jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

[Márty84]

Zopakujte ZOEK


Postupujte podle navodu kolegy

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Postupujte podle navodu kolegy

Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/

• Ulozte nejlepe na Plochu a rozbalte
• Spustte kliknutim na mbar
• Nyni postupne kliknete na Next a Update
• Po dokonceni update (aktualizace) databaze kliknete opet na Next
• Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC
• Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko
• Tez zkontrolujte, jetsli je zatrzitko u Create Restore point
• Nyni kliknete na CleanUp cimz nalezenou infekci odstranime
• PC bude restartovan
• Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte

[simplyfine]

tak log zoek:
Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by Tom ç on so 11.04.2015 at 21:34:18,98.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Tomáš\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

11.4.2015 21:36:00 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Users\Tom ç\AppData\Roaming\Publish Providers deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\prefs.js:
user_pref("browser.startup.homepage", "http://atlas.centrum.cz/");
user_pref("browser.search.defaultenginename", "Google Default");

Added to C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\Users\Tomáš\.android not found
C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin not found
C:\Users\Tomáš\AppData\Roaming\YoudaGames not found
C:\Users\Tomáš\AppData\Local\cache not found
C:\Users\Tomáš\AppData\Local\CrashRpt not found
C:\Users\Tomáš\Documents\Add-in Express not found
"C:\Users\Tomáš\AppData\Roaming\AVG" not found
"C:\Users\Tomáš\AppData\Roaming\OEM" not found
"C:\Users\Tomáš\AppData\Roaming\vlc" not found
"C:\Users\Tomáš\AppData\Roaming\ZOG" not found
"C:\Users\Tomáš\AppData\Roaming\Awem" not found
"C:\Users\Tomáš\AppData\Roaming\Kodi" not found
"C:\Users\Tomáš\AppData\Roaming\ODIN" not found
"C:\Users\Tomáš\AppData\Roaming\Sony" not found
"C:\Users\Tomáš\AppData\Roaming\Temp" not found
"C:\Users\Tomáš\AppData\Roaming\XBMC" not found
"C:\Users\Tomáš\AppData\Roaming\Avnex" not found
"C:\Users\Tomáš\AppData\Roaming\Corel" not found
"C:\Users\Tomáš\AppData\Roaming\MAGIX" not found
"C:\Users\Tomáš\AppData\Roaming\SPORE" not found
"C:\Users\Tomáš\AppData\Roaming\TOSST" not found
"C:\Users\Tomáš\AppData\Roaming\Unity" not found
"C:\Users\Tomáš\AppData\Roaming\Angler" not found
"C:\Users\Tomáš\AppData\Roaming\Argali" not found
"C:\Users\Tomáš\AppData\Roaming\Oracle" not found
"C:\Users\Tomáš\AppData\Roaming\Origin" not found
"C:\Users\Tomáš\AppData\Roaming\Orneon" not found
"C:\Users\Tomáš\AppData\Roaming\PoBros" not found
"C:\Users\Tomáš\AppData\Roaming\STAHKM" not found
"C:\Users\Tomáš\AppData\Roaming\System" not found
"C:\Users\Tomáš\AppData\Roaming\Boomzap" not found
"C:\Users\Tomáš\AppData\Roaming\HipSoft" not found
"C:\Users\Tomáš\AppData\Roaming\Hullabu" not found
"C:\Users\Tomáš\AppData\Roaming\iMaxGen" not found
"C:\Users\Tomáš\AppData\Roaming\PlayWay" not found
"C:\Users\Tomáš\AppData\Roaming\Samsung" not found
C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\jetpack deleted
"C:\Users\Tomáš\AppData\Roaming\CFBEDSDX" deleted
"C:\Users\Tomáš\AppData\Roaming\MXPUWBDF" deleted
"C:\Users\Tomáš\AppData\Roaming\SM" deleted
"C:\Users\Tomáš\AppData\Roaming\WGPYQE" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"DSE"="true" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
- Send to XBMC - %ProfilePath%\extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi
- Google Translator for Firefox - %ProfilePath%\extensions\translator@zoli.bod.xpi
- ImTranslator - %ProfilePath%\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi

==== Firefox Plugins ======================


==== Chromium Look ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{8457B015-190D-4AC9-AD55-CE83AE88A955}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"
{8457B015-190D-4AC9-AD55-CE83AE88A955} Google Url="http://www.google.com/search?q={searchT ... utEncoding?}"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=6 folders=3 7209 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Users\Tomáš\AppData\Local\Temp emptied successfully
C:\Users\TomßÜ\AppData\Local\temp emptied successfully
C:\Users\Tom??\AppData\Local\Temp emptied successfully
C:\Users\TOM~3\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\TOM~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on so 11.04.2015 at 21:57:18,63 ======================

a další log není, protože mbar nenalezl žádnou infekci.

[Márty84]

Zmenilo se neco pri stahovani?


Dejte prosim aktualni logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach

[simplyfine]

Při stahování bylo již vše ok, čili stahovalo se s příponou .exe a vkládám log a přílohu:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-04-2015
Ran by Tomáš (administrator) on MILOUS on 14-04-2015 19:31:35
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available profiles: Tomáš)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLMSService.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_16_0_0_305_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
BootExecute: autocheck autochk * bddel.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3337465978-2193547489-3213491474-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-22] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-05-26] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-22] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2012-08-02] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll [2013-09-29] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3337465978-2193547489-3213491474-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-16] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml [2015-04-04]
FF Extension: Send to XBMC - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi [2013-05-05]
FF Extension: Google Translator for Firefox - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi [2012-05-05]
FF Extension: ImTranslator - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-05-05]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-02-10] (Microsoft Corporation)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [255040 2014-09-07] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-15] (Electronic Arts)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 PcaSp60; C:\Windows\SysWOW64\DRIVERS\PcaSp60.sys [38912 2010-09-07] (Printing Communications Assoc., Inc. (PCAUSA))
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 zghsser; C:\Windows\System32\DRIVERS\zghsser.sys [134976 2013-09-11] (ZTE Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz134; \??\C:\Users\TOM~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-14 19:31 - 2015-04-14 19:32 - 00016685 _____ () C:\Users\Tomáš\Desktop\FRST.txt
2015-04-14 19:30 - 2015-04-14 19:31 - 00000000 ____D () C:\FRST
2015-04-14 19:29 - 2015-04-14 19:29 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe
2015-04-14 19:28 - 2015-04-14 19:28 - 02096640 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2015-04-13 19:05 - 2015-04-13 19:05 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Publish Providers
2015-04-12 20:01 - 2015-04-12 20:01 - 00000000 ____D () C:\Users\Tomáš\Documents\Updater
2015-04-11 22:08 - 2015-04-11 22:45 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-11 22:07 - 2015-04-11 22:45 - 00000000 ____D () C:\Users\Tomáš\Desktop\mbar
2015-04-11 22:06 - 2015-04-11 22:06 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe
2015-04-11 21:57 - 2015-04-11 21:57 - 00008162 _____ () C:\Users\Tomáš\Desktop\zoek-results.txt
2015-04-11 21:50 - 2015-04-11 21:34 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-04-11 21:35 - 2015-04-11 21:57 - 00008162 _____ () C:\zoek-results.log
2015-04-11 21:34 - 2015-04-11 21:47 - 00000000 ____D () C:\zoek_backup
2015-04-11 21:33 - 2015-04-11 21:33 - 01305600 _____ () C:\Users\Tomáš\Desktop\zoek.exe
2015-04-11 20:07 - 2015-04-11 21:56 - 00001298 _____ () C:\Windows\PFRO.log
2015-04-11 18:59 - 2015-04-11 18:59 - 00000000 _____ () C:\Users\Tomáš\Downloads\Firefox Setup Stub 37_0_1_exe.76ti592.partial
2015-04-11 16:30 - 2015-04-14 19:16 - 00001568 _____ () C:\Windows\setupact.log
2015-04-11 16:30 - 2015-04-11 16:30 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-11 09:56 - 2015-04-11 09:56 - 00001728 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\Program Files\Defraggler
2015-04-11 08:20 - 2015-04-11 08:20 - 00000000 ____D () C:\Users\Tomáš\Desktop\záloha ccleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00002786 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-04-11 08:06 - 2015-04-11 08:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-11 08:02 - 2015-04-11 08:02 - 05344528 _____ (Piriform Ltd) C:\Users\Tomáš\Desktop\ccsetup504.exe
2015-04-11 07:58 - 2015-04-11 07:58 - 00001646 _____ () C:\DelFix.txt
2015-04-07 19:18 - 2015-04-07 19:18 - 00013256 _____ () C:\Users\Tomáš\Documents\kuchyn, hlava.veg
2015-04-06 20:54 - 2015-04-07 20:13 - 00000000 ____D () C:\Windows\erdnt
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄\AppData\Roaming\Macromedia
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ\AppData\Roaming\Macromedia
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ
2015-04-06 12:15 - 2015-04-06 12:15 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-MILOUS-Windows-7-Home-Premium-(64-bit).dat
2015-04-06 12:15 - 2015-04-06 12:15 - 00000000 ____D () C:\RegBackup
2015-04-06 11:50 - 2015-04-08 20:27 - 00000000 ____D () C:\Program Files\trend micro
2015-04-04 22:49 - 2015-04-04 22:49 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-04-04 22:46 - 2015-04-04 22:47 - 87520056 _____ (AVG Technologies) C:\Users\Tomáš\Downloads\avg_tuht_stf_all_2015_105.exe
2015-04-04 22:13 - 2015-04-04 22:13 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Tomáš\Downloads\sh-remover.exe
2015-04-04 21:09 - 2015-04-04 21:11 - 155159296 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\msert.exe
2015-04-04 21:03 - 2015-04-04 21:04 - 41840320 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\Windows-KB890830-x64-V5.22.exe
2015-04-04 20:59 - 2015-04-04 21:00 - 00000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-04-04 20:59 - 2015-04-04 20:59 - 07783472 _____ () C:\Users\Tomáš\Downloads\Infigo_setup.exe
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 18:20 - 2015-04-06 11:01 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-04-04 17:47 - 2015-04-04 17:47 - 21578888 _____ (SUPERAntiSpyware) C:\Users\Tomáš\Downloads\SUPERAntiSpyware.exe
2015-04-04 17:42 - 2015-03-13 17:38 - 00622224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-04 17:40 - 2015-03-13 21:41 - 32114888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 24775368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 20466376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 17258024 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13297144 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13210080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10775080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10715864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10262160 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-04 17:40 - 2015-03-13 21:41 - 03611792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 03249352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 02906928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00997856 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00970384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00944784 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00930448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00909512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00878328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00354112 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00306208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00178512 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-04 17:12 - 2015-04-04 17:17 - 00026656 _____ () C:\Windows\system32\bddel.dat
2015-04-04 13:20 - 2015-04-07 19:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-04 12:14 - 2015-04-04 12:14 - 00002806 _____ () C:\Users\Tomáš\Downloads\software_removal_tool.log
2015-04-01 19:04 - 2015-04-06 13:16 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-01 16:34 - 2015-04-01 16:34 - 00000000 ____D () C:\Users\Tomáš\Tracing
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-03-25 14:37 - 2015-03-11 06:06 - 00943616 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-03-25 14:37 - 2015-03-11 06:06 - 00760832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-03-25 14:37 - 2015-03-11 06:06 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-03-25 14:37 - 2015-03-11 06:06 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-03-25 14:37 - 2015-03-11 06:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-03-25 14:37 - 2015-03-11 06:05 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-03-25 14:37 - 2015-03-11 06:05 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-03-25 14:37 - 2015-03-11 06:02 - 01107456 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-03-23 15:21 - 2015-03-23 15:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\HomeMakeover3PC
2015-03-21 21:35 - 2015-03-21 21:35 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\MAGIX
2015-03-21 17:17 - 2003-04-18 17:29 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2015-03-21 17:11 - 2015-03-21 17:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Logitech
2015-03-21 17:07 - 2015-03-21 17:07 - 03581480 _____ (MAGIX AG) C:\Users\Tomáš\Downloads\photo_manager_9_int.exe
2015-03-15 17:58 - 2015-03-15 17:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\ZOG

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-14 18:16 - 2012-02-09 06:26 - 01789020 _____ () C:\Windows\WindowsUpdate.log
2015-04-14 18:13 - 2014-09-29 12:16 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{83A7A283-55C2-4354-9C5A-3085613F5987}
2015-04-14 08:02 - 2013-11-02 18:40 - 00004966 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for MILOUS-Tomáš Milouš
2015-04-14 07:57 - 2012-02-07 21:37 - 10247158 _____ () C:\Windows\system32\perfh005.dat
2015-04-14 07:57 - 2012-02-07 21:37 - 03409362 _____ () C:\Windows\system32\perfc005.dat
2015-04-14 07:57 - 2009-07-14 07:13 - 00006544 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-14 07:57 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-14 07:57 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-14 07:51 - 2012-03-30 19:22 - 00000000 ____D () C:\ProgramData\clear.fi
2015-04-14 07:50 - 2012-02-09 06:28 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-14 07:50 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-13 19:05 - 2014-12-22 18:04 - 00000000 ____D () C:\Users\Tomáš\Documents\hovno
2015-04-13 19:04 - 2014-10-11 19:32 - 00070656 ___SH () C:\Users\Tomáš\Documents\Thumbs.db
2015-04-13 07:54 - 2014-03-19 21:13 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\LogMeIn Hamachi
2015-04-12 22:01 - 2012-04-03 00:36 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2015-04-11 08:10 - 2012-11-26 20:07 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Pro
2015-04-11 08:10 - 2012-08-18 18:32 - 00000000 ____D () C:\Windows\Minidump
2015-04-11 08:10 - 2012-08-12 13:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\TeamViewer
2015-04-11 08:10 - 2012-05-14 20:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Skype
2015-04-11 08:10 - 2007-07-12 03:49 - 00000000 ____D () C:\Windows\Panther
2015-04-08 19:18 - 2014-06-13 15:26 - 00000000 ____D () C:\Users\Tomáš\Desktop\skladiště
2015-04-07 20:15 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2015-04-07 20:13 - 2009-07-14 04:34 - 21757952 _____ () C:\Windows\system32\config\SYSTEM.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 105644032 _____ () C:\Windows\system32\config\SOFTWARE.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00524288 _____ () C:\Windows\system32\config\DEFAULT.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2015-04-07 19:51 - 2012-03-30 20:23 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Google
2015-04-07 19:51 - 2012-03-30 20:23 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-07 19:44 - 2014-05-05 15:49 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Battle.net
2015-04-07 19:42 - 2014-05-22 14:54 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2015-04-07 19:39 - 2014-12-03 18:50 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-07 19:12 - 2012-11-10 11:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\vlc
2015-04-06 21:53 - 2012-09-10 08:56 - 00002428 ____N () C:\Users\Public\Desktop\WildTangent Games App - wildgames.lnk
2015-04-06 21:53 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-06 21:08 - 2013-03-13 18:10 - 00000000 ____D () C:\Users\Tomáš
2015-04-06 18:05 - 2009-03-12 11:30 - 00000000 ____D () C:\Windows\LP
2015-04-06 17:14 - 2012-03-30 19:34 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Adobe
2015-04-06 12:37 - 2011-07-11 06:08 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-04 23:42 - 2012-05-14 20:43 - 00010521 _____ () C:\Windows\system32\lvcoinst.log
2015-04-04 23:30 - 2012-12-12 13:17 - 00003694 _____ () C:\Windows\System32\Tasks\Program k provádění aktualizací online Adobe
2015-04-04 23:19 - 2014-01-06 19:04 - 00000000 ____D () C:\Users\Tomáš\.thumbnails
2015-04-04 23:19 - 2013-01-07 16:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Sony
2015-04-04 23:19 - 2012-12-24 20:01 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-04 23:19 - 2012-04-21 10:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Microsoft Help
2015-04-04 23:19 - 2012-02-09 06:53 - 00000000 ____D () C:\ProgramData\Temp
2015-04-04 22:50 - 2014-05-09 10:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\AVG
2015-04-04 22:50 - 2012-05-31 18:24 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\AVG
2015-04-04 22:48 - 2014-05-09 10:07 - 00000000 ____D () C:\ProgramData\AVG
2015-04-04 19:19 - 2013-01-07 16:14 - 00000000 ____D () C:\ProgramData\Sony Corporation
2015-04-04 19:19 - 2012-12-11 21:06 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-04-04 19:19 - 2012-05-05 23:24 - 00000000 ____D () C:\Program Files (x86)\PatchBeam
2015-04-04 19:17 - 2014-12-07 12:02 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Seznam.cz
2015-04-04 18:30 - 2012-03-30 18:59 - 00000000 ____D () C:\Users\Tomáš
2015-04-04 18:20 - 2012-11-09 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-04-04 18:19 - 2011-07-11 06:08 - 00000000 ____D () C:\ProgramData\Adobe
2015-04-04 18:17 - 2012-03-30 19:47 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Adobe
2015-04-04 17:43 - 2014-11-22 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-04 17:43 - 2012-04-08 13:48 - 00000000 ____D () C:\Temp
2015-04-04 17:41 - 2012-02-09 06:27 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-04 17:28 - 2012-06-27 13:57 - 00000000 ____D () C:\ProgramData\MAGIX
2015-04-04 12:14 - 2015-02-18 15:52 - 00000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2015-04-02 19:01 - 2014-10-15 19:33 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-04-01 16:34 - 2011-07-11 05:41 - 00000000 ____D () C:\ProgramData\Skype
2015-03-31 19:51 - 2015-02-18 15:13 - 00000890 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-03-30 15:25 - 2014-03-19 21:13 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-03-26 16:45 - 2014-12-10 16:29 - 00000000 ____D () C:\Windows\system32\appraiser
2015-03-26 16:45 - 2014-05-06 17:38 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-03-23 15:24 - 2014-12-26 19:55 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MysteryTag
2015-03-22 19:48 - 2012-04-02 23:01 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-22 19:48 - 2012-04-02 23:01 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-22 19:48 - 2011-07-11 06:09 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-21 18:20 - 2013-12-31 12:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\XBMC
2015-03-21 17:18 - 2012-06-27 13:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MAGIX
2015-03-21 15:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-03-20 20:25 - 2009-07-14 07:08 - 00032576 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-18 18:33 - 2012-06-25 13:59 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Audacity
2015-03-17 19:20 - 2013-11-02 18:31 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-03-15 21:20 - 2015-02-19 18:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\WhenInRome_Realore_WildTanget
2015-03-15 16:58 - 2013-07-22 20:38 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\ShamanGS
2015-03-15 11:13 - 2015-02-15 16:45 - 00000000 ____D () C:\Windows\pss

==================== Files in the root of some directories =======

2012-03-27 10:26 - 2012-03-27 10:26 - 0000120 _____ () C:\Users\Tomáš\AppData\Roaming\1cfbf17e.dat
2015-02-18 15:52 - 2015-04-04 12:14 - 0000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\CFBEDSDX
2012-06-01 21:13 - 2012-04-09 11:38 - 3995886 _____ () C:\Users\Tomáš\AppData\Roaming\minecraft.jar
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\MXPUWBDF
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\SM
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\WGPYQE
2014-01-07 19:31 - 2014-01-07 19:31 - 0003383 _____ () C:\Users\Tomáš\AppData\Local\recently-used.xbel
2012-02-09 06:53 - 2012-08-04 20:11 - 0002528 _____ () C:\ProgramData\ArcadeDeluxe5.log
2015-04-04 20:59 - 2015-04-04 21:00 - 0000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-14 08:08




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Acer) (Fixed) (Total:222.45 GB) (Free:52.74 GB) NTFS
Drive d: (DATA) (Fixed) (Total:223.21 GB) (Free:213.14 GB) NTFS

Available physical RAM: 2585.42 MB
Total physical RAM: 4076.26 MB
Percentage of memory in use: 36%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C0205118)
Partition 1: (Not Active) - (Size=20 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=222.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=223.2 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================


==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Tom��\Desktop" je 3922 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcadeMovieService
"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hotkey Utility
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tom��^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tom��^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Banished.lnk
C:\PROGRA~3\{E03AD~1\Banished.exe --startup=1 [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[Márty84]

Az na tu velikost plochy to vypada v poradku. Mimochodem, zajimavy nazev adresare v dokumentech

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Jak je na tom tedy pocitac?

[simplyfine]

Zdravím,

pc po "léčbě" a po novém nainstalování zbylých prohlížečů - mozilla, chrome šlape o dost rychleji ve všech krocích - zapnutí a naběhnutí, spouštění prohlížečů, spouštění aplikací. Je to dost nesrovnatelné.
EDIT: Tak s teď jsem zkusila si něco najít v nově nainstalovaný mozille a hezky mi tam OPĚT naskákaly AD OPTIONS, fakt už na ...........

[Márty84]

Jela ta mozilla aspon chvili bez tech hlasek? Nebo to zas naskakalo hned pri prvnim pouziti?

[simplyfine]

první použití po instalaci byla startovní stránka FF - ta byla ok, pak google - ok, pak atlas.cz - v .....
chrome už ani radši nechci otevírat ...

[Márty84]

Stahnete Revo http://www.stahuj.centrum.cz/utility_a_ ... installer/ a znovu odinstalujte prohlizece.



Stahnete SystemLook http://jpshortstuff.247fixes.com/SystemLook_x64.exe a ulozte ho na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Do okna zkopirujte tento skript

Kód: Vybrat vše

:filefind
*mozilla*
*firefox*
*chrome*

:regfind
mozilla
firefox
chrome

:folderfind
*mozilla*
*firefox*
*chrome*

kliknete na Look a chvili pockejte
Mel by na vas vyskocit log s nazvem Systemlook
Ten mi sem zkopirujte



A k tomu novy log z FRST

[simplyfine]

vkládám systemlook log:

SystemLook 30.07.11 by jpshortstuff
Log created at 21:43 on 17/04/2015 by Tomáš
Administrator - Elevation successful

========== filefind ==========

Searching for "*mozilla*"
C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py --a---- 6321 bytes [11:38 31/12/2013] [11:38 31/12/2013] 433C203BFC093CA1D01713DC07E7CAC7
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.py --a---- 5958 bytes [08:43 08/03/2011] [08:43 08/03/2011] 65E1BE2E3C595F8DFEE2B50C4C7C5E3B
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.pyo --a---- 4533 bytes [19:10 16/10/2014] [19:10 16/10/2014] 45D2238F389253AAB5A9D78DF79E896C
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\AN76PYHK\www.mozilla[1].xml --a---- 557 bytes [18:13 11/04/2015] [18:13 11/04/2015] 9F2914B0C497A6243C3FF2E023EDC8B8
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\V0ESWY5N\www.mozilla[1].xml --a---- 13 bytes [18:13 11/04/2015] [18:13 11/04/2015] C1DDEA3EF6BBEF3E7060A1A9AD89E4C5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\logo-mozillacz-lt[1].png --a---- 1140 bytes [18:13 11/04/2015] [18:13 11/04/2015] EB114F626D5B42C184DCBF99DA8CD6E1
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GLJ1KAAB\affiliates.mozilla.org_cs-600x268[1].png --a---- 175344 bytes [18:13 11/04/2015] [18:13 11/04/2015] 3CF86A74D86D19E8CF31669F2CC08FDC
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\mozilla-communities[1].png --a---- 13474 bytes [18:13 11/04/2015] [18:13 11/04/2015] CA3297976F796C3C7F95E301640A3165
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\mozilla-geolocation-service-narust-sbiranych-dat-600x319[1].png --a---- 69122 bytes [18:13 11/04/2015] [18:13 11/04/2015] 44773A03CB3959C4333C26A62529BE2C
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\mozilla-geolocation-service-pokryti-600x370[1].png --a---- 363331 bytes [18:13 11/04/2015] [18:13 11/04/2015] D3271346B5808C314D36E11195B433E8
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\6P2VFUY7\www.mozilla[1].xml --a---- 13 bytes [17:30 16/04/2015] [17:30 16/04/2015] C1DDEA3EF6BBEF3E7060A1A9AD89E4C5
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\8QEJU62P\www.mozilla[1].xml --a---- 558 bytes [17:31 16/04/2015] [17:31 16/04/2015] 3CFDDC622D5A8218AB69962DC0E4A122
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py --a---- 6321 bytes [10:32 31/12/2013] [10:32 31/12/2013] 433C203BFC093CA1D01713DC07E7CAC7
C:\Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\Browsers\mozilla.browser --a---- 13262 bytes [02:36 14/07/2009] [21:22 10/06/2009] 9FFA08AA85D403D9CC98CAC2956069AE
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\Browsers\mozilla.browser --a---- 13262 bytes [02:36 14/07/2009] [20:39 10/06/2009] 9FFA08AA85D403D9CC98CAC2956069AE
C:\Windows\winsxs\amd64_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_fdde508273949e1f\mozilla.browser --a---- 13262 bytes [20:37 13/07/2009] [20:39 10/06/2009] 9FFA08AA85D403D9CC98CAC2956069AE
C:\Windows\winsxs\x86_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_458b87598810c725\mozilla.browser --a---- 13262 bytes [20:46 13/07/2009] [21:22 10/06/2009] 9FFA08AA85D403D9CC98CAC2956069AE

Searching for "*firefox*"
C:\Program Files (x86)\Mozilla Firefox\firefox\firefox_setup_13.0.exe --a---- 16418544 bytes [11:20 04/04/2015] [06:11 05/06/2012] DE9A20024239803C8F5DF83493DB7F99
C:\Program Files (x86)\Mozilla Firefox\Plugins\WMP Firefox Plugin License.rtf --a---- 149569 bytes [11:20 04/04/2015] [08:43 30/03/2007] 1E9134DE80AA14C41B8745A08C3BBD4E
C:\Program Files (x86)\Mozilla Firefox\Plugins\WMP Firefox Plugin RelNotes.txt --a---- 3352 bytes [11:20 04/04/2015] [08:43 30/03/2007] BE9C48706472103EB4D2AD1E1B291CD9
C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_firefox3cookiejar.py --a---- 8345 bytes [11:38 31/12/2013] [11:38 31/12/2013] 61C405586ACA1CFD7311AF910266E4D9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\firefox-epic-64-bit-600x397[1].png --a---- 319758 bytes [18:13 11/04/2015] [18:13 11/04/2015] 8C3CC80C3A4F69F12C79B11654041EC2
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\firefox-small[1].png --a---- 6841 bytes [18:13 11/04/2015] [18:13 11/04/2015] F34256CA7E3152FB444110BFD376EDDC
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\header-firefox.98d0a02c957f[1].png --a---- 12696 bytes [18:13 11/04/2015] [18:13 11/04/2015] 98D0A02C957F4BD5353563054CCE1A89
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DFVEMNQB\firefox-os-150[1].jpg --a---- 6271 bytes [18:13 11/04/2015] [18:13 11/04/2015] 7A0205718EEC881E8BA312F449C6274B
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GLJ1KAAB\firefox-64[1].png --a---- 8972 bytes [18:13 11/04/2015] [18:13 11/04/2015] DD1A876E8962B16CAA1CC901E247A5B8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GLJ1KAAB\firefox-pro-android-sber-600x338[1].png --a---- 83707 bytes [18:13 11/04/2015] [18:13 11/04/2015] 5BACD759A4ED8C19451FDFADE60D1AA5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\firefox-logo.d3cb43a0a16f[1].png --a---- 14403 bytes [18:13 11/04/2015] [18:13 11/04/2015] D3CB43A0A16F39CA8C939104EFBF934A
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\firefox_new-bundle.4a24494b8107[1].js --a---- 121119 bytes [18:13 11/04/2015] [18:13 11/04/2015] 4A24494B810715B39E1001A31E5DB17A
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\firefox_new-bundle.8b61dd8a39d8[1].css --a---- 82139 bytes [18:13 11/04/2015] [18:13 11/04/2015] 5EB6E22D03F5398E5DDD3C58251FA220
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BQ642UOJ\screen_firefox[1].jpg --a---- 29052 bytes [19:36 17/04/2015] [19:36 17/04/2015] E4E8AE15CDE5836B12CCDE5B2D48E1A4
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BWJ10ROR\firefox_new-bundle.4a24494b8107[1].js --a---- 121119 bytes [17:30 16/04/2015] [17:30 16/04/2015] 4A24494B810715B39E1001A31E5DB17A
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QU3ASUJ4\firefox_new-bundle.8b61dd8a39d8[1].css --a---- 82139 bytes [17:30 16/04/2015] [17:30 16/04/2015] 5EB6E22D03F5398E5DDD3C58251FA220
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_firefox3cookiejar.py --a---- 8345 bytes [10:32 31/12/2013] [10:32 31/12/2013] 61C405586ACA1CFD7311AF910266E4D9
C:\Users\Tomáš\Downloads\Firefox Setup Stub 31.0.exe --a---- 244120 bytes [20:36 02/08/2014] [20:36 02/08/2014] 2D122754D6884B01B54ACCEC9FB9CAAD
C:\Users\Tomáš\Downloads\Firefox Setup Stub 33.0.exe --a---- 244296 bytes [07:22 26/10/2014] [07:22 26/10/2014] E817C34BDDEFE1D1E481102A0EF0AD86
C:\Users\Tomáš\Downloads\Firefox Setup Stub 37.0.1.exe --a---- 243504 bytes [17:31 16/04/2015] [17:31 16/04/2015] 0563F1224D6C4634AA3579A19CD78A43
C:\Users\Tomáš\Downloads\wmpfirefoxplugin(1).exe --a---- 318904 bytes [13:05 24/07/2012] [13:05 24/07/2012] ED324284FA119EF0F240AC9E2262D666
C:\Users\Tomáš\Downloads\wmpfirefoxplugin.exe --a---- 318904 bytes [13:04 24/07/2012] [13:04 24/07/2012] ED324284FA119EF0F240AC9E2262D666
C:\Windows\erdnt\cache86\firefox.exe --a---- 376944 bytes [19:07 06/04/2015] [11:20 04/04/2015] BB69268B5F4277A1CFC36A237E27FD87
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\firefox.browser --a---- 2336 bytes [18:29 18/03/2013] [18:29 18/03/2013] 8E55C3D84FE4E59812B679FCCC8B6061
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\firefox.browser --a---- 2336 bytes [16:24 21/03/2013] [16:24 21/03/2013] 8E55C3D84FE4E59812B679FCCC8B6061

Searching for "*chrome*"
C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\appsharingchromehook64.dll --a---- 23200 bytes [15:38 21/11/2014] [15:21 07/10/2014] 53A6EC577B7310836DAA64C71800B953
C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\42.0.2311.90\42.0.2311.90_chrome64_installer.exe --a---- 47521360 bytes [17:37 16/04/2015] [17:15 14/04/2015] 797200668F87C03C271E440F16E33215
C:\Program Files (x86)\Google\Update\Install\{82C8E3CD-BEA8-4729-B8CC-1FE9401400DC}\40.0.2214.115_40.0.2214.111_chrome_updater.exe --a---- 840272 bytes [18:16 20/02/2015] [15:47 19/02/2015] F4CC03D0A936AD6780ADA614AE81B413
C:\Program Files (x86)\Google\Update\Install\{8AD1FA0B-1641-4D71-8400-9880835598CE}\41.0.2272.118_41.0.2272.101_chrome_updater.exe --a---- 864336 bytes [09:46 04/04/2015] [09:46 04/04/2015] 04A8F29E2CB7A633109E6AF1316F6E97
C:\Program Files (x86)\Google\Update\Install\{93CDC8A9-22E7-41BD-BAEA-70799A21D360}\40.0.2214.111_40.0.2214.94_chrome_updater.exe --a---- 1043024 bytes [11:13 07/02/2015] [16:41 05/02/2015] 1F9A2717F6C6D3440B1F4A59FF96C708
C:\Program Files (x86)\Google\Update\Install\{B3D40ABC-2D84-47B6-A211-D6C357CE3B41}\41.0.2272.101_41.0.2272.89_chrome_updater.exe --a---- 885840 bytes [18:27 20/03/2015] [21:36 19/03/2015] A38E9C48F13C11CAB641A0C91F8F12A1
C:\Program Files (x86)\Google\Update\Install\{D8AB6A2D-CF86-4E98-A5CB-72B99E1FDFD5}\41.0.2272.89_40.0.2214.115_chrome_updater.exe --a---- 10033232 bytes [19:15 11/03/2015] [18:09 10/03/2015] 7DF547F2E361A6ADC8DFAF9544C6A283
C:\Program Files (x86)\Google\Update\Install\{DC4D80E2-188E-42D2-BE1F-F2DA8CB283D4}\42.0.2311.90_chrome64_installer.exe --a---- 47521360 bytes [17:37 16/04/2015] [17:15 14/04/2015] 797200668F87C03C271E440F16E33215
C:\Program Files (x86)\Google\Update\Install\{EB65CF87-4F97-421D-9386-685FD6828259}\41.0.2272.118_chrome_installer.exe --a---- 41460816 bytes [16:29 04/04/2015] [00:01 01/04/2015] DA8AC392E864489F127D64048D12E043
C:\Program Files (x86)\Seznam.cz\distribution\install\cz.seznam.software.chromelisticka-1.4.4-win32.zip --a---- 3134303 bytes [10:02 07/12/2014] [15:14 13/11/2012] 058D130ABA737956149E90A920B019CA
C:\Program Files (x86)\Sony\Media Go\chrome.pak --a---- 2314182 bytes [08:47 29/06/2012] [08:47 29/06/2012] 5E1D2A9C59562290A592E74B3E3DC42A
C:\Program Files (x86)\Sony\Sony PC Companion\Plugins\{3124D88B-D984-410D-B211-FAFAD93F03DF}\XperiaTemplates\bookmarks\chrome.bookmarks.1.json --a---- 759 bytes [10:44 17/12/2012] [10:44 17/12/2012] 930D57D77F2068D655813D3F69875BDD
C:\Program Files (x86)\Sony\Sony PC Companion\Plugins\{3124D88B-D984-410D-B211-FAFAD93F03DF}\XperiaTemplates\bookmarks\chrome.manifest --a---- 2228 bytes [09:30 07/02/2013] [09:30 07/02/2013] 0BEEAF444851A3AB6897488260947A5E
C:\Program Files (x86)\Steam\bin\chromehtml.dll --a---- 682176 bytes [18:02 24/12/2012] [19:22 21/10/2014] 09E410186FE0F53FB03C6672DFEBC570
C:\Program Files (x86)\Steam\resource\layout\gamespage_grid_chrome.layout --a---- 2841 bytes [18:02 24/12/2012] [22:34 13/08/2014] 31F82813F089BCB12AF17A77D4CD0CD1
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\lib\ClientLibChrome.dat --a---- 1528 bytes [12:59 08/04/2014] [12:59 08/04/2014] 7EC17C498771D87E71AD08B29D3C4480
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\mod_chrome.dat --a---- 15799 bytes [12:59 08/04/2014] [12:59 08/04/2014] E2FADFC9855B4CEAA97BBD068A97480E
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-de_DE.swf --a---- 19893 bytes [12:59 08/04/2014] [12:59 08/04/2014] FAD7880E570AA2A33FA68BE04D8ABC87
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-el_GR.swf --a---- 19761 bytes [12:59 08/04/2014] [12:59 08/04/2014] 41B9AF3CE65042B73EDB30E6D0B66D32
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-en_AU.swf --a---- 19766 bytes [12:59 08/04/2014] [12:59 08/04/2014] 7026C9D2466109627247A48D7E2C9EE6
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-en_GB.swf --a---- 19473 bytes [12:59 08/04/2014] [12:59 08/04/2014] 748C516DCF8FDC9669C913FD46658074
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-en_US.swf --a---- 19762 bytes [12:59 08/04/2014] [12:59 08/04/2014] 93A7C163E91E1A14B0574EB0D63A6B73
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-es_ES.swf --a---- 19866 bytes [12:59 08/04/2014] [12:59 08/04/2014] 66F854601128D08DA1EC6D35D039CE05
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-fr_FR.swf --a---- 19878 bytes [12:59 08/04/2014] [12:59 08/04/2014] 94FFAB0799916C7A954EEBFEA041DBDD
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-it_IT.swf --a---- 19763 bytes [12:59 08/04/2014] [12:59 08/04/2014] 693BD9711434AE0556B3CA84B2123568
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-ko_KR.swf --a---- 19763 bytes [12:59 08/04/2014] [12:59 08/04/2014] 6536FA8386BFA81F2951C3620D54474D
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-pl_PL.swf --a---- 19466 bytes [12:59 08/04/2014] [12:59 08/04/2014] 4D422F201D075CF2B3796E9E3B6E8AD2
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-pt_BR.swf --a---- 19764 bytes [12:59 08/04/2014] [12:59 08/04/2014] 267A6F5CCAA5FF1C14A26EFD3BE03F6F
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-ro_RO.swf --a---- 19763 bytes [12:59 08/04/2014] [12:59 08/04/2014] 70B3AD040A9C00CAA0CFE898341FFDA9
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-ru_RU.swf --a---- 19760 bytes [12:59 08/04/2014] [12:59 08/04/2014] FE3EACACFFE85E523EF7B9224914A393
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-tr_TR.swf --a---- 19473 bytes [12:59 08/04/2014] [12:59 08/04/2014] 60ACE76A5BEA4E4081B73A3062E59C7A
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\themes\parchment\chromeAssets.swf --a---- 710724 bytes [15:10 20/03/2014] [15:10 20/03/2014] 98CBB61155BF5BBBC99A157D3C0D34F6
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\chrome-32[1].png --a---- 1310 bytes [17:35 16/04/2015] [17:35 16/04/2015] 89CD2ED868EB8ACB6D0A335F4489C7E6
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\chromeuninstall3[1].htm --a---- 195822 bytes [19:38 17/04/2015] [19:38 17/04/2015] 36504DD9393E84F2F76BF2CFA3872362
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GLJ1KAAB\chrome-48[1].png --a---- 1834 bytes [18:10 11/04/2015] [18:10 11/04/2015] 3FE84B8B53D7401B32FABD0C70F211BB
C:\Users\Tomáš\AppData\Local\Temp\chrome_installer.log --a---- 29650 bytes [17:37 16/04/2015] [19:38 17/04/2015] E5F8D2D8F54F1B4683878697EA52342A
C:\Users\Tomáš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk --a---- 2182 bytes [13:48 21/12/2014] [16:07 15/12/2014] 16991F32728674D18F8C50BD436419D4
C:\Users\Tomáš\Desktop\skladiště\chromeinstall-7u67.exe --a---- 918440 bytes [13:45 01/09/2014] [13:45 01/09/2014] 9473F655CAE1A13C311C3FF1134D79DC
C:\Users\Tomáš\Downloads\ChromeSetup.exe --a---- 739848 bytes [18:23 30/03/2012] [19:31 30/03/2012] 826FA204FAE60E6D53E113F46B722336
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\chrome.browser --a---- 2107 bytes [18:29 18/03/2013] [18:29 18/03/2013] 8C54E6C4F9E0CC3274EA6D04AAE9436B
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\chrome.browser --a---- 2107 bytes [16:24 21/03/2013] [16:24 21/03/2013] 8C54E6C4F9E0CC3274EA6D04AAE9436B
C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf --a---- 410496 bytes [21:29 09/02/2015] [19:38 17/04/2015] B6639E9D5AB34DD498C2F59B7EB13164

========== regfind ==========

Searching for "mozilla"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\DOMStorage\mozilla.cz]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\DOMStorage\mozilla.org]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\DOMStorage\www.mozilla.org]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10"="Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Trident/6.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE8"="Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE7"="Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE6"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10-WP8"="Mozilla/5.0 (compatible; MSIE 10.0; Windows Phone 8.0; Trident/6.0; IEMobile/10.0; ARM; Touch)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-WP7"="Mozilla/5.0 (compatible; MSIE 9.0; Windows Phone OS 7.5; Trident/5.0; IEMobile/9.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-Xbox"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; Xbox)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IPad"="Mozilla/5.0 (iPad; CPU OS 5_0 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9A334 Safari/7534.48.3"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"BingBot"="Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\8b77259e_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\dcdb670a_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\plugin-container.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mozilla.cz]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mozilla.org]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.mozilla.org]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs]
"url24"="http://www.mozilla.cz/"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_CURRENT_USER\Software\Mozilla]
[HKEY_CURRENT_USER\Software\MozillaPlugins]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\4EA42A62D9304AC4784BF230120776FF]
"MOZILLASUB"="both"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SOFTWARE\RealNetworks\Update\6.0\Preferences\CfgWebBrowser1]
@="C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10"="Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Trident/6.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE8"="Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE7"="Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE6"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10-WP8"="Mozilla/5.0 (compatible; MSIE 10.0; Windows Phone 8.0; Trident/6.0; IEMobile/10.0; ARM; Touch)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-WP7"="Mozilla/5.0 (compatible; MSIE 9.0; Windows Phone OS 7.5; Trident/5.0; IEMobile/9.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-Xbox"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; Xbox)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IPad"="Mozilla/5.0 (iPad; CPU OS 5_0 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9A334 Safari/7534.48.3"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"BingBot"="Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\MozillaPlugins]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\Mozilla Firefox\Plugins\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E239E79D0F3E43448AC9DC382C0BD62]
"68AB67CA7DA79201B744BA0000000010"="02:\Software\MozillaPlugins\Adobe Reader\Path"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4EA42A62D9304AC4784BF230120776FF\Features]
"MOZILLASUB"="both"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3337465978-2193547489-3213491474-1001\Components\623431047B6C08F4F8DCBDEEB40F8C32]
"6BBFDF96D153C8B4988D68D79C0D2A4A"="C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Search\Gathering Manager]
"UserAgent"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla]
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Runtime Environment\1.7.0_67\MSI]
"MOZILLA"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows Search\Gathering Manager]
"UserAgent"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Mozilla]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\mozilla.org]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\mozilla.org\Mozilla]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"="NVIDIA stereo images plugin for Mozilla browsers"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"="NVIDIA 3D Vision Streaming plugin for Mozilla browsers"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming\MimeTypes\application/mozilla-3DV-streaming-plugin]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming\MimeTypes\application/mozilla-3DV-streaming-plugin]
"Description"="3D Vision Streaming Mozilla Plugin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MyHeritage.com\Family Tree Builder\Search\C:\Users\Tomáš\AppData\Roaming\Mozilla]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\DOMStorage\mozilla.cz]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\DOMStorage\mozilla.org]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\DOMStorage\www.mozilla.org]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10"="Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Trident/6.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE8"="Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE7"="Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE6"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10-WP8"="Mozilla/5.0 (compatible; MSIE 10.0; Windows Phone 8.0; Trident/6.0; IEMobile/10.0; ARM; Touch)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-WP7"="Mozilla/5.0 (compatible; MSIE 9.0; Windows Phone OS 7.5; Trident/5.0; IEMobile/9.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-Xbox"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; Xbox)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IPad"="Mozilla/5.0 (iPad; CPU OS 5_0 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9A334 Safari/7534.48.3"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"BingBot"="Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\8b77259e_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\dcdb670a_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\plugin-container.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mozilla.cz]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mozilla.org]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.mozilla.org]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\TypedURLs]
"url24"="http://www.mozilla.cz/"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Mozilla]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\MozillaPlugins]
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"

Searching for "firefox"
[HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\6BBFDF96D153C8B4988D68D79C0D2A4A]
"ProductName"="Windows Media Player Firefox Plugin"
[HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\6BBFDF96D153C8B4988D68D79C0D2A4A\SourceList\Media]
"DiskPrompt"="Windows Media Player Firefox Plugin Installation"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\8b77259e_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\dcdb670a_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\plugin-container.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.avi\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bin\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.csv\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.doc\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.docx\OpenWithList]
"c"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iso\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jar\OpenWithList]
"c"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jnlp\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m3u\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4a\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mobi\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp3\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp4\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpg\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.msi\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.odt\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pdf\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pps\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppt\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pptx\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.prc\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rar\OpenWithList]
"e"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.svg\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.torrent\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.txt\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wav\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wm\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wvx\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xcf\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xls\OpenWithList]
"c"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xlsx\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xltx\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.zip\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Firefox]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Firefox\WWW_OpenURL]
"ProcessName"="firefox.exe"
[HKEY_CURRENT_USER\Software\Mozilla\Firefox]
[HKEY_CURRENT_USER\Software\Classes\.ogg]
"VLC.backup"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Classes\.ogv]
"VLC.backup"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Classes\.webm]
"VLC.backup"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Classes\Firefox URL]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SOFTWARE\RealNetworks\Update\6.0\Preferences\CfgWebBrowser1]
@="C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Classes\TypeLib\{BDEADEF0-C265-11D0-BCED-00A0C90AB50F}\1.0]
@="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"ProductName"="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\firefox.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"D:\Firefox\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\Mozilla Firefox\Plugins\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3337465978-2193547489-3213491474-1001\Components\623431047B6C08F4F8DCBDEEB40F8C32]
"6BBFDF96D153C8B4988D68D79C0D2A4A"="C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3337465978-2193547489-3213491474-1001\Products\6BBFDF96D153C8B4988D68D79C0D2A4A\InstallProperties]
"DisplayName"="Windows Media Player Firefox Plugin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}]
"DisplayName"="Windows Media Player Firefox Plugin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Mozilla\Firefox]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"ProductName"="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"ProductName"="Adobe Reader Plugin for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"="Handles PDFs in-place in Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MyHeritage.com\Family Tree Builder\Search\C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\NVIDIA Corporation\Global\Stereo3D\GameConfigs\firefox]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Installer\Products\6BBFDF96D153C8B4988D68D79C0D2A4A]
"ProductName"="Windows Media Player Firefox Plugin"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Installer\Products\6BBFDF96D153C8B4988D68D79C0D2A4A\SourceList\Media]
"DiskPrompt"="Windows Media Player Firefox Plugin Installation"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\8b77259e_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\dcdb670a_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\plugin-container.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.avi\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bin\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.csv\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.doc\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.docx\OpenWithList]
"c"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iso\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jar\OpenWithList]
"c"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jnlp\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m3u\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4a\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mobi\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp3\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp4\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpg\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.msi\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.odt\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pdf\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pps\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppt\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pptx\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.prc\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rar\OpenWithList]
"e"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.svg\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.torrent\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.txt\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wav\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wm\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wvx\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xcf\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xls\OpenWithList]
"c"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xlsx\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xltx\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.zip\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Firefox]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Firefox\WWW_OpenURL]
"ProcessName"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Mozilla\Firefox]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Classes\.ogg]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Classes\.ogv]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Classes\.webm]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Classes\Firefox URL]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001_Classes\.ogg]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001_Classes\.ogv]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001_Classes\.webm]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001_Classes\Firefox URL]

Searching for "chrome"
[HKEY_CURRENT_USER\Software\Google\Chrome]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.docx\OpenWithList]
"g"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\OpenWithList]
"f"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\OpenWithList]
"d"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\OpenWithList]
"j"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\OpenWithList]
"d"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList]
"f"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webp\OpenWithList]
"a"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\OpenWithList]
"c"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
[HKEY_CURRENT_USER\Software\TeamViewer\Version7]
"Buddy_QuickPresExclusions"="chrome.exe devenv.exe mediamonkey.exe msnmsgr.exe opera.exe psr.exe super.exe wlmail.exe wlxphotogallery.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\0634B38E802C52345940D03200A3475A]
"AppSharingChromeHook.x64.dll"="Vz`gY,3K,?HcCDN2wW9tLync32With64Bits>PeTyMX]`S?Wyr3x}&a`E"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SOFTWARE\RealNetworks\Update\6.0\Preferences\CfgWebBrowser3]
@="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{E83B4360-C208-4325-9504-0D23003A74A5},AppSharingChromeHook.x86.dll"="yh1BV3!!!!!!!!!MKKSkGimme_OnDemandData<LyncCoreFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\chrome.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\585C116796FF8294289A166F2CA944C5]
"99E80CA9B0328e74791254777B1F42AE"="C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\AppSharingChromeHook64.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A209A01C0E64CA44F9928F7B89FA3CAE]
"4433C6A79FC538B459C956675C2BD790"="C:\Program Files (x86)\Sony\Media Go\chrome.pak"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\No Chrome Offer Until]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update]
"LastInstallerSuccessLaunchCmdLine"=""C:\Program Files (x86)\Google\Chrome\Application\chrome.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{4DC8B4CA-1BDA-483e-B5FA-D3C12E15B62D}]
"UninstallString"="C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\Installer\setup.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{4DC8B4CA-1BDA-483e-B5FA-D3C12E15B62D}]
"InstallerSuccessLaunchCmdLine"=""C:\Program Files (x86)\Google\Chrome\Application\chrome.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{8A69D345-D564-463C-AFF1-A69D9E530F96}]
"ap"="x64-stable-multi-chrome"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{8A69D345-D564-463C-AFF1-A69D9E530F96}]
"UninstallString"="C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\Installer\setup.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{8A69D345-D564-463C-AFF1-A69D9E530F96}]
"UninstallArguments"=" --uninstall --multi-install --chrome --system-level --verbose-logging"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{8A69D345-D564-463C-AFF1-A69D9E530F96}]
"LastInstallerSuccessLaunchCmdLine"=""C:\Program Files (x86)\Google\Chrome\Application\chrome.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Update\Policy]
"Method"="jchrome"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\NVIDIA Corporation\Global\Stereo3D\GameConfigs\Chrome]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Google\Chrome]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.docx\OpenWithList]
"g"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\OpenWithList]
"f"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\OpenWithList]
"d"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\OpenWithList]
"j"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\OpenWithList]
"d"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList]
"f"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webp\OpenWithList]
"a"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\OpenWithList]
"c"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\TeamViewer\Version7]
"Buddy_QuickPresExclusions"="chrome.exe devenv.exe mediamonkey.exe msnmsgr.exe opera.exe psr.exe super.exe wlmail.exe wlxphotogallery.exe"

========== folderfind ==========

Searching for "*mozilla*"
C:\Program Files (x86)\Mozilla Firefox d------ [11:20 04/04/2015]
C:\ProgramData\Mozilla d------ [12:18 27/04/2012]
C:\Users\All Users\Mozilla d------ [12:18 27/04/2012]
C:\Users\Tomáš\AppData\Local\Mozilla d------ [20:41 02/04/2012]
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox d------ [20:40 02/04/2012]
C:\Users\Tomáš\AppData\Roaming\Mozilla d------ [20:41 02/04/2012]

Searching for "*firefox*"
C:\Program Files (x86)\Mozilla Firefox d------ [11:20 04/04/2015]
C:\Program Files (x86)\Mozilla Firefox\firefox d------ [11:20 04/04/2015]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0da31e97 d----c- [12:16 09/05/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0f54ec22 d----c- [12:12 07/05/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_16299fb8 d----c- [08:53 08/05/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_04b56586 d----c- [07:14 02/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_147bf88c d----c- [17:29 01/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_18361110 d----c- [19:31 17/06/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_858f57d3323d3d5c74f32279dce7191dfee16ffa_1681a92a d----c- [08:53 08/05/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_a55b1497f5d434663bf97e4ee6f393312a1fda_1b4062d9 d----c- [17:00 20/05/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0a50befe d----c- [09:32 12/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0d8fb30d d----c- [12:24 08/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0de09a22 d----c- [13:56 09/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_105cdfc5 d----c- [10:31 09/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_cba6769b1441f5b6130dfa8a193e88860731d_10342737 d----c- [16:58 09/03/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_2879ebe5e4a310354786f85dcabe2a4260be64_25c0cd70 d----c- [18:02 23/07/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_42c23a2f9c48b2fbec86235fc0bc21e77de64ed_1bd24184 d----c- [13:14 26/06/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_9230f378d6ec39c6c256ce94ec4b5c2555be3_1725b81e d----c- [16:52 29/03/2015]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a0f640acd52ecc0958971a06470cf6542ad547_25d7a5e0 d----c- [13:12 27/12/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a915a85ed056f2cfc7eb6685ed183f759fa2169b_05f82cf9 d----c- [15:25 15/02/2015]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_6051f6a636433a9aecac8f6d98747309c9245a7_0db057b1 d----c- [14:25 13/05/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_78a1a4daec8b226a3e8764754f962edbf34e22b6_132af4d9 d----c- [18:43 17/12/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_cbe14a77df171a6c32ecb82b14f4e91fb71fc8cb_2044674e d----c- [17:31 23/07/2012]
C:\Users\Tomáš\AppData\Local\Mozilla\Firefox d------ [20:41 02/04/2012]
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox d------ [20:40 02/04/2012]
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox d------ [20:41 02/04/2012]
C:\Users\Tomáš\Downloads\firefox d------ [20:09 07/09/2014]

Searching for "*chrome*"
C:\Program Files (x86)\Steam\bin\chrome.pak d------ [16:47 28/11/2013]
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome d------ [15:05 20/03/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3354fe9ef4d8742c8f3dc0b22c71add84c2cb_1aad7c32 d----c- [11:41 07/12/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3cb062db44d529eead442a12e848387889aab17_26254a6a d----c- [12:42 07/12/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3ef871bba67faba7298133d8886532ec4437907_252f8b13 d----c- [13:41 07/12/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_643837f748546db2725169f310fcb744c9d7db28_1eef3ed5 d----c- [16:36 08/01/2015]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_8adeaf71264b688caf3fc380b8d6976a7ebbeac_1827287d d----c- [20:46 20/09/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_ccc4ee239434e6fb3b1283e80d36878cbc1c7d_1be183b8 d----c- [19:09 27/09/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_e71011a1ef49c88fdbd44e4f53dc37d8f2c5f04b_18f79342 d----c- [19:11 27/09/2014]
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\storage\permanent\chrome d------ [08:45 03/07/2013]

-= EOF =-


FRST log je v další zprávě.

[simplyfine]

a FRST log:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-04-2015 04
Ran by Tomáš (administrator) on MILOUS on 17-04-2015 22:07:15
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available profiles: Tomáš)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLMSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
BootExecute: autocheck autochk * bddel.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3337465978-2193547489-3213491474-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-22] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-05-26] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-22] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2012-08-02] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll [2013-09-29] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3337465978-2193547489-3213491474-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-16] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml [2015-04-04]
FF Extension: Send to XBMC - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi [2013-05-05]
FF Extension: Google Translator for Firefox - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi [2012-05-05]
FF Extension: ImTranslator - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-05-05]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-03-25] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\my.cfg [2015-03-25] <==== ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-02-10] (Microsoft Corporation)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [255040 2014-09-07] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-15] (Electronic Arts)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 PcaSp60; C:\Windows\SysWOW64\DRIVERS\PcaSp60.sys [38912 2010-09-07] (Printing Communications Assoc., Inc. (PCAUSA))
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 zghsser; C:\Windows\System32\DRIVERS\zghsser.sys [134976 2013-09-11] (ZTE Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz134; \??\C:\Users\TOM~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-17 22:07 - 2015-04-17 22:07 - 00016987 _____ () C:\Users\Tomáš\Desktop\FRST.txt
2015-04-17 22:05 - 2015-04-17 22:07 - 00000000 ____D () C:\FRST
2015-04-17 22:04 - 2015-04-17 22:04 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe
2015-04-17 22:03 - 2015-04-17 22:03 - 02097664 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2015-04-17 21:43 - 2015-04-17 21:51 - 00128030 _____ () C:\Users\Tomáš\Desktop\SystemLook.txt
2015-04-17 21:42 - 2015-04-17 21:42 - 00165376 _____ () C:\Users\Tomáš\Desktop\SystemLook_x64.exe
2015-04-17 21:36 - 2015-04-17 21:36 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Tomáš\Desktop\revosetup.exe
2015-04-16 19:31 - 2015-04-16 19:31 - 00243504 _____ () C:\Users\Tomáš\Downloads\Firefox Setup Stub 37.0.1.exe
2015-04-16 19:27 - 2015-04-16 19:27 - 00000565 _____ () C:\Users\Tomáš\Desktop\DelFix.txt
2015-04-16 19:25 - 2015-04-16 19:25 - 00781312 _____ () C:\Users\Tomáš\Desktop\delfix_10.9.exe
2015-04-15 18:30 - 2015-03-25 05:24 - 03298816 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 02553856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 18:30 - 2015-03-25 05:23 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 18:30 - 2015-03-25 05:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 18:30 - 2015-03-25 05:23 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-15 18:30 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-15 18:30 - 2015-03-23 05:25 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 18:30 - 2015-03-23 05:25 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 18:30 - 2015-03-23 05:17 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 18:30 - 2015-03-17 07:22 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 18:30 - 2015-03-17 07:22 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 18:30 - 2015-03-17 07:22 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 18:30 - 2015-03-17 07:19 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 18:30 - 2015-03-17 07:16 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 18:30 - 2015-03-17 07:16 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-04-15 18:30 - 2015-03-17 07:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-15 18:30 - 2015-03-17 07:15 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 18:30 - 2015-03-17 07:15 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 18:30 - 2015-03-17 07:13 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 18:30 - 2015-03-17 07:13 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-04-15 18:30 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-04-15 18:30 - 2015-03-17 06:59 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-04-15 18:30 - 2015-03-17 06:56 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-15 18:30 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-15 18:30 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-15 18:30 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-15 18:30 - 2015-03-17 05:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-15 18:30 - 2015-03-17 05:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-15 18:30 - 2015-03-10 05:25 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 18:30 - 2015-03-10 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 18:30 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-15 18:30 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-15 18:30 - 2015-03-05 07:12 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 18:30 - 2015-03-05 06:05 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-15 18:29 - 2015-04-02 02:17 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 18:29 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-15 18:29 - 2015-03-13 06:32 - 24980480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 18:29 - 2015-03-13 06:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 18:29 - 2015-03-13 06:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-15 18:29 - 2015-03-13 06:09 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 18:29 - 2015-03-13 06:08 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 18:29 - 2015-03-13 06:08 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 18:29 - 2015-03-13 06:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-15 18:29 - 2015-03-13 06:07 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 18:29 - 2015-03-13 06:06 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-15 18:29 - 2015-03-13 06:00 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 18:29 - 2015-03-13 05:59 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 18:29 - 2015-03-13 05:55 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 18:29 - 2015-03-13 05:54 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 18:29 - 2015-03-13 05:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-15 18:29 - 2015-03-13 05:53 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-15 18:29 - 2015-03-13 05:50 - 06025216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 18:29 - 2015-03-13 05:44 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-15 18:29 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 18:29 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-15 18:29 - 2015-03-13 05:40 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 18:29 - 2015-03-13 05:32 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-15 18:29 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 18:29 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-15 18:29 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-15 18:29 - 2015-03-13 05:27 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 18:29 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-04-15 18:29 - 2015-03-13 05:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 18:29 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-04-15 18:29 - 2015-03-13 05:23 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 18:29 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 18:29 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-15 18:29 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-15 18:29 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-04-15 18:29 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-04-15 18:29 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-04-15 18:29 - 2015-03-13 05:08 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 18:29 - 2015-03-13 05:07 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 18:29 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-15 18:29 - 2015-03-13 05:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 18:29 - 2015-03-13 05:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-15 18:29 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-04-15 18:29 - 2015-03-13 05:00 - 14397440 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 18:29 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-15 18:29 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-15 18:29 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-15 18:29 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 18:29 - 2015-03-13 04:45 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 18:29 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 18:29 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-15 18:29 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-04-15 18:29 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 18:29 - 2015-03-13 04:33 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 18:29 - 2015-03-13 04:22 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 18:29 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 18:29 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 18:29 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-15 18:29 - 2015-03-04 06:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 18:29 - 2015-03-04 06:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 18:29 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 18:29 - 2015-02-25 05:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-13 19:05 - 2015-04-13 19:05 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Publish Providers
2015-04-12 20:01 - 2015-04-12 20:01 - 00000000 ____D () C:\Users\Tomáš\Documents\Updater
2015-04-11 22:08 - 2015-04-11 22:45 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-11 22:06 - 2015-04-11 22:06 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe
2015-04-11 21:50 - 2015-04-11 21:34 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-04-11 20:07 - 2015-04-17 21:39 - 00002180 _____ () C:\Windows\PFRO.log
2015-04-11 16:30 - 2015-04-17 21:39 - 00002240 _____ () C:\Windows\setupact.log
2015-04-11 16:30 - 2015-04-11 16:30 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-11 09:56 - 2015-04-11 09:56 - 00001728 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\Program Files\Defraggler
2015-04-11 08:20 - 2015-04-11 08:20 - 00000000 ____D () C:\Users\Tomáš\Desktop\záloha ccleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00002786 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-04-11 08:06 - 2015-04-11 08:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-11 07:58 - 2015-04-16 19:26 - 00000565 _____ () C:\DelFix.txt
2015-04-07 19:18 - 2015-04-07 19:18 - 00013256 _____ () C:\Users\Tomáš\Documents\kuchyn, hlava.veg
2015-04-06 20:54 - 2015-04-07 20:13 - 00000000 ____D () C:\Windows\erdnt
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄\AppData\Roaming\Macromedia
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ\AppData\Roaming\Macromedia
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ
2015-04-06 12:15 - 2015-04-06 12:15 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-MILOUS-Windows-7-Home-Premium-(64-bit).dat
2015-04-06 12:15 - 2015-04-06 12:15 - 00000000 ____D () C:\RegBackup
2015-04-06 11:50 - 2015-04-08 20:27 - 00000000 ____D () C:\Program Files\trend micro
2015-04-04 22:49 - 2015-04-04 22:49 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-04-04 22:13 - 2015-04-04 22:13 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Tomáš\Downloads\sh-remover.exe
2015-04-04 21:09 - 2015-04-04 21:11 - 155159296 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\msert.exe
2015-04-04 21:03 - 2015-04-04 21:04 - 41840320 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\Windows-KB890830-x64-V5.22.exe
2015-04-04 20:59 - 2015-04-04 21:00 - 00000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-04-04 20:59 - 2015-04-04 20:59 - 07783472 _____ () C:\Users\Tomáš\Downloads\Infigo_setup.exe
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 18:20 - 2015-04-06 11:01 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-04-04 17:47 - 2015-04-04 17:47 - 21578888 _____ (SUPERAntiSpyware) C:\Users\Tomáš\Downloads\SUPERAntiSpyware.exe
2015-04-04 17:42 - 2015-03-13 17:38 - 00622224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-04 17:40 - 2015-03-13 21:41 - 32114888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 24775368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 20466376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 17258024 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13297144 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13210080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10775080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10715864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10262160 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-04 17:40 - 2015-03-13 21:41 - 03611792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 03249352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 02906928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00997856 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00970384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00944784 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00930448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00909512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00878328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00354112 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00306208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00178512 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-04 17:12 - 2015-04-04 17:17 - 00026656 _____ () C:\Windows\system32\bddel.dat
2015-04-04 13:20 - 2015-04-17 21:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-04 12:14 - 2015-04-04 12:14 - 00002806 _____ () C:\Users\Tomáš\Downloads\software_removal_tool.log
2015-04-01 19:04 - 2015-04-06 13:16 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-01 16:34 - 2015-04-01 16:34 - 00000000 ____D () C:\Users\Tomáš\Tracing
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-03-23 15:21 - 2015-03-23 15:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\HomeMakeover3PC
2015-03-21 21:35 - 2015-03-21 21:35 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\MAGIX
2015-03-21 17:17 - 2003-04-18 17:29 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2015-03-21 17:11 - 2015-03-21 17:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Logitech
2015-03-21 17:07 - 2015-03-21 17:07 - 03581480 _____ (MAGIX AG) C:\Users\Tomáš\Downloads\photo_manager_9_int.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-17 22:01 - 2013-11-02 18:40 - 00004964 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for MILOUS-Tomáš Milouš
2015-04-17 21:47 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-17 21:47 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-17 21:46 - 2012-02-07 21:37 - 10297270 _____ () C:\Windows\system32\perfh005.dat
2015-04-17 21:46 - 2012-02-07 21:37 - 03426746 _____ () C:\Windows\system32\perfc005.dat
2015-04-17 21:46 - 2009-07-14 07:13 - 00006544 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-17 21:44 - 2012-02-09 06:26 - 01283097 _____ () C:\Windows\WindowsUpdate.log
2015-04-17 21:40 - 2014-03-19 21:13 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\LogMeIn Hamachi
2015-04-17 21:40 - 2012-03-30 19:22 - 00000000 ____D () C:\ProgramData\clear.fi
2015-04-17 21:39 - 2012-02-09 06:28 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-17 21:39 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-17 21:38 - 2012-03-30 20:23 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Google
2015-04-17 21:38 - 2012-03-30 20:23 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-17 09:17 - 2014-09-29 12:16 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{83A7A283-55C2-4354-9C5A-3085613F5987}
2015-04-16 21:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2015-04-16 19:07 - 2014-05-06 17:38 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-16 19:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-04-16 19:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2015-04-16 19:06 - 2014-12-10 16:29 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-16 03:11 - 2013-07-14 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-13 19:05 - 2014-12-22 18:04 - 00000000 ____D () C:\Users\Tomáš\Documents\hovno
2015-04-13 19:04 - 2014-10-11 19:32 - 00070656 ___SH () C:\Users\Tomáš\Documents\Thumbs.db
2015-04-12 22:01 - 2012-04-03 00:36 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2015-04-11 08:10 - 2012-11-26 20:07 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Pro
2015-04-11 08:10 - 2012-08-18 18:32 - 00000000 ____D () C:\Windows\Minidump
2015-04-11 08:10 - 2012-08-12 13:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\TeamViewer
2015-04-11 08:10 - 2012-05-14 20:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Skype
2015-04-11 08:10 - 2007-07-12 03:49 - 00000000 ____D () C:\Windows\Panther
2015-04-08 19:18 - 2014-06-13 15:26 - 00000000 ____D () C:\Users\Tomáš\Desktop\skladiště
2015-04-07 20:15 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2015-04-07 20:13 - 2009-07-14 04:34 - 21757952 _____ () C:\Windows\system32\config\SYSTEM.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 105644032 _____ () C:\Windows\system32\config\SOFTWARE.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00524288 _____ () C:\Windows\system32\config\DEFAULT.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2015-04-07 19:44 - 2014-05-05 15:49 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Battle.net
2015-04-07 19:42 - 2014-05-22 14:54 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2015-04-07 19:39 - 2014-12-03 18:50 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-07 19:12 - 2012-11-10 11:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\vlc
2015-04-06 21:53 - 2012-09-10 08:56 - 00002428 ____N () C:\Users\Public\Desktop\WildTangent Games App - wildgames.lnk
2015-04-06 21:53 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-06 21:08 - 2013-03-13 18:10 - 00000000 ____D () C:\Users\Tomáš
2015-04-06 18:05 - 2009-03-12 11:30 - 00000000 ____D () C:\Windows\LP
2015-04-06 17:14 - 2012-03-30 19:34 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Adobe
2015-04-06 12:37 - 2011-07-11 06:08 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-04 23:42 - 2012-05-14 20:43 - 00010521 _____ () C:\Windows\system32\lvcoinst.log
2015-04-04 23:30 - 2012-12-12 13:17 - 00003694 _____ () C:\Windows\System32\Tasks\Program k provádění aktualizací online Adobe
2015-04-04 23:19 - 2014-01-06 19:04 - 00000000 ____D () C:\Users\Tomáš\.thumbnails
2015-04-04 23:19 - 2013-01-07 16:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Sony
2015-04-04 23:19 - 2012-12-24 20:01 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-04 23:19 - 2012-04-21 10:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Microsoft Help
2015-04-04 23:19 - 2012-02-09 06:53 - 00000000 ____D () C:\ProgramData\Temp
2015-04-04 22:50 - 2014-05-09 10:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\AVG
2015-04-04 22:50 - 2012-05-31 18:24 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\AVG
2015-04-04 22:48 - 2014-05-09 10:07 - 00000000 ____D () C:\ProgramData\AVG
2015-04-04 19:19 - 2013-01-07 16:14 - 00000000 ____D () C:\ProgramData\Sony Corporation
2015-04-04 19:19 - 2012-12-11 21:06 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-04-04 19:19 - 2012-05-05 23:24 - 00000000 ____D () C:\Program Files (x86)\PatchBeam
2015-04-04 19:17 - 2014-12-07 12:02 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Seznam.cz
2015-04-04 18:30 - 2012-03-30 18:59 - 00000000 ____D () C:\Users\Tomáš
2015-04-04 18:20 - 2012-11-09 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-04-04 18:19 - 2011-07-11 06:08 - 00000000 ____D () C:\ProgramData\Adobe
2015-04-04 18:17 - 2012-03-30 19:47 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Adobe
2015-04-04 17:43 - 2014-11-22 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-04 17:43 - 2012-04-08 13:48 - 00000000 ____D () C:\Temp
2015-04-04 17:41 - 2012-02-09 06:27 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-04 17:28 - 2012-06-27 13:57 - 00000000 ____D () C:\ProgramData\MAGIX
2015-04-04 12:14 - 2015-02-18 15:52 - 00000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2015-04-02 19:01 - 2014-10-15 19:33 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-04-01 16:34 - 2011-07-11 05:41 - 00000000 ____D () C:\ProgramData\Skype
2015-04-01 11:16 - 2012-03-30 20:21 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-31 19:51 - 2015-02-18 15:13 - 00000890 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-03-30 15:25 - 2014-03-19 21:13 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-03-23 15:24 - 2014-12-26 19:55 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MysteryTag
2015-03-22 19:48 - 2012-04-02 23:01 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-22 19:48 - 2012-04-02 23:01 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-22 19:48 - 2011-07-11 06:09 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-21 18:20 - 2013-12-31 12:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\XBMC
2015-03-21 17:18 - 2012-06-27 13:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MAGIX
2015-03-21 15:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-03-20 20:25 - 2009-07-14 07:08 - 00032576 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-18 18:33 - 2012-06-25 13:59 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Audacity

==================== Files in the root of some directories =======

2012-03-27 10:26 - 2012-03-27 10:26 - 0000120 _____ () C:\Users\Tomáš\AppData\Roaming\1cfbf17e.dat
2015-02-18 15:52 - 2015-04-04 12:14 - 0000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\CFBEDSDX
2012-06-01 21:13 - 2012-04-09 11:38 - 3995886 _____ () C:\Users\Tomáš\AppData\Roaming\minecraft.jar
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\MXPUWBDF
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\SM
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\WGPYQE
2014-01-07 19:31 - 2014-01-07 19:31 - 0003383 _____ () C:\Users\Tomáš\AppData\Local\recently-used.xbel
2012-02-09 06:53 - 2012-08-04 20:11 - 0002528 _____ () C:\ProgramData\ArcadeDeluxe5.log
2015-04-04 20:59 - 2015-04-04 21:00 - 0000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-14 08:08




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Acer) (Fixed) (Total:222.45 GB) (Free:47.61 GB) NTFS
Drive d: (DATA) (Fixed) (Total:223.21 GB) (Free:213.14 GB) NTFS

Available physical RAM: 2336.52 MB
Total physical RAM: 4076.26 MB
Percentage of memory in use: 42%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C0205118)
Partition 1: (Not Active) - (Size=20 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=222.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=223.2 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================


==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Tom��\Desktop" je 3888 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcadeMovieService
"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hotkey Utility
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tom��^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tom��^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Banished.lnk
C:\PROGRA~3\{E03AD~1\Banished.exe --startup=1 [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[Márty84]

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)

FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-22] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-05-26] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-22] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2012-08-02] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll [2013-09-29] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3337465978-2193547489-3213491474-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-16] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml [2015-04-04]
FF Extension: Send to XBMC - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi [2013-05-05]
FF Extension: Google Translator for Firefox - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi [2012-05-05]
FF Extension: ImTranslator - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-05-05]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-03-25] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\my.cfg [2015-03-25] <==== ATTENTION

S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.py
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.pyo
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\AN76PYHK\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\V0ESWY5N\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\6P2VFUY7\www.mozilla[1].xml
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\8QEJU62P\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py
C:\Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\Browsers\mozilla.browser
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\Browsers\mozilla.browser
C:\Windows\winsxs\amd64_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_fdde508273949e1f\mozilla.browser
C:\Windows\winsxs\x86_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_458b87598810c725\mozilla.browser
C:\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\Downloads\Firefox Setup Stub 31.0.exe
C:\Users\Tomáš\Downloads\Firefox Setup Stub 33.0.exe
C:\Users\Tomáš\Downloads\wmpfirefoxplugin(1).exe
C:\Users\Tomáš\Downloads\wmpfirefoxplugin.exe
C:\Windows\erdnt\cache86\firefox.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\firefox.browser
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\firefox.browser
C:\Program Files (x86)\Google
C:\Program Files (x86)\Seznam.cz
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files
C:\Users\Tomáš\AppData\Local\Temp
C:\Users\Tomáš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk
C:\Users\Tomáš\Desktop\skladiště\chromeinstall-7u67.exe
C:\Users\Tomáš\Downloads\ChromeSetup.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\chrome.browser
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\chrome.browser
C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf
C:\ProgramData\Mozilla
C:\Users\All Users\Mozilla
C:\Users\Tomáš\AppData\Local\Mozilla
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\AppData\Roaming\Mozilla
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0da31e97
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0f54ec22
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_16299fb8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_04b56586
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_147bf88c
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_18361110
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_858f57d3323d3d5c74f32279dce7191dfee16ffa_1681a92a
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_a55b1497f5d434663bf97e4ee6f393312a1fda_1b4062d9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0a50befe
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0d8fb30d
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0de09a22
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_105cdfc5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_cba6769b1441f5b6130dfa8a193e88860731d_10342737
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_2879ebe5e4a310354786f85dcabe2a4260be64_25c0cd70
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_42c23a2f9c48b2fbec86235fc0bc21e77de64ed_1bd24184
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_9230f378d6ec39c6c256ce94ec4b5c2555be3_1725b81e
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a0f640acd52ecc0958971a06470cf6542ad547_25d7a5e0
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a915a85ed056f2cfc7eb6685ed183f759fa2169b_05f82cf9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_6051f6a636433a9aecac8f6d98747309c9245a7_0db057b1
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_78a1a4daec8b226a3e8764754f962edbf34e22b6_132af4d9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_cbe14a77df171a6c32ecb82b14f4e91fb71fc8cb_2044674e
C:\Users\Tomáš\AppData\Local\Mozilla\Firefox
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox
C:\Users\Tomáš\Downloads\firefox
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3354fe9ef4d8742c8f3dc0b22c71add84c2cb_1aad7c32
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3cb062db44d529eead442a12e848387889aab17_26254a6a
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3ef871bba67faba7298133d8886532ec4437907_252f8b13
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_643837f748546db2725169f310fcb744c9d7db28_1eef3ed5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_8adeaf71264b688caf3fc380b8d6976a7ebbeac_1827287d
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_ccc4ee239434e6fb3b1283e80d36878cbc1c7d_1be183b8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_e71011a1ef49c88fdbd44e4f53dc37d8f2c5f04b_18f79342
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\storage\permanent\chrome

2015-04-11 22:06 - 2015-04-11 22:06 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe
2015-04-11 21:50 - 2015-04-11 21:34 - 00024064 _____ () C:\Windows\zoek-delete.exe

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

[simplyfine]

zdravím ,

vkládám log

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-04-2015 01
Ran by Tomáš at 2015-04-18 14:34:38 Run:1
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available profiles: Tomáš)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)

FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-22] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-05-26] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-22] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2012-08-02] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll [2013-09-29] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3337465978-2193547489-3213491474-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-16] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml [2015-04-04]
FF Extension: Send to XBMC - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi [2013-05-05]
FF Extension: Google Translator for Firefox - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi [2012-05-05]
FF Extension: ImTranslator - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-05-05]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-03-25] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\my.cfg [2015-03-25] <==== ATTENTION

S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.py
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.pyo
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\AN76PYHK\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\V0ESWY5N\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\6P2VFUY7\www.mozilla[1].xml
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\8QEJU62P\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py
C:\Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\Browsers\mozilla.browser
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\Browsers\mozilla.browser
C:\Windows\winsxs\amd64_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_fdde508273949e1f\mozilla.browser
C:\Windows\winsxs\x86_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_458b87598810c725\mozilla.browser
C:\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\Downloads\Firefox Setup Stub 31.0.exe
C:\Users\Tomáš\Downloads\Firefox Setup Stub 33.0.exe
C:\Users\Tomáš\Downloads\wmpfirefoxplugin(1).exe
C:\Users\Tomáš\Downloads\wmpfirefoxplugin.exe
C:\Windows\erdnt\cache86\firefox.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\firefox.browser
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\firefox.browser
C:\Program Files (x86)\Google
C:\Program Files (x86)\Seznam.cz
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files
C:\Users\Tomáš\AppData\Local\Temp
C:\Users\Tomáš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk
C:\Users\Tomáš\Desktop\skladiště\chromeinstall-7u67.exe
C:\Users\Tomáš\Downloads\ChromeSetup.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\chrome.browser
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\chrome.browser
C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf
C:\ProgramData\Mozilla
C:\Users\All Users\Mozilla
C:\Users\Tomáš\AppData\Local\Mozilla
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\AppData\Roaming\Mozilla
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0da31e97
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0f54ec22
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_16299fb8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_04b56586
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_147bf88c
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_18361110
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_858f57d3323d3d5c74f32279dce7191dfee16ffa_1681a92a
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_a55b1497f5d434663bf97e4ee6f393312a1fda_1b4062d9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0a50befe
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0d8fb30d
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0de09a22
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_105cdfc5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_cba6769b1441f5b6130dfa8a193e88860731d_10342737
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_2879ebe5e4a310354786f85dcabe2a4260be64_25c0cd70
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_42c23a2f9c48b2fbec86235fc0bc21e77de64ed_1bd24184
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_9230f378d6ec39c6c256ce94ec4b5c2555be3_1725b81e
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a0f640acd52ecc0958971a06470cf6542ad547_25d7a5e0
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a915a85ed056f2cfc7eb6685ed183f759fa2169b_05f82cf9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_6051f6a636433a9aecac8f6d98747309c9245a7_0db057b1
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_78a1a4daec8b226a3e8764754f962edbf34e22b6_132af4d9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_cbe14a77df171a6c32ecb82b14f4e91fb71fc8cb_2044674e
C:\Users\Tomáš\AppData\Local\Mozilla\Firefox
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox
C:\Users\Tomáš\Downloads\firefox
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3354fe9ef4d8742c8f3dc0b22c71add84c2cb_1aad7c32
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3cb062db44d529eead442a12e848387889aab17_26254a6a
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3ef871bba67faba7298133d8886532ec4437907_252f8b13
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_643837f748546db2725169f310fcb744c9d7db28_1eef3ed5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_8adeaf71264b688caf3fc380b8d6976a7ebbeac_1827287d
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_ccc4ee239434e6fb3b1283e80d36878cbc1c7d_1be183b8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_e71011a1ef49c88fdbd44e4f53dc37d8f2c5f04b_18f79342
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\storage\permanent\chrome

2015-04-11 22:06 - 2015-04-11 22:06 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe
2015-04-11 21:50 - 2015-04-11 21:34 - 00024064 _____ () C:\Windows\zoek-delete.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value deleted successfully.
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default => Should not be moved.
Firefox DefaultSearchEngine deleted successfully.
Firefox homepage deleted successfully.
"HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer" => Key deleted successfully.
C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll => Moved successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => Key deleted successfully.
C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll => Moved successfully.
"HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect_x86_64" => Key deleted successfully.
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer" => Key deleted successfully.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin" => Key deleted successfully.
C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2" => Key deleted successfully.
C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2" => Key deleted successfully.
C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => Key deleted successfully.
C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0" => Key deleted successfully.
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation) not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922" => Key deleted successfully.
C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109" => Key deleted successfully.
C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision" => Key deleted successfully.
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming" => Key deleted successfully.
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0" => Key deleted successfully.
C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => Key deleted successfully.
C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => Key deleted successfully.
C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.4" => Key deleted successfully.
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0" => Key deleted successfully.
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0" => Key deleted successfully.
C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\Adobe Reader" => Key deleted successfully.
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect" => Key deleted successfully.
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll => Moved successfully.
"HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0" => Key deleted successfully.
C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll => Moved successfully.
C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll => Moved successfully.
C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} not found.
C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\my-prefs.js => Moved successfully.
C:\Program Files (x86)\mozilla firefox\my.cfg => Moved successfully.
catchme => Service deleted successfully.
MBAMSwissArmy => Service deleted successfully.
C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py => Moved successfully.
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.py => Moved successfully.
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.pyo => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\AN76PYHK\www.mozilla[1].xml => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\V0ESWY5N\www.mozilla[1].xml => Moved successfully.

"C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files" directory move:

Could not move "C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files" directory. => Scheduled to move on reboot.

C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\6P2VFUY7\www.mozilla[1].xml => Moved successfully.
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\8QEJU62P\www.mozilla[1].xml => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py => Moved successfully.
C:\Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\Browsers\mozilla.browser => Moved successfully.
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\Browsers\mozilla.browser => Moved successfully.
C:\Windows\winsxs\amd64_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_fdde508273949e1f\mozilla.browser => Moved successfully.
C:\Windows\winsxs\x86_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_458b87598810c725\mozilla.browser => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox => Moved successfully.
C:\Users\Tomáš\Downloads\Firefox Setup Stub 31.0.exe => Moved successfully.
C:\Users\Tomáš\Downloads\Firefox Setup Stub 33.0.exe => Moved successfully.
C:\Users\Tomáš\Downloads\wmpfirefoxplugin(1).exe => Moved successfully.
C:\Users\Tomáš\Downloads\wmpfirefoxplugin.exe => Moved successfully.
C:\Windows\erdnt\cache86\firefox.exe => Moved successfully.
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\firefox.browser => Moved successfully.
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\firefox.browser => Moved successfully.
C:\Program Files (x86)\Google => Moved successfully.
C:\Program Files (x86)\Seznam.cz => Moved successfully.

"C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files" directory move:

Could not move "C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files" directory. => Scheduled to move on reboot.


"C:\Users\Tomáš\AppData\Local\Temp" directory move:

Could not move "C:\Users\Tomáš\AppData\Local\Temp" directory. => Scheduled to move on reboot.

C:\Users\Tomáš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk => Moved successfully.
C:\Users\Tomáš\Desktop\skladiště\chromeinstall-7u67.exe => Moved successfully.
C:\Users\Tomáš\Downloads\ChromeSetup.exe => Moved successfully.
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\chrome.browser => Moved successfully.
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\chrome.browser => Moved successfully.
C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf => Moved successfully.
C:\ProgramData\Mozilla => Moved successfully.
"C:\Users\All Users\Mozilla" => File/Directory not found.
C:\Users\Tomáš\AppData\Local\Mozilla => Moved successfully.
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0da31e97 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0f54ec22 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_16299fb8 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_04b56586 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_147bf88c => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_18361110 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_858f57d3323d3d5c74f32279dce7191dfee16ffa_1681a92a => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_a55b1497f5d434663bf97e4ee6f393312a1fda_1b4062d9 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0a50befe => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0d8fb30d => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0de09a22 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_105cdfc5 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_cba6769b1441f5b6130dfa8a193e88860731d_10342737 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_2879ebe5e4a310354786f85dcabe2a4260be64_25c0cd70 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_42c23a2f9c48b2fbec86235fc0bc21e77de64ed_1bd24184 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_9230f378d6ec39c6c256ce94ec4b5c2555be3_1725b81e => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a0f640acd52ecc0958971a06470cf6542ad547_25d7a5e0 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a915a85ed056f2cfc7eb6685ed183f759fa2169b_05f82cf9 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_6051f6a636433a9aecac8f6d98747309c9245a7_0db057b1 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_78a1a4daec8b226a3e8764754f962edbf34e22b6_132af4d9 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_cbe14a77df171a6c32ecb82b14f4e91fb71fc8cb_2044674e => Moved successfully.
"C:\Users\Tomáš\AppData\Local\Mozilla\Firefox" => File/Directory not found.
"C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox" => File/Directory not found.
"C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox" => File/Directory not found.
C:\Users\Tomáš\Downloads\firefox => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3354fe9ef4d8742c8f3dc0b22c71add84c2cb_1aad7c32 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3cb062db44d529eead442a12e848387889aab17_26254a6a => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3ef871bba67faba7298133d8886532ec4437907_252f8b13 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_643837f748546db2725169f310fcb744c9d7db28_1eef3ed5 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_8adeaf71264b688caf3fc380b8d6976a7ebbeac_1827287d => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_ccc4ee239434e6fb3b1283e80d36878cbc1c7d_1be183b8 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_e71011a1ef49c88fdbd44e4f53dc37d8f2c5f04b_18f79342 => Moved successfully.
"C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\storage\permanent\chrome" => File/Directory not found.
C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 397.7 MB temporary data.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-04-18 14:38:39)<=

C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files => Is moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files => Is moved successfully.
"C:\Users\Tomáš\AppData\Local\Temp" => Directory could not move.

==== End of Fixlog 14:38:41 ====

[Márty84]

Znovu stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.


Novy log z FRST

[simplyfine]

# AdwCleaner v4.201 - Log vytvořen 18/04/2015 v 15:24:08
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-18.3 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : Tomáš - MILOUS
# Spuštěno z : C:\Users\Tomáš\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Složka Smazáno : C:\Users\Tomáš\Documents\Updater

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****


***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17728


*************************

AdwCleaner[R0].txt - [772 bytů] - [18/04/2015 15:23:06]
AdwCleaner[S0].txt - [697 bytů] - [18/04/2015 15:24:08]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [754 bytů] ##########

FRST log

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-04-2015 01
Ran by Tomáš (administrator) on MILOUS on 18-04-2015 15:27:02
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available profiles: Tomáš)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLMSService.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Users\Tomáš\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\msosync.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
BootExecute: autocheck autochk * bddel.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3337465978-2193547489-3213491474-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-02-10] (Microsoft Corporation)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [255040 2014-09-07] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-15] (Electronic Arts)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 PcaSp60; C:\Windows\SysWOW64\DRIVERS\PcaSp60.sys [38912 2010-09-07] (Printing Communications Assoc., Inc. (PCAUSA))
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 zghsser; C:\Windows\System32\DRIVERS\zghsser.sys [134976 2013-09-11] (ZTE Corporation)
S3 cpuz134; \??\C:\Users\TOM~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-18 15:23 - 2015-04-18 15:24 - 00000000 ____D () C:\AdwCleaner
2015-04-18 15:21 - 2015-04-18 15:21 - 02217984 _____ () C:\Users\Tomáš\Desktop\adwcleaner_4.201.exe
2015-04-18 14:34 - 2015-04-18 14:34 - 00000000 ____D () C:\Users\Tomáš\Desktop\FRST-OlderVersion
2015-04-17 22:18 - 2015-04-17 22:18 - 00011907 _____ () C:\Users\Tomáš\Desktop\Addition.zip
2015-04-17 22:08 - 2015-04-17 22:08 - 00043502 _____ () C:\Users\Tomáš\Desktop\Addition.txt
2015-04-17 22:07 - 2015-04-18 15:27 - 00011430 _____ () C:\Users\Tomáš\Desktop\FRST.txt
2015-04-17 22:05 - 2015-04-18 15:27 - 00000000 ____D () C:\FRST
2015-04-17 22:03 - 2015-04-18 14:34 - 02098176 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2015-04-17 21:43 - 2015-04-17 21:51 - 00128030 _____ () C:\Users\Tomáš\Desktop\SystemLook.txt
2015-04-17 21:42 - 2015-04-17 21:42 - 00165376 _____ () C:\Users\Tomáš\Desktop\SystemLook_x64.exe
2015-04-17 21:36 - 2015-04-17 21:36 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Tomáš\Desktop\revosetup.exe
2015-04-16 19:31 - 2015-04-16 19:31 - 00243504 _____ () C:\Users\Tomáš\Downloads\Firefox Setup Stub 37.0.1.exe
2015-04-16 19:27 - 2015-04-16 19:27 - 00000565 _____ () C:\Users\Tomáš\Desktop\DelFix.txt
2015-04-16 19:25 - 2015-04-16 19:25 - 00781312 _____ () C:\Users\Tomáš\Desktop\delfix_10.9.exe
2015-04-15 18:30 - 2015-03-25 05:24 - 03298816 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 02553856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 18:30 - 2015-03-25 05:23 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 18:30 - 2015-03-25 05:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 18:30 - 2015-03-25 05:23 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-15 18:30 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-15 18:30 - 2015-03-23 05:25 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 18:30 - 2015-03-23 05:25 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 18:30 - 2015-03-23 05:17 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 18:30 - 2015-03-17 07:22 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 18:30 - 2015-03-17 07:22 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 18:30 - 2015-03-17 07:22 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 18:30 - 2015-03-17 07:19 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 18:30 - 2015-03-17 07:16 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 18:30 - 2015-03-17 07:16 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-04-15 18:30 - 2015-03-17 07:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-15 18:30 - 2015-03-17 07:15 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 18:30 - 2015-03-17 07:15 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 18:30 - 2015-03-17 07:13 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 18:30 - 2015-03-17 07:13 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-04-15 18:30 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-04-15 18:30 - 2015-03-17 06:59 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-04-15 18:30 - 2015-03-17 06:56 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-15 18:30 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-15 18:30 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-15 18:30 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-15 18:30 - 2015-03-17 05:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-15 18:30 - 2015-03-17 05:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-15 18:30 - 2015-03-10 05:25 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 18:30 - 2015-03-10 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 18:30 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-15 18:30 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-15 18:30 - 2015-03-05 07:12 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 18:30 - 2015-03-05 06:05 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-15 18:29 - 2015-04-02 02:17 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 18:29 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-15 18:29 - 2015-03-13 06:32 - 24980480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 18:29 - 2015-03-13 06:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 18:29 - 2015-03-13 06:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-15 18:29 - 2015-03-13 06:09 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 18:29 - 2015-03-13 06:08 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 18:29 - 2015-03-13 06:08 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 18:29 - 2015-03-13 06:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-15 18:29 - 2015-03-13 06:07 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 18:29 - 2015-03-13 06:06 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-15 18:29 - 2015-03-13 06:00 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 18:29 - 2015-03-13 05:59 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 18:29 - 2015-03-13 05:55 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 18:29 - 2015-03-13 05:54 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 18:29 - 2015-03-13 05:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-15 18:29 - 2015-03-13 05:53 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-15 18:29 - 2015-03-13 05:50 - 06025216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 18:29 - 2015-03-13 05:44 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-15 18:29 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 18:29 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-15 18:29 - 2015-03-13 05:40 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 18:29 - 2015-03-13 05:32 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-15 18:29 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 18:29 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-15 18:29 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-15 18:29 - 2015-03-13 05:27 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 18:29 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-04-15 18:29 - 2015-03-13 05:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 18:29 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-04-15 18:29 - 2015-03-13 05:23 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 18:29 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 18:29 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-15 18:29 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-15 18:29 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-04-15 18:29 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-04-15 18:29 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-04-15 18:29 - 2015-03-13 05:08 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 18:29 - 2015-03-13 05:07 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 18:29 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-15 18:29 - 2015-03-13 05:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 18:29 - 2015-03-13 05:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-15 18:29 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-04-15 18:29 - 2015-03-13 05:00 - 14397440 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 18:29 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-15 18:29 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-15 18:29 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-15 18:29 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 18:29 - 2015-03-13 04:45 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 18:29 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 18:29 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-15 18:29 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-04-15 18:29 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 18:29 - 2015-03-13 04:33 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 18:29 - 2015-03-13 04:22 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 18:29 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 18:29 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 18:29 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-15 18:29 - 2015-03-04 06:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 18:29 - 2015-03-04 06:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 18:29 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 18:29 - 2015-02-25 05:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-13 19:05 - 2015-04-13 19:05 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Publish Providers
2015-04-11 22:08 - 2015-04-11 22:45 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-11 20:07 - 2015-04-18 14:38 - 00004662 _____ () C:\Windows\PFRO.log
2015-04-11 16:30 - 2015-04-18 15:25 - 00002744 _____ () C:\Windows\setupact.log
2015-04-11 16:30 - 2015-04-11 16:30 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-11 09:56 - 2015-04-11 09:56 - 00001728 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\Program Files\Defraggler
2015-04-11 08:20 - 2015-04-11 08:20 - 00000000 ____D () C:\Users\Tomáš\Desktop\záloha ccleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00002786 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-04-11 08:06 - 2015-04-11 08:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-11 07:58 - 2015-04-16 19:26 - 00000565 _____ () C:\DelFix.txt
2015-04-07 19:18 - 2015-04-07 19:18 - 00013256 _____ () C:\Users\Tomáš\Documents\kuchyn, hlava.veg
2015-04-06 20:54 - 2015-04-07 20:13 - 00000000 ____D () C:\Windows\erdnt
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄\AppData\Roaming\Macromedia
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ\AppData\Roaming\Macromedia
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ
2015-04-06 12:15 - 2015-04-06 12:15 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-MILOUS-Windows-7-Home-Premium-(64-bit).dat
2015-04-06 12:15 - 2015-04-06 12:15 - 00000000 ____D () C:\RegBackup
2015-04-06 11:50 - 2015-04-08 20:27 - 00000000 ____D () C:\Program Files\trend micro
2015-04-04 22:49 - 2015-04-04 22:49 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-04-04 22:13 - 2015-04-04 22:13 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Tomáš\Downloads\sh-remover.exe
2015-04-04 21:09 - 2015-04-04 21:11 - 155159296 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\msert.exe
2015-04-04 21:03 - 2015-04-04 21:04 - 41840320 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\Windows-KB890830-x64-V5.22.exe
2015-04-04 20:59 - 2015-04-04 21:00 - 00000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-04-04 20:59 - 2015-04-04 20:59 - 07783472 _____ () C:\Users\Tomáš\Downloads\Infigo_setup.exe
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 18:20 - 2015-04-06 11:01 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-04-04 17:47 - 2015-04-04 17:47 - 21578888 _____ (SUPERAntiSpyware) C:\Users\Tomáš\Downloads\SUPERAntiSpyware.exe
2015-04-04 17:42 - 2015-03-13 17:38 - 00622224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-04 17:40 - 2015-03-13 21:41 - 32114888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 24775368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 20466376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 17258024 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13297144 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13210080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10775080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10715864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10262160 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-04 17:40 - 2015-03-13 21:41 - 03611792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 03249352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 02906928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00997856 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00970384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00944784 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00930448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00909512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00878328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00354112 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00306208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00178512 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-04 17:12 - 2015-04-04 17:17 - 00026656 _____ () C:\Windows\system32\bddel.dat
2015-04-04 12:14 - 2015-04-04 12:14 - 00002806 _____ () C:\Users\Tomáš\Downloads\software_removal_tool.log
2015-04-01 19:04 - 2015-04-06 13:16 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-01 16:34 - 2015-04-01 16:34 - 00000000 ____D () C:\Users\Tomáš\Tracing
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-03-23 15:21 - 2015-03-23 15:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\HomeMakeover3PC
2015-03-21 21:35 - 2015-03-21 21:35 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\MAGIX
2015-03-21 17:17 - 2003-04-18 17:29 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2015-03-21 17:11 - 2015-03-21 17:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Logitech
2015-03-21 17:07 - 2015-03-21 17:07 - 03581480 _____ (MAGIX AG) C:\Users\Tomáš\Downloads\photo_manager_9_int.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-18 15:26 - 2013-11-02 18:40 - 00004966 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for MILOUS-Tomáš Milouš
2015-04-18 15:25 - 2014-03-19 21:13 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\LogMeIn Hamachi
2015-04-18 15:25 - 2012-03-30 19:22 - 00000000 ____D () C:\ProgramData\clear.fi
2015-04-18 15:25 - 2012-02-09 06:28 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-18 15:25 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-18 15:24 - 2012-02-09 06:26 - 01344459 _____ () C:\Windows\WindowsUpdate.log
2015-04-18 14:45 - 2012-02-07 21:37 - 10309798 _____ () C:\Windows\system32\perfh005.dat
2015-04-18 14:45 - 2012-02-07 21:37 - 03431092 _____ () C:\Windows\system32\perfc005.dat
2015-04-18 14:45 - 2009-07-14 07:13 - 00006544 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-18 14:45 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-18 14:45 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-18 14:36 - 2014-06-13 15:26 - 00000000 ____D () C:\Users\Tomáš\Desktop\skladiště
2015-04-17 21:38 - 2012-03-30 20:23 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Google
2015-04-17 09:17 - 2014-09-29 12:16 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{83A7A283-55C2-4354-9C5A-3085613F5987}
2015-04-16 21:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2015-04-16 19:07 - 2014-05-06 17:38 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-16 19:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-04-16 19:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2015-04-16 19:06 - 2014-12-10 16:29 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-16 03:11 - 2013-07-14 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-13 19:05 - 2014-12-22 18:04 - 00000000 ____D () C:\Users\Tomáš\Documents\hovno
2015-04-13 19:04 - 2014-10-11 19:32 - 00070656 ___SH () C:\Users\Tomáš\Documents\Thumbs.db
2015-04-12 22:01 - 2012-04-03 00:36 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2015-04-11 08:10 - 2012-11-26 20:07 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Pro
2015-04-11 08:10 - 2012-08-18 18:32 - 00000000 ____D () C:\Windows\Minidump
2015-04-11 08:10 - 2012-08-12 13:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\TeamViewer
2015-04-11 08:10 - 2012-05-14 20:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Skype
2015-04-11 08:10 - 2007-07-12 03:49 - 00000000 ____D () C:\Windows\Panther
2015-04-07 20:15 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2015-04-07 20:13 - 2009-07-14 04:34 - 21757952 _____ () C:\Windows\system32\config\SYSTEM.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 105644032 _____ () C:\Windows\system32\config\SOFTWARE.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00524288 _____ () C:\Windows\system32\config\DEFAULT.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2015-04-07 19:44 - 2014-05-05 15:49 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Battle.net
2015-04-07 19:42 - 2014-05-22 14:54 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2015-04-07 19:39 - 2014-12-03 18:50 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-07 19:12 - 2012-11-10 11:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\vlc
2015-04-06 21:53 - 2012-09-10 08:56 - 00002428 ____N () C:\Users\Public\Desktop\WildTangent Games App - wildgames.lnk
2015-04-06 21:53 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-06 21:08 - 2013-03-13 18:10 - 00000000 ____D () C:\Users\Tomáš
2015-04-06 18:05 - 2009-03-12 11:30 - 00000000 ____D () C:\Windows\LP
2015-04-06 17:14 - 2012-03-30 19:34 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Adobe
2015-04-06 12:37 - 2011-07-11 06:08 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-04 23:42 - 2012-05-14 20:43 - 00010521 _____ () C:\Windows\system32\lvcoinst.log
2015-04-04 23:30 - 2012-12-12 13:17 - 00003694 _____ () C:\Windows\System32\Tasks\Program k provádění aktualizací online Adobe
2015-04-04 23:19 - 2014-01-06 19:04 - 00000000 ____D () C:\Users\Tomáš\.thumbnails
2015-04-04 23:19 - 2013-01-07 16:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Sony
2015-04-04 23:19 - 2012-12-24 20:01 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-04 23:19 - 2012-04-21 10:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Microsoft Help
2015-04-04 23:19 - 2012-02-09 06:53 - 00000000 ____D () C:\ProgramData\Temp
2015-04-04 22:50 - 2014-05-09 10:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\AVG
2015-04-04 22:50 - 2012-05-31 18:24 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\AVG
2015-04-04 22:48 - 2014-05-09 10:07 - 00000000 ____D () C:\ProgramData\AVG
2015-04-04 19:19 - 2013-01-07 16:14 - 00000000 ____D () C:\ProgramData\Sony Corporation
2015-04-04 19:19 - 2012-12-11 21:06 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-04-04 19:19 - 2012-05-05 23:24 - 00000000 ____D () C:\Program Files (x86)\PatchBeam
2015-04-04 19:17 - 2014-12-07 12:02 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Seznam.cz
2015-04-04 18:30 - 2012-03-30 18:59 - 00000000 ____D () C:\Users\Tomáš
2015-04-04 18:20 - 2012-11-09 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-04-04 18:19 - 2011-07-11 06:08 - 00000000 ____D () C:\ProgramData\Adobe
2015-04-04 18:17 - 2012-03-30 19:47 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Adobe
2015-04-04 17:43 - 2014-11-22 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-04 17:43 - 2012-04-08 13:48 - 00000000 ____D () C:\Temp
2015-04-04 17:41 - 2012-02-09 06:27 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-04 17:28 - 2012-06-27 13:57 - 00000000 ____D () C:\ProgramData\MAGIX
2015-04-04 12:14 - 2015-02-18 15:52 - 00000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2015-04-02 19:01 - 2014-10-15 19:33 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-04-01 16:34 - 2011-07-11 05:41 - 00000000 ____D () C:\ProgramData\Skype
2015-04-01 11:16 - 2012-03-30 20:21 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-31 19:51 - 2015-02-18 15:13 - 00000890 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-03-30 15:25 - 2014-03-19 21:13 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-03-23 15:24 - 2014-12-26 19:55 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MysteryTag
2015-03-22 19:48 - 2012-04-02 23:01 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-22 19:48 - 2012-04-02 23:01 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-22 19:48 - 2011-07-11 06:09 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-21 18:20 - 2013-12-31 12:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\XBMC
2015-03-21 17:18 - 2012-06-27 13:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MAGIX
2015-03-21 15:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-03-20 20:25 - 2009-07-14 07:08 - 00032576 _____ () C:\Windows\Tasks\SCHEDLGU.TXT

==================== Files in the root of some directories =======

2012-03-27 10:26 - 2012-03-27 10:26 - 0000120 _____ () C:\Users\Tomáš\AppData\Roaming\1cfbf17e.dat
2015-02-18 15:52 - 2015-04-04 12:14 - 0000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\CFBEDSDX
2012-06-01 21:13 - 2012-04-09 11:38 - 3995886 _____ () C:\Users\Tomáš\AppData\Roaming\minecraft.jar
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\MXPUWBDF
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\SM
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\WGPYQE
2014-01-07 19:31 - 2014-01-07 19:31 - 0003383 _____ () C:\Users\Tomáš\AppData\Local\recently-used.xbel
2012-02-09 06:53 - 2012-08-04 20:11 - 0002528 _____ () C:\ProgramData\ArcadeDeluxe5.log
2015-04-04 20:59 - 2015-04-04 21:00 - 0000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some content of TEMP:
====================
C:\Users\Tomáš\AppData\Local\Temp\Quarantine.exe
C:\Users\Tomáš\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-14 08:08

==================== End Of Log ============================