VIRY.CZ

Zdravím.
Prosím o pomoc s odstránením tažkostí s počítačom.

Vytvorený log:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-12-2016
Ran by TaĹĄka (administrator) on HOME-COMPIK (03-12-2016 20:06:18)
Running from C:\Documents and Settings\TaĹĄka\Plocha
Loaded Profiles: TaĹĄka (Available Profiles: pc & UpdatusUser & TaĹĄka & Maminka & Guest)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Documents and Settings\TaĹĄka\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [BigDogPath326VMSnap] => C:\WINDOWS\VMSnap26.exe [90112 2007-07-06] ()
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [782520 2015-09-24] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [67840 2016-07-11] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-01-31] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.1 8.8.8.8
Tcpip\..\Interfaces\{4A7E5DD4-918E-4582-AFA0-817A3B1098AA}: [DhcpNameServer] 10.0.0.1 8.8.8.8

Internet Explorer:
==================
HKU\S-1-5-21-1078081533-1993962763-1644491937-1009\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {5626B323-8039-4943-B9EE-65BF22C5276A} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {EA26EA9D-D0D7-4EE1-8097-9B9A96F9597A} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2016-01-08] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2016-01-08] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Mozilla\Firefox\Profiles\y2g3fnf4.default-1454364066223 [2016-12-03]
FF Homepage: C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Mozilla\Firefox\Profiles\y2g3fnf4.default-1454364066223 -> hxxps://www.seznam.cz/
FF Extension: (Firefox Hotfix) - C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Mozilla\Firefox\Profiles\y2g3fnf4.default-1454364066223\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-01]
FF Extension: (Adblock Plus) - C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Mozilla\Firefox\Profiles\y2g3fnf4.default-1454364066223\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF SearchPlugin: C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Mozilla\Firefox\Profiles\y2g3fnf4.default-1454364066223\searchplugins\youtube-1.xml [2016-03-09]
FF SearchPlugin: C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Mozilla\Firefox\Profiles\y2g3fnf4.default-1454364066223\searchplugins\youtube.xml [2016-03-09]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-15] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-15] (CANON INC.)
FF Plugin: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2016-01-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2016-01-08] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @nullsoft.com/winampDetector;version=1 -> C:\Program Files\Winamp Detect\npwachk.dll [2013-07-23] (Nullsoft, Inc.)
FF Plugin: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-23] (RocketLife, LLP)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll [2015-02-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll [2015-02-15] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1078081533-1993962763-1644491937-1009: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll [1749-10-20] (KomerÄŤnĂ­ banka, a.s.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Profile: C:\Documents and Settings\TaĹĄka\Local Settings\Data aplikacĂ­\Google\Chrome\User Data\Default [2016-11-13]
CHR Extension: (Adblock Plus) - C:\Documents and Settings\TaĹĄka\Local Settings\Data aplikacĂ­\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-08-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-11]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [916968 2015-09-24] (Avira Operations GmbH & Co. KG)
S2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [461672 2015-09-24] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [461672 2015-09-24] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1210512 2015-09-24] (Avira Operations GmbH & Co. KG)
S2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [309384 2016-07-11] (Avira Operations GmbH & Co. KG)
S2 BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [110592 2005-04-06] () [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S4 InCDsrv; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [859136 2006-11-10] (Nero AG) [File not signed]
S2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2016-01-08] (Oracle Corporation)
S2 PEVSystemStart; no ImagePath

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
S3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2297664 2004-11-17] (Realtek Semiconductor Corp.)
S2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [108448 2015-09-24] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-08-29] (AVG Technologies)
S1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136728 2015-08-10] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37896 2015-05-19] (Avira Operations GmbH & Co. KG)
S3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [20480 2005-08-31] (IVT Corporation) [File not signed]
S3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [20480 2005-08-31] (IVT Corporation) [File not signed]
R3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10068 2006-01-19] (IVT Corporation) [File not signed]
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [23000 2005-10-23] (IVT Corporation) [File not signed]
R0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [20616 2008-07-31] (IVT Corporation.)
R3 BTHidEnum; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [11988 2005-07-29] () [File not signed]
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [28271 2005-04-30] (IVT Corporation) [File not signed]
S3 BTNetFilter; C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys [14312 2006-04-14] () [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 CrystalSysInfo; C:\Program Files\MediaCoder\SysInfo.sys [15152 2007-09-25] ()
S1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG)
R3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
S3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 GVCplDrv; C:\WINDOWS\system32\Drivers\GVCplDrv.sys [23040 2004-05-02] () [File not signed]
R0 imagedrv; C:\WINDOWS\System32\Drivers\imagedrv.sys [5888 2005-08-15] (Ahead Software AG) [File not signed]
R0 imagesrv; C:\WINDOWS\System32\DRIVERS\imagesrv.sys [127488 2005-08-15] (Ahead Software AG) [File not signed]
S4 InCDfs; C:\WINDOWS\System32\drivers\InCDFs.sys [102912 2006-11-10] (Nero AG) [File not signed]
R1 InCDPass; C:\WINDOWS\System32\drivers\InCDPass.sys [31360 2006-11-10] (Nero AG) [File not signed]
U1 InCDrec; C:\WINDOWS\system32\Drivers\InCDrec.sys [10624 2006-11-10] (Nero AG) [File not signed]
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [33792 2006-11-10] (Nero AG) [File not signed]
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [26248 2008-07-02] (IVT Corporation.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2013-06-23] (Padus, Inc.) [File not signed]
S1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [31848 2015-06-16] (Avira Operations GmbH & Co. KG)
S3 usbvm328; C:\WINDOWS\System32\Drivers\vmcam326av.sys [104960 2007-10-18] (Vimicro Corporation) [File not signed]
R3 VClone; C:\WINDOWS\System32\DRIVERS\VClone.sys [30208 2013-03-11] (Elaborate Bytes AG) [File not signed]
S3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation) [File not signed]
S3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [84836 2006-02-28] (IVT Corporation) [File not signed]
R0 VIAMRAID; C:\WINDOWS\System32\DRIVERS\viamraid.sys [117248 2008-08-08] (VIA Technologies inc,.ltd) [File not signed]
S3 vvftav326_a4; C:\WINDOWS\System32\drivers\vvftav326.sys [480128 2007-07-03] (Vimicro Corporation) [File not signed]
S4 IntelIde; no ImagePath
U5 lanmanserver; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
U5 Tcpip6; C:\Windows\System32\Drivers\Tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-03 20:05 - 2016-12-03 20:05 - 00027659 _____ C:\Documents and Settings\TaĹĄka\Plocha\FRST2.txt
2016-12-03 19:58 - 2016-12-03 20:06 - 00012702 _____ C:\Documents and Settings\TaĹĄka\Plocha\FRST.txt
2016-12-03 19:56 - 2016-12-03 19:57 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\TaĹĄka\Plocha\FRSTLauncher.exe
2016-12-03 19:55 - 2016-12-03 19:55 - 01761280 _____ (Farbar) C:\Documents and Settings\TaĹĄka\Plocha\FRST.exe
2016-12-03 19:41 - 2016-12-03 19:41 - 00006774 _____ C:\WINDOWS\system32\PerfStringBackup.TMP
2016-12-03 19:37 - 2016-12-03 19:37 - 00161020 _____ C:\WINDOWS\ntbtlog.txt
2016-12-03 16:12 - 2016-12-03 16:37 - 00038425 _____ C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Microsoft Excel.ADR
2016-11-28 23:11 - 2016-11-28 23:11 - 00131794 _____ C:\Documents and Settings\Taťka\Plocha\UH-Malenovice a späť.pdf
2016-11-28 22:47 - 2016-11-28 22:47 - 00000000 ___HD C:\Documents and Settings\All Users\Data aplikacĂ­\CanonIJEPPEX
2016-11-28 21:30 - 2016-12-02 18:19 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-11-27 19:21 - 2016-11-27 19:21 - 00130420 _____ C:\Documents and Settings\TaĹĄka\Plocha\UH-ONV Po_28-11-2016.pdf
2016-11-27 19:16 - 2016-11-27 19:16 - 00132019 _____ C:\Documents and Settings\TaĹĄka\Plocha\ONV-UH Po_28-11-2016.pdf
2016-11-15 18:28 - 2016-11-15 18:28 - 00000000 ____D C:\Documents and Settings\Maminka\Dokumenty\The KMPlayer
2016-11-15 11:35 - 2016-11-15 11:35 - 00000000 ____D C:\Program Files\Kernel Outlook PST Viewer
2016-11-15 11:35 - 2016-11-15 11:35 - 00000000 ____D C:\Documents and Settings\All Users\NabĂ­dka Start\Programy\Kernel Outlook PST Viewer
2016-11-15 11:23 - 2016-11-15 11:23 - 00000000 ____D C:\Documents and Settings\All Users\NabĂ­dka Start\Programy\Kernel for Outlook PST Repair - Evaluation Version
2016-11-15 11:23 - 2004-03-09 00:00 - 00212240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RICHTX32.OCX
2016-11-15 11:22 - 2016-11-15 11:23 - 00000000 ____D C:\Program Files\Kernel for Outlook PST Repair - Evaluation Version
2016-11-15 11:22 - 2015-06-25 18:43 - 07333376 _____ (Advanced Messaging Systems LLC) C:\WINDOWS\system32\Redemption.dll
2016-11-13 20:06 - 2016-11-13 20:06 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ­\APN
2016-11-13 20:05 - 2016-11-13 20:05 - 00000000 ____D C:\Documents and Settings\TaĹĄka\NabĂ­dka Start\Programy\The KMPlayer
2016-11-13 19:07 - 2016-11-13 19:07 - 00000000 ____D C:\Documents and Settings\TaĹĄka\Dokumenty\The KMPlayer
2016-11-13 18:50 - 2016-11-13 18:54 - 00000000 ____D C:\Documents and Settings\TaĹĄka\Dokumenty\InfoMan2.9
2016-11-13 18:46 - 2016-11-13 18:47 - 00000047 _____ C:\trl.cfg
2016-11-13 18:46 - 2016-11-13 18:47 - 00000000 ____D C:\Program Files\Adresy
2016-11-13 18:46 - 2016-11-13 18:46 - 00000000 ____D C:\Documents and Settings\TaĹĄka\NabĂ­dka Start\Programy\Adresy
2016-11-13 18:08 - 2016-11-13 18:08 - 00005520 _____ C:\WINDOWS\ModemLog_Bluetooth Fax Modem.txt
2016-11-13 18:08 - 2016-11-13 18:08 - 00000000 ____D C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\HABook
2016-11-13 17:26 - 2016-11-13 18:28 - 00000000 ____D C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Handy Address Book
2016-11-13 17:26 - 2016-11-13 18:24 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ­\GrebleSoft
2016-11-13 17:26 - 2016-11-13 18:20 - 00000000 ____D C:\Documents and Settings\TaĹĄka\Dokumenty\Handy Address Book
2016-11-13 17:26 - 2016-11-13 17:26 - 00000000 ____D C:\Program Files\Handy Address Book
2016-11-13 17:26 - 2016-11-13 17:26 - 00000000 ____D C:\Documents and Settings\All Users\NabĂ­dka Start\Programy\Handy Address Book
2016-11-12 19:21 - 2016-12-03 16:19 - 00022055 _____ C:\Documents and Settings\Taťka\Data aplikací\Hodnoty oddělené tabulátorem (Windows).ADR
2016-11-08 21:20 - 2016-11-15 16:23 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ­\TEMP
2016-11-08 17:46 - 2016-11-09 16:03 - 00000000 ____D C:\WINDOWS\SxsCaPendDel
2016-11-08 17:43 - 2010-07-10 17:07 - 04280832 _____ (dimastr.com) C:\WINDOWS\system32\rsror32.dll
2016-11-08 06:40 - 2016-11-08 06:40 - 00000000 __SHD C:\found.008
2016-11-07 19:01 - 2016-11-07 19:15 - 00038731 _____ C:\Documents and Settings\TaĹĄka\Plocha\vysledek_4.txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-03 20:06 - 2015-08-10 22:22 - 00000000 ____D C:\Documents and Settings\TaĹĄka\Local Settings\Temp
2016-12-03 20:06 - 2013-06-15 15:15 - 00000000 ___RD C:\Documents and Settings\TaĹĄka\Plocha
2016-12-03 20:06 - 2013-06-15 15:15 - 00000000 ___HD C:\Documents and Settings\TaĹĄka\Local Settings\Data aplikacĂ­
2016-12-03 19:57 - 2015-02-15 19:34 - 00000000 ____D C:\FRST
2016-12-03 19:55 - 2013-08-03 20:29 - 00001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2016-12-03 19:41 - 2001-10-25 13:00 - 00526218 _____ C:\WINDOWS\system32\perfh005.dat
2016-12-03 19:41 - 2001-10-25 13:00 - 00118922 _____ C:\WINDOWS\system32\perfc005.dat
2016-12-03 19:40 - 2014-11-28 16:48 - 213337088 _____ C:\Documents and Settings\TaĹĄka\Dokumenty\archive.pst
2016-12-03 19:37 - 2014-08-10 01:44 - 00000000 __SHD C:\WINDOWS\CSC
2016-12-03 19:34 - 2013-06-15 09:10 - 01293434 ____C C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-03 19:31 - 2014-08-22 12:08 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-12-03 19:24 - 2013-06-15 07:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-03 19:17 - 2013-06-15 07:21 - 00000178 ___SH C:\Documents and Settings\LocalService\ntuser.ini
2016-12-03 16:37 - 2013-06-21 16:54 - 00000390 ____C C:\WINDOWS\ODBC.INI
2016-12-03 16:37 - 2013-06-15 15:15 - 00000000 __RHD C:\Documents and Settings\TaĹĄka\Data aplikacĂ­
2016-12-03 16:17 - 2016-06-07 13:07 - 00038451 _____ C:\Documents and Settings\Taťka\Data aplikací\Hodnoty oddělené čárkami (Windows).ADR
2016-12-03 16:04 - 2015-02-21 18:11 - 00000278 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job
2016-12-03 11:18 - 2016-08-22 14:29 - 00032490 _____ C:\WINDOWS\SchedLgU.Txt
2016-12-03 11:18 - 2016-02-01 23:03 - 00273206 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ­\WPFFontCache_v0400-System.dat
2016-12-03 11:18 - 2016-02-01 16:24 - 00887486 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ­\WPFFontCache_v0400-S-1-5-21-1078081533-1993962763-1644491937-1009-0.dat
2016-12-03 11:18 - 2013-06-15 15:15 - 00000272 ___SH C:\Documents and Settings\TaĹĄka\ntuser.ini
2016-12-03 11:18 - 2013-06-15 15:15 - 00000000 ____D C:\Documents and Settings\TaĹĄka
2016-12-02 22:48 - 2014-08-19 19:47 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-12-02 18:22 - 2013-06-25 16:47 - 00001030 _____ C:\Documents and Settings\TaĹĄka\intlname.ols
2016-12-01 20:56 - 2016-08-28 06:59 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ­\CanonIJPLM
2016-11-28 22:47 - 2013-06-15 09:09 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikacĂ­
2016-11-27 20:55 - 2016-02-01 23:03 - 00478478 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ­\WPFFontCache_v0400-S-1-5-21-1078081533-1993962763-1644491937-1870-0.dat
2016-11-27 20:54 - 2015-09-18 18:22 - 00000272 ___SH C:\Documents and Settings\Maminka\ntuser.ini
2016-11-27 20:54 - 2015-09-18 18:22 - 00000000 ____D C:\Documents and Settings\Maminka
2016-11-27 18:13 - 2016-01-02 09:39 - 00000000 ____D C:\Documents and Settings\Maminka\Local Settings\Temp
2016-11-26 20:24 - 2001-10-25 13:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2016-11-15 18:28 - 2015-09-18 18:22 - 00000000 ___RD C:\Documents and Settings\Maminka\Dokumenty
2016-11-15 16:24 - 2013-06-15 09:09 - 00000000 ___RD C:\Documents and Settings\All Users\NabĂ­dka Start\Programy
2016-11-15 15:44 - 2013-06-15 15:15 - 00000000 ___RD C:\Documents and Settings\TaĹĄka\Dokumenty
2016-11-15 14:35 - 2014-08-22 12:16 - 00000000 ____D C:\Documents and Settings\TaĹĄka\Local Settings\Data aplikacĂ­\Adobe
2016-11-15 14:35 - 2014-08-22 12:08 - 00796352 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-11-15 14:35 - 2014-08-22 12:08 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-11-15 14:35 - 2013-06-15 07:15 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-15 09:47 - 2013-08-19 14:39 - 00000000 ____D C:\WINDOWS\pss
2016-11-15 09:47 - 2013-06-15 15:15 - 00000000 ___RD C:\Documents and Settings\Taťka\Nabídka Start\Programy\Po spuštění
2016-11-13 20:07 - 2013-06-16 08:25 - 00000000 ____D C:\Program Files\The KMPlayer
2016-11-13 20:05 - 2013-06-15 15:15 - 00000000 ___RD C:\Documents and Settings\TaĹĄka\NabĂ­dka Start\Programy
2016-11-11 22:44 - 2013-06-16 07:47 - 00000000 ___RD C:\Program Files\Skype
2016-11-11 22:44 - 2013-06-16 07:47 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ­\Skype
2016-11-11 22:43 - 2016-08-07 08:31 - 00000000 ____D C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Skype
2016-11-08 21:31 - 2014-08-21 16:14 - 00000000 ____D C:\Documents and Settings\Taťka\Plocha\Nová složka
2016-11-08 17:22 - 2016-06-01 22:24 - 00000000 ____D C:\Documents and Settings\All Users\NabĂ­dka Start\Programy\Microsoft Office
2016-11-08 17:22 - 2001-10-25 13:00 - 00001068 _____ C:\WINDOWS\win.ini
2016-11-07 18:14 - 2015-02-21 18:10 - 00000286 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job
2016-11-04 22:19 - 2013-06-15 08:11 - 01072544 _____ C:\WINDOWS\system32\nvdrsdb0.bin
2016-11-04 22:19 - 2013-06-15 08:11 - 00000001 _____ C:\WINDOWS\system32\nvdrssel.bin
2016-11-04 19:35 - 2013-06-15 08:11 - 01072544 _____ C:\WINDOWS\system32\nvdrsdb1.bin

==================== Files in the root of some directories =======

2013-08-28 19:31 - 2007-01-16 22:37 - 0010684 ____R () C:\Program Files\ExportFormat.txt
2013-08-28 19:31 - 2007-02-22 20:08 - 0925696 _____ (GSpot Appliance Corp, a unit of GSp0t Heavy Industries) C:\Program Files\GSpot.exe
2013-08-28 19:31 - 2007-02-19 15:28 - 0117974 ____R () C:\Program Files\GSpot27.dat
2013-08-28 19:31 - 2007-01-16 22:37 - 0003615 ____R () C:\Program Files\license.txt
2016-11-12 19:21 - 2016-12-03 16:19 - 0022055 _____ () C:\Documents and Settings\Taťka\Data aplikací\Hodnoty oddělené tabulátorem (Windows).ADR
2016-06-07 13:07 - 2016-12-03 16:17 - 0038451 _____ () C:\Documents and Settings\Taťka\Data aplikací\Hodnoty oddělené čárkami (Windows).ADR
2013-08-09 12:04 - 2013-08-17 18:56 - 0000000 ____C () C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Hybrid Chords
2013-08-09 12:05 - 2013-08-09 12:05 - 0000268 ___RH () C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Hybrid Morph
2013-08-09 12:04 - 2013-08-09 12:04 - 0000268 ___RH () C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Internet Services
2016-12-03 16:12 - 2016-12-03 16:37 - 0038425 _____ () C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\Microsoft Excel.ADR
2015-07-10 21:46 - 2015-07-10 21:50 - 0000041 ____H () C:\Documents and Settings\TaĹĄka\Data aplikacĂ­\swk.ini
2013-06-15 16:54 - 2016-07-17 00:19 - 0039936 _____ () C:\Documents and Settings\TaĹĄka\Local Settings\Data aplikacĂ­\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-02-27 11:16 - 2016-02-27 11:16 - 0000901 _____ () C:\Documents and Settings\TaĹĄka\Local Settings\Data aplikacĂ­\recently-used.xbel
2013-08-17 18:56 - 2013-08-17 18:56 - 0000000 ____C () C:\Documents and Settings\All Users\Data aplikacĂ­\Graphics
2013-08-17 18:56 - 2013-08-17 18:56 - 0000000 ____C () C:\Documents and Settings\All Users\Data aplikacĂ­\Hybrid Basic
2013-08-09 12:05 - 2013-08-09 12:05 - 0000268 ___RH () C:\Documents and Settings\All Users\Data aplikacĂ­\Image Manipulation
2013-08-09 12:05 - 2013-08-09 12:05 - 0000012 ___RH () C:\Documents and Settings\All Users\Data aplikacĂ­\Keyboard Layouts
2015-08-13 06:59 - 2015-08-13 06:59 - 0000016 _____ () C:\Documents and Settings\All Users\Data aplikacĂ­\mntemp
2013-08-09 12:04 - 2013-08-09 12:04 - 0000012 ___RH () C:\Documents and Settings\All Users\Data aplikacĂ­\NetServices
2013-08-09 12:04 - 2013-08-09 12:04 - 0000020 ____H () C:\Documents and Settings\All Users\Data aplikacĂ­\PKP_DLeo.DAT
2013-08-09 12:05 - 2013-08-09 12:05 - 0000020 ____H () C:\Documents and Settings\All Users\Data aplikacĂ­\PKP_DLes.DAT
2013-08-09 12:04 - 2013-08-17 18:56 - 0000000 ___HC () C:\Documents and Settings\All Users\Data aplikacĂ­\PKP_DLet.DAT
2013-08-09 12:04 - 2013-08-17 18:56 - 0000000 ___HC () C:\Documents and Settings\All Users\Data aplikacĂ­\PKP_DLev.DAT

Some files in TEMP:
====================
C:\Documents and Settings\Guest\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\Guest\Local Settings\Temp\NeroSearchTrayHook_{1EA5CD1F-E027-49AE-A365-3334D46E11B2}.dll
C:\Documents and Settings\Maminka\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\pc\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\TaĹĄka\Local Settings\Temp\avgnt.exe


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Avira Antivirus (Enabled - Out of date) {AD166499-45F9-482A-A743-FDD3350758C7}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\Taťka\Plocha" je 725 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent
"C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter
Režim ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan
Režim ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive
Režim ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Taťka^Nabídka Start^Programy^Po spuštění^Handy Address Book.lnk
C:\PROGRA~1\HANDYA~1\habook.exe


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Enabled:Winamp"
"C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe"="C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe:*:Enabled:True Vector"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"="C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Enabled:Winamp"
"C:\\Program Files\\QIP\\qip.exe"="C:\\Program Files\\QIP\\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe:*:Enabled:Instalátor AVG"
"C:\\Documents and Settings\\pc\\Local Settings\\Data aplikací\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"="C:\\Documents and Settings\\pc\\Local Settings\\Data aplikací\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe"="C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe:*:Enabled:True Vector"
"C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"="C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox (C:\\Program Files\\Mozilla Firefox)"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

Zdravím!
Nejprve zkuste obnovu systému k datu, kdy korketně fungoval.

Nepomohlo to.

Zkuste použít opravnou utiltu FixIt: http://www.stahuj.centrum.cz/utility_a_ ... it-center/ , nebo windows repair: http://www.stahuj.centrum.cz/utility_a_ ... ws-repair/ .