prosím o kontrolu PC. Poslední dobou mi pořád pracuje disk na 100% a nedá se s notesem už pomalu ani pracovat. Děkuji.
Kód: Vybrat vše
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-09-2016
Ran by KAČENKA (administrator) on KACENKA (17-09-2016 22:37:02)
Running from C:\Users\KAČENKA\Desktop
Loaded Profiles: KAČENKA (Available Profiles: KAČENKA)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Uniblue Systems Ltd) C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\AutoUpdate.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\1357d18a8934da01ed8eee3d21cac2cf\windowsstoresetupbox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\$Windows.~BT\Sources\SetupHost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17516_none_6276a5b950d43361\TiWorker.exe
(Microsoft Corporation) C:\$Windows.~BT\Sources\wicainventory.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-06] (IDT, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [6330568 2013-03-21] (ESET)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-08-29] (Crawler.com)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-01-27] (Apple Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-01-20] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-09-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [IrSoftImportAssistantStarter] => C:\Program Files (x86)\Testo\IRSoft\ImportAssistantStarter.exe [13312 2012-10-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-07-18] (PDF Complete Inc)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] (Qualcomm®Atheros®)
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [] => [X]
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
Lsa: [Notification Packages] DPPassFilter scecli
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BF1787E7-55A1-4635-83E2-E3A2C7F66349}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F6F63C25-8CB7-47AA-86B5-A5D092D9FEA5}: [DhcpNameServer] 10.77.0.1 10.77.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=2
HKU\S-1-5-21-4294006856-1665788878-3267595846-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.seznam.cz/?clid=2
SearchScopes: HKLM -> {52db1893-8a90-4192-aede-08e00b8f8473} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=100&systemid=473&v=a9397-149&apn_uid=8095215370334167&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKLM-x32 -> {52db1893-8a90-4192-aede-08e00b8f8473} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=100&systemid=473&v=a9397-149&apn_uid=8095215370334167&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4294006856-1665788878-3267595846-1002 -> DefaultScope {42E7742F-2E6D-4C9B-811B-E0D7048FC92D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=Quicksearch_2
SearchScopes: HKU\S-1-5-21-4294006856-1665788878-3267595846-1002 -> {42E7742F-2E6D-4C9B-811B-E0D7048FC92D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=Quicksearch_2
SearchScopes: HKU\S-1-5-21-4294006856-1665788878-3267595846-1002 -> {52db1893-8a90-4192-aede-08e00b8f8473} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=100&systemid=473&v=a9397-149&apn_uid=8095215370334167&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
FireFox:
========
FF ProfilePath: C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default
FF SearchEngineOrder.1: Ask.com
FF Homepage: about:home
FF Keyword.URL: hxxp://dts.search.ask.com/sr?src=ffb&gct=ds&appid=100&systemid=473&v=a9397-149&apn_dtid=BND473&apn_ptnrs=AG1&apn_uid=8095215370334167&o=APN10640&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_194.dll [2015-07-02] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_194.dll [2015-07-02] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-04-02] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-04-02] (Foxit Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-10-26] (DigitalPersona, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml [2013-10-29]
FF Extension: (FireGestures) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\extensions\firegestures@xuldev.org.xpi [2016-05-19]
FF Extension: (NewScrollbars (aka NoiaScrollbars)) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi [2016-06-18]
FF Extension: (Screengrab (fix version)) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\extensions\{02450914-cdd9-410f-b1da-db004e18c671}.xpi [2016-09-12]
FF Extension: (Český slovník pro kontrolu pravopisu (bez diakritiky)) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\cs2@dictionaries.addons.mozilla.org [2016-08-14]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-08-14]
FF Extension: (Autofill) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\firefox-autofill@googlegroups.com.xpi [2016-04-27]
FF Extension: (Personas Plus) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\personas@christopher.beard.xpi [2016-07-28]
FF Extension: (Firefox Synchronisation Extension) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\synchronize@nokia.suite [2013-09-05] [not signed]
FF Extension: (Password Exporter) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2016-04-05]
FF Extension: (Adblock Plus) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF Extension: (Bitdefender QuickScan) - C:\Users\KAČENKA\AppData\Roaming\Mozilla\Firefox\Profiles\0t7fdfh3.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2016-09-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: (ESET Smart Security Extension) - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-05-24] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2016-08-07] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\dpchrome.crx [2012-10-26]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2016-09-17] (SUPERAntiSpyware.com)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows (R) Win 7 DDK provider) [File not signed]
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-10-26] (DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1341664 2013-03-21] (ESET)
S4 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477088 2012-08-01] (Hewlett-Packard Company)
S4 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-07-18] (PDF Complete Inc)
S4 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [1149104 2013-08-29] (Crawler.com)
S4 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [321536 2012-08-06] (IDT, Inc.) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5419792 2014-11-28] (TeamViewer GmbH)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [336384 2012-07-26] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
S4 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-09] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2014-04-10] (Advanced Micro Devices)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-25] (Qualcomm Atheros)
R3 BthMtpEnum; C:\Windows\system32\DRIVERS\BthMtpEnum.sys [64512 2012-07-26] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-07-25] (Hewlett-Packard Company)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [213416 2013-02-14] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [150616 2013-01-10] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [190232 2013-01-10] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [59440 2013-01-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [58416 2013-02-14] (ESET)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1862536 2012-07-28] ()
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2013-10-05] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
R3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [254976 2011-05-09] (Jungo)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-06-27] (Hewlett-Packard Development Company, L.P.)
R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-17 22:37 - 2016-09-17 22:37 - 00018637 _____ C:\Users\KAČENKA\Desktop\FRST.txt
2016-09-17 22:35 - 2016-09-17 22:37 - 00000000 ____D C:\FRST
2016-09-17 22:33 - 2016-09-17 22:33 - 02399232 _____ (Farbar) C:\Users\KAČENKA\Desktop\FRST64.exe
2016-09-17 22:31 - 2016-09-17 22:31 - 00000000 ____D C:\AdwCleaner
2016-09-17 22:30 - 2016-09-17 22:30 - 03861056 _____ C:\Users\KAČENKA\Desktop\adwcleaner_6.020.exe
2016-09-17 22:21 - 2016-09-17 22:21 - 00000000 ___RD C:\Users\KAČENKA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2016-09-17 21:53 - 2016-09-17 21:53 - 06760064 _____ (ESET spol. s r.o.) C:\Users\KAČENKA\Desktop\ESETOnlineScanner_CSY.exe
2016-09-17 21:52 - 2016-09-17 21:52 - 00000000 ____D C:\Users\KAČENKA\AppData\Roaming\QuickScan
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-17 22:34 - 2014-11-22 00:02 - 00000000 ___HD C:\$Windows.~BT
2016-09-17 22:19 - 2014-06-18 18:09 - 00000360 _____ C:\Windows\Tasks\dsmonitor.job
2016-09-17 22:19 - 2012-09-11 07:34 - 00000000 ____D C:\ProgramData\PDFC
2016-09-17 22:19 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-17 22:18 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-09-17 22:16 - 2016-07-11 23:20 - 00007596 _____ C:\Users\KAČENKA\AppData\Local\Resmon.ResmonCfg
2016-09-17 21:50 - 2013-01-25 20:32 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-09-17 21:38 - 2012-07-26 10:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-17 21:38 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-09-17 21:33 - 2014-02-18 22:16 - 00000356 _____ C:\Windows\Tasks\HPCeeScheduleForKAČENKA.job
2016-09-17 21:32 - 2013-10-05 09:00 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-09-17 21:25 - 2014-02-18 22:16 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForKAČENKA
2016-09-17 21:25 - 2013-01-24 02:49 - 00000000 ____D C:\Users\KAČENKA
2016-09-17 20:06 - 2012-09-11 07:37 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-17 20:02 - 2013-01-24 10:13 - 00000000 ____D C:\obchůdek
2016-09-17 19:55 - 2013-07-24 19:14 - 00000000 ____D C:\Users\KAČENKA\AppData\Roaming\FileZilla
2016-09-17 19:53 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\Inf
2016-09-17 19:52 - 2013-02-18 07:58 - 00000000 ____D C:\Windows\Minidump
2016-09-17 19:52 - 2013-01-24 11:12 - 00000000 ____D C:\Users\KAČENKA\AppData\Local\CrashDumps
2016-09-17 19:35 - 2013-07-14 08:14 - 00000000 ____D C:\Windows\system32\MRT
2016-09-17 19:10 - 2013-01-24 10:54 - 144199024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-09-12 21:49 - 2015-02-08 15:03 - 00000000 ____D C:\On Style
==================== Files in the root of some directories =======
2016-04-06 21:32 - 2016-04-06 21:32 - 0000822 _____ () C:\Users\KAČENKA\AppData\Local\recently-used.xbel
2016-07-11 23:20 - 2016-09-17 22:16 - 0007596 _____ () C:\Users\KAČENKA\AppData\Local\Resmon.ResmonCfg
Files to move or delete:
====================
C:\Users\KAČENKA\install_flashplayer11x32au_mssa_aih.exe
Some files in TEMP:
====================
C:\Users\KAČENKA\AppData\Local\Temp\libeay32.dll
C:\Users\KAČENKA\AppData\Local\Temp\msvcr120.dll
C:\Users\KAČENKA\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-09-12 13:29
==================== End of FRST.txt ============================