Quantcast
Channel: Tech Support Forum - Virus/Trojan/Spyware Help
Viewing all articles
Browse latest Browse all 2798

Cannot open AVG (AGAIN)!!!!

$
0
0
OK, my laptop seems to have suffered the same problem it did a couple of weeks back.

AVG removed something it said was "suspicious" whilst browsing the web (regsvr32 whatever that is), after which I found AVG had dissapeared from my taskbar and when I tried to access it from the desktop icon it said "program is blocked by group policy".

Here's the thread to the earlier problem in case its relevant.

http://www.techsupportforum.com/foru...vg-824585.html

Anyway, I've run the DDS and Gmer programs, heres the DDS file text, the Attach and Ark texts are attatched to this...



DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16476 BrowserJavaVersion: 10.55.2
Run by Simon at 17:41:43 on 2014-05-12
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3002.1588 [GMT 1:00]
.
AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
c:\PROGRA~2\AVG\AVG2014\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe
c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.sky.com/
uProxyOverride = local
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: IEExtension.VDownloaderBHO: {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} -
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
mRun: [TrayServer] C:\Program Files (x86)\MAGIX\Movie_Edit_Pro_MX_Plus_Download_Version\TrayServer_en.exe
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
Trusted Zone: hola.org
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {1B735B98-8010-11D5-AD0B-00500463D885} - hxxp://www.partsarena.com/baxi/Plugins/IMIESRCH.cab
DPF: {36C17E9B-3354-11D1-95CF-0000B4530F04} - hxxp://www.partsarena.com/baxi/Plugins/GFXVIEW.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{173DC93C-7476-469B-91B4-B8737CCA3430} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\255616C6D6F66684F62727F627 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\35B4952463036393 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\35B4953463134363 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\35B4956453035313 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\4514C4B44514C4B4D2135444243343 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\4514C4B44514C4B4D2137354330334 : DHCPNameServer = 192.168.1.1 192.168.1.1
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
x64-Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\Windows\System32\ieudinit.exe
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2014-3-27 192792]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2014-3-27 324376]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2014-3-31 130840]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2014-3-27 32536]
R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\drivers\avgdiska.sys [2014-3-27 153368]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2014-4-18 237336]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2014-3-27 236824]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2014-3-31 274200]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\drivers\mwlPSDFilter.sys [2009-6-2 22576]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\drivers\mwlPSDNserv.sys [2009-6-2 20016]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\drivers\mwlPSDVDisk.sys [2009-6-2 60464]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-4-18 3645456]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-3-27 291912]
R2 ePowerSvc;Acer ePower Service;C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-11-3 844320]
R2 Fabs;FABS - Helping agent for MAGIX media database;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2011-5-24 1840128]
R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-8-28 1150496]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-7-6 13592]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-6-18 144640]
R2 PCPitstop Scheduling;PCPitstop Scheduling;C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe [2014-4-10 86216]
R2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-11-3 240160]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2014-4-12 76912]
S2 CLKMSVC10_38F51D56;CyberLink Product - 2014/04/29 16:30:11;C:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe [2013-9-25 243464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 EpsonScanSvc;Epson Scanner Service;C:\Windows\System32\escsvc64.exe [2013-3-17 135824]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-4-26 2702848]
S3 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe [2009-9-10 305448]
S3 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-5-4 503080]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-6-18 50432]
S3 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-8-14 39056]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2009-11-3 225280]
S3 SWDUMon;SWDUMon;C:\Windows\System32\drivers\SWDUMon.sys [2012-8-14 15712]
S3 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-8-27 93072]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-4-11 59392]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-8-28 1255736]
S4 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-5-14 759048]
.
=============== Created Last 30 ================
.
2014-05-12 16:30:37 279168 ----a-w- C:\ProgramData\nrsdmvt.dat
2014-05-12 07:27:56 -------- d-----w- C:\Users\Simon\AppData\Local\{E4435A9A-8A18-4592-A817-4B85498E123B}
2014-05-11 15:00:13 -------- d-----w- C:\Users\Simon\AppData\Local\{EED696BE-D075-4E7A-B6BD-2246C0C6F1C9}
2014-05-10 17:43:34 -------- d-----w- C:\Users\Simon\AppData\Local\{056FD35D-730D-4150-A70F-29AD6C810AC9}
2014-05-10 05:07:46 -------- d-----w- C:\Users\Simon\AppData\Local\{A9F27FCD-DA9B-46DB-A58E-FD38993E590C}
2014-05-09 14:48:47 -------- d-----w- C:\Users\Simon\AppData\Local\{89106FBE-FCAF-42FF-8A5D-9910F83F6D31}
2014-05-08 19:35:37 -------- d-----w- C:\Users\Simon\AppData\Local\{3F318569-211E-429F-97D4-DF64F342D544}
2014-05-08 07:34:43 -------- d-----w- C:\Users\Simon\AppData\Local\{AF315C4D-6275-4B90-8AD0-543CB0B169B5}
2014-05-07 16:53:25 -------- d-----w- C:\Users\Simon\AppData\Local\{7C68DE96-630E-42C6-BA11-AEECF06A6778}
2014-05-07 04:52:30 -------- d-----w- C:\Users\Simon\AppData\Local\{D9D4783A-C547-41C5-A5B8-11431D469C7F}
2014-05-06 16:51:35 -------- d-----w- C:\Users\Simon\AppData\Local\{7C4C9E7A-C26D-48A4-8C48-3E6EC7B91104}
2014-05-06 04:50:39 -------- d-----w- C:\Users\Simon\AppData\Local\{7533790B-FA65-400F-B978-337D76F79F62}
2014-05-05 13:58:52 -------- d-----w- C:\Users\Simon\AppData\Local\{D7721902-F4ED-48BD-8665-AE781F2419F4}
2014-05-04 20:13:13 -------- d-----w- C:\Users\Simon\AppData\Local\{8C4D9F09-980A-404C-ADC8-94F7466BE838}
2014-05-04 13:25:22 -------- d-----w- C:\ProgramData\Freemake
2014-05-04 13:25:04 -------- d-----w- C:\Program Files (x86)\Freemake
2014-05-04 13:07:49 -------- d-----w- C:\Users\Simon\AppData\Roaming\AVS4YOU
2014-05-04 13:07:49 -------- d-----w- C:\ProgramData\AVS4YOU
2014-05-04 13:05:01 -------- d-----w- C:\Program Files (x86)\Common Files\AVSMedia
2014-05-04 13:05:00 1700352 ----a-w- C:\Windows\SysWow64\GdiPlus.dll
2014-05-04 13:05:00 -------- d-----w- C:\Program Files (x86)\AVS4YOU
2014-05-04 08:12:18 -------- d-----w- C:\Users\Simon\AppData\Local\{5CE202CD-9ACC-434B-9802-B946B2B3FFC3}
2014-05-03 19:31:53 -------- d-----w- C:\Users\Simon\AppData\Local\{02E097F2-6D86-45DD-8AF2-7DCBC86948B7}
2014-05-03 07:30:59 -------- d-----w- C:\Users\Simon\AppData\Local\{FFDD5214-7238-45DF-8C69-AEC6AF8854B1}
2014-05-02 14:43:28 -------- d-----w- C:\Users\Simon\AppData\Local\{063610CA-D037-4A2F-96E8-75E72CD635DD}
2014-05-01 14:30:12 -------- d-----w- C:\Users\Simon\AppData\Local\{533C6A17-845D-46C1-9C0A-F8601362219A}
2014-04-30 10:42:54 -------- d-----w- C:\Users\Simon\AppData\Local\{C04D8AD7-61D6-4001-9660-8D48676E631D}
2014-04-29 18:37:32 -------- d-----w- C:\Users\Simon\AppData\Local\{99DD4BB1-C553-4AE0-9D57-C0C5305B53E7}
2014-04-29 05:40:04 -------- d-----w- C:\Users\Simon\AppData\Local\{9A70FADC-973E-41DC-86EB-DE0792F33E16}
2014-04-28 16:20:47 -------- d-----w- C:\Users\Simon\AppData\Local\{0ED4C53C-D51C-4308-8E18-0B3FBED414BF}
2014-04-27 17:58:42 -------- d-----w- C:\Users\Simon\AppData\Local\{A84F4C6E-004E-429C-B5EE-3BBA18376A67}
2014-04-27 04:58:28 -------- d-----w- C:\Users\Simon\AppData\Local\{383EE092-6884-441E-93B7-36E36DF76652}
2014-04-26 11:26:25 -------- d-----w- C:\Users\Simon\AppData\Local\{E06C602F-0B8C-4217-B2B0-FD9699C1D1E0}
2014-04-25 19:40:35 -------- d-----w- C:\Users\Simon\AppData\Local\{F4749813-BE2E-4E67-9739-3BF18623ACFE}
2014-04-25 07:38:41 -------- d-----w- C:\Users\Simon\AppData\Local\{CCD6D665-9A84-480C-890B-FA5B7DD40B99}
2014-04-24 21:45:24 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-04-24 15:38:08 -------- d-----w- C:\Users\Simon\AppData\Local\{489B1307-102B-4E74-B63B-B221B6CCC9FB}
2014-04-23 17:27:22 -------- d-----w- C:\Users\Simon\AppData\Local\{3B18400E-D9DE-42D3-8DA3-92E1A4BB9789}
2014-04-23 04:54:44 -------- d-----w- C:\Users\Simon\AppData\Local\{68D36B2D-0806-4CD3-B596-4CCBE5F15415}
2014-04-22 16:37:45 -------- d-----w- C:\Users\Simon\AppData\Local\{EAF0E762-A7F3-4A55-81FE-BAEFD446E53A}
2014-04-21 20:38:27 -------- d-----w- C:\Users\Simon\AppData\Local\{3EB03BEB-CFAB-40CE-B85B-BDB2A1BD329E}
2014-04-21 06:16:31 -------- d-----w- C:\Users\Simon\AppData\Local\{7A0532AF-3798-4E9E-A958-F95D0DC2988D}
2014-04-20 16:32:14 -------- d-----w- C:\Users\Simon\AppData\Local\{1D6DB785-17FA-47FD-8A95-972D2FBC2B6F}
2014-04-19 21:00:27 -------- d-----w- C:\Users\Simon\AppData\Local\{36E555AF-41FF-4688-B1F6-322FFC18ABA5}
2014-04-19 04:56:26 -------- d-----w- C:\Users\Simon\AppData\Local\{C0FC715A-98E7-4758-B815-D18A5D004A42}
2014-04-18 15:32:12 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2014-04-18 14:01:30 237336 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys
2014-04-18 12:01:28 -------- d-----w- C:\Users\Simon\AppData\Local\{412E1CF5-8428-4A65-8DF3-57CBC39AB6E8}
2014-04-17 19:36:57 -------- d-sh--w- C:\$RECYCLE.BIN
2014-04-17 18:58:41 -------- d-----w- C:\FRST
2014-04-17 18:31:18 -------- d-----w- C:\Users\Simon\AppData\Local\{107FF9BA-1A66-4DCE-A029-6A7EFDEEE10E}
2014-04-17 06:30:24 -------- d-----w- C:\Users\Simon\AppData\Local\{2F9574F6-77FF-4D1C-A65C-ECF77613B5C4}
2014-04-16 17:07:43 -------- d-----w- C:\Users\Simon\AppData\Local\{6DFFEEAD-28A5-45F3-9913-03811FB1EDA8}
2014-04-16 05:06:47 -------- d-----w- C:\Users\Simon\AppData\Local\{C65E48F4-F7DD-498F-AD3A-AF589E9837B5}
2014-04-16 03:02:58 354656 ----a-w- C:\Windows\SysWow64\DivXControlPanelApplet.cpl
2014-04-15 16:50:45 -------- d-----w- C:\Users\Simon\AppData\Local\{50C3FADC-D861-4FEC-8487-EC346A3505FD}
2014-04-14 17:21:17 -------- d-----w- C:\Users\Simon\AppData\Local\{5DB3CFE9-8506-4DF8-A471-AE36D695B3DB}
2014-04-14 04:47:58 -------- d-----w- C:\Users\Simon\AppData\Local\{A0489265-FB9B-45F8-82C5-7B7A074F602C}
2014-04-13 12:50:54 -------- d-----w- C:\Users\Simon\AppData\Local\{87007D74-3927-4F36-BA1A-E105CDC1E632}
2014-04-13 10:39:25 -------- d-----w- C:\Users\Simon\AppData\Local\Packages
2014-04-13 10:34:52 -------- d-----w- C:\ProgramData\install_clap
2014-04-13 00:41:51 -------- d-----w- C:\Users\Simon\AppData\Local\{EB6A9D20-8A45-439C-91B5-DE80B0A055B2}
.
==================== Find3M ====================
.
2014-04-29 15:27:29 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2014-04-29 15:27:29 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2014-04-29 12:57:43 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-04-29 12:57:43 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-04-12 13:57:57 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-04-12 13:53:12 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2014-04-12 13:53:12 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2014-04-11 18:35:09 119000 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-04-11 17:27:33 175616 ----a-w- C:\Windows\System32\msclmd.dll
2014-04-11 17:27:33 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2014-03-31 15:20:54 274200 ----a-w- C:\Windows\System32\drivers\avgtdia.sys
2014-03-31 15:06:26 130840 ----a-w- C:\Windows\System32\drivers\avgmfx64.sys
2014-03-31 08:35:08 270496 ------w- C:\Windows\System32\MpSigStub.exe
2014-03-27 21:14:26 192792 ----a-w- C:\Windows\System32\drivers\avgidsha.sys
2014-03-27 21:14:24 153368 ----a-w- C:\Windows\System32\drivers\avgdiska.sys
2014-03-27 21:07:10 236824 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
2014-03-27 21:05:02 324376 ----a-w- C:\Windows\System32\drivers\avgloga.sys
2014-03-27 21:03:16 32536 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys
.
============= FINISH: 17:45:17.68 ===============


I don't know why this has happened twice, I don't surf round dodgy websites and both times this happened I was visiting my OWN message board (which is on the excoboard server). I'm pretty sure Excoboard aren't trying to infect peoples computers.

Attached Files
File Type: zip attach.zip (4.9 KB)

Viewing all articles
Browse latest Browse all 2798

Trending Articles