Advertisement

There's no such thing as a stupid question, but they're the easiest to answer.
Login
Search

Advertisement

Virus & Other Malware Removal Virus & Other Malware Removal
Search Search
Search for:
Tech Support Guy > > >

Most pages not opening up

(New)
(!)

betabet's Avatar
betabet betabet is offline
Member with 7 posts.
THREAD STARTER
 
Join Date: Feb 2013
27-Feb-2013, 06:34 AM #1
Most pages not opening up
Hi
I have a 2 month old Acer Aspire E1 571 with Windows 8. I cannot get most pages to open up. Some do strangely enough. Google opens up instantly, ebay home page will open up but when I try and log in it just hangs. Anything to do with Microsoft wont open up, Autotrader etc. This all happened after I noticed my bank account had been hacked and they had taken a large sum of money from my current account. I am at the paranoid stage as my old laptop (a Dell Vostro 1100 with Windows XP is exactly the same). I have McAfee pre installed and I have also downloaded Malware Bytes. I tried to load Microsoft Security Essentials but it won't let me open. I really am at a loss. Any help is very much appreciated. Meant to say once I noticed the bank account scenario, I ran anti virus and it showed up around 25 various things like Trojan & Backdoor.
TerryNet's Avatar
Computer Specs
Moderator with 67,249 posts.
 
Join Date: Mar 2005
Location: Ottawa, IL
27-Feb-2013, 08:48 AM #2
Even if you are not still infected you are certainly still suffering the effects of the infection. If you are even the least bit concerned ...

Read Everyone MUST read this BEFORE posting for help in this forum and post the requested information here. When I see that you have posted the information I will move this thread to the Virus & Other Malware Removal forum.

Bump your thread there once a day--no more often--until you get a reply. They're kinda busy over there.
__________________
Microsoft MVP - Windows Expert - Consumer (since July 2010)
betabet's Avatar
betabet betabet is offline
Member with 7 posts.
THREAD STARTER
 
Join Date: Feb 2013
27-Feb-2013, 01:27 PM #3
Quote:
Originally Posted by TerryNet View Post
Even if you are not still infected you are certainly still suffering the effects of the infection. If you are even the least bit concerned ...

Read Everyone MUST read this BEFORE posting for help in this forum and post the requested information here. When I see that you have posted the information I will move this thread to the Virus & Other Malware Removal forum.

Bump your thread there once a day--no more often--until you get a reply. They're kinda busy over there.
I'm afraid I cannot open anything up know.
betabet's Avatar
betabet betabet is offline
Member with 7 posts.
THREAD STARTER
 
Join Date: Feb 2013
27-Feb-2013, 02:04 PM #4
MLogfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:01:25, on 27/02/2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16482)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Elizabeth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W0YH11NV\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20130226213230.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {9C65AB3E-C9A8-4789-AE24-B365A1C4A6F9} (SNRet Control) - http://acer.custhelp.com/euf/assets/activex/snret.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\mcafee\msc\mcawfwk.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Application Statistics Service (MfeASUM) - McAfee, Inc. - C:\Program Files\McAfee\AppStats\MfeASUM.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
--
End of file - 11100 bytes
anaged to connect via my mobile phone ran Hijackthis here is the log.
betabet's Avatar
betabet betabet is offline
Member with 7 posts.
THREAD STARTER
 
Join Date: Feb 2013
27-Feb-2013, 02:16 PM #5
here is one of the logs from dds

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16482 BrowserJavaVersion: 10.11.2
Run by Elizabeth at 19:11:52 on 2013-02-27
Microsoft Windows 8 6.2.9200.0.1252.44.2057.18.3911.2646 [GMT 0:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\Windows\system32\dwm.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\Classic Shell\ClassicShellService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Windows\system32\dashost.exe
C:\Program Files\Elantech\ETDService.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
C:\Program Files\McAfee\AppStats\MfeASUM.exe
C:\windows\system32\mfevtps.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
C:\Windows\RfBtnSvc64.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Windows\system32\taskhostex.exe
C:\Program Files (x86)\Launch Manager\LMutilps32.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Windows\Explorer.EXE
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
C:\Windows\system32\igfxext.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8w ekyb3d8bbwe\LiveComm.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\EgisTec IPS\PMMUpdate.exe
C:\Program Files\EgisTec IPS\EgisUpdate.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.co.uk/
uDefault_Page_URL = hxxp://acer13.msn.com
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
mWinlogon: Userinit = userinit.exe
BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20130226213230.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: ClassicIE9BHO Class: {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [LManager] <no file>
dRunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ACERBA~1.LNK - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
IE: {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
IE: {64964764-1101-4bbd-8891-B56B1A53B9B3} - {553891B7-A0D5-4526-BE18-D3CE461D6310}
DPF: {9C65AB3E-C9A8-4789-AE24-B365A1C4A6F9} - hxxp://acer.custhelp.com/euf/assets/activex/snret.cab
TCP: NameServer = 192.168.43.1
TCP: Interfaces\{3EE68BC8-7E04-45DA-BEA9-18F6A1B183E4} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{3FAFC436-0F62-4762-9FF3-6F58A1715E76} : DHCPNameServer = 192.168.43.1
TCP: Interfaces\{3FAFC436-0F62-4762-9FF3-6F58A1715E76}\244575966496D277964786D264F4E4 : DHCPNameServer = 192.168.22.22 192.168.22.23
TCP: Interfaces\{3FAFC436-0F62-4762-9FF3-6F58A1715E76}\A474023533 : DHCPNameServer = 192.168.43.1
TCP: Interfaces\{3FAFC436-0F62-4762-9FF3-6F58A1715E76}\E454457454142524F424 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{D1079D5A-4A41-40A9-A778-5E0203E569EE} : DHCPNameServer = 192.168.42.129
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
SSODL: WebCheck - <orphaned>
x64-mWinlogon: Userinit = C:\Windows\System32\userinit.exe,C:\Windows\skipmetrosuite.exe,
x64-BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
x64-BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\mcafee\SystemCore\ScriptSn.20130226213230.dll
x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-BHO: ClassicIE9BHO Class: {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll
x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-IE: {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
x64-IE: {64964764-1101-4bbd-8891-B56B1A53B9B3} - {553891B7-A0D5-4526-BE18-D3CE461D6310}
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-10-20 645952]
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\Drivers\mfehidk.sys [2012-6-22 771096]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\Drivers\mfewfpk.sys [2012-6-22 339776]
R0 RapportHades64;RapportHades64;C:\Windows\System32\Drivers\RapportHades64.sy s [2013-2-25 208152]
R0 RapportKE64;RapportKE64;C:\Windows\System32\Drivers\RapportKE64.sys [2013-2-25 236248]
R1 MfeASKM;McAfee Application Statistics Device Driver;C:\Program Files\mcafee\AppStats\MfeASKM.sys [2013-2-7 31408]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\Drivers\mwlPSDFilter.sys [2012-9-1 22648]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\Drivers\mwlPSDNserv.sys [2012-9-1 20520]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\Drivers\mwlPSDVDisk.sys [2012-9-1 62776]
R1 RapportCerberus_50414;RapportCerberus_50414;C:\ProgramData\Trusteer\Rapport \store\exts\RapportCerberus\baseline\RapportCerberus64_50414.sys [2013-2-25 585944]
R1 RapportEI64;RapportEI64;C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [2013-2-13 228760]
R1 RapportPG64;RapportPG64;C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [2013-2-13 357272]
R2 BrcmCardReader;Broadcom Card Reader Service;C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-8-20 176640]
R2 CCDMonitorService;CCDMonitorService;C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-8-23 2435728]
R2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-9-1 348784]
R2 ETDService;Elan Service;C:\Program Files\Elantech\ETDService.exe [2012-9-1 28560]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service;C:\Windows\System32\Drivers\b57xdbd.sys [2012-8-13 72280]
R3 b57xdmp;Broadcom xD Picture vstorp client drv;C:\Windows\System32\Drivers\b57xdmp.sys [2012-8-13 21080]
R3 bScsiMSa;bScsiMSa;C:\Windows\System32\Drivers\bScsiMSa.sys [2012-6-18 55384]
R3 bScsiSDa;bScsiSDa;C:\Windows\System32\Drivers\bScsiSDa.sys [2012-8-14 70744]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\Drivers\cfwids.sys [2012-6-22 69672]
R3 ePowerSvc;ePower Service;C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-8-22 658576]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\Drivers\ETD.sys [2012-9-1 318864]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-9-1 342528]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\Drivers\k57nd60a.sys [2012-6-2 425472]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\Drivers\mfeavfk.sys [2012-6-22 309400]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\Drivers\mfefirek.sys [2012-6-22 515528]
R3 Ps2Kb2Hid;PS/2 Keyboard to HID Driver;C:\Windows\System32\Drivers\aPs2Kb2Hid.sys [2012-10-20 26736]
R3 RapportIaso;RapportIaso;C:\ProgramData\Trusteer\Rapport\store\exts\RapportM S\baseline\RapportIaso64.sys [2013-2-25 175352]
S0 mfeelamk;McAfee Inc. mfeelamk;C:\Windows\System32\Drivers\mfeelamk.sys [2012-6-18 69168]
S3 DESVUSB;Dell service driver;C:\Windows\System32\Drivers\desrvusb.sys [2009-6-4 24064]
S3 DeviceFastLaneService;Device Fast-lane Service;C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-8-23 468624]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudbus.sys [2012-9-19 102368]
S3 EgisTec Ticket Service;EgisTec Ticket Service;C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-7-12 174160]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\Drivers\HipShieldK.sys [2012-12-31 196440]
S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\System32\Drivers\mferkdet.sys [2012-6-22 106112]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudmdm.sys [2012-9-19 203104]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
.
=============== Created Last 30 ================
.
2013-02-27 17:59:15 -------- d-----w- C:\411320c1f42a782b0299
2013-02-27 15:22:37 443392 ----a-w- C:\Windows\System32\ReAgent.dll
2013-02-27 15:22:37 375808 ----a-w- C:\Windows\SysWow64\ReAgent.dll
2013-02-27 15:22:37 1010688 ----a-w- C:\Windows\System32\reseteng.dll
2013-02-27 11:21:58 9162192 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1FC2CB9A-4153-40F2-9D79-7E1684CE2CFA}\mpengine.dll
2013-02-26 21:33:47 9162192 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-02-26 21:33:22 273840 ------w- C:\Windows\System32\MpSigStub.exe
2013-02-25 14:04:16 236248 ----a-w- C:\Windows\System32\drivers\RapportKE64.sys
2013-02-25 14:04:16 208152 ----a-w- C:\Windows\System32\drivers\RapportHades64.sys
2013-02-25 14:03:19 -------- d-----w- C:\Users\Elizabeth\AppData\Local\Trusteer
2013-02-25 14:03:10 -------- d-----w- C:\Program Files (x86)\Trusteer
2013-02-25 14:01:16 -------- d-----w- C:\ProgramData\Trusteer
2013-02-22 11:37:09 -------- d-----w- C:\Users\Elizabeth\AppData\Roaming\Malwarebytes
2013-02-22 11:36:51 -------- d-----w- C:\ProgramData\Malwarebytes
2013-02-22 11:36:47 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-02-22 11:36:47 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-02-22 11:36:26 -------- d-----w- C:\Users\Elizabeth\AppData\Local\Programs
2013-02-21 12:33:17 190224 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10194.bin
2013-02-11 21:20:11 -------- d-----w- C:\Users\Elizabeth\AppData\Local\MusicPlayer
.
==================== Find3M ====================
.
2013-02-21 07:29:31 78168 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-21 07:29:30 692568 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-01-31 03:29:52 2226408 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-01-21 22:36:44 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-01-21 22:36:43 859552 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-01-21 22:36:43 780192 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-01-19 11:53:38 11776 ----a-w- C:\Windows\skipmetrosuite.exe
2013-01-17 04:04:06 4055552 ----a-w- C:\Windows\System32\win32k.sys
2013-01-16 00:35:49 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll
2013-01-16 00:31:26 53760 ----a-w- C:\Windows\System32\UXInit.dll
2013-01-16 00:25:17 1437696 ----a-w- C:\Windows\SysWow64\GdiPlus.dll
2013-01-16 00:23:19 1690624 ----a-w- C:\Windows\System32\GdiPlus.dll
2013-01-14 03:56:14 6967016 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-01-10 01:53:32 28904 ----a-w- C:\Windows\System32\drivers\msgpiowin32.sys
2013-01-10 01:40:39 1448168 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-01-10 01:40:38 303848 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2013-01-10 01:39:29 194280 ----a-w- C:\Windows\System32\drivers\sdbus.sys
2013-01-10 01:39:22 124648 ----a-w- C:\Windows\System32\drivers\dumpsd.sys
2013-01-10 01:29:56 91880 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2013-01-10 01:29:54 1934056 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2013-01-10 01:29:21 785504 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-01-09 23:26:53 83968 ----a-w- C:\Windows\SysWow64\wiaacmgr.exe
2013-01-09 23:26:46 1611776 ----a-w- C:\Windows\SysWow64\mmc.exe
2013-01-09 23:26:35 410624 ----a-w- C:\Windows\SysWow64\Windows.Networking.dll
2013-01-09 23:26:35 261120 ----a-w- C:\Windows\SysWow64\Windows.Media.dll
2013-01-09 23:26:23 1752064 ----a-w- C:\Windows\SysWow64\setupapi.dll
2013-01-09 23:26:20 67584 ----a-w- C:\Windows\SysWow64\samlib.dll
2013-01-09 23:26:08 115712 ----a-w- C:\Windows\SysWow64\netprofm.dll
2013-01-09 23:26:04 890880 ----a-w- C:\Windows\SysWow64\msctf.dll
2013-01-09 23:26:03 436736 ----a-w- C:\Windows\SysWow64\MP4SDECD.DLL
2013-01-09 23:23:32 95232 ----a-w- C:\Windows\System32\wiaacmgr.exe
2013-01-09 23:23:25 2094592 ----a-w- C:\Windows\System32\mmc.exe
2013-01-09 23:23:18 256000 ----a-w- C:\Windows\System32\WSDMon.dll
2013-01-09 23:23:16 1964544 ----a-w- C:\Windows\System32\wlidsvc.dll
2013-01-09 23:23:14 594944 ----a-w- C:\Windows\System32\Windows.Networking.dll
2013-01-09 23:23:14 406016 ----a-w- C:\Windows\System32\Windows.Media.dll
2013-01-09 23:23:07 1886208 ----a-w- C:\Windows\System32\setupapi.dll
2013-01-09 23:23:05 728064 ----a-w- C:\Windows\System32\samsrv.dll
2013-01-09 23:22:53 464384 ----a-w- C:\Windows\System32\netprofmsvc.dll
2013-01-09 23:22:53 151040 ----a-w- C:\Windows\System32\netprofm.dll
2013-01-09 23:22:43 1120768 ----a-w- C:\Windows\System32\msctf.dll
2013-01-09 23:22:41 666112 ----a-w- C:\Windows\System32\MP4SDECD.DLL
2013-01-09 23:22:35 438272 ----a-w- C:\Windows\System32\lsm.dll
2013-01-09 23:22:29 894464 ----a-w- C:\Windows\System32\iphlpsvc.dll
2013-01-09 23:22:29 159232 ----a-w- C:\Windows\System32\inetpp.dll
2013-01-09 23:22:26 49152 ----a-w- C:\Windows\System32\drivers\UMDF\HidBthLE.dll
2013-01-09 23:22:05 1918464 ----a-w- C:\Windows\System32\wbem\cimwin32.dll
2013-01-09 03:59:47 341504 ----a-w- C:\Windows\System32\drivers\HdAudio.sys
2013-01-04 05:32:36 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-01-04 04:19:53 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2012-12-26 09:55:26 69672 ----a-w- C:\Windows\System32\drivers\cfwids.sys
2012-12-26 09:52:44 339776 ----a-w- C:\Windows\System32\drivers\mfewfpk.sys
2012-12-26 09:52:34 182312 ----a-w- C:\Windows\System32\mfevtps.exe
2012-12-26 09:51:34 10288 ----a-w- C:\Windows\System32\drivers\mfeclnk.sys
2012-12-26 09:51:24 106112 ----a-w- C:\Windows\System32\drivers\mferkdet.sys
2012-12-26 09:50:48 771096 ----a-w- C:\Windows\System32\drivers\mfehidk.sys
2012-12-26 09:50:24 69168 ----a-w- C:\Windows\System32\drivers\mfeelamk.sys
2012-12-26 09:49:42 515528 ----a-w- C:\Windows\System32\drivers\mfefirek.sys
2012-12-26 09:49:00 309400 ----a-w- C:\Windows\System32\drivers\mfeavfk.sys
2012-12-26 09:48:30 178840 ----a-w- C:\Windows\System32\drivers\mfeapfk.sys
2012-12-20 00:37:37 1775616 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-12-20 00:37:04 2881536 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-12-20 00:37:02 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2012-12-20 00:37:02 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2012-12-20 00:36:50 431616 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
2012-12-20 00:29:16 2246656 ----a-w- C:\Windows\System32\wininet.dll
2012-12-20 00:29:11 907776 ----a-w- C:\Windows\System32\uxtheme.dll
2012-12-20 00:28:29 3966464 ----a-w- C:\Windows\System32\jscript9.dll
2012-12-20 00:28:26 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2012-12-20 00:28:04 39936 ----a-w- C:\Windows\apppatch\apppatch64\acspecfc.dll
2012-12-18 01:56:27 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll
2012-12-16 08:28:20 46080 ----a-w- C:\Windows\System32\atmlib.dll
2012-12-16 08:20:01 35328 ----a-w- C:\Windows\SysWow64\atmlib.dll
2012-12-16 08:08:33 362496 ----a-w- C:\Windows\System32\atmfd.dll
2012-12-16 07:57:09 300032 ----a-w- C:\Windows\SysWow64\atmfd.dll
2012-12-06 04:23:00 170496 ----a-w- C:\Windows\System32\TimeBrokerServer.dll
2012-12-06 04:22:59 178176 ----a-w- C:\Windows\System32\SystemEventsBrokerServer.dll
2012-12-04 04:21:42 368640 ----a-w- C:\Windows\System32\sppwinob.dll
.
============= FINISH: 19:12:37.20 ===============
betabet's Avatar
betabet betabet is offline
Member with 7 posts.
THREAD STARTER
 
Join Date: Feb 2013
27-Feb-2013, 02:18 PM #6
Here is the second from DDS

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 8
Boot Device: \Device\HarddiskVolume2
Install Date: 31/12/2012 21:22:21
System Uptime: 27/02/2013 16:07:14 (3 hours ago)
.
Motherboard: Acer | | EA50_HC_CR
Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz | U3E1 | 2501/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 449 GiB total, 402.136 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP8: 09/02/2013 18:51:23 - Scheduled Checkpoint
RP9: 13/02/2013 18:00:09 - Windows Update
RP10: 20/02/2013 21:38:45 - Scheduled Checkpoint
RP11: 25/02/2013 14:02:37 - Installed Rapport
.
==== Installed Programs ======================
.
clear.fi SDK- Movie 2
clear.fi SDK - Video 2
Acer Backup Manager
Acer Device Fast-lane
Acer Power Management
Acer Recovery Management
AcerCloud
AcerCloud Docs
Backup Manager v4
Broadcom Card Reader Driver Installer
Classic Shell
clear.fi Media
clear.fi Photo
CyberLink MediaEspresso 6.5
eBay Worldwide
ETDWare PS/2-X64 11.6.8.001_WHQL
Identity Card
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
Intel(R) SDK for OpenCL - CPU Only Runtime Package
Intel® Trusted Connect Service Client
Java 7 Update 11
Java Auto Updater
Launch Manager
Live Updater
Malwarebytes Anti-Malware version 1.70.0.1100
McAfee Internet Security Suite
Microsoft Office
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual Studio 2005 Tools for Office Runtime
MyWinLocker
MyWinLocker 4
MyWinLocker Suite
NTI Media Maker 9
Office Addin
Office Addin 2003
Qualcomm Atheros WiFi Driver Installation
Rapport
Realtek High Definition Audio Driver
Shared C Run-time for x64
Shredder
Spotify
Visual Studio Tools for the Office system 3.0 Runtime
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258)
.
==== Event Viewer Messages From Past Week ========
.
20/02/2013 23:40:54, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the DsiWMIService service.
.
==== End Of File ===========================
betabet's Avatar
betabet betabet is offline
Member with 7 posts.
THREAD STARTER
 
Join Date: Feb 2013
27-Feb-2013, 02:25 PM #7
Gmer Scan

GMER 2.1.19115 - http://www.gmer.net
Rootkit scan 2013-02-27 19:24:12
Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\00000037 WDC_WD5000BPVT-22HXZT3 rev.01.01A01 465.76GB
Running: mmt01eug.exe; Driver: C:\Users\ELIZAB~1\AppData\Local\Temp\uwloakoc.sys

---- User code sections - GMER 2.1 ----
.text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\SYSTEM32\ntdll.dll!NtMapViewOfSection 000007fe78fe2e60 5 bytes [FF, 25, D0, D1, 1E]
.text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\SYSTEM32\ntdll.dll!KiUserApcDispatcher 000007fe78fe4a40 6 bytes {JMP QWORD [RIP+0x1bb5ba]}
.text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\system32\KERNEL32.DLL!SetUnhandledExceptionFilter 000007fe76642be4 6 bytes {JMP QWORD [RIP+0x15d44c]}
.text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\system32\KERNELBASE.dll!QueueUserWorkItem 000007fe75fe44ac 6 bytes {JMP QWORD [RIP+0x33bb84]}
.text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW + 191 000007fe75fff64f 3 bytes [BB, 09, 0E]
---- Threads - GMER 2.1 ----
Thread C:\Windows\system32\csrss.exe [700:3920] fffff960009a05e8
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5388] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5572] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5560] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5540] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5280] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5592] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5620] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5644] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5640] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5648] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5652] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:768] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5800] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5804] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5792] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5788] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5936] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:4960] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5468] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5488] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5708] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:3712] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5328] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:940] 0000000070b83a3c
Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:520] 0000000070b83a3c
---- Disk sectors - GMER 2.1 ----
Disk \Device\Harddisk0\DR0 unknown MBR code
---- EOF - GMER 2.1 ----
betabet's Avatar
betabet betabet is offline
Member with 7 posts.
THREAD STARTER
 
Join Date: Feb 2013
27-Feb-2013, 02:27 PM #8
I hope I have ran all the scans and posted correctly.
As Seen On

BBC, Reader's Digest, PC Magazine, Today Show, Money Magazine
WELCOME TO TECH SUPPORT GUY!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.


(clock)
THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


WELCOME
You Are Using: Server ID
Trusted Website Back to the Top ↑

Content Relevant URLs by vBSEO 3.3.2