OK, my laptop seems to have suffered the same problem it did a couple of weeks back.
AVG removed something it said was "suspicious" whilst browsing the web (regsvr32 whatever that is), after which I found AVG had dissapeared from my taskbar and when I tried to access it from the desktop icon it said "program is blocked by group policy".
Here's the thread to the earlier problem in case its relevant.
http://www.techsupportforum.com/foru...vg-824585.html
Anyway, I've run the DDS and Gmer programs, heres the DDS file text, the Attach and Ark texts are attatched to this...
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16476 BrowserJavaVersion: 10.55.2
Run by Simon at 17:41:43 on 2014-05-12
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3002.1588 [GMT 1:00]
.
AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
c:\PROGRA~2\AVG\AVG2014\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe
c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.sky.com/
uProxyOverride = local
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: IEExtension.VDownloaderBHO: {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} -
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
mRun: [TrayServer] C:\Program Files (x86)\MAGIX\Movie_Edit_Pro_MX_Plus_Download_Version\TrayServer_en.exe
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
Trusted Zone: hola.org
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {1B735B98-8010-11D5-AD0B-00500463D885} - hxxp://www.partsarena.com/baxi/Plugins/IMIESRCH.cab
DPF: {36C17E9B-3354-11D1-95CF-0000B4530F04} - hxxp://www.partsarena.com/baxi/Plugins/GFXVIEW.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{173DC93C-7476-469B-91B4-B8737CCA3430} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\255616C6D6F66684F62727F627 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\35B4952463036393 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\35B4953463134363 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\35B4956453035313 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\4514C4B44514C4B4D2135444243343 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\4514C4B44514C4B4D2137354330334 : DHCPNameServer = 192.168.1.1 192.168.1.1
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
x64-Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\Windows\System32\ieudinit.exe
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2014-3-27 192792]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2014-3-27 324376]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2014-3-31 130840]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2014-3-27 32536]
R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\drivers\avgdiska.sys [2014-3-27 153368]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2014-4-18 237336]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2014-3-27 236824]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2014-3-31 274200]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\drivers\mwlPSDFilter.sys [2009-6-2 22576]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\drivers\mwlPSDNserv.sys [2009-6-2 20016]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\drivers\mwlPSDVDisk.sys [2009-6-2 60464]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-4-18 3645456]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-3-27 291912]
R2 ePowerSvc;Acer ePower Service;C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-11-3 844320]
R2 Fabs;FABS - Helping agent for MAGIX media database;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2011-5-24 1840128]
R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-8-28 1150496]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-7-6 13592]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-6-18 144640]
R2 PCPitstop Scheduling;PCPitstop Scheduling;C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe [2014-4-10 86216]
R2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-11-3 240160]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2014-4-12 76912]
S2 CLKMSVC10_38F51D56;CyberLink Product - 2014/04/29 16:30:11;C:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe [2013-9-25 243464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 EpsonScanSvc;Epson Scanner Service;C:\Windows\System32\escsvc64.exe [2013-3-17 135824]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-4-26 2702848]
S3 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe [2009-9-10 305448]
S3 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-5-4 503080]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-6-18 50432]
S3 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-8-14 39056]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2009-11-3 225280]
S3 SWDUMon;SWDUMon;C:\Windows\System32\drivers\SWDUMon.sys [2012-8-14 15712]
S3 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-8-27 93072]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-4-11 59392]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-8-28 1255736]
S4 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-5-14 759048]
.
=============== Created Last 30 ================
.
2014-05-12 16:30:37 279168 ----a-w- C:\ProgramData\nrsdmvt.dat
2014-05-12 07:27:56 -------- d-----w- C:\Users\Simon\AppData\Local\{E4435A9A-8A18-4592-A817-4B85498E123B}
2014-05-11 15:00:13 -------- d-----w- C:\Users\Simon\AppData\Local\{EED696BE-D075-4E7A-B6BD-2246C0C6F1C9}
2014-05-10 17:43:34 -------- d-----w- C:\Users\Simon\AppData\Local\{056FD35D-730D-4150-A70F-29AD6C810AC9}
2014-05-10 05:07:46 -------- d-----w- C:\Users\Simon\AppData\Local\{A9F27FCD-DA9B-46DB-A58E-FD38993E590C}
2014-05-09 14:48:47 -------- d-----w- C:\Users\Simon\AppData\Local\{89106FBE-FCAF-42FF-8A5D-9910F83F6D31}
2014-05-08 19:35:37 -------- d-----w- C:\Users\Simon\AppData\Local\{3F318569-211E-429F-97D4-DF64F342D544}
2014-05-08 07:34:43 -------- d-----w- C:\Users\Simon\AppData\Local\{AF315C4D-6275-4B90-8AD0-543CB0B169B5}
2014-05-07 16:53:25 -------- d-----w- C:\Users\Simon\AppData\Local\{7C68DE96-630E-42C6-BA11-AEECF06A6778}
2014-05-07 04:52:30 -------- d-----w- C:\Users\Simon\AppData\Local\{D9D4783A-C547-41C5-A5B8-11431D469C7F}
2014-05-06 16:51:35 -------- d-----w- C:\Users\Simon\AppData\Local\{7C4C9E7A-C26D-48A4-8C48-3E6EC7B91104}
2014-05-06 04:50:39 -------- d-----w- C:\Users\Simon\AppData\Local\{7533790B-FA65-400F-B978-337D76F79F62}
2014-05-05 13:58:52 -------- d-----w- C:\Users\Simon\AppData\Local\{D7721902-F4ED-48BD-8665-AE781F2419F4}
2014-05-04 20:13:13 -------- d-----w- C:\Users\Simon\AppData\Local\{8C4D9F09-980A-404C-ADC8-94F7466BE838}
2014-05-04 13:25:22 -------- d-----w- C:\ProgramData\Freemake
2014-05-04 13:25:04 -------- d-----w- C:\Program Files (x86)\Freemake
2014-05-04 13:07:49 -------- d-----w- C:\Users\Simon\AppData\Roaming\AVS4YOU
2014-05-04 13:07:49 -------- d-----w- C:\ProgramData\AVS4YOU
2014-05-04 13:05:01 -------- d-----w- C:\Program Files (x86)\Common Files\AVSMedia
2014-05-04 13:05:00 1700352 ----a-w- C:\Windows\SysWow64\GdiPlus.dll
2014-05-04 13:05:00 -------- d-----w- C:\Program Files (x86)\AVS4YOU
2014-05-04 08:12:18 -------- d-----w- C:\Users\Simon\AppData\Local\{5CE202CD-9ACC-434B-9802-B946B2B3FFC3}
2014-05-03 19:31:53 -------- d-----w- C:\Users\Simon\AppData\Local\{02E097F2-6D86-45DD-8AF2-7DCBC86948B7}
2014-05-03 07:30:59 -------- d-----w- C:\Users\Simon\AppData\Local\{FFDD5214-7238-45DF-8C69-AEC6AF8854B1}
2014-05-02 14:43:28 -------- d-----w- C:\Users\Simon\AppData\Local\{063610CA-D037-4A2F-96E8-75E72CD635DD}
2014-05-01 14:30:12 -------- d-----w- C:\Users\Simon\AppData\Local\{533C6A17-845D-46C1-9C0A-F8601362219A}
2014-04-30 10:42:54 -------- d-----w- C:\Users\Simon\AppData\Local\{C04D8AD7-61D6-4001-9660-8D48676E631D}
2014-04-29 18:37:32 -------- d-----w- C:\Users\Simon\AppData\Local\{99DD4BB1-C553-4AE0-9D57-C0C5305B53E7}
2014-04-29 05:40:04 -------- d-----w- C:\Users\Simon\AppData\Local\{9A70FADC-973E-41DC-86EB-DE0792F33E16}
2014-04-28 16:20:47 -------- d-----w- C:\Users\Simon\AppData\Local\{0ED4C53C-D51C-4308-8E18-0B3FBED414BF}
2014-04-27 17:58:42 -------- d-----w- C:\Users\Simon\AppData\Local\{A84F4C6E-004E-429C-B5EE-3BBA18376A67}
2014-04-27 04:58:28 -------- d-----w- C:\Users\Simon\AppData\Local\{383EE092-6884-441E-93B7-36E36DF76652}
2014-04-26 11:26:25 -------- d-----w- C:\Users\Simon\AppData\Local\{E06C602F-0B8C-4217-B2B0-FD9699C1D1E0}
2014-04-25 19:40:35 -------- d-----w- C:\Users\Simon\AppData\Local\{F4749813-BE2E-4E67-9739-3BF18623ACFE}
2014-04-25 07:38:41 -------- d-----w- C:\Users\Simon\AppData\Local\{CCD6D665-9A84-480C-890B-FA5B7DD40B99}
2014-04-24 21:45:24 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-04-24 15:38:08 -------- d-----w- C:\Users\Simon\AppData\Local\{489B1307-102B-4E74-B63B-B221B6CCC9FB}
2014-04-23 17:27:22 -------- d-----w- C:\Users\Simon\AppData\Local\{3B18400E-D9DE-42D3-8DA3-92E1A4BB9789}
2014-04-23 04:54:44 -------- d-----w- C:\Users\Simon\AppData\Local\{68D36B2D-0806-4CD3-B596-4CCBE5F15415}
2014-04-22 16:37:45 -------- d-----w- C:\Users\Simon\AppData\Local\{EAF0E762-A7F3-4A55-81FE-BAEFD446E53A}
2014-04-21 20:38:27 -------- d-----w- C:\Users\Simon\AppData\Local\{3EB03BEB-CFAB-40CE-B85B-BDB2A1BD329E}
2014-04-21 06:16:31 -------- d-----w- C:\Users\Simon\AppData\Local\{7A0532AF-3798-4E9E-A958-F95D0DC2988D}
2014-04-20 16:32:14 -------- d-----w- C:\Users\Simon\AppData\Local\{1D6DB785-17FA-47FD-8A95-972D2FBC2B6F}
2014-04-19 21:00:27 -------- d-----w- C:\Users\Simon\AppData\Local\{36E555AF-41FF-4688-B1F6-322FFC18ABA5}
2014-04-19 04:56:26 -------- d-----w- C:\Users\Simon\AppData\Local\{C0FC715A-98E7-4758-B815-D18A5D004A42}
2014-04-18 15:32:12 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2014-04-18 14:01:30 237336 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys
2014-04-18 12:01:28 -------- d-----w- C:\Users\Simon\AppData\Local\{412E1CF5-8428-4A65-8DF3-57CBC39AB6E8}
2014-04-17 19:36:57 -------- d-sh--w- C:\$RECYCLE.BIN
2014-04-17 18:58:41 -------- d-----w- C:\FRST
2014-04-17 18:31:18 -------- d-----w- C:\Users\Simon\AppData\Local\{107FF9BA-1A66-4DCE-A029-6A7EFDEEE10E}
2014-04-17 06:30:24 -------- d-----w- C:\Users\Simon\AppData\Local\{2F9574F6-77FF-4D1C-A65C-ECF77613B5C4}
2014-04-16 17:07:43 -------- d-----w- C:\Users\Simon\AppData\Local\{6DFFEEAD-28A5-45F3-9913-03811FB1EDA8}
2014-04-16 05:06:47 -------- d-----w- C:\Users\Simon\AppData\Local\{C65E48F4-F7DD-498F-AD3A-AF589E9837B5}
2014-04-16 03:02:58 354656 ----a-w- C:\Windows\SysWow64\DivXControlPanelApplet.cpl
2014-04-15 16:50:45 -------- d-----w- C:\Users\Simon\AppData\Local\{50C3FADC-D861-4FEC-8487-EC346A3505FD}
2014-04-14 17:21:17 -------- d-----w- C:\Users\Simon\AppData\Local\{5DB3CFE9-8506-4DF8-A471-AE36D695B3DB}
2014-04-14 04:47:58 -------- d-----w- C:\Users\Simon\AppData\Local\{A0489265-FB9B-45F8-82C5-7B7A074F602C}
2014-04-13 12:50:54 -------- d-----w- C:\Users\Simon\AppData\Local\{87007D74-3927-4F36-BA1A-E105CDC1E632}
2014-04-13 10:39:25 -------- d-----w- C:\Users\Simon\AppData\Local\Packages
2014-04-13 10:34:52 -------- d-----w- C:\ProgramData\install_clap
2014-04-13 00:41:51 -------- d-----w- C:\Users\Simon\AppData\Local\{EB6A9D20-8A45-439C-91B5-DE80B0A055B2}
.
==================== Find3M ====================
.
2014-04-29 15:27:29 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2014-04-29 15:27:29 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2014-04-29 12:57:43 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-04-29 12:57:43 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-04-12 13:57:57 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-04-12 13:53:12 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2014-04-12 13:53:12 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2014-04-11 18:35:09 119000 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-04-11 17:27:33 175616 ----a-w- C:\Windows\System32\msclmd.dll
2014-04-11 17:27:33 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2014-03-31 15:20:54 274200 ----a-w- C:\Windows\System32\drivers\avgtdia.sys
2014-03-31 15:06:26 130840 ----a-w- C:\Windows\System32\drivers\avgmfx64.sys
2014-03-31 08:35:08 270496 ------w- C:\Windows\System32\MpSigStub.exe
2014-03-27 21:14:26 192792 ----a-w- C:\Windows\System32\drivers\avgidsha.sys
2014-03-27 21:14:24 153368 ----a-w- C:\Windows\System32\drivers\avgdiska.sys
2014-03-27 21:07:10 236824 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
2014-03-27 21:05:02 324376 ----a-w- C:\Windows\System32\drivers\avgloga.sys
2014-03-27 21:03:16 32536 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys
.
============= FINISH: 17:45:17.68 ===============
I don't know why this has happened twice, I don't surf round dodgy websites and both times this happened I was visiting my OWN message board (which is on the excoboard server). I'm pretty sure Excoboard aren't trying to infect peoples computers.
AVG removed something it said was "suspicious" whilst browsing the web (regsvr32 whatever that is), after which I found AVG had dissapeared from my taskbar and when I tried to access it from the desktop icon it said "program is blocked by group policy".
Here's the thread to the earlier problem in case its relevant.
http://www.techsupportforum.com/foru...vg-824585.html
Anyway, I've run the DDS and Gmer programs, heres the DDS file text, the Attach and Ark texts are attatched to this...
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16476 BrowserJavaVersion: 10.55.2
Run by Simon at 17:41:43 on 2014-05-12
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3002.1588 [GMT 1:00]
.
AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
c:\PROGRA~2\AVG\AVG2014\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe
c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.sky.com/
uProxyOverride = local
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: IEExtension.VDownloaderBHO: {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} -
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
mRun: [TrayServer] C:\Program Files (x86)\MAGIX\Movie_Edit_Pro_MX_Plus_Download_Version\TrayServer_en.exe
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
Trusted Zone: hola.org
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {1B735B98-8010-11D5-AD0B-00500463D885} - hxxp://www.partsarena.com/baxi/Plugins/IMIESRCH.cab
DPF: {36C17E9B-3354-11D1-95CF-0000B4530F04} - hxxp://www.partsarena.com/baxi/Plugins/GFXVIEW.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{173DC93C-7476-469B-91B4-B8737CCA3430} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\255616C6D6F66684F62727F627 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\35B4952463036393 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\35B4953463134363 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\35B4956453035313 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\4514C4B44514C4B4D2135444243343 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{90B0D904-2FB2-4EF4-BAF1-A783ACAFA0B8}\4514C4B44514C4B4D2137354330334 : DHCPNameServer = 192.168.1.1 192.168.1.1
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
x64-Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\Windows\System32\ieudinit.exe
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2014-3-27 192792]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2014-3-27 324376]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2014-3-31 130840]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2014-3-27 32536]
R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\drivers\avgdiska.sys [2014-3-27 153368]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2014-4-18 237336]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2014-3-27 236824]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2014-3-31 274200]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\drivers\mwlPSDFilter.sys [2009-6-2 22576]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\drivers\mwlPSDNserv.sys [2009-6-2 20016]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\drivers\mwlPSDVDisk.sys [2009-6-2 60464]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-4-18 3645456]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-3-27 291912]
R2 ePowerSvc;Acer ePower Service;C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-11-3 844320]
R2 Fabs;FABS - Helping agent for MAGIX media database;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2011-5-24 1840128]
R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-8-28 1150496]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-7-6 13592]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-6-18 144640]
R2 PCPitstop Scheduling;PCPitstop Scheduling;C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe [2014-4-10 86216]
R2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-11-3 240160]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2014-4-12 76912]
S2 CLKMSVC10_38F51D56;CyberLink Product - 2014/04/29 16:30:11;C:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe [2013-9-25 243464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 EpsonScanSvc;Epson Scanner Service;C:\Windows\System32\escsvc64.exe [2013-3-17 135824]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-4-26 2702848]
S3 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe [2009-9-10 305448]
S3 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-5-4 503080]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-6-18 50432]
S3 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-8-14 39056]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2009-11-3 225280]
S3 SWDUMon;SWDUMon;C:\Windows\System32\drivers\SWDUMon.sys [2012-8-14 15712]
S3 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-8-27 93072]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-4-11 59392]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-8-28 1255736]
S4 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-5-14 759048]
.
=============== Created Last 30 ================
.
2014-05-12 16:30:37 279168 ----a-w- C:\ProgramData\nrsdmvt.dat
2014-05-12 07:27:56 -------- d-----w- C:\Users\Simon\AppData\Local\{E4435A9A-8A18-4592-A817-4B85498E123B}
2014-05-11 15:00:13 -------- d-----w- C:\Users\Simon\AppData\Local\{EED696BE-D075-4E7A-B6BD-2246C0C6F1C9}
2014-05-10 17:43:34 -------- d-----w- C:\Users\Simon\AppData\Local\{056FD35D-730D-4150-A70F-29AD6C810AC9}
2014-05-10 05:07:46 -------- d-----w- C:\Users\Simon\AppData\Local\{A9F27FCD-DA9B-46DB-A58E-FD38993E590C}
2014-05-09 14:48:47 -------- d-----w- C:\Users\Simon\AppData\Local\{89106FBE-FCAF-42FF-8A5D-9910F83F6D31}
2014-05-08 19:35:37 -------- d-----w- C:\Users\Simon\AppData\Local\{3F318569-211E-429F-97D4-DF64F342D544}
2014-05-08 07:34:43 -------- d-----w- C:\Users\Simon\AppData\Local\{AF315C4D-6275-4B90-8AD0-543CB0B169B5}
2014-05-07 16:53:25 -------- d-----w- C:\Users\Simon\AppData\Local\{7C68DE96-630E-42C6-BA11-AEECF06A6778}
2014-05-07 04:52:30 -------- d-----w- C:\Users\Simon\AppData\Local\{D9D4783A-C547-41C5-A5B8-11431D469C7F}
2014-05-06 16:51:35 -------- d-----w- C:\Users\Simon\AppData\Local\{7C4C9E7A-C26D-48A4-8C48-3E6EC7B91104}
2014-05-06 04:50:39 -------- d-----w- C:\Users\Simon\AppData\Local\{7533790B-FA65-400F-B978-337D76F79F62}
2014-05-05 13:58:52 -------- d-----w- C:\Users\Simon\AppData\Local\{D7721902-F4ED-48BD-8665-AE781F2419F4}
2014-05-04 20:13:13 -------- d-----w- C:\Users\Simon\AppData\Local\{8C4D9F09-980A-404C-ADC8-94F7466BE838}
2014-05-04 13:25:22 -------- d-----w- C:\ProgramData\Freemake
2014-05-04 13:25:04 -------- d-----w- C:\Program Files (x86)\Freemake
2014-05-04 13:07:49 -------- d-----w- C:\Users\Simon\AppData\Roaming\AVS4YOU
2014-05-04 13:07:49 -------- d-----w- C:\ProgramData\AVS4YOU
2014-05-04 13:05:01 -------- d-----w- C:\Program Files (x86)\Common Files\AVSMedia
2014-05-04 13:05:00 1700352 ----a-w- C:\Windows\SysWow64\GdiPlus.dll
2014-05-04 13:05:00 -------- d-----w- C:\Program Files (x86)\AVS4YOU
2014-05-04 08:12:18 -------- d-----w- C:\Users\Simon\AppData\Local\{5CE202CD-9ACC-434B-9802-B946B2B3FFC3}
2014-05-03 19:31:53 -------- d-----w- C:\Users\Simon\AppData\Local\{02E097F2-6D86-45DD-8AF2-7DCBC86948B7}
2014-05-03 07:30:59 -------- d-----w- C:\Users\Simon\AppData\Local\{FFDD5214-7238-45DF-8C69-AEC6AF8854B1}
2014-05-02 14:43:28 -------- d-----w- C:\Users\Simon\AppData\Local\{063610CA-D037-4A2F-96E8-75E72CD635DD}
2014-05-01 14:30:12 -------- d-----w- C:\Users\Simon\AppData\Local\{533C6A17-845D-46C1-9C0A-F8601362219A}
2014-04-30 10:42:54 -------- d-----w- C:\Users\Simon\AppData\Local\{C04D8AD7-61D6-4001-9660-8D48676E631D}
2014-04-29 18:37:32 -------- d-----w- C:\Users\Simon\AppData\Local\{99DD4BB1-C553-4AE0-9D57-C0C5305B53E7}
2014-04-29 05:40:04 -------- d-----w- C:\Users\Simon\AppData\Local\{9A70FADC-973E-41DC-86EB-DE0792F33E16}
2014-04-28 16:20:47 -------- d-----w- C:\Users\Simon\AppData\Local\{0ED4C53C-D51C-4308-8E18-0B3FBED414BF}
2014-04-27 17:58:42 -------- d-----w- C:\Users\Simon\AppData\Local\{A84F4C6E-004E-429C-B5EE-3BBA18376A67}
2014-04-27 04:58:28 -------- d-----w- C:\Users\Simon\AppData\Local\{383EE092-6884-441E-93B7-36E36DF76652}
2014-04-26 11:26:25 -------- d-----w- C:\Users\Simon\AppData\Local\{E06C602F-0B8C-4217-B2B0-FD9699C1D1E0}
2014-04-25 19:40:35 -------- d-----w- C:\Users\Simon\AppData\Local\{F4749813-BE2E-4E67-9739-3BF18623ACFE}
2014-04-25 07:38:41 -------- d-----w- C:\Users\Simon\AppData\Local\{CCD6D665-9A84-480C-890B-FA5B7DD40B99}
2014-04-24 21:45:24 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-04-24 15:38:08 -------- d-----w- C:\Users\Simon\AppData\Local\{489B1307-102B-4E74-B63B-B221B6CCC9FB}
2014-04-23 17:27:22 -------- d-----w- C:\Users\Simon\AppData\Local\{3B18400E-D9DE-42D3-8DA3-92E1A4BB9789}
2014-04-23 04:54:44 -------- d-----w- C:\Users\Simon\AppData\Local\{68D36B2D-0806-4CD3-B596-4CCBE5F15415}
2014-04-22 16:37:45 -------- d-----w- C:\Users\Simon\AppData\Local\{EAF0E762-A7F3-4A55-81FE-BAEFD446E53A}
2014-04-21 20:38:27 -------- d-----w- C:\Users\Simon\AppData\Local\{3EB03BEB-CFAB-40CE-B85B-BDB2A1BD329E}
2014-04-21 06:16:31 -------- d-----w- C:\Users\Simon\AppData\Local\{7A0532AF-3798-4E9E-A958-F95D0DC2988D}
2014-04-20 16:32:14 -------- d-----w- C:\Users\Simon\AppData\Local\{1D6DB785-17FA-47FD-8A95-972D2FBC2B6F}
2014-04-19 21:00:27 -------- d-----w- C:\Users\Simon\AppData\Local\{36E555AF-41FF-4688-B1F6-322FFC18ABA5}
2014-04-19 04:56:26 -------- d-----w- C:\Users\Simon\AppData\Local\{C0FC715A-98E7-4758-B815-D18A5D004A42}
2014-04-18 15:32:12 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2014-04-18 14:01:30 237336 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys
2014-04-18 12:01:28 -------- d-----w- C:\Users\Simon\AppData\Local\{412E1CF5-8428-4A65-8DF3-57CBC39AB6E8}
2014-04-17 19:36:57 -------- d-sh--w- C:\$RECYCLE.BIN
2014-04-17 18:58:41 -------- d-----w- C:\FRST
2014-04-17 18:31:18 -------- d-----w- C:\Users\Simon\AppData\Local\{107FF9BA-1A66-4DCE-A029-6A7EFDEEE10E}
2014-04-17 06:30:24 -------- d-----w- C:\Users\Simon\AppData\Local\{2F9574F6-77FF-4D1C-A65C-ECF77613B5C4}
2014-04-16 17:07:43 -------- d-----w- C:\Users\Simon\AppData\Local\{6DFFEEAD-28A5-45F3-9913-03811FB1EDA8}
2014-04-16 05:06:47 -------- d-----w- C:\Users\Simon\AppData\Local\{C65E48F4-F7DD-498F-AD3A-AF589E9837B5}
2014-04-16 03:02:58 354656 ----a-w- C:\Windows\SysWow64\DivXControlPanelApplet.cpl
2014-04-15 16:50:45 -------- d-----w- C:\Users\Simon\AppData\Local\{50C3FADC-D861-4FEC-8487-EC346A3505FD}
2014-04-14 17:21:17 -------- d-----w- C:\Users\Simon\AppData\Local\{5DB3CFE9-8506-4DF8-A471-AE36D695B3DB}
2014-04-14 04:47:58 -------- d-----w- C:\Users\Simon\AppData\Local\{A0489265-FB9B-45F8-82C5-7B7A074F602C}
2014-04-13 12:50:54 -------- d-----w- C:\Users\Simon\AppData\Local\{87007D74-3927-4F36-BA1A-E105CDC1E632}
2014-04-13 10:39:25 -------- d-----w- C:\Users\Simon\AppData\Local\Packages
2014-04-13 10:34:52 -------- d-----w- C:\ProgramData\install_clap
2014-04-13 00:41:51 -------- d-----w- C:\Users\Simon\AppData\Local\{EB6A9D20-8A45-439C-91B5-DE80B0A055B2}
.
==================== Find3M ====================
.
2014-04-29 15:27:29 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2014-04-29 15:27:29 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2014-04-29 12:57:43 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-04-29 12:57:43 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-04-12 13:57:57 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-04-12 13:53:12 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2014-04-12 13:53:12 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2014-04-11 18:35:09 119000 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-04-11 17:27:33 175616 ----a-w- C:\Windows\System32\msclmd.dll
2014-04-11 17:27:33 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2014-03-31 15:20:54 274200 ----a-w- C:\Windows\System32\drivers\avgtdia.sys
2014-03-31 15:06:26 130840 ----a-w- C:\Windows\System32\drivers\avgmfx64.sys
2014-03-31 08:35:08 270496 ------w- C:\Windows\System32\MpSigStub.exe
2014-03-27 21:14:26 192792 ----a-w- C:\Windows\System32\drivers\avgidsha.sys
2014-03-27 21:14:24 153368 ----a-w- C:\Windows\System32\drivers\avgdiska.sys
2014-03-27 21:07:10 236824 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
2014-03-27 21:05:02 324376 ----a-w- C:\Windows\System32\drivers\avgloga.sys
2014-03-27 21:03:16 32536 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys
.
============= FINISH: 17:45:17.68 ===============
I don't know why this has happened twice, I don't surf round dodgy websites and both times this happened I was visiting my OWN message board (which is on the excoboard server). I'm pretty sure Excoboard aren't trying to infect peoples computers.