VIRY.CZ

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-08-2014
Ran by Nikoláos (administrator) on DOMÁCÍ on 13-08-2014 07:30:51
Running from C:\Users\Nikoláos\Desktop
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(SafetyNut Inc) C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\SafetyNutManager.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(SafetyNut Inc) C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\SafetyNutManager.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(SafetyNut Inc) C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\safetynut.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(APN LLC.) C:\Users\Nikoláos\AppData\Local\VNT\vntldr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
(BitTorrent Inc.) C:\Users\Nikoláos\AppData\Roaming\uTorrent\uTorrent.exe
(Client Connect LTD) C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe
(Client Connect LTD) C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe
(Client Connect LTD) C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-29] (Synaptics Incorporated)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [363520 2012-08-02] (IVT Corporation)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491320 2012-07-26] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [580512 2012-07-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [CStart8] => C:\Program Files (x86)\CStart8\CStart8Tray64.exe [3138656 2013-10-04] (Crawler.com)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-08-07] (AVAST Software)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)
HKLM-x32\...\Run: [MicrosoftSys] => C:\Users\Nikoláos\ApData\KeyLoggerNastaveni\MicrosoftSys.exe [50176 2014-02-23] (Microsoft ©)
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1957784 2014-07-31] (APN)
HKLM-x32\...\Run: [VNT] => C:\Program Files (x86)\VNT\vntldr.exe [196504 2014-06-14] (APN LLC.)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-08-05] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\szninstall.exe [1009288 2012-09-13] ()
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92152 2013-01-22] ()
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [18706176 2013-01-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [24477056 2014-06-27] (Google)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [6265624 2014-07-23] (Piriform Ltd)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272832 2014-01-10] (Microsoft Corporation)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3666224 2013-09-20] (Safer-Networking Ltd.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [779776 2014-03-13] (ZONER software)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Camfrog] => C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe [13021536 2014-04-25] (Camshare, Inc.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [uTorrent] => C:\Users\Nikoláos\AppData\Roaming\uTorrent\uTorrent.exe [1329744 2014-08-12] (BitTorrent Inc.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_145_Plugin.exe [851632 2014-07-14] (Adobe Systems Incorporated)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\MountPoints2: {7ddbf49c-1573-11e4-beed-6c3be5f35b17} - "F:\Startme.exe"
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\MountPoints2: {d6802248-3955-11e3-beb3-a417314a135e} - "F:\Startme.exe"
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [232896 2014-08-06] (Client Connect LTD)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [187328 2014-08-06] (Client Connect LTD)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
ShellIconOverlayIdentifiers: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers-x32: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1006\User: Group Policy restriction detected <======= ATTENTION
GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1001\User: Group Policy restriction detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trovi.com/?gd=&ctid=CT333117 ... 9B85&SSPV=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CPNTDFJS
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CPNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CPNTDFJS
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CPNTDF
SearchScopes: HKLM - {7C388F24-47CE-4A2F-B582-1F81B76267F7} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CPNTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CPNTDFJS
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CPNTDF
SearchScopes: HKLM-x32 - {7C388F24-47CE-4A2F-B582-1F81B76267F7} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&c ... rms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&c ... rms}&SSPV=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CPNTDFJS
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CPNTDF
SearchScopes: HKCU - {7C388F24-47CE-4A2F-B582-1F81B76267F7} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM-x32 {ED5D862B-6A06-46DE-A929-F2C588742CBD} http://gcs.glovis.cz/install/TFSmartUpdater_m.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

Chrome:
=======
CHR HomePage: hxxp://www.google.cz/
CHR StartupUrls: "hxxp://www.trovi.com/?gd=&ctid=CT3331172&octid ... 9B85&SSPV="
CHR DefaultSearchKeyword: trovi.search
CHR DefaultNewTabURL:
CHR Extension: (Disk Google) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-04]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\eibfgbclmgnmffinenpipoibfdoblond [2014-05-08]
CHR Extension: (uTorrentControl_v2) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda [2014-05-08]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkfpcckoflkdgjdobdkpclgngaahgbpi [2014-05-08]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghoooididkjbjjldgojdgceoinbhbjmh [2014-05-09]
CHR Extension: (Seznam Lištička) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoblimgpefkcahebgokneaadhahmdah [2014-05-08]
CHR Extension: (Peněženka Google) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-08]
CHR Extension: (Extutil) - C:\Users\NIKOLO~1\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B [2014-08-13]
CHR Extension: (Managera) - C:\Users\NIKOLO~1\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42 [2014-08-13]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\NIKOLO~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2014-05-04]
CHR HKCU\...\Chrome\Extension: [eibfgbclmgnmffinenpipoibfdoblond] - C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\listicka-chrome-rv-1.5.5.crx [2013-02-04]
CHR HKCU\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Nikoláos\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-12-01]
CHR HKCU\...\Chrome\Extension: [fkfpcckoflkdgjdobdkpclgngaahgbpi] - C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\listicka-chrome-email-1.3.2.crx [2013-02-04]
CHR HKCU\...\Chrome\Extension: [ghoooididkjbjjldgojdgceoinbhbjmh] - C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\listicka-chrome-slovnik-1.2.3.crx [2013-02-04]
CHR HKCU\...\Chrome\Extension: [mgoblimgpefkcahebgokneaadhahmdah] - C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\Partner-1.2.0.crx [2013-02-04]
CHR HKLM-x32\...\Chrome\Extension: [aaaajfdmjahpbdoeompbfmghniokhfji] - C:\ProgramData\AskPartnerNetwork\Toolbar\CMG-V7\CRX\ToolbarCR.crx [2014-08-06]
CHR HKLM-x32\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Nikoláos\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-12-01]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [165784 2014-06-14] (APN LLC.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-15] (AVAST Software)
S2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1544192 2012-08-02] (IVT Corporation) [File not signed]
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2012-07-10] (IVT Corporation) [File not signed]
R2 CltMngSvc; C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [2982336 2014-08-06] (Client Connect LTD)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 SafetyNutManager; C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\SafetyNutManager.exe [3544272 2014-05-28] (SafetyNut Inc)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-01-05] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-15] ()
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-15] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-15] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-15] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [311968 2013-02-09] ()
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg;
U4 BthHFEnum;
U4 bthhfhid;
S3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48736 2012-08-08] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\x64\configmgrc1.cfg [36432 2014-05-28] (SafetyNut Inc)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43168 2013-02-08] ()
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [277648 2013-10-23] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-29] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-29] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
R3 SPPD; \??\C:\WINDOWS\system32\drivers\SPPD.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-13 07:30 - 2014-08-13 07:31 - 00027853 _____ () C:\Users\Nikoláos\Desktop\FRST.txt
2014-08-13 07:29 - 2014-08-13 07:29 - 00000000 ____D () C:\Users\Nikoláos\Desktop\FRST-OlderVersion
2014-08-13 07:28 - 2014-08-13 07:29 - 02100224 _____ (Farbar) C:\Users\Nikoláos\Desktop\FRST64.exe
2014-08-12 21:14 - 2014-08-12 21:14 - 00000000 ____D () C:\Users\Nikoláos\AppData\Local\SearchProtect
2014-08-12 21:13 - 2014-08-12 21:13 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-08-11 10:12 - 2014-08-13 05:55 - 00100802 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-03 22:15 - 2014-08-03 22:19 - 00000000 ____D () C:\Users\Nikoláos\Downloads\The.Secret.Life.Of.Bees[2008][Director's.Cut]DvDrip-aXXo
2014-08-03 22:13 - 2014-08-03 22:13 - 00057013 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]the.secret.life.of.bees.2008.director.s.cut.dvdrip.axxo.torrent
2014-08-02 11:43 - 2014-08-02 11:42 - 00450905 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140802-114347.backup
2014-08-02 11:42 - 2013-12-28 15:11 - 00450835 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140802-114256.backup
2014-08-02 11:35 - 2014-08-10 11:13 - 00017943 _____ () C:\WINDOWS\wininit.ini
2014-08-01 20:54 - 2014-08-01 20:54 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-01 20:53 - 2014-08-01 20:53 - 04813544 _____ (Piriform Ltd) C:\Users\Nikoláos\Downloads\ccsetup416.exe
2014-07-27 12:23 - 2014-07-27 13:10 - 00000000 ____D () C:\Users\Nikoláos\Downloads\300 Rise of an Empire (2014)
2014-07-27 12:22 - 2014-08-04 23:00 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Noah (2014)
2014-07-27 12:22 - 2014-07-27 12:22 - 00008816 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]300.rise.of.an.empire.2014.720p.brrip.x264.yify.torrent
2014-07-27 12:21 - 2014-08-04 21:07 - 00000000 ____D () C:\Users\Nikoláos\Downloads\La casa del fin de los tiempos (2013) MicroHD
2014-07-27 12:21 - 2014-07-27 12:21 - 00010022 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]noah.2014.720p.brrip.x264.yify.torrent
2014-07-27 12:20 - 2014-07-27 12:20 - 00019271 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]la.casa.del.fin.de.los.tiempos.2013.microhd.720p.spanish.torrent
2014-07-27 12:19 - 2014-08-04 21:03 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Oculus (2013)
2014-07-27 12:18 - 2014-07-27 12:18 - 00008755 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]oculus.2013.720p.brrip.x264.yify.torrent
2014-07-27 12:17 - 2014-08-04 21:09 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Would.You.Rather.2012.BDRiP.AC3-5.1.XviD-AXED
2014-07-27 12:16 - 2014-07-27 12:16 - 00014979 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]would.you.rather.2012.bdrip.ac3.5.1.xvid.axed.torrent
2014-07-20 18:51 - 2014-04-14 05:29 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2014-07-20 18:50 - 2014-07-20 18:50 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-20 18:37 - 2014-07-01 00:45 - 00688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-07-20 18:37 - 2014-06-28 09:48 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-07-20 18:37 - 2014-06-28 09:07 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-07-16 17:42 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-16 17:42 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-16 17:42 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-16 17:42 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-16 17:42 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-16 17:42 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-16 17:42 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-16 17:42 - 2014-06-19 01:46 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-16 17:42 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-16 17:42 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-16 17:42 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-16 17:42 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-16 17:42 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-16 17:42 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-16 17:42 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-16 17:42 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-16 17:42 - 2014-06-19 00:57 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-16 17:42 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-16 17:42 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-16 17:42 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-16 17:42 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-16 17:42 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-16 17:42 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-16 17:42 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-16 17:42 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-16 17:42 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-16 17:42 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-16 17:25 - 2014-05-31 12:07 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-07-16 17:25 - 2014-05-31 12:06 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-16 17:25 - 2014-05-31 05:40 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-07-16 17:25 - 2014-05-31 05:30 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-07-16 17:25 - 2014-05-31 05:12 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-16 17:25 - 2014-05-31 05:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-07-16 17:25 - 2014-05-31 05:03 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-07-16 17:25 - 2014-05-31 05:01 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-16 17:25 - 2014-05-31 04:56 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-16 17:25 - 2014-05-31 04:54 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-16 17:25 - 2014-05-31 04:48 - 03463680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-07-16 17:25 - 2014-05-31 04:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-07-16 17:25 - 2014-05-31 04:36 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-07-16 17:25 - 2014-05-31 04:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-07-16 17:25 - 2014-05-31 04:32 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-16 09:13 - 2014-06-06 15:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-07-16 09:13 - 2014-06-06 14:18 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-07-16 09:08 - 2014-06-17 00:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-07-16 09:08 - 2014-06-17 00:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-16 09:08 - 2014-06-06 16:20 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-07-16 09:08 - 2014-05-30 05:03 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-07-16 09:07 - 2014-05-29 14:02 - 00565576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-07-16 09:07 - 2014-05-29 09:55 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-07-16 09:07 - 2014-05-29 08:40 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-07-16 09:07 - 2014-05-29 08:37 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-07-16 09:07 - 2014-05-29 07:34 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-07-16 09:07 - 2014-05-29 07:27 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-07-16 09:04 - 2014-07-16 09:04 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-14 10:38 - 2014-07-14 10:38 - 00000000 ____D () C:\Users\Nikoláos\Desktop\Nová složka
2014-07-14 09:16 - 2014-07-14 09:16 - 05659136 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-13 07:31 - 2014-08-13 07:30 - 00027853 _____ () C:\Users\Nikoláos\Desktop\FRST.txt
2014-08-13 07:31 - 2014-06-06 06:54 - 00000000 ____D () C:\ProgramData\SafetyNut
2014-08-13 07:30 - 2014-01-04 14:57 - 00000000 ____D () C:\FRST
2014-08-13 07:29 - 2014-08-13 07:29 - 00000000 ____D () C:\Users\Nikoláos\Desktop\FRST-OlderVersion
2014-08-13 07:29 - 2014-08-13 07:28 - 02100224 _____ (Farbar) C:\Users\Nikoláos\Desktop\FRST64.exe
2014-08-13 07:29 - 2013-01-29 20:09 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\uTorrent
2014-08-13 07:28 - 2012-11-25 18:36 - 00004524 _____ () C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2014-08-13 07:28 - 2012-08-10 18:45 - 00000821 _____ () C:\WINDOWS\SysWOW64\bscs.ini
2014-08-13 07:18 - 2014-02-16 09:04 - 00003974 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{45697D60-F6CC-40CF-8A3E-089FE9D0AB55}
2014-08-13 07:16 - 2013-02-01 22:28 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-13 07:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-08-13 06:52 - 2013-02-02 13:54 - 00000970 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-13 06:40 - 2013-01-29 21:30 - 00000988 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1767443611-160192221-3438823037-1004UA.job
2014-08-13 05:55 - 2014-08-11 10:12 - 00100802 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-12 23:00 - 2013-11-27 21:33 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-08-12 21:23 - 2013-01-29 19:32 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1767443611-160192221-3438823037-1001
2014-08-12 21:14 - 2014-08-12 21:14 - 00000000 ____D () C:\Users\Nikoláos\AppData\Local\SearchProtect
2014-08-12 21:13 - 2014-08-12 21:13 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-08-12 21:13 - 2014-04-29 21:19 - 00000898 _____ () C:\Users\Nikoláos\Desktop\µTorrent.lnk
2014-08-12 21:13 - 2014-04-29 21:19 - 00000878 _____ () C:\Users\Nikoláos\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-08-12 20:40 - 2013-01-29 21:30 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1767443611-160192221-3438823037-1004Core.job
2014-08-12 13:52 - 2013-02-02 13:54 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-12 13:52 - 2013-02-02 13:54 - 00000966 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-12 11:33 - 2013-10-17 21:14 - 00003178 _____ () C:\WINDOWS\System32\Tasks\HPCeeScheduleForNikoláos
2014-08-12 11:33 - 2013-10-17 21:14 - 00000358 _____ () C:\WINDOWS\Tasks\HPCeeScheduleForNikoláos.job
2014-08-11 20:42 - 2013-03-07 19:13 - 00393728 ___SH () C:\Users\Nikoláos\Desktop\Thumbs.db
2014-08-11 09:51 - 2014-01-05 14:39 - 00000000 __RDO () C:\Users\Nikoláos\SkyDrive
2014-08-11 09:46 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-08-11 09:44 - 2014-06-25 21:37 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-08-11 09:44 - 2013-08-22 15:25 - 01048576 ___SH () C:\WINDOWS\system32\config\BBI
2014-08-10 11:13 - 2014-08-02 11:35 - 00017943 _____ () C:\WINDOWS\wininit.ini
2014-08-09 08:53 - 2013-02-11 06:03 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\Camfrog
2014-08-08 19:35 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-08-06 22:11 - 2013-01-30 21:17 - 00000052 _____ () C:\WINDOWS\SysWOW64\DOErrors.log
2014-08-06 21:59 - 2014-06-29 19:17 - 00000000 ____D () C:\Program Files (x86)\VNT
2014-08-04 23:00 - 2014-07-27 12:22 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Noah (2014)
2014-08-04 21:09 - 2014-07-27 12:17 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Would.You.Rather.2012.BDRiP.AC3-5.1.XviD-AXED
2014-08-04 21:09 - 2013-09-20 20:11 - 00000000 ____D () C:\Users\Nikoláos\Downloads\World.War.Z.2013 BRRip XViD AC3 juggs
2014-08-04 21:08 - 2014-04-02 21:12 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Thor The Dark World (2013)
2014-08-04 21:07 - 2014-07-27 12:21 - 00000000 ____D () C:\Users\Nikoláos\Downloads\La casa del fin de los tiempos (2013) MicroHD
2014-08-04 21:06 - 2014-03-12 23:19 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Last Vegas (2013) [1080p]
2014-08-04 21:05 - 2014-01-17 19:08 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Carrie (2013)
2014-08-04 21:03 - 2014-07-27 12:19 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Oculus (2013)
2014-08-03 22:19 - 2014-08-03 22:15 - 00000000 ____D () C:\Users\Nikoláos\Downloads\The.Secret.Life.Of.Bees[2008][Director's.Cut]DvDrip-aXXo
2014-08-03 22:13 - 2014-08-03 22:13 - 00057013 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]the.secret.life.of.bees.2008.director.s.cut.dvdrip.axxo.torrent
2014-08-02 11:42 - 2014-08-02 11:43 - 00450905 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140802-114347.backup
2014-08-01 21:01 - 2013-12-28 10:40 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-01 20:58 - 2013-04-14 11:28 - 00000000 ____D () C:\Users\Nikoláos\Documents\CC-cleaner
2014-08-01 20:54 - 2014-08-01 20:54 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-01 20:54 - 2013-04-14 10:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-08-01 20:53 - 2014-08-01 20:53 - 04813544 _____ (Piriform Ltd) C:\Users\Nikoláos\Downloads\ccsetup416.exe
2014-08-01 20:53 - 2013-04-14 10:54 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-30 11:39 - 2013-01-30 21:17 - 00000000 _____ () C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-07-28 22:31 - 2014-01-05 11:56 - 00000000 ____D () C:\Users\Nikoláos
2014-07-27 23:06 - 2013-11-14 14:40 - 01938474 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-27 23:06 - 2013-11-14 14:24 - 00803244 _____ () C:\WINDOWS\system32\perfh005.dat
2014-07-27 23:06 - 2013-11-14 14:24 - 00184236 _____ () C:\WINDOWS\system32\perfc005.dat
2014-07-27 13:10 - 2014-07-27 12:23 - 00000000 ____D () C:\Users\Nikoláos\Downloads\300 Rise of an Empire (2014)
2014-07-27 12:22 - 2014-07-27 12:22 - 00008816 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]300.rise.of.an.empire.2014.720p.brrip.x264.yify.torrent
2014-07-27 12:21 - 2014-07-27 12:21 - 00010022 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]noah.2014.720p.brrip.x264.yify.torrent
2014-07-27 12:20 - 2014-07-27 12:20 - 00019271 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]la.casa.del.fin.de.los.tiempos.2013.microhd.720p.spanish.torrent
2014-07-27 12:18 - 2014-07-27 12:18 - 00008755 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]oculus.2013.720p.brrip.x264.yify.torrent
2014-07-27 12:16 - 2014-07-27 12:16 - 00014979 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]would.you.rather.2012.bdrip.ac3.5.1.xvid.axed.torrent
2014-07-27 11:51 - 2013-03-14 17:09 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-27 11:51 - 2013-03-14 17:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-26 20:53 - 2013-11-22 18:24 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Elysium (2013) DVDRip XviD-MAXSPEED
2014-07-25 07:36 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-07-25 06:55 - 2013-03-14 17:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-24 21:10 - 2013-05-21 19:26 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Subs
2014-07-24 21:09 - 2014-04-02 21:17 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Endless.Love.2014.WEBRip.x264-AQOS
2014-07-24 21:07 - 2014-04-19 15:46 - 00000000 ____D () C:\Users\Nikoláos\Downloads\The.Den.2013.HDRip.XviD.MP3-RARBG
2014-07-22 21:59 - 2013-08-22 16:44 - 00393480 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-22 21:57 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-07-22 21:57 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-22 21:57 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-22 21:57 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-07-20 18:55 - 2013-08-14 21:22 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-20 18:51 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-07-20 18:51 - 2013-02-01 19:32 - 96441528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-07-20 18:51 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-07-20 18:50 - 2014-07-20 18:50 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-16 17:47 - 2013-11-14 14:26 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-16 09:04 - 2014-07-16 09:04 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-14 10:38 - 2014-07-14 10:38 - 00000000 ____D () C:\Users\Nikoláos\Desktop\Nová složka
2014-07-14 09:17 - 2013-02-01 22:28 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-07-14 09:16 - 2014-07-14 09:16 - 05659136 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2014-07-14 09:05 - 2013-03-31 06:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive

Some content of TEMP:
====================
C:\Users\Nikoláos\AppData\Local\Temp\nsa9F8D.exe
C:\Users\Nikoláos\AppData\Local\Temp\nsb496A.exe
C:\Users\Nikoláos\AppData\Local\Temp\nshA52B.exe
C:\Users\Nikoláos\AppData\Local\Temp\nsy4E7C.exe
C:\Users\Nikoláos\AppData\Local\Temp\uttC74A.tmp.exe
C:\Users\Nikoláos\AppData\Local\Temp\uttFFDB.tmp.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-11 11:04

==================== End Of Log ============================

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 x64
Ran by Nikol os on źt 14. 08. 2014 at 21:12:29,75
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Failed to stop: [Service] cltmngsvc
Successfully stopped: [Service] APNMCP
Successfully deleted: [Service] APNMCP



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\searchprotect
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\searchquiehelper.dnsguard
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\searchquiehelper.dnsguard.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\searchprotect
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7C388F24-47CE-4A2F-B582-1F81B76267F7}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2488}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{7C388F24-47CE-4A2F-B582-1F81B76267F7}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2488}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"
Successfully deleted: [Registry Key] "hkey_current_user\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_local_machine\software\askpartnernetwork"



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\Users\Nikol os\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\mypc backup"
Successfully deleted: [Folder] "C:\Program Files (x86)\searchprotect"
Successfully deleted: [Folder] "C:\ProgramData\AskPartnerNetwork"
Successfully deleted: [Folder] "C:\Program Files (x86)\askpartnernetwork"



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Nikol os\appdata\local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 14. 08. 2014 at 21:23:35,90
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

# AdwCleaner v3.305 - Report created 14/08/2014 at 21:29:50
# Updated 14/08/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Nikoláos - DOMÁCÍ
# Running from : C:\Users\Nikoláos\Desktop\adwcleaner_3.305.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : CltMngSvc
[#] Service Deleted : F06DEFF2-5B9C-490D-910F-35D3A91196222
[#] Service Deleted : SafetyNutManager

***** [ Files / Folders ] *****

[!] Folder Deleted : C:\ProgramData\SafetyNut
[!] Folder Deleted : C:\Program Files (x86)\Browser Tab Search by Ask
Folder Deleted : C:\Program Files (x86)\VNT
Folder Deleted : C:\Users\Nikoláos\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\Nikoláos\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Nikoláos\AppData\Local\VNT
File Deleted : C:\Users\Nikoláos\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [VNT]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\SafetyNut
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SafetyNut
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17126

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v36.0.1985.125

[ File : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Kateřina.DOMÁCÍ\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : kdcnnmifdmlmjffdgeieikcokcogpbej
Deleted [Extension] : kincjchfokkeneeofpeefomkikfkiedl

[ File : C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Startup_urls] : hxxp://www.trovi.com/?gd=&ctid=CT3331172&octid ... 9B85&SSPV=
Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb

*************************

AdwCleaner[R0].txt - [6809 octets] - [14/08/2014 21:27:12]
AdwCleaner[S0].txt - [5895 octets] - [14/08/2014 21:29:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5955 octets] ##########

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;
  emptyalltemp;
  resethosts;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Zoek.exe v5.0.0.0 Updated 13-08-2014
Tool run by Nikol os on p  15. 08. 2014 at 21:17:58,30.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Nikoláos\Desktop\zoek.com [Scan all users] [Script inserted]

==== System Restore Info ======================

15. 8. 2014 21:20:31 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_USERS\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115} deleted successfully
HKEY_USERS\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\Nikoláos\Searches not found
C:\Users\Nikoláos\Downloads\bsplayer266.1075.exe not found
C:\Users\Nikoláos\Downloads\bsplayer_installer.exe not found
"C:\Users\Nikoláos\AppData\Roaming\Sony" not found
"C:\Users\Nikoláos\AppData\Roaming\Zoner" not found
"C:\Users\Nikoláos\AppData\Roaming\WebApp" not found
"C:\Users\Nikoláos\AppData\Roaming\Camfrog" not found
"C:\Users\Nikoláos\AppData\Roaming\thriXXX" not found
"C:\Users\Nikoláos\AppData\Roaming\Ubisoft" not found
C:\PROGRA~2\GUTD000.tmp deleted
C:\PROGRA~2\GUMCFF0.tmp deleted
C:\PROGRA~2\Connected Music powered by Universal Music Group deleted
C:\install.exe deleted
C:\toolbarImages deleted
C:\Users\NIKOLO~1\AppData\Roaming\del.bat deleted
C:\Users\NIKOLO~1\AppData\Local\CRE deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\wininit.ini deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaajfdmjahpbdoeompbfmghniokhfji - C:\ProgramData\AskPartnerNetwork\Toolbar\CMG-V7\CRX\ToolbarCR.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
apdfllckaahabafndbhieahigkjlhalf - C:\Users\NIKOLO~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx[04. 05. 2014 22:42]
eibfgbclmgnmffinenpipoibfdoblond - C:\Users\Nikol os\AppData\Roaming\Seznam.cz\bin\listicka-chrome-rv-1.5.5.crx[04. 02. 2013 14:48]
fkfpcckoflkdgjdobdkpclgngaahgbpi - C:\Users\Nikol os\AppData\Roaming\Seznam.cz\bin\listicka-chrome-email-1.3.2.crx[04. 02. 2013 14:48]
ghoooididkjbjjldgojdgceoinbhbjmh - C:\Users\Nikol os\AppData\Roaming\Seznam.cz\bin\listicka-chrome-slovnik-1.2.3.crx[04. 02. 2013 14:48]
mgoblimgpefkcahebgokneaadhahmdah - C:\Users\Nikol os\AppData\Roaming\Seznam.cz\bin\Partner-1.2.0.crx[04. 02. 2013 20:16]

Docs - Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba - KATEIN~1.DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\eibfgbclmgnmffinenpipoibfdoblond
Seznam Li\u0161ti\u010Dka - Email - KATEIN~1.DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkfpcckoflkdgjdobdkpclgngaahgbpi
Seznam Li\u0161ti\u010Dka - Slovn\u00EDk - KATEIN~1.DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghoooididkjbjjldgojdgceoinbhbjmh
Norton Identity Protection - KATEIN~1.DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Seznam Lištička - Rychlá volba - NIKOLO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\eibfgbclmgnmffinenpipoibfdoblond
Seznam Lištička - Email - NIKOLO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkfpcckoflkdgjdobdkpclgngaahgbpi
Seznam Lištička - Slovník - NIKOLO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghoooididkjbjjldgojdgceoinbhbjmh
Seznam Lištička - NIKOLO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoblimgpefkcahebgokneaadhahmdah
Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba - NIKOLO~1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eibfgbclmgnmffinenpipoibfdoblond
Seznam Li\u0161ti\u010Dka - Email - NIKOLO~1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkfpcckoflkdgjdobdkpclgngaahgbpi
Seznam Li\u0161ti\u010Dka - Slovn\u00EDk - NIKOLO~1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghoooididkjbjjldgojdgceoinbhbjmh

==== Chromium Startpages ======================

C:\Users\NIKOLO~1\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.cz/",


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.bing.com?pc=CPNTDFJS"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... c=CPNTDFJS"

==== Reset Google Chrome ======================

C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\KATEIN~1.DOM\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\NIKOLO~1\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\NIKOLO~1\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences was reset successfully
C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\KATEIN~1.DOM\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\NIKOLO~1\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\NIKOLO~1\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaajfdmjahpbdoeompbfmghniokhfji deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\NIKOLO~1\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\NIKOLO~1\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\KATEIN~1.DOM\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\NIKOLO~1\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\NIKOLO~1\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=130 folders=46 16383423 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Guest\AppData\Local\Temp emptied successfully
C:\Users\KATEIN~1.DOM\AppData\Local\Temp emptied successfully
C:\Users\NIKOLO~1\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\NIKOLO~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on p  15. 08. 2014 at 22:00:22,19 ======================

Poprosim o novy log z FRST

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-08-2014
Ran by Nikoláos (administrator) on DOMÁCÍ on 22-08-2014 21:22:42
Running from C:\Users\Nikoláos\Desktop
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Crawler.com) C:\Program Files (x86)\CStart8\CStart8Tray64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(BitTorrent Inc.) C:\Users\Nikoláos\AppData\Roaming\uTorrent\uTorrent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\FileManager\PhotosApp.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\livecomm.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-29] (Synaptics Incorporated)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [363520 2012-08-02] (IVT Corporation)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491320 2012-07-26] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [580512 2012-07-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [CStart8] => C:\Program Files (x86)\CStart8\CStart8Tray64.exe [3138656 2013-10-04] (Crawler.com)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-15] (AVAST Software)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)
HKLM-x32\...\Run: [MicrosoftSys] => C:\Users\Nikoláos\ApData\KeyLoggerNastaveni\MicrosoftSys.exe [50176 2014-02-23] (Microsoft ©)
HKLM\...\RunOnce: [NCPluginUpdater] => c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe [21720 2014-08-19] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\szninstall.exe [1009288 2012-09-13] ()
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92152 2013-01-22] ()
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [18706176 2013-01-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22734160 2014-08-08] (Google)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [6265624 2014-07-23] (Piriform Ltd)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272832 2014-01-10] (Microsoft Corporation)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3666224 2013-09-20] (Safer-Networking Ltd.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [779776 2014-03-13] (ZONER software)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Camfrog] => C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe [13021536 2014-04-25] (Camshare, Inc.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [uTorrent] => C:\Users\Nikoláos\AppData\Roaming\uTorrent\uTorrent.exe [1329744 2014-08-12] (BitTorrent Inc.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\MountPoints2: {7ddbf49c-1573-11e4-beed-6c3be5f35b17} - "F:\Startme.exe"
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\MountPoints2: {d6802248-3955-11e3-beb3-a417314a135e} - "F:\Startme.exe"
ShellIconOverlayIdentifiers: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers-x32: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1006\User: Group Policy restriction detected <======= ATTENTION
GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1001\User: Group Policy restriction detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKLM - {7C388F24-47CE-4A2F-B582-1F81B76267F7} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CPNTDFJS
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
DPF: HKLM-x32 {ED5D862B-6A06-46DE-A929-F2C588742CBD} http://gcs.glovis.cz/install/TFSmartUpdater_m.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-03-31]

Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-15]
CHR Extension: (Disk Google) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-04]
CHR Extension: (YouTube) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-15]
CHR Extension: (Vyhledávání Google) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-15]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\eibfgbclmgnmffinenpipoibfdoblond [2014-05-08]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkfpcckoflkdgjdobdkpclgngaahgbpi [2014-05-08]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghoooididkjbjjldgojdgceoinbhbjmh [2014-05-09]
CHR Extension: (avast! Online Security) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-16]
CHR Extension: (Seznam Lištička) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoblimgpefkcahebgokneaadhahmdah [2014-05-08]
CHR Extension: (Peněženka Google) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-08]
CHR Extension: (Gmail) - C:\Users\Nikoláos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-15]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\NIKOLO~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2014-05-04]
CHR HKCU\...\Chrome\Extension: [eibfgbclmgnmffinenpipoibfdoblond] - C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\listicka-chrome-rv-1.5.5.crx [2013-02-04]
CHR HKCU\...\Chrome\Extension: [fkfpcckoflkdgjdobdkpclgngaahgbpi] - C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\listicka-chrome-email-1.3.2.crx [2013-02-04]
CHR HKCU\...\Chrome\Extension: [ghoooididkjbjjldgojdgceoinbhbjmh] - C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\listicka-chrome-slovnik-1.2.3.crx [2013-02-04]
CHR HKCU\...\Chrome\Extension: [mgoblimgpefkcahebgokneaadhahmdah] - C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\Partner-1.2.0.crx [2013-02-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-15]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-15] (AVAST Software)
S2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1544192 2012-08-02] (IVT Corporation) [File not signed]
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2012-07-10] (IVT Corporation) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-01-05] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-15] ()
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-15] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-15] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-15] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [311968 2013-02-09] ()
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg;
U4 BthHFEnum;
U4 bthhfhid;
S3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48736 2012-08-08] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43168 2013-02-08] ()
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [277648 2013-10-23] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-29] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-29] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-19 20:17 - 2014-08-19 21:03 - 00000000 ____D () C:\Users\Nikoláos\Downloads\The.Expendables.3.2014.DVDSCR.Xvid-DiNGO
2014-08-18 10:33 - 2014-08-22 20:21 - 00151565 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-18 07:16 - 2014-08-18 07:16 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-08-18 07:16 - 2014-08-18 07:16 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\DropboxMaster
2014-08-18 07:15 - 2014-08-18 07:16 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\Dropbox
2014-08-15 22:46 - 2014-08-15 22:46 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-08-15 21:45 - 2014-02-13 23:59 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-08-15 21:20 - 2014-08-15 22:00 - 00010588 _____ () C:\zoek-results.log
2014-08-15 21:17 - 2014-08-15 21:41 - 00000000 ____D () C:\zoek_backup
2014-08-15 21:14 - 2014-08-09 15:52 - 01419472 _____ () C:\Users\Nikoláos\Desktop\zoek.scr
2014-08-15 21:14 - 2014-08-09 15:52 - 01419472 _____ () C:\Users\Nikoláos\Desktop\zoek.com
2014-08-15 21:13 - 2014-08-15 21:13 - 04108341 _____ () C:\Users\Nikoláos\Desktop\zoek.zip
2014-08-15 07:19 - 2014-06-20 03:48 - 01273184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2014-08-15 07:19 - 2014-06-20 01:52 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2014-08-15 07:14 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-08-15 07:14 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-08-15 07:09 - 2014-04-26 22:14 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-08-15 07:09 - 2014-04-14 11:37 - 02125344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-08-15 07:09 - 2014-04-14 10:08 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-08-15 07:08 - 2014-05-13 09:01 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-08-15 07:08 - 2014-05-13 07:07 - 02844160 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-08-15 07:08 - 2014-05-13 06:41 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-08-15 07:08 - 2014-05-13 06:26 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-08-15 07:08 - 2014-05-13 05:59 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-08-15 07:08 - 2014-05-13 05:31 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-08-15 07:08 - 2014-05-03 13:29 - 01726224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-08-15 07:08 - 2014-05-03 11:20 - 01473080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-08-15 07:08 - 2014-05-03 07:36 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-08-15 07:08 - 2014-05-03 07:19 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2014-08-15 07:08 - 2014-05-03 07:08 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2014-08-15 07:08 - 2014-05-03 07:07 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll
2014-08-15 07:08 - 2014-05-03 06:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2014-08-15 07:08 - 2014-05-03 06:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2014-08-15 07:08 - 2014-05-03 06:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll
2014-08-15 07:08 - 2014-05-03 01:26 - 00050745 _____ () C:\WINDOWS\system32\srms.dat
2014-08-15 07:08 - 2014-05-01 07:44 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-08-15 07:08 - 2014-04-30 08:43 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2014-08-15 07:08 - 2014-04-30 08:41 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-08-15 07:08 - 2014-04-30 08:41 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2014-08-15 07:08 - 2014-04-30 08:41 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2014-08-15 07:08 - 2014-04-30 07:45 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2014-08-15 07:08 - 2014-04-30 06:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2014-08-15 07:08 - 2014-04-30 06:24 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2014-08-15 07:08 - 2014-04-30 06:23 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-08-15 07:08 - 2014-04-30 06:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2014-08-15 07:08 - 2014-04-30 06:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2014-08-15 07:08 - 2014-04-30 06:14 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-08-15 07:08 - 2014-04-30 05:59 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-08-15 07:08 - 2014-04-30 05:46 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2014-08-15 07:08 - 2014-04-30 05:46 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2014-08-15 07:08 - 2014-04-30 05:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2014-08-15 07:08 - 2014-04-30 05:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2014-08-15 07:08 - 2014-04-30 05:42 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2014-08-15 07:08 - 2014-04-29 00:40 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-08-15 07:08 - 2014-04-27 00:03 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-08-15 07:08 - 2014-04-26 18:39 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-08-15 07:08 - 2014-04-14 07:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-08-15 07:08 - 2014-04-09 08:11 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-08-15 07:08 - 2014-04-09 07:20 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2014-08-15 07:07 - 2014-05-31 08:27 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-08-14 21:29 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll
2014-08-14 21:27 - 2014-08-14 21:37 - 00000000 ____D () C:\AdwCleaner
2014-08-14 21:26 - 2014-08-14 21:26 - 01356107 _____ () C:\Users\Nikoláos\Desktop\adwcleaner_3.305.exe
2014-08-14 21:23 - 2014-08-14 21:23 - 00003939 _____ () C:\Users\Nikoláos\Desktop\JRT.txt
2014-08-14 21:06 - 2014-08-14 21:06 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-08-14 07:47 - 2014-06-13 03:15 - 00517528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-08-14 07:47 - 2014-06-13 03:14 - 01557848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-08-14 07:47 - 2014-06-13 02:10 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-08-14 07:47 - 2014-06-06 13:34 - 02133504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-08-14 07:47 - 2014-06-05 16:13 - 00216368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2014-08-14 07:47 - 2014-06-05 15:14 - 00189016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2014-08-14 07:47 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-08-14 07:47 - 2014-05-31 12:07 - 00467800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-08-14 07:47 - 2014-05-31 12:07 - 00440664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-08-14 07:47 - 2014-05-31 12:07 - 00419672 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-08-14 07:47 - 2014-05-31 12:07 - 00089944 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-08-14 07:47 - 2014-05-31 12:07 - 00027480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-08-14 07:47 - 2014-05-31 08:30 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-08-14 07:47 - 2014-05-31 08:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys
2014-08-14 07:47 - 2014-05-31 08:26 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2014-08-14 07:47 - 2014-05-31 06:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2014-08-14 07:47 - 2014-05-31 06:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2014-08-14 07:47 - 2014-05-31 06:01 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFSvc.dll
2014-08-14 07:47 - 2014-05-27 17:53 - 02518360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-08-14 07:47 - 2014-05-27 11:56 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-08-14 07:47 - 2014-05-27 11:53 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2014-08-14 07:47 - 2014-05-17 06:59 - 16871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-08-14 07:47 - 2014-05-17 06:13 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-08-14 07:46 - 2014-08-07 04:12 - 01336624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-08-14 07:46 - 2014-08-07 00:39 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-08-14 07:46 - 2014-08-07 00:38 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-08-14 07:46 - 2014-08-02 07:44 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-08-14 07:46 - 2014-08-02 05:56 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-08-14 07:46 - 2014-08-02 05:11 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-08-14 07:46 - 2014-07-15 20:16 - 03048880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-08-14 07:46 - 2014-07-15 10:29 - 03118080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2014-08-14 07:46 - 2014-07-15 10:22 - 02861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2014-08-14 07:46 - 2014-07-15 10:03 - 02344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2014-08-14 07:46 - 2014-07-12 06:17 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-08-14 07:46 - 2014-07-10 06:16 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-08-14 07:46 - 2014-07-10 06:03 - 04756992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-08-14 07:46 - 2014-07-10 05:33 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-08-14 07:45 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-08-14 07:45 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-08-14 07:45 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-08-14 07:45 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-08-14 07:45 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-08-14 07:45 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-08-14 07:45 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-08-14 07:45 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-08-14 07:45 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-08-14 07:45 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-08-14 07:45 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-08-14 07:45 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-08-14 07:45 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-08-14 07:45 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-08-14 07:45 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-08-14 07:45 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-08-14 07:45 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-08-14 07:45 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-08-14 07:45 - 2014-07-25 13:43 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-08-14 07:45 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-14 07:45 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-08-14 07:45 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-08-14 07:45 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-08-14 07:45 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-08-14 07:45 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-08-14 07:45 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-08-14 07:45 - 2014-07-25 13:09 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-08-14 07:45 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-08-14 07:45 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-08-14 07:45 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-08-14 07:45 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-08-14 07:45 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-08-14 07:45 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-08-14 07:45 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-08-14 07:45 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-08-14 07:42 - 2014-06-04 11:27 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-08-14 07:42 - 2014-06-04 07:31 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-08-14 07:42 - 2014-06-04 07:22 - 02790912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-08-14 07:42 - 2014-06-04 06:43 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2014-08-14 07:42 - 2014-06-04 06:38 - 03304448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-08-14 07:42 - 2014-06-04 04:15 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-08-14 07:42 - 2014-06-04 04:14 - 02318336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-08-13 20:09 - 2014-08-13 20:09 - 01016261 _____ (Thisisu) C:\Users\Nikoláos\Desktop\JRT.exe
2014-08-13 07:35 - 2014-08-13 07:35 - 00011364 _____ () C:\Users\Nikoláos\Desktop\Addition.zip
2014-08-13 07:32 - 2014-08-13 07:33 - 00041453 _____ () C:\Users\Nikoláos\Desktop\Addition.txt
2014-08-13 07:30 - 2014-08-22 21:22 - 00021896 _____ () C:\Users\Nikoláos\Desktop\FRST.txt
2014-08-13 07:29 - 2014-08-22 21:22 - 00000000 ____D () C:\Users\Nikoláos\Desktop\FRST-OlderVersion
2014-08-13 07:28 - 2014-08-22 21:22 - 02101760 _____ (Farbar) C:\Users\Nikoláos\Desktop\FRST64.exe
2014-08-03 22:15 - 2014-08-03 22:19 - 00000000 ____D () C:\Users\Nikoláos\Downloads\The.Secret.Life.Of.Bees[2008][Director's.Cut]DvDrip-aXXo
2014-08-03 22:13 - 2014-08-03 22:13 - 00057013 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]the.secret.life.of.bees.2008.director.s.cut.dvdrip.axxo.torrent
2014-08-02 11:43 - 2014-08-02 11:42 - 00450905 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140802-114347.backup
2014-08-02 11:42 - 2013-12-28 15:11 - 00450835 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140802-114256.backup
2014-08-01 20:54 - 2014-08-01 20:54 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-01 20:53 - 2014-08-01 20:53 - 04813544 _____ (Piriform Ltd) C:\Users\Nikoláos\Downloads\ccsetup416.exe
2014-07-27 12:23 - 2014-07-27 13:10 - 00000000 ____D () C:\Users\Nikoláos\Downloads\300 Rise of an Empire (2014)
2014-07-27 12:22 - 2014-08-04 23:00 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Noah (2014)
2014-07-27 12:22 - 2014-07-27 12:22 - 00008816 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]300.rise.of.an.empire.2014.720p.brrip.x264.yify.torrent
2014-07-27 12:21 - 2014-08-04 21:07 - 00000000 ____D () C:\Users\Nikoláos\Downloads\La casa del fin de los tiempos (2013) MicroHD
2014-07-27 12:21 - 2014-07-27 12:21 - 00010022 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]noah.2014.720p.brrip.x264.yify.torrent
2014-07-27 12:20 - 2014-07-27 12:20 - 00019271 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]la.casa.del.fin.de.los.tiempos.2013.microhd.720p.spanish.torrent
2014-07-27 12:19 - 2014-08-04 21:03 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Oculus (2013)
2014-07-27 12:18 - 2014-07-27 12:18 - 00008755 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]oculus.2013.720p.brrip.x264.yify.torrent
2014-07-27 12:17 - 2014-08-04 21:09 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Would.You.Rather.2012.BDRiP.AC3-5.1.XviD-AXED
2014-07-27 12:16 - 2014-07-27 12:16 - 00014979 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]would.you.rather.2012.bdrip.ac3.5.1.xvid.axed.torrent

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-22 21:23 - 2014-08-13 07:30 - 00021896 _____ () C:\Users\Nikoláos\Desktop\FRST.txt
2014-08-22 21:22 - 2014-08-13 07:29 - 00000000 ____D () C:\Users\Nikoláos\Desktop\FRST-OlderVersion
2014-08-22 21:22 - 2014-08-13 07:28 - 02101760 _____ (Farbar) C:\Users\Nikoláos\Desktop\FRST64.exe
2014-08-22 21:22 - 2014-01-04 14:57 - 00000000 ____D () C:\FRST
2014-08-22 21:22 - 2013-01-29 20:09 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\uTorrent
2014-08-22 21:16 - 2013-02-01 22:28 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-22 21:10 - 2014-02-16 09:04 - 00003974 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{45697D60-F6CC-40CF-8A3E-089FE9D0AB55}
2014-08-22 21:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-08-22 20:52 - 2013-02-02 13:54 - 00000970 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-22 20:40 - 2013-01-29 21:30 - 00000988 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1767443611-160192221-3438823037-1004UA.job
2014-08-22 20:40 - 2013-01-29 21:30 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1767443611-160192221-3438823037-1004Core.job
2014-08-22 20:21 - 2014-08-18 10:33 - 00151565 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-22 14:11 - 2013-01-29 19:32 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1767443611-160192221-3438823037-1001
2014-08-22 13:52 - 2013-02-02 13:54 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-22 13:52 - 2013-02-02 13:54 - 00000966 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-22 08:54 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-08-21 20:28 - 2012-11-25 18:36 - 00004524 _____ () C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2014-08-21 20:28 - 2012-08-10 18:45 - 00000821 _____ () C:\WINDOWS\SysWOW64\bscs.ini
2014-08-20 11:33 - 2013-10-17 21:14 - 00003178 _____ () C:\WINDOWS\System32\Tasks\HPCeeScheduleForNikoláos
2014-08-20 11:33 - 2013-10-17 21:14 - 00000358 _____ () C:\WINDOWS\Tasks\HPCeeScheduleForNikoláos.job
2014-08-20 11:00 - 2013-01-30 21:17 - 00000052 _____ () C:\WINDOWS\SysWOW64\DOErrors.log
2014-08-20 11:00 - 2013-01-30 21:17 - 00000000 _____ () C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-08-19 21:03 - 2014-08-19 20:17 - 00000000 ____D () C:\Users\Nikoláos\Downloads\The.Expendables.3.2014.DVDSCR.Xvid-DiNGO
2014-08-19 08:53 - 2013-03-31 06:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-08-18 07:16 - 2014-08-18 07:16 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-08-18 07:16 - 2014-08-18 07:16 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\DropboxMaster
2014-08-18 07:16 - 2014-08-18 07:15 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\Dropbox
2014-08-18 07:16 - 2013-03-07 19:13 - 00393728 ___SH () C:\Users\Nikoláos\Desktop\Thumbs.db
2014-08-18 07:04 - 2013-11-27 21:33 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-08-18 07:02 - 2014-01-05 14:39 - 00000000 ___DO () C:\Users\Nikoláos\SkyDrive
2014-08-18 06:50 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-08-18 06:49 - 2013-08-22 15:25 - 01048576 ___SH () C:\WINDOWS\system32\config\BBI
2014-08-16 21:11 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-08-15 22:46 - 2014-08-15 22:46 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-08-15 22:46 - 2014-05-15 22:30 - 00029208 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-08-15 22:46 - 2014-05-15 22:30 - 00001982 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-15 22:46 - 2014-01-04 15:03 - 00092008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2014-08-15 22:46 - 2013-03-31 06:58 - 01041168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-08-15 22:46 - 2013-03-31 06:58 - 00427360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-08-15 22:46 - 2013-03-31 06:58 - 00307344 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-08-15 22:46 - 2013-03-31 06:58 - 00224896 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-08-15 22:46 - 2013-03-31 06:58 - 00093568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2014-08-15 22:46 - 2013-03-31 06:58 - 00079184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-08-15 22:46 - 2013-03-31 06:58 - 00065776 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-08-15 22:00 - 2014-08-15 21:20 - 00010588 _____ () C:\zoek-results.log
2014-08-15 21:52 - 2013-08-22 16:44 - 00393480 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-08-15 21:49 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-08-15 21:49 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-08-15 21:49 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-08-15 21:49 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-08-15 21:49 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-08-15 21:41 - 2014-08-15 21:17 - 00000000 ____D () C:\zoek_backup
2014-08-15 21:13 - 2014-08-15 21:13 - 04108341 _____ () C:\Users\Nikoláos\Desktop\zoek.zip
2014-08-15 07:50 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-08-15 07:49 - 2013-08-14 21:22 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-08-15 07:43 - 2013-02-01 19:32 - 99218768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-08-15 07:39 - 2014-07-20 18:50 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-08-15 07:03 - 2014-04-17 23:11 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-08-14 21:37 - 2014-08-14 21:27 - 00000000 ____D () C:\AdwCleaner
2014-08-14 21:26 - 2014-08-14 21:26 - 01356107 _____ () C:\Users\Nikoláos\Desktop\adwcleaner_3.305.exe
2014-08-14 21:23 - 2014-08-14 21:23 - 00003939 _____ () C:\Users\Nikoláos\Desktop\JRT.txt
2014-08-14 21:06 - 2014-08-14 21:06 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-08-14 07:37 - 2014-06-13 22:18 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-08-14 07:34 - 2014-07-16 09:05 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-08-14 07:34 - 2014-04-17 23:11 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-08-14 07:34 - 2014-04-17 23:10 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-08-14 07:34 - 2014-04-17 23:10 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-08-14 07:34 - 2014-04-17 23:10 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-08-14 07:34 - 2014-04-09 10:26 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-08-14 07:34 - 2014-04-09 10:26 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-08-14 07:33 - 2014-07-16 09:05 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-08-14 07:33 - 2014-04-30 22:48 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-08-14 07:33 - 2014-04-30 22:32 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-08-14 07:33 - 2014-04-17 23:10 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-08-14 07:33 - 2014-04-17 23:10 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-08-14 07:33 - 2014-04-17 23:10 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-08-14 07:33 - 2014-04-17 23:10 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-08-14 07:33 - 2014-04-17 23:10 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-08-14 07:33 - 2014-04-17 23:10 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-08-13 20:09 - 2014-08-13 20:09 - 01016261 _____ (Thisisu) C:\Users\Nikoláos\Desktop\JRT.exe
2014-08-13 07:35 - 2014-08-13 07:35 - 00011364 _____ () C:\Users\Nikoláos\Desktop\Addition.zip
2014-08-13 07:33 - 2014-08-13 07:32 - 00041453 _____ () C:\Users\Nikoláos\Desktop\Addition.txt
2014-08-12 21:13 - 2014-04-29 21:19 - 00000898 _____ () C:\Users\Nikoláos\Desktop\µTorrent.lnk
2014-08-12 21:13 - 2014-04-29 21:19 - 00000878 _____ () C:\Users\Nikoláos\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-08-09 15:52 - 2014-08-15 21:14 - 01419472 _____ () C:\Users\Nikoláos\Desktop\zoek.scr
2014-08-09 15:52 - 2014-08-15 21:14 - 01419472 _____ () C:\Users\Nikoláos\Desktop\zoek.com
2014-08-09 08:53 - 2013-02-11 06:03 - 00000000 ____D () C:\Users\Nikoláos\AppData\Roaming\Camfrog
2014-08-07 04:12 - 2014-08-14 07:46 - 01336624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-08-07 00:39 - 2014-08-14 07:46 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-08-07 00:38 - 2014-08-14 07:46 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-08-04 23:00 - 2014-07-27 12:22 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Noah (2014)
2014-08-04 21:09 - 2014-07-27 12:17 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Would.You.Rather.2012.BDRiP.AC3-5.1.XviD-AXED
2014-08-04 21:09 - 2013-09-20 20:11 - 00000000 ____D () C:\Users\Nikoláos\Downloads\World.War.Z.2013 BRRip XViD AC3 juggs
2014-08-04 21:08 - 2014-04-02 21:12 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Thor The Dark World (2013)
2014-08-04 21:07 - 2014-07-27 12:21 - 00000000 ____D () C:\Users\Nikoláos\Downloads\La casa del fin de los tiempos (2013) MicroHD
2014-08-04 21:06 - 2014-03-12 23:19 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Last Vegas (2013) [1080p]
2014-08-04 21:05 - 2014-01-17 19:08 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Carrie (2013)
2014-08-04 21:03 - 2014-07-27 12:19 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Oculus (2013)
2014-08-03 22:19 - 2014-08-03 22:15 - 00000000 ____D () C:\Users\Nikoláos\Downloads\The.Secret.Life.Of.Bees[2008][Director's.Cut]DvDrip-aXXo
2014-08-03 22:13 - 2014-08-03 22:13 - 00057013 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]the.secret.life.of.bees.2008.director.s.cut.dvdrip.axxo.torrent
2014-08-02 11:42 - 2014-08-02 11:43 - 00450905 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20140802-114347.backup
2014-08-02 07:44 - 2014-08-14 07:46 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-08-02 05:56 - 2014-08-14 07:46 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-08-02 05:11 - 2014-08-14 07:46 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-08-02 02:17 - 2014-05-16 13:05 - 00704480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-08-02 02:17 - 2014-05-16 13:05 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-01 21:01 - 2013-12-28 10:40 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-01 20:58 - 2013-04-14 11:28 - 00000000 ____D () C:\Users\Nikoláos\Documents\CC-cleaner
2014-08-01 20:54 - 2014-08-01 20:54 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-01 20:54 - 2013-04-14 10:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-08-01 20:53 - 2014-08-01 20:53 - 04813544 _____ (Piriform Ltd) C:\Users\Nikoláos\Downloads\ccsetup416.exe
2014-08-01 20:53 - 2013-04-14 10:54 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-28 22:31 - 2014-01-05 11:56 - 00000000 ____D () C:\Users\Nikoláos
2014-07-27 23:06 - 2013-11-14 14:40 - 01938474 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-27 23:06 - 2013-11-14 14:24 - 00803244 _____ () C:\WINDOWS\system32\perfh005.dat
2014-07-27 23:06 - 2013-11-14 14:24 - 00184236 _____ () C:\WINDOWS\system32\perfc005.dat
2014-07-27 13:10 - 2014-07-27 12:23 - 00000000 ____D () C:\Users\Nikoláos\Downloads\300 Rise of an Empire (2014)
2014-07-27 12:22 - 2014-07-27 12:22 - 00008816 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]300.rise.of.an.empire.2014.720p.brrip.x264.yify.torrent
2014-07-27 12:21 - 2014-07-27 12:21 - 00010022 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]noah.2014.720p.brrip.x264.yify.torrent
2014-07-27 12:20 - 2014-07-27 12:20 - 00019271 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]la.casa.del.fin.de.los.tiempos.2013.microhd.720p.spanish.torrent
2014-07-27 12:18 - 2014-07-27 12:18 - 00008755 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]oculus.2013.720p.brrip.x264.yify.torrent
2014-07-27 12:16 - 2014-07-27 12:16 - 00014979 _____ () C:\Users\Nikoláos\Downloads\[kickass.to]would.you.rather.2012.bdrip.ac3.5.1.xvid.axed.torrent
2014-07-27 11:51 - 2013-03-14 17:09 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-27 11:51 - 2013-03-14 17:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-26 20:53 - 2013-11-22 18:24 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Elysium (2013) DVDRip XviD-MAXSPEED
2014-07-25 16:52 - 2014-08-14 07:45 - 23645696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-25 15:51 - 2014-08-14 07:45 - 17524224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-25 15:28 - 2014-08-14 07:45 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-07-25 15:25 - 2014-08-14 07:45 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-25 15:25 - 2014-08-14 07:45 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-07-25 14:59 - 2014-08-14 07:45 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-07-25 14:40 - 2014-08-14 07:45 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-25 14:34 - 2014-08-14 07:45 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-07-25 14:30 - 2014-08-14 07:45 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-07-25 14:28 - 2014-08-14 07:45 - 05824512 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-25 14:28 - 2014-08-14 07:45 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-07-25 14:21 - 2014-08-14 07:45 - 02184704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-25 14:17 - 2014-08-14 07:45 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-25 14:10 - 2014-08-14 07:45 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-25 14:08 - 2014-08-14 07:45 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-07-25 14:06 - 2014-08-14 07:45 - 04204032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-25 13:52 - 2014-08-14 07:45 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-25 13:47 - 2014-08-14 07:45 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-25 13:43 - 2014-08-14 07:45 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-25 13:43 - 2014-08-14 07:45 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 13:42 - 2014-08-14 07:45 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-25 13:39 - 2014-08-14 07:45 - 02087936 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-25 13:34 - 2014-08-14 07:45 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-25 13:29 - 2014-08-14 07:45 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-25 13:23 - 2014-08-14 07:45 - 13547008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-25 13:13 - 2014-08-14 07:45 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-25 13:09 - 2014-08-14 07:45 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-25 13:07 - 2014-08-14 07:45 - 02001920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-25 13:03 - 2014-08-14 07:45 - 11772928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-25 12:52 - 2014-08-14 07:45 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-25 12:26 - 2014-08-14 07:45 - 01431040 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-25 12:17 - 2014-08-14 07:45 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-25 12:09 - 2014-08-14 07:45 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-25 12:05 - 2014-08-14 07:45 - 01792512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-25 12:00 - 2014-08-14 07:45 - 01169920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-25 06:55 - 2013-03-14 17:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-24 21:10 - 2013-05-21 19:26 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Subs
2014-07-24 21:09 - 2014-04-02 21:17 - 00000000 ____D () C:\Users\Nikoláos\Downloads\Endless.Love.2014.WEBRip.x264-AQOS
2014-07-24 21:07 - 2014-04-19 15:46 - 00000000 ____D () C:\Users\Nikoláos\Downloads\The.Den.2013.HDRip.XviD.MP3-RARBG

Some content of TEMP:
====================
C:\Users\Nikoláos\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpoawn3g.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-18 07:01

==================== End Of Log ============================

Tento keylogger tam mate umyslne

HKLM-x32\...\Run: [MicrosoftSys] => C:\Users\Nikoláos\ApData\KeyLoggerNastaveni\MicrosoftSys.exe [50176 2014-02-23] (Microsoft ©)

omlouvám se za pozdní odpověď....a ano mám. Když už se na něj ptáte...nemáte náhodou tip na nějaký kvalitnější,nejlépe free

Děkuji

V KeyLoggerech se moc nevyznam, ale co mam tak info, tak ty free moc kvalitni nejsou - za kvalitu se v tomto pripade plati. Nejlepe nejaky HW keylogger

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491320 2012-07-26] (CyberLink Corp.)
  HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
  HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()
  HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
  HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\szninstall.exe [1009288 2012-09-13] ()
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92152 2013-01-22] ()
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [18706176 2013-01-08] (Skype Technologies S.A.)
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22734160 2014-08-08] (Google)
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [6265624 2014-07-23] (Piriform Ltd)
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272832 2014-01-10] (Microsoft Corporation)
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [779776 2014-03-13] (ZONER software)
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Camfrog] => C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe [13021536 2014-04-25] (Camshare, Inc.)
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [uTorrent] => C:\Users\Nikoláos\AppData\Roaming\uTorrent\uTorrent.exe [1329744 2014-08-12] (BitTorrent Inc.)
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\MountPoints2: {7ddbf49c-1573-11e4-beed-6c3be5f35b17} - "F:\Startme.exe"
  HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\MountPoints2: {d6802248-3955-11e3-beb3-a417314a135e} - "F:\Startme.exe"
  ShellIconOverlayIdentifiers: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
  ShellIconOverlayIdentifiers: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
  ShellIconOverlayIdentifiers: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
  ShellIconOverlayIdentifiers-x32: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
  ShellIconOverlayIdentifiers-x32: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
  ShellIconOverlayIdentifiers-x32: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
  GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1006\User: Group Policy restriction detected <======= ATTENTION
  GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1001\User: Group Policy restriction detected <======= ATTENTION
  
  SearchScopes: HKLM - {7C388F24-47CE-4A2F-B582-1F81B76267F7} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
  SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG1&q={searchTerms}
  Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
  
  2014-08-15 21:45 - 2014-02-13 23:59 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
  2014-08-15 21:20 - 2014-08-15 22:00 - 00010588 _____ () C:\zoek-results.log
  2014-08-15 21:17 - 2014-08-15 21:41 - 00000000 ____D () C:\zoek_backup
  2014-08-15 21:14 - 2014-08-09 15:52 - 01419472 _____ () C:\Users\Nikoláos\Desktop\zoek.scr
  2014-08-15 21:14 - 2014-08-09 15:52 - 01419472 _____ () C:\Users\Nikoláos\Desktop\zoek.com
  2014-08-15 21:13 - 2014-08-15 21:13 - 04108341 _____ () C:\Users\Nikoláos\Desktop\zoek.zip
  2014-08-14 21:29 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll
  2014-08-14 21:27 - 2014-08-14 21:37 - 00000000 ____D () C:\AdwCleaner
  2014-08-14 21:26 - 2014-08-14 21:26 - 01356107 _____ () C:\Users\Nikoláos\Desktop\adwcleaner_3.305.exe
  2014-08-14 21:23 - 2014-08-14 21:23 - 00003939 _____ () C:\Users\Nikoláos\Desktop\JRT.txt
  2014-08-14 21:06 - 2014-08-14 21:06 - 00000000 ____D () C:\WINDOWS\ERUNT
  
  Hosts:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Děkuji za radu...potřebuji nějaký keylogg, jelikož se mi stalo, že jsem rozepsanou věc, na které jsem pracoval celkem dlouho ztratil jelikož se mi nějakým záhadným způsobem poškodil docx soubor a kolega mi poradil právě keylogger k řekněme záloze....každopádně díky za radu...

zde dávál fixlog

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-08-2014
Ran by Nikoláos at 2014-08-30 13:04:19 Run:1
Running from C:\Users\Nikoláos\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491320 2012-07-26] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\szninstall.exe [1009288 2012-09-13] ()
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Nikoláos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92152 2013-01-22] ()
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [18706176 2013-01-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22734160 2014-08-08] (Google)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [6265624 2014-07-23] (Piriform Ltd)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272832 2014-01-10] (Microsoft Corporation)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [779776 2014-03-13] (ZONER software)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [Camfrog] => C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe [13021536 2014-04-25] (Camshare, Inc.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\Run: [uTorrent] => C:\Users\Nikoláos\AppData\Roaming\uTorrent\uTorrent.exe [1329744 2014-08-12] (BitTorrent Inc.)
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\MountPoints2: {7ddbf49c-1573-11e4-beed-6c3be5f35b17} - "F:\Startme.exe"
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\...\MountPoints2: {d6802248-3955-11e3-beb3-a417314a135e} - "F:\Startme.exe"
ShellIconOverlayIdentifiers: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1006\User: Group Policy restriction detected <======= ATTENTION
GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1001\User: Group Policy restriction detected <======= ATTENTION

SearchScopes: HKLM - {7C388F24-47CE-4A2F-B582-1F81B76267F7} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG1&q={searchTerms}
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File

2014-08-15 21:45 - 2014-02-13 23:59 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-08-15 21:20 - 2014-08-15 22:00 - 00010588 _____ () C:\zoek-results.log
2014-08-15 21:17 - 2014-08-15 21:41 - 00000000 ____D () C:\zoek_backup
2014-08-15 21:14 - 2014-08-09 15:52 - 01419472 _____ () C:\Users\Nikoláos\Desktop\zoek.scr
2014-08-15 21:14 - 2014-08-09 15:52 - 01419472 _____ () C:\Users\Nikoláos\Desktop\zoek.com
2014-08-15 21:13 - 2014-08-15 21:13 - 04108341 _____ () C:\Users\Nikoláos\Desktop\zoek.zip
2014-08-14 21:29 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll
2014-08-14 21:27 - 2014-08-14 21:37 - 00000000 ____D () C:\AdwCleaner
2014-08-14 21:26 - 2014-08-14 21:26 - 01356107 _____ () C:\Users\Nikoláos\Desktop\adwcleaner_3.305.exe
2014-08-14 21:23 - 2014-08-14 21:23 - 00003939 _____ () C:\Users\Nikoláos\Desktop\JRT.txt
2014-08-14 21:06 - 2014-08-14 21:06 - 00000000 ____D () C:\WINDOWS\ERUNT

Hosts:
Reboot:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLVirtualDrive => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper => value deleted successfully.
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value deleted successfully.
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value deleted successfully.
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value deleted successfully.
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveSync => value deleted successfully.
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner => value deleted successfully.
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\msnmsgr => value deleted successfully.
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate => value deleted successfully.
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Camfrog => value deleted successfully.
HKU\S-1-5-21-1767443611-160192221-3438823037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => value deleted successfully.
"HKU\S-1-5-21-1767443611-160192221-3438823037-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7ddbf49c-1573-11e4-beed-6c3be5f35b17}" => Key deleted successfully.
"HKCR\CLSID\{7ddbf49c-1573-11e4-beed-6c3be5f35b17}" => Key not found.
"HKU\S-1-5-21-1767443611-160192221-3438823037-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d6802248-3955-11e3-beb3-a417314a135e}" => Key deleted successfully.
"HKCR\CLSID\{d6802248-3955-11e3-beb3-a417314a135e}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SkyDrive1" => Key not found.
"HKCR\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SkyDrive2" => Key not found.
"HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SkyDrive3" => Key not found.
"HKCR\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SkyDrive1" => Key not found.
"HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SkyDrive2" => Key not found.
"HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SkyDrive3" => Key not found.
"HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}" => Key not found.
C:\WINDOWS\system32\GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1006\User => Moved successfully.
C:\WINDOWS\system32\GroupPolicyUsers\S-1-5-21-1767443611-160192221-3438823037-1001\User => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7C388F24-47CE-4A2F-B582-1F81B76267F7}" => Key deleted successfully.
"HKCR\CLSID\{7C388F24-47CE-4A2F-B582-1F81B76267F7}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2488}" => Key deleted successfully.
"HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2488}" => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value deleted successfully.
"HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}" => Key not found.
C:\WINDOWS\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Nikoláos\Desktop\zoek.scr => Moved successfully.
C:\Users\Nikoláos\Desktop\zoek.com => Moved successfully.
C:\Users\Nikoláos\Desktop\zoek.zip => Moved successfully.
C:\WINDOWS\SysWOW64\sqlite3.dll => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Nikoláos\Desktop\adwcleaner_3.305.exe => Moved successfully.
C:\Users\Nikoláos\Desktop\JRT.txt => Moved successfully.
C:\WINDOWS\ERUNT => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot.

==== End of Fixlog ====

Keylogger slouzi ke sledovani veskere cinnosti, defakto ke smirovani...

Na zalohy doporucuji bud ukladat na flash disk nebo treba nejakou cloudovou sluzbu ala dropbox atd...

No tuto zálohu na cloudu mám...jedná se mi spíše o to, že když píši nějaký článek a vypadne např, proud tak to co nemám uložené se ztratí...je kromě keyloggeru i jiná cesta aby se mi zálohovalo vše co napíši ihned... ?

Napr. Word dela automaticke ukladani a da se nastavit doba - napr. 5 minut