problem s IE avast hlasi Infekce zablokována

Zpráva

black_angel1 · #1 Příspěvek od **black_angel1** » 05 zář 2014 06:15

Dobry den

potrebujem IE pre pracu a avast stale hlasi

Infekce zablokována
URL hxxp://syncjpionline.co.il/sync/?q=hfZ9ofqMA6aMCyVUojs4pchTB6lKDzt4olqvtNtVh7n0rjrFrja7rdC8rjn8tMVKhd98rHa6rdw4qHa7rdr8pda5pds7tNqHhd9FrHY6rjw7pjgHqjwFqTsGqHwErih7hfs0pihLC7VUojgErihOAen0qTaFrdwErTC7qTC8rjUFrdaErShSCH9F%26rmbs=1%26jsoncallback=getjson
Infekce URL:Mal

neviem co to je zac a ako sa toho zbavim

Logfile of random's system information tool 1.08 (written by random/random)
Run by admin at 2014-09-05 07:12:47
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 159 GB (33%) free of 477 GB
Total RAM: 6077 MB (21% free)

HijackThis download failed

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\AVAST Software\Avast Business\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Users\admin\AppData\Local\Temp\_tc\AA_v3.exe" -service
"C:\Program Files\AVAST Software\Avast Business\AvastNet.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Users\admin\AppData\Local\Temp\_tc\AA_v3.exe" -nogui
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\SIPLACE\SIPLACE Pro\DeskInfo.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe"
C:\Windows\SysWOW64\lkads.exe
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Users\admin\AppData\Local\Akamai\netsession_win.exe"
"C:\Users\admin\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
"C:/Users/admin/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe"
"C:\Program Files\AVAST Software\Avast Business\AvastUI.exe" /nogui
"C:\Program Files (x86)\SIPLACE\SIPLACE Licensing2\Siemens.Siplace.License.StateManager.exe"
C:\Windows\system32\mqsvc.exe
"C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe"
"C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe" -system
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files\Eltima Software\SEC\sec_service.exe"
"C:\Program Files (x86)\Time-Sync\TimeSyncServiceClient.exe"
"c:\Program Files (x86)\sniffer\SnifferService.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synergy\synergyd.exe"
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
C:\Windows\SysWOW64\vmnat.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\SysWOW64\lkcitdl.exe
C:\Windows\SysWOW64\lktsrv.exe
C:\Windows\system32\mqtgsvc.exe
"C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe" -user
"C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe"
"C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe"
C:\Windows\SysWOW64\vmnetdhcp.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-96a2b14e-abf1-4f1a-a705-9efd0d9a1274 -SystemEventPortName:HostProcess-fd8e3d3d-686b-47fb-9122-96e47ea800ba -IoCancelEventPortName:HostProcess-63c79581-e18d-485e-a9cf-5fe1e4ac5874 -NonStateChangingEventPortName:HostProcess-f6a11624-54d2-47b8-b467-251b97a33e44 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8bcf3090-44b3-4149-b4c3-6f8399b0cac6 -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --ran-launcher
"C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe"
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --ran-launcher /crash-reporter-parent-id=1832
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=gpu-process --channel="1832.0.1895635348\311320627" --crash-reporter-pid=6272 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16,44 --gpu-vendor-id=0x10de --gpu-device-id=0x1380 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --crash-reporter-pid=6272 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.2.980563354\578281009" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.4.351376895\1914102309" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.5.912303351\1213674534" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.6.767133086\2035533945" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.12.1574272177\921424927" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.13.1114473279\196579726" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.14.1882740835\1241557563" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.15.1506668191\581410622" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.16.1294894975\1076335932" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.17.1480399184\334412061" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.18.127687989\792581251" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.19.2140353404\1583066343" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.20.843363204\970718694" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.21.1124720173\1401595396" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.22.288542439\1205414536" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.23.726898439\1363164511" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.24.293668183\328577592" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.25.1936956207\151773959" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.26.1251283163\704519936" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.27.1651384905\1819298915" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.28.147355609\341125792" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.29.1771416847\1291330338" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.30.2001373795\2007444075" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.31.1070196358\1243405888" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.32.1283123486\806909352" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.33.227519073\204327436" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.34.896872627\103974534" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.36.1297999065\1894366502" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.37.658746834\595095759" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=plugin --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll" --disable-direct-npapi-requests --lang=sk --channel="1832.50.892283127\1456439719" --crash-reporter-pid=6272 /prefetch:-390060480
"C:\totalcmd\TOTALCMD64.EXE"
C:\Windows\system32\cmd.exe /c ""C:\mining\ccminer-v1.2\x86\DARKCOIN-START.bat" "
\??\C:\Windows\system32\conhost.exe "-4442061181984806591-10138111510974191561604420611919555805-18826465941620511749
ccminer.exe -a x11 -o stratum+tcp://stratum1.suchpool.pw:3335 -u black_angel1.cpu2 -p 123
C:\Windows\system32\hasplms.exe -run
C:\Windows\splwow64.exe 8192
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE" /dde
C:\Windows\system32\SearchIndexer.exe /Embedding
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss dcbd0835-ddc3-4155-a819-7e68577e97d0 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "481402851-2037779906-1747550536436433599-55849611020118808881351730275-278097603
\??\C:\Windows\system32\conhost.exe "-48750608-2057791493-129708869-18550045465554596711869888130-194092552425161277
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvtray.exe" -nvupdt
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.392.469343412\1422248778" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.403.632027883\1221561335" /prefetch:673131151
"C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
TrustNETTray.exe
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.435.1499411737\645205930" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.445.2114801299\137896084" /prefetch:673131151
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:12088 CREDAT:529687 /prefetch:2
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.509.1408626382\918667744" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.518.744198221\278950921" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.551.412288046\757613858" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.555.312294154\1792623950" /prefetch:673131151
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
"C:\Users\admin\Downloads\winbox.exe"
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.625.1154717134\582018738" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.628.292149447\294843456" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.629.204604213\1171351119" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.636.37314042\1348044172" /prefetch:673131151
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:12088 CREDAT:4142235 /prefetch:2
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.659.1075245733\780224165" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.664.649710759\484838889" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.665.2145103655\1851354896" /prefetch:673131151
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.666.1673603616\188873668" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe232_ Global\UsGthrCtrlFltPipeMssGthrPipe232 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Opera\23.0.1522.75\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6272 --enable-threaded-compositing --enable-delegated-renderer --channel="1832.667.787882747\1915414278" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\admin\Desktop\RSITx64.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast Business\aswWebRepIE64.dll [2014-01-14 245592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-08-26 218776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{548757A7-05A0-0B4F-FDF7-1098F420CE9F}]
YoutubeAdblocker - C:\Program Files (x86)\YoutubeAdblocker\5sDrYomde_.x64.dll [2013-11-06 407552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-08-14 553896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2014-08-26 885968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC42E0C4-DB87-E84B-BFE1-F40A8F9A54A5}]
surf and keaeep - C:\Program Files (x86)\surf and keaeep\Y.x64.dll [2013-11-06 407552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-08-26 2335960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-08-14 211880]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl - C:\Program Files (x86)\FlashGet\jccatch.dll [2007-08-06 94308]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{548757A7-05A0-0B4F-FDF7-1098F420CE9F}]
YoutubeAdblocker - C:\Program Files (x86)\YoutubeAdblocker\5sDrYomde_.dll [2013-11-06 371712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-11 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast Business\aswWebRepIE.dll [2014-01-14 201784]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2014-08-26 710352]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC42E0C4-DB87-E84B-BFE1-F40A8F9A54A5}]
surf and keaeep - C:\Program Files (x86)\surf and keaeep\Y.dll [2013-11-06 371712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-11 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class - C:\Program Files (x86)\FlashGet\getflash.dll [2007-05-18 163840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast Business\aswWebRepIE64.dll [2014-01-14 245592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast Business\aswWebRepIE.dll [2014-01-14 201784]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe []
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-08-09 1283136]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-08-09 2403288]
"Seagull Drivers"=ssdal_nc.exe startup []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"se"=C:\Users\admin\AppData\Roaming\SkypEmoticons\SE.exe /minimized []
""=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Akamai NetSession Interface"=C:\Users\admin\AppData\Local\Akamai\netsession_win.exe [2014-04-17 4672920]
"SkyDrive"=C:\Users\admin\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-08-07 251040]
"uTorrent"=C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe [2014-07-18 1329744]
"TrackChecker"=C:\Program Files (x86)\TrackChecker\TrackChecker.exe [2013-12-18 4200960]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2014-08-28 1939136]
"Viber"=C:\Users\admin\AppData\Local\Viber\Viber.exe [2013-12-02 936456]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-07-24 21650016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\admin\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811_2\amd64"=C:\Windows\system32\cmd.exe [2010-11-21 345088]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast Business\avastUI.exe [2014-01-14 4769352]
"ST7501"= []
"NI Update Service"=C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [2011-11-02 3004512]
"20131121"=C:\Program Files\AVAST Software\Avast Business\setup\emupdate\cbdb275c-77a9-4f2d-8b61-7305913a8cbb.exe [2013-11-23 180184]
"vmware-tray"=C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [2012-01-18 103536]
"ControlCenterCount"=C:\Program Files (x86)\MSI\ControlCenter\ControlCenterCount.exe [2012-03-26 872448]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
NI Error Reporting.lnk - C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
SIPLACELicensingStateManager.lnk - C:\Program Files (x86)\SIPLACE\SIPLACE Licensing2\Siemens.Siplace.License.StateManager.exe

C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
BlackCoin.lnk - C:\mining\wallets\blackcoin\1.1.0.1\blackcoin-qt.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AmmyyAdmin]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=1
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"LocalAccountTokenFilterPolicy"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2014-09-05 07:12:47 ----D---- C:\Program Files\trend micro
2014-09-05 07:11:27 ----D---- C:\rsit
2014-09-05 07:11:27 ----D---- C:\Program Files (x86)\trend micro
2014-08-27 13:19:02 ----A---- C:\Windows\SYSWOW64\TrustNETTray.exe
2014-08-27 13:19:02 ----A---- C:\Windows\SYSWOW64\TrustNETFM.dll
2014-08-27 13:19:02 ----A---- C:\Windows\SYSWOW64\nsldap32v11.dll
2014-08-27 13:19:01 ----A---- C:\Windows\SYSWOW64\UnetGSRMIE.dll
2014-08-27 13:19:00 ----A---- C:\Windows\SYSWOW64\UnetGSRM.dll
2014-08-27 13:18:57 ----A---- C:\Windows\SYSWOW64\UnetGSRMJsa.dll
2014-08-26 12:32:28 ----A---- C:\Windows\TraceSrv.ini
2014-08-26 10:52:32 ----A---- C:\Windows\uninstallrq.exe
2014-08-26 10:52:32 ----A---- C:\Windows\tls7912d.dll
2014-08-26 10:52:32 ----A---- C:\Windows\hpzjut01.dll
2014-08-26 10:52:19 ----D---- C:\Program Files (x86)\Hewlett-Packard
2014-08-21 15:28:04 ----D---- C:\Windows\LastGood
2014-08-14 15:02:28 ----D---- C:\winpex86
2014-08-14 14:48:55 ----D---- C:\Program Files (x86)\PuTTY
2014-08-14 14:48:50 ----A---- C:\Windows\system32\javaws.exe
2014-08-14 14:48:33 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2014-08-14 14:48:33 ----A---- C:\Windows\system32\javaw.exe
2014-08-14 14:48:33 ----A---- C:\Windows\system32\java.exe
2014-08-14 14:48:18 ----D---- C:\Program Files\Java
2014-08-14 14:18:32 ----D---- C:\Program Files\Windows Imaging
2014-08-14 14:17:08 ----D---- C:\Program Files\Windows AIK
2014-08-14 12:51:58 ----D---- C:\dd for windows
2014-08-13 08:02:12 ----A---- C:\Windows\SYSWOW64\perf-MSSQL$SQLEXPRESS-sqlctr10.52.4033.0.dll
2014-08-13 08:02:12 ----A---- C:\Windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.52.4033.0.dll
2014-08-13 08:02:11 ----A---- C:\Windows\system32\SQSRVRES.DLL
2014-08-13 07:59:34 ----D---- C:\Program Files\Microsoft.NET
2014-08-13 07:43:22 ----D---- C:\Program Files (x86)\MSXML 4.0
2014-08-13 07:27:41 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-13 07:27:41 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-13 07:27:40 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-08-13 07:27:40 ----A---- C:\Windows\system32\icardagt.exe
2014-08-13 07:27:36 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-08-13 07:27:36 ----A---- C:\Windows\system32\icardres.dll
2014-08-13 07:26:49 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-13 07:26:49 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 07:24:33 ----SD---- C:\Windows\system32\CompatTel
2014-08-13 07:22:16 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-08-13 07:22:15 ----A---- C:\Windows\system32\rdpcorets.dll
2014-08-13 07:21:59 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-08-13 07:21:59 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-08-13 07:21:59 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-08-13 07:21:59 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-08-13 07:21:59 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-08-13 07:21:59 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 07:21:58 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 07:21:58 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 07:21:58 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 07:21:58 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-13 07:21:10 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-08-13 07:21:10 ----A---- C:\Windows\system32\msxml6.dll
2014-08-13 07:21:10 ----A---- C:\Windows\system32\msxml3.dll
2014-08-13 07:21:09 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2014-08-13 07:21:09 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-08-13 07:21:09 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-08-13 07:21:09 ----A---- C:\Windows\system32\msxml6r.dll
2014-08-13 07:21:09 ----A---- C:\Windows\system32\msxml3r.dll
2014-08-13 07:21:07 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-08-13 07:21:07 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-08-13 07:21:05 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-08-13 07:21:05 ----A---- C:\Windows\system32\qedit.dll
2014-08-13 07:21:00 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-08-13 07:20:59 ----A---- C:\Windows\system32\osk.exe
2014-08-13 07:20:49 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-08-13 07:20:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-08-13 07:20:48 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-08-13 07:20:48 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-08-13 07:20:47 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-08-13 07:20:47 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-13 07:20:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 07:20:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 07:20:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-08-13 07:20:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-08-13 07:20:46 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-08-13 07:20:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-08-13 07:20:45 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 07:20:44 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-08-13 07:20:44 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 07:20:43 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-08-13 07:20:43 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-08-13 07:20:43 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 07:20:43 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 07:20:42 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-08-13 07:20:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-08-13 07:20:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 07:20:42 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 07:20:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-08-13 07:20:41 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 07:20:40 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 07:20:40 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 07:20:39 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-08-13 07:20:39 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-08-13 07:20:39 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 07:20:38 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-08-13 07:20:38 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-08-13 07:20:37 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-08-13 07:20:37 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-08-13 07:20:37 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 07:20:35 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-08-13 07:20:35 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-08-13 07:20:32 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 07:20:30 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 07:20:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 07:20:29 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 07:20:28 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 07:20:28 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 07:20:28 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 07:20:27 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 07:20:27 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 07:20:27 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 07:20:27 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 07:20:26 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 07:20:26 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 07:20:25 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 07:20:25 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 07:20:08 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-08-13 07:20:08 ----A---- C:\Windows\system32\usp10.dll
2014-08-13 07:20:00 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-08-13 07:20:00 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 07:19:50 ----A---- C:\Windows\system32\msi.dll
2014-08-13 07:19:49 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-08-13 07:19:49 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-08-13 07:19:49 ----A---- C:\Windows\system32\authui.dll
2014-08-13 07:19:48 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 07:19:48 ----A---- C:\Windows\system32\consent.exe
2014-08-13 07:19:47 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-08-13 07:19:33 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-08-13 07:19:31 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-08-13 07:19:30 ----A---- C:\Windows\system32\winlogon.exe
2014-08-13 07:19:30 ----A---- C:\Windows\system32\objsel.dll
2014-08-13 07:19:29 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-08-13 07:19:28 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-08-13 07:19:28 ----A---- C:\Windows\system32\KernelBase.dll
2014-08-13 07:19:27 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-08-13 07:19:26 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-08-13 07:19:26 ----A---- C:\Windows\system32\dimsroam.dll
2014-08-13 07:19:26 ----A---- C:\Windows\system32\adprovider.dll
2014-08-13 07:19:25 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-08-13 07:19:25 ----A---- C:\Windows\system32\cngprovider.dll
2014-08-13 07:19:24 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-08-13 07:19:24 ----A---- C:\Windows\system32\capiprovider.dll
2014-08-13 07:19:23 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-08-13 07:19:23 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-08-13 07:19:22 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-08-13 07:19:18 ----A---- C:\Windows\system32\wincredprovider.dll
2014-08-13 07:19:16 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-08-13 07:18:52 ----A---- C:\Windows\system32\lsasrv.dll
2014-08-13 07:18:49 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-08-13 07:18:48 ----A---- C:\Windows\system32\sspisrv.dll
2014-08-13 07:18:48 ----A---- C:\Windows\system32\sspicli.dll
2014-08-13 07:18:48 ----A---- C:\Windows\system32\secur32.dll
2014-08-13 07:18:48 ----A---- C:\Windows\system32\lsass.exe
2014-08-13 07:18:48 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-08-13 07:18:47 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-08-13 07:18:47 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-08-13 07:17:48 ----A---- C:\Windows\system32\kerberos.dll
2014-08-13 07:17:47 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-08-13 07:17:47 ----A---- C:\Windows\system32\msv1_0.dll
2014-08-13 07:17:46 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-08-13 07:17:46 ----A---- C:\Windows\system32\TSpkg.dll
2014-08-13 07:17:45 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-08-13 07:17:45 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-08-13 07:17:45 ----A---- C:\Windows\system32\wdigest.dll
2014-08-13 07:17:44 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-08-13 07:17:44 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-08-13 07:17:44 ----A---- C:\Windows\system32\schannel.dll
2014-08-13 07:17:44 ----A---- C:\Windows\system32\ncrypt.dll
2014-08-13 07:17:43 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-08-13 07:17:43 ----A---- C:\Windows\system32\credssp.dll
2014-08-13 07:16:32 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 07:16:29 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-08-13 07:16:27 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 07:16:26 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-13 07:14:31 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 07:14:31 ----A---- C:\Windows\system32\aeinv.dll
2014-08-13 07:13:17 ----A---- C:\Windows\system32\drivers\afd.sys
2014-08-13 07:13:06 ----A---- C:\Windows\system32\win32k.sys
2014-08-13 07:13:04 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-13 07:13:04 ----A---- C:\Windows\system32\gdi32.dll
2014-08-13 07:12:59 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-11 07:26:20 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-08-11 07:26:05 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-08-11 07:26:05 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-08-11 07:26:05 ----A---- C:\Windows\SYSWOW64\java.exe
2014-08-11 07:25:54 ----D---- C:\Program Files (x86)\Java
2014-08-06 10:29:05 ----D---- C:\Program Files (x86)\Mozilla Firefox

======List of files/folders modified in the last 1 months======

2014-09-05 07:12:55 ----D---- C:\Windows\Prefetch
2014-09-05 07:12:47 ----RD---- C:\Program Files
2014-09-05 07:12:47 ----D---- C:\Windows\Temp
2014-09-05 07:11:45 ----D---- C:\Users\admin\AppData\Roaming\uTorrent
2014-09-05 07:11:27 ----RD---- C:\Program Files (x86)
2014-09-05 07:04:36 ----D---- C:\Users\admin\AppData\Roaming\Skype
2014-09-04 14:26:33 ----D---- C:\Windows\system32\config
2014-09-04 12:39:33 ----SHD---- C:\System Volume Information
2014-09-04 11:53:14 ----D---- C:\Users\admin\AppData\Roaming\TrackChecker
2014-09-04 06:48:24 ----D---- C:\Users\admin\AppData\Roaming\ViberPC
2014-09-04 06:37:24 ----D---- C:\Program Files (x86)\Steam
2014-09-03 09:48:51 ----D---- C:\Users\admin\AppData\Roaming\vlc
2014-09-03 09:27:10 ----D---- C:\Program Files (x86)\Opera
2014-09-03 09:27:09 ----D---- C:\Windows\system32\Tasks
2014-08-27 13:19:03 ----D---- C:\Windows\SysWOW64
2014-08-27 13:18:56 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-08-27 08:26:12 ----D---- C:\Windows\System32
2014-08-27 02:29:35 ----D---- C:\Windows\system32\catroot2
2014-08-26 12:32:28 ----AD---- C:\Windows
2014-08-26 11:47:08 ----D---- C:\Windows\inf
2014-08-26 11:47:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-26 03:32:39 ----SHD---- C:\Windows\Installer
2014-08-26 03:32:24 ----RSD---- C:\Windows\assembly
2014-08-26 03:32:21 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-08-26 03:30:11 ----D---- C:\Program Files\Microsoft Office 15
2014-08-21 15:28:06 ----D---- C:\Windows\system32\drivers
2014-08-21 15:28:03 ----D---- C:\Windows\system32\catroot
2014-08-21 15:28:01 ----D---- C:\Windows\system32\DriverStore
2014-08-15 12:13:12 ----D---- C:\Users\admin\AppData\Roaming\BlackCoin
2014-08-15 12:01:41 ----D---- C:\ProgramData\boost_interprocess
2014-08-15 11:58:17 ----D---- C:\ProgramData\VMware
2014-08-15 11:53:55 ----D---- C:\ProgramData\NVIDIA
2014-08-14 15:30:09 ----D---- C:\Users\admin\AppData\Roaming\VMware
2014-08-14 14:38:02 ----D---- C:\Windows\system32\sysprep
2014-08-14 14:23:53 ----SD---- C:\Users\admin\AppData\Roaming\Microsoft
2014-08-14 14:06:28 ----D---- C:\Windows\Logs
2014-08-13 17:26:05 ----D---- C:\Windows\rescache
2014-08-13 12:49:38 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-08-13 09:38:21 ----D---- C:\Windows\Microsoft.NET
2014-08-13 09:35:33 ----D---- C:\Windows\winsxs
2014-08-13 09:05:51 ----D---- C:\Windows\ehome
2014-08-13 09:05:50 ----RSD---- C:\Windows\Fonts
2014-08-13 09:05:50 ----D---- C:\Program Files\Windows Journal
2014-08-13 09:05:42 ----D---- C:\Windows\SYSWOW64\Dism
2014-08-13 09:05:42 ----D---- C:\Windows\system32\Dism
2014-08-13 09:05:39 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-08-13 09:05:39 ----D---- C:\Windows\system32\sk-SK
2014-08-13 09:05:37 ----D---- C:\Windows\system32\en-US
2014-08-13 09:05:37 ----D---- C:\Program Files\Internet Explorer
2014-08-13 09:05:36 ----D---- C:\Windows\SYSWOW64\en-US
2014-08-13 09:05:36 ----D---- C:\Windows\PolicyDefinitions
2014-08-13 09:05:36 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-13 08:11:23 ----D---- C:\Windows\system32\MRT
2014-08-13 07:59:33 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-08-13 07:50:29 ----D---- C:\Program Files\Microsoft SQL Server
2014-08-13 07:50:29 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2014-08-11 09:53:39 ----D---- C:\Program Files\Microsoft Silverlight
2014-08-11 09:53:37 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-08-11 09:53:34 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-11 07:27:52 ----D---- C:\ProgramData\Origin
2014-08-11 07:26:51 ----D---- C:\ProgramData\Oracle
2014-08-11 07:26:42 ----D---- C:\Program Files (x86)\Common Files
2014-08-11 07:22:37 ----D---- C:\Program Files (x86)\Origin
2014-08-09 02:22:16 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-08-09 02:22:16 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2014-08-09 02:22:05 ----A---- C:\Windows\system32\nvspcap64.dll
2014-08-09 02:22:05 ----A---- C:\Windows\system32\nvspbridge64.dll
2014-08-08 13:55:16 ----D---- C:\Users\admin\AppData\Roaming\Hmoobcoin
2014-08-08 12:59:40 ----D---- C:\Users\admin\AppData\Roaming\DogeCoin
2014-08-08 08:17:44 ----D---- C:\ordre

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2014-01-14 22600]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2014-01-14 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2014-01-14 189936]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2014-01-14 70992]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-01-14 1034024]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-01-14 377920]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2014-01-14 68920]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-06-19 283064]
R2 aksdf;aksdf; \??\C:\Windows\system32\drivers\aksdf.sys [2014-07-15 91784]
R2 aksfridge;Sentinel Fridge; C:\Windows\system32\DRIVERS\aksfridge.sys [2014-07-15 162136]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2014-01-14 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2014-01-14 80816]
R2 hardlock;hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2014-07-15 331608]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2011-08-29 39024]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-03-26 356632]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-03-26 789272]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBS64.sys [2008-07-26 50072]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
R3 MQAC;@mqutil.dll,-6101; C:\Windows\system32\drivers\mqac.sys [2009-07-14 189440]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-08-09 20440]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
R3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver; C:\Windows\system32\DRIVERS\Rtnic64.sys [2009-06-10 51712]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-02-16 676968]
S3 akshasp;SafeNet Inc. HASP Key; C:\Windows\system32\DRIVERS\akshasp.sys [2014-07-15 60488]
S3 akshhl;SafeNet Inc. Sentinel HL Key; C:\Windows\system32\DRIVERS\akshhl.sys [2014-07-15 63944]
S3 aksusb;SafeNet Inc. USB Key; C:\Windows\system32\DRIVERS\aksusb.sys [2014-07-15 303624]
S3 athr;D-Link PCIe Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\Dathrx.sys [2012-03-19 2798592]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-09-24 94208]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
S3 AX88772B;ASIX AX88772B USB2.0 to Fast Ethernet Adapter; C:\Windows\system32\DRIVERS\ax88772b.sys [2011-08-03 98816]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-08-21 103576]
S3 DisplayLinkUsbIo_x64;DisplayLinkUsbIo_x64; C:\Windows\system32\DRIVERS\DisplayLinkUsbIo_x64_7.6.55673.0.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 evserial7;Virtual Serial Ports Driver 7 (Eltima Software); C:\Windows\System32\DRIVERS\evserial7.sys [2012-05-23 71472]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2014-01-31 94704]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2014-01-31 86896]
S3 GENERICDRV;GENERICDRV; \??\C:\Program Files (x86)\MSI\CLICKBIOSII\amifldrv64.sys [2009-10-23 13864]
S3 GPU-Z;GPU-Z; \??\C:\Users\admin\AppData\Local\Temp\GPU-Z.sys []
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
S3 LVUVC64;QuickCam Pro for Notebooks(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2008-07-26 5068056]
S3 mf;mf; C:\Windows\system32\DRIVERS\mf.sys [2009-07-14 142848]
S3 MSICDSetup;MSICDSetup; \??\F:\CDriver64.sys []
S3 NTIOLib_1_0_1;NTIOLib_1_0_1; \??\C:\Program Files (x86)\MSI\CLICKBIOSII\NTIOLib_X64.sys [2009-10-06 14136]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys []
S3 NTIOLib_MSISMB_CC;NTIOLib_MSISMB_CC; \??\C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [2012-11-09 13368]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SliceDisk5;SliceDisk5; \??\C:\Users\admin\AppData\Local\Temp\FindAndMount\slicedisk-x64.sys []
S3 SNP2STD;AnMo DinoLite Plus and Pro; C:\Windows\system32\DRIVERS\snp2sxp.sys [2008-02-13 12379136]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-08-21 204568]
S3 StnPport;PCIe to Multi Mode Parallel Port; C:\Windows\system32\DRIVERS\StnPport.sys [2010-10-26 97280]
S3 StnSport;PCIe to High Speed Serial Port; C:\Windows\system32\DRIVERS\StnSport.sys [2010-08-20 128000]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbser;USB RS-232 Emulation Driver; C:\Windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]
S4 RsFx0153;RsFx0153 Driver; C:\Windows\system32\DRIVERS\RsFx0153.sys [2014-07-10 322736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 AmmyyAdmin;Ammyy Admin; C:\Users\admin\AppData\Local\Temp\_tc\AA_v3.exe [2013-11-07 743704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast Business\AvastSvc.exe [2014-01-14 45248]
R2 avast! Net Client Service;avast! Net Client Service; C:\Program Files\AVAST Software\Avast Business\AvastNet.exe [2014-01-14 201296]
R2 ClickToRunSvc;Služba Klikni a spusti balíka Microsoft Office; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-08-01 2369720]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DeskInfoService;DeskInfoService; C:\Program Files (x86)\SIPLACE\SIPLACE Pro\DeskInfo.exe [2013-08-07 11776]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2014-06-17 242216]
R2 hasplms;Sentinel LDK License Manager; C:\Windows\system32\hasplms.exe [2014-07-15 4683144]
R2 LkCitadelServer;Lookout Citadel Server; C:\Windows\SysWOW64\lkcitdl.exe [2010-10-27 695136]
R2 lkClassAds;National Instruments PSP Server Locator; C:\Windows\SysWOW64\lkads.exe [2011-06-14 46192]
R2 lkTimeSync;National Instruments Time Synchronization; C:\Windows\SysWOW64\lktsrv.exe [2011-06-14 56952]
R2 MSMQ;@mqutil.dll,-6102; C:\Windows\system32\mqsvc.exe [2009-07-14 9216]
R2 MSMQTriggers;@mqutil.dll,-6203; C:\Windows\system32\mqtgsvc.exe [2010-11-21 189440]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NIApplicationWebServer;NI Application Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2011-05-27 50336]
R2 NIDomainService;National Instruments Domain Service; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [2011-06-14 362104]
R2 nimDNSResponder;National Instruments mDNS Responder Service; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2011-06-01 194224]
R2 niSvcLoc;NI System Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [2011-05-27 50328]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-08-09 1720792]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-08-09 18973144]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 sec_service;Eltima Serial to Ethernet Connector Service; C:\Program Files\Eltima Software\SEC\sec_service.exe [2012-10-08 1688368]
R2 ServiceTimeSyncClient;Time-Sync Client; C:\Program Files (x86)\Time-Sync\TimeSyncServiceClient.exe [2011-12-11 881152]
R2 Sniffer;Sniffer; c:\Program Files (x86)\sniffer\SnifferService.exe [2014-01-14 941568]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-04-20 129424]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
R2 Synergy;Synergy; C:\Program Files\Synergy\synergyd.exe [2013-10-22 291840]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
R2 VMAuthdService;VMware Authorization Service; C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [2012-01-18 79872]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-23 116648]
S2 MsDepSvc;Web Deployment Agent Service; C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe [2013-06-10 84624]
S2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2014-07-10 62379184]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-13 262320]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 BBxService;BMC AppSight Windows Black Box Service; C:\Program Files (x86)\BMC Software\BMC AppSight\AppSight for Windows\Bin\BBxService.exe [2010-10-13 846712]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-03-03 1431888]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [2012-07-25 139776]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-23 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-06 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-12-04 150600]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-07-17 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2013-12-04 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Siemens.SIPLACE.License;Siemens SIPLACE License V2.1; C:\Program Files (x86)\SIPLACE\SIPLACE Licensing2\Siemens.SIPLACE.License.Host.exe [2009-11-18 9728]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-08-28 833728]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-07-25 126976]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 59744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NIApplicationWebServer64;NI Application Web Server (64-bit); C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2011-05-27 68256]
S4 NILM License Manager;NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [2010-08-02 1427688]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2014-07-10 442536]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2014-07-10 278696]
S4 TlntSvr;Telnet; C:\Windows\System32\tlntsvr.exe [2009-07-14 81920]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 05 zář 2014 07:50

Zdravim

Tohle mate pracovni\firemni nebo domaci PC??

black_angel1 · #3 Příspěvek od **black_angel1** » 05 zář 2014 08:27

pracovne preco ?

#4 Příspěvek od **vyosek** » 05 zář 2014 08:33

Preto, lebo nase forum je podpora pro domaci uzivatele - nesuplujeme praci placenych IT, pripadne je mozne si servis objednat, kde je zajisteno i to, ze pripadne neprijdete o data - vizte pravidla fora

6. Fórum viry.cz se nezabývá odvirováním firemních PC - na toto jsou ve firmách placení (a někdy až hodně nadstandardně) IT technici, případně si je firma může najmout. My jsme tu zdarma a ve svém volném čase, nehodláme dělat práci za někoho jiného, kdo si pak jen slízne smetánku a plat. Taktéž ani neposkytujeme poradenství v oblasti zabezpečení firemních sítí či nastavení firemních sítí. Zkrátka a jednoduše, naše fórum poskytuje podporu pouze domácím uživatelům.

black_angel1 · #5 Příspěvek od **black_angel1** » 05 zář 2014 08:40

aha tak to som prehliadol tak nic teda ale vdaka za cas

#6 Příspěvek od **vyosek** » 05 zář 2014 08:47

Neni zac

VIRY.CZ

problem s IE avast hlasi Infekce zablokována

problem s IE avast hlasi Infekce zablokována

Re: problem s IE avast hlasi Infekce zablokována

Re: problem s IE avast hlasi Infekce zablokována

Re: problem s IE avast hlasi Infekce zablokována

Re: problem s IE avast hlasi Infekce zablokována

Re: problem s IE avast hlasi Infekce zablokována