Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

\\.\globalroot\systemroot\scvhost.exe virus.

Started by BrettArchey , Mar 13 2012 08:26 PM

  • Please log in to reply

#1
BrettArchey
Posted 13 March 2012 - 08:26 PM

BrettArchey

    Member

  • Member
  • PipPip
  • 10 posts
I was talking to my friend and not really paying attention and an 'adobe flash update' appeared so not thinking anything was abnormal I hit continue and it went along it's business and restarted my computer, and when my computer restarted as I went to log into my user my computer blue screened and my computer restarted again, and when I got to log onto my user on the computer my anti virus started to catch a virus trying to attack my computer. When the virus started popping it up on my anti virus it was saying a url virus, and I thought it was only popping up when I had firefox open, so I uninstalled firefox, the screenshot I included is the pop up my anti virus keeps giving me.

What I put in the topic is what my anti virus says it's catching. I have no idea what to do please help :I


OTL log: OTL logfile created on: 3/13/2012 10:09:26 PM - Run 1
OTL by OldTimer - Version 3.2.36.3 Folder = C:\Users\Archey\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.75 Gb Total Physical Memory | 2.02 Gb Available Physical Memory | 53.94% Memory free
7.49 Gb Paging File | 5.37 Gb Available in Paging File | 71.73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 683.95 Gb Total Space | 606.48 Gb Free Space | 88.67% Space Free | Partition Type: NTFS

Computer Name: ARCHEY-PC | User Name: Archey | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/03/13 22:09:13 | 000,594,944 | ---- | M] (OldTimer Tools) -- C:\Users\Archey\Downloads\OTL (1).exe
PRC - [2012/03/13 21:40:42 | 000,742,264 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
PRC - [2012/01/03 16:31:34 | 001,391,272 | ---- | M] (Ask) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
PRC - [2011/12/29 17:43:30 | 000,620,376 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
PRC - [2011/11/28 14:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/10/17 09:23:42 | 000,243,360 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10u_ActiveX.exe
PRC - [2010/02/22 16:25:08 | 001,992,008 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe
PRC - [2010/02/22 16:25:08 | 000,095,560 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe
PRC - [2009/07/16 23:08:00 | 000,237,568 | ---- | M] (Alcor Micro Corp.) -- C:\Program Files (x86)\Multimedia Card Reader(6366)\ShwiconXP6366.exe


========== Modules (No Company Name) ==========

MOD - [2011/11/02 00:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/02 00:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/05/31 02:38:10 | 000,058,368 | ---- | M] () -- C:\Windows\SysWOW64\bdmpega.acm
MOD - [2011/04/21 17:54:40 | 000,347,024 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 5\madexcept_.bpl
MOD - [2011/04/21 17:54:40 | 000,179,088 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 5\madbasic_.bpl
MOD - [2011/04/21 17:54:40 | 000,046,480 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 5\maddisAsm_.bpl
MOD - [2010/02/22 16:25:56 | 000,089,416 | ---- | M] () -- C:\Windows\SysWOW64\FAIEExtension.dll
MOD - [2010/02/22 16:25:12 | 000,059,208 | ---- | M] () -- C:\Windows\SysWOW64\FAib.dll
MOD - [2010/02/22 16:24:10 | 000,247,624 | ---- | M] () -- C:\Windows\SysWOW64\FACrashRpt.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/11/28 14:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010/11/25 17:59:16 | 000,007,168 | ---- | M] (Microsoft) [Auto | Running] -- C:\Program Files\Dell\OSD\DellOSDservice.exe -- (DellOSDservice)
SRV:64bit: - [2010/09/21 16:51:08 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010/02/02 02:13:10 | 000,048,128 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE -- (wltrysvc)
SRV - [2012/03/10 23:33:15 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/02/28 18:38:54 | 002,343,816 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2011/12/29 23:29:04 | 000,497,496 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe -- (AdvancedSystemCareService5)
SRV - [2011/12/19 17:32:26 | 000,394,672 | ---- | M] (Eastman Kodak Company) [Auto | Running] -- C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe -- (Kodak AiO Network Discovery Service)
SRV - [2011/10/21 16:23:42 | 000,196,176 | ---- | M] (Microsoft Corporation.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/10/13 18:21:52 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate)
SRV - [2011/10/01 09:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011/10/01 09:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2010/11/25 06:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/25 06:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/08/25 21:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 17:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/22 16:24:42 | 002,409,800 | ---- | M] (Sensible Vision ) [Auto | Running] -- c:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe -- (FAService)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/02/01 18:06:42 | 000,025,072 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- c:\Program Files\Dell Support Center\pcdsrvc_x64.pkms -- (PCDSRVC{1E208CE0-FB7451FF-06020101}_0)
DRV:64bit: - [2011/11/28 13:54:06 | 000,591,192 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2011/11/28 13:53:58 | 000,304,472 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2011/11/28 13:52:22 | 000,042,328 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2011/11/28 13:52:20 | 000,058,712 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2011/11/28 13:52:11 | 000,066,904 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2011/11/28 13:51:53 | 000,024,408 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2011/10/01 09:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2011/10/01 09:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2011/10/01 09:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2011/10/01 09:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2011/08/02 18:38:56 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011/01/20 12:20:46 | 000,176,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2010/11/20 23:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 23:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 23:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/09/21 17:22:42 | 007,883,264 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/09/21 16:14:48 | 000,285,696 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/07/14 19:17:58 | 000,033,792 | ---- | M] (Nuvoton Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nuviocir_win7_x64.sys -- (nuviocir)
DRV:64bit: - [2010/06/23 05:10:56 | 000,344,680 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010/04/06 20:57:08 | 000,073,784 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/04/06 20:57:08 | 000,028,728 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/03/19 04:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/03/09 14:33:52 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie64.sys -- (AtiPcie) AMD PCI Express (3GIO)
DRV:64bit: - [2010/02/02 02:13:08 | 000,022,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcm42rly.sys -- (BCM42RLY)
DRV:64bit: - [2010/02/02 02:13:08 | 000,020,984 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcmvwl64.sys -- (BcmVWL)
DRV:64bit: - [2010/02/02 02:13:06 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/18 14:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/03/18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2008/09/24 20:36:14 | 000,238,848 | ---- | M] (Sensible Vision ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\facap.sys -- (FACAP)
DRV - [2011/03/18 12:08:56 | 000,029,592 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\Windows\SysWOW64\speedfan.sys -- (speedfan)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {01F200E1-BF8F-4D78-883C-23F39553188C}
IE:64bit: - HKLM\..\SearchScopes\{01F200E1-BF8F-4D78-883C-23F39553188C}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {01F200E1-BF8F-4D78-883C-23F39553188C}
IE - HKLM\..\SearchScopes\{01F200E1-BF8F-4D78-883C-23F39553188C}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?...o=102874&gct=hp
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\..\SearchScopes,DefaultScope = {8516313A-C2D7-4F50-8300-09984C81AD4E}
IE - HKCU\..\SearchScopes\{8516313A-C2D7-4F50-8300-09984C81AD4E}: "URL" = http://search.yahoo....p={searchTerms}
IE - HKCU\..\SearchScopes\{9CCCD560-8E95-4910-98D4-0B311E1E8C3B}: "URL" = http://websearch.ask...54-B2BDAF58F7A0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=;ftp=;https=;

FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files (x86)\Virtual Earth 3D\ [2011/10/17 09:33:29 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files (x86)\Virtual Earth 3D\ [2011/10/17 09:33:29 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: File not found
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: File not found
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: File not found
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/02/19 16:39:26 | 000,000,000 | ---D | M]

[2010/10/13 23:28:54 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\mozilla firefox\components\Scriptff.dll

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL File not found
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (FAIESSOHelper Class) - {A2F122DA-055F-4df7-8F24-7354DBDBA85B} - c:\Program Files (x86)\Sensible Vision\Fast Access\FAIESSO.dll (Sensible Vision )
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE (Dell Inc.)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Conime] %windir%\system32\conime.exe File not found
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Registration] C:\Program Files (x86)\System Registration\prodreg.exe (Dell, Inc.)
O4 - HKLM..\Run: [FAStartup] File not found
O4 - HKLM..\Run: [FATrayAlert] c:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe (Sensible Vision )
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKLM..\Run: [ShwiconXP6366] c:\Program Files (x86)\Multimedia Card Reader(6366)\ShwiconXP6366.exe (Alcor Micro Corp.)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Advanced SystemCare 5] C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe (IObit)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 65.32.5.111 65.32.5.112
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9A2EEACF-6E2E-470E-9630-0BE4650738CD}: DhcpNameServer = 65.32.5.111 65.32.5.112
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A0C95794-5A11-4C06-80F4-1537D0A3714C}: DhcpNameServer = 65.32.5.111 65.32.5.112
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\FastAccess: DllName - (c:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll) - c:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll ()
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found
O37 - HKLM\...exe [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2012/03/13 21:40:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2012/03/13 21:38:59 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\uTorrent
[2012/03/13 21:17:33 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/03/13 21:14:22 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Local\Solid State Networks
[2012/03/13 16:53:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PlatinumHideIP
[2012/03/13 16:53:11 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\C__Program Files (x86)_Crack_PlatinumHideIP.exe
[2012/03/13 16:53:11 | 000,000,000 | ---D | C] -- C:\ProgramData\C__Program Files (x86)_Crack_PlatinumHideIP.exe
[2012/03/13 16:50:19 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\PlatinumHideIP
[2012/03/13 16:50:19 | 000,000,000 | ---D | C] -- C:\ProgramData\PlatinumHideIP
[2012/03/13 16:49:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ask.com
[2012/03/13 16:49:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Platinum Hide IP
[2012/03/12 16:53:52 | 000,000,000 | ---D | C] -- C:\Users\Archey\Documents\Roxio Projects
[2012/03/12 16:27:33 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\Macrovision
[2012/03/12 16:27:04 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Local\Sonic_Solutions
[2012/03/11 00:02:51 | 000,000,000 | ---D | C] -- C:\Users\Archey\Documents\Vindictus
[2012/03/11 00:02:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BandiMPEG1
[2012/03/10 23:39:33 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2012/03/10 23:29:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2012/03/10 23:29:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2012/03/10 23:29:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2012/03/10 21:41:21 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Local\LogMeIn Hamachi
[2012/03/10 21:40:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2012/03/10 21:40:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2012/03/10 21:38:31 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Users\Archey\Desktop\Minecraft.exe
[2012/03/10 21:38:03 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\WinRAR
[2012/03/10 21:38:03 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/03/10 21:38:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/03/10 21:37:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2012/03/03 18:40:47 | 000,000,000 | ---D | C] -- C:\Users\Archey\Documents\DragonNest
[2012/03/03 18:40:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Nexon
[2012/03/03 17:18:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
[2012/03/03 17:16:15 | 000,000,000 | ---D | C] -- C:\Nexon
[2012/03/03 17:16:14 | 000,000,000 | ---D | C] -- C:\ProgramData\NexonUS
[2012/03/01 20:11:07 | 000,000,000 | ---D | C] -- C:\Users\Archey\Desktop\Music
[2012/03/01 20:09:55 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\Apple Computer
[2012/03/01 20:09:55 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Local\Apple Computer
[2012/03/01 20:09:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/03/01 20:09:37 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2012/03/01 20:09:12 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/03/01 20:09:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2012/03/01 20:09:12 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/03/01 20:09:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/03/01 20:09:12 | 000,000,000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2012/03/01 20:08:26 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Local\Apple
[2012/03/01 20:08:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2012/03/01 20:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2012/03/01 20:07:54 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/03/01 20:07:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2012/03/01 20:07:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/03/01 20:07:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2012/02/27 18:03:21 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
[2012/02/27 18:03:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
[2012/02/27 18:03:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpeedFan
[2012/02/24 18:41:11 | 000,023,896 | ---- | C] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2012/02/24 18:33:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 5
[2012/02/24 18:33:04 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\IObit
[2012/02/24 18:25:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Spigot
[2012/02/24 18:25:23 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2012/02/24 18:25:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2012/02/19 16:39:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2012/02/19 16:39:51 | 000,024,408 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2012/02/19 16:39:50 | 000,304,472 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2012/02/19 16:39:46 | 000,058,712 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2012/02/19 16:39:46 | 000,042,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2012/02/19 16:39:45 | 000,591,192 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2012/02/19 16:39:43 | 000,256,960 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2012/02/19 16:39:43 | 000,066,904 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2012/02/19 16:39:16 | 000,041,184 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2012/02/19 16:39:14 | 000,199,816 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2012/02/19 16:39:03 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2012/02/19 16:39:03 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2012/02/18 22:24:58 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\Malwarebytes
[2012/02/18 22:24:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/02/18 21:04:38 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2012/02/13 16:43:16 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
[2012/02/13 16:42:23 | 000,000,000 | ---D | C] -- C:\Program Files\Dell Support Center
[2012/02/13 16:38:39 | 000,000,000 | ---D | C] -- C:\Users\Archey\AppData\Roaming\PCDr

========== Files - Modified Within 30 Days ==========

[2012/03/13 22:13:03 | 000,780,220 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/03/13 22:13:03 | 000,660,732 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/03/13 22:13:03 | 000,121,402 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/03/13 22:05:41 | 000,021,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/03/13 22:05:41 | 000,021,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/03/13 22:02:49 | 777,463,808 | ---- | M] () -- C:\Users\Archey\Desktop\Monster Hunter Freedom Unite.iso
[2012/03/13 21:57:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/03/13 21:57:46 | 3016,712,192 | -HS- | M] () -- C:\hiberfil.sys
[2012/03/13 21:52:19 | 000,000,129 | ---- | M] () -- C:\Windows\SysNative\MRT.INI
[2012/03/13 21:40:42 | 000,000,973 | ---- | M] () -- C:\Users\Archey\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2012/03/13 21:40:42 | 000,000,949 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2012/03/13 21:15:50 | 000,000,506 | ---- | M] () -- C:\Windows\tasks\SystemToolsDailyTest.job
[2012/03/13 16:53:59 | 000,001,085 | ---- | M] () -- C:\Users\Public\Desktop\Platinum Hide IP.lnk
[2012/03/12 21:43:56 | 000,000,222 | ---- | M] () -- C:\Users\Archey\Desktop\Brawl Busters.url
[2012/03/12 17:06:02 | 032,608,261 | ---- | M] () -- C:\Users\Archey\Desktop\EBOOT.PBP
[2012/03/11 00:02:47 | 000,000,207 | ---- | M] () -- C:\Users\Public\Desktop\Vindictus.url
[2012/03/10 23:39:33 | 000,000,219 | ---- | M] () -- C:\Users\Archey\Desktop\Team Fortress 2.url
[2012/03/10 23:29:17 | 000,000,919 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2012/03/03 17:18:22 | 000,000,175 | ---- | M] () -- C:\Users\Public\Desktop\DragonNest.url
[2012/03/01 20:15:34 | 000,004,180 | ---- | M] () -- C:\Users\Archey\Desktop\Automatically Add to iTunes - Shortcut.lnk
[2012/03/01 20:09:52 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/02/29 15:07:52 | 000,000,564 | ---- | M] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
[2012/02/27 18:03:21 | 000,001,013 | ---- | M] () -- C:\Users\Archey\Desktop\SpeedFan.lnk
[2012/02/27 18:03:21 | 000,000,045 | ---- | M] () -- C:\Windows\SysWow64\initdebug.nfo
[2012/02/24 18:47:28 | 000,773,944 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/02/24 18:33:09 | 000,001,278 | ---- | M] () -- C:\Users\Public\Desktop\Uninstaller.lnk
[2012/02/24 18:33:09 | 000,001,227 | ---- | M] () -- C:\Users\Public\Desktop\Advanced SystemCare 5.lnk
[2012/02/19 16:39:53 | 000,001,843 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/02/19 16:39:43 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012/02/15 15:25:44 | 000,319,768 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/02/14 22:10:29 | 000,014,282 | ---- | M] () -- C:\Users\Archey\Desktop\game valentine.jpg

========== Files Created - No Company Name ==========

[2012/03/13 21:52:17 | 000,000,129 | ---- | C] () -- C:\Windows\SysNative\MRT.INI
[2012/03/13 21:41:10 | 777,463,808 | ---- | C] () -- C:\Users\Archey\Desktop\Monster Hunter Freedom Unite.iso
[2012/03/13 21:40:42 | 000,000,973 | ---- | C] () -- C:\Users\Archey\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2012/03/13 21:40:42 | 000,000,949 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2012/03/13 16:49:42 | 000,001,085 | ---- | C] () -- C:\Users\Public\Desktop\Platinum Hide IP.lnk
[2012/03/12 21:43:56 | 000,000,222 | ---- | C] () -- C:\Users\Archey\Desktop\Brawl Busters.url
[2012/03/12 17:05:54 | 032,608,261 | ---- | C] () -- C:\Users\Archey\Desktop\EBOOT.PBP
[2012/03/11 00:02:47 | 000,000,207 | ---- | C] () -- C:\Users\Public\Desktop\Vindictus.url
[2012/03/10 23:39:33 | 000,000,219 | ---- | C] () -- C:\Users\Archey\Desktop\Team Fortress 2.url
[2012/03/10 23:29:17 | 000,000,919 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2012/03/03 17:18:22 | 000,000,175 | ---- | C] () -- C:\Users\Public\Desktop\DragonNest.url
[2012/03/01 20:15:34 | 000,004,180 | ---- | C] () -- C:\Users\Archey\Desktop\Automatically Add to iTunes - Shortcut.lnk
[2012/03/01 20:09:52 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/03/01 20:08:25 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/02/27 18:03:21 | 000,001,013 | ---- | C] () -- C:\Users\Archey\Desktop\SpeedFan.lnk
[2012/02/27 18:03:21 | 000,000,045 | ---- | C] () -- C:\Windows\SysWow64\initdebug.nfo
[2012/02/24 18:33:09 | 000,001,278 | ---- | C] () -- C:\Users\Public\Desktop\Uninstaller.lnk
[2012/02/24 18:33:09 | 000,001,227 | ---- | C] () -- C:\Users\Public\Desktop\Advanced SystemCare 5.lnk
[2012/02/19 16:39:53 | 000,001,843 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/02/19 16:39:43 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2012/02/14 22:10:28 | 000,014,282 | ---- | C] () -- C:\Users\Archey\Desktop\game valentine.jpg
[2012/02/13 16:43:20 | 000,000,564 | ---- | C] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
[2012/02/13 16:43:18 | 000,000,506 | ---- | C] () -- C:\Windows\tasks\SystemToolsDailyTest.job
[2012/02/05 10:43:48 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
[2012/01/29 17:16:14 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/10/17 11:14:54 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/08/02 23:52:09 | 000,002,857 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/05/31 02:39:50 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
[2011/05/31 02:38:18 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
[2011/02/10 12:10:51 | 000,773,944 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

========== LOP Check ==========

[2012/03/10 21:47:44 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\.minecraft
[2012/03/13 16:53:11 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\C__Program Files (x86)_Crack_PlatinumHideIP.exe
[2012/01/31 17:31:25 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\Elluminate
[2012/01/28 17:23:53 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\Fingertapps
[2012/02/24 18:33:04 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\IObit
[2012/01/28 17:23:40 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\Leadertech
[2012/01/29 14:18:30 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\LolClient
[2012/03/11 22:41:46 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\Mumble
[2012/02/13 16:40:21 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\PCDr
[2012/03/13 16:50:19 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\PlatinumHideIP
[2012/02/06 18:32:10 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\Rainmeter
[2012/02/17 07:44:53 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\SoftGrid Client
[2012/01/31 17:55:42 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\SplitMediaLabs
[2012/02/09 19:37:58 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\Temp
[2012/02/06 18:41:13 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\TP
[2012/03/13 22:14:12 | 000,000,000 | ---D | M] -- C:\Users\Archey\AppData\Roaming\uTorrent
[2012/02/29 15:07:52 | 000,000,564 | ---- | M] () -- C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
[2012/02/04 22:38:40 | 000,031,112 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/03/13 21:15:50 | 000,000,506 | ---- | M] () -- C:\Windows\Tasks\SystemToolsDailyTest.job

========== Purity Check ==========



< End of report >

Attached Thumbnails

  • avast screenshot.png

Edited by BrettArchey, 13 March 2012 - 08:30 PM.

  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP