VIRY.CZ

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-01-2014
Ran by Petr (administrator) on PETER on 07-01-2014 13:17:17
Running from E:\Documents and Settings\Petr\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 6
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

() E:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) E:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Synaptics, Inc.) E:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ATI Technologies, Inc.) E:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
(Dritek System Inc.) E:\Program Files\QBU\QtZwLMng.EXE
(Agere Systems) E:\WINDOWS\AGRSMMSG.exe
(CANON INC.) E:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Synaptics, Inc.) E:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(AVAST Software) E:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Pinnacle Systems) E:\Program Files\Pinnacle\Shared Files\Programs\Remote\remoterm.exe
(Sun Microsystems, Inc.) E:\Program Files\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) E:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
(Microsoft Corporation) E:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
(Microsoft Corporation) E:\Program Files\Messenger\msmsgs.exe
(Pinnacle Systems) E:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe
(Adobe Systems Inc.) E:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
(Nikon Corporation) E:\Program Files\Nikon\NkView6\NkvMon.exe
() E:\Program Files\Wireless Device\MulMouse.exe
() E:\Program Files\Wireless Device\Magickey.exe
(Software602 a.s.) E:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Oracle Corporation) E:\Program Files\Java\jre7\bin\jqs.exe
() E:\WINDOWS\system32\PAStiSvc.exe
(Wacom Technology, Corp.) E:\WINDOWS\system32\Tablet.exe
(Microsoft Corporation) E:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) E:\WINDOWS\system32\wscntfy.exe
(AVAST Software) E:\Program Files\Alwil Software\Avast5\Setup\avast.setup


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - E:\Program Files\Synaptics\SynTP\SynTPEnh.exe [610304 2003-04-19] (Synaptics, Inc.)
HKLM\...\Run: [ATIModeChange] - E:\WINDOWS\system32\Ati2mdxx.exe [28672 2001-09-05] (ATI Technologies, Inc.)
HKLM\...\Run: [ATIPTA] - E:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [335872 2003-12-12] (ATI Technologies, Inc.)
HKLM\...\Run: [QtZwLMng] - E:\Program Files\QBU\QtZwLMng.EXE [196608 2003-04-03] (Dritek System Inc.)
HKLM\...\Run: [AGRSMMSG] - E:\WINDOWS\AGRSMMSG.exe [88363 2003-11-20] (Agere Systems)
HKLM\...\Run: [PinnacleDriverCheck] - E:\WINDOWS\system32\PSDrvCheck.exe [406016 2004-03-10] ()
HKLM\...\Run: [CanonMyPrinter] - E:\Program Files\Canon\MyPrinter\BJMYPRT.EXE [1603152 2007-09-14] (CANON INC.)
HKLM\...\Run: [SynTPLpr] - E:\Program Files\Synaptics\SynTP\SynTPLpr.exe [110592 2003-04-18] (Synaptics, Inc.)
HKLM\...\Run: [avast5] - E:\Program Files\Alwil Software\Avast5\AvastUI.exe [4297136 2012-10-30] (AVAST Software)
HKLM\...\Run: [PMCRemote] - E:\Program Files\Pinnacle\Shared Files\Programs\Remote\remoterm.exe [94208 2006-04-27] (Pinnacle Systems)
HKLM\...\Run: [Pinnacle WebUpdater] - "E:\Program Files\Pinnacle\Shared Files\Programs\WebUpdater\WebUpdater.exe" -s -f=UpdateVersion.xml -url=http://cdn.pinnaclesys.com/SupportFiles
HKLM\...\Run: [SunJavaUpdateSched] - E:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKCU\...\Run: [SpybotSD TeaTimer] - E:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480 2009-03-05] (Safer-Networking Ltd.)
HKCU\...\Run: [H/PC Connection Agent] - E:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE [401491 2004-02-03] (Microsoft Corporation)
HKCU\...\Run: [OEXPRESS] - [x]
HKCU\...\Run: [WEBTRAN] - [x]
HKCU\...\Run: [MSMSGS] - E:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKCU\...\Run: [PMCS] - E:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe [65536 2006-04-27] (Pinnacle Systems)
MountPoints2: {0d49b2a2-29ed-11de-be97-000e35631692} - 6fnlpetp.exe
Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Povolit bezdrátovou myš.lnk
ShortcutTarget: Povolit bezdrátovou myš.lnk -> E:\Program Files\Wireless Device\MulMouse.exe ()
Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Povolit bezdrátovou numerickou klávesnici.lnk
ShortcutTarget: Povolit bezdrátovou numerickou klávesnici.lnk -> E:\Program Files\Wireless Device\Magickey.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Vyhledávací stránka = http://www.msn.com/access/allinone.asp
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... R}&ar=home
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... EAED9CF939
BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - E:\WINDOWS\WebIE.dll ()
BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - E:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ()
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - E:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ()
Toolbar: HKLM - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - E:\WINDOWS\WebIE.dll ()
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - E:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - E:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - E:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ()
DPF: {62789780-B744-11D0-986B-00609731A21D} http://195.28.70.134/kapor2/lib/mgaxctrl.cab
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash2/cabs/swflash.cab
Handler: mctp - {d7b95390-b1c5-11d0-b111-0080c712fe82} - E:\Program Files\Microsoft ActiveSync\AATP.DLL (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

FireFox:
========
FF ProfilePath: E:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\61vdc7hp.default
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.cz/
FF Keyword.URL: hxxp://www.google.cz/#hl=cs&source=hp&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - E:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF Plugin: @java.com/DTPlugin,version=10.9.2 - E:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 - E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - E:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler - E:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 - E:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - E:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=1.1.4 - E:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF SearchPlugin: E:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\61vdc7hp.default\searchplugins\askcom.xml
FF SearchPlugin: E:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: E:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: E:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: E:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: NoSquint - E:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\61vdc7hp.default\Extensions\nosquint@urandom.ca.xpi
FF Extension: Java Console - E:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF Extension: Java Console - E:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - E:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! WebRep - E:\Program Files\Alwil Software\Avast5\WebRep\FF
FF HKLM\...\Firefox\Extensions: [quickprint@hp.com] - E:\Program Files\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: HP Smart Print - E:\Program Files\Hewlett-Packard\SmartPrint\QPExtension
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - e:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - e:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

========================== Services (Whitelisted) =================

R2 602XML Updater; E:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 Ati HotKey Poller; E:\Windows\System32\Ati2evxx.exe [397312 2003-12-12] ()
R2 avast! Antivirus; E:\Program Files\Alwil Software\Avast5\AvastSvc.exe [44808 2012-10-30] (AVAST Software)
S3 SandraAgentSrv; E:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP2\RpcAgentSrv.exe [95896 2009-02-04] (SiSoftware)
R2 STI Simulator; E:\WINDOWS\System32\PAStiSvc.exe [53248 2005-01-14] ()
R2 TabletService; E:\WINDOWS\system32\Tablet.exe [430080 2000-06-01] (Wacom Technology, Corp.)
R2 JavaQuickStarterService; "E:\Program Files\Java\jre7\bin\jqs.exe" -service -config "E:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"

==================== Drivers (Whitelisted) ====================

S3 61883; E:\Windows\System32\DRIVERS\61883.sys [48128 2008-04-13] (Microsoft Corporation)
R1 Aavmker4; E:\Windows\System32\Drivers\Aavmker4.sys [25256 2012-10-30] (AVAST Software)
R3 ALCXSENS; E:\Windows\System32\drivers\ALCXSENS.SYS [401152 2003-10-04] (Sensaura Ltd)
R3 ALCXWDM; E:\Windows\System32\drivers\ALCXWDM.SYS [475788 2003-10-09] (Realtek Semiconductor Corp.)
R3 ASAPIW2k; E:\Windows\System32\drivers\ASAPIW2k.sys [11264 2003-12-04] (Pinnacle Systems GmbH)
R2 aswFsBlk; E:\Windows\System32\Drivers\aswFsBlk.sys [21256 2012-10-30] (AVAST Software)
R2 aswMon2; E:\Windows\System32\Drivers\aswMon2.sys [97608 2012-10-30] (AVAST Software)
R1 aswRdr; E:\Windows\System32\Drivers\aswRdr.sys [35928 2012-10-30] (AVAST Software)
R1 aswSnx; E:\Windows\System32\Drivers\aswSnx.sys [738504 2012-10-30] (AVAST Software)
R1 aswSP; E:\Windows\System32\Drivers\aswSP.sys [361032 2012-10-30] (AVAST Software)
R1 aswTdi; E:\Windows\System32\Drivers\aswTdi.sys [54232 2012-10-30] (AVAST Software)
S3 AVSim; E:\Windows\System32\DRIVERS\AVSim.sys [13312 2006-01-04] (YUAN High-Tech Development Co. Ltd.)
S3 CCDECODE; E:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R0 Daemon; E:\Windows\System32\DRIVERS\daemon.sys [71968 2002-01-19] (VeNoM386 and SwENSkE)
S3 MPE; E:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
R1 MUsbFltr; E:\Windows\System32\Drivers\MUsbFltr.sys [8704 2004-12-15] (Waytech Development, Inc.)
S3 NdisIP; E:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 OmniTV; E:\Windows\System32\DRIVERS\OmniTV.sys [198528 2006-01-04] (YUAN High-Tech Development Co. Ltd.)
S3 PAC207; E:\Windows\System32\DRIVERS\pfc027.sys [162176 2005-04-08] ()
S3 SANDRA; E:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP2\WNt500x86\Sandra.sys [23112 2009-08-07] (SiSoftware)
S3 TfBulk; E:\Windows\System32\DRIVERS\TfBulk.sys [13312 2008-12-20] (Topfield (visit www.topfield.co.kr))
S3 w22n51; E:\Windows\System32\DRIVERS\w22n51.sys [1646720 2004-01-02] (Intel® Corporation)
R3 w29n51; E:\Windows\System32\DRIVERS\w29n51.sys [2216064 2008-12-09] (Intel® Corporation)
S3 wceusbsh; E:\Windows\System32\DRIVERS\wceusbsh.sys [104064 2003-12-22] (Microsoft Corporation)
S3 hSONYPVh; \??\E:\DOCUME~1\Petr\LOCALS~1\Temp\hSONYPVh.sys [x]
S4 s24trans; System32\DRIVERS\s24trans.sys [x]
U5 ScsiPort; E:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-07 12:03 - 2014-01-07 13:18 - 00014977 _____ E:\Documents and Settings\Petr\Plocha\FRST.txt
2014-01-07 11:59 - 2014-01-07 11:59 - 00000000 ____D E:\FRST
2014-01-07 11:58 - 2014-01-07 11:58 - 00029696 _____ E:\Documents and Settings\Petr\Local Settings\Data aplikací\MSGBOX.EXE
2014-01-07 11:55 - 2014-01-07 11:56 - 01064805 _____ (Farbar) E:\Documents and Settings\Petr\Plocha\FRST.exe
2013-12-16 19:59 - 2013-12-16 20:11 - 00000000 ____D E:\Program Files\Mozilla Maintenance Service
2013-12-16 19:59 - 2013-12-16 19:59 - 00000000 ____D E:\Documents and Settings\All Users\Data aplikací\Mozilla
2013-12-13 11:06 - 2013-12-13 11:06 - 00161351 _____ E:\Documents and Settings\Petr\Plocha\DEKOR_SK.EPS

==================== One Month Modified Files and Folders =======

2014-01-07 13:18 - 2014-01-07 12:03 - 00014977 _____ E:\Documents and Settings\Petr\Plocha\FRST.txt
2014-01-07 13:17 - 2008-12-07 00:36 - 00000000 ____D E:\Documents and Settings\Petr\Plocha
2014-01-07 13:15 - 2008-12-08 18:14 - 00001870 _____ E:\WINDOWS\MAILTRAN.INI
2014-01-07 13:13 - 2008-12-08 00:09 - 00000000 ___SD E:\Documents and Settings\Petr\UserData
2014-01-07 13:13 - 2008-12-07 00:36 - 00000000 ____D E:\Documents and Settings\Petr
2014-01-07 12:50 - 2008-12-07 01:24 - 00000211 ____N E:\WINDOWS\wiadebug.log
2014-01-07 12:50 - 2008-12-07 01:23 - 00000000 ___RD E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2014-01-07 12:49 - 2008-12-08 01:12 - 01798982 ____N E:\WINDOWS\WindowsUpdate.log
2014-01-07 12:48 - 2013-01-06 14:06 - 00000366 ____H E:\WINDOWS\Tasks\avast! Emergency Update.job
2014-01-07 12:47 - 2008-12-08 16:21 - 00013364 _____ E:\WINDOWS\system32\wacom.dat
2014-01-07 12:47 - 2008-12-08 10:42 - 00000349 _____ E:\Documents and Settings\All Users\Dokumenty\PCLECHAL.INI
2014-01-07 12:47 - 2008-12-07 01:24 - 00000048 ____N E:\WINDOWS\wiaservc.log
2014-01-07 12:47 - 2008-12-07 00:30 - 00000006 ____H E:\WINDOWS\Tasks\SA.DAT
2014-01-07 12:45 - 2008-12-07 00:36 - 00000178 ___SH E:\Documents and Settings\Petr\ntuser.ini
2014-01-07 12:45 - 2008-12-07 00:34 - 00032556 ____N E:\WINDOWS\SchedLgU.Txt
2014-01-07 11:59 - 2014-01-07 11:59 - 00000000 ____D E:\FRST
2014-01-07 11:59 - 2008-12-07 00:36 - 00000000 ___HD E:\Documents and Settings\Petr\Local Settings\Data aplikací
2014-01-07 11:58 - 2014-01-07 11:58 - 00029696 _____ E:\Documents and Settings\Petr\Local Settings\Data aplikací\MSGBOX.EXE
2014-01-07 11:58 - 2011-12-12 09:36 - 00000000 ____D E:\Documents and Settings\Petr\Dokumenty\Stažené soubory
2014-01-07 11:56 - 2014-01-07 11:55 - 01064805 _____ (Farbar) E:\Documents and Settings\Petr\Plocha\FRST.exe
2014-01-07 10:47 - 2008-12-08 15:59 - 00000000 ____D E:\Documents and Settings\Petr\Data aplikací\AdobeUM
2014-01-07 10:43 - 2008-12-08 15:57 - 00002333 _____ E:\Documents and Settings\All Users\Nabídka Start\Acrobat Distiller 6.0.lnk
2014-01-07 10:38 - 2008-12-07 00:36 - 00000000 ___RD E:\Documents and Settings\Petr\Dokumenty
2014-01-07 10:26 - 2009-01-17 22:31 - 00000000 ___RD E:\Documents and Settings\Petr\Plocha\Domek na Lipníku
2014-01-07 10:22 - 2009-03-17 09:43 - 00025713 ____C E:\WINDOWS\CSTBox.INI
2014-01-07 10:20 - 2008-12-09 07:40 - 00000000 ____D E:\Documents and Settings\Petr\Data aplikací\Canon
2014-01-07 09:42 - 2002-09-23 13:00 - 00002206 _____ E:\WINDOWS\system32\wpa.dbl
2013-12-17 00:16 - 2008-12-08 10:30 - 25509888 _____ E:\WINDOWS\outlook.pst
2013-12-17 00:04 - 2002-09-23 13:00 - 00001060 _____ E:\WINDOWS\WIN.INI
2013-12-16 22:20 - 2013-07-04 14:25 - 00000664 _____ E:\WINDOWS\system32\d3d9caps.dat
2013-12-16 20:11 - 2013-12-16 19:59 - 00000000 ____D E:\Program Files\Mozilla Maintenance Service
2013-12-16 20:02 - 2011-12-08 13:36 - 00000000 ____D E:\Program Files\Mozilla Firefox
2013-12-16 19:59 - 2013-12-16 19:59 - 00000000 ____D E:\Documents and Settings\All Users\Data aplikací\Mozilla
2013-12-16 19:59 - 2008-12-07 01:22 - 00000000 __RHD E:\Documents and Settings\All Users\Data aplikací
2013-12-15 23:46 - 2008-12-08 17:57 - 00000116 ____C E:\WINDOWS\NeroDigital.ini
2013-12-15 23:45 - 2008-12-08 17:57 - 00049152 ____C E:\Documents and Settings\Petr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-15 23:44 - 2008-12-20 22:35 - 00000000 ___RD E:\Documents and Settings\Petr\Plocha\filmy
2013-12-15 23:39 - 2008-12-08 17:20 - 00000000 ___RD E:\Documents and Settings\Petr\Dokumenty\Filmy
2013-12-15 22:32 - 2008-12-22 00:06 - 00000000 ___RD E:\Documents and Settings\Petr\Plocha\Fotoalbum
2013-12-13 11:06 - 2013-12-13 11:06 - 00161351 _____ E:\Documents and Settings\Petr\Plocha\DEKOR_SK.EPS
2013-12-09 09:14 - 2008-12-07 01:23 - 01048670 ____C E:\WINDOWS\system32\PerfStringBackup.INI
2013-12-09 09:13 - 2013-09-06 07:52 - 00000000 ____D E:\Documents and Settings\All Users\Data aplikací\firebird

==================== Bamital & volsnap Check =================

E:\Windows\explorer.exe
[2002-09-23 13:00] - [2008-04-14 04:22] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

E:\Windows\System32\winlogon.exe
[2002-09-23 13:00] - [2008-04-14 04:22] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

E:\Windows\System32\svchost.exe
[2002-09-23 13:00] - [2008-04-14 04:22] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

E:\Windows\System32\services.exe
[2002-09-23 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

E:\Windows\System32\User32.dll
[2002-09-23 13:00] - [2008-04-14 04:22] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

E:\Windows\System32\userinit.exe
[2002-09-23 13:00] - [2008-04-14 04:22] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

E:\Windows\System32\rpcss.dll
[2002-09-23 13:00] - [2009-02-09 11:56] - 0401408 ____A (Microsoft Corporation) be27674d1cbc3214aec84b4336a38bbf

E:\Windows\System32\Drivers\volsnap.sys
[2002-09-23 13:00] - [2008-04-14 03:12] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1


==================== End Of Log ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [SunJavaUpdateSched] - E:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
MountPoints2: {0d49b2a2-29ed-11de-be97-000e35631692} - 6fnlpetp.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYCZ&apn_uid=A8B5CB14-3CE3-44CE-AAC1-0A70055E3B9A&apn_sauid=D94CA1A0-CC6C-484C-8813-CAEAED9CF939
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Dík za odpověď zde je log

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 08-01-2014 01
Ran by Petr at 2014-01-08 20:44:12 Run:1
Running from E:\Documents and Settings\Petr\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] - E:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
MountPoints2: {0d49b2a2-29ed-11de-be97-000e35631692} - 6fnlpetp.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYCZ&apn_uid=A8B5CB14-3CE3-44CE-AAC1-0A70055E3B9A&apn_sauid=D94CA1A0-CC6C-484C-8813-CAEAED9CF939
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0d49b2a2-29ed-11de-be97-000e35631692} => Key deleted successfully.
HKCR\CLSID\{0d49b2a2-29ed-11de-be97-000e35631692} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} => Key not found.

==== End of Fixlog ====

Smazáno. Log je již OK.