Hello
As the title says, when i scan my computer with avast, it gets to around 10%, then it suddenly jumps to 80% within a very short period of time, it then reaches 100% complete within a matter of minutes. This is also the same when i scan my computer with Malware anti-Malware.
My Hotmail email is also sending out spam emails to all of my contacts, i have changed my password a number of times now but it has not stopped this, this is why i said i think i have spyware on my computer.
Here is the DDS.txt copied and pasted.
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26
Run by user at 15:40:53 on 2012-05-07
Microsoft Windows XP Home Edition 5.1.2600.2.1252.44.1033.18.959.260 [GMT 1:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Norton Internet Security *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Norton Internet Security *Enabled*
.
Running Processes
.
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost -k DcomLaunch
svchost.exe
C:WINDOWSSystem32svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:Program FilesAVAST SoftwareAvastAvastSvc.exe
C:WINDOWSsystem32spoolsv.exe
svchost.exe
C:PROGRA~1COMMON~1AOLACSAOLacsd.exe![Avast For Mac Will Not Complete Scan Avast For Mac Will Not Complete Scan](/uploads/1/2/6/5/126500616/690680841.png)
C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe
C:Program FilesBonjourmDNSResponder.exe
c:APPSPowercinemaKernelTVCLCapSvc.exe
c:APPSPowercinemaKernelCLML_NTServiceCLMLServer.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesMicrosoftSearch Enhancement PackSeaPortSeaPort.exe
C:WINDOWSsystem32svchost.exe -k imgsvc
C:Program FilesCommon FilesUlead SystemsDVDULCDRSvr.exe
C:Program FilesSonicDigitalMedia LE v7MyDVD LEUSBDeviceService.exe
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE
c:APPSPowercinemaKernelTVCLSched.exe
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSExplorer.EXE
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:WINDOWSSystem32svchost.exe -k HTTPFilter
C:WINDOWSRTHDCPL.EXE
C:Program FilesCommon FilesJavaJava Updatejusched.exe
C:Program FilesAVAST SoftwareAvastavastUI.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesQuickTimeQTTask.exe
C:Program FilesiTunesiTunesHelper.exe
C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesWindows LiveMessengermsnmsgr.exe
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:Program FilesSpybot - Search & DestroyTeaTimer.exe
C:Program FilesiPodbiniPodService.exe
C:Program FilesGoogleChromeApplicationchrome.exe
C:Program FilesGoogleChromeApplicationchrome.exe
C:Program FilesGoogleChromeApplicationchrome.exe
C:Program FilesGoogleChromeApplicationchrome.exe
C:Program FilesGoogleChromeApplicationchrome.exe
.
Pseudo HJT Report
.
uSearch Bar = hxxp://format.packardbell.com/cgi-bin/redirect/?country=UK&range=AD&phase=6&key=SEARCH
uStart Page = hxxp://www.google.com/
uInternet Connection Wizard,ShellNext = hxxp://www.google.co.uk/
uInternet Settings,ProxyOverride = <local>;*.local
mURLSearchHooks: H - No File
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:program filesadobeacrobat 7.0activexAcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:progra~1spybot~1SDHelper.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:program filesmicrosoftsearch enhancement packsearch helperSEPsearchhelperie.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:program filesmicrosoft officeoffice12GrooveShellExtensions.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:program filesavast softwareavastaswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:program filescommon filesmicrosoft sharedwindows liveWindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:program filesgooglegoogle toolbarGoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:program filesgooglegoogletoolbarnotifier5.7.7227.1100swg.dll
BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:program filesmsn toolbarplatform5.0.1423.0npwinext.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:program filesjavajre6binjp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:program filesjavajre6libdeployjqsiejqs_plugin.dll
TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:program filesavast softwareavastaswWebRepIE.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:program filesgooglegoogle toolbarGoogleToolbar_32.dll
TB: @c:program filesmsn toolbarplatform5.0.1423.0npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:program filesmsn toolbarplatform5.0.1423.0npwinext.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:windowssystem32Shdocvw.dll
uRun: [ctfmon.exe] c:windowssystem32ctfmon.exe
uRun: [msnmsgr] 'c:program fileswindows livemessengermsnmsgr.exe' /background
uRun: [swg] 'c:program filesgooglegoogletoolbarnotifierGoogleToolbarNotifier.exe'
uRun: [SpybotSD TeaTimer] c:program filesspybot - search & destroyTeaTimer.exe
mRun: [IMJPMIG8.1] 'c:windowsimeimjp8_1IMJPMIG.EXE' /Spoil /RemAdvDef /Migration32
mRun: [PHIME2002ASync] c:windowssystem32imetintlgntTINTSETP.EXE /SYNC
mRun: [PHIME2002A] c:windowssystem32imetintlgntTINTSETP.EXE /IMEName
mRun: [High Definition Audio Property Page Shortcut] HDAShCut.exe
mRun: [SynTPEnh] c:program filessynapticssyntpSynTPEnh.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [SunJavaUpdateSched] 'c:program filescommon filesjavajava updatejusched.exe'
mRun: [avast] 'c:program filesavast softwareavastavastUI.exe' /nogui
mRun: [QuickTime Task] 'c:program filesquicktimeQTTask.exe' -atboottime
mRun: [iTunesHelper] 'c:program filesitunesiTunesHelper.exe'
mRun: [GrooveMonitor] 'c:program filesmicrosoft officeoffice12GrooveMonitor.exe'
mRun: [Bing Bar] 'c:program filesmsn toolbarplatform5.0.1423.0mswinext.exe'
mRun: [Microsoft Default Manager] 'c:program filesmicrosoftsearch enhancement packdefault managerDefMgr.exe' -resume
mRunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-appf?lic=OQBBAFYARgBSAEUARQAtAFYATgBKADMAMgAtAEcAMwBMAEEAQQAtAEEANAA4ADkAUgAtADkAVQBKAEsARgAtAEUASwBLADMAWAA'&'inst=NwA3AC0ANAAzADcAMwAxADIAMAAxADAALQBGAFAAOQAyACsANgAtAEIAQQBSADkARwArADEALQBUAEIAOQArADIALQBGAEwAKwA5AC0AWABPADMANgArADEALQBGADkATQAxADAAQQArADIALQBYAE8AOQArADEALQBGADkATQAyACsAMQAtAEQARABUACsAMQAyADEAMAAzAC0ARABEADkAMABGACsAMQAtAFMAVAA5ADAARgBBAFAAUAArADEA'&'prod=90'&'ver=9.0.894
dRun: [CTFMON.EXE] c:windowssystem32CTFMON.EXE
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:program filesmessengermsmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:progra~1micros~2office12ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:progra~1micros~2office12REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:windowssystem32Shdocvw.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:progra~1spybot~1SDHelper.dll
Trusted Zone: northernbank.co.uk
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} - hxxps://ebanking.northernbank.co.uk/html/activex/e-Safekey/NB/e-Safekey.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces{C46F7858-A7C9-427C-BAAA-62BF93112853} : DhcpNameServer = 192.168.1.254
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:program filesmicrosoft officeoffice12GrooveSystemServices.dll
Notify: AtiExtEvent - Ati2evxx.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:program filesmicrosoft officeoffice12GrooveShellExtensions.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
SERVICES / DRIVERS
.
.
Created Last 30
.
2012-05-07 10:37:06 -------- d-----w- c:program filesSpybot - Search & Destroy
2012-05-07 10:37:06 -------- d-----w- c:documents and settingsall usersapplication dataSpybot - Search & Destroy
2012-04-11 10:09:20 -------- d-----w- c:documents and settingsuserapplication dataAVG2012
2012-04-11 10:08:58 -------- d-----w- c:program filesMSN Toolbar
2012-04-11 10:06:44 96200 ----a-w- c:windowssystem32driversCDAVFS.sys
2012-04-11 10:04:34 -------- d-----w- c:program filesBing Bar Installer
2012-04-11 09:59:31 -------- d-----w- c:documents and settingsall usersapplication dataAVG2012
2012-04-11 09:53:26 -------- d-----w- c:documents and settingsall usersapplication dataMFAData
.
Find3M
.
2012-04-04 14:56:40 22344 ----a-w- c:windowssystem32driversmbam.sys
2012-03-07 00:15:19 41184 ----a-w- c:windowsavastSS.scr
2012-03-07 00:03:51 612184 ----a-w- c:windowssystem32driversaswSnx.sys
.
FINISH: 15:47:57.23
Thanks
But you should get a good anti-virus suite (such as Avast), install it, then update it so that it is completely current, and then do a Full Scan or a Deep Scan (NOT a 'Quick Scan') on your Hard Drive, before thinking about installing anything new. You can run a thorough scan of the whole system, quickly scan a particular folder or removable drive, drag and drop specific files to be scanned, or run a scan of network devices. Additionally, you can schedule automatic scans. Mostly, the peoples are using this software for Mac and Android devices. Now, It beats up the viruses from your tablet, PC, androids easily with full privacy of malware. Internet Security keeps you safe while you make the most of the Internet. If certain program components and features are not working properly in Avast Antivirus, we recommend you repair your installation using the Avast Setup wizard. The repair process resets your software configuration by fixing or replacing program files which may be out of date, corrupted, or missing. Full scan for iMAC does not complete beyond 98% Hi, I have the same problem as mentioned earlier.Have Siera 10.12.6 and BOOTCAMP Win10 on board. For three days I let the scan run for 9 hours and then it gets stuck at 98% (has detected 7 threats!) but blocks my system and I have to pull the plug.I am on a 30 day FREE trial for the PRO version. Avira Free Antivirus for Mac not only offers scheduled scanning, it defaults to a weekly scan with no effort on your part. Sophos skips scheduled scanning, relying instead on real-time protection.
Thanks in advance to anyone that can help me.As the title says, when i scan my computer with avast, it gets to around 10%, then it suddenly jumps to 80% within a very short period of time, it then reaches 100% complete within a matter of minutes. This is also the same when i scan my computer with Malware anti-Malware.
My Hotmail email is also sending out spam emails to all of my contacts, i have changed my password a number of times now but it has not stopped this, this is why i said i think i have spyware on my computer.
Here is the DDS.txt copied and pasted.
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26
Run by user at 15:40:53 on 2012-05-07
Microsoft Windows XP Home Edition 5.1.2600.2.1252.44.1033.18.959.260 [GMT 1:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Norton Internet Security *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Norton Internet Security *Enabled*
.
Running Processes
.
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost -k DcomLaunch
svchost.exe
C:WINDOWSSystem32svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:Program FilesAVAST SoftwareAvastAvastSvc.exe
C:WINDOWSsystem32spoolsv.exe
svchost.exe
C:PROGRA~1COMMON~1AOLACSAOLacsd.exe
![Avast For Mac Will Not Complete Scan Avast For Mac Will Not Complete Scan](/uploads/1/2/6/5/126500616/690680841.png)
C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe
C:Program FilesBonjourmDNSResponder.exe
Avast For Mac Will Not Complete Scan And The Resident
c:APPSPowercinemaKernelTVCLCapSvc.exe
c:APPSPowercinemaKernelCLML_NTServiceCLMLServer.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesMicrosoftSearch Enhancement PackSeaPortSeaPort.exe
C:WINDOWSsystem32svchost.exe -k imgsvc
C:Program FilesCommon FilesUlead SystemsDVDULCDRSvr.exe
C:Program FilesSonicDigitalMedia LE v7MyDVD LEUSBDeviceService.exe
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE
c:APPSPowercinemaKernelTVCLSched.exe
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSExplorer.EXE
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:WINDOWSSystem32svchost.exe -k HTTPFilter
C:WINDOWSRTHDCPL.EXE
C:Program FilesCommon FilesJavaJava Updatejusched.exe
C:Program FilesAVAST SoftwareAvastavastUI.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesQuickTimeQTTask.exe
C:Program FilesiTunesiTunesHelper.exe
C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesWindows LiveMessengermsnmsgr.exe
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:Program FilesSpybot - Search & DestroyTeaTimer.exe
C:Program FilesiPodbiniPodService.exe
C:Program FilesGoogleChromeApplicationchrome.exe
C:Program FilesGoogleChromeApplicationchrome.exe
C:Program FilesGoogleChromeApplicationchrome.exe
C:Program FilesGoogleChromeApplicationchrome.exe
C:Program FilesGoogleChromeApplicationchrome.exe
![Full Full](/uploads/1/2/6/5/126500616/124962564.jpg)
Pseudo HJT Report
.
uSearch Bar = hxxp://format.packardbell.com/cgi-bin/redirect/?country=UK&range=AD&phase=6&key=SEARCH
uStart Page = hxxp://www.google.com/
uInternet Connection Wizard,ShellNext = hxxp://www.google.co.uk/
uInternet Settings,ProxyOverride = <local>;*.local
mURLSearchHooks: H - No File
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:program filesadobeacrobat 7.0activexAcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:progra~1spybot~1SDHelper.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:program filesmicrosoftsearch enhancement packsearch helperSEPsearchhelperie.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:program filesmicrosoft officeoffice12GrooveShellExtensions.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:program filesavast softwareavastaswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:program filescommon filesmicrosoft sharedwindows liveWindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:program filesgooglegoogle toolbarGoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:program filesgooglegoogletoolbarnotifier5.7.7227.1100swg.dll
BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:program filesmsn toolbarplatform5.0.1423.0npwinext.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:program filesjavajre6binjp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:program filesjavajre6libdeployjqsiejqs_plugin.dll
TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:program filesavast softwareavastaswWebRepIE.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:program filesgooglegoogle toolbarGoogleToolbar_32.dll
TB: @c:program filesmsn toolbarplatform5.0.1423.0npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:program filesmsn toolbarplatform5.0.1423.0npwinext.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:windowssystem32Shdocvw.dll
uRun: [ctfmon.exe] c:windowssystem32ctfmon.exe
uRun: [msnmsgr] 'c:program fileswindows livemessengermsnmsgr.exe' /background
uRun: [swg] 'c:program filesgooglegoogletoolbarnotifierGoogleToolbarNotifier.exe'
uRun: [SpybotSD TeaTimer] c:program filesspybot - search & destroyTeaTimer.exe
mRun: [IMJPMIG8.1] 'c:windowsimeimjp8_1IMJPMIG.EXE' /Spoil /RemAdvDef /Migration32
mRun: [PHIME2002ASync] c:windowssystem32imetintlgntTINTSETP.EXE /SYNC
mRun: [PHIME2002A] c:windowssystem32imetintlgntTINTSETP.EXE /IMEName
mRun: [High Definition Audio Property Page Shortcut] HDAShCut.exe
mRun: [SynTPEnh] c:program filessynapticssyntpSynTPEnh.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [SunJavaUpdateSched] 'c:program filescommon filesjavajava updatejusched.exe'
mRun: [avast] 'c:program filesavast softwareavastavastUI.exe' /nogui
mRun: [QuickTime Task] 'c:program filesquicktimeQTTask.exe' -atboottime
mRun: [iTunesHelper] 'c:program filesitunesiTunesHelper.exe'
mRun: [GrooveMonitor] 'c:program filesmicrosoft officeoffice12GrooveMonitor.exe'
mRun: [Bing Bar] 'c:program filesmsn toolbarplatform5.0.1423.0mswinext.exe'
mRun: [Microsoft Default Manager] 'c:program filesmicrosoftsearch enhancement packdefault managerDefMgr.exe' -resume
mRunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-appf?lic=OQBBAFYARgBSAEUARQAtAFYATgBKADMAMgAtAEcAMwBMAEEAQQAtAEEANAA4ADkAUgAtADkAVQBKAEsARgAtAEUASwBLADMAWAA'&'inst=NwA3AC0ANAAzADcAMwAxADIAMAAxADAALQBGAFAAOQAyACsANgAtAEIAQQBSADkARwArADEALQBUAEIAOQArADIALQBGAEwAKwA5AC0AWABPADMANgArADEALQBGADkATQAxADAAQQArADIALQBYAE8AOQArADEALQBGADkATQAyACsAMQAtAEQARABUACsAMQAyADEAMAAzAC0ARABEADkAMABGACsAMQAtAFMAVAA5ADAARgBBAFAAUAArADEA'&'prod=90'&'ver=9.0.894
dRun: [CTFMON.EXE] c:windowssystem32CTFMON.EXE
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:program filesmessengermsmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:progra~1micros~2office12ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:progra~1micros~2office12REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:windowssystem32Shdocvw.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:progra~1spybot~1SDHelper.dll
Trusted Zone: northernbank.co.uk
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} - hxxps://ebanking.northernbank.co.uk/html/activex/e-Safekey/NB/e-Safekey.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces{C46F7858-A7C9-427C-BAAA-62BF93112853} : DhcpNameServer = 192.168.1.254
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:program filesmicrosoft officeoffice12GrooveSystemServices.dll
Notify: AtiExtEvent - Ati2evxx.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:program filesmicrosoft officeoffice12GrooveShellExtensions.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
SERVICES / DRIVERS
.
.
Created Last 30
.
2012-05-07 10:37:06 -------- d-----w- c:program filesSpybot - Search & Destroy
2012-05-07 10:37:06 -------- d-----w- c:documents and settingsall usersapplication dataSpybot - Search & Destroy
2012-04-11 10:09:20 -------- d-----w- c:documents and settingsuserapplication dataAVG2012
2012-04-11 10:08:58 -------- d-----w- c:program filesMSN Toolbar
2012-04-11 10:06:44 96200 ----a-w- c:windowssystem32driversCDAVFS.sys
2012-04-11 10:04:34 -------- d-----w- c:program filesBing Bar Installer
2012-04-11 09:59:31 -------- d-----w- c:documents and settingsall usersapplication dataAVG2012
2012-04-11 09:53:26 -------- d-----w- c:documents and settingsall usersapplication dataMFAData
.
Find3M
.
2012-04-04 14:56:40 22344 ----a-w- c:windowssystem32driversmbam.sys
2012-03-07 00:15:19 41184 ----a-w- c:windowsavastSS.scr
2012-03-07 00:03:51 612184 ----a-w- c:windowssystem32driversaswSnx.sys
.
FINISH: 15:47:57.23
Thanks
Attached Files
- attach.txt15.59KB1 downloads
- ark.txt165.33KB0 downloads