Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Chrome crashes,svchost prob,pc became slow.

Started by Atnos , Aug 21 2011 05:24 AM

  • This topic is locked This topic is locked

#1
Atnos
Posted 21 August 2011 - 05:24 AM

Atnos

    New Member

  • Member
  • Pip
  • 2 posts
Sometimes,I get a black screen when i turn on my cpu.Won't even get to the boot.And now,my pc spikes on startup,got to wait like a minute till I reach the desktop.Spiky performance.My internet connection is not affected.And in the processes list of my task manager,I see alot of avgntdumpx.exe .Probably from AVG? Any help would be great.
My antivirus has also been detecting trojans and such,removed em but the problem still exists.

OTL logfile created on: 8/21/2011 7:54:14 PM - Run 1
OTL by OldTimer - Version 3.2.26.5 Folder = C:\Users\user\Downloads\Programs
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 0.81 Gb Available Physical Memory | 40.52% Memory free
4.00 Gb Paging File | 2.44 Gb Available in Paging File | 60.99% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48.73 Gb Total Space | 4.11 Gb Free Space | 8.43% Space Free | Partition Type: NTFS
Drive D: | 416.93 Gb Total Space | 351.00 Gb Free Space | 84.19% Space Free | Partition Type: NTFS

Computer Name: USER-PC | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/08/21 19:46:34 | 000,917,504 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Nightly\firefox.exe
PRC - [2011/08/21 19:46:30 | 000,037,376 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Nightly\plugin-container.exe
PRC - [2011/08/21 19:45:17 | 000,014,080 | ---- | M] () -- C:\Windows\Temp\VRT865E.tmp
PRC - [2011/08/13 05:37:06 | 004,603,264 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2011/08/12 07:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2011/08/10 15:23:04 | 003,298,712 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/07/02 02:40:28 | 000,129,352 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpntray.exe
PRC - [2011/07/02 02:38:58 | 000,298,824 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
PRC - [2011/05/25 14:09:08 | 000,839,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2011/05/25 14:09:06 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/05/25 08:54:54 | 000,329,544 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
PRC - [2011/05/25 07:40:12 | 000,363,336 | ---- | M] (AnchorFree Inc.) -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
PRC - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/04/18 17:40:08 | 002,334,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/04/14 05:36:42 | 001,080,672 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/03/18 01:26:14 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\Windows\System32\ZoneLabs\vsmon.exe
PRC - [2011/03/18 01:24:50 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2011/03/16 16:05:20 | 001,025,888 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe
PRC - [2011/03/16 16:05:14 | 000,656,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2011/02/10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010/05/25 22:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2009/11/07 15:57:40 | 000,239,336 | ---- | M] (Systweak Inc.) -- C:\Program Files\Advanced System Optimizer 3\ASO3DefragSrv.exe
PRC - [2009/07/14 09:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 09:14:20 | 002,640,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/07/14 09:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009/07/14 09:14:12 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe


========== Modules (No Company Name) ==========

MOD - [2011/08/21 19:46:32 | 001,953,792 | ---- | M] () -- C:\Program Files\Nightly\mozjs.dll
MOD - [2011/08/21 19:46:17 | 000,052,736 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MOD - [2011/08/21 19:10:06 | 000,117,760 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MOD - [2011/08/21 19:10:06 | 000,063,488 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MOD - [2011/08/21 19:10:06 | 000,052,224 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MOD - [2011/07/02 02:40:28 | 000,129,352 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpntray.exe
MOD - [2011/07/02 02:39:40 | 000,009,032 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\lang\gui-eng.dll
MOD - [2011/05/20 22:35:00 | 000,247,400 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2011/02/10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
MOD - [2009/07/18 11:21:00 | 003,883,424 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (NMSAccess)
SRV - [2011/08/12 07:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)
SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/07/02 02:40:36 | 000,063,976 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Hotspot Shield\bin\HssTrayService.exe -- (HssTrayService)
SRV - [2011/07/02 02:38:58 | 000,298,824 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe -- (hshld)
SRV - [2011/05/25 14:09:06 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/05/25 08:54:54 | 000,329,544 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2011/05/25 07:40:12 | 000,363,336 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe -- (HssSrv)
SRV - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011/04/18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/03/18 01:26:14 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\Windows\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010/09/28 08:10:38 | 004,126,264 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2009/11/07 15:57:40 | 000,239,336 | ---- | M] (Systweak Inc.) [Auto | Running] -- C:\Program Files\Advanced System Optimizer 3\ASO3DefragSrv.exe -- (ASO3DiskOptimizer)
SRV - [2009/07/14 09:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 09:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 09:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2011/07/23 00:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/13 05:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/05/25 14:09:05 | 010,589,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011/05/25 07:40:12 | 000,037,376 | ---- | M] (AnchorFree Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HssDrv.sys -- (HssDrv)
DRV - [2011/04/14 21:28:30 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/04/05 00:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/03/29 01:46:40 | 000,086,792 | ---- | M] (Tonec Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP)
DRV - [2011/03/16 16:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/03/01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/22 08:12:50 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2011/02/10 07:53:42 | 000,021,968 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 07:53:40 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/01/07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010/11/05 10:56:35 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\seehcri.sys -- (seehcri)
DRV - [2010/11/05 10:56:15 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2010/11/05 10:56:15 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt)
DRV - [2010/10/29 09:38:00 | 000,079,984 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Mkd2BthF.sys -- (Mkd2Bthf)
DRV - [2010/09/23 03:19:02 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\taphss.sys -- (taphss)
DRV - [2010/05/15 16:30:50 | 000,461,400 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\Windows\System32\drivers\vsdatant.sys -- (Vsdatant)
DRV - [2009/07/24 16:56:16 | 000,009,472 | ---- | M] (Primax Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NMgamingms.sys -- (NMgamingmsFltr)
DRV - [2009/07/14 09:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/14 09:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009/07/14 09:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/14 07:53:36 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\loop.sys -- (msloop)
DRV - [2009/07/14 07:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/14 07:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/14 07:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/14 06:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2008/10/17 16:50:00 | 000,131,072 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Mkd2kfNT.sys -- (Mkd2kfNt)
DRV - [2008/10/17 16:50:00 | 000,079,104 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
DRV - [2007/07/23 15:04:24 | 000,022,528 | ---- | M] (SoundGenetics) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\aubridge.sys -- (audiobridge)
DRV - [2007/03/16 10:11:38 | 000,012,256 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2006/03/14 11:24:00 | 000,037,362 | ---- | M] (KYOCERA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iBurstu.sys -- (iBurstu)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.my/
IE - HKCU\..\URLSearchHook: {cac9d76b-2b7f-4f42-918f-3470a847f562} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local

========== FireFox ==========


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@ahnlab.com/asp/npaosmgr.1: C:\Program Files\AhnLab\ASP\Components\aosmgr\npaosmgr.dll (AhnLab, Inc.)
FF - HKLM\Software\MozillaPlugins\@ahnlab.com/asp/npmkd25sp: C:\Program Files\AhnLab\ASP\MyKeyDefense 2.5\npmkd25sp.dll (AhnLab, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.3088: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.3146: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.3006: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKCU\Software\MozillaPlugins\@ahnlab.com/asp/npmkd25sp: C:\Program Files\AhnLab\ASP\MyKeyDefense 2.5\npmkd25sp.dll (AhnLab, Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/06/21 16:58:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011/08/10 15:45:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Nightly 9.0a1\extensions\\Components: C:\Program Files\Nightly\components [2011/08/21 19:46:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Nightly 9.0a1\extensions\\Plugins: C:\Program Files\Nightly\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\user\AppData\Roaming\IDM\idmmzcc3 [2011/08/04 15:19:44 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Users\user\AppData\Roaming\IDM\idmmzcc3 [2011/08/04 15:19:44 | 000,000,000 | ---D | M]

[2011/07/26 16:43:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Extensions
[2011/08/21 17:05:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\bx84szfw.default\extensions
File not found (No name found) --
() (No name found) -- C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BX84SZFW.DEFAULT\EXTENSIONS\{19503E42-CA3C-4C27-B1E2-9CDB2170EE34}.XPI

O1 HOSTS File: ([2011/06/26 09:26:39 | 000,001,010 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 72.55.179.20 darkgunz.com
O1 - Hosts: 72.55.179.20 www.darkgunz.com
O1 - Hosts: 72.55.179.20 w.darkgunz.com
O1 - Hosts: 72.55.186.70 forum.darkgunz.com
O1 - Hosts: 72.55.153.8 locator.darkgunz.com
O1 - Hosts: 174.120.19.124 u.darkgunz.com
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\HssIE\HssIE.dll (AnchorFree Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CAC9D76B-2B7F-4F42-918F-3470A847F562} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [smwcore] C:\Windows\System32\ActionCenter.exe ()
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKCU..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - HKCU..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\user\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O16 - DPF: {063F7D71-5E0B-48F2-87D5-F63C5917947E} http://ahnlabdownloa...ugin/aosmgr.cab (Aosmgr Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {EF0D1A14-1033-41A2-A589-240C01EDC078} http://dl.pplive.com/PluginSetup.cab (PPLive Lite Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 05:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\setup\rsrc\Autorun.exe
O33 - MountPoints2\F\Shell\dinstall\command - "" = F:\Directx\dxsetup.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sasnative32) - C:\Windows\System32\sasnative32.exe ()
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/08/21 19:09:42 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\SUPERAntiSpyware.com
[2011/08/21 19:09:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2011/08/21 19:09:06 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011/08/21 19:09:06 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2011/08/21 19:07:53 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\SUPERAntiSpyware.Pro.v5.0.1118.Incl.Keygen.and.Patch-P2P
[2011/08/21 19:00:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
[2011/08/21 19:00:09 | 000,000,000 | ---D | C] -- C:\Program Files\SpywareBlaster
[2011/08/21 18:43:09 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\TuneUp Software
[2011/08/21 18:42:35 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2011/08/21 18:42:16 | 000,000,000 | -HSD | C] -- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[2011/08/21 18:16:44 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Auslogics
[2011/08/21 18:15:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
[2011/08/21 18:15:27 | 000,000,000 | ---D | C] -- C:\Program Files\Auslogics
[2011/08/21 10:55:12 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Mozilla
[2011/08/21 10:55:09 | 000,000,000 | ---D | C] -- C:\Program Files\Nightly
[2011/08/20 23:16:03 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO
[2011/08/20 22:34:32 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\NVIDIA
[2011/08/20 22:34:22 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Full
[2011/08/20 22:24:23 | 000,000,000 | ---D | C] -- C:\Users\user\Documents\Emicsoft Studio
[2011/08/20 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Emicsoft Studio
[2011/08/20 15:30:29 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Google
[2011/08/20 15:16:04 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011/08/20 15:05:20 | 000,000,000 | -H-D | C] -- C:\System
[2011/08/15 13:03:14 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F57A03CC-F635-47FE-8193-6A720A7E76C1}
[2011/08/14 09:33:21 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{745809B9-684B-40ED-9797-98FE8E68AEA5}
[2011/08/14 09:27:54 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{C227A047-0407-411D-A10B-7C6276F771EB}
[2011/08/13 09:22:09 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{39D38BC5-31F6-42E3-9BE0-FCB9E3BC85B9}
[2011/08/13 09:21:55 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{54BFEFEE-9482-43FB-88B5-B17B0A11D023}
[2011/08/12 15:37:03 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{48E03C7B-3D24-41EC-AC51-58490E97AC70}
[2011/08/12 15:36:48 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{CF672DA4-FA03-45AE-BE42-F049A51913C0}
[2011/08/11 13:30:55 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{3564E9D8-B7C0-4522-9A2B-FE0D1833D58A}
[2011/08/10 16:33:28 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011/08/10 15:45:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2011
[2011/08/10 15:44:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\AVG
[2011/08/10 15:40:40 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{44C21EDF-4318-4C50-839C-688CEE60DCB0}
[2011/08/10 15:40:28 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{72812ABE-E97A-429B-B8E9-FF784EA12CF0}
[2011/08/10 15:37:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZoneAlarm
[2011/08/10 15:37:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\ZoneLabs
[2011/08/10 15:37:08 | 000,000,000 | ---D | C] -- C:\Program Files\Zone Labs
[2011/08/10 15:36:23 | 000,000,000 | ---D | C] -- C:\Windows\Internet Logs
[2011/08/10 15:36:23 | 000,000,000 | ---D | C] -- C:\ProgramData\CheckPoint
[2011/08/10 15:33:02 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{D6087608-15FB-43BD-A21F-36B5B707389F}
[2011/08/10 15:32:48 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{92704B24-530F-4C4D-B9A1-4FB7BC03E0C3}
[2011/08/10 13:06:27 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{9FD77906-F737-4937-93B9-E1A245BF3710}
[2011/08/09 14:44:09 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{6F1AD7BC-6E85-42F9-A60C-D10C4DE303E4}
[2011/08/08 13:07:38 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{EA8896A4-89D9-49EE-8824-1FE9792294B6}
[2011/08/07 09:32:09 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{3B8D89F7-112E-468D-A79B-AAC284C97E08}
[2011/08/06 19:47:32 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{E39DC2B7-8332-42C1-B871-CF725762CAF0}
[2011/08/06 16:52:36 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{DFE9898D-A7CE-4FD1-89CE-3FCDBD6D64CD}
[2011/08/05 15:22:34 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\PunkBuster
[2011/08/05 15:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
[2011/08/04 17:46:04 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{E250786F-9140-49DC-B4E7-51BD2BFB693A}
[2011/08/04 15:22:42 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{95242926-E549-4AB3-A3AF-4E74275D49F4}
[2011/08/04 15:19:44 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\IDM
[2011/08/04 01:36:28 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{57496740-9400-4973-95D6-98D8471063B8}
[2011/07/31 16:27:02 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\Rae Mun
[2011/07/26 20:15:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011/07/26 17:01:32 | 000,000,000 | ---D | C] -- C:\Hotspot Shield
[2011/07/26 17:01:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
[2011/07/26 17:01:07 | 000,000,000 | ---D | C] -- C:\Program Files\Hotspot Shield
[2011/07/26 16:43:12 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Mozilla
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/08/21 19:51:10 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/21 19:51:10 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/21 19:46:07 | 000,000,508 | ---- | M] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 61096086-c856-46c5-b796-67a0d51e5dd8.job
[2011/08/21 19:44:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/08/21 19:44:54 | 1610,260,480 | -HS- | M] () -- C:\hiberfil.sys
[2011/08/21 19:09:08 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
[2011/08/21 19:00:10 | 000,000,983 | ---- | M] () -- C:\Users\user\Desktop\SpywareBlaster.lnk
[2011/08/21 18:15:30 | 000,001,207 | ---- | M] () -- C:\Users\user\Desktop\Auslogics BoostSpeed.lnk
[2011/08/21 17:02:19 | 000,315,904 | ---- | M] () -- C:\Windows\System32\ActionCenter.exe
[2011/08/21 16:14:45 | 000,138,160 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011/08/21 16:14:22 | 000,271,200 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2011/08/21 16:10:22 | 000,103,736 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2011/08/21 15:27:13 | 000,000,033 | ---- | M] () -- C:\Windows\GunzLauncher.INI
[2011/08/21 11:00:47 | 000,000,432 | ---- | M] () -- C:\Windows\tasks\ASOService.job
[2011/08/21 01:19:44 | 000,051,078 | ---- | M] () -- C:\Users\user\AppData\Roaming\room_v3.dat
[2011/08/17 15:55:02 | 000,420,801 | -H-- | M] () -- C:\Windows\System32\drivers\vsconfig.xml
[2011/08/14 19:46:38 | 128,038,465 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2011/08/10 15:45:41 | 000,000,933 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011/08/10 15:20:01 | 000,001,318 | ---- | M] () -- C:\Windows\System32\.ini
[2011/08/07 21:09:08 | 000,466,004 | ---- | M] () -- C:\Users\user\Desktop\yanqin.png
[2011/08/07 21:09:08 | 000,034,680 | ---- | M] () -- C:\Users\user\.recently-used.xbel
[2011/08/06 17:40:15 | 035,491,041 | ---- | M] () -- C:\Users\user\Desktop\CH 258 Master.mp3
[2011/08/05 15:10:58 | 000,022,328 | ---- | M] () -- C:\Users\user\AppData\Roaming\PnkBstrK.sys
[2011/08/05 15:10:25 | 000,000,277 | ---- | M] () -- C:\Windows\game.ini
[2011/08/05 00:24:30 | 000,659,580 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/08/05 00:24:30 | 000,120,508 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/08/04 23:58:50 | 003,165,590 | ---- | M] () -- C:\Users\user\Desktop\Sarah.png
[2011/08/04 23:52:58 | 000,076,823 | ---- | M] () -- C:\Users\user\Desktop\75378-TrollFace.png
[2011/07/31 17:16:30 | 001,293,656 | ---- | M] () -- C:\Users\user\Desktop\Compiled Trolling.png
[2011/07/31 17:15:39 | 007,246,884 | ---- | M] () -- C:\Users\user\Desktop\Compiled Trolling.xcf
[2011/07/26 20:15:34 | 000,002,503 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/07/24 23:42:26 | 000,770,769 | ---- | M] () -- C:\Users\user\Desktop\1600x900_Dizorb_On_the_wings_of_a_dream_HD_Wallpaper.jpg
[2011/07/24 23:36:36 | 001,556,046 | ---- | M] () -- C:\Users\user\Desktop\1600x900-Dizorb-Train-Station-HD-Wallpaper.jpg
[2011/07/24 23:33:13 | 000,991,694 | ---- | M] () -- C:\Users\user\Desktop\1600x900_Dizorb_Geek_HD_Wallpaper.jpg
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/08/21 19:09:58 | 000,000,508 | ---- | C] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 61096086-c856-46c5-b796-67a0d51e5dd8.job
[2011/08/21 19:09:08 | 000,001,971 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
[2011/08/21 19:00:10 | 000,000,983 | ---- | C] () -- C:\Users\user\Desktop\SpywareBlaster.lnk
[2011/08/21 18:15:30 | 000,001,207 | ---- | C] () -- C:\Users\user\Desktop\Auslogics BoostSpeed.lnk
[2011/08/21 17:02:19 | 000,315,904 | ---- | C] () -- C:\Windows\System32\ActionCenter.exe
[2011/08/21 10:55:10 | 000,001,060 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nightly.lnk
[2011/08/14 19:46:38 | 128,038,465 | ---- | C] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2011/08/10 15:45:41 | 000,000,933 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011/08/10 15:37:09 | 000,420,801 | -H-- | C] () -- C:\Windows\System32\drivers\vsconfig.xml
[2011/08/10 15:20:01 | 000,001,318 | ---- | C] () -- C:\Windows\System32\.ini
[2011/08/09 19:46:21 | 000,271,200 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2011/08/07 21:09:08 | 000,466,004 | ---- | C] () -- C:\Users\user\Desktop\yanqin.png
[2011/08/07 21:09:08 | 000,034,680 | ---- | C] () -- C:\Users\user\.recently-used.xbel
[2011/08/06 17:37:26 | 035,491,041 | ---- | C] () -- C:\Users\user\Desktop\CH 258 Master.mp3
[2011/08/05 15:10:58 | 000,138,160 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011/08/05 15:10:58 | 000,022,328 | ---- | C] () -- C:\Users\user\AppData\Roaming\PnkBstrK.sys
[2011/08/05 15:10:30 | 000,271,200 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2011/08/05 15:10:30 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2011/08/05 15:10:26 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2011/08/05 15:10:25 | 000,000,277 | ---- | C] () -- C:\Windows\game.ini
[2011/08/04 23:58:44 | 003,165,590 | ---- | C] () -- C:\Users\user\Desktop\Sarah.png
[2011/08/04 23:52:56 | 000,076,823 | ---- | C] () -- C:\Users\user\Desktop\75378-TrollFace.png
[2011/07/31 17:16:29 | 001,293,656 | ---- | C] () -- C:\Users\user\Desktop\Compiled Trolling.png
[2011/07/31 17:12:18 | 007,246,884 | ---- | C] () -- C:\Users\user\Desktop\Compiled Trolling.xcf
[2011/07/26 20:15:34 | 000,002,503 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/07/24 23:42:21 | 000,770,769 | ---- | C] () -- C:\Users\user\Desktop\1600x900_Dizorb_On_the_wings_of_a_dream_HD_Wallpaper.jpg
[2011/07/24 23:36:33 | 001,556,046 | ---- | C] () -- C:\Users\user\Desktop\1600x900-Dizorb-Train-Station-HD-Wallpaper.jpg
[2011/07/24 23:33:17 | 000,991,694 | ---- | C] () -- C:\Users\user\Desktop\1600x900_Dizorb_Geek_HD_Wallpaper.jpg
[2011/06/16 22:09:45 | 000,000,248 | ---- | C] () -- C:\Windows\System32\secustat.dat
[2011/06/16 18:59:50 | 000,000,305 | ---- | C] () -- C:\Windows\System32\secushr.dat
[2011/06/16 14:12:11 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2011/06/03 13:23:20 | 000,051,078 | ---- | C] () -- C:\Users\user\AppData\Roaming\room_v3.dat
[2011/05/20 22:35:28 | 000,304,744 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
[2011/03/17 13:27:12 | 000,046,742 | ---- | C] () -- C:\Users\user\AppData\Roaming\room.dat
[2011/03/12 20:23:22 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011/01/20 21:41:05 | 000,450,620 | ---- | C] () -- C:\Users\user\AppData\Roaming\.gmic_def.1473
[2011/01/06 13:39:39 | 000,000,033 | ---- | C] () -- C:\Windows\Patch.INI
[2010/12/29 23:55:17 | 000,000,000 | ---- | C] () -- C:\Windows\System32\cd.dat
[2010/12/28 21:49:42 | 000,000,033 | ---- | C] () -- C:\Windows\TrinityLauncher.INI
[2010/12/18 11:09:12 | 000,017,136 | ---- | C] () -- C:\Windows\System32\sasnative32.exe
[2010/12/16 20:56:32 | 000,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2010/11/28 17:28:04 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010/11/23 15:44:14 | 000,000,108 | ---- | C] () -- C:\Users\user\AppData\Roaming\burnaware.ini
[2010/11/05 18:21:14 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2010/11/05 18:21:14 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010/11/05 18:21:12 | 002,931,712 | ---- | C] () -- C:\Windows\System32\x264vfw.dll
[2010/11/05 18:21:12 | 000,790,528 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010/11/05 18:21:12 | 000,134,144 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/11/05 18:21:11 | 000,108,032 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010/10/18 19:24:37 | 000,000,033 | ---- | C] () -- C:\Windows\GunzLauncher.INI
[2010/09/23 14:09:57 | 000,062,842 | ---- | C] () -- C:\Windows\War3Unin.dat
[2010/09/22 15:19:06 | 000,000,033 | ---- | C] () -- C:\Windows\eurogunzstartgame.INI
[2010/09/21 18:22:59 | 000,000,025 | ---- | C] () -- C:\Windows\cdplayer.ini
[2009/07/14 12:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 12:33:53 | 000,462,232 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 10:05:48 | 000,659,580 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 10:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 10:05:48 | 000,120,508 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 10:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 10:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 10:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 08:19:49 | 000,093,696 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009/07/14 07:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 07:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 07:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/11 05:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2008/05/17 02:02:52 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll

========== LOP Check ==========

[2011/01/23 09:49:16 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\.jagex_cache_22
[2011/08/21 18:20:28 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Auslogics
[2011/04/14 14:50:44 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Auto-Joiner
[2010/11/21 20:25:44 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\AVG10
[2011/07/15 22:06:30 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Babylon
[2011/07/07 13:36:41 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BITS
[2011/08/21 19:43:29 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\DMCache
[2011/03/27 20:05:28 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\DVDVideoSoftIEHelpers
[2010/12/20 12:14:44 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\ESET
[2011/06/16 14:11:51 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\FlashGet
[2011/06/16 14:11:48 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\FlashGetBHO
[2011/08/20 22:34:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Full
[2011/01/23 17:04:33 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\GetRightToGo
[2011/08/07 21:09:08 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\gtk-2.0
[2011/08/21 18:32:45 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\IDM
[2010/10/01 11:21:40 | 000,000,000 | -H-D | M] -- C:\Users\user\AppData\Roaming\ijjigame
[2010/12/29 23:57:38 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\LolClient
[2011/03/03 14:09:47 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\PhotoScape
[2010/12/06 10:29:21 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Sammsoft
[2010/12/18 11:09:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Systweak
[2010/11/21 16:38:09 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\TeamViewer
[2010/12/02 13:14:58 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\TS3Client
[2011/08/21 18:43:09 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\TuneUp Software
[2011/06/21 17:12:21 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Unity
[2011/01/15 08:09:19 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\USB Optical Mouse
[2011/08/21 19:47:14 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\uTorrent
[2010/12/06 10:32:12 | 000,000,216 | ---- | M] () -- C:\Windows\Tasks\Advanced System Optimizer Scheduler.job
[2011/08/21 11:00:47 | 000,000,432 | ---- | M] () -- C:\Windows\Tasks\ASOService.job
[2011/08/14 09:32:18 | 000,032,618 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/08/21 19:46:07 | 000,000,508 | ---- | M] () -- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 61096086-c856-46c5-b796-67a0d51e5dd8.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:0B4227B4
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:07BF512B

< End of report >

Edited by Atnos, 21 August 2011 - 06:01 AM.

  • 0

Advertisements

#2
Essexboy
Posted 22 August 2011 - 02:17 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi there, on completion of this run can you let me know what problems you are still having

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    PRC - [2011/08/21 19:45:17 | 000,014,080 | ---- | M] () -- C:\Windows\Temp\VRT865E.tmp
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CAC9D76B-2B7F-4F42-918F-3470A847F562} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O4 - HKLM..\Run: [smwcore] C:\Windows\System32\ActionCenter.exe ()
    [2011/08/21 17:02:19 | 000,315,904 | ---- | C] () -- C:\Windows\System32\ActionCenter.exe

    :Files
    ipconfig /flushdns /c

    :Commands
    [purity]
    [resethosts]
    [emptytemp]
    [EMPTYFLASH]
    [CREATERESTOREPOINT]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

THEN

Double click the aswMBR.exe to run it Click the "Scan" button to start scan

Posted Image

On completion of the scan click save log, save it to your desktop and post in your next reply

Posted Image
  • 0

#3
Essexboy
Posted 26 August 2011 - 10:00 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP