VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Zasekle weby, všechny prohížeče..

https://forum.viry.cz:443/viewtopic.php?t=146800

Stránka 1 z 1

Zasekle weby, všechny prohížeče..

Napsal: 10 lis 2015 11:42
od Johanik
Zdravím, prosím o pomoc, nejdříve dnes nešla Java, samá chyba, následně jsem odinstaloval, restartoval PC a od te doby jakekoli weby tezko k nacteni, jak pod Mozilou, IE, tak Chrome, Java znovu nainstalovana, ale porad to neslape, jiank PC vypada ze slape naprosto OK.

Díky za pomoc

Logfile of random's system information tool 1.10 (written by random/random)
Run by Sretr at 2015-11-10 11:40:18
Microsoft Windows 8.1 Pro
System drive C: has 36 GB (32%) free of 114 GB
Total RAM: 3489 MB (43% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:40:19, on 10. 11. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhostex.exe
C:\Program Files\TeamViewer\TeamViewer.exe
C:\Windows\Explorer.EXE
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Windows\system32\igfxHK.exe
C:\Windows\system32\igfxTray.exe
C:\Windows\system32\igfxEM.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\system32\GWX\GWX.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe
C:\Users\Sretr\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\APC\PowerChute Personal Edition\apcsystray.exe
C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
C:\Windows\System32\SettingSyncHost.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Sretr\Downloads\RSIT.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Sretr\Downloads\RSIT.exe
C:\Program Files\trend micro\Sretr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: PDF Architect Helper - {691B33B0-B86E-47F3-81C7-56E4FE3B929C} - C:\Program Files\PDF Architect 2\creator-ie-helper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files\PDF Architect 2\creator-ie-plugin.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [Classic Start Menu] "C:\Program Files\Classic Shell\ClassicStartMenu.exe" -autorun
O4 - HKLM\..\Run: [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Display] C:\Program Files\APC\PowerChute Personal Edition\DataCollectionLauncher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [ApacheTomcatMonitor6.0_Tomcat6] "C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6w.exe" //MS//Tomcat6
O4 - HKCU\..\Run: [NVRStartup] C:\Program Files\ShanyNVR\Startup.bat
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Startup: Dropbox.lnk = C:\Users\Sretr\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Odeslat do OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
O4 - Startup: Synology Cloud Station.lnk = C:\Program Files\Synology\CloudStation\bin\launcher.exe
O4 - Global Startup: APC UPS Status.lnk = C:\Program Files\APC\PowerChute Personal Edition\Display.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.nvsip.com
O16 - DPF: {262587CD-537B-4BFF-AED8-080DDA1CA71D} (MSJOCX Control) - http://www.nvsip.com/ActiveX/NVSIP.cab
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 5.22.0.cab
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: APC Data Service - Schneider Electric - C:\Program Files\APC\PowerChute Personal Edition\dataserv.exe
O23 - Service: APC UPS Service - Schneider Electric - C:\Program Files\APC\PowerChute Personal Edition\mainserv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\system32\IntelCpHeciSvc.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Professional M1210 MFP Series Receive Fax Service (HPM1210RcvFaxSrvc) - HP - C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Intel Corporation - C:\Windows\system32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files\PDF Architect 2\ws.exe
O23 - Service: PDF Architect 2 Creator - pdfforge GmbH - C:\Program Files\PDF Architect 2\creator-ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files\PDF Architect 2\crash-handler-ws.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
O23 - Service: Apache Tomcat 6.0 Tomcat6 (Tomcat6) - Apache Software Foundation - C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6.exe

--
End of file - 11364 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2898656017-2644811017-3975520930-1002Core.job - C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2898656017-2644811017-3975520930-1002UA.job - C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Sretr\AppData\Roaming\Mozilla\Firefox\Profiles\bc4jsj3w.default

prefs.js - "browser.startup.homepage" - "http://www.johanik.cz/homep.htm"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"pdf_architect_2_conv@pdfarchitect.org"=C:\Program Files\PDF Architect 2\resources\pdfarchitect2firefoxextension\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.66.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@NPJocx/WebCC]
"Description"=WebCC For Mozilla
"Path"=C:\Program Files\ICamVideoPlayer\NPJOCX.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\HCWP Web Components]
"Description"=
"Path"=C:\Program Files\HCWP Web Components\npHCWPWebVideoPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\PDF Architect 2]
"Description"=
"Path"=C:\Program Files\PDF Architect 2\np-previewer.dll


C:\Users\Sretr\AppData\Roaming\Mozilla\Firefox\Profiles\bc4jsj3w.default\searchplugins\
ask-search.xml
seznam-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{691B33B0-B86E-47F3-81C7-56E4FE3B929C}]
PDF Architect Helper - C:\Program Files\PDF Architect 2\creator-ie-helper.dll [2014-10-10 37928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-10 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-13 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-10 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
{DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - PDF Architect Toolbar - C:\Program Files\PDF Architect 2\creator-ie-plugin.dll [2014-10-10 478760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2013-02-26 11877448]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 150208]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-11-21 36352]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-11-06 6133520]
""= []
"Display"=C:\Program Files\APC\PowerChute Personal Edition\DataCollectionLauncher.exe [2012-01-24 284024]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2015-08-06 421888]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-10-06 596528]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-10-16 157456]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [2015-04-26 43816]
"ApplePhotoStreams"=C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2015-04-26 43816]
"ApacheTomcatMonitor6.0_Tomcat6"=C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6w.exe [2011-11-28 102400]
"NVRStartup"=C:\Program Files\ShanyNVR\Startup.bat []
"Dropbox Update"=C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-17 134512]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-10-14 48145024]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
APC UPS Status.lnk - C:\Program Files\APC\PowerChute Personal Edition\Display.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe

C:\Users\Sretr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Sretr\AppData\Roaming\Dropbox\bin\Dropbox.exe
Odeslat do OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
Synology Cloud Station.lnk - C:\Program Files\Synology\CloudStation\bin\launcher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-10 11:38:52 ----D---- C:\Program Files\iTunes
2015-11-10 11:38:52 ----D---- C:\Program Files\iPod
2015-11-10 11:38:15 ----D---- C:\Program Files\Apple Software Update
2015-11-10 11:38:04 ----D---- C:\Program Files\Bonjour
2015-11-10 11:37:45 ----SHD---- C:\Config.Msi
2015-11-10 11:35:43 ----D---- C:\Program Files\Common Files\Java
2015-11-10 11:32:26 ----D---- C:\Program Files\trend micro
2015-11-10 11:32:19 ----D---- C:\rsit
2015-11-10 11:24:51 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2015-11-09 09:04:11 ----D---- C:\Program Files\Mozilla Firefox
2015-10-15 11:19:24 ----A---- C:\Windows\system32\invagent.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\generaltel.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\devinv.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-10-15 11:19:24 ----A---- C:\Windows\system32\appraiser.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\aeinv.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\acmigration.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wucltux.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuaueng.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuauclt.exe
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuapp.exe
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuapi.dll
2015-10-14 13:54:30 ----A---- C:\Windows\system32\wuwebv.dll
2015-10-14 13:54:30 ----A---- C:\Windows\system32\wudriver.dll
2015-10-14 13:54:01 ----A---- C:\Windows\system32\KernelBase.dll
2015-10-14 13:54:01 ----A---- C:\Windows\system32\advapi32.dll
2015-10-14 13:53:53 ----A---- C:\Windows\system32\d2d1.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\ucrtbase.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 13:53:46 ----A---- C:\Windows\system32\NcdAutoSetup.dll
2015-10-14 13:53:45 ----A---- C:\Windows\system32\shell32.dll
2015-10-14 13:53:40 ----A---- C:\Windows\system32\winresume.exe
2015-10-14 13:53:40 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-10-14 13:53:39 ----A---- C:\Windows\system32\winload.exe
2015-10-14 13:53:39 ----A---- C:\Windows\system32\ntdll.dll
2015-10-14 13:53:39 ----A---- C:\Windows\system32\fveapi.dll
2015-10-14 13:53:39 ----A---- C:\Windows\system32\BdeHdCfg.exe
2015-10-14 13:53:38 ----A---- C:\Windows\system32\fvecpl.dll
2015-10-14 13:53:38 ----A---- C:\Windows\system32\BdeHdCfgLib.dll
2015-10-14 13:53:24 ----A---- C:\Windows\system32\mshtml.dll
2015-10-14 13:53:14 ----A---- C:\Windows\system32\jscript9.dll
2015-10-14 13:53:13 ----A---- C:\Windows\system32\ieframe.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\wininet.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\webcheck.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\vbscript.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\urlmon.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\msfeeds.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\jscript.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\inetcomm.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\ieui.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\iertutil.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\iedkcs32.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\ieapfltr.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\ie4uinit.exe
2015-10-14 13:53:12 ----A---- C:\Windows\system32\dxtrans.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\dxtmsft.dll
2015-10-13 07:26:09 ----D---- C:\Program Files\Common Files\STORMWARE Shared
2015-10-13 07:26:09 ----D---- C:\Program Files\Common Files\MSSoap
2015-10-13 06:58:19 ----A---- C:\Windows\system32\aswBoot.exe

======List of files/folders modified in the last 1 month======

2015-11-10 11:40:08 ----D---- C:\Windows\Temp
2015-11-10 11:39:04 ----SHD---- C:\Windows\Installer
2015-11-10 11:38:52 ----D---- C:\Program Files\Common Files\Apple
2015-11-10 11:38:52 ----D---- C:\Program Files
2015-11-10 11:38:14 ----D---- C:\Windows\system32\Tasks
2015-11-10 11:38:04 ----RD---- C:\Windows\System32
2015-11-10 11:35:43 ----D---- C:\Program Files\Common Files
2015-11-10 11:35:37 ----D---- C:\Windows\Prefetch
2015-11-10 11:35:21 ----D---- C:\Program Files\Java
2015-11-10 11:28:43 ----D---- C:\Users\Sretr\AppData\Roaming\Apple Computer
2015-11-10 11:25:52 ----D---- C:\ProgramData\Oracle
2015-11-10 11:20:49 ----D---- C:\Users\Sretr\AppData\Roaming\Skype
2015-11-10 11:20:32 ----D---- C:\Users\Sretr\AppData\Roaming\Dropbox
2015-11-10 11:20:26 ----D---- C:\Windows\inf
2015-11-10 11:19:45 ----D---- C:\Windows\system32\sru
2015-11-10 10:18:48 ----D---- C:\Users\Sretr\AppData\Roaming\ClassicShell
2015-11-10 10:11:14 ----HD---- C:\ProgramData
2015-11-10 10:09:59 ----SHD---- C:\System Volume Information
2015-11-10 09:20:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-10 09:14:47 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-10 09:14:46 ----D---- C:\Windows\system32\Drivers
2015-11-10 09:14:41 ----A---- C:\Windows\system32\PCPELog.txt
2015-11-10 04:22:47 ----D---- C:\Windows\system32\config
2015-11-10 04:20:41 ----D---- C:\Windows\system32\DriverStore
2015-11-10 04:20:34 ----D---- C:\Windows\Microsoft.NET
2015-11-08 02:41:47 ----D---- C:\Windows\AppReadiness
2015-11-06 08:20:33 ----D---- C:\Program Files\Opera
2015-11-06 05:19:31 ----HD---- C:\Program Files\WindowsApps
2015-10-31 03:15:37 ----RD---- C:\Windows\assembly
2015-10-30 06:11:44 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-10-30 06:11:26 ----D---- C:\Program Files\Microsoft Office 15
2015-10-29 11:29:41 ----D---- C:\ProgramData\firebird
2015-10-29 08:35:20 ----D---- C:\Windows
2015-10-29 08:30:22 ----SD---- C:\Windows\Downloaded Program Files
2015-10-29 08:19:48 ----D---- C:\Program Files\TeamViewer
2015-10-20 11:17:01 ----D---- C:\Windows\WinSxS
2015-10-20 11:17:01 ----D---- C:\Windows\CbsTemp
2015-10-20 03:21:32 ----D---- C:\Windows\system32\catroot2
2015-10-19 03:23:16 ----D---- C:\Windows\rescache
2015-10-18 16:30:22 ----RD---- C:\Windows\ToastData
2015-10-18 16:30:22 ----D---- C:\Windows\system32\cs-CZ
2015-10-18 16:30:22 ----D---- C:\Windows\system32\CodeIntegrity
2015-10-18 16:30:22 ----D---- C:\Windows\system32\Boot
2015-10-18 16:30:22 ----D---- C:\Windows\system32\appraiser
2015-10-18 16:30:22 ----D---- C:\Windows\apppatch
2015-10-18 16:30:22 ----D---- C:\Program Files\Internet Explorer
2015-10-16 05:51:29 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-10-14 14:48:43 ----D---- C:\Windows\system32\MRT
2015-10-14 14:46:56 ----A---- C:\Windows\system32\MRT.exe
2015-10-13 07:26:09 ----D---- C:\Program Files\STORMWARE

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-09-22 49776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-09-22 208664]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-11-21 489832]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-09-22 107984]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-09-22 81728]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-11-06 794952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-11-06 435464]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 57344]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-09-22 24016]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-09-22 76000]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-09-22 115640]
R2 NPF;Sadp Driver (NPF); \??\C:\Windows\system32\drivers\npf.sys [2015-04-28 36600]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-09-22 220752]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2014-03-07 2929152]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-02-26 2614216]
R3 iwdbus;@oem2.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-01 23448]
R3 MEI;@oem10.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECI.sys [2013-04-11 56432]
R3 RTL8168;@netrt630x86.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x86.sys [2013-06-18 490496]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\System32\drivers\serscan.sys [2014-10-29 8704]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\Windows\System32\drivers\iaiogpio.sys [2013-07-23 22016]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\Windows\System32\drivers\iaioi2c.sys [2013-07-23 61936]
S3 intaud_WaveExtensible;@oem1.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-01 32664]
S3 netr73;@netr73.inf,%General.Service.DispName%;RT73 USB - ovladač rozšiřitelné karty pro bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\netr73.sys [2013-06-18 564800]
S3 USBAAPL;@oem33.inf,%USBAAPL.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2014-07-28 45056]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 APC Data Service;APC Data Service; C:\Program Files\APC\PowerChute Personal Edition\dataserv.exe [2012-01-24 21880]
R2 APC UPS Service;APC UPS Service; C:\Program Files\APC\PowerChute Personal Edition\mainserv.exe [2012-01-24 705912]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-10-07 60720]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-09-22 146600]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 390416]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2015-10-07 1883320]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 33088]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [2013-03-19 98304]
R2 HPM1210RcvFaxSrvc;HP LaserJet Professional M1210 MFP Series Receive Fax Service; C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe [2010-05-11 247352]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-09-27 100256]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-11-21 15720]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-03-17 250352]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 583680]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-04-11 169432]
R2 PDF Architect 2 Creator;PDF Architect 2 Creator; C:\Program Files\PDF Architect 2\creator-ws.exe [2014-10-10 738856]
R2 TeamViewer;TeamViewer 10; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-09-22 3219136]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [2013-03-19 3784704]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-10-16 541456]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 33088]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\system32\IntelCpHeciSvc.exe [2014-03-17 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 637912]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [2015-07-31 235696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-09 147624]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-03-30 150600]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files\PDF Architect 2\ws.exe [2014-10-10 1771560]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files\PDF Architect 2\crash-handler-ws.exe [2014-10-10 861736]
S3 Tomcat6;Apache Tomcat 6.0 Tomcat6; C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6.exe [2011-11-28 74752]

-----------------EOF-----------------

Re: Zasekle weby, všechny prohížeče..

Napsal: 10 lis 2015 18:29
od Rudy
Zdravím!
Spusťte tuto utuilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Zasekle weby, všechny prohížeče..

Napsal: 10 lis 2015 20:50
od Johanik
Tak níže log, ovšem během odpoledne se už vše tak nějak prapodivně vrátilo do normálu a vše funguje jak ma, nechapu to...

# AdwCleaner v5.019 - Logfile created 10/11/2015 at 20:45:58
# Updated 08/11/2015 by Xplode
# Database : 2015-11-09.1 [Server]
# Operating system : Windows 8.1 Pro (x86)
# Username : Sretr - SRETR3
# Running from : C:\Users\Sretr\Downloads\adwcleaner_5.019.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\apn
[-] Folder Deleted : C:\Users\Sretr\AppData\Local\Temp\apn

***** [ Files ] *****

[-] File Deleted : C:\Users\Sretr\AppData\Roaming\Mozilla\Firefox\Profiles\bc4jsj3w.default\searchplugins\ask-search.xml

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [882 bytes] ##########

Re: Zasekle weby, všechny prohížeče..

Napsal: 10 lis 2015 20:57
od Rudy
Dejte nový log RSIT.

Re: Zasekle weby, všechny prohížeče..

Napsal: 10 lis 2015 21:01
od Johanik
tady je...

Logfile of random's system information tool 1.10 (written by random/random)
Run by Sretr at 2015-11-10 21:00:49
Microsoft Windows 8.1 Pro
System drive C: has 36 GB (32%) free of 114 GB
Total RAM: 3489 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:00:51, on 10. 11. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhostex.exe
c:\program files\teamviewer\TeamViewer.exe
C:\Windows\Explorer.EXE
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Windows\system32\igfxHK.exe
C:\Windows\system32\igfxTray.exe
C:\Windows\system32\igfxEM.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\system32\GWX\GWX.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe
C:\Users\Sretr\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\APC\PowerChute Personal Edition\apcsystray.exe
C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
C:\Users\Sretr\AppData\Local\CloudStation\CloudStation.app\bin\cloud-ui.exe
C:\Users\Sretr\AppData\Local\CloudStation\CloudStation.app\bin\cloud-connect.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\SettingSyncHost.exe
C:\Users\Sretr\AppData\Local\CloudStation\CloudStation.app\bin\cloud-daemon.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\LiveComm.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\system32\RunDll32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Sretr\Downloads\RSIT.exe
C:\Program Files\trend micro\Sretr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: PDF Architect Helper - {691B33B0-B86E-47F3-81C7-56E4FE3B929C} - C:\Program Files\PDF Architect 2\creator-ie-helper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files\PDF Architect 2\creator-ie-plugin.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [Classic Start Menu] "C:\Program Files\Classic Shell\ClassicStartMenu.exe" -autorun
O4 - HKLM\..\Run: [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Display] C:\Program Files\APC\PowerChute Personal Edition\DataCollectionLauncher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [ApacheTomcatMonitor6.0_Tomcat6] "C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6w.exe" //MS//Tomcat6
O4 - HKCU\..\Run: [NVRStartup] C:\Program Files\ShanyNVR\Startup.bat
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Startup: Dropbox.lnk = C:\Users\Sretr\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Odeslat do OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
O4 - Startup: Synology Cloud Station.lnk = C:\Program Files\Synology\CloudStation\bin\launcher.exe
O4 - Global Startup: APC UPS Status.lnk = C:\Program Files\APC\PowerChute Personal Edition\Display.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.nvsip.com
O16 - DPF: {262587CD-537B-4BFF-AED8-080DDA1CA71D} (MSJOCX Control) - http://www.nvsip.com/ActiveX/NVSIP.cab
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 5.22.0.cab
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: APC Data Service - Schneider Electric - C:\Program Files\APC\PowerChute Personal Edition\dataserv.exe
O23 - Service: APC UPS Service - Schneider Electric - C:\Program Files\APC\PowerChute Personal Edition\mainserv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\system32\IntelCpHeciSvc.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Professional M1210 MFP Series Receive Fax Service (HPM1210RcvFaxSrvc) - HP - C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Intel Corporation - C:\Windows\system32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files\PDF Architect 2\ws.exe
O23 - Service: PDF Architect 2 Creator - pdfforge GmbH - C:\Program Files\PDF Architect 2\creator-ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files\PDF Architect 2\crash-handler-ws.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
O23 - Service: Apache Tomcat 6.0 Tomcat6 (Tomcat6) - Apache Software Foundation - C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6.exe

--
End of file - 11719 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2898656017-2644811017-3975520930-1002Core.job - C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2898656017-2644811017-3975520930-1002UA.job - C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Sretr\AppData\Roaming\Mozilla\Firefox\Profiles\bc4jsj3w.default

prefs.js - "browser.startup.homepage" - "http://www.johanik.cz/homep.htm"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"pdf_architect_2_conv@pdfarchitect.org"=C:\Program Files\PDF Architect 2\resources\pdfarchitect2firefoxextension\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.66.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@NPJocx/WebCC]
"Description"=WebCC For Mozilla
"Path"=C:\Program Files\ICamVideoPlayer\NPJOCX.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\HCWP Web Components]
"Description"=
"Path"=C:\Program Files\HCWP Web Components\npHCWPWebVideoPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\PDF Architect 2]
"Description"=
"Path"=C:\Program Files\PDF Architect 2\np-previewer.dll


C:\Users\Sretr\AppData\Roaming\Mozilla\Firefox\Profiles\bc4jsj3w.default\searchplugins\
seznam-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{691B33B0-B86E-47F3-81C7-56E4FE3B929C}]
PDF Architect Helper - C:\Program Files\PDF Architect 2\creator-ie-helper.dll [2014-10-10 37928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-10 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-13 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-10 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
{DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - PDF Architect Toolbar - C:\Program Files\PDF Architect 2\creator-ie-plugin.dll [2014-10-10 478760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2013-02-26 11877448]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 150208]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-11-21 36352]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-11-06 6133520]
""= []
"Display"=C:\Program Files\APC\PowerChute Personal Edition\DataCollectionLauncher.exe [2012-01-24 284024]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2015-08-06 421888]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-10-06 596528]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-10-16 157456]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [2015-04-26 43816]
"ApplePhotoStreams"=C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2015-04-26 43816]
"ApacheTomcatMonitor6.0_Tomcat6"=C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6w.exe [2011-11-28 102400]
"NVRStartup"=C:\Program Files\ShanyNVR\Startup.bat []
"Dropbox Update"=C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-17 134512]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-10-14 48145024]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
APC UPS Status.lnk - C:\Program Files\APC\PowerChute Personal Edition\Display.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe

C:\Users\Sretr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Sretr\AppData\Roaming\Dropbox\bin\Dropbox.exe
Odeslat do OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
Synology Cloud Station.lnk - C:\Program Files\Synology\CloudStation\bin\launcher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-10 20:44:14 ----D---- C:\AdwCleaner
2015-11-10 11:38:52 ----D---- C:\Program Files\iTunes
2015-11-10 11:38:52 ----D---- C:\Program Files\iPod
2015-11-10 11:38:15 ----D---- C:\Program Files\Apple Software Update
2015-11-10 11:38:04 ----D---- C:\Program Files\Bonjour
2015-11-10 11:37:45 ----SHD---- C:\Config.Msi
2015-11-10 11:35:43 ----D---- C:\Program Files\Common Files\Java
2015-11-10 11:32:26 ----D---- C:\Program Files\trend micro
2015-11-10 11:32:19 ----D---- C:\rsit
2015-11-10 11:24:51 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2015-11-09 09:04:11 ----D---- C:\Program Files\Mozilla Firefox
2015-10-15 11:19:24 ----A---- C:\Windows\system32\invagent.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\generaltel.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\devinv.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-10-15 11:19:24 ----A---- C:\Windows\system32\appraiser.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\aeinv.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\acmigration.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wucltux.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuaueng.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuauclt.exe
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuapp.exe
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuapi.dll
2015-10-14 13:54:30 ----A---- C:\Windows\system32\wuwebv.dll
2015-10-14 13:54:30 ----A---- C:\Windows\system32\wudriver.dll
2015-10-14 13:54:01 ----A---- C:\Windows\system32\KernelBase.dll
2015-10-14 13:54:01 ----A---- C:\Windows\system32\advapi32.dll
2015-10-14 13:53:53 ----A---- C:\Windows\system32\d2d1.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\ucrtbase.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 13:53:46 ----A---- C:\Windows\system32\NcdAutoSetup.dll
2015-10-14 13:53:45 ----A---- C:\Windows\system32\shell32.dll
2015-10-14 13:53:40 ----A---- C:\Windows\system32\winresume.exe
2015-10-14 13:53:40 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-10-14 13:53:39 ----A---- C:\Windows\system32\winload.exe
2015-10-14 13:53:39 ----A---- C:\Windows\system32\ntdll.dll
2015-10-14 13:53:39 ----A---- C:\Windows\system32\fveapi.dll
2015-10-14 13:53:39 ----A---- C:\Windows\system32\BdeHdCfg.exe
2015-10-14 13:53:38 ----A---- C:\Windows\system32\fvecpl.dll
2015-10-14 13:53:38 ----A---- C:\Windows\system32\BdeHdCfgLib.dll
2015-10-14 13:53:24 ----A---- C:\Windows\system32\mshtml.dll
2015-10-14 13:53:14 ----A---- C:\Windows\system32\jscript9.dll
2015-10-14 13:53:13 ----A---- C:\Windows\system32\ieframe.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\wininet.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\webcheck.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\vbscript.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\urlmon.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\msfeeds.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\jscript.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\inetcomm.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\ieui.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\iertutil.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\iedkcs32.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\ieapfltr.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\ie4uinit.exe
2015-10-14 13:53:12 ----A---- C:\Windows\system32\dxtrans.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\dxtmsft.dll
2015-10-13 07:26:09 ----D---- C:\Program Files\Common Files\STORMWARE Shared
2015-10-13 07:26:09 ----D---- C:\Program Files\Common Files\MSSoap
2015-10-13 06:58:19 ----A---- C:\Windows\system32\aswBoot.exe

======List of files/folders modified in the last 1 month======

2015-11-10 21:00:41 ----D---- C:\Windows\Temp
2015-11-10 21:00:00 ----D---- C:\Windows\system32\sru
2015-11-10 20:50:45 ----RD---- C:\Windows\System32
2015-11-10 20:50:45 ----D---- C:\Windows\inf
2015-11-10 20:50:45 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-10 20:48:28 ----D---- C:\Windows\Prefetch
2015-11-10 20:48:00 ----D---- C:\Users\Sretr\AppData\Roaming\Skype
2015-11-10 20:47:39 ----D---- C:\Users\Sretr\AppData\Roaming\Dropbox
2015-11-10 20:45:58 ----HD---- C:\ProgramData
2015-11-10 12:32:49 ----D---- C:\Users\Sretr\AppData\Roaming\ClassicShell
2015-11-10 12:31:52 ----D---- C:\Users\Sretr\AppData\Roaming\Apple Computer
2015-11-10 12:30:49 ----A---- C:\Windows\system32\PCPELog.txt
2015-11-10 11:39:07 ----SHD---- C:\Windows\Installer
2015-11-10 11:38:52 ----D---- C:\Program Files\Common Files\Apple
2015-11-10 11:38:52 ----D---- C:\Program Files
2015-11-10 11:38:16 ----D---- C:\Windows\system32\Tasks
2015-11-10 11:35:43 ----D---- C:\Program Files\Common Files
2015-11-10 11:35:21 ----D---- C:\Program Files\Java
2015-11-10 11:25:52 ----D---- C:\ProgramData\Oracle
2015-11-10 10:09:59 ----SHD---- C:\System Volume Information
2015-11-10 09:14:47 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-10 09:14:46 ----D---- C:\Windows\system32\Drivers
2015-11-10 04:22:47 ----D---- C:\Windows\system32\config
2015-11-10 04:20:41 ----D---- C:\Windows\system32\DriverStore
2015-11-10 04:20:34 ----D---- C:\Windows\Microsoft.NET
2015-11-08 02:41:47 ----D---- C:\Windows\AppReadiness
2015-11-06 08:20:33 ----D---- C:\Program Files\Opera
2015-11-06 05:19:31 ----HD---- C:\Program Files\WindowsApps
2015-10-31 03:15:37 ----RD---- C:\Windows\assembly
2015-10-30 06:11:44 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-10-30 06:11:26 ----D---- C:\Program Files\Microsoft Office 15
2015-10-29 11:29:41 ----D---- C:\ProgramData\firebird
2015-10-29 08:35:20 ----D---- C:\Windows
2015-10-29 08:30:22 ----SD---- C:\Windows\Downloaded Program Files
2015-10-29 08:19:48 ----D---- C:\Program Files\TeamViewer
2015-10-20 11:17:01 ----D---- C:\Windows\WinSxS
2015-10-20 11:17:01 ----D---- C:\Windows\CbsTemp
2015-10-20 03:21:32 ----D---- C:\Windows\system32\catroot2
2015-10-19 03:23:16 ----D---- C:\Windows\rescache
2015-10-18 16:30:22 ----RD---- C:\Windows\ToastData
2015-10-18 16:30:22 ----D---- C:\Windows\system32\cs-CZ
2015-10-18 16:30:22 ----D---- C:\Windows\system32\CodeIntegrity
2015-10-18 16:30:22 ----D---- C:\Windows\system32\Boot
2015-10-18 16:30:22 ----D---- C:\Windows\system32\appraiser
2015-10-18 16:30:22 ----D---- C:\Windows\apppatch
2015-10-18 16:30:22 ----D---- C:\Program Files\Internet Explorer
2015-10-16 05:51:29 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-10-14 14:48:43 ----D---- C:\Windows\system32\MRT
2015-10-14 14:46:56 ----A---- C:\Windows\system32\MRT.exe
2015-10-13 07:26:09 ----D---- C:\Program Files\STORMWARE

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-09-22 49776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-09-22 208664]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-11-21 489832]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-09-22 107984]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-09-22 81728]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-11-06 794952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-11-06 435464]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 57344]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-09-22 24016]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-09-22 76000]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-09-22 115640]
R2 NPF;Sadp Driver (NPF); \??\C:\Windows\system32\drivers\npf.sys [2015-04-28 36600]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-09-22 220752]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2014-03-07 2929152]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-02-26 2614216]
R3 iwdbus;@oem2.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-01 23448]
R3 MEI;@oem10.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECI.sys [2013-04-11 56432]
R3 RTL8168;@netrt630x86.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x86.sys [2013-06-18 490496]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\System32\drivers\serscan.sys [2014-10-29 8704]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\Windows\System32\drivers\iaiogpio.sys [2013-07-23 22016]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\Windows\System32\drivers\iaioi2c.sys [2013-07-23 61936]
S3 intaud_WaveExtensible;@oem1.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-01 32664]
S3 netr73;@netr73.inf,%General.Service.DispName%;RT73 USB - ovladač rozšiřitelné karty pro bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\netr73.sys [2013-06-18 564800]
S3 USBAAPL;@oem33.inf,%USBAAPL.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2014-07-28 45056]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 APC Data Service;APC Data Service; C:\Program Files\APC\PowerChute Personal Edition\dataserv.exe [2012-01-24 21880]
R2 APC UPS Service;APC UPS Service; C:\Program Files\APC\PowerChute Personal Edition\mainserv.exe [2012-01-24 705912]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-10-07 60720]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-09-22 146600]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 390416]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2015-10-07 1883320]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 33088]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [2013-03-19 98304]
R2 HPM1210RcvFaxSrvc;HP LaserJet Professional M1210 MFP Series Receive Fax Service; C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe [2010-05-11 247352]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-09-27 100256]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-11-21 15720]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-03-17 250352]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 583680]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-04-11 169432]
R2 PDF Architect 2 Creator;PDF Architect 2 Creator; C:\Program Files\PDF Architect 2\creator-ws.exe [2014-10-10 738856]
R2 TeamViewer;TeamViewer 10; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-09-22 3219136]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [2013-03-19 3784704]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-10-16 541456]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 33088]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\system32\IntelCpHeciSvc.exe [2014-03-17 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 637912]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [2015-07-31 235696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-09 147624]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-03-30 150600]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files\PDF Architect 2\ws.exe [2014-10-10 1771560]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files\PDF Architect 2\crash-handler-ws.exe [2014-10-10 861736]
S3 Tomcat6;Apache Tomcat 6.0 Tomcat6; C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6.exe [2011-11-28 74752]

-----------------EOF-----------------

Re: Zasekle weby, všechny prohížeče..

Napsal: 10 lis 2015 21:51
od Rudy
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Program Files\McAfee Security Scan
C:\Program Files\ShanyNVR
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

:services
McComponentHostService

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

Re: Zasekle weby, všechny prohížeče..

Napsal: 11 lis 2015 08:09
od Johanik
provedeno, sken níže

All processes killed
========== FILES ==========
C:\Program Files\McAfee Security Scan\3.11.163\sacoredata folder moved successfully.
C:\Program Files\McAfee Security Scan\3.11.163 folder moved successfully.
C:\Program Files\McAfee Security Scan folder moved successfully.
File/Folder C:\Program Files\ShanyNVR not found.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk moved successfully.
========== SERVICES/DRIVERS ==========
Service McComponentHostService stopped successfully!
Service McComponentHostService deleted successfully!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 1051470 bytes
->Temporary Internet Files folder emptied: 19032 bytes
->FireFox cache emptied: 17800439 bytes
->Flash cache emptied: 492 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: Sretr
->Temp folder emptied: 1380400181 bytes
->Temporary Internet Files folder emptied: 320469211 bytes
->Java cache emptied: 2801972 bytes
->FireFox cache emptied: 368041156 bytes
->Google Chrome cache emptied: 16984011 bytes
->Flash cache emptied: 69986 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 642069429 bytes
RecycleBin emptied: 3885365968 bytes

Total Files Cleaned = 6 328,00 mb


[EMPTYFLASH]

User: Admin
->Flash cache emptied: 0 bytes

User: All Users

User: Default

User: Default User

User: Public

User: Sretr
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 11112015_073036

Files moved on Reboot...
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File C:\Windows\temp\officeclicktorun.exe_c2ruidll(201511102046336D0).log not found!
File C:\Windows\temp\officeclicktorun.exe_streamserver(201511102046336D0).log not found!
C:\Windows\temp\SRETR3-20151110-2046.log moved successfully.

Registry entries deleted on Reboot...

Re: Zasekle weby, všechny prohížeče..

Napsal: 11 lis 2015 17:25
od Rudy
Rudy píše:Dejte nový log RSIT.

Re: Zasekle weby, všechny prohížeče..

Napsal: 11 lis 2015 18:13
od Johanik
tady je...

Logfile of random's system information tool 1.10 (written by random/random)
Run by Sretr at 2015-11-11 18:13:07
Microsoft Windows 8.1 Pro
System drive C: has 42 GB (37%) free of 114 GB
Total RAM: 3489 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:13:10, on 11. 11. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\igfxHK.exe
C:\Windows\system32\igfxTray.exe
C:\Program Files\TeamViewer\TeamViewer.exe
C:\Windows\system32\igfxEM.exe
C:\Windows\System32\SettingSyncHost.exe
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\GWX\GWX.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Sretr\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\APC\PowerChute Personal Edition\apcsystray.exe
C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
C:\Users\Sretr\AppData\Local\CloudStation\CloudStation.app\bin\cloud-ui.exe
C:\Users\Sretr\AppData\Local\CloudStation\CloudStation.app\bin\cloud-connect.exe
C:\Windows\system32\conhost.exe
C:\Users\Sretr\AppData\Local\CloudStation\CloudStation.app\bin\cloud-daemon.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
C:\Program Files\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
C:\Program Files\Microsoft Office 15\Root\Office15\WINWORD.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Sretr\Downloads\RSIT.exe
C:\Program Files\trend micro\Sretr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: PDF Architect Helper - {691B33B0-B86E-47F3-81C7-56E4FE3B929C} - C:\Program Files\PDF Architect 2\creator-ie-helper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files\PDF Architect 2\creator-ie-plugin.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [Classic Start Menu] "C:\Program Files\Classic Shell\ClassicStartMenu.exe" -autorun
O4 - HKLM\..\Run: [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Display] C:\Program Files\APC\PowerChute Personal Edition\DataCollectionLauncher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [ApacheTomcatMonitor6.0_Tomcat6] "C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6w.exe" //MS//Tomcat6
O4 - HKCU\..\Run: [NVRStartup] C:\Program Files\ShanyNVR\Startup.bat
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Startup: Dropbox.lnk = C:\Users\Sretr\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Odeslat do OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
O4 - Startup: Synology Cloud Station.lnk = C:\Program Files\Synology\CloudStation\bin\launcher.exe
O4 - Global Startup: APC UPS Status.lnk = C:\Program Files\APC\PowerChute Personal Edition\Display.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.nvsip.com
O16 - DPF: {262587CD-537B-4BFF-AED8-080DDA1CA71D} (MSJOCX Control) - http://www.nvsip.com/ActiveX/NVSIP.cab
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 5.22.0.cab
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: APC Data Service - Schneider Electric - C:\Program Files\APC\PowerChute Personal Edition\dataserv.exe
O23 - Service: APC UPS Service - Schneider Electric - C:\Program Files\APC\PowerChute Personal Edition\mainserv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\system32\IntelCpHeciSvc.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Professional M1210 MFP Series Receive Fax Service (HPM1210RcvFaxSrvc) - HP - C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Intel Corporation - C:\Windows\system32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files\PDF Architect 2\ws.exe
O23 - Service: PDF Architect 2 Creator - pdfforge GmbH - C:\Program Files\PDF Architect 2\creator-ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files\PDF Architect 2\crash-handler-ws.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
O23 - Service: Apache Tomcat 6.0 Tomcat6 (Tomcat6) - Apache Software Foundation - C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6.exe

--
End of file - 11263 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2898656017-2644811017-3975520930-1002Core.job - C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2898656017-2644811017-3975520930-1002UA.job - C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Sretr\AppData\Roaming\Mozilla\Firefox\Profiles\bc4jsj3w.default

prefs.js - "browser.startup.homepage" - "http://www.johanik.cz/homep.htm"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"pdf_architect_2_conv@pdfarchitect.org"=C:\Program Files\PDF Architect 2\resources\pdfarchitect2firefoxextension\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.66.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@NPJocx/WebCC]
"Description"=WebCC For Mozilla
"Path"=C:\Program Files\ICamVideoPlayer\NPJOCX.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\HCWP Web Components]
"Description"=
"Path"=C:\Program Files\HCWP Web Components\npHCWPWebVideoPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\PDF Architect 2]
"Description"=
"Path"=C:\Program Files\PDF Architect 2\np-previewer.dll


C:\Users\Sretr\AppData\Roaming\Mozilla\Firefox\Profiles\bc4jsj3w.default\searchplugins\
seznam-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{691B33B0-B86E-47F3-81C7-56E4FE3B929C}]
PDF Architect Helper - C:\Program Files\PDF Architect 2\creator-ie-helper.dll [2014-10-10 37928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-10 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-13 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-10 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
{DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - PDF Architect Toolbar - C:\Program Files\PDF Architect 2\creator-ie-plugin.dll [2014-10-10 478760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2013-02-26 11877448]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 150208]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-11-21 36352]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-11-06 6133520]
""= []
"Display"=C:\Program Files\APC\PowerChute Personal Edition\DataCollectionLauncher.exe [2012-01-24 284024]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2015-08-06 421888]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-10-16 157456]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [2015-04-26 43816]
"ApplePhotoStreams"=C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2015-04-26 43816]
"ApacheTomcatMonitor6.0_Tomcat6"=C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6w.exe [2011-11-28 102400]
"NVRStartup"=C:\Program Files\ShanyNVR\Startup.bat []
"Dropbox Update"=C:\Users\Sretr\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-17 134512]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-10-14 48145024]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
APC UPS Status.lnk - C:\Program Files\APC\PowerChute Personal Edition\Display.exe

C:\Users\Sretr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Sretr\AppData\Roaming\Dropbox\bin\Dropbox.exe
Odeslat do OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
Synology Cloud Station.lnk - C:\Program Files\Synology\CloudStation\bin\launcher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-11 07:30:36 ----D---- C:\_OTM
2015-11-10 20:44:14 ----D---- C:\AdwCleaner
2015-11-10 11:38:52 ----D---- C:\Program Files\iTunes
2015-11-10 11:38:52 ----D---- C:\Program Files\iPod
2015-11-10 11:38:15 ----D---- C:\Program Files\Apple Software Update
2015-11-10 11:38:04 ----D---- C:\Program Files\Bonjour
2015-11-10 11:37:45 ----SHD---- C:\Config.Msi
2015-11-10 11:35:43 ----D---- C:\Program Files\Common Files\Java
2015-11-10 11:32:26 ----D---- C:\Program Files\trend micro
2015-11-10 11:32:19 ----D---- C:\rsit
2015-11-10 11:24:51 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2015-11-09 09:04:11 ----D---- C:\Program Files\Mozilla Firefox
2015-10-15 11:19:24 ----A---- C:\Windows\system32\invagent.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\generaltel.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\devinv.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-10-15 11:19:24 ----A---- C:\Windows\system32\appraiser.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\aeinv.dll
2015-10-15 11:19:24 ----A---- C:\Windows\system32\acmigration.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wucltux.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuaueng.dll
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuauclt.exe
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuapp.exe
2015-10-14 13:54:31 ----A---- C:\Windows\system32\wuapi.dll
2015-10-14 13:54:30 ----A---- C:\Windows\system32\wuwebv.dll
2015-10-14 13:54:30 ----A---- C:\Windows\system32\wudriver.dll
2015-10-14 13:54:01 ----A---- C:\Windows\system32\KernelBase.dll
2015-10-14 13:54:01 ----A---- C:\Windows\system32\advapi32.dll
2015-10-14 13:53:53 ----A---- C:\Windows\system32\d2d1.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 13:53:51 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\ucrtbase.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 13:53:50 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 13:53:46 ----A---- C:\Windows\system32\NcdAutoSetup.dll
2015-10-14 13:53:45 ----A---- C:\Windows\system32\shell32.dll
2015-10-14 13:53:40 ----A---- C:\Windows\system32\winresume.exe
2015-10-14 13:53:40 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-10-14 13:53:39 ----A---- C:\Windows\system32\winload.exe
2015-10-14 13:53:39 ----A---- C:\Windows\system32\ntdll.dll
2015-10-14 13:53:39 ----A---- C:\Windows\system32\fveapi.dll
2015-10-14 13:53:39 ----A---- C:\Windows\system32\BdeHdCfg.exe
2015-10-14 13:53:38 ----A---- C:\Windows\system32\fvecpl.dll
2015-10-14 13:53:38 ----A---- C:\Windows\system32\BdeHdCfgLib.dll
2015-10-14 13:53:24 ----A---- C:\Windows\system32\mshtml.dll
2015-10-14 13:53:14 ----A---- C:\Windows\system32\jscript9.dll
2015-10-14 13:53:13 ----A---- C:\Windows\system32\ieframe.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\wininet.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\webcheck.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\vbscript.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\urlmon.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\msfeeds.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\jscript.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\inetcomm.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\ieui.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\iertutil.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\iedkcs32.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\ieapfltr.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\ie4uinit.exe
2015-10-14 13:53:12 ----A---- C:\Windows\system32\dxtrans.dll
2015-10-14 13:53:12 ----A---- C:\Windows\system32\dxtmsft.dll
2015-10-13 07:26:09 ----D---- C:\Program Files\Common Files\STORMWARE Shared
2015-10-13 07:26:09 ----D---- C:\Program Files\Common Files\MSSoap
2015-10-13 06:58:19 ----A---- C:\Windows\system32\aswBoot.exe

======List of files/folders modified in the last 1 month======

2015-11-11 18:13:04 ----D---- C:\Windows\Temp
2015-11-11 18:07:32 ----D---- C:\Users\Sretr\AppData\Roaming\Skype
2015-11-11 18:00:00 ----D---- C:\Windows\system32\sru
2015-11-11 15:17:12 ----D---- C:\Windows\CbsTemp
2015-11-11 15:17:10 ----D---- C:\Windows\WinSxS
2015-11-11 12:07:10 ----D---- C:\Windows\Prefetch
2015-11-11 08:12:57 ----RD---- C:\Windows\System32
2015-11-11 08:12:57 ----D---- C:\Windows\inf
2015-11-11 08:12:57 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-11 08:07:44 ----D---- C:\Users\Sretr\AppData\Roaming\Dropbox
2015-11-11 08:06:39 ----A---- C:\Windows\system32\PCPELog.txt
2015-11-11 07:30:37 ----D---- C:\Windows\Tasks
2015-11-11 07:30:37 ----D---- C:\Program Files
2015-11-11 03:00:14 ----D---- C:\Windows\system32\config
2015-11-11 02:49:44 ----D---- C:\Windows\system32\DriverStore
2015-11-11 02:49:11 ----D---- C:\Windows\Microsoft.NET
2015-11-10 20:45:58 ----HD---- C:\ProgramData
2015-11-10 12:32:49 ----D---- C:\Users\Sretr\AppData\Roaming\ClassicShell
2015-11-10 12:31:52 ----D---- C:\Users\Sretr\AppData\Roaming\Apple Computer
2015-11-10 11:39:07 ----SHD---- C:\Windows\Installer
2015-11-10 11:38:52 ----D---- C:\Program Files\Common Files\Apple
2015-11-10 11:38:16 ----D---- C:\Windows\system32\Tasks
2015-11-10 11:35:43 ----D---- C:\Program Files\Common Files
2015-11-10 11:35:21 ----D---- C:\Program Files\Java
2015-11-10 11:25:52 ----D---- C:\ProgramData\Oracle
2015-11-10 10:09:59 ----SHD---- C:\System Volume Information
2015-11-10 09:14:47 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-10 09:14:46 ----D---- C:\Windows\system32\Drivers
2015-11-08 02:41:47 ----D---- C:\Windows\AppReadiness
2015-11-06 08:20:33 ----D---- C:\Program Files\Opera
2015-11-06 05:19:31 ----HD---- C:\Program Files\WindowsApps
2015-10-31 03:15:37 ----RD---- C:\Windows\assembly
2015-10-30 06:11:44 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-10-30 06:11:26 ----D---- C:\Program Files\Microsoft Office 15
2015-10-29 11:29:41 ----D---- C:\ProgramData\firebird
2015-10-29 08:35:20 ----D---- C:\Windows
2015-10-29 08:30:22 ----SD---- C:\Windows\Downloaded Program Files
2015-10-29 08:19:48 ----D---- C:\Program Files\TeamViewer
2015-10-20 03:21:32 ----D---- C:\Windows\system32\catroot2
2015-10-19 03:23:16 ----D---- C:\Windows\rescache
2015-10-18 16:30:22 ----RD---- C:\Windows\ToastData
2015-10-18 16:30:22 ----D---- C:\Windows\system32\cs-CZ
2015-10-18 16:30:22 ----D---- C:\Windows\system32\CodeIntegrity
2015-10-18 16:30:22 ----D---- C:\Windows\system32\Boot
2015-10-18 16:30:22 ----D---- C:\Windows\system32\appraiser
2015-10-18 16:30:22 ----D---- C:\Windows\apppatch
2015-10-18 16:30:22 ----D---- C:\Program Files\Internet Explorer
2015-10-16 05:51:29 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-10-14 14:48:43 ----D---- C:\Windows\system32\MRT
2015-10-14 14:46:56 ----A---- C:\Windows\system32\MRT.exe
2015-10-13 07:26:09 ----D---- C:\Program Files\STORMWARE

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-09-22 49776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-09-22 208664]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-11-21 489832]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-09-22 107984]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-09-22 81728]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-11-06 794952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-11-06 435464]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 57344]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-09-22 24016]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-09-22 76000]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-09-22 115640]
R2 NPF;Sadp Driver (NPF); \??\C:\Windows\system32\drivers\npf.sys [2015-04-28 36600]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-09-22 220752]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2014-03-07 2929152]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-02-26 2614216]
R3 iwdbus;@oem2.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-01 23448]
R3 MEI;@oem10.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECI.sys [2013-04-11 56432]
R3 RTL8168;@netrt630x86.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x86.sys [2013-06-18 490496]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\System32\drivers\serscan.sys [2014-10-29 8704]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\Windows\System32\drivers\iaiogpio.sys [2013-07-23 22016]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\Windows\System32\drivers\iaioi2c.sys [2013-07-23 61936]
S3 intaud_WaveExtensible;@oem1.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-01 32664]
S3 netr73;@netr73.inf,%General.Service.DispName%;RT73 USB - ovladač rozšiřitelné karty pro bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\netr73.sys [2013-06-18 564800]
S3 USBAAPL;@oem33.inf,%USBAAPL.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2014-07-28 45056]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 APC Data Service;APC Data Service; C:\Program Files\APC\PowerChute Personal Edition\dataserv.exe [2012-01-24 21880]
R2 APC UPS Service;APC UPS Service; C:\Program Files\APC\PowerChute Personal Edition\mainserv.exe [2012-01-24 705912]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-10-07 60720]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-09-22 146600]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 390416]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2015-10-07 1883320]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 33088]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [2013-03-19 98304]
R2 HPM1210RcvFaxSrvc;HP LaserJet Professional M1210 MFP Series Receive Fax Service; C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe [2010-05-11 247352]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-09-27 100256]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-11-21 15720]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-03-17 250352]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 583680]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-04-11 169432]
R2 PDF Architect 2 Creator;PDF Architect 2 Creator; C:\Program Files\PDF Architect 2\creator-ws.exe [2014-10-10 738856]
R2 TeamViewer;TeamViewer 10; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-09-22 3219136]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [2013-03-19 3784704]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-10-16 541456]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 33088]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\system32\IntelCpHeciSvc.exe [2014-03-17 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 637912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-09 147624]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-03-30 150600]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files\PDF Architect 2\ws.exe [2014-10-10 1771560]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files\PDF Architect 2\crash-handler-ws.exe [2014-10-10 861736]
S3 Tomcat6;Apache Tomcat 6.0 Tomcat6; C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\Tomcat6.exe [2011-11-28 74752]

-----------------EOF-----------------

Re: Zasekle weby, všechny prohížeče..

Napsal: 11 lis 2015 19:04
od Rudy
Log už vypadá OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

Re: Zasekle weby, všechny prohížeče..

Napsal: 11 lis 2015 19:15
od Johanik
Vypadá to že je vše OK, PC zase funguje normálně, moc děkuji

Re: Zasekle weby, všechny prohížeče..

Napsal: 11 lis 2015 20:07
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz