1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Most pages not opening up

Discussion in 'Virus & Other Malware Removal' started by betabet, Feb 27, 2013.

Thread Status:
Not open for further replies.
Advertisement
  1. betabet

    betabet Thread Starter

    Joined:
    Feb 27, 2013
    Messages:
    7
    Hi
    I have a 2 month old Acer Aspire E1 571 with Windows 8. I cannot get most pages to open up. Some do strangely enough. Google opens up instantly, ebay home page will open up but when I try and log in it just hangs. Anything to do with Microsoft wont open up, Autotrader etc. This all happened after I noticed my bank account had been hacked and they had taken a large sum of money from my current account. I am at the paranoid stage as my old laptop (a Dell Vostro 1100 with Windows XP is exactly the same). I have McAfee pre installed and I have also downloaded Malware Bytes. I tried to load Microsoft Security Essentials but it won't let me open. I really am at a loss. Any help is very much appreciated. Meant to say once I noticed the bank account scenario, I ran anti virus and it showed up around 25 various things like Trojan & Backdoor.
     
  2. TerryNet

    TerryNet Terry Moderator

    Joined:
    Mar 23, 2005
    Messages:
    69,545
    Even if you are not still infected you are certainly still suffering the effects of the infection. If you are even the least bit concerned ...

    Read Everyone MUST read this BEFORE posting for help in this forum and post the requested information here. When I see that you have posted the information I will move this thread to the Virus & Other Malware Removal forum.

    Bump your thread there once a day--no more often--until you get a reply. They're kinda busy over there.
     
  3. betabet

    betabet Thread Starter

    Joined:
    Feb 27, 2013
    Messages:
    7
    I'm afraid I cannot open anything up know.
     
  4. betabet

    betabet Thread Starter

    Joined:
    Feb 27, 2013
    Messages:
    7
    MLogfile of Trend Micro HijackThis v2.0.4
    Scan saved at 19:01:25, on 27/02/2013
    Platform: Unknown Windows (WinNT 6.02.1008)
    MSIE: Internet Explorer v10.0 (10.00.9200.16482)
    Boot mode: Normal
    Running processes:
    C:\Program Files (x86)\Launch Manager\LManager.exe
    C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    C:\Users\Elizabeth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W0YH11NV\HijackThis.exe
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
    F2 - REG:system.ini: UserInit=userinit.exe
    O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20130226213230.dll
    O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
    O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
    O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
    O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
    O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
    O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
    O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
    O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {9C65AB3E-C9A8-4789-AE24-B365A1C4A6F9} (SNRet Control) - http://acer.custhelp.com/euf/assets/activex/snret.cab
    O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
    O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
    O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
    O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
    O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
    O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
    O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
    O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
    O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
    O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
    O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
    O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\mcafee\msc\mcawfwk.exe
    O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
    O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
    O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
    O23 - Service: McAfee Application Statistics Service (MfeASUM) - McAfee, Inc. - C:\Program Files\McAfee\AppStats\MfeASUM.exe
    O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
    O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
    O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
    O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
    --
    End of file - 11100 bytes
    anaged to connect via my mobile phone ran Hijackthis here is the log.
     
  5. betabet

    betabet Thread Starter

    Joined:
    Feb 27, 2013
    Messages:
    7
    here is one of the logs from dds

    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 10.0.9200.16482 BrowserJavaVersion: 10.11.2
    Run by Elizabeth at 19:11:52 on 2013-02-27
    Microsoft Windows 8 6.2.9200.0.1252.44.2057.18.3911.2646 [GMT 0:00]
    .
    AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
    AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
    C:\Windows\system32\dwm.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Program Files\Classic Shell\ClassicShellService.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\WLANExt.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
    C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
    C:\Program Files (x86)\Launch Manager\dsiwmis.exe
    C:\Windows\system32\dashost.exe
    C:\Program Files\Elantech\ETDService.exe
    C:\Program Files\Intel\iCLS Client\HeciServer.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
    C:\Program Files\McAfee\AppStats\MfeASUM.exe
    C:\windows\system32\mfevtps.exe
    C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
    C:\Windows\RfBtnSvc64.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
    C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
    C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
    C:\Windows\system32\rundll32.exe
    C:\Windows\system32\rundll32.exe
    C:\Windows\SysWOW64\rundll32.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files\Classic Shell\ClassicStartMenu.exe
    C:\Windows\system32\taskhostex.exe
    C:\Program Files (x86)\Launch Manager\LMutilps32.exe
    C:\Program Files\Elantech\ETDCtrl.exe
    C:\Windows\Explorer.EXE
    c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Program Files (x86)\Launch Manager\LManager.exe
    C:\Program Files\Elantech\ETDCtrlHelper.exe
    C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
    C:\Windows\system32\igfxext.exe
    C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
    C:\Windows\System32\RuntimeBroker.exe
    C:\Windows\System32\igfxtray.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
    C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
    C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
    C:\Program Files\EgisTec IPS\PMMUpdate.exe
    C:\Program Files\EgisTec IPS\EgisUpdate.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.co.uk/
    uDefault_Page_URL = hxxp://acer13.msn.com
    uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    mWinlogon: Userinit = userinit.exe
    BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20130226213230.dll
    BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    BHO: ClassicIE9BHO Class: {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
    TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
    mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
    mRun: [LManager] <no file>
    dRunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ACERBA~1.LNK - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
    IE: {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
    IE: {64964764-1101-4bbd-8891-B56B1A53B9B3} - {553891B7-A0D5-4526-BE18-D3CE461D6310}
    DPF: {9C65AB3E-C9A8-4789-AE24-B365A1C4A6F9} - hxxp://acer.custhelp.com/euf/assets/activex/snret.cab
    TCP: NameServer = 192.168.43.1
    TCP: Interfaces\{3EE68BC8-7E04-45DA-BEA9-18F6A1B183E4} : DHCPNameServer = 192.168.0.1
    TCP: Interfaces\{3FAFC436-0F62-4762-9FF3-6F58A1715E76} : DHCPNameServer = 192.168.43.1
    TCP: Interfaces\{3FAFC436-0F62-4762-9FF3-6F58A1715E76}\244575966496D277964786D264F4E4 : DHCPNameServer = 192.168.22.22 192.168.22.23
    TCP: Interfaces\{3FAFC436-0F62-4762-9FF3-6F58A1715E76}\A474023533 : DHCPNameServer = 192.168.43.1
    TCP: Interfaces\{3FAFC436-0F62-4762-9FF3-6F58A1715E76}\E454457454142524F424 : DHCPNameServer = 192.168.0.1
    TCP: Interfaces\{D1079D5A-4A41-40A9-A778-5E0203E569EE} : DHCPNameServer = 192.168.42.129
    Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll
    Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    SSODL: WebCheck - <orphaned>
    x64-mWinlogon: Userinit = C:\Windows\System32\userinit.exe,C:\Windows\skipmetrosuite.exe,
    x64-BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
    x64-BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\mcafee\SystemCore\ScriptSn.20130226213230.dll
    x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
    x64-BHO: ClassicIE9BHO Class: {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll
    x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
    x64-TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
    x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
    x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
    x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
    x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
    x64-IE: {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
    x64-IE: {64964764-1101-4bbd-8891-B56B1A53B9B3} - {553891B7-A0D5-4526-BE18-D3CE461D6310}
    x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll
    x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
    x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
    x64-Notify: igfxcui - igfxdev.dll
    x64-SSODL: WebCheck - <orphaned>
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-10-20 645952]
    R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\Drivers\mfehidk.sys [2012-6-22 771096]
    R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\Drivers\mfewfpk.sys [2012-6-22 339776]
    R0 RapportHades64;RapportHades64;C:\Windows\System32\Drivers\RapportHades64.sys [2013-2-25 208152]
    R0 RapportKE64;RapportKE64;C:\Windows\System32\Drivers\RapportKE64.sys [2013-2-25 236248]
    R1 MfeASKM;McAfee Application Statistics Device Driver;C:\Program Files\mcafee\AppStats\MfeASKM.sys [2013-2-7 31408]
    R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\Drivers\mwlPSDFilter.sys [2012-9-1 22648]
    R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\Drivers\mwlPSDNserv.sys [2012-9-1 20520]
    R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\Drivers\mwlPSDVDisk.sys [2012-9-1 62776]
    R1 RapportCerberus_50414;RapportCerberus_50414;C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_50414.sys [2013-2-25 585944]
    R1 RapportEI64;RapportEI64;C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [2013-2-13 228760]
    R1 RapportPG64;RapportPG64;C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [2013-2-13 357272]
    R2 BrcmCardReader;Broadcom Card Reader Service;C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-8-20 176640]
    R2 CCDMonitorService;CCDMonitorService;C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-8-23 2435728]
    R2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-9-1 348784]
    R2 ETDService;Elan Service;C:\Program Files\Elantech\ETDService.exe [2012-9-1 28560]
    R3 b57xdbd;Broadcom xD Picture Bus Driver Service;C:\Windows\System32\Drivers\b57xdbd.sys [2012-8-13 72280]
    R3 b57xdmp;Broadcom xD Picture vstorp client drv;C:\Windows\System32\Drivers\b57xdmp.sys [2012-8-13 21080]
    R3 bScsiMSa;bScsiMSa;C:\Windows\System32\Drivers\bScsiMSa.sys [2012-6-18 55384]
    R3 bScsiSDa;bScsiSDa;C:\Windows\System32\Drivers\bScsiSDa.sys [2012-8-14 70744]
    R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\Drivers\cfwids.sys [2012-6-22 69672]
    R3 ePowerSvc;ePower Service;C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-8-22 658576]
    R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\Drivers\ETD.sys [2012-9-1 318864]
    R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-9-1 342528]
    R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\Drivers\k57nd60a.sys [2012-6-2 425472]
    R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\Drivers\mfeavfk.sys [2012-6-22 309400]
    R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\Drivers\mfefirek.sys [2012-6-22 515528]
    R3 Ps2Kb2Hid;PS/2 Keyboard to HID Driver;C:\Windows\System32\Drivers\aPs2Kb2Hid.sys [2012-10-20 26736]
    R3 RapportIaso;RapportIaso;C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportIaso64.sys [2013-2-25 175352]
    S0 mfeelamk;McAfee Inc. mfeelamk;C:\Windows\System32\Drivers\mfeelamk.sys [2012-6-18 69168]
    S3 DESVUSB;Dell service driver;C:\Windows\System32\Drivers\desrvusb.sys [2009-6-4 24064]
    S3 DeviceFastLaneService;Device Fast-lane Service;C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-8-23 468624]
    S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudbus.sys [2012-9-19 102368]
    S3 EgisTec Ticket Service;EgisTec Ticket Service;C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-7-12 174160]
    S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\Drivers\HipShieldK.sys [2012-12-31 196440]
    S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\System32\Drivers\mferkdet.sys [2012-6-22 106112]
    S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudmdm.sys [2012-9-19 203104]
    S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
    .
    =============== Created Last 30 ================
    .
    2013-02-27 17:59:15 -------- d-----w- C:\411320c1f42a782b0299
    2013-02-27 15:22:37 443392 ----a-w- C:\Windows\System32\ReAgent.dll
    2013-02-27 15:22:37 375808 ----a-w- C:\Windows\SysWow64\ReAgent.dll
    2013-02-27 15:22:37 1010688 ----a-w- C:\Windows\System32\reseteng.dll
    2013-02-27 11:21:58 9162192 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1FC2CB9A-4153-40F2-9D79-7E1684CE2CFA}\mpengine.dll
    2013-02-26 21:33:47 9162192 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
    2013-02-26 21:33:22 273840 ------w- C:\Windows\System32\MpSigStub.exe
    2013-02-25 14:04:16 236248 ----a-w- C:\Windows\System32\drivers\RapportKE64.sys
    2013-02-25 14:04:16 208152 ----a-w- C:\Windows\System32\drivers\RapportHades64.sys
    2013-02-25 14:03:19 -------- d-----w- C:\Users\Elizabeth\AppData\Local\Trusteer
    2013-02-25 14:03:10 -------- d-----w- C:\Program Files (x86)\Trusteer
    2013-02-25 14:01:16 -------- d-----w- C:\ProgramData\Trusteer
    2013-02-22 11:37:09 -------- d-----w- C:\Users\Elizabeth\AppData\Roaming\Malwarebytes
    2013-02-22 11:36:51 -------- d-----w- C:\ProgramData\Malwarebytes
    2013-02-22 11:36:47 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2013-02-22 11:36:47 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2013-02-22 11:36:26 -------- d-----w- C:\Users\Elizabeth\AppData\Local\Programs
    2013-02-21 12:33:17 190224 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10194.bin
    2013-02-11 21:20:11 -------- d-----w- C:\Users\Elizabeth\AppData\Local\MusicPlayer
    .
    ==================== Find3M ====================
    .
    2013-02-21 07:29:31 78168 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2013-02-21 07:29:30 692568 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2013-01-31 03:29:52 2226408 ----a-w- C:\Windows\System32\drivers\tcpip.sys
    2013-01-21 22:36:44 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
    2013-01-21 22:36:43 859552 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
    2013-01-21 22:36:43 780192 ----a-w- C:\Windows\SysWow64\deployJava1.dll
    2013-01-19 11:53:38 11776 ----a-w- C:\Windows\skipmetrosuite.exe
    2013-01-17 04:04:06 4055552 ----a-w- C:\Windows\System32\win32k.sys
    2013-01-16 00:35:49 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll
    2013-01-16 00:31:26 53760 ----a-w- C:\Windows\System32\UXInit.dll
    2013-01-16 00:25:17 1437696 ----a-w- C:\Windows\SysWow64\GdiPlus.dll
    2013-01-16 00:23:19 1690624 ----a-w- C:\Windows\System32\GdiPlus.dll
    2013-01-14 03:56:14 6967016 ----a-w- C:\Windows\System32\ntoskrnl.exe
    2013-01-10 01:53:32 28904 ----a-w- C:\Windows\System32\drivers\msgpiowin32.sys
    2013-01-10 01:40:39 1448168 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
    2013-01-10 01:40:38 303848 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
    2013-01-10 01:39:29 194280 ----a-w- C:\Windows\System32\drivers\sdbus.sys
    2013-01-10 01:39:22 124648 ----a-w- C:\Windows\System32\drivers\dumpsd.sys
    2013-01-10 01:29:56 91880 ----a-w- C:\Windows\System32\drivers\partmgr.sys
    2013-01-10 01:29:54 1934056 ----a-w- C:\Windows\System32\drivers\ntfs.sys
    2013-01-10 01:29:21 785504 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
    2013-01-09 23:26:53 83968 ----a-w- C:\Windows\SysWow64\wiaacmgr.exe
    2013-01-09 23:26:46 1611776 ----a-w- C:\Windows\SysWow64\mmc.exe
    2013-01-09 23:26:35 410624 ----a-w- C:\Windows\SysWow64\Windows.Networking.dll
    2013-01-09 23:26:35 261120 ----a-w- C:\Windows\SysWow64\Windows.Media.dll
    2013-01-09 23:26:23 1752064 ----a-w- C:\Windows\SysWow64\setupapi.dll
    2013-01-09 23:26:20 67584 ----a-w- C:\Windows\SysWow64\samlib.dll
    2013-01-09 23:26:08 115712 ----a-w- C:\Windows\SysWow64\netprofm.dll
    2013-01-09 23:26:04 890880 ----a-w- C:\Windows\SysWow64\msctf.dll
    2013-01-09 23:26:03 436736 ----a-w- C:\Windows\SysWow64\MP4SDECD.DLL
    2013-01-09 23:23:32 95232 ----a-w- C:\Windows\System32\wiaacmgr.exe
    2013-01-09 23:23:25 2094592 ----a-w- C:\Windows\System32\mmc.exe
    2013-01-09 23:23:18 256000 ----a-w- C:\Windows\System32\WSDMon.dll
    2013-01-09 23:23:16 1964544 ----a-w- C:\Windows\System32\wlidsvc.dll
    2013-01-09 23:23:14 594944 ----a-w- C:\Windows\System32\Windows.Networking.dll
    2013-01-09 23:23:14 406016 ----a-w- C:\Windows\System32\Windows.Media.dll
    2013-01-09 23:23:07 1886208 ----a-w- C:\Windows\System32\setupapi.dll
    2013-01-09 23:23:05 728064 ----a-w- C:\Windows\System32\samsrv.dll
    2013-01-09 23:22:53 464384 ----a-w- C:\Windows\System32\netprofmsvc.dll
    2013-01-09 23:22:53 151040 ----a-w- C:\Windows\System32\netprofm.dll
    2013-01-09 23:22:43 1120768 ----a-w- C:\Windows\System32\msctf.dll
    2013-01-09 23:22:41 666112 ----a-w- C:\Windows\System32\MP4SDECD.DLL
    2013-01-09 23:22:35 438272 ----a-w- C:\Windows\System32\lsm.dll
    2013-01-09 23:22:29 894464 ----a-w- C:\Windows\System32\iphlpsvc.dll
    2013-01-09 23:22:29 159232 ----a-w- C:\Windows\System32\inetpp.dll
    2013-01-09 23:22:26 49152 ----a-w- C:\Windows\System32\drivers\UMDF\HidBthLE.dll
    2013-01-09 23:22:05 1918464 ----a-w- C:\Windows\System32\wbem\cimwin32.dll
    2013-01-09 03:59:47 341504 ----a-w- C:\Windows\System32\drivers\HdAudio.sys
    2013-01-04 05:32:36 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2013-01-04 04:19:53 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
    2012-12-26 09:55:26 69672 ----a-w- C:\Windows\System32\drivers\cfwids.sys
    2012-12-26 09:52:44 339776 ----a-w- C:\Windows\System32\drivers\mfewfpk.sys
    2012-12-26 09:52:34 182312 ----a-w- C:\Windows\System32\mfevtps.exe
    2012-12-26 09:51:34 10288 ----a-w- C:\Windows\System32\drivers\mfeclnk.sys
    2012-12-26 09:51:24 106112 ----a-w- C:\Windows\System32\drivers\mferkdet.sys
    2012-12-26 09:50:48 771096 ----a-w- C:\Windows\System32\drivers\mfehidk.sys
    2012-12-26 09:50:24 69168 ----a-w- C:\Windows\System32\drivers\mfeelamk.sys
    2012-12-26 09:49:42 515528 ----a-w- C:\Windows\System32\drivers\mfefirek.sys
    2012-12-26 09:49:00 309400 ----a-w- C:\Windows\System32\drivers\mfeavfk.sys
    2012-12-26 09:48:30 178840 ----a-w- C:\Windows\System32\drivers\mfeapfk.sys
    2012-12-20 00:37:37 1775616 ----a-w- C:\Windows\SysWow64\wininet.dll
    2012-12-20 00:37:04 2881536 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2012-12-20 00:37:02 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
    2012-12-20 00:37:02 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
    2012-12-20 00:36:50 431616 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
    2012-12-20 00:29:16 2246656 ----a-w- C:\Windows\System32\wininet.dll
    2012-12-20 00:29:11 907776 ----a-w- C:\Windows\System32\uxtheme.dll
    2012-12-20 00:28:29 3966464 ----a-w- C:\Windows\System32\jscript9.dll
    2012-12-20 00:28:26 136704 ----a-w- C:\Windows\System32\iesysprep.dll
    2012-12-20 00:28:04 39936 ----a-w- C:\Windows\apppatch\apppatch64\acspecfc.dll
    2012-12-18 01:56:27 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll
    2012-12-16 08:28:20 46080 ----a-w- C:\Windows\System32\atmlib.dll
    2012-12-16 08:20:01 35328 ----a-w- C:\Windows\SysWow64\atmlib.dll
    2012-12-16 08:08:33 362496 ----a-w- C:\Windows\System32\atmfd.dll
    2012-12-16 07:57:09 300032 ----a-w- C:\Windows\SysWow64\atmfd.dll
    2012-12-06 04:23:00 170496 ----a-w- C:\Windows\System32\TimeBrokerServer.dll
    2012-12-06 04:22:59 178176 ----a-w- C:\Windows\System32\SystemEventsBrokerServer.dll
    2012-12-04 04:21:42 368640 ----a-w- C:\Windows\System32\sppwinob.dll
    .
    ============= FINISH: 19:12:37.20 ===============
     
  6. betabet

    betabet Thread Starter

    Joined:
    Feb 27, 2013
    Messages:
    7
    Here is the second from DDS

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft Windows 8
    Boot Device: \Device\HarddiskVolume2
    Install Date: 31/12/2012 21:22:21
    System Uptime: 27/02/2013 16:07:14 (3 hours ago)
    .
    Motherboard: Acer | | EA50_HC_CR
    Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz | U3E1 | 2501/100mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 449 GiB total, 402.136 GiB free.
    D: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    RP8: 09/02/2013 18:51:23 - Scheduled Checkpoint
    RP9: 13/02/2013 18:00:09 - Windows Update
    RP10: 20/02/2013 21:38:45 - Scheduled Checkpoint
    RP11: 25/02/2013 14:02:37 - Installed Rapport
    .
    ==== Installed Programs ======================
    .
    clear.fi SDK- Movie 2
    clear.fi SDK - Video 2
    Acer Backup Manager
    Acer Device Fast-lane
    Acer Power Management
    Acer Recovery Management
    AcerCloud
    AcerCloud Docs
    Backup Manager v4
    Broadcom Card Reader Driver Installer
    Classic Shell
    clear.fi Media
    clear.fi Photo
    CyberLink MediaEspresso 6.5
    eBay Worldwide
    ETDWare PS/2-X64 11.6.8.001_WHQL
    Identity Card
    Intel(R) Management Engine Components
    Intel(R) Processor Graphics
    Intel(R) Rapid Storage Technology
    Intel(R) SDK for OpenCL - CPU Only Runtime Package
    IntelĀ® Trusted Connect Service Client
    Java 7 Update 11
    Java Auto Updater
    Launch Manager
    Live Updater
    Malwarebytes Anti-Malware version 1.70.0.1100
    McAfee Internet Security Suite
    Microsoft Office
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
    Microsoft Visual Studio 2005 Tools for Office Runtime
    MyWinLocker
    MyWinLocker 4
    MyWinLocker Suite
    NTI Media Maker 9
    Office Addin
    Office Addin 2003
    Qualcomm Atheros WiFi Driver Installation
    Rapport
    Realtek High Definition Audio Driver
    Shared C Run-time for x64
    Shredder
    Spotify
    Visual Studio Tools for the Office system 3.0 Runtime
    Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258)
    .
    ==== Event Viewer Messages From Past Week ========
    .
    20/02/2013 23:40:54, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the DsiWMIService service.
    .
    ==== End Of File ===========================
     
  7. betabet

    betabet Thread Starter

    Joined:
    Feb 27, 2013
    Messages:
    7
    Gmer Scan

    GMER 2.1.19115 - http://www.gmer.net
    Rootkit scan 2013-02-27 19:24:12
    Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\00000037 WDC_WD5000BPVT-22HXZT3 rev.01.01A01 465.76GB
    Running: mmt01eug.exe; Driver: C:\Users\ELIZAB~1\AppData\Local\Temp\uwloakoc.sys

    ---- User code sections - GMER 2.1 ----
    .text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\SYSTEM32\ntdll.dll!NtMapViewOfSection 000007fe78fe2e60 5 bytes [FF, 25, D0, D1, 1E]
    .text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\SYSTEM32\ntdll.dll!KiUserApcDispatcher 000007fe78fe4a40 6 bytes {JMP QWORD [RIP+0x1bb5ba]}
    .text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\system32\KERNEL32.DLL!SetUnhandledExceptionFilter 000007fe76642be4 6 bytes {JMP QWORD [RIP+0x15d44c]}
    .text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\system32\KERNELBASE.dll!QueueUserWorkItem 000007fe75fe44ac 6 bytes {JMP QWORD [RIP+0x33bb84]}
    .text C:\Program Files\Internet Explorer\iexplore.exe[4192] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW + 191 000007fe75fff64f 3 bytes [BB, 09, 0E]
    ---- Threads - GMER 2.1 ----
    Thread C:\Windows\system32\csrss.exe [700:3920] fffff960009a05e8
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5388] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5572] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5560] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5540] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5280] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5592] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5620] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5644] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5640] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5648] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5652] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:768] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5800] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5804] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5792] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5788] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5936] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:4960] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5468] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5488] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5708] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:3712] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:5328] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:940] 0000000070b83a3c
    Thread C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE [4948:520] 0000000070b83a3c
    ---- Disk sectors - GMER 2.1 ----
    Disk \Device\Harddisk0\DR0 unknown MBR code
    ---- EOF - GMER 2.1 ----
     
  8. betabet

    betabet Thread Starter

    Joined:
    Feb 27, 2013
    Messages:
    7
    I hope I have ran all the scans and posted correctly.
     
  9. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1091132