Jump to content

Possible muvic toolbar infection


JockyB

Recommended Posts

Had to do a re-install of Win7 last weekend (Windoze wouldn't start at all)  Anyway to cut a long story short, after installing the Nvidia drivers for my graphics card, I got a message up saying Java needs installing on this machine and clicked a link (fatal I know, I know)  Since then whenever I click any links on websites, I get these damn adverts also opening up. Looked in control panel, remove programs and there's this muvic toolbar listed. (won't uninstall) Done my research on this  and at every turn of the way, this damn malware is getting the better of me. Installed MBAM,, Installed Spybot Search and Destroy. My AV doesn't find the blighter.

 

Any ideas folks (short of taking a lump hammer to this pile of silicon) 

Link to post
Share on other sites

Here are the Farbar Recovery Scan Tools texts (just read about putting this on) 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-11-2014
Ran by John B (administrator) on JOHNB-PC on 21-11-2014 20:24:10
Running from C:\Users\John B\Downloads
Loaded Profile: John B (Available profiles: John B)
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_FATIFCE.EXE
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2014-11-20] (AVAST Software)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2464072 2014-11-06] (NVIDIA Corporation)
HKLM\...\Run: [sDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-09-12] (Adobe Systems Incorporated)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-972884128-3114684783-13240229-1000\...\Run: [EPSON SX410 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFCE.EXE [199680 2008-10-01] (SEIKO EPSON CORPORATION)
HKU\S-1-5-18\...\RunOnce: [sPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2014-11-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
BootExecute: autocheck autochk * sdnclean.exe
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKU\S-1-5-21-972884128-3114684783-13240229-1000\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?q={searchTerms}
HKU\S-1-5-21-972884128-3114684783-13240229-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-972884128-3114684783-13240229-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-gb/?ocid=iehp
HKU\S-1-5-21-972884128-3114684783-13240229-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF57C57BDF700D001
HKU\S-1-5-21-972884128-3114684783-13240229-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb
HKU\S-1-5-21-972884128-3114684783-13240229-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> DefaultScope {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKLM -> {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-972884128-3114684783-13240229-1000 -> DefaultScope {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-972884128-3114684783-13240229-1000 -> {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = https://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75D1B139-A542-4063-AC83-0BDEF32941A1}: [NameServer] 31.168.224.106,5.135.12.52
 
FireFox:
========
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-11-15]
 
Chrome: 
=======
CHR HomePage: Default -> https://www.facebook.com/
CHR StartupUrls: Default -> "https://www.facebook.com/"
CHR Profile: C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-15]
CHR Extension: (Google Docs) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-15]
CHR Extension: (Google Drive) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-15]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-15]
CHR Extension: (YouTube) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-15]
CHR Extension: (Google Search) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-15]
CHR Extension: (Avast SafePrice) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-11-20]
CHR Extension: (Google Sheets) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-15]
CHR Extension: (Avast Online Security) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-11-15]
CHR Extension: (Google Wallet) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-15]
CHR Extension: (Gmail) - C:\Users\John B\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-15]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2014-11-15]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-15]
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-15] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3192344 2014-11-15] (Avast Software)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-11-06] (NVIDIA Corporation)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 amacpi; C:\Windows\System32\DRIVERS\null.sys [4608 2009-07-13] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-11-15] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [70384 2014-11-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-11-15] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-11-15] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787800 2014-11-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423784 2014-11-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [91496 2014-11-15] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [206248 2014-11-15] ()
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [33096 2014-10-03] (NVIDIA Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [218192 2014-11-15] (Avast Software)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-11-21 20:24 - 2014-11-21 20:24 - 00010941 _____ () C:\Users\John B\Downloads\FRST.txt
2014-11-21 20:24 - 2014-11-21 20:24 - 00000000 ____D () C:\FRST
2014-11-21 20:23 - 2014-11-21 20:23 - 01108992 _____ (Farbar) C:\Users\John B\Downloads\FRST.exe
2014-11-21 20:12 - 2014-11-21 20:12 - 00000197 _____ () C:\Windows\system32\2014-11-21-20-12-03.049-AvastVBoxSVC.exe-3764.log
2014-11-21 20:05 - 2014-11-21 20:05 - 00000197 _____ () C:\Windows\system32\2014-11-21-20-05-16.055-AvastVBoxSVC.exe-3648.log
2014-11-21 19:40 - 2014-11-21 19:40 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-21 19:40 - 2014-11-21 19:40 - 00001989 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-11-21 19:39 - 2014-11-21 19:39 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-11-21 19:39 - 2014-11-21 19:39 - 00000000 ____D () C:\Program Files\Adobe
2014-11-21 19:38 - 2014-11-21 19:42 - 00000000 ____D () C:\ProgramData\Adobe
2014-11-21 19:37 - 2014-11-21 19:41 - 00000000 ____D () C:\Users\John B\AppData\Local\Adobe
2014-11-21 19:18 - 2014-11-21 19:44 - 00034808 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-11-21 19:18 - 2014-11-21 19:18 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-11-21 19:17 - 2014-11-21 19:17 - 15196248 _____ () C:\Users\John B\Downloads\RogueKiller.exe
2014-11-20 23:31 - 2014-11-20 23:39 - 00000000 ____D () C:\Users\John B\AppData\Local\Microsoft Games
2014-11-20 21:28 - 2009-06-10 21:39 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20141120-212817.backup
2014-11-20 20:44 - 2014-11-20 21:23 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-11-20 20:44 - 2014-11-20 20:48 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-11-20 20:44 - 2014-11-20 20:44 - 00002127 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-11-20 20:44 - 2014-11-20 20:44 - 00002115 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-11-20 20:44 - 2014-11-20 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-11-20 20:44 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2014-11-20 20:43 - 2014-11-20 20:43 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\John B\Desktop\spybot-2-4.exe
2014-11-20 20:41 - 2014-11-20 20:40 - 00371040 _____ () C:\Users\John B\Downloads\SoftonicDownloader_for_spybot-search-destroy.exe
2014-11-20 17:21 - 2014-11-20 17:21 - 00000000 ____D () C:\Users\John B\AppData\Roaming\LibreOffice
2014-11-20 17:20 - 2014-11-20 17:20 - 00001458 _____ () C:\Users\Public\Desktop\LibreOffice 4.3.lnk
2014-11-20 17:20 - 2014-11-20 17:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.3
2014-11-20 17:18 - 2014-11-20 17:20 - 00000000 ____D () C:\Program Files\LibreOffice 4
2014-11-20 17:15 - 2014-11-20 17:16 - 225689600 _____ () C:\Users\John B\Downloads\LibreOffice_4.3.4_Win_x86.msi
2014-11-20 15:58 - 2014-11-20 15:58 - 00000197 _____ () C:\Windows\system32\2014-11-20-15-58-21.062-AvastVBoxSVC.exe-2528.log
2014-11-20 08:07 - 2014-11-20 08:08 - 00000197 _____ () C:\Windows\system32\2014-11-20-08-07-54.016-AvastVBoxSVC.exe-3004.log
2014-11-19 23:12 - 2014-11-19 23:12 - 00000000 ____D () C:\Users\John B\AppData\Local\Nvidia Corporation
2014-11-19 23:11 - 2014-11-19 23:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-11-19 23:10 - 2014-11-12 20:50 - 00615624 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe
2014-11-19 23:07 - 2014-11-13 00:14 - 24557896 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 17258696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 11397744 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 11336432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 10911040 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-11-19 23:07 - 2014-11-13 00:14 - 04013376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 01042064 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3234475.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 00923976 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 00906440 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3234475.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 00899728 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 00303600 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim32.dll
2014-11-19 23:07 - 2014-11-13 00:14 - 00156840 _____ (NVIDIA Corporation) C:\Windows\system32\nvinit.dll
2014-11-19 15:52 - 2007-12-07 02:01 - 00078848 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_FD4BFCE.DLL
2014-11-19 15:52 - 2007-04-10 01:06 - 00008192 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_DCINST.DLL
2014-11-19 15:51 - 2014-11-11 02:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 15:51 - 2014-11-11 02:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 15:47 - 2014-11-19 15:48 - 15948288 _____ () C:\Users\John B\Downloads\epson324637eu.exe
2014-11-19 15:47 - 2014-11-19 15:48 - 12793856 _____ () C:\Users\John B\Downloads\epson325480eu (1).exe
2014-11-19 15:45 - 2014-11-19 15:46 - 00000197 _____ () C:\Windows\system32\2014-11-19-15-45-56.076-AvastVBoxSVC.exe-2696.log
2014-11-18 19:00 - 2014-11-18 19:00 - 00000197 _____ () C:\Windows\system32\2014-11-18-19-00-37.008-AvastVBoxSVC.exe-2168.log
2014-11-18 18:23 - 2014-06-27 01:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-11-18 18:14 - 2014-07-09 01:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-11-18 18:14 - 2014-07-09 01:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-11-18 18:14 - 2014-07-09 01:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-11-18 18:14 - 2014-07-09 01:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-11-18 18:14 - 2014-07-09 01:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-11-18 18:14 - 2014-07-08 22:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-11-18 18:10 - 2014-06-24 02:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-11-18 18:10 - 2013-11-23 18:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-11-18 18:10 - 2012-02-11 05:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-11-18 18:10 - 2011-03-11 05:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-11-18 18:10 - 2011-03-11 05:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-11-18 18:10 - 2011-03-11 05:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-11-18 18:10 - 2011-03-11 05:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-11-18 18:10 - 2011-03-11 05:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-11-18 18:10 - 2011-03-11 05:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-11-18 18:10 - 2011-03-11 05:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-11-18 18:10 - 2011-03-11 04:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-11-18 18:09 - 2014-11-06 02:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-18 18:09 - 2014-02-04 02:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-11-18 18:09 - 2013-11-26 08:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-11-18 18:09 - 2011-02-25 05:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-11-18 18:04 - 2014-11-18 18:04 - 00000197 _____ () C:\Windows\system32\2014-11-18-18-04-29.081-AvastVBoxSVC.exe-2984.log
2014-11-18 17:05 - 2014-11-18 17:05 - 00000197 _____ () C:\Windows\system32\2014-11-18-17-05-22.038-AvastVBoxSVC.exe-2248.log
2014-11-17 22:02 - 2013-04-09 23:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-11-17 21:57 - 2014-11-21 19:41 - 00000000 ____D () C:\Users\John B\AppData\Roaming\Adobe
2014-11-17 21:56 - 2014-11-17 21:56 - 00000197 _____ () C:\Windows\system32\2014-11-17-21-56-15.017-AvastVBoxSVC.exe-2624.log
2014-11-17 19:05 - 2012-07-26 03:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-11-17 19:05 - 2012-07-26 03:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-11-17 19:05 - 2012-07-26 03:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-11-17 19:05 - 2012-07-26 03:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-11-17 19:05 - 2012-07-26 03:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-11-17 19:05 - 2012-07-26 02:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-11-17 19:05 - 2012-07-26 02:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-11-17 19:05 - 2012-06-02 14:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-11-17 19:03 - 2014-06-30 22:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-11-17 19:03 - 2014-06-06 06:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-11-17 19:03 - 2014-03-09 21:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-11-17 19:03 - 2014-03-09 21:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-11-17 19:02 - 2012-03-01 05:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-11-17 19:02 - 2012-03-01 05:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-11-17 18:41 - 2013-05-10 04:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-11-17 18:41 - 2013-05-10 04:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 19781632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 12819456 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-17 18:31 - 2014-11-17 18:31 - 02277376 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 02051072 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-17 18:31 - 2014-11-17 18:31 - 01892864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-17 18:31 - 2014-11-17 18:31 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-11-17 18:31 - 2014-11-17 18:31 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00341168 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-11-17 18:31 - 2014-11-17 18:31 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-11-17 18:31 - 2014-11-17 18:31 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-11-17 18:31 - 2014-11-17 18:31 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-17 18:31 - 2014-11-17 18:31 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-17 18:31 - 2014-11-17 18:31 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-11-17 18:31 - 2014-11-17 18:31 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-11-17 18:31 - 2014-11-17 18:31 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-11-17 18:31 - 2014-11-17 18:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-11-17 18:31 - 2014-11-17 18:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-11-17 18:31 - 2014-11-17 18:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-11-17 18:31 - 2014-11-17 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-17 18:30 - 2014-11-17 18:30 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-11-17 18:30 - 2014-11-17 18:30 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-11-17 18:30 - 2014-11-17 18:30 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-11-17 18:30 - 2014-11-17 18:30 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-11-17 18:30 - 2014-11-17 18:30 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-11-17 18:30 - 2014-11-17 18:30 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-11-17 18:30 - 2014-11-17 18:30 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-11-17 18:27 - 2014-11-17 18:27 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-11-17 18:25 - 2014-11-17 18:25 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-11-17 18:24 - 2014-11-17 18:33 - 00014038 _____ () C:\Windows\IE11_main.log
2014-11-17 16:53 - 2014-10-18 01:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-17 16:53 - 2013-07-04 11:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-11-17 16:53 - 2013-07-03 04:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2014-11-17 16:53 - 2013-07-03 03:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-11-17 16:53 - 2013-07-03 03:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-11-17 16:52 - 2013-10-04 01:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-11-17 16:52 - 2013-10-04 01:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-11-17 16:52 - 2013-07-09 04:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-11-17 16:52 - 2013-02-12 03:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-11-17 16:52 - 2012-08-22 17:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-11-17 16:52 - 2012-07-04 19:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-11-17 16:52 - 2011-04-29 02:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-11-17 16:52 - 2011-04-29 02:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-11-17 16:52 - 2011-04-29 02:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-11-17 16:51 - 2014-07-14 01:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-11-17 16:51 - 2013-10-30 02:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-11-17 16:51 - 2012-11-02 05:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-11-17 16:51 - 2011-06-16 04:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-11-17 16:51 - 2011-02-18 05:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-11-17 16:50 - 2014-08-12 01:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-17 16:50 - 2014-06-16 01:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-11-17 16:50 - 2014-06-16 01:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-11-17 16:50 - 2014-06-16 01:40 - 00107520 _____ (Microsoft
Link to post
Share on other sites

Well, I've re-installed Win7 again (offline) Downloaded AV software on another computer, to usb stick and installed , before going online. Installed graphics driver, MBAM, Google Chrome, Mozilla Thunderbird etc, etc. All seems fine (fingers crossed) No extra browser windows are opening with the ever annoying ads.   Now the (seemingly) endless Windows updates will be coming thick and fast.  ;)

Link to post
Share on other sites

  • 3 months later...
  • Root Admin

We're sorry. It looks like your topic was somehow overlooked. Due to the length of time we'll go ahead and close this topic now but if you still actually need help please send a private message to one of the Moderators and we'll assist you.

Thank you and sorry we missed your topic.

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.