Fix result of Farbar Recovery Scan Tool (x86) Version: 18-07-2017
Ran by al (23-07-2017 20:29:19) Run:1
Running from C:\Documents and Settings\al\Desktop\virus_et_al\July 2017
Loaded Profiles: al (Available Profiles: al & Administrator & Guest)
Boot Mode: Normal
==============================================
fixlist content:
*****************
S2 helpsvc; C:\WINDOWS\System32\svchost.exe [14336 2008-04-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S4 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
S4 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
2006-11-19 09:23 - 2007-02-14 21:25 - 0009871 _____ () C:\Documents and Settings\al\Application Data\Microsoft\2240.dat
2015-05-01 08:16 - 2015-06-11 20:14 - 0005632 _____ () C:\Documents and Settings\al\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-06-10 22:08 - 2013-06-23 14:09 - 0004955 _____ () C:\Documents and Settings\All Users\Application Data\gmqvfgar.pta
2012-07-17 15:31 - 2012-07-17 15:31 - 0004983 _____ () C:\Documents and Settings\All Users\Application Data\lomppayd.qfv
2012-02-05 10:33 - 2016-02-25 23:19 - 0001639 _____ () C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.400.32.bc
ContextMenuHandlers02: [DriveLetterAccess] -> {5CA3D70E-1895-11CF-8E15-001234567890} => -> No File
ContextMenuHandlers03: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
*****************
HKLM\System\CurrentControlSet\Services\helpsvc => key removed successfully.
helpsvc => service removed successfully.
HKLM\System\CurrentControlSet\Services\gupdate => key removed successfully.
gupdate => service removed successfully.
HKLM\System\CurrentControlSet\Services\gupdatem => key removed successfully.
gupdatem => service removed successfully.
C:\Documents and Settings\al\Application Data\Microsoft\2240.dat => moved successfully
C:\Documents and Settings\al\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Documents and Settings\All Users\Application Data\gmqvfgar.pta => moved successfully
C:\Documents and Settings\All Users\Application Data\lomppayd.qfv => moved successfully
C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.400.32.bc => moved successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\DriveLetterAccess => key removed successfully.
HKLM\Software\Classes\CLSID\{5CA3D70E-1895-11CF-8E15-001234567890} => key not found.
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avast => key removed successfully.
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
==== End of Fixlog 20:29:47 ====
Ran by al (23-07-2017 20:29:19) Run:1
Running from C:\Documents and Settings\al\Desktop\virus_et_al\July 2017
Loaded Profiles: al (Available Profiles: al & Administrator & Guest)
Boot Mode: Normal
==============================================
fixlist content:
*****************
S2 helpsvc; C:\WINDOWS\System32\svchost.exe [14336 2008-04-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S4 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
S4 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
2006-11-19 09:23 - 2007-02-14 21:25 - 0009871 _____ () C:\Documents and Settings\al\Application Data\Microsoft\2240.dat
2015-05-01 08:16 - 2015-06-11 20:14 - 0005632 _____ () C:\Documents and Settings\al\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-06-10 22:08 - 2013-06-23 14:09 - 0004955 _____ () C:\Documents and Settings\All Users\Application Data\gmqvfgar.pta
2012-07-17 15:31 - 2012-07-17 15:31 - 0004983 _____ () C:\Documents and Settings\All Users\Application Data\lomppayd.qfv
2012-02-05 10:33 - 2016-02-25 23:19 - 0001639 _____ () C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.400.32.bc
ContextMenuHandlers02: [DriveLetterAccess] -> {5CA3D70E-1895-11CF-8E15-001234567890} => -> No File
ContextMenuHandlers03: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
*****************
HKLM\System\CurrentControlSet\Services\helpsvc => key removed successfully.
helpsvc => service removed successfully.
HKLM\System\CurrentControlSet\Services\gupdate => key removed successfully.
gupdate => service removed successfully.
HKLM\System\CurrentControlSet\Services\gupdatem => key removed successfully.
gupdatem => service removed successfully.
C:\Documents and Settings\al\Application Data\Microsoft\2240.dat => moved successfully
C:\Documents and Settings\al\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Documents and Settings\All Users\Application Data\gmqvfgar.pta => moved successfully
C:\Documents and Settings\All Users\Application Data\lomppayd.qfv => moved successfully
C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.400.32.bc => moved successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\DriveLetterAccess => key removed successfully.
HKLM\Software\Classes\CLSID\{5CA3D70E-1895-11CF-8E15-001234567890} => key not found.
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avast => key removed successfully.
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
==== End of Fixlog 20:29:47 ====