976 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2018-01-07 18:39 - 2017-11-26 12:21 - 001474680 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2018-01-07 18:39 - 2017-11-26 12:05 - 001115704 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-01-07 18:39 - 2017-11-26 12:05 - 000973648 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-01-07 18:39 - 2017-11-26 12:04 - 001995672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-01-07 18:39 - 2017-11-26 12:02 - 001124760 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2018-01-07 18:39 - 2017-11-26 12:01 - 002339296 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2018-01-07 18:39 - 2017-11-26 12:01 - 000746904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Services.TargetedContent.dll
2018-01-07 18:39 - 2017-11-26 12:01 - 000590944 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2018-01-07 18:39 - 2017-11-26 12:01 - 000506256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Perception.Stub.dll
2018-01-07 18:39 - 2017-11-26 12:01 - 000354200 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2018-01-07 18:39 - 2017-11-26 12:00 - 001990160 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-01-07 18:39 - 2017-11-26 12:00 - 001851288 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2018-01-07 18:39 - 2017-11-26 12:00 - 000434072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-01-07 18:39 - 2017-11-26 12:00 - 000414824 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2018-01-07 18:39 - 2017-11-26 11:59 - 000703568 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2018-01-07 18:39 - 2017-11-26 11:59 - 000353176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2018-01-07 18:39 - 2017-11-26 11:58 - 001148216 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2018-01-07 18:39 - 2017-11-26 11:58 - 001057824 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2018-01-07 18:39 - 2017-11-26 11:57 - 001490840 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems32.dll
2018-01-07 18:39 - 2017-11-26 11:57 - 001121176 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2018-01-07 18:39 - 2017-11-26 11:56 - 001336544 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-01-07 18:39 - 2017-11-26 11:56 - 000938392 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2018-01-07 18:39 - 2017-11-26 11:50 - 000482712 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2018-01-07 18:39 - 2017-11-26 11:42 - 000936960 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2018-01-07 18:39 - 2017-11-26 11:41 - 002393600 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll
2018-01-07 18:39 - 2017-11-26 11:41 - 000372224 _____ (Microsoft Corporation) C:\Windows\system32\AcLayers.dll
2018-01-07 18:39 - 2017-11-26 11:32 - 011923456 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-01-07 18:39 - 2017-11-26 11:31 - 001231872 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2018-01-07 18:39 - 2017-11-26 11:31 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2018-01-07 18:39 - 2017-11-26 11:30 - 004385280 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2018-01-07 18:39 - 2017-11-26 11:30 - 002859520 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2018-01-07 18:39 - 2017-11-26 11:30 - 002645504 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2018-01-07 18:39 - 2017-11-26 11:30 - 001859584 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2018-01-07 18:39 - 2017-11-26 11:30 - 001771008 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2018-01-07 18:39 - 2017-11-26 11:30 - 000900608 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2018-01-07 18:39 - 2017-11-26 11:29 - 002869760 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-01-07 18:39 - 2017-11-26 11:29 - 002342400 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-01-07 18:39 - 2017-11-26 11:29 - 000823808 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-01-07 18:39 - 2017-11-26 11:29 - 000365568 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2018-01-07 18:39 - 2017-11-26 11:28 - 004249600 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2018-01-07 18:39 - 2017-11-26 11:24 - 000614912 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2018-01-07 18:39 - 2017-11-19 03:20 - 002491112 _____ C:\Windows\system32\Windows.Mirage.dll
2018-01-07 18:39 - 2017-10-25 07:36 - 000661504 _____ (Microsoft Corporation) C:\Windows\system32\Spectrum.exe
2018-01-07 18:39 - 2017-10-25 04:59 - 000499608 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-01-07 18:39 - 2017-10-25 04:33 - 000517528 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-01-07 18:39 - 2017-10-25 04:29 - 000478616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2018-01-07 18:39 - 2017-10-25 04:29 - 000433560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2018-01-07 18:39 - 2017-10-25 04:27 - 001454568 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2018-01-07 18:39 - 2017-10-25 04:27 - 001377080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2018-01-07 18:39 - 2017-10-25 04:08 - 000817152 _____ C:\Windows\system32\FaceProcessor.dll
2018-01-07 18:39 - 2017-10-25 04:07 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2018-01-07 18:39 - 2017-10-25 04:06 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2018-01-07 18:39 - 2017-10-25 03:58 - 002174976 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2018-01-07 18:39 - 2017-10-25 03:58 - 001280000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2018-01-07 18:39 - 2017-10-25 03:56 - 000480768 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2018-01-07 18:39 - 2017-10-20 06:08 - 000339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2018-01-07 18:39 - 2017-10-10 07:31 - 001323840 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2018-01-07 18:39 - 2017-10-10 07:26 - 001448864 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2018-01-07 18:39 - 2017-10-10 07:11 - 000597160 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2018-01-07 18:39 - 2017-10-10 07:10 - 000271768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2018-01-07 18:39 - 2017-10-10 07:07 - 001261864 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2018-01-07 18:39 - 2017-10-10 06:46 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-01-07 18:39 - 2017-10-10 06:43 - 000390656 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2018-01-07 18:39 - 2017-10-10 06:42 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2018-01-07 18:39 - 2017-10-10 06:42 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2018-01-07 18:39 - 2017-10-10 06:36 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-01-07 18:39 - 2017-10-10 06:35 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-01-07 18:39 - 2017-10-10 06:35 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-01-07 18:38 - 2017-12-07 23:56 - 000049560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bam.sys
2018-01-07 18:38 - 2017-12-07 23:37 - 001145104 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-01-07 18:38 - 2017-12-07 23:36 - 000769096 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2018-01-07 18:38 - 2017-12-07 23:36 - 000142640 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-01-07 18:38 - 2017-12-07 23:35 - 000454040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2018-01-07 18:38 - 2017-12-07 23:35 - 000445336 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2018-01-07 18:38 - 2017-12-07 23:34 - 002192112 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-01-07 18:38 - 2017-12-07 23:33 - 000747416 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2018-01-07 18:38 - 2017-12-07 23:33 - 000592280 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2018-01-07 18:38 - 2017-12-07 23:33 - 000538760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-01-07 18:38 - 2017-12-07 23:33 - 000337304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2018-01-07 18:38 - 2017-12-07 23:32 - 000278936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2018-01-07 18:38 - 2017-12-07 23:32 - 000100248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvsocket.sys
2018-01-07 18:38 - 2017-12-07 23:31 - 004937224 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2018-01-07 18:38 - 2017-12-07 23:31 - 000295488 _____ (Microsoft Corporation) C:\Windows\system32\vac.exe
2018-01-07 18:38 - 2017-12-07 23:29 - 000131992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2018-01-07 18:38 - 2017-12-07 23:28 - 000612736 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2018-01-07 18:38 - 2017-12-07 23:25 - 000203672 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2018-01-07 18:38 - 2017-12-07 23:25 - 000108480 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-01-07 18:38 - 2017-12-07 23:21 - 000353688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2018-01-07 18:38 - 2017-12-07 23:12 - 000344576 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2018-01-07 18:38 - 2017-12-07 23:12 - 000202240 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2018-01-07 18:38 - 2017-12-07 23:12 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\msscript.ocx
2018-01-07 18:38 - 2017-12-07 23:10 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-01-07 18:38 - 2017-12-07 23:10 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc.sys
2018-01-07 18:38 - 2017-12-07 23:10 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2018-01-07 18:38 - 2017-12-07 23:10 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-01-07 18:38 - 2017-12-07 23:09 - 001663488 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2018-01-07 18:38 - 2017-12-07 23:09 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2018-01-07 18:38 - 2017-12-07 23:09 - 000187392 _____ (Microsoft Corporation) C:\Windows\system32\PushToInstall.dll
2018-01-07 18:38 - 2017-12-07 23:09 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2018-01-07 18:38 - 2017-12-07 23:09 - 000143360 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2018-01-07 18:38 - 2017-12-07 23:09 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcui.dll
2018-01-07 18:38 - 2017-12-07 23:09 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2018-01-07 18:38 - 2017-12-07 23:08 - 000514560 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2018-01-07 18:38 - 2017-12-07 23:08 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2018-01-07 18:38 - 2017-12-07 23:08 - 000369152 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2018-01-07 18:38 - 2017-12-07 23:08 - 000296448 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2018-01-07 18:38 - 2017-12-07 23:08 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2018-01-07 18:38 - 2017-12-07 23:08 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2018-01-07 18:38 - 2017-12-07 23:07 - 000365568 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2018-01-07 18:38 - 2017-12-07 23:07 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-01-07 18:38 - 2017-12-07 23:07 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\hascsp.dll
2018-01-07 18:38 - 2017-12-07 23:06 - 000676352 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2018-01-07 18:38 - 2017-12-07 23:06 - 000559104 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-01-07 18:38 - 2017-12-07 23:06 - 000297472 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2018-01-07 18:38 - 2017-12-07 23:05 - 000533504 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2018-01-07 18:38 - 2017-12-07 23:05 - 000481792 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2018-01-07 18:38 - 2017-12-07 23:05 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll
2018-01-07 18:38 - 2017-12-07 23:04 - 001132032 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-01-07 18:38 - 2017-12-07 23:03 - 001230848 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2018-01-07 18:38 - 2017-12-07 23:03 - 000841728 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2018-01-07 18:38 - 2017-12-07 23:02 - 002864640 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2018-01-07 18:38 - 2017-12-07 23:02 - 000695808 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-01-07 18:38 - 2017-12-07 23:02 - 000604160 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2018-01-07 18:38 - 2017-12-07 23:01 - 001980928 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2018-01-07 18:38 - 2017-12-07 22:59 - 001286144 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2018-01-07 18:38 - 2017-12-07 22:59 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2018-01-07 18:38 - 2017-11-26 17:43 - 000618496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2018-01-07 18:38 - 2017-11-26 12:23 - 000166632 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-01-07 18:38 - 2017-11-26 12:21 - 000253144 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2018-01-07 18:38 - 2017-11-26 12:08 - 000233368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2018-01-07 18:38 - 2017-11-26 12:04 - 000368536 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2018-01-07 18:38 - 2017-11-26 12:04 - 000368536 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-01-07 18:38 - 2017-11-26 12:04 - 000300952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2018-01-07 18:38 - 2017-11-26 12:04 - 000065432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2018-01-07 18:38 - 2017-11-26 12:03 - 000965016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2018-01-07 18:38 - 2017-11-26 12:03 - 000155544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2018-01-07 18:38 - 2017-11-26 12:01 - 002116504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-01-07 18:38 - 2017-11-26 12:01 - 000791960 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2018-01-07 18:38 - 2017-11-26 12:01 - 000608664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2018-01-07 18:38 - 2017-11-26 12:00 - 000535448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2018-01-07 18:38 - 2017-11-26 12:00 - 000353848 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2018-01-07 18:38 - 2017-11-26 12:00 - 000167832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-01-07 18:38 - 2017-11-26 12:00 - 000128408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2018-01-07 18:38 - 2017-11-26 11:59 - 000040840 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-01-07 18:38 - 2017-11-26 11:58 - 000322968 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2018-01-07 18:38 - 2017-11-26 11:57 - 000635800 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2018-01-07 18:38 - 2017-11-26 11:57 - 000621976 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2018-01-07 18:38 - 2017-11-26 11:57 - 000533400 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2018-01-07 18:38 - 2017-11-26 11:56 - 001270680 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2018-01-07 18:38 - 2017-11-26 11:56 - 000577944 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2018-01-07 18:38 - 2017-11-26 11:56 - 000530152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-01-07 18:38 - 2017-11-26 11:56 - 000508848 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2018-01-07 18:38 - 2017-11-26 11:51 - 000661664 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2018-01-07 18:38 - 2017-11-26 11:50 - 000484248 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2018-01-07 18:38 - 2017-11-26 11:41 - 001470976 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2018-01-07 18:38 - 2017-11-26 11:41 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2018-01-07 18:38 - 2017-11-26 11:41 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2018-01-07 18:38 - 2017-11-26 11:41 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\DeviceUpdateAgent.dll
2018-01-07 18:38 - 2017-11-26 11:41 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2018-01-07 18:38 - 2017-11-26 11:40 - 002890240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2018-01-07 18:38 - 2017-11-26 11:40 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2018-01-07 18:38 - 2017-11-26 11:39 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2018-01-07 18:38 - 2017-11-26 11:38 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\SpatializerApo.dll
2018-01-07 18:38 - 2017-11-26 11:38 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2018-01-07 18:38 - 2017-11-26 11:38 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SIUF.dll
2018-01-07 18:38 - 2017-11-26 11:38 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2018-01-07 18:38 - 2017-11-26 11:37 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_ContentDeliveryManager.dll
2018-01-07 18:38 - 2017-11-26 11:37 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2018-01-07 18:38 - 2017-11-26 11:37 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2018-01-07 18:38 - 2017-11-26 11:37 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2018-01-07 18:38 - 2017-11-26 11:36 - 000539648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2018-01-07 18:38 - 2017-11-26 11:36 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2018-01-07 18:38 - 2017-11-26 11:36 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2018-01-07 18:38 - 2017-11-26 11:36 - 000351232 _____ (Microsoft Corporation) C:\Windows\system32\DictationManager.dll
2018-01-07 18:38 - 2017-11-26 11:36 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2018-01-07 18:38 - 2017-11-26 11:36 - 000298496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2018-01-07 18:38 - 2017-11-26 11:36 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe
2018-01-07 18:38 - 2017-11-26 11:36 - 000189952 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2018-01-07 18:38 - 2017-11-26 11:35 - 001171456 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2018-01-07 18:38 - 2017-11-26 11:35 - 000557056 _____ (Microsoft Corporation) C:\Windows\system32\d3d9on12.dll
2018-01-07 18:38 - 2017-11-26 11:35 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2018-01-07 18:38 - 2017-11-26 11:35 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2018-01-07 18:38 - 2017-11-26 11:35 - 000242176 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2018-01-07 18:38 - 2017-11-26 11:34 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2018-01-07 18:38 - 2017-11-26 11:31 - 000660480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2018-01-07 18:38 - 2017-11-26 11:30 - 002315776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2018-01-07 18:38 - 2017-11-26 11:30 - 001118208 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2018-01-07 18:38 - 2017-11-26 11:29 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\aadjcsp.dll
2018-01-07 18:38 - 2017-11-26 11:28 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2018-01-07 18:38 - 2017-11-26 11:27 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-01-07 18:38 - 2017-11-26 11:27 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2018-01-07 18:38 - 2017-11-26 11:24 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2018-01-07 18:38 - 2017-10-25 04:56 - 000213840 _____ C:\Windows\system32\FaceProcessorCore.dll
2018-01-07 18:38 - 2017-10-25 04:33 - 001627600 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-01-07 18:38 - 2017-10-25 04:29 - 000038296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
2018-01-07 18:38 - 2017-10-25 04:28 - 000116120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2018-01-07 18:38 - 2017-10-25 04:27 - 001015008 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2018-01-07 18:38 - 2017-10-25 04:08 - 000487424 _____ (Microsoft Corporation) C:\Windows\system32\AcSpecfc.dll
2018-01-07 18:38 - 2017-10-25 04:08 - 000075776 _____ C:\Windows\system32\runexehelper.exe
2018-01-07 18:38 - 2017-10-25 04:07 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2018-01-07 18:38 - 2017-10-25 04:06 - 000079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmCx.sys
2018-01-07 18:38 - 2017-10-25 04:04 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\rdrleakdiag.exe
2018-01-07 18:38 - 2017-10-25 04:02 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2018-01-07 18:38 - 2017-10-25 03:54 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\msdtcVSp1res.dll
2018-01-07 18:38 - 2017-10-25 03:52 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2018-01-07 18:38 - 2017-10-10 07:06 - 000353688 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-01-07 18:38 - 2017-10-10 07:06 - 000043416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\urscx01000.sys
2018-01-07 18:38 - 2017-10-10 06:45 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmUcsi.sys
2018-01-07 18:38 - 2017-10-10 06:45 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2018-01-07 18:38 - 2017-10-10 06:43 - 000566272 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2018-01-07 18:38 - 2017-10-10 06:43 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthTokenBrokerExt.dll
2018-01-07 18:38 - 2017-10-10 06:43 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2018-01-07 18:38 - 2017-10-10 06:42 - 000374784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2018-01-07 18:38 - 2017-10-03 23:42 - 000640512 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2018-01-07 18:38 - 2017-10-03 23:42 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2018-01-07 18:30 - 2018-01-07 18:30 - 000000000 ____D C:\Users\Josef\Documents\FeedbackHub
2018-01-07 17:55 - 2018-01-07 17:55 - 000001104 _____ C:\Users\Public\Desktop\DriverToolkit.lnk
2018-01-07 17:53 - 2018-01-07 17:53 - 000000000 ____D C:\dell
2018-01-07 17:51 - 2018-01-07 17:51 - 007351915 _____ C:\Users\Josef\Downloads\dell_dimension1100_sound512.zip
2018-01-07 17:44 - 2018-01-07 17:44 - 000000000 ____D C:\Users\Josef\AppData\Local\Comms
2018-01-07 17:36 - 2018-01-07 17:36 - 000000000 ____D C:\Users\Josef\AppData\Local\ElevatedDiagnostics
2018-01-07 17:33 - 2018-01-07 17:33 - 000000000 ____D C:\ProgramData\USOShared
2018-01-07 17:30 - 2018-01-07 17:36 - 000002397 _____ C:\Users\Josef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-01-07 17:30 - 2018-01-07 17:36 - 000000000 ___RD C:\Users\Josef\OneDrive
2018-01-07 17:29 - 2018-01-07 19:11 - 000000335 _____ C:\Users\Josef\Desktop\computer.lnk
2018-01-07 17:28 - 2018-01-07 17:28 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-01-07 17:27 - 2018-01-08 21:14 - 002035198 _____ C:\Windows\system32\PerfStringBackup.INI
2018-01-07 17:27 - 2018-01-08 08:20 - 000000000 ____D C:\Users\Josef\AppData\Local\Publishers
2018-01-07 17:27 - 2018-01-07 17:27 - 000000000 ___HD C:\Users\Josef\MicrosoftEdgeBackups
2018-01-07 17:27 - 2018-01-07 17:27 - 000000000 ____D C:\Users\Josef\AppData\Local\MicrosoftEdge
2018-01-07 17:26 - 2018-01-08 08:33 - 000000000 ____D C:\Users\Josef\AppData\Local\Packages
2018-01-07 17:26 - 2018-01-07 19:11 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-01-07 17:26 - 2018-01-07 19:11 - 000000000 ___RD C:\Users\Josef\3D Objects
2018-01-07 17:26 - 2018-01-07 17:30 - 000000000 ____D C:\Users\Josef
2018-01-07 17:26 - 2018-01-07 17:26 - 000000020 ___SH C:\Users\Josef\ntuser.ini
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Šablony
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Soubory cookie
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Poslední
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Okolní tiskárny
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Okolní síť
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Nabídka Start
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Dokumenty
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Documents\Obrázky
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Documents\Hudba
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Documents\Filmy
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\Data aplikací
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 _SHDL C:\Users\Josef\AppData\Local\Data aplikací
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 ____D C:\Users\Josef\AppData\Roaming\Adobe
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 ____D C:\Users\Josef\AppData\Local\VirtualStore
2018-01-07 17:26 - 2018-01-07 17:26 - 000000000 ____D C:\Users\Josef\AppData\Local\ConnectedDevicesPlatform
2018-01-07 17:24 - 2018-01-07 17:24 - 000000000 ____D C:\Windows\CSC
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Šablony
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Poslední
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Okolní síť
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Dokumenty
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\Data aplikací
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\ProgramData\Šablony
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\ProgramData\Plocha
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\ProgramData\Dokumenty
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\ProgramData\Data aplikací
2018-01-07 17:22 - 2018-01-07 17:22 - 000000000 _SHDL C:\Documents and Settings
2018-01-07 12:10 - 2018-01-07 12:10 - 000000000 ___HD C:\$SysReset
2018-01-07 12:10 - 2018-01-07 12:10 - 000000000 ____D C:\$Windows.~BT
2018-01-07 12:02 - 2018-01-08 21:10 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-07 12:02 - 2018-01-07 19:10 - 000219592 _____ C:\Windows\system32\FNTCACHE.DAT
2018-01-07 12:02 - 2018-01-07 12:03 - 000000000 ____D C:\Windows\system32\SleepStudy
2018-01-07 12:02 - 2018-01-07 12:02 - 000000000 ____D C:\Windows\ServiceProfiles
2018-01-07 12:01 - 2018-01-07 12:06 - 000000000 ____D C:\Windows\Panther

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-08 21:14 - 2017-09-30 13:07 - 000894172 _____ C:\Windows\system32\perfh005.dat
2018-01-08 21:14 - 2017-09-30 13:07 - 000196380 _____ C:\Windows\system32\perfc005.dat
2018-01-08 21:09 - 2017-09-29 06:31 - 000262144 _____ C:\Windows\system32\config\BBI
2018-01-08 20:32 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\DeliveryOptimization
2018-01-08 14:47 - 2017-09-29 12:45 - 000000000 ____D C:\Windows\CbsTemp
2018-01-08 08:37 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\AppReadiness
2018-01-08 08:24 - 2017-09-29 12:55 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-08 08:17 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2018-01-08 08:15 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\appcompat
2018-01-08 08:11 - 2017-09-29 12:52 - 000000000 ____D C:\Windows\INF
2018-01-07 19:07 - 2017-09-30 13:08 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\zu-ZA
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\yo-NG
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\xh-ZA
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\wo-SN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\vi-VN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\uz-Latn-UZ
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ur-PK
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ug-CN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\tt-RU
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\tn-ZA
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\tk-TM
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ti-ET
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\tg-Cyrl-TJ
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\te-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ta-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sw-KE
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sr-Cyrl-RS
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sr-Cyrl-BA
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sq-AL
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\si-LK
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\sd-Arab-PK
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\rw-RW
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\quz-PE
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\quc-Latn-GT
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\prs-AF
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\pa-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\pa-Arab-PK
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\or-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\nso-ZA
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\nn-NO
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ne-NP
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mt-MT
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mr-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mn-MN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ml-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mk-MK
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\mi-NZ
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\lo-LA
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\lb-LU
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ky-KG
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ku-Arab-IQ
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\kok-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\kn-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\km-KH
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\kk-KZ
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ka-GE
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\is-IS
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ig-NG
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\id-ID
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\chr-CHER-US
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\hy-AM
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ha-Latn-NG
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\gu-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\gd-GB
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ga-IE
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\fil-PH
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\fa-IR
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\cy-GB
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\ca-ES-valencia
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\bs-Latn-BA
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\bn-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\bn-BD
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\be-BY
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\az-Latn-AZ
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\as-IN
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\am-ET
2018-01-07 19:07 - 2017-09-30 13:07 - 000000000 ____D C:\Windows\system32\af-ZA
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ___SD C:\Windows\system32\F12
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\TextInput
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\WinMetadata
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\oobe
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\appraiser
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\ShellExperiences
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\Provisioning
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ____D C:\Program Files\Windows Defender
2018-01-07 19:07 - 2017-09-29 12:55 - 000000000 ____D C:\PerfLogs
2018-01-07 19:07 - 2017-09-29 06:31 - 000000000 ____D C:\Windows\system32\Dism
2018-01-07 17:52 - 2009-11-16 09:20 - 007419152 _____ C:\Users\Josef\Documents\R105155.exe
2018-01-07 17:52 - 2007-12-13 09:29 - 000009553 _____ C:\Users\Josef\Documents\¤┬ďě╦Á├¸.htm
2018-01-07 17:25 - 2017-09-29 12:55 - 000000000 ____D C:\ProgramData\USOPrivate
2018-01-07 17:24 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\spool
2018-01-07 17:24 - 2017-09-29 12:55 - 000000000 ____D C:\Windows\system32\FxsTmp
2018-01-07 17:22 - 2017-09-29 12:55 - 000000000 ____D C:\Program Files\windows nt
2018-01-07 12:06 - 2017-09-29 06:31 - 000000000 ____D C:\Windows\system32\Sysprep
2018-01-07 12:04 - 2017-09-29 12:55 - 000000000 ___RD C:\Windows\PrintDialog
2018-01-07 12:04 - 2017-09-29 12:55 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2018-01-07 12:03 - 2017-09-29 06:31 - 000032768 _____ C:\Windows\system32\config\ELAM
2018-01-07 12:01 - 2017-09-29 12:55 - 000028672 _____ C:\Windows\system32\config\BCD-Template

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-01-07 12:02

==================== End of FRST.txt ============================

Addition.rar: (3.74 KiB) Staženo 54 x

misut · #13 Příspěvek od **misut** » 08 led 2018 21:42

Log z FRST Windows XP

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02.01.2018
Ran by Josef (administrator) on MISUT (08-01-2018 21:32:48)
Running from C:\Documents and Settings\Josef\Plocha
Loaded Profiles: Josef (Available Profiles: Josef & Administrator & Guest)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Nero AG) C:\Program Files\Nero\Tools\InCD\InCDSrv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Nero AG) C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(PS Media s.r.o.) C:\WINDOWS\system32\ssins.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Policies\Explorer\Run: [javar] => C:\Documents and Settings\Josef\Data aplikací\java\java.exe
HKU\S-1-5-21-2659733977-570214497-571619954-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6564776 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-2659733977-570214497-571619954-1004\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [204288 2009-02-04] (Microsoft Corporation)
HKU\S-1-5-21-2659733977-570214497-571619954-1004\...\Policies\Explorer\Run: [java] => C:\Documents and Settings\Josef\Data aplikací\java\java.exe
HKU\S-1-5-21-2659733977-570214497-571619954-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssmypics.scr [47104 2008-04-14] (Microsoft Corporation)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{45D39D7E-DCDA-4B5C-8AC0-202930864B89}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4FA81D10-A15A-4D37-946E-9A1F29A4BABF}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2659733977-570214497-571619954-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
SearchScopes: HKU\S-1-5-21-2659733977-570214497-571619954-1004 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2659733977-570214497-571619954-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll [2004-05-12] (Hewlett-Packard Company)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093 [2018-01-08]
FF Homepage: C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093 -> hxxps://www.seznam.cz/
FF Extension: (Google Translator for Firefox) - C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093\Extensions\translator@zoli.bod.xpi [2017-02-02] [Legacy]
FF Extension: (uBlock Origin) - C:\Documents and Settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\gh9fwllk.default-1456167743093\Extensions\uBlock0@raymondhill.net.xpi [2017-12-25]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2011-09-23] (Nero AG)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-12-12] (Adobe Systems Incorporated) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1349576 2014-10-01] (ESET)
R2 InCDSrv; C:\Program Files\Nero\Tools\InCD\InCDSrv.exe [1420592 2009-10-16] (Nero AG)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [641832 2011-09-23] (Nero AG)
R2 NeroRegInCDSrv; C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe [53560 2009-10-16] (Nero AG)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
S3 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [65536 2004-03-18] (HP) [File not signed]
S2 SkypeUpdate; C:\Program Files\Skype\Updater\Updater.exe [317400 2017-04-05] (Skype Technologies) [File not signed]
R2 ssinstall; C:\WINDOWS\System32\ssins.exe [4696960 2017-05-13] (PS Media s.r.o.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7757040 2017-04-06] (TeamViewer GmbH)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Apowersoft_AudioDevice; C:\WINDOWS\System32\drivers\Apowersoft_AudioDevice.sys [26032 2014-04-09] (Wondershare)
S3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1763584 2011-07-28] (Atheros Communications, Inc.) [File not signed]
S3 BazisVirtualCDBus; C:\WINDOWS\System32\DRIVERS\BazisVirtualCDBus.sys [121688 2015-09-28] (Sysprogs OU)
R3 BCMTPM; C:\WINDOWS\System32\DRIVERS\btpmw32.sys [17290 2006-05-25] (Broadcom Corp.)
R1 BIOS; C:\WINDOWS\system32\drivers\BIOS.sys [13696 2005-03-16] (BIOSTAR Group) [File not signed]
S3 btwmodem; C:\WINDOWS\System32\DRIVERS\btwmodem.sys [30189 2006-05-12] (Broadcom Corporation.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [191928 2014-10-10] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135296 2014-10-10] (ESET)
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [176448 2014-10-10] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [39464 2014-10-10] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [63160 2014-10-10] (ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\DRIVERS\ew_usbccgpfilter.sys [15360 2017-04-11] (Huawei Technologies Co., Ltd.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [51088 2004-06-21] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2004-06-21] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21744 2004-06-21] (HP)
R3 InCDFs; C:\WINDOWS\System32\DRIVERS\InCDFs.sys [130200 2009-10-16] (Nero AG)
R3 InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [48280 2009-10-16] (Nero AG)
R1 InCDRec; C:\WINDOWS\System32\DRIVERS\InCDRec.sys [19096 2009-10-16] (Nero AG)
S3 IT9135BDA; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [145280 2013-03-01] (ITE )
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2011-11-20] (Padus, Inc.) [File not signed]
S3 snpstd2; C:\WINDOWS\System32\DRIVERS\snpstd2.sys [334080 2004-07-28] ()
R2 thdudf; C:\WINDOWS\System32\DRIVERS\thdudf.sys [66944 2011-07-21] (TOSHIBA Corporation) [File not signed]
R3 WinDriver6; C:\WINDOWS\System32\drivers\windrvr6.sys [186592 2007-06-17] (Jungo) [File not signed]
S3 btaudio; system32\drivers\btaudio.sys [X]
S3 BTDriver; system32\DRIVERS\btport.sys [X]
S3 BTKRNL; system32\DRIVERS\btkrnl.sys [X]
S3 BTWDNDIS; system32\DRIVERS\btwdndis.sys [X]
S3 BTWUSB; System32\Drivers\btwusb.sys [X]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2017-04-11] (Huawei Technologies Co., Ltd.)
U5 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2011-12-13] () [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-08 21:32 - 2018-01-08 21:33 - 000011550 _____ C:\Documents and Settings\Josef\Plocha\FRST.txt
2018-01-08 20:09 - 2018-01-08 20:10 - 000010903 _____ C:\Documents and Settings\Josef\Plocha\Addition.zip
2018-01-08 19:32 - 2018-01-08 19:32 - 004102600 _____ C:\Documents and Settings\Josef\Plocha\adwcleaner_6.046.exe
2018-01-08 16:05 - 2018-01-08 16:05 - 000112640 _____ (forum.viry.cz) C:\Documents and Settings\Josef\Plocha\FRSTLauncher.exe
2018-01-08 16:04 - 2018-01-08 16:35 - 000029696 _____ C:\Documents and Settings\Josef\Local Settings\Data aplikací\MSGBOX.EXE
2018-01-08 16:01 - 2018-01-08 16:01 - 001753600 _____ (Farbar) C:\Documents and Settings\Josef\Plocha\FRST.exe
2018-01-07 19:41 - 2018-01-07 19:41 - 000000818 _____ C:\Documents and Settings\Josef\Plocha\Zástupce - egui.lnk
2018-01-07 16:45 - 2018-01-07 16:45 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\Nová složka
2018-01-07 11:09 - 2018-01-07 11:09 - 000000000 ____D C:\Temp
2018-01-06 15:34 - 2018-01-06 16:26 - 000000210 _____ C:\Documents and Settings\Josef\Plocha\boot.ini.ini
2018-01-06 15:05 - 2018-01-06 16:26 - 000000218 _____ C:\Documents and Settings\Josef\Plocha\boot.i.txt
2018-01-06 12:23 - 2018-01-06 12:23 - 000000000 ___HD C:\$SysReset
2018-01-06 12:09 - 2018-01-06 12:09 - 000000000 ____D C:\Program Files\EaseUS
2018-01-04 15:16 - 2018-01-04 15:16 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\Jihosoft ISO Maker
2018-01-04 15:15 - 2018-01-04 15:15 - 000000000 ____D C:\Program Files\ISO Maker Free
2018-01-04 15:08 - 2018-01-04 15:08 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\WinCDEmu
2018-01-04 06:43 - 2018-01-07 12:01 - 000008192 __RSH C:\BOOTSECT.BAK
2018-01-04 06:43 - 2017-11-26 12:19 - 000397754 __RSH C:\bootmgr
2018-01-04 06:43 - 2017-09-29 12:49 - 000000001 ___SH C:\BOOTNXT
2018-01-01 18:22 - 2018-01-08 19:37 - 000094032 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
2018-01-01 15:53 - 2018-01-01 15:53 - 000000000 ____D C:\Documents and Settings\Josef\Local Settings\Data aplikací\ImageMaster
2017-12-31 17:21 - 2018-01-08 21:29 - 000000222 ____C C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2017-12-31 17:21 - 2017-12-31 18:28 - 000000216 ____C C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2017-12-31 15:53 - 2017-12-31 15:53 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2934207$
2017-12-31 15:53 - 2017-12-31 15:53 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2930275$
2017-12-31 15:53 - 2017-12-31 15:53 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2922229$
2017-12-31 15:43 - 2017-12-31 15:43 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2017-12-31 15:43 - 2017-12-31 15:43 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2884256$
2017-12-31 15:14 - 2014-02-27 00:28 - 000013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2017-12-31 15:14 - 2014-02-27 00:28 - 000013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
2017-12-31 14:39 - 2017-12-31 14:39 - 000000000 ____D C:\Program Files\ESET
2017-12-31 14:39 - 2017-12-31 14:39 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
2017-12-31 14:39 - 2017-12-31 14:39 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\ESET
2017-12-31 14:32 - 2017-12-31 14:32 - 000000000 ____D C:\Program Files\Duolabs
2017-12-31 13:59 - 2017-12-31 13:59 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\ESET(3)

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-08 21:33 - 2016-02-20 15:48 - 000000000 ____D C:\Documents and Settings\Josef\Local Settings\Temp
2018-01-08 21:32 - 2016-11-14 10:21 - 000000000 ____D C:\FRST
2018-01-08 21:32 - 2016-01-24 14:01 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\espana
2018-01-08 21:32 - 2011-11-17 09:29 - 000000000 ____D C:\Documents and Settings\Josef\Plocha
2018-01-08 21:31 - 2004-08-18 13:00 - 000012598 ____C C:\WINDOWS\system32\wpa.dbl
2018-01-08 21:29 - 2016-03-26 01:29 - 000000278 ____C C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2659733977-570214497-571619954-1004.job
2018-01-08 21:29 - 2011-09-29 12:29 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2018-01-08 21:05 - 2011-11-17 09:29 - 000000178 __SHC C:\Documents and Settings\Josef\ntuser.ini
2018-01-08 21:05 - 2011-09-29 12:29 - 000032380 _____ C:\WINDOWS\SchedLgU.Txt
2018-01-08 20:56 - 2017-07-08 10:34 - 000000914 ____C C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-01-08 19:40 - 2016-02-27 13:36 - 000000000 ____D C:\AdwCleaner
2018-01-08 19:38 - 2011-09-29 12:29 - 000000178 __SHC C:\Documents and Settings\LocalService\ntuser.ini
2018-01-08 19:37 - 2011-09-29 12:29 - 000000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2018-01-08 19:30 - 2011-11-17 17:04 - 000000466 ___HC C:\WINDOWS\Tasks\User_Feed_Synchronization-{02D609C1-B138-47A6-B631-4C8C2E89B3B5}.job
2018-01-08 19:19 - 2012-10-12 11:52 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\Skype
2018-01-08 16:35 - 2011-11-17 09:29 - 000000000 ___HD C:\Documents and Settings\Josef\Local Settings\Data aplikací
2018-01-08 08:53 - 2017-05-17 12:42 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\dream
2018-01-07 22:13 - 2011-09-29 14:18 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-01-07 19:39 - 2011-09-29 14:16 - 000000210 ___SH C:\boot.ini
2018-01-07 19:39 - 2004-08-18 13:00 - 000000792 ____C C:\WINDOWS\win.ini
2018-01-07 19:39 - 2004-08-18 13:00 - 000000246 ____C C:\WINDOWS\system.ini
2018-01-07 17:15 - 2012-04-02 16:05 - 000000000 ____D C:\Program Files\Unlocker
2018-01-07 17:13 - 2011-09-29 14:18 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-01-07 17:12 - 2011-11-17 09:29 - 000000000 ___RD C:\Documents and Settings\Josef\Nabídka Start\Programy
2018-01-07 16:28 - 2016-03-26 01:29 - 000000286 ____C C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2659733977-570214497-571619954-1004.job
2018-01-07 13:19 - 2011-11-17 09:29 - 000000000 ___RD C:\Documents and Settings\Josef\Nabídka Start
2018-01-07 12:56 - 2013-04-02 11:03 - 000000000 ____D C:\WINDOWS\system32\NtmsData
2018-01-07 10:01 - 2011-11-20 19:05 - 000000354 ____H C:\Boot.BAK
2018-01-07 09:51 - 2016-04-10 19:23 - 000000028 ____C C:\WINDOWS\OutLog.txt
2018-01-06 18:05 - 2014-01-15 16:16 - 000001224 ___HC C:\WINDOWS\EPMBatch.ept
2018-01-06 18:02 - 2016-04-10 19:19 - 000000000 ____C C:\WINDOWS\BcdLog.txt
2018-01-06 17:34 - 2011-09-29 14:11 - 000000000 ____D C:\WINDOWS\security
2018-01-06 16:17 - 2012-04-16 12:10 - 000000000 ____D C:\WINDOWS\pss
2018-01-06 16:13 - 2011-11-17 09:29 - 000000000 __RHD C:\Documents and Settings\Josef\Data aplikací
2018-01-06 14:53 - 2011-09-29 14:19 - 001100766 ____C C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-06 14:53 - 2004-08-18 13:00 - 000468274 ____C C:\WINDOWS\system32\perfh005.dat
2018-01-06 14:53 - 2004-08-18 13:00 - 000094656 ____C C:\WINDOWS\system32\perfc005.dat
2018-01-04 20:46 - 2011-09-29 14:11 - 000000000 ___HD C:\WINDOWS\inf
2018-01-04 15:17 - 2011-11-17 09:29 - 000000000 ___RD C:\Documents and Settings\Josef\Dokumenty
2018-01-04 12:33 - 2014-07-28 12:21 - 000000000 ____D C:\Documents and Settings\Josef\Plocha\sejmout
2018-01-04 07:31 - 2011-09-29 14:11 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
2018-01-04 07:30 - 2016-11-10 18:57 - 000004507 ____C C:\WINDOWS\imsins.BAK
2018-01-03 21:38 - 2017-06-18 09:42 - 000000559 ____C C:\Documents and Settings\Josef\Plocha\rcc.ini
2018-01-03 18:36 - 2013-03-02 20:06 - 000002562 ____C C:\WINDOWS\diagwrn.xml
2018-01-03 18:36 - 2013-03-02 20:06 - 000001908 ____C C:\WINDOWS\diagerr.xml
2018-01-02 15:17 - 2011-11-17 09:29 - 000000000 ____D C:\Documents and Settings\Josef
2018-01-01 21:54 - 2011-11-27 16:24 - 000000000 ____D C:\WINDOWS\Minidump
2018-01-01 15:58 - 2011-09-29 14:18 - 000000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2018-01-01 14:09 - 2011-11-17 11:07 - 000000000 ____D C:\Documents and Settings\Josef\Dokumenty\Stažené soubory
2017-12-31 17:21 - 2016-02-20 17:00 - 000153176 ____C C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-31 14:50 - 2016-04-12 12:37 - 000940958 ____C C:\WINDOWS\ntbtlog.txt
2017-12-31 14:32 - 2017-06-18 15:21 - 000000000 ____D C:\Documents and Settings\Guest
2017-12-31 14:32 - 2013-12-16 17:12 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Duolabs
2017-12-31 14:32 - 2011-11-17 12:30 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
2017-12-31 14:32 - 2011-09-29 12:55 - 000000000 ____D C:\Documents and Settings\Administrator
2017-12-31 14:32 - 2011-09-29 12:29 - 000000000 __SHD C:\Documents and Settings\NetworkService
2017-12-31 14:32 - 2011-09-29 12:29 - 000000000 __SHD C:\Documents and Settings\LocalService
2017-12-31 14:32 - 2011-09-29 12:23 - 000000000 ____D C:\WINDOWS\Registration
2017-12-27 18:04 - 2016-07-20 15:00 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\Vso
2017-12-27 16:42 - 2011-11-18 08:28 - 000000000 ____D C:\Documents and Settings\Josef\Local Settings\Data aplikací\ApplicationHistory
2017-12-26 21:16 - 2016-02-20 15:48 - 000000000 ____D C:\Documents and Settings\NetworkService\Local Settings\temp
2017-12-26 10:35 - 2011-11-17 09:29 - 000000000 ___HD C:\Documents and Settings\Josef\Okolní síť
2017-12-25 22:26 - 2015-02-14 17:52 - 000000000 ____D C:\Program Files\KMPlayer
2017-12-15 10:59 - 2011-11-25 22:22 - 000001189 ____C C:\Documents and Settings\Josef\Data aplikací\vso_ts_preview.xml
2017-12-12 12:56 - 2017-10-14 18:56 - 009497600 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2017-12-12 12:56 - 2015-11-14 17:37 - 000803328 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-12-12 12:56 - 2015-11-14 17:37 - 000144896 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-12-12 12:56 - 2011-09-29 12:25 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-12-10 16:44 - 2012-10-29 17:21 - 000000000 ____D C:\Documents and Settings\Josef\Data aplikací\vlc

==================== Files in the root of some directories =======

2015-03-15 19:26 - 2015-03-05 13:55 - 000000093 ____C () C:\Program Files\dependentlibs.list
2015-03-15 19:26 - 2015-03-05 14:06 - 000000899 ____C () C:\Program Files\freebl3.chk
2015-03-15 19:26 - 2015-03-15 19:33 - 000017516 ____C () C:\Program Files\install.log
2015-03-15 19:26 - 2015-03-05 14:06 - 000000899 ____C () C:\Program Files\nssdbm3.chk
2015-03-15 19:26 - 2015-03-05 15:39 - 000002166 ____C () C:\Program Files\precomplete
2015-03-15 19:26 - 2015-03-05 12:39 - 000000662 ____C () C:\Program Files\removed-files
2015-03-15 19:26 - 2015-03-05 14:06 - 000000899 ____C () C:\Program Files\softokn3.chk
2015-03-15 19:26 - 2015-03-05 14:05 - 000002260 ____C () C:\Program Files\voucher.bin
2013-03-13 08:03 - 2013-03-13 08:03 - 002174976 ____C (Advanced Micro Devices Inc.) C:\Program Files\Common Files\atimpenc.dll
2011-12-13 16:38 - 2013-11-23 15:34 - 000000744 ____C () C:\Documents and Settings\Josef\Data aplikací\filterclsid.dat
2011-11-25 22:22 - 2017-12-15 10:59 - 000001189 ____C () C:\Documents and Settings\Josef\Data aplikací\vso_ts_preview.xml
2011-11-17 10:13 - 2017-05-12 08:52 - 000093184 ____C () C:\Documents and Settings\Josef\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-11-18 08:28 - 2011-11-18 08:28 - 000000125 ____C () C:\Documents and Settings\Josef\Local Settings\Data aplikací\fusioncache.dat
2018-01-08 16:04 - 2018-01-08 16:35 - 000029696 _____ () C:\Documents and Settings\Josef\Local Settings\Data aplikací\MSGBOX.EXE
2011-11-20 10:08 - 2011-11-20 10:59 - 000001658 ____C () C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
2011-12-13 10:00 - 2014-07-21 09:44 - 000000000 ____C () C:\Documents and Settings\All Users\Data aplikací\LauncherAccess.dt
2013-02-03 15:22 - 2013-02-03 15:22 - 000000144 ____C () C:\Documents and Settings\All Users\Data aplikací\LmeUSB.log
2013-02-03 15:22 - 2013-02-03 15:22 - 000000144 ____C () C:\Documents and Settings\All Users\Data aplikací\LSDmbTH.log
2013-11-23 16:36 - 2013-11-23 16:36 - 000004104 ____C () C:\Documents and Settings\All Users\Data aplikací\ojobkspa.ako
2013-02-03 15:22 - 2013-02-03 15:22 - 000000147 ____C () C:\Documents and Settings\All Users\Data aplikací\PipShareTuner.log

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Addition.zip: (10.6 KiB) Staženo 51 x

Prosím tě zkontroluj mi hlavně XP a zda se můžu zeptat na dobrý program na zálohu oddílu XP. Zálohují se i aplikace ??

#14 Příspěvek od **Rudy** » 08 led 2018 22:04

Nemohu řešit všechny systémy naráz. Takže k WinXP:

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
ContextMenuHandlers2: [InCDShellExt] -> [CC]{09bffb91-ecda-4149-bcfd-d87a345c219e} => -> No File
ContextMenuHandlers2: [Record To CD] -> [CC]{34F4B935-17DC-4885-8BC9-CCD1ADF42F93} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> [CC]{57CE581A-0CB6-4266-9CA0-19364C90A0B3} => -> No File
ContextMenuHandlers4: [NBHShellExt] -> [CC]{8D2223A2-B3C6-4e32-B096-CDD11F628C60} => -> No File
ContextMenuHandlers1_S-1-5-21-2659733977-570214497-571619954-1004: [_movavivc10] -> [CC]{B9E732B9-10F8-4f0d-9BFA-80CEFCF1B920} => -> No File

EmptyTemp:
ResetHosts:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

misut · #15 Příspěvek od **misut** » 08 led 2018 22:19

Omlouvám se za mooooc mých nápadů , ale pomohl jsi ve Španělsku/a vlastně vždy/ tak jsem se tak odvázal

z XP
Fix result of Farbar Recovery Scan Tool (x86) Version: 02.01.2018
Ran by Josef (08-01-2018 22:09:20) Run:1
Running from C:\Documents and Settings\Josef\Plocha
Loaded Profiles: Josef (Available Profiles: Josef & Administrator & Guest)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.17\npGoogleUpdate3.dll [No File]
ContextMenuHandlers2: [InCDShellExt] -> [CC]{09bffb91-ecda-4149-bcfd-d87a345c219e} => -> No File
ContextMenuHandlers2: [Record To CD] -> [CC]{34F4B935-17DC-4885-8BC9-CCD1ADF42F93} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> [CC]{57CE581A-0CB6-4266-9CA0-19364C90A0B3} => -> No File
ContextMenuHandlers4: [NBHShellExt] -> [CC]{8D2223A2-B3C6-4e32-B096-CDD11F628C60} => -> No File
ContextMenuHandlers1_S-1-5-21-2659733977-570214497-571619954-1004: [_movavivc10] -> [CC]{B9E732B9-10F8-4f0d-9BFA-80CEFCF1B920} => -> No File

EmptyTemp:
ResetHosts:
End
*****************

HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => value restored successfully
"HKLM\Software\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com" => removed successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => removed successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => removed successfully.
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\InCDShellExt" => removed successfully.
HKLM\Software\Classes\CLSID\[CC]{09bffb91-ecda-4149-bcfd-d87a345c219e} => not found
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\Record To CD" => removed successfully.
HKLM\Software\Classes\CLSID\[CC]{34F4B935-17DC-4885-8BC9-CCD1ADF42F93} => not found
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MBAMShlExt" => removed successfully.
HKLM\Software\Classes\CLSID\[CC]{57CE581A-0CB6-4266-9CA0-19364C90A0B3} => not found
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\NBHShellExt" => removed successfully.
HKLM\Software\Classes\CLSID\[CC]{8D2223A2-B3C6-4e32-B096-CDD11F628C60} => not found
"HKU\S-1-5-21-2659733977-570214497-571619954-1004\Software\Classes\*\ShellEx\ContextMenuHandlers\_movavivc10" => removed successfully.
HKU\S-1-5-21-2659733977-570214497-571619954-1004\SOFTWARE\Classes\CLSID\[CC]{B9E732B9-10F8-4f0d-9BFA-80CEFCF1B920} => not found
ResetHosts: => Error: No automatic fix found for this entry.

=========== EmptyTemp: ==========

BITS transfer queue => 8878 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache => 48759 B
Java, Flash, Steam htmlcache => 1871 B
Windows/system/dllcache/drivers => 16867 B
Edge => 0 B
Chrome => 0 B
Firefox => 429648197 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Documents and Settings => 0 B
Default User => 0 B
All Users => 0 B
systemprofile => 0 B
LocalService => 1172 B
NetworkService => 1172 B
Josef => 6834787 B
Administrator => 66228 B
Guest => 66798 B

RecycleBin => 0 B
EmptyTemp: => 416.5 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 22:10:35 ====

VIRY.CZ

Prosím o kontrolu logu -- kombinace XP a W10

Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10

Re: Prosím o kontrolu logu -- kombinace XP a W10