Nedá sa spustiť Mozilla FF

[vratkokuk]

Dobrý deň.
Včera mi z ničoho nič prestal fungovať Mozilla FF. Nedá sa vôbec spustiť. Po kliknutí na ikonu sa na krátky čas (asi tak sekundu) zobrazia tie malé presýpacie hodiny ako by to chcelo niečo robiť a potom nič...
Skúšasl som sa dopátrať chyby a možnosti opravy na internete, ale všetko márne. Nedá sa mi spustiť ani v vo svojom núdzovom režime. Skúšal som i premenovať profily, ako to bolo niekde na internete písané, ale nič nepomohlo. Tie profily mám stále premenované.
Môžete mi prosím pomôcť odstrániť túto nepríjemnosť?
Vopred moc ďakujem


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:09-08-2015
Ran by Taťka (administrator) on HOME-COMPIK (10-08-2015 07:25:42)
Running from C:\Documents and Settings\Taťka\Plocha
Loaded Profiles: Taťka (Available Profiles: pc & UpdatusUser & Taťka)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Check Point Software Technologies Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Check Point Software Technologies, Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Elaborate Bytes AG) C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
() C:\WINDOWS\VMSnap26.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Check Point Software Technologies Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\Taťka\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-01-31] ()
HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM\...\Run: [VirtualCloneDrive] => C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM\...\Run: [BigDogPath326VMSnap] => C:\WINDOWS\VMSnap26.exe [90112 2007-07-06] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [730416 2015-06-16] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [ZoneAlarm] => C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [137352 2014-08-13] (Check Point Software Technologies Ltd.)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\Launcher\Avira.Systray.exe [134368 2015-07-02] (Avira Operations GmbH & Co. KG)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {3CD82338-0B21-4155-8478-CE218D485740} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {5626B323-8039-4943-B9EE-65BF22C5276A} URL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {EA26EA9D-D0D7-4EE1-8097-9B9A96F9597A} URL = https://www.google.com/search?q={search ... utEncoding?}
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-02-18] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-02-18] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 29 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2015-02-18] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4A7E5DD4-918E-4582-AFA0-817A3B1098AA}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Taťka\Data aplikací\Mozilla\Firefox\Profiles\7k3fmgmc.default-1438442227807
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-15] (CANON INC.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @nullsoft.com/winampDetector;version=1 -> C:\Program Files\Winamp Detect\npwachk.dll [2013-07-24] (Nullsoft, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll [2015-02-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll [2015-02-15] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-06-23]

Chrome:
=======
CHR Profile: C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-09-15]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - <no Path\update_url>

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [825136 2015-06-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [450808 2015-06-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [450808 2015-06-16] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1187336 2015-06-16] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [218816 2015-07-02] (Avira Operations GmbH & Co. KG)
R2 BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [110592 2005-04-06] () [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S4 InCDsrv; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [859136 2006-11-10] (Nero AG) [File not signed]
R2 vsmon; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [3596752 2014-08-13] (Check Point Software Technologies Ltd.)
R2 ZAPrivacyService; C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [96272 2014-08-13] (Check Point Software Technologies, Ltd.)
S2 PEVSystemStart; no ImagePath

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2297664 2004-11-17] (Realtek Semiconductor Corp.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [108448 2015-06-16] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-08-29] (AVG Technologies)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136728 2015-06-16] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37896 2015-05-19] (Avira Operations GmbH & Co. KG)
R3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [20480 2005-08-31] (IVT Corporation) [File not signed]
R3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [20480 2005-08-31] (IVT Corporation) [File not signed]
R3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10068 2006-01-19] (IVT Corporation) [File not signed]
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [23000 2005-10-23] (IVT Corporation) [File not signed]
R0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [20616 2008-07-31] (IVT Corporation.)
R3 BTHidEnum; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [11988 2005-07-29] () [File not signed]
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [28271 2005-04-30] (IVT Corporation) [File not signed]
S3 BTNetFilter; C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys [14312 2006-04-14] () [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG)
R3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 GVCplDrv; C:\WINDOWS\system32\Drivers\GVCplDrv.sys [23040 2004-05-02] () [File not signed]
R0 imagedrv; C:\WINDOWS\System32\Drivers\imagedrv.sys [5888 2005-08-15] (Ahead Software AG) [File not signed]
R0 imagesrv; C:\WINDOWS\System32\DRIVERS\imagesrv.sys [127488 2005-08-15] (Ahead Software AG) [File not signed]
R4 InCDfs; C:\WINDOWS\System32\drivers\InCDFs.sys [102912 2006-11-10] (Nero AG) [File not signed]
R1 InCDPass; C:\WINDOWS\System32\drivers\InCDPass.sys [31360 2006-11-10] (Nero AG) [File not signed]
U1 InCDrec; C:\WINDOWS\system32\Drivers\InCDrec.sys [10624 2006-11-10] (Nero AG) [File not signed]
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [33792 2006-11-10] (Nero AG) [File not signed]
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [26248 2008-07-02] (IVT Corporation.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2013-06-23] (Padus, Inc.) [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [31848 2015-06-16] (Avira Operations GmbH & Co. KG)
R3 usbvm328; C:\WINDOWS\System32\Drivers\vmcam326av.sys [104960 2007-10-18] (Vimicro Corporation) [File not signed]
R3 VClone; C:\WINDOWS\System32\DRIVERS\VClone.sys [30208 2013-03-11] (Elaborate Bytes AG) [File not signed]
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation) [File not signed]
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [84836 2006-02-28] (IVT Corporation) [File not signed]
R0 VIAMRAID; C:\WINDOWS\System32\DRIVERS\viamraid.sys [117248 2008-08-08] (VIA Technologies inc,.ltd) [File not signed]
R1 Vsdatant; C:\WINDOWS\System32\vsdatant.sys [534024 2014-08-13] (Check Point Software Technologies Ltd.)
R3 vvftav326_a4; C:\WINDOWS\System32\drivers\vvftav326.sys [480128 2007-07-03] (Vimicro Corporation) [File not signed]
S4 IntelIde; no ImagePath
U5 lanmanserver; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
U5 Tcpip6; C:\Windows\System32\Drivers\Tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-10 07:25 - 2015-08-10 07:26 - 00013655 _____ C:\Documents and Settings\Taťka\Plocha\FRST.txt
2015-08-10 02:48 - 2015-08-10 02:48 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Taťka\Plocha\FRSTLauncher.exe
2015-08-10 02:46 - 2015-08-10 02:46 - 01674752 _____ (Farbar) C:\Documents and Settings\Taťka\Plocha\FRST.exe
2015-08-10 01:32 - 2015-08-10 01:32 - 00000803 _____ C:\Documents and Settings\Taťka\Nabídka Start\Programy\Internet Explorer.lnk
2015-08-10 01:31 - 2015-08-10 01:31 - 00000724 _____ C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
2015-08-10 00:44 - 2015-08-10 00:44 - 00000000 ___HD C:\Documents and Settings\All Users\Data aplikací\{2840BBCB-9BEC-47F6-BA0F-10D3C34BF151}
2015-08-10 00:44 - 2015-08-10 00:44 - 00000000 ____D C:\Program Files\Uniblue
2015-08-10 00:44 - 2015-08-10 00:44 - 00000000 ____D C:\Program Files\Registry Booster 2009
2015-08-10 00:44 - 2015-08-10 00:44 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-10 00:44 - 2015-08-10 00:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Uniblue
2015-08-10 00:40 - 2015-08-10 01:31 - 00001620 _____ C:\WINDOWS\wmsetup.log

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-10 07:26 - 2013-06-15 16:15 - 00000000 ____D C:\Documents and Settings\Taťka\Local Settings\Temp
2015-08-10 07:25 - 2015-02-15 20:34 - 00000000 ____D C:\FRST
2015-08-10 07:25 - 2014-08-22 13:08 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-10 07:25 - 2013-06-15 16:15 - 00000000 ___RD C:\Documents and Settings\Taťka\Plocha
2015-08-10 07:25 - 2013-06-15 16:15 - 00000000 ___HD C:\Documents and Settings\Taťka\Local Settings\Data aplikací
2015-08-10 07:22 - 2015-02-21 19:11 - 00000278 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job
2015-08-10 07:22 - 2013-06-15 08:16 - 01720193 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-10 07:21 - 2013-07-14 00:25 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-08-10 07:21 - 2013-07-14 00:25 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-08-10 07:21 - 2013-06-15 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-10 02:37 - 2013-06-15 10:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-10 01:32 - 2013-06-15 16:15 - 00000000 ___RD C:\Documents and Settings\Taťka\Nabídka Start\Programy
2015-08-10 01:31 - 2013-06-15 10:09 - 00000000 ___RD C:\Documents and Settings\Default User\Nabídka Start\Programy
2015-08-10 01:31 - 2013-06-15 10:09 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-08-10 01:31 - 2013-06-15 10:09 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-08-10 00:44 - 2015-02-18 17:57 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Avira
2015-08-10 00:44 - 2014-08-19 20:47 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-08-10 00:44 - 2013-06-15 16:15 - 00000000 ____D C:\Documents and Settings\Taťka
2015-08-10 00:44 - 2013-06-15 10:09 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-08-10 00:44 - 2013-06-15 08:21 - 00000000 __SHD C:\Documents and Settings\LocalService
2015-08-10 00:44 - 2013-06-15 08:21 - 00000000 ____D C:\Documents and Settings\pc
2015-08-10 00:44 - 2013-06-15 08:20 - 00000000 __SHD C:\Documents and Settings\NetworkService
2015-08-10 00:44 - 2013-06-15 08:14 - 00000000 ____D C:\WINDOWS\Registration
2015-08-10 00:43 - 2014-08-17 17:11 - 00240080 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
2015-08-10 00:43 - 2013-06-15 08:21 - 00032568 _____ C:\WINDOWS\SchedLgU.Txt
2015-08-10 00:43 - 2013-06-15 08:21 - 00000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2015-08-10 00:40 - 2014-11-28 17:48 - 201147392 _____ C:\Documents and Settings\Taťka\Dokumenty\archive.pst
2015-08-09 22:02 - 2001-10-25 14:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-08-09 17:15 - 2013-06-15 16:52 - 00000000 ____D C:\Documents and Settings\Taťka\Dokumenty\Stažené soubory
2015-08-09 16:14 - 2013-06-16 09:25 - 00000000 ____D C:\Program Files\The KMPlayer
2015-08-05 15:48 - 2013-08-03 21:29 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2015-08-03 18:14 - 2015-02-21 19:10 - 00000286 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job
2015-08-02 18:26 - 2014-08-21 17:14 - 00000000 ____D C:\Documents and Settings\Taťka\Plocha\Nová složka
2015-08-02 16:42 - 2013-06-15 16:15 - 00000272 ___SH C:\Documents and Settings\Taťka\ntuser.ini
2015-08-01 17:17 - 2014-02-27 22:06 - 00000000 ____D C:\Documents and Settings\Taťka\Plocha\Původní data aplikace Firefox
2015-08-01 16:43 - 2014-08-17 16:45 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Package Cache
2015-07-31 22:42 - 2013-06-15 08:21 - 00000272 ___SH C:\Documents and Settings\pc\ntuser.ini
2015-07-31 13:34 - 2013-06-15 08:21 - 00000000 ____D C:\Documents and Settings\pc\Local Settings\Temp
2015-07-31 13:08 - 2014-12-26 18:25 - 00000000 ____D C:\Documents and Settings\Taťka\Plocha\Obývačka
2015-07-26 13:08 - 2013-06-25 17:47 - 00001140 _____ C:\Documents and Settings\Taťka\intlname.ols
2015-07-15 19:25 - 2014-08-22 13:08 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-07-15 19:25 - 2014-08-22 13:08 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2013-08-28 20:31 - 2007-01-16 23:37 - 0010684 ____R () C:\Program Files\ExportFormat.txt
2013-08-28 20:31 - 2007-02-22 21:08 - 0925696 _____ (GSpot Appliance Corp, a unit of GSp0t Heavy Industries) C:\Program Files\GSpot.exe
2013-08-28 20:31 - 2007-02-19 16:28 - 0117974 ____R () C:\Program Files\GSpot27.dat
2013-08-28 20:31 - 2007-01-16 23:37 - 0003615 ____R () C:\Program Files\license.txt
2013-08-09 13:04 - 2013-08-17 19:56 - 0000000 _____ () C:\Documents and Settings\Taťka\Data aplikací\Hybrid Chords
2013-08-09 13:05 - 2013-08-09 13:05 - 0000268 ___RH () C:\Documents and Settings\Taťka\Data aplikací\Hybrid Morph
2013-08-09 13:04 - 2013-08-09 13:04 - 0000268 ___RH () C:\Documents and Settings\Taťka\Data aplikací\Internet Services
2015-07-10 22:46 - 2015-07-10 22:50 - 0000041 ____H () C:\Documents and Settings\Taťka\Data aplikací\swk.ini
2013-06-15 17:54 - 2015-05-20 18:44 - 0023040 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-03 11:57 - 2015-05-03 11:57 - 0005301 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\recently-used.xbel

Some files in TEMP:
====================
C:\Documents and Settings\pc\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\Taťka\Local Settings\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Security Center ==================

AV: Avira Antivirus (Disabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: ZoneAlarm Free Firewall Firewall (Disabled) {829BDA32-94B3-44F4-8446-F8FCFF809F8B}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\Taka\Plocha" je 506 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Enabled:Winamp"
"C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe"="C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe:*:Enabled:True Vector"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"="C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"="C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Enabled:Winamp"
"C:\\Program Files\\QIP\\qip.exe"="C:\\Program Files\\QIP\\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe:*:Enabled:Instaltor AVG"
"C:\\Documents and Settings\\pc\\Local Settings\\Data aplikac\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"="C:\\Documents and Settings\\pc\\Local Settings\\Data aplikac\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe"="C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe:*:Enabled:True Vector"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox (C:\\Program Files\\Mozilla Firefox)"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[vratkokuk]

# AdwCleaner v4.208 - Log vytvořen 10/08/2015 v 18:13:29
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-08-01.1 [Server]
# Operační system : Microsoft Windows XP Service Pack 3 (x86)
# Uživatelské jméno : Taťka - HOME-COMPIK
# Spuštěno z : C:\Documents and Settings\Taťka\Plocha\adwcleaner_4.208.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Složka Smazáno : C:\Documents and Settings\All Users\Nabídka Start\Programy\Uniblue
Složka Smazáno : C:\Program Files\Uniblue
Složka Smazáno : C:\Documents and Settings\Taťka\Data aplikací\Uniblue

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Klíč Smazáno : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Klíč Smazáno : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{E00DE9B9-B128-4C39-B732-B5D85013FA48}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Klíč Smazáno : HKCU\Software\Uniblue
Klíč Smazáno : HKCU\Software\Avg Secure Update
Klíč Smazáno : HKLM\SOFTWARE\Uniblue
Klíč Smazáno : HKLM\SOFTWARE\Avg Secure Update
Klíč Smazáno : HKU\.DEFAULT\Software\Avg Secure Update

***** [ Prohlížeče ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v39.0 (x86 cs)


-\\ Google Chrome v40.0.2214.111


-\\ Opera v0.0.0.0


*************************

AdwCleaner[R3].txt - [3390 bytů] - [16/02/2015 00:01:14]
AdwCleaner[R4].txt - [2516 bytů] - [10/08/2015 18:08:52]
AdwCleaner[S3].txt - [3662 bytů] - [16/02/2015 00:06:48]
AdwCleaner[S4].txt - [2419 bytů] - [10/08/2015 18:13:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [2477 bytů] ##########

[Rudy]

Dejte nový log FRST.

[vratkokuk]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:09-08-2015
Ran by Taťka (administrator) on HOME-COMPIK (10-08-2015 20:37:51)
Running from C:\Documents and Settings\Taťka\Plocha
Loaded Profiles: pc & Taťka (Available Profiles: pc & UpdatusUser & Taťka)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Check Point Software Technologies Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Check Point Software Technologies, Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Elaborate Bytes AG) C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
() C:\WINDOWS\VMSnap26.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Check Point Software Technologies Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(forum.viry.cz) C:\Documents and Settings\Taťka\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-01-31] ()
HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM\...\Run: [VirtualCloneDrive] => C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM\...\Run: [BigDogPath326VMSnap] => C:\WINDOWS\VMSnap26.exe [90112 2007-07-06] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [782008 2015-08-10] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [ZoneAlarm] => C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [137352 2014-08-13] (Check Point Software Technologies Ltd.)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\Launcher\Avira.Systray.exe [134368 2015-07-02] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [QIP Internet Guardian] => C:\Documents and Settings\pc\Data aplikací\QipGuard\QipGuard.exe [187776 2010-12-13] (QIP.ru)
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [139264 2006-11-16] (Nero AG)
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [Facebook Update] => C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [138096 2013-11-07] (Facebook Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
HKU\S-1-5-21-1078081533-1993962763-1644491937-1009\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {3CD82338-0B21-4155-8478-CE218D485740} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {5626B323-8039-4943-B9EE-65BF22C5276A} URL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {EA26EA9D-D0D7-4EE1-8097-9B9A96F9597A} URL = https://www.google.com/search?q={search ... utEncoding?}
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4A7E5DD4-918E-4582-AFA0-817A3B1098AA}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Taťka\Data aplikací\Mozilla\Firefox\Profiles\7k3fmgmc.default-1438442227807
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-15] (CANON INC.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @nullsoft.com/winampDetector;version=1 -> C:\Program Files\Winamp Detect\npwachk.dll [2013-07-24] (Nullsoft, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll [2015-02-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.7\npGoogleUpdate3.dll [2015-02-15] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1078081533-1993962763-1644491937-1003: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1078081533-1993962763-1644491937-1009: @kb-ext.cz/PKIComponent -> C:\Documents and Settings\Taťka\Data aplikací\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll [1749-10-20] (Komerční banka, a.s.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-06-23]

Chrome:
=======
CHR Profile: C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Taťka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-09-15]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - <no Path\update_url>

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [887128 2015-08-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [461672 2015-08-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [461672 2015-08-10] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1212048 2015-08-10] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [218816 2015-07-02] (Avira Operations GmbH & Co. KG)
R2 BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [110592 2005-04-06] () [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S4 InCDsrv; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [859136 2006-11-10] (Nero AG) [File not signed]
R2 vsmon; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [3596752 2014-08-13] (Check Point Software Technologies Ltd.)
R2 ZAPrivacyService; C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [96272 2014-08-13] (Check Point Software Technologies, Ltd.)
S2 PEVSystemStart; no ImagePath

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2297664 2004-11-17] (Realtek Semiconductor Corp.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [108448 2015-08-10] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-08-29] (AVG Technologies)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136728 2015-08-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37896 2015-05-19] (Avira Operations GmbH & Co. KG)
R3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [20480 2005-08-31] (IVT Corporation) [File not signed]
R3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [20480 2005-08-31] (IVT Corporation) [File not signed]
R3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10068 2006-01-19] (IVT Corporation) [File not signed]
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [23000 2005-10-23] (IVT Corporation) [File not signed]
R0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [20616 2008-07-31] (IVT Corporation.)
R3 BTHidEnum; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [11988 2005-07-29] () [File not signed]
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [28271 2005-04-30] (IVT Corporation) [File not signed]
S3 BTNetFilter; C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys [14312 2006-04-14] () [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG)
R3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 GVCplDrv; C:\WINDOWS\system32\Drivers\GVCplDrv.sys [23040 2004-05-02] () [File not signed]
R0 imagedrv; C:\WINDOWS\System32\Drivers\imagedrv.sys [5888 2005-08-15] (Ahead Software AG) [File not signed]
R0 imagesrv; C:\WINDOWS\System32\DRIVERS\imagesrv.sys [127488 2005-08-15] (Ahead Software AG) [File not signed]
R4 InCDfs; C:\WINDOWS\System32\drivers\InCDFs.sys [102912 2006-11-10] (Nero AG) [File not signed]
R1 InCDPass; C:\WINDOWS\System32\drivers\InCDPass.sys [31360 2006-11-10] (Nero AG) [File not signed]
U1 InCDrec; C:\WINDOWS\system32\Drivers\InCDrec.sys [10624 2006-11-10] (Nero AG) [File not signed]
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [33792 2006-11-10] (Nero AG) [File not signed]
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [26248 2008-07-02] (IVT Corporation.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2013-06-23] (Padus, Inc.) [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [31848 2015-06-16] (Avira Operations GmbH & Co. KG)
R3 usbvm328; C:\WINDOWS\System32\Drivers\vmcam326av.sys [104960 2007-10-18] (Vimicro Corporation) [File not signed]
R3 VClone; C:\WINDOWS\System32\DRIVERS\VClone.sys [30208 2013-03-11] (Elaborate Bytes AG) [File not signed]
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation) [File not signed]
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [84836 2006-02-28] (IVT Corporation) [File not signed]
R0 VIAMRAID; C:\WINDOWS\System32\DRIVERS\viamraid.sys [117248 2008-08-08] (VIA Technologies inc,.ltd) [File not signed]
R1 Vsdatant; C:\WINDOWS\System32\vsdatant.sys [534024 2014-08-13] (Check Point Software Technologies Ltd.)
R3 vvftav326_a4; C:\WINDOWS\System32\drivers\vvftav326.sys [480128 2007-07-03] (Vimicro Corporation) [File not signed]
S4 IntelIde; no ImagePath
U5 lanmanserver; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
U5 Tcpip6; C:\Windows\System32\Drivers\Tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-10 18:07 - 2015-08-10 18:08 - 02248704 _____ C:\Documents and Settings\Taťka\Plocha\adwcleaner_4.208.exe
2015-08-10 17:39 - 2015-08-10 17:39 - 03025984 _____ (Komercni banka, a.s. ) C:\Documents and Settings\Taťka\Plocha\KB_podepisovaci_modul.exe
2015-08-10 17:34 - 2015-08-10 17:34 - 00000000 ____D C:\Documents and Settings\Taťka\Data aplikací\KB-ext
2015-08-10 07:25 - 2015-08-10 20:38 - 00014834 _____ C:\Documents and Settings\Taťka\Plocha\FRST.txt
2015-08-10 02:48 - 2015-08-10 02:48 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Taťka\Plocha\FRSTLauncher.exe
2015-08-10 02:46 - 2015-08-10 02:46 - 01674752 _____ (Farbar) C:\Documents and Settings\Taťka\Plocha\FRST.exe
2015-08-10 01:32 - 2015-08-10 01:32 - 00000803 _____ C:\Documents and Settings\Taťka\Nabídka Start\Programy\Internet Explorer.lnk
2015-08-10 01:31 - 2015-08-10 01:31 - 00000724 _____ C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
2015-08-10 00:44 - 2015-08-10 00:44 - 00000000 ___HD C:\Documents and Settings\All Users\Data aplikací\{2840BBCB-9BEC-47F6-BA0F-10D3C34BF151}
2015-08-10 00:44 - 2015-08-10 00:44 - 00000000 ____D C:\Program Files\Registry Booster 2009
2015-08-10 00:44 - 2015-08-10 00:44 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-10 00:40 - 2015-08-10 01:31 - 00001620 _____ C:\WINDOWS\wmsetup.log

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-10 20:38 - 2013-06-15 16:15 - 00000000 ____D C:\Documents and Settings\Taťka\Local Settings\Temp
2015-08-10 20:37 - 2015-02-15 20:34 - 00000000 ____D C:\FRST
2015-08-10 20:37 - 2013-06-15 16:15 - 00000000 ___RD C:\Documents and Settings\Taťka\Plocha
2015-08-10 20:37 - 2013-06-15 16:15 - 00000000 ___HD C:\Documents and Settings\Taťka\Local Settings\Data aplikací
2015-08-10 20:25 - 2014-08-22 13:08 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-10 19:47 - 2013-08-03 21:29 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2015-08-10 19:46 - 2015-02-21 19:11 - 00000278 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job
2015-08-10 19:46 - 2013-06-15 08:16 - 01734622 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-10 19:45 - 2013-07-14 00:25 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-08-10 19:45 - 2013-07-14 00:25 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-08-10 19:45 - 2013-06-15 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-10 18:22 - 2013-06-15 16:15 - 00000272 ___SH C:\Documents and Settings\Taťka\ntuser.ini
2015-08-10 18:22 - 2013-06-15 16:15 - 00000000 ____D C:\Documents and Settings\Taťka
2015-08-10 18:22 - 2013-06-15 08:21 - 00032568 _____ C:\WINDOWS\SchedLgU.Txt
2015-08-10 18:14 - 2015-02-21 19:10 - 00000286 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job
2015-08-10 18:13 - 2015-02-16 00:01 - 00000000 ____D C:\AdwCleaner
2015-08-10 18:13 - 2013-06-15 16:15 - 00000000 __RHD C:\Documents and Settings\Taťka\Data aplikací
2015-08-10 18:13 - 2013-06-15 10:09 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-08-10 17:46 - 2014-11-28 17:48 - 201147392 _____ C:\Documents and Settings\Taťka\Dokumenty\archive.pst
2015-08-10 16:00 - 2014-08-17 17:11 - 00240080 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
2015-08-10 16:00 - 2013-06-15 08:21 - 00000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2015-08-10 07:55 - 2015-02-15 20:42 - 00008429 _____ C:\Documents and Settings\Taťka\Plocha\Addition.rar
2015-08-10 07:38 - 2015-02-18 17:57 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Avira
2015-08-10 07:34 - 2015-02-18 18:00 - 00136728 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-08-10 07:34 - 2015-02-18 18:00 - 00108448 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-08-10 02:37 - 2013-06-15 10:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-10 01:32 - 2013-06-15 16:15 - 00000000 ___RD C:\Documents and Settings\Taťka\Nabídka Start\Programy
2015-08-10 01:31 - 2013-06-15 10:09 - 00000000 ___RD C:\Documents and Settings\Default User\Nabídka Start\Programy
2015-08-10 01:31 - 2013-06-15 10:09 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-08-10 00:44 - 2014-08-19 20:47 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-08-10 00:44 - 2013-06-15 10:09 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-08-10 00:44 - 2013-06-15 08:21 - 00000000 __SHD C:\Documents and Settings\LocalService
2015-08-10 00:44 - 2013-06-15 08:21 - 00000000 ____D C:\Documents and Settings\pc
2015-08-10 00:44 - 2013-06-15 08:20 - 00000000 __SHD C:\Documents and Settings\NetworkService
2015-08-10 00:44 - 2013-06-15 08:14 - 00000000 ____D C:\WINDOWS\Registration
2015-08-09 22:02 - 2001-10-25 14:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-08-09 17:15 - 2013-06-15 16:52 - 00000000 ____D C:\Documents and Settings\Taťka\Dokumenty\Stažené soubory
2015-08-09 16:14 - 2013-06-16 09:25 - 00000000 ____D C:\Program Files\The KMPlayer
2015-08-02 18:26 - 2014-08-21 17:14 - 00000000 ____D C:\Documents and Settings\Taťka\Plocha\Nová složka
2015-08-01 17:17 - 2014-02-27 22:06 - 00000000 ____D C:\Documents and Settings\Taťka\Plocha\Původní data aplikace Firefox
2015-08-01 16:43 - 2014-08-17 16:45 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Package Cache
2015-07-31 22:42 - 2013-06-15 08:21 - 00000272 ___SH C:\Documents and Settings\pc\ntuser.ini
2015-07-31 13:34 - 2013-06-15 08:21 - 00000000 ____D C:\Documents and Settings\pc\Local Settings\Temp
2015-07-31 13:08 - 2014-12-26 18:25 - 00000000 ____D C:\Documents and Settings\Taťka\Plocha\Obývačka
2015-07-26 13:08 - 2013-06-25 17:47 - 00001140 _____ C:\Documents and Settings\Taťka\intlname.ols
2015-07-15 19:25 - 2014-08-22 13:08 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-07-15 19:25 - 2014-08-22 13:08 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2013-08-28 20:31 - 2007-01-16 23:37 - 0010684 ____R () C:\Program Files\ExportFormat.txt
2013-08-28 20:31 - 2007-02-22 21:08 - 0925696 _____ (GSpot Appliance Corp, a unit of GSp0t Heavy Industries) C:\Program Files\GSpot.exe
2013-08-28 20:31 - 2007-02-19 16:28 - 0117974 ____R () C:\Program Files\GSpot27.dat
2013-08-28 20:31 - 2007-01-16 23:37 - 0003615 ____R () C:\Program Files\license.txt
2013-08-09 13:04 - 2013-08-17 19:56 - 0000000 _____ () C:\Documents and Settings\Taťka\Data aplikací\Hybrid Chords
2013-08-09 13:05 - 2013-08-09 13:05 - 0000268 ___RH () C:\Documents and Settings\Taťka\Data aplikací\Hybrid Morph
2013-08-09 13:04 - 2013-08-09 13:04 - 0000268 ___RH () C:\Documents and Settings\Taťka\Data aplikací\Internet Services
2015-07-10 22:46 - 2015-07-10 22:50 - 0000041 ____H () C:\Documents and Settings\Taťka\Data aplikací\swk.ini
2013-06-15 17:54 - 2015-05-20 18:44 - 0023040 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-03 11:57 - 2015-05-03 11:57 - 0005301 _____ () C:\Documents and Settings\Taťka\Local Settings\Data aplikací\recently-used.xbel

Some files in TEMP:
====================
C:\Documents and Settings\pc\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\Taťka\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\Taťka\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Taťka\Local Settings\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:39.06 GB) (Free:18.44 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: (DVD) (Fixed) (Total:146.48 GB) (Free:26.22 GB) NTFS
Drive e: (Záloha) (Fixed) (Total:47.34 GB) (Free:7.85 GB) NTFS

Available physical RAM: 600.64 MB
Total physical RAM: 1023.23 MB
Percentage of memory in use: 41%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 232.9 GB) (Disk ID: 4850484F)
Partition 1: (Active) - (Size=39.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=193.8 GB) - (Type=OF Extended)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1078081533-1993962763-1644491937-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Security Center ==================

AV: Avira Antivirus (Disabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: ZoneAlarm Free Firewall Firewall (Disabled) {829BDA32-94B3-44F4-8446-F8FCFF809F8B}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\Ta�ka\Plocha" je 511 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Enabled:Winamp"
"C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe"="C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe:*:Enabled:True Vector"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"="C:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"="C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\\Program Files\\Winamp\\winamp.exe"="C:\\Program Files\\Winamp\\winamp.exe:*:Enabled:Winamp"
"C:\\Program Files\\QIP\\qip.exe"="C:\\Program Files\\QIP\\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe:*:Enabled:Instal�tor AVG"
"C:\\Documents and Settings\\pc\\Local Settings\\Data aplikac�\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"="C:\\Documents and Settings\\pc\\Local Settings\\Data aplikac�\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe"="C:\\Program Files\\CheckPoint\\ZoneAlarm\\vsmon.exe:*:Enabled:True Vector"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox (C:\\Program Files\\Mozilla Firefox)"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

[vratkokuk]

Nedalo sa mi to odoslať, tak to skúšam znova.

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [Facebook Update] => C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [138096 2013-11-07] (Facebook Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Update
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {3CD82338-0B21-4155-8478-CE218D485740} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - <no Path\update_url>
C:\Documents and Settings\pc\Local Settings\Temp
C:\Documents and Settings\Taťka\Local Settings\Temp
AlternateDataStreams: C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
KMPlayer Toolbar Updater (HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.4.4.45269 - Ask.com) <==== ATTENTION
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[vratkokuk]

Fix result of Farbar Recovery Scan Tool (x86) Version:09-08-2015
Ran by Taťka (2015-08-10 23:04:14) Run:1
Running from C:\Documents and Settings\Taťka\Plocha
Loaded Profiles: pc & Taťka (Available Profiles: pc & UpdatusUser & Taťka)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\Run: [Facebook Update] => C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [138096 2013-11-07] (Facebook Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Update
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1078081533-1993962763-1644491937-1009 -> {3CD82338-0B21-4155-8478-CE218D485740} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - <no Path\update_url>
C:\Documents and Settings\pc\Local Settings\Temp
C:\Documents and Settings\Taťka\Local Settings\Temp
AlternateDataStreams: C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
KMPlayer Toolbar Updater (HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.4.4.45269 - Ask.com) <==== ATTENTION
End



*****************

HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update => value removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\Documents and Settings\pc\Local Settings\Data aplikací\Facebook\Update => moved successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKU\S-1-5-21-1078081533-1993962763-1644491937-1009\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3CD82338-0B21-4155-8478-CE218D485740}" => key removed successfully.
HKCR\CLSID\{3CD82338-0B21-4155-8478-CE218D485740} => key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} => value removed successfully.
HKCR\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972} => key not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => key removed successfully.
C:\Documents and Settings\pc\Local Settings\Temp => moved successfully.

"C:\Documents and Settings\Taťka\Local Settings\Temp" folder move:

Could not move "C:\Documents and Settings\Taťka\Local Settings\Temp" => Scheduled to move on reboot.

C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf => ":SummaryInformation" ADS removed successfully..
C:\Documents and Settings\Taťka\Plocha\Ersatzteile_03_14-2-.pdf => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully..
KMPlayer Toolbar Updater (HKU\S-1-5-21-1078081533-1993962763-1644491937-1003\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.4.4.45269 - Ask.com) <==== ATTENTION => Error: No automatic fix found for this entry.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-08-10 23:07:03)<=

C:\Documents and Settings\Taťka\Local Settings\Temp => moved successfully

==== End of Fixlog 23:07:05 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[vratkokuk]

Stále sa to nedá spustiť.

[Rudy]

FF zazálohujte pomocí MozBackup: http://www.stahuj.centrum.cz/utility_a_ ... mozbackup/ Pak FF odinstalujte vč. jeho profilu. Znovu nainstalujte a zpět ze zálohy nakopírujte pouze záložky a hesla.

[vratkokuk]

Nedá sa odinštalovať ani CCleanerom, ani v "pridať či odobrať programy". Ako to mám odstrániť?

[vratkokuk]

A ešte taká poznámka na okraj, súvisí to trošku s touto témou. Keď mi prestal fungovať FF, bol som nútený prejsť na Internet Explorer. Pri zadaní adresy "www.t-mobile.cz" mi to zobrazilo chybovú hlášku
"Aplikace Internet Explorer nemůže zobrazit tuto webovou stránku".

Pokúšal som sa to opraviť podľa návodu vo widláckej podpore, ale nepodarilo sa.
Písalo sa tam, že treba zmeniť hodnotu "ConnectRetries" na vyšší počet pokusov (v desiatkovej sústave). Postupne som ju zvyšoval až na hodnotu 1000, ale stále mi to nezobrazuje.
Ide o túto cestu:
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings

Strašne ma to rozčulovalo, lebo som sa tam potreboval pozrieť. A tak som prešiel na Google chrome. Tam je to v pohode. Ale len tak zo zvedavosti a pre zaujímavosť, ako sa dá spomínaná chyba odstrániť?

[Rudy]

Záleží na tom, co chcete opravit. Pokkud prohlížeč, opak jedině přeinstalací. Chcete-li opravit připojení pak použijte winsockfix: http://www.softpedia.com/get/Tweak/Netw ... kFix.shtml .

[vratkokuk]

Ach, oprava pripojenia IE nie je na programe dňa. To bolo len tak skôr pre zaujímavosť. Pre mňa je dôležité zasa sprevádzkovať Mozilla FF.
Tak ako mám odstrániť ten FF spolu s profilmi?