VIRY.CZ

Zopakujte ZOEK

Postupujte podle navodu kolegy

vyosek píše: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
Kód: Vybrat vše
autoclean;
autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
Nasledne kliknete na Run Script

PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Postupujte podle navodu kolegy

vyosek píše: Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/
Ulozte nejlepe na Plochu a rozbalte

Spustte kliknutim na mbar

Nyni postupne kliknete na Next a Update

Po dokonceni update (aktualizace) databaze kliknete opet na Next

Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC

Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko

Tez zkontrolujte, jetsli je zatrzitko u Create Restore point

Nyni kliknete na CleanUp cimz nalezenou infekci odstranime

PC bude restartovan

Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte

tak log zoek:
Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by Tom ç on so 11.04.2015 at 21:34:18,98.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Tomáš\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

11.4.2015 21:36:00 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Users\Tom ç\AppData\Roaming\Publish Providers deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\prefs.js:
user_pref("browser.startup.homepage", "http://atlas.centrum.cz/");
user_pref("browser.search.defaultenginename", "Google Default");

Added to C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\Users\Tomáš\.android not found
C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin not found
C:\Users\Tomáš\AppData\Roaming\YoudaGames not found
C:\Users\Tomáš\AppData\Local\cache not found
C:\Users\Tomáš\AppData\Local\CrashRpt not found
C:\Users\Tomáš\Documents\Add-in Express not found
"C:\Users\Tomáš\AppData\Roaming\AVG" not found
"C:\Users\Tomáš\AppData\Roaming\OEM" not found
"C:\Users\Tomáš\AppData\Roaming\vlc" not found
"C:\Users\Tomáš\AppData\Roaming\ZOG" not found
"C:\Users\Tomáš\AppData\Roaming\Awem" not found
"C:\Users\Tomáš\AppData\Roaming\Kodi" not found
"C:\Users\Tomáš\AppData\Roaming\ODIN" not found
"C:\Users\Tomáš\AppData\Roaming\Sony" not found
"C:\Users\Tomáš\AppData\Roaming\Temp" not found
"C:\Users\Tomáš\AppData\Roaming\XBMC" not found
"C:\Users\Tomáš\AppData\Roaming\Avnex" not found
"C:\Users\Tomáš\AppData\Roaming\Corel" not found
"C:\Users\Tomáš\AppData\Roaming\MAGIX" not found
"C:\Users\Tomáš\AppData\Roaming\SPORE" not found
"C:\Users\Tomáš\AppData\Roaming\TOSST" not found
"C:\Users\Tomáš\AppData\Roaming\Unity" not found
"C:\Users\Tomáš\AppData\Roaming\Angler" not found
"C:\Users\Tomáš\AppData\Roaming\Argali" not found
"C:\Users\Tomáš\AppData\Roaming\Oracle" not found
"C:\Users\Tomáš\AppData\Roaming\Origin" not found
"C:\Users\Tomáš\AppData\Roaming\Orneon" not found
"C:\Users\Tomáš\AppData\Roaming\PoBros" not found
"C:\Users\Tomáš\AppData\Roaming\STAHKM" not found
"C:\Users\Tomáš\AppData\Roaming\System" not found
"C:\Users\Tomáš\AppData\Roaming\Boomzap" not found
"C:\Users\Tomáš\AppData\Roaming\HipSoft" not found
"C:\Users\Tomáš\AppData\Roaming\Hullabu" not found
"C:\Users\Tomáš\AppData\Roaming\iMaxGen" not found
"C:\Users\Tomáš\AppData\Roaming\PlayWay" not found
"C:\Users\Tomáš\AppData\Roaming\Samsung" not found
C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\jetpack deleted
"C:\Users\Tomáš\AppData\Roaming\CFBEDSDX" deleted
"C:\Users\Tomáš\AppData\Roaming\MXPUWBDF" deleted
"C:\Users\Tomáš\AppData\Roaming\SM" deleted
"C:\Users\Tomáš\AppData\Roaming\WGPYQE" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"DSE"="true" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\TOM~1\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
- Send to XBMC - %ProfilePath%\extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi
- Google Translator for Firefox - %ProfilePath%\extensions\translator@zoli.bod.xpi
- ImTranslator - %ProfilePath%\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi

==== Firefox Plugins ======================

==== Chromium Look ======================

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{8457B015-190D-4AC9-AD55-CE83AE88A955}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"
{8457B015-190D-4AC9-AD55-CE83AE88A955} Google Url="http://www.google.com/search?q={searchT ... utEncoding?}"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=6 folders=3 7209 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Users\Tomáš\AppData\Local\Temp emptied successfully
C:\Users\TomßÜ\AppData\Local\temp emptied successfully
C:\Users\Tom??\AppData\Local\Temp emptied successfully
C:\Users\TOM~3\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\TOM~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on so 11.04.2015 at 21:57:18,63 ======================

a další log není, protože mbar nenalezl žádnou infekci.

Zmenilo se neco pri stahovani?

Dejte prosim aktualni logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach

Při stahování bylo již vše ok, čili stahovalo se s příponou .exe a vkládám log a přílohu:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-04-2015
Ran by Tomáš (administrator) on MILOUS on 14-04-2015 19:31:35
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available profiles: Tomáš)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLMSService.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_16_0_0_305_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
BootExecute: autocheck autochk * bddel.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3337465978-2193547489-3213491474-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-22] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-05-26] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-22] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2012-08-02] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll [2013-09-29] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3337465978-2193547489-3213491474-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-16] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml [2015-04-04]
FF Extension: Send to XBMC - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi [2013-05-05]
FF Extension: Google Translator for Firefox - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi [2012-05-05]
FF Extension: ImTranslator - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-05-05]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-02-10] (Microsoft Corporation)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [255040 2014-09-07] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-15] (Electronic Arts)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 PcaSp60; C:\Windows\SysWOW64\DRIVERS\PcaSp60.sys [38912 2010-09-07] (Printing Communications Assoc., Inc. (PCAUSA))
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 zghsser; C:\Windows\System32\DRIVERS\zghsser.sys [134976 2013-09-11] (ZTE Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz134; \??\C:\Users\TOM~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-14 19:31 - 2015-04-14 19:32 - 00016685 _____ () C:\Users\Tomáš\Desktop\FRST.txt
2015-04-14 19:30 - 2015-04-14 19:31 - 00000000 ____D () C:\FRST
2015-04-14 19:29 - 2015-04-14 19:29 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe
2015-04-14 19:28 - 2015-04-14 19:28 - 02096640 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2015-04-13 19:05 - 2015-04-13 19:05 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Publish Providers
2015-04-12 20:01 - 2015-04-12 20:01 - 00000000 ____D () C:\Users\Tomáš\Documents\Updater
2015-04-11 22:08 - 2015-04-11 22:45 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-11 22:07 - 2015-04-11 22:45 - 00000000 ____D () C:\Users\Tomáš\Desktop\mbar
2015-04-11 22:06 - 2015-04-11 22:06 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe
2015-04-11 21:57 - 2015-04-11 21:57 - 00008162 _____ () C:\Users\Tomáš\Desktop\zoek-results.txt
2015-04-11 21:50 - 2015-04-11 21:34 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-04-11 21:35 - 2015-04-11 21:57 - 00008162 _____ () C:\zoek-results.log
2015-04-11 21:34 - 2015-04-11 21:47 - 00000000 ____D () C:\zoek_backup
2015-04-11 21:33 - 2015-04-11 21:33 - 01305600 _____ () C:\Users\Tomáš\Desktop\zoek.exe
2015-04-11 20:07 - 2015-04-11 21:56 - 00001298 _____ () C:\Windows\PFRO.log
2015-04-11 18:59 - 2015-04-11 18:59 - 00000000 _____ () C:\Users\Tomáš\Downloads\Firefox Setup Stub 37_0_1_exe.76ti592.partial
2015-04-11 16:30 - 2015-04-14 19:16 - 00001568 _____ () C:\Windows\setupact.log
2015-04-11 16:30 - 2015-04-11 16:30 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-11 09:56 - 2015-04-11 09:56 - 00001728 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\Program Files\Defraggler
2015-04-11 08:20 - 2015-04-11 08:20 - 00000000 ____D () C:\Users\Tomáš\Desktop\záloha ccleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00002786 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-04-11 08:06 - 2015-04-11 08:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-11 08:02 - 2015-04-11 08:02 - 05344528 _____ (Piriform Ltd) C:\Users\Tomáš\Desktop\ccsetup504.exe
2015-04-11 07:58 - 2015-04-11 07:58 - 00001646 _____ () C:\DelFix.txt
2015-04-07 19:18 - 2015-04-07 19:18 - 00013256 _____ () C:\Users\Tomáš\Documents\kuchyn, hlava.veg
2015-04-06 20:54 - 2015-04-07 20:13 - 00000000 ____D () C:\Windows\erdnt
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄\AppData\Roaming\Macromedia
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ\AppData\Roaming\Macromedia
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ
2015-04-06 12:15 - 2015-04-06 12:15 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-MILOUS-Windows-7-Home-Premium-(64-bit).dat
2015-04-06 12:15 - 2015-04-06 12:15 - 00000000 ____D () C:\RegBackup
2015-04-06 11:50 - 2015-04-08 20:27 - 00000000 ____D () C:\Program Files\trend micro
2015-04-04 22:49 - 2015-04-04 22:49 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-04-04 22:46 - 2015-04-04 22:47 - 87520056 _____ (AVG Technologies) C:\Users\Tomáš\Downloads\avg_tuht_stf_all_2015_105.exe
2015-04-04 22:13 - 2015-04-04 22:13 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Tomáš\Downloads\sh-remover.exe
2015-04-04 21:09 - 2015-04-04 21:11 - 155159296 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\msert.exe
2015-04-04 21:03 - 2015-04-04 21:04 - 41840320 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\Windows-KB890830-x64-V5.22.exe
2015-04-04 20:59 - 2015-04-04 21:00 - 00000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-04-04 20:59 - 2015-04-04 20:59 - 07783472 _____ () C:\Users\Tomáš\Downloads\Infigo_setup.exe
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 18:20 - 2015-04-06 11:01 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-04-04 17:47 - 2015-04-04 17:47 - 21578888 _____ (SUPERAntiSpyware) C:\Users\Tomáš\Downloads\SUPERAntiSpyware.exe
2015-04-04 17:42 - 2015-03-13 17:38 - 00622224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-04 17:40 - 2015-03-13 21:41 - 32114888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 24775368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 20466376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 17258024 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13297144 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13210080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10775080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10715864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10262160 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-04 17:40 - 2015-03-13 21:41 - 03611792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 03249352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 02906928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00997856 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00970384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00944784 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00930448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00909512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00878328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00354112 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00306208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00178512 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-04 17:12 - 2015-04-04 17:17 - 00026656 _____ () C:\Windows\system32\bddel.dat
2015-04-04 13:20 - 2015-04-07 19:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-04 12:14 - 2015-04-04 12:14 - 00002806 _____ () C:\Users\Tomáš\Downloads\software_removal_tool.log
2015-04-01 19:04 - 2015-04-06 13:16 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-01 16:34 - 2015-04-01 16:34 - 00000000 ____D () C:\Users\Tomáš\Tracing
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-03-25 14:37 - 2015-03-11 06:06 - 00943616 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-03-25 14:37 - 2015-03-11 06:06 - 00760832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-03-25 14:37 - 2015-03-11 06:06 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-03-25 14:37 - 2015-03-11 06:06 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-03-25 14:37 - 2015-03-11 06:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-03-25 14:37 - 2015-03-11 06:05 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-03-25 14:37 - 2015-03-11 06:05 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-03-25 14:37 - 2015-03-11 06:02 - 01107456 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-03-23 15:21 - 2015-03-23 15:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\HomeMakeover3PC
2015-03-21 21:35 - 2015-03-21 21:35 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\MAGIX
2015-03-21 17:17 - 2003-04-18 17:29 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2015-03-21 17:11 - 2015-03-21 17:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Logitech
2015-03-21 17:07 - 2015-03-21 17:07 - 03581480 _____ (MAGIX AG) C:\Users\Tomáš\Downloads\photo_manager_9_int.exe
2015-03-15 17:58 - 2015-03-15 17:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\ZOG

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-14 18:16 - 2012-02-09 06:26 - 01789020 _____ () C:\Windows\WindowsUpdate.log
2015-04-14 18:13 - 2014-09-29 12:16 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{83A7A283-55C2-4354-9C5A-3085613F5987}
2015-04-14 08:02 - 2013-11-02 18:40 - 00004966 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for MILOUS-Tomáš Milouš
2015-04-14 07:57 - 2012-02-07 21:37 - 10247158 _____ () C:\Windows\system32\perfh005.dat
2015-04-14 07:57 - 2012-02-07 21:37 - 03409362 _____ () C:\Windows\system32\perfc005.dat
2015-04-14 07:57 - 2009-07-14 07:13 - 00006544 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-14 07:57 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-14 07:57 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-14 07:51 - 2012-03-30 19:22 - 00000000 ____D () C:\ProgramData\clear.fi
2015-04-14 07:50 - 2012-02-09 06:28 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-14 07:50 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-13 19:05 - 2014-12-22 18:04 - 00000000 ____D () C:\Users\Tomáš\Documents\hovno
2015-04-13 19:04 - 2014-10-11 19:32 - 00070656 ___SH () C:\Users\Tomáš\Documents\Thumbs.db
2015-04-13 07:54 - 2014-03-19 21:13 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\LogMeIn Hamachi
2015-04-12 22:01 - 2012-04-03 00:36 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2015-04-11 08:10 - 2012-11-26 20:07 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Pro
2015-04-11 08:10 - 2012-08-18 18:32 - 00000000 ____D () C:\Windows\Minidump
2015-04-11 08:10 - 2012-08-12 13:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\TeamViewer
2015-04-11 08:10 - 2012-05-14 20:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Skype
2015-04-11 08:10 - 2007-07-12 03:49 - 00000000 ____D () C:\Windows\Panther
2015-04-08 19:18 - 2014-06-13 15:26 - 00000000 ____D () C:\Users\Tomáš\Desktop\skladiště
2015-04-07 20:15 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2015-04-07 20:13 - 2009-07-14 04:34 - 21757952 _____ () C:\Windows\system32\config\SYSTEM.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 105644032 _____ () C:\Windows\system32\config\SOFTWARE.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00524288 _____ () C:\Windows\system32\config\DEFAULT.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2015-04-07 19:51 - 2012-03-30 20:23 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Google
2015-04-07 19:51 - 2012-03-30 20:23 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-07 19:44 - 2014-05-05 15:49 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Battle.net
2015-04-07 19:42 - 2014-05-22 14:54 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2015-04-07 19:39 - 2014-12-03 18:50 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-07 19:12 - 2012-11-10 11:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\vlc
2015-04-06 21:53 - 2012-09-10 08:56 - 00002428 ____N () C:\Users\Public\Desktop\WildTangent Games App - wildgames.lnk
2015-04-06 21:53 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-06 21:08 - 2013-03-13 18:10 - 00000000 ____D () C:\Users\Tomá
2015-04-06 18:05 - 2009-03-12 11:30 - 00000000 ____D () C:\Windows\LP
2015-04-06 17:14 - 2012-03-30 19:34 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Adobe
2015-04-06 12:37 - 2011-07-11 06:08 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-04 23:42 - 2012-05-14 20:43 - 00010521 _____ () C:\Windows\system32\lvcoinst.log
2015-04-04 23:30 - 2012-12-12 13:17 - 00003694 _____ () C:\Windows\System32\Tasks\Program k provádění aktualizací online Adobe
2015-04-04 23:19 - 2014-01-06 19:04 - 00000000 ____D () C:\Users\Tomáš\.thumbnails
2015-04-04 23:19 - 2013-01-07 16:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Sony
2015-04-04 23:19 - 2012-12-24 20:01 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-04 23:19 - 2012-04-21 10:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Microsoft Help
2015-04-04 23:19 - 2012-02-09 06:53 - 00000000 ____D () C:\ProgramData\Temp
2015-04-04 22:50 - 2014-05-09 10:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\AVG
2015-04-04 22:50 - 2012-05-31 18:24 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\AVG
2015-04-04 22:48 - 2014-05-09 10:07 - 00000000 ____D () C:\ProgramData\AVG
2015-04-04 19:19 - 2013-01-07 16:14 - 00000000 ____D () C:\ProgramData\Sony Corporation
2015-04-04 19:19 - 2012-12-11 21:06 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-04-04 19:19 - 2012-05-05 23:24 - 00000000 ____D () C:\Program Files (x86)\PatchBeam
2015-04-04 19:17 - 2014-12-07 12:02 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Seznam.cz
2015-04-04 18:30 - 2012-03-30 18:59 - 00000000 ____D () C:\Users\Tomáš
2015-04-04 18:20 - 2012-11-09 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-04-04 18:19 - 2011-07-11 06:08 - 00000000 ____D () C:\ProgramData\Adobe
2015-04-04 18:17 - 2012-03-30 19:47 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Adobe
2015-04-04 17:43 - 2014-11-22 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-04 17:43 - 2012-04-08 13:48 - 00000000 ____D () C:\Temp
2015-04-04 17:41 - 2012-02-09 06:27 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-04 17:28 - 2012-06-27 13:57 - 00000000 ____D () C:\ProgramData\MAGIX
2015-04-04 12:14 - 2015-02-18 15:52 - 00000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2015-04-02 19:01 - 2014-10-15 19:33 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-04-01 16:34 - 2011-07-11 05:41 - 00000000 ____D () C:\ProgramData\Skype
2015-03-31 19:51 - 2015-02-18 15:13 - 00000890 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-03-30 15:25 - 2014-03-19 21:13 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-03-26 16:45 - 2014-12-10 16:29 - 00000000 ____D () C:\Windows\system32\appraiser
2015-03-26 16:45 - 2014-05-06 17:38 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-03-23 15:24 - 2014-12-26 19:55 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MysteryTag
2015-03-22 19:48 - 2012-04-02 23:01 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-22 19:48 - 2012-04-02 23:01 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-22 19:48 - 2011-07-11 06:09 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-21 18:20 - 2013-12-31 12:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\XBMC
2015-03-21 17:18 - 2012-06-27 13:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MAGIX
2015-03-21 15:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-03-20 20:25 - 2009-07-14 07:08 - 00032576 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-18 18:33 - 2012-06-25 13:59 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Audacity
2015-03-17 19:20 - 2013-11-02 18:31 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-03-15 21:20 - 2015-02-19 18:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\WhenInRome_Realore_WildTanget
2015-03-15 16:58 - 2013-07-22 20:38 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\ShamanGS
2015-03-15 11:13 - 2015-02-15 16:45 - 00000000 ____D () C:\Windows\pss

==================== Files in the root of some directories =======

2012-03-27 10:26 - 2012-03-27 10:26 - 0000120 _____ () C:\Users\Tomáš\AppData\Roaming\1cfbf17e.dat
2015-02-18 15:52 - 2015-04-04 12:14 - 0000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\CFBEDSDX
2012-06-01 21:13 - 2012-04-09 11:38 - 3995886 _____ () C:\Users\Tomáš\AppData\Roaming\minecraft.jar
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\MXPUWBDF
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\SM
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\WGPYQE
2014-01-07 19:31 - 2014-01-07 19:31 - 0003383 _____ () C:\Users\Tomáš\AppData\Local\recently-used.xbel
2012-02-09 06:53 - 2012-08-04 20:11 - 0002528 _____ () C:\ProgramData\ArcadeDeluxe5.log
2015-04-04 20:59 - 2015-04-04 21:00 - 0000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-04-14 08:08

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Acer) (Fixed) (Total:222.45 GB) (Free:52.74 GB) NTFS
Drive d: (DATA) (Fixed) (Total:223.21 GB) (Free:213.14 GB) NTFS

Available physical RAM: 2585.42 MB
Total physical RAM: 4076.26 MB
Percentage of memory in use: 36%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C0205118)
Partition 1: (Not Active) - (Size=20 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=222.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=223.2 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Tom��\Desktop" je 3922 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcadeMovieService
"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hotkey Utility
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tom��^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tom��^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Banished.lnk
C:\PROGRA~3\{E03AD~1\Banished.exe --startup=1 [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

Az na tu velikost plochy to vypada v poradku. Mimochodem, zajimavy nazev adresare v dokumentech

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/
Stahnete a spustte

Ponechte zatrzitkou pouze u volby Remove disinfection tools

Kliknete na Run

Jak je na tom tedy pocitac?

Zdravím,

pc po "léčbě" a po novém nainstalování zbylých prohlížečů - mozilla, chrome šlape o dost rychleji ve všech krocích - zapnutí a naběhnutí, spouštění prohlížečů, spouštění aplikací. Je to dost nesrovnatelné.
EDIT: Tak s teď jsem zkusila si něco najít v nově nainstalovaný mozille a hezky mi tam OPĚT naskákaly AD OPTIONS, fakt už na ...........

Jela ta mozilla aspon chvili bez tech hlasek? Nebo to zas naskakalo hned pri prvnim pouziti?

první použití po instalaci byla startovní stránka FF - ta byla ok, pak google - ok, pak atlas.cz - v .....

chrome už ani radši nechci otevírat ...

Stahnete Revo http://www.stahuj.centrum.cz/utility_a_ ... installer/ a znovu odinstalujte prohlizece.

Stahnete SystemLook http://jpshortstuff.247fixes.com/SystemLook_x64.exe a ulozte ho na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Do okna zkopirujte tento skript

Kód: Vybrat vše

:filefind
*mozilla*
*firefox*
*chrome*

:regfind
mozilla
firefox
chrome

:folderfind
*mozilla*
*firefox*
*chrome*

kliknete na Look a chvili pockejte
Mel by na vas vyskocit log s nazvem Systemlook
Ten mi sem zkopirujte

A k tomu novy log z FRST

vkládám systemlook log:

SystemLook 30.07.11 by jpshortstuff
Log created at 21:43 on 17/04/2015 by Tomáš
Administrator - Elevation successful

========== filefind ==========

Searching for "*mozilla*"
C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py --a---- 6321 bytes [11:38 31/12/2013] [11:38 31/12/2013] 433C203BFC093CA1D01713DC07E7CAC7
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.py --a---- 5958 bytes [08:43 08/03/2011] [08:43 08/03/2011] 65E1BE2E3C595F8DFEE2B50C4C7C5E3B
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.pyo --a---- 4533 bytes [19:10 16/10/2014] [19:10 16/10/2014] 45D2238F389253AAB5A9D78DF79E896C
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\AN76PYHK\www.mozilla[1].xml --a---- 557 bytes [18:13 11/04/2015] [18:13 11/04/2015] 9F2914B0C497A6243C3FF2E023EDC8B8
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\V0ESWY5N\www.mozilla[1].xml --a---- 13 bytes [18:13 11/04/2015] [18:13 11/04/2015] C1DDEA3EF6BBEF3E7060A1A9AD89E4C5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\logo-mozillacz-lt[1].png --a---- 1140 bytes [18:13 11/04/2015] [18:13 11/04/2015] EB114F626D5B42C184DCBF99DA8CD6E1
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GLJ1KAAB\affiliates.mozilla.org_cs-600x268[1].png --a---- 175344 bytes [18:13 11/04/2015] [18:13 11/04/2015] 3CF86A74D86D19E8CF31669F2CC08FDC
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\mozilla-communities[1].png --a---- 13474 bytes [18:13 11/04/2015] [18:13 11/04/2015] CA3297976F796C3C7F95E301640A3165
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\mozilla-geolocation-service-narust-sbiranych-dat-600x319[1].png --a---- 69122 bytes [18:13 11/04/2015] [18:13 11/04/2015] 44773A03CB3959C4333C26A62529BE2C
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\mozilla-geolocation-service-pokryti-600x370[1].png --a---- 363331 bytes [18:13 11/04/2015] [18:13 11/04/2015] D3271346B5808C314D36E11195B433E8
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\6P2VFUY7\www.mozilla[1].xml --a---- 13 bytes [17:30 16/04/2015] [17:30 16/04/2015] C1DDEA3EF6BBEF3E7060A1A9AD89E4C5
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\8QEJU62P\www.mozilla[1].xml --a---- 558 bytes [17:31 16/04/2015] [17:31 16/04/2015] 3CFDDC622D5A8218AB69962DC0E4A122
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py --a---- 6321 bytes [10:32 31/12/2013] [10:32 31/12/2013] 433C203BFC093CA1D01713DC07E7CAC7
C:\Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\Browsers\mozilla.browser --a---- 13262 bytes [02:36 14/07/2009] [21:22 10/06/2009] 9FFA08AA85D403D9CC98CAC2956069AE
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\Browsers\mozilla.browser --a---- 13262 bytes [02:36 14/07/2009] [20:39 10/06/2009] 9FFA08AA85D403D9CC98CAC2956069AE
C:\Windows\winsxs\amd64_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_fdde508273949e1f\mozilla.browser --a---- 13262 bytes [20:37 13/07/2009] [20:39 10/06/2009] 9FFA08AA85D403D9CC98CAC2956069AE
C:\Windows\winsxs\x86_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_458b87598810c725\mozilla.browser --a---- 13262 bytes [20:46 13/07/2009] [21:22 10/06/2009] 9FFA08AA85D403D9CC98CAC2956069AE

Searching for "*firefox*"
C:\Program Files (x86)\Mozilla Firefox\firefox\firefox_setup_13.0.exe --a---- 16418544 bytes [11:20 04/04/2015] [06:11 05/06/2012] DE9A20024239803C8F5DF83493DB7F99
C:\Program Files (x86)\Mozilla Firefox\Plugins\WMP Firefox Plugin License.rtf --a---- 149569 bytes [11:20 04/04/2015] [08:43 30/03/2007] 1E9134DE80AA14C41B8745A08C3BBD4E
C:\Program Files (x86)\Mozilla Firefox\Plugins\WMP Firefox Plugin RelNotes.txt --a---- 3352 bytes [11:20 04/04/2015] [08:43 30/03/2007] BE9C48706472103EB4D2AD1E1B291CD9
C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_firefox3cookiejar.py --a---- 8345 bytes [11:38 31/12/2013] [11:38 31/12/2013] 61C405586ACA1CFD7311AF910266E4D9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\firefox-epic-64-bit-600x397[1].png --a---- 319758 bytes [18:13 11/04/2015] [18:13 11/04/2015] 8C3CC80C3A4F69F12C79B11654041EC2
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\firefox-small[1].png --a---- 6841 bytes [18:13 11/04/2015] [18:13 11/04/2015] F34256CA7E3152FB444110BFD376EDDC
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\header-firefox.98d0a02c957f[1].png --a---- 12696 bytes [18:13 11/04/2015] [18:13 11/04/2015] 98D0A02C957F4BD5353563054CCE1A89
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DFVEMNQB\firefox-os-150[1].jpg --a---- 6271 bytes [18:13 11/04/2015] [18:13 11/04/2015] 7A0205718EEC881E8BA312F449C6274B
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GLJ1KAAB\firefox-64[1].png --a---- 8972 bytes [18:13 11/04/2015] [18:13 11/04/2015] DD1A876E8962B16CAA1CC901E247A5B8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GLJ1KAAB\firefox-pro-android-sber-600x338[1].png --a---- 83707 bytes [18:13 11/04/2015] [18:13 11/04/2015] 5BACD759A4ED8C19451FDFADE60D1AA5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\firefox-logo.d3cb43a0a16f[1].png --a---- 14403 bytes [18:13 11/04/2015] [18:13 11/04/2015] D3CB43A0A16F39CA8C939104EFBF934A
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\firefox_new-bundle.4a24494b8107[1].js --a---- 121119 bytes [18:13 11/04/2015] [18:13 11/04/2015] 4A24494B810715B39E1001A31E5DB17A
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDSPWO0R\firefox_new-bundle.8b61dd8a39d8[1].css --a---- 82139 bytes [18:13 11/04/2015] [18:13 11/04/2015] 5EB6E22D03F5398E5DDD3C58251FA220
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BQ642UOJ\screen_firefox[1].jpg --a---- 29052 bytes [19:36 17/04/2015] [19:36 17/04/2015] E4E8AE15CDE5836B12CCDE5B2D48E1A4
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BWJ10ROR\firefox_new-bundle.4a24494b8107[1].js --a---- 121119 bytes [17:30 16/04/2015] [17:30 16/04/2015] 4A24494B810715B39E1001A31E5DB17A
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QU3ASUJ4\firefox_new-bundle.8b61dd8a39d8[1].css --a---- 82139 bytes [17:30 16/04/2015] [17:30 16/04/2015] 5EB6E22D03F5398E5DDD3C58251FA220
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_firefox3cookiejar.py --a---- 8345 bytes [10:32 31/12/2013] [10:32 31/12/2013] 61C405586ACA1CFD7311AF910266E4D9
C:\Users\Tomáš\Downloads\Firefox Setup Stub 31.0.exe --a---- 244120 bytes [20:36 02/08/2014] [20:36 02/08/2014] 2D122754D6884B01B54ACCEC9FB9CAAD
C:\Users\Tomáš\Downloads\Firefox Setup Stub 33.0.exe --a---- 244296 bytes [07:22 26/10/2014] [07:22 26/10/2014] E817C34BDDEFE1D1E481102A0EF0AD86
C:\Users\Tomáš\Downloads\Firefox Setup Stub 37.0.1.exe --a---- 243504 bytes [17:31 16/04/2015] [17:31 16/04/2015] 0563F1224D6C4634AA3579A19CD78A43
C:\Users\Tomáš\Downloads\wmpfirefoxplugin(1).exe --a---- 318904 bytes [13:05 24/07/2012] [13:05 24/07/2012] ED324284FA119EF0F240AC9E2262D666
C:\Users\Tomáš\Downloads\wmpfirefoxplugin.exe --a---- 318904 bytes [13:04 24/07/2012] [13:04 24/07/2012] ED324284FA119EF0F240AC9E2262D666
C:\Windows\erdnt\cache86\firefox.exe --a---- 376944 bytes [19:07 06/04/2015] [11:20 04/04/2015] BB69268B5F4277A1CFC36A237E27FD87
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\firefox.browser --a---- 2336 bytes [18:29 18/03/2013] [18:29 18/03/2013] 8E55C3D84FE4E59812B679FCCC8B6061
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\firefox.browser --a---- 2336 bytes [16:24 21/03/2013] [16:24 21/03/2013] 8E55C3D84FE4E59812B679FCCC8B6061

Searching for "*chrome*"
C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\appsharingchromehook64.dll --a---- 23200 bytes [15:38 21/11/2014] [15:21 07/10/2014] 53A6EC577B7310836DAA64C71800B953
C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\42.0.2311.90\42.0.2311.90_chrome64_installer.exe --a---- 47521360 bytes [17:37 16/04/2015] [17:15 14/04/2015] 797200668F87C03C271E440F16E33215
C:\Program Files (x86)\Google\Update\Install\{82C8E3CD-BEA8-4729-B8CC-1FE9401400DC}\40.0.2214.115_40.0.2214.111_chrome_updater.exe --a---- 840272 bytes [18:16 20/02/2015] [15:47 19/02/2015] F4CC03D0A936AD6780ADA614AE81B413
C:\Program Files (x86)\Google\Update\Install\{8AD1FA0B-1641-4D71-8400-9880835598CE}\41.0.2272.118_41.0.2272.101_chrome_updater.exe --a---- 864336 bytes [09:46 04/04/2015] [09:46 04/04/2015] 04A8F29E2CB7A633109E6AF1316F6E97
C:\Program Files (x86)\Google\Update\Install\{93CDC8A9-22E7-41BD-BAEA-70799A21D360}\40.0.2214.111_40.0.2214.94_chrome_updater.exe --a---- 1043024 bytes [11:13 07/02/2015] [16:41 05/02/2015] 1F9A2717F6C6D3440B1F4A59FF96C708
C:\Program Files (x86)\Google\Update\Install\{B3D40ABC-2D84-47B6-A211-D6C357CE3B41}\41.0.2272.101_41.0.2272.89_chrome_updater.exe --a---- 885840 bytes [18:27 20/03/2015] [21:36 19/03/2015] A38E9C48F13C11CAB641A0C91F8F12A1
C:\Program Files (x86)\Google\Update\Install\{D8AB6A2D-CF86-4E98-A5CB-72B99E1FDFD5}\41.0.2272.89_40.0.2214.115_chrome_updater.exe --a---- 10033232 bytes [19:15 11/03/2015] [18:09 10/03/2015] 7DF547F2E361A6ADC8DFAF9544C6A283
C:\Program Files (x86)\Google\Update\Install\{DC4D80E2-188E-42D2-BE1F-F2DA8CB283D4}\42.0.2311.90_chrome64_installer.exe --a---- 47521360 bytes [17:37 16/04/2015] [17:15 14/04/2015] 797200668F87C03C271E440F16E33215
C:\Program Files (x86)\Google\Update\Install\{EB65CF87-4F97-421D-9386-685FD6828259}\41.0.2272.118_chrome_installer.exe --a---- 41460816 bytes [16:29 04/04/2015] [00:01 01/04/2015] DA8AC392E864489F127D64048D12E043
C:\Program Files (x86)\Seznam.cz\distribution\install\cz.seznam.software.chromelisticka-1.4.4-win32.zip --a---- 3134303 bytes [10:02 07/12/2014] [15:14 13/11/2012] 058D130ABA737956149E90A920B019CA
C:\Program Files (x86)\Sony\Media Go\chrome.pak --a---- 2314182 bytes [08:47 29/06/2012] [08:47 29/06/2012] 5E1D2A9C59562290A592E74B3E3DC42A
C:\Program Files (x86)\Sony\Sony PC Companion\Plugins\{3124D88B-D984-410D-B211-FAFAD93F03DF}\XperiaTemplates\bookmarks\chrome.bookmarks.1.json --a---- 759 bytes [10:44 17/12/2012] [10:44 17/12/2012] 930D57D77F2068D655813D3F69875BDD
C:\Program Files (x86)\Sony\Sony PC Companion\Plugins\{3124D88B-D984-410D-B211-FAFAD93F03DF}\XperiaTemplates\bookmarks\chrome.manifest --a---- 2228 bytes [09:30 07/02/2013] [09:30 07/02/2013] 0BEEAF444851A3AB6897488260947A5E
C:\Program Files (x86)\Steam\bin\chromehtml.dll --a---- 682176 bytes [18:02 24/12/2012] [19:22 21/10/2014] 09E410186FE0F53FB03C6672DFEBC570
C:\Program Files (x86)\Steam\resource\layout\gamespage_grid_chrome.layout --a---- 2841 bytes [18:02 24/12/2012] [22:34 13/08/2014] 31F82813F089BCB12AF17A77D4CD0CD1
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\lib\ClientLibChrome.dat --a---- 1528 bytes [12:59 08/04/2014] [12:59 08/04/2014] 7EC17C498771D87E71AD08B29D3C4480
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\mod_chrome.dat --a---- 15799 bytes [12:59 08/04/2014] [12:59 08/04/2014] E2FADFC9855B4CEAA97BBD068A97480E
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-de_DE.swf --a---- 19893 bytes [12:59 08/04/2014] [12:59 08/04/2014] FAD7880E570AA2A33FA68BE04D8ABC87
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-el_GR.swf --a---- 19761 bytes [12:59 08/04/2014] [12:59 08/04/2014] 41B9AF3CE65042B73EDB30E6D0B66D32
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-en_AU.swf --a---- 19766 bytes [12:59 08/04/2014] [12:59 08/04/2014] 7026C9D2466109627247A48D7E2C9EE6
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-en_GB.swf --a---- 19473 bytes [12:59 08/04/2014] [12:59 08/04/2014] 748C516DCF8FDC9669C913FD46658074
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-en_US.swf --a---- 19762 bytes [12:59 08/04/2014] [12:59 08/04/2014] 93A7C163E91E1A14B0574EB0D63A6B73
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-es_ES.swf --a---- 19866 bytes [12:59 08/04/2014] [12:59 08/04/2014] 66F854601128D08DA1EC6D35D039CE05
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-fr_FR.swf --a---- 19878 bytes [12:59 08/04/2014] [12:59 08/04/2014] 94FFAB0799916C7A954EEBFEA041DBDD
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-it_IT.swf --a---- 19763 bytes [12:59 08/04/2014] [12:59 08/04/2014] 693BD9711434AE0556B3CA84B2123568
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-ko_KR.swf --a---- 19763 bytes [12:59 08/04/2014] [12:59 08/04/2014] 6536FA8386BFA81F2951C3620D54474D
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-pl_PL.swf --a---- 19466 bytes [12:59 08/04/2014] [12:59 08/04/2014] 4D422F201D075CF2B3796E9E3B6E8AD2
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-pt_BR.swf --a---- 19764 bytes [12:59 08/04/2014] [12:59 08/04/2014] 267A6F5CCAA5FF1C14A26EFD3BE03F6F
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-ro_RO.swf --a---- 19763 bytes [12:59 08/04/2014] [12:59 08/04/2014] 70B3AD040A9C00CAA0CFE898341FFDA9
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-ru_RU.swf --a---- 19760 bytes [12:59 08/04/2014] [12:59 08/04/2014] FE3EACACFFE85E523EF7B9224914A393
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\assets\locale\Chrome-tr_TR.swf --a---- 19473 bytes [12:59 08/04/2014] [12:59 08/04/2014] 60ACE76A5BEA4E4081B73A3062E59C7A
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome\themes\parchment\chromeAssets.swf --a---- 710724 bytes [15:10 20/03/2014] [15:10 20/03/2014] 98CBB61155BF5BBBC99A157D3C0D34F6
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\chrome-32[1].png --a---- 1310 bytes [17:35 16/04/2015] [17:35 16/04/2015] 89CD2ED868EB8ACB6D0A335F4489C7E6
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFYP493L\chromeuninstall3[1].htm --a---- 195822 bytes [19:38 17/04/2015] [19:38 17/04/2015] 36504DD9393E84F2F76BF2CFA3872362
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GLJ1KAAB\chrome-48[1].png --a---- 1834 bytes [18:10 11/04/2015] [18:10 11/04/2015] 3FE84B8B53D7401B32FABD0C70F211BB
C:\Users\Tomáš\AppData\Local\Temp\chrome_installer.log --a---- 29650 bytes [17:37 16/04/2015] [19:38 17/04/2015] E5F8D2D8F54F1B4683878697EA52342A
C:\Users\Tomáš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk --a---- 2182 bytes [13:48 21/12/2014] [16:07 15/12/2014] 16991F32728674D18F8C50BD436419D4
C:\Users\Tomáš\Desktop\skladiště\chromeinstall-7u67.exe --a---- 918440 bytes [13:45 01/09/2014] [13:45 01/09/2014] 9473F655CAE1A13C311C3FF1134D79DC
C:\Users\Tomáš\Downloads\ChromeSetup.exe --a---- 739848 bytes [18:23 30/03/2012] [19:31 30/03/2012] 826FA204FAE60E6D53E113F46B722336
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\chrome.browser --a---- 2107 bytes [18:29 18/03/2013] [18:29 18/03/2013] 8C54E6C4F9E0CC3274EA6D04AAE9436B
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\chrome.browser --a---- 2107 bytes [16:24 21/03/2013] [16:24 21/03/2013] 8C54E6C4F9E0CC3274EA6D04AAE9436B
C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf --a---- 410496 bytes [21:29 09/02/2015] [19:38 17/04/2015] B6639E9D5AB34DD498C2F59B7EB13164

========== regfind ==========

Searching for "mozilla"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\DOMStorage\mozilla.cz]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\DOMStorage\mozilla.org]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\DOMStorage\www.mozilla.org]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10"="Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Trident/6.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE8"="Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE7"="Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE6"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10-WP8"="Mozilla/5.0 (compatible; MSIE 10.0; Windows Phone 8.0; Trident/6.0; IEMobile/10.0; ARM; Touch)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-WP7"="Mozilla/5.0 (compatible; MSIE 9.0; Windows Phone OS 7.5; Trident/5.0; IEMobile/9.0)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-Xbox"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; Xbox)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IPad"="Mozilla/5.0 (iPad; CPU OS 5_0 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9A334 Safari/7534.48.3"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"BingBot"="Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\8b77259e_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\dcdb670a_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\plugin-container.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mozilla.cz]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mozilla.org]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.mozilla.org]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs]
"url24"="http://www.mozilla.cz/"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_CURRENT_USER\Software\Mozilla]
[HKEY_CURRENT_USER\Software\MozillaPlugins]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\4EA42A62D9304AC4784BF230120776FF]
"MOZILLASUB"="both"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SOFTWARE\RealNetworks\Update\6.0\Preferences\CfgWebBrowser1]
@="C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10"="Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Trident/6.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE8"="Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE7"="Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE6"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10-WP8"="Mozilla/5.0 (compatible; MSIE 10.0; Windows Phone 8.0; Trident/6.0; IEMobile/10.0; ARM; Touch)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-WP7"="Mozilla/5.0 (compatible; MSIE 9.0; Windows Phone OS 7.5; Trident/5.0; IEMobile/9.0)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-Xbox"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; Xbox)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IPad"="Mozilla/5.0 (iPad; CPU OS 5_0 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9A334 Safari/7534.48.3"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"BingBot"="Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\MozillaPlugins]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\Mozilla Firefox\Plugins\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E239E79D0F3E43448AC9DC382C0BD62]
"68AB67CA7DA79201B744BA0000000010"="02:\Software\MozillaPlugins\Adobe Reader\Path"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4EA42A62D9304AC4784BF230120776FF\Features]
"MOZILLASUB"="both"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3337465978-2193547489-3213491474-1001\Components\623431047B6C08F4F8DCBDEEB40F8C32]
"6BBFDF96D153C8B4988D68D79C0D2A4A"="C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Search\Gathering Manager]
"UserAgent"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla]
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Runtime Environment\1.7.0_67\MSI]
"MOZILLA"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows Search\Gathering Manager]
"UserAgent"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Mozilla]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\mozilla.org]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\mozilla.org\Mozilla]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"="NVIDIA stereo images plugin for Mozilla browsers"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"="NVIDIA 3D Vision Streaming plugin for Mozilla browsers"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming\MimeTypes\application/mozilla-3DV-streaming-plugin]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming\MimeTypes\application/mozilla-3DV-streaming-plugin]
"Description"="3D Vision Streaming Mozilla Plugin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MyHeritage.com\Family Tree Builder\Search\C:\Users\Tomáš\AppData\Roaming\Mozilla]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\DOMStorage\mozilla.cz]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\DOMStorage\mozilla.org]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\DOMStorage\www.mozilla.org]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10"="Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; Trident/6.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE8"="Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE7"="Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE6"="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE10-WP8"="Mozilla/5.0 (compatible; MSIE 10.0; Windows Phone 8.0; Trident/6.0; IEMobile/10.0; ARM; Touch)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-WP7"="Mozilla/5.0 (compatible; MSIE 9.0; Windows Phone OS 7.5; Trident/5.0; IEMobile/9.0)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IE9-Xbox"="Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; Xbox)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"IPad"="Mozilla/5.0 (iPad; CPU OS 5_0 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9A334 Safari/7534.48.3"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"BingBot"="Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\8b77259e_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\dcdb670a_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\plugin-container.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mozilla.cz]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mozilla.org]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.mozilla.org]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\TypedURLs]
"url24"="http://www.mozilla.cz/"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Mozilla]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\MozillaPlugins]
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"User Agent"="Mozilla/4.0 (compatible; MSIE 8.0; Win32)"

Searching for "firefox"
[HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\6BBFDF96D153C8B4988D68D79C0D2A4A]
"ProductName"="Windows Media Player Firefox Plugin"
[HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\6BBFDF96D153C8B4988D68D79C0D2A4A\SourceList\Media]
"DiskPrompt"="Windows Media Player Firefox Plugin Installation"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\8b77259e_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\dcdb670a_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\plugin-container.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.avi\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bin\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.csv\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.doc\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.docx\OpenWithList]
"c"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iso\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jar\OpenWithList]
"c"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jnlp\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m3u\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4a\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mobi\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp3\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp4\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpg\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.msi\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.odt\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pdf\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pps\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppt\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pptx\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.prc\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rar\OpenWithList]
"e"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.svg\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.torrent\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.txt\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wav\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wm\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wvx\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xcf\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xls\OpenWithList]
"c"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xlsx\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xltx\OpenWithList]
"a"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.zip\OpenWithList]
"b"="firefox.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Firefox]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Firefox\WWW_OpenURL]
"ProcessName"="firefox.exe"
[HKEY_CURRENT_USER\Software\Mozilla\Firefox]
[HKEY_CURRENT_USER\Software\Classes\.ogg]
"VLC.backup"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Classes\.ogv]
"VLC.backup"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Classes\.webm]
"VLC.backup"="FirefoxHTML"
[HKEY_CURRENT_USER\Software\Classes\Firefox URL]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SOFTWARE\RealNetworks\Update\6.0\Preferences\CfgWebBrowser1]
@="C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Classes\TypeLib\{BDEADEF0-C265-11D0-BCED-00A0C90AB50F}\1.0]
@="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"ProductName"="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\firefox.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"D:\Firefox\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\Mozilla Firefox\Plugins\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3337465978-2193547489-3213491474-1001\Components\623431047B6C08F4F8DCBDEEB40F8C32]
"6BBFDF96D153C8B4988D68D79C0D2A4A"="C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3337465978-2193547489-3213491474-1001\Products\6BBFDF96D153C8B4988D68D79C0D2A4A\InstallProperties]
"DisplayName"="Windows Media Player Firefox Plugin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}]
"DisplayName"="Windows Media Player Firefox Plugin"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Mozilla\Firefox]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"ProductName"="Microsoft SharePoint Plug-in for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"ProductName"="Adobe Reader Plugin for Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"="Handles PDFs in-place in Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MyHeritage.com\Family Tree Builder\Search\C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\NVIDIA Corporation\Global\Stereo3D\GameConfigs\firefox]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{F94B2F51-3EA6-406B-BBE3-33BC86444627}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Installer\Products\6BBFDF96D153C8B4988D68D79C0D2A4A]
"ProductName"="Windows Media Player Firefox Plugin"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Installer\Products\6BBFDF96D153C8B4988D68D79C0D2A4A\SourceList\Media]
"DiskPrompt"="Windows Media Player Firefox Plugin Installation"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Firefox"="Mozilla/5.0 (Windows NT 6.2; rv:12.0) Gecko/20100101 Firefox/12.0"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\8b77259e_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\dcdb670a_0]
@="{0.0.0.00000000}.{12267440-d4dc-46c0-a31e-1997ac10382f}|\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\plugin-container.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.avi\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bin\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.csv\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.doc\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.docx\OpenWithList]
"c"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iso\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jar\OpenWithList]
"c"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jnlp\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m3u\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4a\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mobi\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp3\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp4\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpg\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.msi\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.odt\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pdf\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pps\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppt\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pptx\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.prc\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rar\OpenWithList]
"e"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.svg\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.torrent\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.txt\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wav\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wm\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wvx\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xcf\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
"Progid"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xls\OpenWithList]
"c"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xlsx\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xltx\OpenWithList]
"a"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.zip\OpenWithList]
"b"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Firefox]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Firefox\WWW_OpenURL]
"ProcessName"="firefox.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Mozilla\Firefox]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Classes\.ogg]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Classes\.ogv]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Classes\.webm]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Classes\Firefox URL]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001_Classes\.ogg]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001_Classes\.ogv]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001_Classes\.webm]
"VLC.backup"="FirefoxHTML"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001_Classes\Firefox URL]

Searching for "chrome"
[HKEY_CURRENT_USER\Software\Google\Chrome]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.docx\OpenWithList]
"g"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\OpenWithList]
"f"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\OpenWithList]
"d"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\OpenWithList]
"j"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\OpenWithList]
"d"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList]
"f"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webp\OpenWithList]
"a"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\OpenWithList]
"c"="chrome.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
[HKEY_CURRENT_USER\Software\TeamViewer\Version7]
"Buddy_QuickPresExclusions"="chrome.exe devenv.exe mediamonkey.exe msnmsgr.exe opera.exe psr.exe super.exe wlmail.exe wlxphotogallery.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Components\0634B38E802C52345940D03200A3475A]
"AppSharingChromeHook.x64.dll"="Vz`gY,3K,?HcCDN2wW9tLync32With64Bits>PeTyMX]`S?Wyr3x}&a`E"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SOFTWARE\RealNetworks\Update\6.0\Preferences\CfgWebBrowser3]
@="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\ClickToRun\REGISTRY\MACHINE\Software\Classes\Installer\Components\613B99D5CFD7FCB4793B500086BB4113]
"{E83B4360-C208-4325-9504-0D23003A74A5},AppSharingChromeHook.x86.dll"="yh1BV3!!!!!!!!!MKKSkGimme_OnDemandData<LyncCoreFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\chrome.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\585C116796FF8294289A166F2CA944C5]
"99E80CA9B0328e74791254777B1F42AE"="C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\AppSharingChromeHook64.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A209A01C0E64CA44F9928F7B89FA3CAE]
"4433C6A79FC538B459C956675C2BD790"="C:\Program Files (x86)\Sony\Media Go\chrome.pak"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\No Chrome Offer Until]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update]
"LastInstallerSuccessLaunchCmdLine"=""C:\Program Files (x86)\Google\Chrome\Application\chrome.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{4DC8B4CA-1BDA-483e-B5FA-D3C12E15B62D}]
"UninstallString"="C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\Installer\setup.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{4DC8B4CA-1BDA-483e-B5FA-D3C12E15B62D}]
"InstallerSuccessLaunchCmdLine"=""C:\Program Files (x86)\Google\Chrome\Application\chrome.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{8A69D345-D564-463C-AFF1-A69D9E530F96}]
"ap"="x64-stable-multi-chrome"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{8A69D345-D564-463C-AFF1-A69D9E530F96}]
"UninstallString"="C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\Installer\setup.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{8A69D345-D564-463C-AFF1-A69D9E530F96}]
"UninstallArguments"=" --uninstall --multi-install --chrome --system-level --verbose-logging"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{8A69D345-D564-463C-AFF1-A69D9E530F96}]
"LastInstallerSuccessLaunchCmdLine"=""C:\Program Files (x86)\Google\Chrome\Application\chrome.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Update\Policy]
"Method"="jchrome"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\NVIDIA Corporation\Global\Stereo3D\GameConfigs\Chrome]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Google\Chrome]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\IEDevTools\Options\UAString]
"Chrome"="Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.docx\OpenWithList]
"g"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\OpenWithList]
"f"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\OpenWithList]
"d"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\OpenWithList]
"j"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\OpenWithList]
"d"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\OpenWithList]
"f"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webp\OpenWithList]
"a"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\OpenWithList]
"c"="chrome.exe"
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
[HKEY_USERS\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\TeamViewer\Version7]
"Buddy_QuickPresExclusions"="chrome.exe devenv.exe mediamonkey.exe msnmsgr.exe opera.exe psr.exe super.exe wlmail.exe wlxphotogallery.exe"

========== folderfind ==========

Searching for "*mozilla*"
C:\Program Files (x86)\Mozilla Firefox d------ [11:20 04/04/2015]
C:\ProgramData\Mozilla d------ [12:18 27/04/2012]
C:\Users\All Users\Mozilla d------ [12:18 27/04/2012]
C:\Users\Tomáš\AppData\Local\Mozilla d------ [20:41 02/04/2012]
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox d------ [20:40 02/04/2012]
C:\Users\Tomáš\AppData\Roaming\Mozilla d------ [20:41 02/04/2012]

Searching for "*firefox*"
C:\Program Files (x86)\Mozilla Firefox d------ [11:20 04/04/2015]
C:\Program Files (x86)\Mozilla Firefox\firefox d------ [11:20 04/04/2015]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0da31e97 d----c- [12:16 09/05/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0f54ec22 d----c- [12:12 07/05/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_16299fb8 d----c- [08:53 08/05/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_04b56586 d----c- [07:14 02/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_147bf88c d----c- [17:29 01/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_18361110 d----c- [19:31 17/06/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_858f57d3323d3d5c74f32279dce7191dfee16ffa_1681a92a d----c- [08:53 08/05/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_a55b1497f5d434663bf97e4ee6f393312a1fda_1b4062d9 d----c- [17:00 20/05/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0a50befe d----c- [09:32 12/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0d8fb30d d----c- [12:24 08/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0de09a22 d----c- [13:56 09/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_105cdfc5 d----c- [10:31 09/07/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_cba6769b1441f5b6130dfa8a193e88860731d_10342737 d----c- [16:58 09/03/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_2879ebe5e4a310354786f85dcabe2a4260be64_25c0cd70 d----c- [18:02 23/07/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_42c23a2f9c48b2fbec86235fc0bc21e77de64ed_1bd24184 d----c- [13:14 26/06/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_9230f378d6ec39c6c256ce94ec4b5c2555be3_1725b81e d----c- [16:52 29/03/2015]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a0f640acd52ecc0958971a06470cf6542ad547_25d7a5e0 d----c- [13:12 27/12/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a915a85ed056f2cfc7eb6685ed183f759fa2169b_05f82cf9 d----c- [15:25 15/02/2015]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_6051f6a636433a9aecac8f6d98747309c9245a7_0db057b1 d----c- [14:25 13/05/2013]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_78a1a4daec8b226a3e8764754f962edbf34e22b6_132af4d9 d----c- [18:43 17/12/2012]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_cbe14a77df171a6c32ecb82b14f4e91fb71fc8cb_2044674e d----c- [17:31 23/07/2012]
C:\Users\Tomáš\AppData\Local\Mozilla\Firefox d------ [20:41 02/04/2012]
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox d------ [20:40 02/04/2012]
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox d------ [20:41 02/04/2012]
C:\Users\Tomáš\Downloads\firefox d------ [20:09 07/09/2014]

Searching for "*chrome*"
C:\Program Files (x86)\Steam\bin\chrome.pak d------ [16:47 28/11/2013]
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\mod\chrome d------ [15:05 20/03/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3354fe9ef4d8742c8f3dc0b22c71add84c2cb_1aad7c32 d----c- [11:41 07/12/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3cb062db44d529eead442a12e848387889aab17_26254a6a d----c- [12:42 07/12/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3ef871bba67faba7298133d8886532ec4437907_252f8b13 d----c- [13:41 07/12/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_643837f748546db2725169f310fcb744c9d7db28_1eef3ed5 d----c- [16:36 08/01/2015]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_8adeaf71264b688caf3fc380b8d6976a7ebbeac_1827287d d----c- [20:46 20/09/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_ccc4ee239434e6fb3b1283e80d36878cbc1c7d_1be183b8 d----c- [19:09 27/09/2014]
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_e71011a1ef49c88fdbd44e4f53dc37d8f2c5f04b_18f79342 d----c- [19:11 27/09/2014]
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\storage\permanent\chrome d------ [08:45 03/07/2013]

-= EOF =-

FRST log je v další zprávě.

a FRST log:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-04-2015 04
Ran by Tomáš (administrator) on MILOUS on 17-04-2015 22:07:15
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available profiles: Tomáš)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLMSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
BootExecute: autocheck autochk * bddel.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3337465978-2193547489-3213491474-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-22] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-05-26] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-22] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2012-08-02] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll [2013-09-29] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3337465978-2193547489-3213491474-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-16] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml [2015-04-04]
FF Extension: Send to XBMC - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi [2013-05-05]
FF Extension: Google Translator for Firefox - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi [2012-05-05]
FF Extension: ImTranslator - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-05-05]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-03-25] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\my.cfg [2015-03-25] <==== ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-02-10] (Microsoft Corporation)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [255040 2014-09-07] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-15] (Electronic Arts)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 PcaSp60; C:\Windows\SysWOW64\DRIVERS\PcaSp60.sys [38912 2010-09-07] (Printing Communications Assoc., Inc. (PCAUSA))
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 zghsser; C:\Windows\System32\DRIVERS\zghsser.sys [134976 2013-09-11] (ZTE Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz134; \??\C:\Users\TOM~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-17 22:07 - 2015-04-17 22:07 - 00016987 _____ () C:\Users\Tomáš\Desktop\FRST.txt
2015-04-17 22:05 - 2015-04-17 22:07 - 00000000 ____D () C:\FRST
2015-04-17 22:04 - 2015-04-17 22:04 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe
2015-04-17 22:03 - 2015-04-17 22:03 - 02097664 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2015-04-17 21:43 - 2015-04-17 21:51 - 00128030 _____ () C:\Users\Tomáš\Desktop\SystemLook.txt
2015-04-17 21:42 - 2015-04-17 21:42 - 00165376 _____ () C:\Users\Tomáš\Desktop\SystemLook_x64.exe
2015-04-17 21:36 - 2015-04-17 21:36 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Tomáš\Desktop\revosetup.exe
2015-04-16 19:31 - 2015-04-16 19:31 - 00243504 _____ () C:\Users\Tomáš\Downloads\Firefox Setup Stub 37.0.1.exe
2015-04-16 19:27 - 2015-04-16 19:27 - 00000565 _____ () C:\Users\Tomáš\Desktop\DelFix.txt
2015-04-16 19:25 - 2015-04-16 19:25 - 00781312 _____ () C:\Users\Tomáš\Desktop\delfix_10.9.exe
2015-04-15 18:30 - 2015-03-25 05:24 - 03298816 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 02553856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 18:30 - 2015-03-25 05:23 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 18:30 - 2015-03-25 05:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 18:30 - 2015-03-25 05:23 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-15 18:30 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-15 18:30 - 2015-03-23 05:25 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 18:30 - 2015-03-23 05:25 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 18:30 - 2015-03-23 05:17 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 18:30 - 2015-03-17 07:22 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 18:30 - 2015-03-17 07:22 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 18:30 - 2015-03-17 07:22 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 18:30 - 2015-03-17 07:19 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 18:30 - 2015-03-17 07:16 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 18:30 - 2015-03-17 07:16 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-04-15 18:30 - 2015-03-17 07:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-15 18:30 - 2015-03-17 07:15 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 18:30 - 2015-03-17 07:15 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 18:30 - 2015-03-17 07:13 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 18:30 - 2015-03-17 07:13 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-04-15 18:30 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-04-15 18:30 - 2015-03-17 06:59 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-04-15 18:30 - 2015-03-17 06:56 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-15 18:30 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-15 18:30 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-15 18:30 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-15 18:30 - 2015-03-17 05:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-15 18:30 - 2015-03-17 05:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-15 18:30 - 2015-03-10 05:25 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 18:30 - 2015-03-10 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 18:30 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-15 18:30 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-15 18:30 - 2015-03-05 07:12 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 18:30 - 2015-03-05 06:05 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-15 18:29 - 2015-04-02 02:17 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 18:29 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-15 18:29 - 2015-03-13 06:32 - 24980480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 18:29 - 2015-03-13 06:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 18:29 - 2015-03-13 06:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-15 18:29 - 2015-03-13 06:09 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 18:29 - 2015-03-13 06:08 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 18:29 - 2015-03-13 06:08 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 18:29 - 2015-03-13 06:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-15 18:29 - 2015-03-13 06:07 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 18:29 - 2015-03-13 06:06 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-15 18:29 - 2015-03-13 06:00 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 18:29 - 2015-03-13 05:59 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 18:29 - 2015-03-13 05:55 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 18:29 - 2015-03-13 05:54 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 18:29 - 2015-03-13 05:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-15 18:29 - 2015-03-13 05:53 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-15 18:29 - 2015-03-13 05:50 - 06025216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 18:29 - 2015-03-13 05:44 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-15 18:29 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 18:29 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-15 18:29 - 2015-03-13 05:40 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 18:29 - 2015-03-13 05:32 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-15 18:29 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 18:29 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-15 18:29 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-15 18:29 - 2015-03-13 05:27 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 18:29 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-04-15 18:29 - 2015-03-13 05:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 18:29 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-04-15 18:29 - 2015-03-13 05:23 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 18:29 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 18:29 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-15 18:29 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-15 18:29 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-04-15 18:29 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-04-15 18:29 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-04-15 18:29 - 2015-03-13 05:08 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 18:29 - 2015-03-13 05:07 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 18:29 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-15 18:29 - 2015-03-13 05:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 18:29 - 2015-03-13 05:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-15 18:29 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-04-15 18:29 - 2015-03-13 05:00 - 14397440 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 18:29 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-15 18:29 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-15 18:29 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-15 18:29 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 18:29 - 2015-03-13 04:45 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 18:29 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 18:29 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-15 18:29 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-04-15 18:29 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 18:29 - 2015-03-13 04:33 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 18:29 - 2015-03-13 04:22 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 18:29 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 18:29 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 18:29 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-15 18:29 - 2015-03-04 06:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 18:29 - 2015-03-04 06:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 18:29 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 18:29 - 2015-02-25 05:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-13 19:05 - 2015-04-13 19:05 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Publish Providers
2015-04-12 20:01 - 2015-04-12 20:01 - 00000000 ____D () C:\Users\Tomáš\Documents\Updater
2015-04-11 22:08 - 2015-04-11 22:45 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-11 22:06 - 2015-04-11 22:06 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe
2015-04-11 21:50 - 2015-04-11 21:34 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-04-11 20:07 - 2015-04-17 21:39 - 00002180 _____ () C:\Windows\PFRO.log
2015-04-11 16:30 - 2015-04-17 21:39 - 00002240 _____ () C:\Windows\setupact.log
2015-04-11 16:30 - 2015-04-11 16:30 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-11 09:56 - 2015-04-11 09:56 - 00001728 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\Program Files\Defraggler
2015-04-11 08:20 - 2015-04-11 08:20 - 00000000 ____D () C:\Users\Tomáš\Desktop\záloha ccleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00002786 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-04-11 08:06 - 2015-04-11 08:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-11 07:58 - 2015-04-16 19:26 - 00000565 _____ () C:\DelFix.txt
2015-04-07 19:18 - 2015-04-07 19:18 - 00013256 _____ () C:\Users\Tomáš\Documents\kuchyn, hlava.veg
2015-04-06 20:54 - 2015-04-07 20:13 - 00000000 ____D () C:\Windows\erdnt
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄\AppData\Roaming\Macromedia
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ\AppData\Roaming\Macromedia
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ
2015-04-06 12:15 - 2015-04-06 12:15 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-MILOUS-Windows-7-Home-Premium-(64-bit).dat
2015-04-06 12:15 - 2015-04-06 12:15 - 00000000 ____D () C:\RegBackup
2015-04-06 11:50 - 2015-04-08 20:27 - 00000000 ____D () C:\Program Files\trend micro
2015-04-04 22:49 - 2015-04-04 22:49 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-04-04 22:13 - 2015-04-04 22:13 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Tomáš\Downloads\sh-remover.exe
2015-04-04 21:09 - 2015-04-04 21:11 - 155159296 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\msert.exe
2015-04-04 21:03 - 2015-04-04 21:04 - 41840320 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\Windows-KB890830-x64-V5.22.exe
2015-04-04 20:59 - 2015-04-04 21:00 - 00000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-04-04 20:59 - 2015-04-04 20:59 - 07783472 _____ () C:\Users\Tomáš\Downloads\Infigo_setup.exe
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 18:20 - 2015-04-06 11:01 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-04-04 17:47 - 2015-04-04 17:47 - 21578888 _____ (SUPERAntiSpyware) C:\Users\Tomáš\Downloads\SUPERAntiSpyware.exe
2015-04-04 17:42 - 2015-03-13 17:38 - 00622224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-04 17:40 - 2015-03-13 21:41 - 32114888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 24775368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 20466376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 17258024 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13297144 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13210080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10775080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10715864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10262160 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-04 17:40 - 2015-03-13 21:41 - 03611792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 03249352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 02906928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00997856 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00970384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00944784 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00930448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00909512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00878328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00354112 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00306208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00178512 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-04 17:12 - 2015-04-04 17:17 - 00026656 _____ () C:\Windows\system32\bddel.dat
2015-04-04 13:20 - 2015-04-17 21:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-04 12:14 - 2015-04-04 12:14 - 00002806 _____ () C:\Users\Tomáš\Downloads\software_removal_tool.log
2015-04-01 19:04 - 2015-04-06 13:16 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-01 16:34 - 2015-04-01 16:34 - 00000000 ____D () C:\Users\Tomáš\Tracing
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-03-23 15:21 - 2015-03-23 15:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\HomeMakeover3PC
2015-03-21 21:35 - 2015-03-21 21:35 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\MAGIX
2015-03-21 17:17 - 2003-04-18 17:29 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2015-03-21 17:11 - 2015-03-21 17:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Logitech
2015-03-21 17:07 - 2015-03-21 17:07 - 03581480 _____ (MAGIX AG) C:\Users\Tomáš\Downloads\photo_manager_9_int.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-17 22:01 - 2013-11-02 18:40 - 00004964 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for MILOUS-Tomáš Milouš
2015-04-17 21:47 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-17 21:47 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-17 21:46 - 2012-02-07 21:37 - 10297270 _____ () C:\Windows\system32\perfh005.dat
2015-04-17 21:46 - 2012-02-07 21:37 - 03426746 _____ () C:\Windows\system32\perfc005.dat
2015-04-17 21:46 - 2009-07-14 07:13 - 00006544 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-17 21:44 - 2012-02-09 06:26 - 01283097 _____ () C:\Windows\WindowsUpdate.log
2015-04-17 21:40 - 2014-03-19 21:13 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\LogMeIn Hamachi
2015-04-17 21:40 - 2012-03-30 19:22 - 00000000 ____D () C:\ProgramData\clear.fi
2015-04-17 21:39 - 2012-02-09 06:28 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-17 21:39 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-17 21:38 - 2012-03-30 20:23 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Google
2015-04-17 21:38 - 2012-03-30 20:23 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-17 09:17 - 2014-09-29 12:16 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{83A7A283-55C2-4354-9C5A-3085613F5987}
2015-04-16 21:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2015-04-16 19:07 - 2014-05-06 17:38 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-16 19:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-04-16 19:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2015-04-16 19:06 - 2014-12-10 16:29 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-16 03:11 - 2013-07-14 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-13 19:05 - 2014-12-22 18:04 - 00000000 ____D () C:\Users\Tomáš\Documents\hovno
2015-04-13 19:04 - 2014-10-11 19:32 - 00070656 ___SH () C:\Users\Tomáš\Documents\Thumbs.db
2015-04-12 22:01 - 2012-04-03 00:36 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2015-04-11 08:10 - 2012-11-26 20:07 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Pro
2015-04-11 08:10 - 2012-08-18 18:32 - 00000000 ____D () C:\Windows\Minidump
2015-04-11 08:10 - 2012-08-12 13:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\TeamViewer
2015-04-11 08:10 - 2012-05-14 20:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Skype
2015-04-11 08:10 - 2007-07-12 03:49 - 00000000 ____D () C:\Windows\Panther
2015-04-08 19:18 - 2014-06-13 15:26 - 00000000 ____D () C:\Users\Tomáš\Desktop\skladiště
2015-04-07 20:15 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2015-04-07 20:13 - 2009-07-14 04:34 - 21757952 _____ () C:\Windows\system32\config\SYSTEM.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 105644032 _____ () C:\Windows\system32\config\SOFTWARE.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00524288 _____ () C:\Windows\system32\config\DEFAULT.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2015-04-07 19:44 - 2014-05-05 15:49 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Battle.net
2015-04-07 19:42 - 2014-05-22 14:54 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2015-04-07 19:39 - 2014-12-03 18:50 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-07 19:12 - 2012-11-10 11:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\vlc
2015-04-06 21:53 - 2012-09-10 08:56 - 00002428 ____N () C:\Users\Public\Desktop\WildTangent Games App - wildgames.lnk
2015-04-06 21:53 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-06 21:08 - 2013-03-13 18:10 - 00000000 ____D () C:\Users\Tomá
2015-04-06 18:05 - 2009-03-12 11:30 - 00000000 ____D () C:\Windows\LP
2015-04-06 17:14 - 2012-03-30 19:34 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Adobe
2015-04-06 12:37 - 2011-07-11 06:08 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-04 23:42 - 2012-05-14 20:43 - 00010521 _____ () C:\Windows\system32\lvcoinst.log
2015-04-04 23:30 - 2012-12-12 13:17 - 00003694 _____ () C:\Windows\System32\Tasks\Program k provádění aktualizací online Adobe
2015-04-04 23:19 - 2014-01-06 19:04 - 00000000 ____D () C:\Users\Tomáš\.thumbnails
2015-04-04 23:19 - 2013-01-07 16:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Sony
2015-04-04 23:19 - 2012-12-24 20:01 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-04 23:19 - 2012-04-21 10:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Microsoft Help
2015-04-04 23:19 - 2012-02-09 06:53 - 00000000 ____D () C:\ProgramData\Temp
2015-04-04 22:50 - 2014-05-09 10:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\AVG
2015-04-04 22:50 - 2012-05-31 18:24 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\AVG
2015-04-04 22:48 - 2014-05-09 10:07 - 00000000 ____D () C:\ProgramData\AVG
2015-04-04 19:19 - 2013-01-07 16:14 - 00000000 ____D () C:\ProgramData\Sony Corporation
2015-04-04 19:19 - 2012-12-11 21:06 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-04-04 19:19 - 2012-05-05 23:24 - 00000000 ____D () C:\Program Files (x86)\PatchBeam
2015-04-04 19:17 - 2014-12-07 12:02 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Seznam.cz
2015-04-04 18:30 - 2012-03-30 18:59 - 00000000 ____D () C:\Users\Tomáš
2015-04-04 18:20 - 2012-11-09 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-04-04 18:19 - 2011-07-11 06:08 - 00000000 ____D () C:\ProgramData\Adobe
2015-04-04 18:17 - 2012-03-30 19:47 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Adobe
2015-04-04 17:43 - 2014-11-22 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-04 17:43 - 2012-04-08 13:48 - 00000000 ____D () C:\Temp
2015-04-04 17:41 - 2012-02-09 06:27 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-04 17:28 - 2012-06-27 13:57 - 00000000 ____D () C:\ProgramData\MAGIX
2015-04-04 12:14 - 2015-02-18 15:52 - 00000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2015-04-02 19:01 - 2014-10-15 19:33 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-04-01 16:34 - 2011-07-11 05:41 - 00000000 ____D () C:\ProgramData\Skype
2015-04-01 11:16 - 2012-03-30 20:21 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-31 19:51 - 2015-02-18 15:13 - 00000890 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-03-30 15:25 - 2014-03-19 21:13 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-03-23 15:24 - 2014-12-26 19:55 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MysteryTag
2015-03-22 19:48 - 2012-04-02 23:01 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-22 19:48 - 2012-04-02 23:01 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-22 19:48 - 2011-07-11 06:09 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-21 18:20 - 2013-12-31 12:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\XBMC
2015-03-21 17:18 - 2012-06-27 13:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MAGIX
2015-03-21 15:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-03-20 20:25 - 2009-07-14 07:08 - 00032576 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-18 18:33 - 2012-06-25 13:59 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Audacity

==================== Files in the root of some directories =======

2012-03-27 10:26 - 2012-03-27 10:26 - 0000120 _____ () C:\Users\Tomáš\AppData\Roaming\1cfbf17e.dat
2015-02-18 15:52 - 2015-04-04 12:14 - 0000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\CFBEDSDX
2012-06-01 21:13 - 2012-04-09 11:38 - 3995886 _____ () C:\Users\Tomáš\AppData\Roaming\minecraft.jar
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\MXPUWBDF
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\SM
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\WGPYQE
2014-01-07 19:31 - 2014-01-07 19:31 - 0003383 _____ () C:\Users\Tomáš\AppData\Local\recently-used.xbel
2012-02-09 06:53 - 2012-08-04 20:11 - 0002528 _____ () C:\ProgramData\ArcadeDeluxe5.log
2015-04-04 20:59 - 2015-04-04 21:00 - 0000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-04-14 08:08

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Acer) (Fixed) (Total:222.45 GB) (Free:47.61 GB) NTFS
Drive d: (DATA) (Fixed) (Total:223.21 GB) (Free:213.14 GB) NTFS

Available physical RAM: 2336.52 MB
Total physical RAM: 4076.26 MB
Percentage of memory in use: 42%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C0205118)
Partition 1: (Not Active) - (Size=20 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=222.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=223.2 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Tom��\Desktop" je 3888 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcadeMovieService
"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hotkey Utility
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tom��^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tom��^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Banished.lnk
C:\PROGRA~3\{E03AD~1\Banished.exe --startup=1 [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)

FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-22] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-05-26] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-22] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2012-08-02] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll [2013-09-29] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3337465978-2193547489-3213491474-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-16] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml [2015-04-04]
FF Extension: Send to XBMC - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi [2013-05-05]
FF Extension: Google Translator for Firefox - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi [2012-05-05]
FF Extension: ImTranslator - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-05-05]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-03-25] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\my.cfg [2015-03-25] <==== ATTENTION

S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.py
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.pyo
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\AN76PYHK\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\V0ESWY5N\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\6P2VFUY7\www.mozilla[1].xml
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\8QEJU62P\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py
C:\Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\Browsers\mozilla.browser
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\Browsers\mozilla.browser
C:\Windows\winsxs\amd64_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_fdde508273949e1f\mozilla.browser
C:\Windows\winsxs\x86_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_458b87598810c725\mozilla.browser
C:\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\Downloads\Firefox Setup Stub 31.0.exe
C:\Users\Tomáš\Downloads\Firefox Setup Stub 33.0.exe
C:\Users\Tomáš\Downloads\wmpfirefoxplugin(1).exe
C:\Users\Tomáš\Downloads\wmpfirefoxplugin.exe
C:\Windows\erdnt\cache86\firefox.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\firefox.browser
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\firefox.browser
C:\Program Files (x86)\Google
C:\Program Files (x86)\Seznam.cz
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files
C:\Users\Tomáš\AppData\Local\Temp
C:\Users\Tomáš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk
C:\Users\Tomáš\Desktop\skladiště\chromeinstall-7u67.exe
C:\Users\Tomáš\Downloads\ChromeSetup.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\chrome.browser
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\chrome.browser
C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf
C:\ProgramData\Mozilla
C:\Users\All Users\Mozilla
C:\Users\Tomáš\AppData\Local\Mozilla
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\AppData\Roaming\Mozilla
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0da31e97
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0f54ec22
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_16299fb8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_04b56586
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_147bf88c
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_18361110
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_858f57d3323d3d5c74f32279dce7191dfee16ffa_1681a92a
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_a55b1497f5d434663bf97e4ee6f393312a1fda_1b4062d9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0a50befe
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0d8fb30d
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0de09a22
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_105cdfc5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_cba6769b1441f5b6130dfa8a193e88860731d_10342737
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_2879ebe5e4a310354786f85dcabe2a4260be64_25c0cd70
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_42c23a2f9c48b2fbec86235fc0bc21e77de64ed_1bd24184
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_9230f378d6ec39c6c256ce94ec4b5c2555be3_1725b81e
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a0f640acd52ecc0958971a06470cf6542ad547_25d7a5e0
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a915a85ed056f2cfc7eb6685ed183f759fa2169b_05f82cf9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_6051f6a636433a9aecac8f6d98747309c9245a7_0db057b1
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_78a1a4daec8b226a3e8764754f962edbf34e22b6_132af4d9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_cbe14a77df171a6c32ecb82b14f4e91fb71fc8cb_2044674e
C:\Users\Tomáš\AppData\Local\Mozilla\Firefox
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox
C:\Users\Tomáš\Downloads\firefox
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3354fe9ef4d8742c8f3dc0b22c71add84c2cb_1aad7c32
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3cb062db44d529eead442a12e848387889aab17_26254a6a
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3ef871bba67faba7298133d8886532ec4437907_252f8b13
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_643837f748546db2725169f310fcb744c9d7db28_1eef3ed5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_8adeaf71264b688caf3fc380b8d6976a7ebbeac_1827287d
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_ccc4ee239434e6fb3b1283e80d36878cbc1c7d_1be183b8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_e71011a1ef49c88fdbd44e4f53dc37d8f2c5f04b_18f79342
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\storage\permanent\chrome

2015-04-11 22:06 - 2015-04-11 22:06 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe
2015-04-11 21:50 - 2015-04-11 21:34 - 00024064 _____ () C:\Windows\zoek-delete.exe

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

zdravím

,

vkládám log

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-04-2015 01
Ran by Tomáš at 2015-04-18 14:34:38 Run:1
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available profiles: Tomáš)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)

FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-22] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-05-26] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-22] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2012-08-02] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll [2013-09-29] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-05-26] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3337465978-2193547489-3213491474-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-16] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml [2015-04-04]
FF Extension: Send to XBMC - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi [2013-05-05]
FF Extension: Google Translator for Firefox - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi [2012-05-05]
FF Extension: ImTranslator - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-05-05]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-03-25] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\my.cfg [2015-03-25] <==== ATTENTION

S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.py
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.pyo
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\AN76PYHK\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\V0ESWY5N\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\6P2VFUY7\www.mozilla[1].xml
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\8QEJU62P\www.mozilla[1].xml
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py
C:\Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\Browsers\mozilla.browser
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\Browsers\mozilla.browser
C:\Windows\winsxs\amd64_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_fdde508273949e1f\mozilla.browser
C:\Windows\winsxs\x86_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_458b87598810c725\mozilla.browser
C:\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\Downloads\Firefox Setup Stub 31.0.exe
C:\Users\Tomáš\Downloads\Firefox Setup Stub 33.0.exe
C:\Users\Tomáš\Downloads\wmpfirefoxplugin(1).exe
C:\Users\Tomáš\Downloads\wmpfirefoxplugin.exe
C:\Windows\erdnt\cache86\firefox.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\firefox.browser
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\firefox.browser
C:\Program Files (x86)\Google
C:\Program Files (x86)\Seznam.cz
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files
C:\Users\Tomáš\AppData\Local\Temp
C:\Users\Tomáš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk
C:\Users\Tomáš\Desktop\skladiště\chromeinstall-7u67.exe
C:\Users\Tomáš\Downloads\ChromeSetup.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\chrome.browser
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\chrome.browser
C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf
C:\ProgramData\Mozilla
C:\Users\All Users\Mozilla
C:\Users\Tomáš\AppData\Local\Mozilla
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\AppData\Roaming\Mozilla
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0da31e97
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0f54ec22
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_16299fb8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_04b56586
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_147bf88c
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_18361110
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_858f57d3323d3d5c74f32279dce7191dfee16ffa_1681a92a
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_a55b1497f5d434663bf97e4ee6f393312a1fda_1b4062d9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0a50befe
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0d8fb30d
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0de09a22
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_105cdfc5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_cba6769b1441f5b6130dfa8a193e88860731d_10342737
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_2879ebe5e4a310354786f85dcabe2a4260be64_25c0cd70
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_42c23a2f9c48b2fbec86235fc0bc21e77de64ed_1bd24184
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_9230f378d6ec39c6c256ce94ec4b5c2555be3_1725b81e
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a0f640acd52ecc0958971a06470cf6542ad547_25d7a5e0
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a915a85ed056f2cfc7eb6685ed183f759fa2169b_05f82cf9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_6051f6a636433a9aecac8f6d98747309c9245a7_0db057b1
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_78a1a4daec8b226a3e8764754f962edbf34e22b6_132af4d9
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_cbe14a77df171a6c32ecb82b14f4e91fb71fc8cb_2044674e
C:\Users\Tomáš\AppData\Local\Mozilla\Firefox
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox
C:\Users\Tomáš\Downloads\firefox
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3354fe9ef4d8742c8f3dc0b22c71add84c2cb_1aad7c32
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3cb062db44d529eead442a12e848387889aab17_26254a6a
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3ef871bba67faba7298133d8886532ec4437907_252f8b13
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_643837f748546db2725169f310fcb744c9d7db28_1eef3ed5
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_8adeaf71264b688caf3fc380b8d6976a7ebbeac_1827287d
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_ccc4ee239434e6fb3b1283e80d36878cbc1c7d_1be183b8
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_e71011a1ef49c88fdbd44e4f53dc37d8f2c5f04b_18f79342
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\storage\permanent\chrome

2015-04-11 22:06 - 2015-04-11 22:06 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe
2015-04-11 21:50 - 2015-04-11 21:34 - 00024064 _____ () C:\Windows\zoek-delete.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value deleted successfully.
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default => Should not be moved.
Firefox DefaultSearchEngine deleted successfully.
Firefox homepage deleted successfully.
"HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer" => Key deleted successfully.
C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll => Moved successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => Key deleted successfully.
C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll => Moved successfully.
"HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect_x86_64" => Key deleted successfully.
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer" => Key deleted successfully.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin" => Key deleted successfully.
C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2" => Key deleted successfully.
C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2" => Key deleted successfully.
C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => Key deleted successfully.
C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0" => Key deleted successfully.
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-11-02] (Microsoft Corporation) not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922" => Key deleted successfully.
C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109" => Key deleted successfully.
C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision" => Key deleted successfully.
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming" => Key deleted successfully.
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0" => Key deleted successfully.
C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => Key deleted successfully.
C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => Key deleted successfully.
C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.4" => Key deleted successfully.
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0" => Key deleted successfully.
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0" => Key deleted successfully.
C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\22\NP_wtapp.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\Adobe Reader" => Key deleted successfully.
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect" => Key deleted successfully.
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll => Moved successfully.
"HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0" => Key deleted successfully.
C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll => Moved successfully.
C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll => Moved successfully.
C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\searchplugins\google-default.xml => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\jid0-YCM0p5WlCGjvBJcZhAusQ5h26wM@jetpack.xpi => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\translator@zoli.bod.xpi => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} not found.
C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\my-prefs.js => Moved successfully.
C:\Program Files (x86)\mozilla firefox\my.cfg => Moved successfully.
catchme => Service deleted successfully.
MBAMSwissArmy => Service deleted successfully.
C:\Program Files (x86)\XBMC\portable_data\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py => Moved successfully.
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.py => Moved successfully.
C:\Program Files (x86)\XBMC\system\python\Lib\_MozillaCookieJar.pyo => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\AN76PYHK\www.mozilla[1].xml => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Internet Explorer\DOMStore\V0ESWY5N\www.mozilla[1].xml => Moved successfully.

"C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files" directory move:

Could not move "C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files" directory. => Scheduled to move on reboot.

C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\6P2VFUY7\www.mozilla[1].xml => Moved successfully.
C:\Users\Tomáš\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\8QEJU62P\www.mozilla[1].xml => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\XBMC\addons\script.module.mechanize\lib\mechanize\_mozillacookiejar.py => Moved successfully.
C:\Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\Browsers\mozilla.browser => Moved successfully.
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\Browsers\mozilla.browser => Moved successfully.
C:\Windows\winsxs\amd64_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_fdde508273949e1f\mozilla.browser => Moved successfully.
C:\Windows\winsxs\x86_netfx-aspnet_regbrowser_files_b03f5f7f11d50a3a_6.1.7600.16385_none_458b87598810c725\mozilla.browser => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox => Moved successfully.
C:\Users\Tomáš\Downloads\Firefox Setup Stub 31.0.exe => Moved successfully.
C:\Users\Tomáš\Downloads\Firefox Setup Stub 33.0.exe => Moved successfully.
C:\Users\Tomáš\Downloads\wmpfirefoxplugin(1).exe => Moved successfully.
C:\Users\Tomáš\Downloads\wmpfirefoxplugin.exe => Moved successfully.
C:\Windows\erdnt\cache86\firefox.exe => Moved successfully.
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\firefox.browser => Moved successfully.
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\firefox.browser => Moved successfully.
C:\Program Files (x86)\Google => Moved successfully.
C:\Program Files (x86)\Seznam.cz => Moved successfully.

"C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files" directory move:

Could not move "C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files" directory. => Scheduled to move on reboot.

"C:\Users\Tomáš\AppData\Local\Temp" directory move:

Could not move "C:\Users\Tomáš\AppData\Local\Temp" directory. => Scheduled to move on reboot.

C:\Users\Tomáš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk => Moved successfully.
C:\Users\Tomáš\Desktop\skladiště\chromeinstall-7u67.exe => Moved successfully.
C:\Users\Tomáš\Downloads\ChromeSetup.exe => Moved successfully.
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers\chrome.browser => Moved successfully.
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\Browsers\chrome.browser => Moved successfully.
C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf => Moved successfully.
C:\ProgramData\Mozilla => Moved successfully.
"C:\Users\All Users\Mozilla" => File/Directory not found.
C:\Users\Tomáš\AppData\Local\Mozilla => Moved successfully.
C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox => Moved successfully.
C:\Users\Tomáš\AppData\Roaming\Mozilla => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0da31e97 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_0f54ec22 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_61e748c74bf3b9507fe86b60ecbdb5b0641ca63b_16299fb8 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_04b56586 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_147bf88c => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_688179a6e96a52a2cf6f9853629ca67b99978f5_18361110 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_858f57d3323d3d5c74f32279dce7191dfee16ffa_1681a92a => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_a55b1497f5d434663bf97e4ee6f393312a1fda_1b4062d9 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0a50befe => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0d8fb30d => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_0de09a22 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_c9122312142097537c2199b77dd24d97f3b13fa_105cdfc5 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_firefox.exe_cba6769b1441f5b6130dfa8a193e88860731d_10342737 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_2879ebe5e4a310354786f85dcabe2a4260be64_25c0cd70 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_42c23a2f9c48b2fbec86235fc0bc21e77de64ed_1bd24184 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_9230f378d6ec39c6c256ce94ec4b5c2555be3_1725b81e => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a0f640acd52ecc0958971a06470cf6542ad547_25d7a5e0 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_firefox.exe_a915a85ed056f2cfc7eb6685ed183f759fa2169b_05f82cf9 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_6051f6a636433a9aecac8f6d98747309c9245a7_0db057b1 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_78a1a4daec8b226a3e8764754f962edbf34e22b6_132af4d9 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\Critical_firefox.exe_cbe14a77df171a6c32ecb82b14f4e91fb71fc8cb_2044674e => Moved successfully.
"C:\Users\Tomáš\AppData\Local\Mozilla\Firefox" => File/Directory not found.
"C:\Users\Tomáš\AppData\Local\VirtualStore\Program Files (x86)\Mozilla Firefox" => File/Directory not found.
"C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox" => File/Directory not found.
C:\Users\Tomáš\Downloads\firefox => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3354fe9ef4d8742c8f3dc0b22c71add84c2cb_1aad7c32 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3cb062db44d529eead442a12e848387889aab17_26254a6a => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_chrome.exe_3ef871bba67faba7298133d8886532ec4437907_252f8b13 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_643837f748546db2725169f310fcb744c9d7db28_1eef3ed5 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_8adeaf71264b688caf3fc380b8d6976a7ebbeac_1827287d => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_ccc4ee239434e6fb3b1283e80d36878cbc1c7d_1be183b8 => Moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppHang_chrome.exe_e71011a1ef49c88fdbd44e4f53dc37d8f2c5f04b_18f79342 => Moved successfully.
"C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\s67l7c61.default\storage\permanent\chrome" => File/Directory not found.
C:\Users\Tomáš\Desktop\mbar-1.09.1.1004.exe => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 397.7 MB temporary data.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-04-18 14:38:39)<=

C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files => Is moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files => Is moved successfully.
"C:\Users\Tomáš\AppData\Local\Temp" => Directory could not move.

==== End of Fixlog 14:38:41 ====

Znovu stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

Novy log z FRST

# AdwCleaner v4.201 - Log vytvořen 18/04/2015 v 15:24:08
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-18.3 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : Tomáš - MILOUS
# Spuštěno z : C:\Users\Tomáš\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění

***** [ Služby ] *****

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\Users\Tomáš\Documents\Updater

***** [ Naplánované úlohy ] *****

***** [ Zástupci ] *****

***** [ Registry ] *****

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17728

*************************

AdwCleaner[R0].txt - [772 bytů] - [18/04/2015 15:23:06]
AdwCleaner[S0].txt - [697 bytů] - [18/04/2015 15:24:08]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [754 bytů] ##########

FRST log

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-04-2015 01
Ran by Tomáš (administrator) on MILOUS on 18-04-2015 15:27:02
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available profiles: Tomáš)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLMSService.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Users\Tomáš\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\msosync.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll (Microsoft Corporation)
BootExecute: autocheck autochk * bddel.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3337465978-2193547489-3213491474-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3337465978-2193547489-3213491474-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-02-10] (Microsoft Corporation)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [255040 2014-09-07] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-15] (Electronic Arts)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 PcaSp60; C:\Windows\SysWOW64\DRIVERS\PcaSp60.sys [38912 2010-09-07] (Printing Communications Assoc., Inc. (PCAUSA))
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 zghsser; C:\Windows\System32\DRIVERS\zghsser.sys [134976 2013-09-11] (ZTE Corporation)
S3 cpuz134; \??\C:\Users\TOM~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-18 15:23 - 2015-04-18 15:24 - 00000000 ____D () C:\AdwCleaner
2015-04-18 15:21 - 2015-04-18 15:21 - 02217984 _____ () C:\Users\Tomáš\Desktop\adwcleaner_4.201.exe
2015-04-18 14:34 - 2015-04-18 14:34 - 00000000 ____D () C:\Users\Tomáš\Desktop\FRST-OlderVersion
2015-04-17 22:18 - 2015-04-17 22:18 - 00011907 _____ () C:\Users\Tomáš\Desktop\Addition.zip
2015-04-17 22:08 - 2015-04-17 22:08 - 00043502 _____ () C:\Users\Tomáš\Desktop\Addition.txt
2015-04-17 22:07 - 2015-04-18 15:27 - 00011430 _____ () C:\Users\Tomáš\Desktop\FRST.txt
2015-04-17 22:05 - 2015-04-18 15:27 - 00000000 ____D () C:\FRST
2015-04-17 22:03 - 2015-04-18 14:34 - 02098176 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2015-04-17 21:43 - 2015-04-17 21:51 - 00128030 _____ () C:\Users\Tomáš\Desktop\SystemLook.txt
2015-04-17 21:42 - 2015-04-17 21:42 - 00165376 _____ () C:\Users\Tomáš\Desktop\SystemLook_x64.exe
2015-04-17 21:36 - 2015-04-17 21:36 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Tomáš\Desktop\revosetup.exe
2015-04-16 19:31 - 2015-04-16 19:31 - 00243504 _____ () C:\Users\Tomáš\Downloads\Firefox Setup Stub 37.0.1.exe
2015-04-16 19:27 - 2015-04-16 19:27 - 00000565 _____ () C:\Users\Tomáš\Desktop\DelFix.txt
2015-04-16 19:25 - 2015-04-16 19:25 - 00781312 _____ () C:\Users\Tomáš\Desktop\delfix_10.9.exe
2015-04-15 18:30 - 2015-03-25 05:24 - 03298816 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 02553856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 18:30 - 2015-03-25 05:24 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 18:30 - 2015-03-25 05:23 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 18:30 - 2015-03-25 05:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 18:30 - 2015-03-25 05:23 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-15 18:30 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-15 18:30 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-15 18:30 - 2015-03-23 05:25 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 18:30 - 2015-03-23 05:25 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 18:30 - 2015-03-23 05:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 18:30 - 2015-03-23 05:17 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 18:30 - 2015-03-17 07:22 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 18:30 - 2015-03-17 07:22 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 18:30 - 2015-03-17 07:22 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 18:30 - 2015-03-17 07:19 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 18:30 - 2015-03-17 07:17 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 18:30 - 2015-03-17 07:16 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 18:30 - 2015-03-17 07:16 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 18:30 - 2015-03-17 07:16 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-04-15 18:30 - 2015-03-17 07:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-15 18:30 - 2015-03-17 07:15 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 18:30 - 2015-03-17 07:15 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 18:30 - 2015-03-17 07:13 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 18:30 - 2015-03-17 07:13 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-04-15 18:30 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-04-15 18:30 - 2015-03-17 06:59 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-04-15 18:30 - 2015-03-17 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-04-15 18:30 - 2015-03-17 06:56 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-15 18:30 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-15 18:30 - 2015-03-17 06:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-15 18:30 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-15 18:30 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 06:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-15 18:30 - 2015-03-17 05:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-15 18:30 - 2015-03-17 05:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 18:30 - 2015-03-17 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-15 18:30 - 2015-03-10 05:25 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 18:30 - 2015-03-10 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 18:30 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-15 18:30 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-15 18:30 - 2015-03-05 07:12 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 18:30 - 2015-03-05 06:05 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-15 18:29 - 2015-04-02 02:17 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 18:29 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-15 18:29 - 2015-03-13 06:32 - 24980480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 18:29 - 2015-03-13 06:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 18:29 - 2015-03-13 06:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-15 18:29 - 2015-03-13 06:09 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 18:29 - 2015-03-13 06:08 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 18:29 - 2015-03-13 06:08 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 18:29 - 2015-03-13 06:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-15 18:29 - 2015-03-13 06:07 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 18:29 - 2015-03-13 06:06 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-15 18:29 - 2015-03-13 06:00 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 18:29 - 2015-03-13 05:59 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 18:29 - 2015-03-13 05:55 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 18:29 - 2015-03-13 05:54 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 18:29 - 2015-03-13 05:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-15 18:29 - 2015-03-13 05:53 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-15 18:29 - 2015-03-13 05:50 - 06025216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 18:29 - 2015-03-13 05:44 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-15 18:29 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 18:29 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-15 18:29 - 2015-03-13 05:40 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 18:29 - 2015-03-13 05:32 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-15 18:29 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 18:29 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-15 18:29 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-15 18:29 - 2015-03-13 05:27 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 18:29 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-04-15 18:29 - 2015-03-13 05:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 18:29 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-04-15 18:29 - 2015-03-13 05:23 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 18:29 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 18:29 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-15 18:29 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-15 18:29 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-04-15 18:29 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-04-15 18:29 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-04-15 18:29 - 2015-03-13 05:08 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 18:29 - 2015-03-13 05:07 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 18:29 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-15 18:29 - 2015-03-13 05:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 18:29 - 2015-03-13 05:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-15 18:29 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-04-15 18:29 - 2015-03-13 05:00 - 14397440 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 18:29 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-15 18:29 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-15 18:29 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-15 18:29 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 18:29 - 2015-03-13 04:45 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 18:29 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 18:29 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-15 18:29 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-04-15 18:29 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 18:29 - 2015-03-13 04:33 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 18:29 - 2015-03-13 04:22 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 18:29 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 18:29 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 18:29 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-15 18:29 - 2015-03-04 06:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 18:29 - 2015-03-04 06:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 18:29 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 18:29 - 2015-02-25 05:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-13 19:05 - 2015-04-13 19:05 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Publish Providers
2015-04-11 22:08 - 2015-04-11 22:45 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-11 20:07 - 2015-04-18 14:38 - 00004662 _____ () C:\Windows\PFRO.log
2015-04-11 16:30 - 2015-04-18 15:25 - 00002744 _____ () C:\Windows\setupact.log
2015-04-11 16:30 - 2015-04-11 16:30 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-11 09:56 - 2015-04-11 09:56 - 00001728 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2015-04-11 09:56 - 2015-04-11 09:56 - 00000000 ____D () C:\Program Files\Defraggler
2015-04-11 08:20 - 2015-04-11 08:20 - 00000000 ____D () C:\Users\Tomáš\Desktop\záloha ccleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00002786 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-04-11 08:06 - 2015-04-11 08:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-11 08:06 - 2015-04-11 08:06 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-11 07:58 - 2015-04-16 19:26 - 00000565 _____ () C:\DelFix.txt
2015-04-07 19:18 - 2015-04-07 19:18 - 00013256 _____ () C:\Users\Tomáš\Documents\kuchyn, hlava.veg
2015-04-06 20:54 - 2015-04-07 20:13 - 00000000 ____D () C:\Windows\erdnt
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄\AppData\Roaming\Macromedia
2015-04-06 19:24 - 2015-04-06 19:24 - 00000000 ____D () C:\Users\Tom▀▄
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ\AppData\Roaming\Macromedia
2015-04-06 12:40 - 2015-04-06 12:40 - 00000000 ____D () C:\Users\TomßÜ
2015-04-06 12:15 - 2015-04-06 12:15 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-MILOUS-Windows-7-Home-Premium-(64-bit).dat
2015-04-06 12:15 - 2015-04-06 12:15 - 00000000 ____D () C:\RegBackup
2015-04-06 11:50 - 2015-04-08 20:27 - 00000000 ____D () C:\Program Files\trend micro
2015-04-04 22:49 - 2015-04-04 22:49 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-04-04 22:13 - 2015-04-04 22:13 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Tomáš\Downloads\sh-remover.exe
2015-04-04 21:09 - 2015-04-04 21:11 - 155159296 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\msert.exe
2015-04-04 21:03 - 2015-04-04 21:04 - 41840320 _____ (Microsoft Corporation) C:\Users\Tomáš\Downloads\Windows-KB890830-x64-V5.22.exe
2015-04-04 20:59 - 2015-04-04 21:00 - 00000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-04-04 20:59 - 2015-04-04 20:59 - 07783472 _____ () C:\Users\Tomáš\Downloads\Infigo_setup.exe
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 19:35 - 2015-04-04 19:35 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 18:20 - 2015-04-06 11:01 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-04-04 17:47 - 2015-04-04 17:47 - 21578888 _____ (SUPERAntiSpyware) C:\Users\Tomáš\Downloads\SUPERAntiSpyware.exe
2015-04-04 17:42 - 2015-03-13 17:38 - 00622224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-04 17:40 - 2015-03-13 21:41 - 32114888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 24775368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 20466376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 17258024 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13297144 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 13210080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10775080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10715864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 10262160 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-04 17:40 - 2015-03-13 21:41 - 03611792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 03249352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 02906928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00997856 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00970384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00944784 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00930448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00909512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00878328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00354112 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00306208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00178512 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-04 17:40 - 2015-03-13 21:41 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-04 17:12 - 2015-04-04 17:17 - 00026656 _____ () C:\Windows\system32\bddel.dat
2015-04-04 12:14 - 2015-04-04 12:14 - 00002806 _____ () C:\Users\Tomáš\Downloads\software_removal_tool.log
2015-04-01 19:04 - 2015-04-06 13:16 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-01 16:34 - 2015-04-01 16:34 - 00000000 ____D () C:\Users\Tomáš\Tracing
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-03-31 19:51 - 2015-03-31 19:51 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-03-23 15:21 - 2015-03-23 15:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\HomeMakeover3PC
2015-03-21 21:35 - 2015-03-21 21:35 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\MAGIX
2015-03-21 17:17 - 2003-04-18 17:29 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2015-03-21 17:11 - 2015-03-21 17:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Logitech
2015-03-21 17:07 - 2015-03-21 17:07 - 03581480 _____ (MAGIX AG) C:\Users\Tomáš\Downloads\photo_manager_9_int.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-18 15:26 - 2013-11-02 18:40 - 00004966 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for MILOUS-Tomáš Milouš
2015-04-18 15:25 - 2014-03-19 21:13 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\LogMeIn Hamachi
2015-04-18 15:25 - 2012-03-30 19:22 - 00000000 ____D () C:\ProgramData\clear.fi
2015-04-18 15:25 - 2012-02-09 06:28 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-18 15:25 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-18 15:24 - 2012-02-09 06:26 - 01344459 _____ () C:\Windows\WindowsUpdate.log
2015-04-18 14:45 - 2012-02-07 21:37 - 10309798 _____ () C:\Windows\system32\perfh005.dat
2015-04-18 14:45 - 2012-02-07 21:37 - 03431092 _____ () C:\Windows\system32\perfc005.dat
2015-04-18 14:45 - 2009-07-14 07:13 - 00006544 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-18 14:45 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-18 14:45 - 2009-07-14 06:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-18 14:36 - 2014-06-13 15:26 - 00000000 ____D () C:\Users\Tomáš\Desktop\skladiště
2015-04-17 21:38 - 2012-03-30 20:23 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Google
2015-04-17 09:17 - 2014-09-29 12:16 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{83A7A283-55C2-4354-9C5A-3085613F5987}
2015-04-16 21:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2015-04-16 19:07 - 2014-05-06 17:38 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-16 19:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-04-16 19:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2015-04-16 19:06 - 2014-12-10 16:29 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-16 03:11 - 2013-07-14 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-13 19:05 - 2014-12-22 18:04 - 00000000 ____D () C:\Users\Tomáš\Documents\hovno
2015-04-13 19:04 - 2014-10-11 19:32 - 00070656 ___SH () C:\Users\Tomáš\Documents\Thumbs.db
2015-04-12 22:01 - 2012-04-03 00:36 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2015-04-11 08:10 - 2012-11-26 20:07 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Pro
2015-04-11 08:10 - 2012-08-18 18:32 - 00000000 ____D () C:\Windows\Minidump
2015-04-11 08:10 - 2012-08-12 13:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\TeamViewer
2015-04-11 08:10 - 2012-05-14 20:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Skype
2015-04-11 08:10 - 2007-07-12 03:49 - 00000000 ____D () C:\Windows\Panther
2015-04-07 20:15 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2015-04-07 20:13 - 2009-07-14 04:34 - 21757952 _____ () C:\Windows\system32\config\SYSTEM.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 105644032 _____ () C:\Windows\system32\config\SOFTWARE.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00524288 _____ () C:\Windows\system32\config\DEFAULT.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2015-04-07 20:13 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2015-04-07 19:44 - 2014-05-05 15:49 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Battle.net
2015-04-07 19:42 - 2014-05-22 14:54 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2015-04-07 19:39 - 2014-12-03 18:50 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-07 19:12 - 2012-11-10 11:21 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\vlc
2015-04-06 21:53 - 2012-09-10 08:56 - 00002428 ____N () C:\Users\Public\Desktop\WildTangent Games App - wildgames.lnk
2015-04-06 21:53 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-06 21:08 - 2013-03-13 18:10 - 00000000 ____D () C:\Users\Tomá
2015-04-06 18:05 - 2009-03-12 11:30 - 00000000 ____D () C:\Windows\LP
2015-04-06 17:14 - 2012-03-30 19:34 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Adobe
2015-04-06 12:37 - 2011-07-11 06:08 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-04-06 12:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-04 23:42 - 2012-05-14 20:43 - 00010521 _____ () C:\Windows\system32\lvcoinst.log
2015-04-04 23:30 - 2012-12-12 13:17 - 00003694 _____ () C:\Windows\System32\Tasks\Program k provádění aktualizací online Adobe
2015-04-04 23:19 - 2014-01-06 19:04 - 00000000 ____D () C:\Users\Tomáš\.thumbnails
2015-04-04 23:19 - 2013-01-07 16:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Sony
2015-04-04 23:19 - 2012-12-24 20:01 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-04 23:19 - 2012-04-21 10:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Microsoft Help
2015-04-04 23:19 - 2012-02-09 06:53 - 00000000 ____D () C:\ProgramData\Temp
2015-04-04 22:50 - 2014-05-09 10:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\AVG
2015-04-04 22:50 - 2012-05-31 18:24 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\AVG
2015-04-04 22:48 - 2014-05-09 10:07 - 00000000 ____D () C:\ProgramData\AVG
2015-04-04 19:19 - 2013-01-07 16:14 - 00000000 ____D () C:\ProgramData\Sony Corporation
2015-04-04 19:19 - 2012-12-11 21:06 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-04-04 19:19 - 2012-05-05 23:24 - 00000000 ____D () C:\Program Files (x86)\PatchBeam
2015-04-04 19:17 - 2014-12-07 12:02 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Seznam.cz
2015-04-04 18:30 - 2012-03-30 18:59 - 00000000 ____D () C:\Users\Tomáš
2015-04-04 18:20 - 2012-11-09 18:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-04-04 18:19 - 2011-07-11 06:08 - 00000000 ____D () C:\ProgramData\Adobe
2015-04-04 18:17 - 2012-03-30 19:47 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Adobe
2015-04-04 17:43 - 2014-11-22 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-04 17:43 - 2012-04-08 13:48 - 00000000 ____D () C:\Temp
2015-04-04 17:41 - 2012-02-09 06:27 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-04 17:28 - 2012-06-27 13:57 - 00000000 ____D () C:\ProgramData\MAGIX
2015-04-04 12:14 - 2015-02-18 15:52 - 00000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2015-04-02 19:01 - 2014-10-15 19:33 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-04-01 16:34 - 2011-07-11 05:41 - 00000000 ____D () C:\ProgramData\Skype
2015-04-01 11:16 - 2012-03-30 20:21 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-31 19:51 - 2015-02-18 15:13 - 00000890 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-03-30 15:25 - 2014-03-19 21:13 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-03-28 05:44 - 2014-11-22 15:12 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-03-28 05:43 - 2014-11-22 15:12 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-03-23 15:24 - 2014-12-26 19:55 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MysteryTag
2015-03-22 19:48 - 2012-04-02 23:01 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-22 19:48 - 2012-04-02 23:01 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-22 19:48 - 2011-07-11 06:09 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-21 18:20 - 2013-12-31 12:14 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\XBMC
2015-03-21 17:18 - 2012-06-27 13:58 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\MAGIX
2015-03-21 15:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-03-20 20:25 - 2009-07-14 07:08 - 00032576 _____ () C:\Windows\Tasks\SCHEDLGU.TXT

==================== Files in the root of some directories =======

2012-03-27 10:26 - 2012-03-27 10:26 - 0000120 _____ () C:\Users\Tomáš\AppData\Roaming\1cfbf17e.dat
2015-02-18 15:52 - 2015-04-04 12:14 - 0000020 _____ () C:\Users\Tomáš\AppData\Roaming\appdataFr3.bin
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\CFBEDSDX
2012-06-01 21:13 - 2012-04-09 11:38 - 3995886 _____ () C:\Users\Tomáš\AppData\Roaming\minecraft.jar
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Tomáš\AppData\Roaming\MXPUWBDF
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\SM
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Tomáš\AppData\Roaming\WGPYQE
2014-01-07 19:31 - 2014-01-07 19:31 - 0003383 _____ () C:\Users\Tomáš\AppData\Local\recently-used.xbel
2012-02-09 06:53 - 2012-08-04 20:11 - 0002528 _____ () C:\ProgramData\ArcadeDeluxe5.log
2015-04-04 20:59 - 2015-04-04 21:00 - 0000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some content of TEMP:
====================
C:\Users\Tomáš\AppData\Local\Temp\Quarantine.exe
C:\Users\Tomáš\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-04-14 08:08

==================== End Of Log ============================

VIRY.CZ

jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS

Re: jsem naprosto zoufalá z ADS BY info neb AD OPTIONS