[A] Reoccurring problem opening web pages

Inactive
By IanP
Jan 28, 2012
Topic Status:
Not open for further replies.
  1. I repeatedly have a problem in all browsers where suddenly webpages fail to load. I can cure the problem by running SUPERantispyware, but then days, or a week or more later, the problem returns.

    Running Windows 7 - 64 bit.

    I've carried out the 5 steps... using MSE for the first time on this PC - in preference to AVAST. It caught one item.

    My test result are as follows:

    Malwarebytes Anti-Malware 1.60.0.1800
    www.malwarebytes.org

    Database version: v2012.01.12.01

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 9.0.8112.16421
    IP :: GOLD [administrator]

    28/01/2012 11:17:34
    mbam-log-2012-01-28 (11-17-34).txt

    Scan type: Full scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 622133
    Time elapsed: 1 hour(s), 21 minute(s), 31 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 0
    (No malicious items detected)

    (end)



    GMER:

    GMER 1.0.15.15641 - http://www.gmer.net
    Rootkit scan 2012-01-28 15:39:30
    Windows 6.1.7601 Service Pack 1
    Running: 4ljymtft.exe


    ---- Registry - GMER 1.0.15 ----

    Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\0026831174e2
    Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\0026831174e2 (not active ControlSet)

    ---- EOF - GMER 1.0.15 ----



    DDS:

    AV: Lavasoft Ad-Watch Live! Anti-Virus *Enabled/Updated* {9FF26384-70D4-CE6B-3ECB-E759A6A40116}
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Lavasoft Ad-Watch Live! *Enabled/Updated* {24938260-56EE-C1E5-047B-DC2BDD234BAB}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\system32\atiesrxx.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\atieclxx.exe
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    W:\Programs\Security\SUPERantispyware\SASCORE64.EXE
    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\svchost.exe -k bthsvcs
    C:\Windows\system32\WUDFHost.exe
    C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
    C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Program Files\Logitech\SetPointP\SetPoint.exe
    C:\Program Files\Elan\USB\ETDUSBCtrl.exe
    C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    W:\Programs\Media\Skype Recorder\MP3 Skype Recorder.exe
    C:\Windows\System32\StikyNot.exe
    C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
    W:\Programs\Security\SUPERantispyware\SUPERANTISPYWARE.EXE
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\SearchIndexer.exe
    C:\Users\IP\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
    C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files (x86)\Common Files\BSD\AppUpdater\BSDChecker.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    W:\Programs\Media\Update\realsched.exe
    C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
    W:\Programs\Media\iTunes\iTunesHelper.exe
    C:\Program Files\Elan\USB\ETDUSBCtrlHelper.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\system32\DllHost.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files\Tracker Software\PDF Viewer\PDFXCview.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
    C:\Program Files\Microsoft Security Client\msseces.exe
    C:\Windows\System32\dinotify.exe
    C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
    W:\Programs\Media\Orbitdownloader\orbitdm.exe
    W:\Programs\Media\Orbitdownloader\orbitnet.exe
    C:\Windows\splwow64.exe
    C:\Program Files (x86)\Skype\Phone\Skype.exe
    C:\Windows\notepad.exe
    W:\Downloads\Chrome Downloads\4ljymtft.exe
    C:\Users\IP\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\SysWOW64\cscript.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.co.uk
    uWindow Title = Internet Explorer, optimized for Bing and MSN
    uInternet Settings,ProxyOverride = *.local
    uURLSearchHooks: YouTube Downloader Toolbar: {f3fee66e-e034-436a-86e4-9690573bee8a} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\4.7\youtubedownloaderToolbarIE.dll
    mWinlogon: Userinit=userinit.exe,
    BHO: Octh Class: {000123b4-9b42-4900-b3f7-f4b073efc214} - W:\Programs\Media\Orbitdownloader\orbitcth.dll
    BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
    BHO: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\adawaretb\adawareDx.dll
    BHO: CIESpeechBHO Class: {8d10f6c4-0e01-4bd4-8601-11ac1fdf8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    BHO: YouTube Downloader Toolbar: {f3fee66e-e034-436a-86e4-9690573bee8a} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\4.7\youtubedownloaderToolbarIE.dll
    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    TB: Grab Pro: {c55bbcd6-41ad-48ad-9953-3609c48eacc7} - W:\Programs\Media\Orbitdownloader\GrabPro.dll
    TB: {99079a25-328f-4bd4-be04-00955acaa0a7} - No File
    TB: YouTube Downloader Toolbar: {f3fee66e-e034-436a-86e4-9690573bee8a} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\4.7\youtubedownloaderToolbarIE.dll
    TB: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\adawaretb\adawareDx.dll
    uRun: [Google Update] "C:\Users\IP\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    uRun: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
    uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    uRun: [MP3 Skype Recorder] W:\Programs\Media\Skype Recorder\MP3 Skype Recorder.exe
    uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
    uRun: [SUPERAntiSpyware] W:\Programs\Security\SUPERantispyware\SUPERAntiSpyware.exe
    mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
    mRun: [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking11\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking11\Ereg.ini"
    mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    mRun: [BSDAppUpdater] C:\Program Files (x86)\Common Files\BSD\AppUpdater\BSDChecker.exe
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun: [TkBellExe] "w:\programs\media\Update\realsched.exe" -osboot
    mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    mRun: [QuickTime Task] "W:\Programs\Media\QuickTime\QTTask.exe" -atboottime
    mRun: [Ad-Aware Browsing Protection] "C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe"
    mRun: [iTunesHelper] "W:\Programs\Media\iTunes\iTunesHelper.exe"
    StartupFolder: C:\Users\IP\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\IP\AppData\Roaming\Dropbox\bin\Dropbox.exe
    StartupFolder: C:\Users\IP\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: &Download by Orbit - W:\Programs\Media\Orbitdownloader\orbitmxt.dll/201
    IE: &Grab video by Orbit - W:\Programs\Media\Orbitdownloader\orbitmxt.dll/204
    IE: Do&wnload selected by Orbit - W:\Programs\Media\Orbitdownloader\orbitmxt.dll/203
    IE: Down&load all by Orbit - W:\Programs\Media\Orbitdownloader\orbitmxt.dll/202
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
    IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
    IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    TCP: DhcpNameServer = 192.168.1.254
    TCP: Interfaces\{33027B78-B281-4551-A4DB-DC4F4447EEC9} : DhcpNameServer = 192.168.1.254
    TCP: Interfaces\{33027B78-B281-4551-A4DB-DC4F4447EEC9}\244564F4E4 : DhcpNameServer = 192.168.22.22 192.168.22.23
    TCP: Interfaces\{33027B78-B281-4551-A4DB-DC4F4447EEC9}\2445F40756E6A7F6E656 : DhcpNameServer = 192.168.22.22 192.168.22.23
    TCP: Interfaces\{CC87AAB5-FAD9-44CA-8ADD-31496AE39E1B} : DhcpNameServer = 192.168.1.254
    TCP: Interfaces\{CC87AAB5-FAD9-44CA-8ADD-31496AE39E1B}\244564F4E4 : DhcpNameServer = 192.168.22.22 192.168.22.23
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - W:\Programs\Media\Skype Recorder\Skype4COM.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    BHO-X64: Octh Class: {000123B4-9B42-4900-B3F7-F4B073EFC214} - W:\Programs\Media\Orbitdownloader\orbitcth.dll
    BHO-X64: btorbit.com - No File
    BHO-X64: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
    BHO-X64: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\adawaretb\adawareDx.dll
    BHO-X64: Ad-Aware Security Toolbar - No File
    BHO-X64: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
    BHO-X64: IESpeakDoc - No File
    BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO-X64: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    BHO-X64: SkypeIEPluginBHO - No File
    BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    BHO-X64: YouTube Downloader Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\4.7\youtubedownloaderToolbarIE.dll
    TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    TB-X64: Grab Pro: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - W:\Programs\Media\Orbitdownloader\GrabPro.dll
    TB-X64: {99079a25-328f-4bd4-be04-00955acaa0a7} - No File
    TB-X64: YouTube Downloader Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\4.7\youtubedownloaderToolbarIE.dll
    TB-X64: Ad-Aware Security Toolbar: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\adawaretb\adawareDx.dll
    mRun-x64: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
    mRun-x64: [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking11\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking11\Ereg.ini"
    mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    mRun-x64: [BSDAppUpdater] C:\Program Files (x86)\Common Files\BSD\AppUpdater\BSDChecker.exe
    mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun-x64: [TkBellExe] "w:\programs\media\Update\realsched.exe" -osboot
    mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    mRun-x64: [QuickTime Task] "W:\Programs\Media\QuickTime\QTTask.exe" -atboottime
    mRun-x64: [Ad-Aware Browsing Protection] "C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe"
    mRun-x64: [iTunesHelper] "W:\Programs\Media\iTunes\iTunesHelper.exe"
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\IP\AppData\Roaming\Mozilla\Firefox\Profiles\63am1z7o.default\
    FF - prefs.js: browser.search.selectedEngine - Search the Web
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
    FF - prefs.js: keyword.URL - hxxp://uk.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=
    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npPDFXCviewNPPlugin.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
    FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
    FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
    FF - plugin: C:\Users\IP\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
    FF - plugin: W:\Programs\General Programs\PDFXVwer\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
    FF - plugin: W:\Programs\Media\iTunes\Mozilla Plugins\npitunes.dll
    FF - plugin: W:\Programs\Media\Netscape6\nppl3260.dll
    FF - plugin: w:\programs\media\Netscape6\nppl3260.dll
    FF - plugin: w:\programs\media\Netscape6\nprjplug.dll
    FF - plugin: W:\Programs\Media\Netscape6\nprjplug.dll
    FF - plugin: W:\Programs\Media\Netscape6\nprpjplug.dll
    FF - plugin: w:\programs\media\Netscape6\nprpjplug.dll
    FF - plugin: W:\Programs\Media\QuickTime\Plugins\npqtplugin.dll
    FF - plugin: W:\Programs\Media\QuickTime\Plugins\npqtplugin2.dll
    FF - plugin: W:\Programs\Media\QuickTime\Plugins\npqtplugin3.dll
    FF - plugin: W:\Programs\Media\QuickTime\Plugins\npqtplugin4.dll
    FF - plugin: W:\Programs\Media\QuickTime\Plugins\npqtplugin5.dll
    FF - plugin: W:\Programs\Media\QuickTime\Plugins\npqtplugin6.dll
    FF - plugin: W:\Programs\Media\QuickTime\Plugins\npqtplugin7.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 Lbd;Lbd;C:\Windows\system32\DRIVERS\Lbd.sys --> C:\Windows\system32\DRIVERS\Lbd.sys [?]
    R0 mv91xx;mv91xx;C:\Windows\system32\DRIVERS\mv91xx.sys --> C:\Windows\system32\DRIVERS\mv91xx.sys [?]
    R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
    R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
    R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
    R1 SASDIFSV;SASDIFSV;W:\Programs\Security\SUPERantispyware\sasdifsv64.sys [2011-7-22 14928]
    R1 SASKUTIL;SASKUTIL;W:\Programs\Security\SUPERantispyware\saskutil64.sys [2011-7-12 12368]
    R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
    R2 !SASCORE;SAS Core Service;W:\Programs\Security\SUPERantispyware\SASCore64.exe [2011-8-11 140672]
    R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
    R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
    R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
    R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2010-10-27 52896]
    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-12-5 44768]
    R2 DragonSvc;Dragon Service;C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe [2010-11-16 296808]
    R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2011-11-3 2152152]
    R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
    R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
    R3 AthBTPort;Atheros Virtual Bluetooth Class;C:\Windows\system32\DRIVERS\btath_flt.sys --> C:\Windows\system32\DRIVERS\btath_flt.sys [?]
    R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\system32\drivers\btath_a2dp.sys --> C:\Windows\system32\drivers\btath_a2dp.sys [?]
    R3 BTATH_BUS;Atheros Bluetooth Bus;C:\Windows\system32\DRIVERS\btath_bus.sys --> C:\Windows\system32\DRIVERS\btath_bus.sys [?]
    R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\system32\DRIVERS\btath_hcrp.sys --> C:\Windows\system32\DRIVERS\btath_hcrp.sys [?]
    R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\system32\DRIVERS\btath_lwflt.sys --> C:\Windows\system32\DRIVERS\btath_lwflt.sys [?]
    R3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\system32\DRIVERS\btath_rcp.sys --> C:\Windows\system32\DRIVERS\btath_rcp.sys [?]
    R3 BtFilter;BtFilter;C:\Windows\system32\DRIVERS\btfilter.sys --> C:\Windows\system32\DRIVERS\btfilter.sys [?]
    R3 hidflt;Elan HID/USB SmartPad Driver;C:\Windows\system32\DRIVERS\ETDUSB.sys --> C:\Windows\system32\DRIVERS\ETDUSB.sys [?]
    R3 Lavasoft Kernexplorer;Lavasoft helper driver;C:\Program Files (x86)\Lavasoft\Ad-Aware\kernexplorer64.sys [2011-5-30 17152]
    R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\system32\DRIVERS\LEqdUsb.Sys --> C:\Windows\system32\DRIVERS\LEqdUsb.Sys [?]
    R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\system32\DRIVERS\LHidEqd.Sys --> C:\Windows\system32\DRIVERS\LHidEqd.Sys [?]
    R3 LVUSBS64;Logitech USB Monitor Filter;C:\Windows\system32\drivers\LVUSBS64.sys --> C:\Windows\system32\drivers\LVUSBS64.sys [?]
    R3 MEIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
    R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
    R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
    R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]
    R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
    R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
    R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
    R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S3 ATHDFU;Atheros Valkyrie USB BootROM;C:\Windows\system32\Drivers\AthDfu.sys --> C:\Windows\system32\Drivers\AthDfu.sys [?]
    S3 libusb0;libusb-win32 - Kernel Driver, Version 1.2.4.0;C:\Windows\System32\drivers\libusb0.sys [2011-11-23 21504]
    S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;C:\Windows\system32\DRIVERS\netr28x.sys --> C:\Windows\system32\DRIVERS\netr28x.sys [?]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
    S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
    S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam64.sys --> C:\Windows\system32\DRIVERS\wdcsam64.sys [?]
    .
    =============== Created Last 30 ================
    .
    2012-01-28 00:53:02 69000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{35C95DAA-9D74-43A8-8EBF-7B406F9445FF}\offreg.dll
    2012-01-28 00:48:44 917840 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FC7B562F-7606-470F-8597-EA993BE7C822}\gapaengine.dll
    2012-01-28 00:44:41 8602168 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{35C95DAA-9D74-43A8-8EBF-7B406F9445FF}\mpengine.dll
    2012-01-28 00:42:06 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
    2012-01-28 00:42:04 -------- d-----w- C:\Program Files\Microsoft Security Client
    2012-01-27 15:53:15 1584640 ----a-w- C:\Windows\System32\drivers\athrx.sys
    2012-01-27 15:53:15 1584640 ----a-w- C:\Windows\System32\athrx.sys
    2012-01-27 15:53:15 -------- d-----w- C:\Windows\Options
    2012-01-27 15:52:54 -------- d-----w- C:\ProgramData\TP-LINK
    2012-01-27 14:06:44 8602168 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FA8E5225-8F28-4BE5-9589-0FAE55718030}\mpengine.dll
    2012-01-25 01:20:09 -------- d-----w- C:\Users\IP\AppData\Roaming\Dropbox
    2012-01-23 12:28:37 626688 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcr80.dll
    2012-01-23 12:28:37 548864 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcp80.dll
    2012-01-23 12:28:37 479232 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcm80.dll
    2012-01-23 12:28:37 43992 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozutils.dll
    2012-01-11 11:15:07 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll
    2012-01-11 11:15:07 366592 ----a-w- C:\Windows\System32\qdvd.dll
    2012-01-11 11:15:07 1572864 ----a-w- C:\Windows\System32\quartz.dll
    2012-01-11 11:15:07 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll
    2012-01-11 11:15:05 1731920 ----a-w- C:\Windows\System32\ntdll.dll
    2012-01-11 11:15:05 1292080 ----a-w- C:\Windows\SysWow64\ntdll.dll
    2012-01-11 11:15:04 77312 ----a-w- C:\Windows\System32\packager.dll
    2012-01-11 11:15:04 67072 ----a-w- C:\Windows\SysWow64\packager.dll
    2012-01-01 13:17:13 -------- d-----w- C:\Program Files\iTunes
    2012-01-01 13:17:13 -------- d-----w- C:\Program Files\iPod
    2012-01-01 13:15:59 -------- d-----w- C:\Program Files\Bonjour
    2012-01-01 13:15:59 -------- d-----w- C:\Program Files (x86)\Bonjour
    .
    ==================== Find3M ====================
    .
    2011-12-13 12:34:55 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys
    2011-12-10 15:24:08 23152 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2011-12-07 10:39:10 279096 ------w- C:\Windows\System32\MpSigStub.exe
    2011-11-28 18:01:25 41184 ----a-w- C:\Windows\avastSS.scr
    2011-11-28 17:54:06 591192 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
    2011-11-28 17:52:11 66904 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
    2011-11-26 16:00:44 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-11-24 04:52:09 3145216 ----a-w- C:\Windows\System32\win32k.sys
    2011-11-24 00:16:36 16432 ----a-w- C:\Windows\System32\lsdelete.exe
    2011-11-23 17:37:48 43520 ----a-w- C:\Windows\System32\libusb0.dll
    2011-11-23 17:37:48 37376 ----a-w- C:\Windows\SysWow64\libusb0.dll
    2011-11-23 17:37:48 29184 ----a-w- C:\Windows\System32\drivers\libusb0.sys
    2011-11-23 17:37:48 21504 ----a-w- C:\Windows\SysWow64\drivers\libusb0.sys
    2011-11-17 06:49:14 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
    2011-11-17 06:49:14 152432 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
    2011-11-17 06:44:43 459232 ----a-w- C:\Windows\System32\drivers\cng.sys
    2011-11-17 06:35:28 395776 ----a-w- C:\Windows\System32\webio.dll
    2011-11-17 06:35:26 29184 ----a-w- C:\Windows\System32\sspisrv.dll
    2011-11-17 06:35:26 136192 ----a-w- C:\Windows\System32\sspicli.dll
    2011-11-17 06:35:25 340992 ----a-w- C:\Windows\System32\schannel.dll
    2011-11-17 06:35:25 28160 ----a-w- C:\Windows\System32\secur32.dll
    2011-11-17 06:35:19 1447936 ----a-w- C:\Windows\System32\lsasrv.dll
    2011-11-17 06:33:55 31232 ----a-w- C:\Windows\System32\lsass.exe
    2011-11-17 05:35:02 314880 ----a-w- C:\Windows\SysWow64\webio.dll
    2011-11-17 05:34:52 224768 ----a-w- C:\Windows\SysWow64\schannel.dll
    2011-11-17 05:34:52 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
    2011-11-17 05:28:48 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
    2011-11-16 03:02:03 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll
    2011-11-16 03:02:03 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll
    2011-11-05 05:32:50 2048 ----a-w- C:\Windows\System32\tzres.dll
    2011-11-05 04:26:03 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
    2011-11-04 01:53:39 2309120 ----a-w- C:\Windows\System32\jscript9.dll
    2011-11-04 01:44:47 1390080 ----a-w- C:\Windows\System32\wininet.dll
    2011-11-04 01:44:21 1493504 ----a-w- C:\Windows\System32\inetcpl.cpl
    2011-11-04 01:34:43 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
    2011-11-03 22:47:42 1798144 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2011-11-03 22:40:21 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2011-11-03 22:39:47 1127424 ----a-w- C:\Windows\SysWow64\wininet.dll
    2011-11-03 22:31:57 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    .
    ============= FINISH: 14:42:45.20 ===============





    Lots of data - and not much I understand!!!!
  2. Broni

    Broni Malware Annihilator Posts: 46,321   +252

    Welcome aboard [​IMG]

    Please, observe following rules:
    • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
    • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
    • Please refrain from running tools or applying updates other than those I suggest.
    • Never run more than one scan at a time.
    • Keep updating me regarding your computer behavior, good, or bad.
    • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
    • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
    • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

    ============================================================

    I still need Attach.txt part of DDS.

    You're running 3 AV programs, Lavasoft Ad-Watch Live! Anti-Virus, Avast and MSE.
    You must uninstall TWO of them.
    I suggest Lavasoft is one of them.
  3. IanP

    IanP Newcomer, in training Topic Starter

    Hi Broni! Thanks for the welcome.

    I hope I've attached the DDS this time :/

    Ian

    Attached Files:

    • DDS.txt
      File size:
      7.4 KB
      Views:
      0
  4. Broni

    Broni Malware Annihilator Posts: 46,321   +252

    [​IMG]

    All logs have to be pasted not attached.

    Did you uninstall two AV programs?
  5. IanP

    IanP Newcomer, in training Topic Starter

    Hi, I didn't uninstall... I disabled Avast. Is this right???? :/


    This is the other DDS result.

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-08-26.01)
    .
    Microsoft Windows 7 Home Premium
    Boot Device: \Device\HarddiskVolume2
    Install Date: 27/05/2011 02:21:07
    System Uptime: 28/01/2012 08:12:48 (6 hours ago)
    .
    Motherboard: ASUSTeK Computer INC. | | P8P67
    Processor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz | LGA1155 | 3301/100mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 60 GiB total, 12.432 GiB free.
    D: is CDROM (CDFS)
    E: is FIXED (NTFS) - 68 GiB total, 41.21 GiB free.
    F: is FIXED (NTFS) - 15 GiB total, 5.809 GiB free.
    G: is FIXED (NTFS) - 215 GiB total, 2.408 GiB free.
    H: is Removable
    I: is FIXED (NTFS) - 75 GiB total, 26.109 GiB free.
    W: is FIXED (NTFS) - 466 GiB total, 306.591 GiB free.
    X: is FIXED (NTFS) - 233 GiB total, 205.562 GiB free.
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    RP110: 27/01/2012 14:05:31 - Windows Update
    RP111: 27/01/2012 15:53:36 - Device Driver Package Install: TP-LINK Network adapters
    RP112: 27/01/2012 22:47:49 - Windows Update
    .
    ==== Installed Programs ======================
    .
    Update for Microsoft Office 2007 (KB2508958)
    Ad-Aware
    Ad-Aware Security Toolbar
    Adobe Shockwave Player 11.5
    Amazon Kindle
    Any Video Converter 3.2.3
    Apple Application Support
    Apple Software Update
    avast! Free Antivirus
    D3DX10
    Dragon NaturallySpeaking 11
    Dropbox
    eReg
    ESET Online Scanner v3
    FlvDownloader
    Google Chrome
    Gygan
    HxD Hex Editor version 1.7.7.0
    iLivid
    Intel(R) Management Engine Components
    Java Auto Updater
    Java(TM) 6 Update 29
    Kobo
    Malwarebytes Anti-Malware version 1.60.0.1800
    marvell 91xx driver
    MediaWidget 6.0
    Medieval II Total War
    Microsoft .NET Framework 1.1
    Microsoft Office 2007 Service Pack 3 (SP3)
    Microsoft Office Access MUI (English) 2007
    Microsoft Office Access Setup Metadata MUI (English) 2007
    Microsoft Office Enterprise 2007
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office File Validation Add-In
    Microsoft Office Groove MUI (English) 2007
    Microsoft Office Groove Setup Metadata MUI (English) 2007
    Microsoft Office InfoPath MUI (English) 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office Outlook MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
    Microsoft Office Publisher MUI (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual J# .NET Redistributable Package 1.1
    Mozilla Firefox 9.0.1 (x86 en-GB)
    MP3 Skype Recorder
    MSVCRT
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    MusicBee
    Orbit Downloader
    Pidgin
    QuickTime
    RadarSync PC Updater 2011 (driver updates & patches)
    RealNetworks - Microsoft Visual C++ 2008 Runtime
    RealPlayer
    Realtek Ethernet Controller Driver
    Realtek High Definition Audio Driver
    RealUpgrade 1.1
    Renesas Electronics USB 3.0 Host Controller Driver
    Rome - Total War - Gold Edition
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
    Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
    Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
    Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
    Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition
    Sid Meier's Civilization 4 Complete
    Skype Click to Call
    Skype™ 5.5
    Spotify
    TP-LINK Wireless Client Utility
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft Office 2007 Help for Common Features (KB963673)
    Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
    Update for Microsoft Office 2007 suites (KB2596686) 32-Bit Edition
    Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
    Update for Microsoft Office Access 2007 Help (KB963663)
    Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
    Update for Microsoft Office Excel 2007 Help (KB963678)
    Update for Microsoft Office Infopath 2007 Help (KB963662)
    Update for Microsoft Office OneNote 2007 Help (KB963670)
    Update for Microsoft Office Outlook 2007 Help (KB963677)
    Update for Microsoft Office Powerpoint 2007 Help (KB963669)
    Update for Microsoft Office Publisher 2007 Help (KB963667)
    Update for Microsoft Office Script Editor Help (KB963671)
    Update for Microsoft Office Word 2007 Help (KB963665)
    VLC media player 1.1.11
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Installer
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Media Player Firefox Plugin
    WinX DVD Ripper 5.0.0
    X2X Free Video Trim 2.0
    YouTube Downloader 3.4
    YouTube Downloader Toolbar v4.7
    .
    ==== Event Viewer Messages From Past Week ========
    .
    28/01/2012 08:33:45, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk4\DR4.
    27/01/2012 23:58:08, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wuauserv service.
    27/01/2012 23:57:38, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Appinfo service.
    27/01/2012 23:57:17, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WSearch service.
    27/01/2012 23:56:47, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanmanServer service.
    27/01/2012 23:56:17, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avast! Antivirus service.
    27/01/2012 14:04:41, Error: Microsoft-Windows-DistributedCOM [10016] - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID {9BA05972-F6A8-11CF-A442-00A0C90A8F39} and APPID {9BA05972-F6A8-11CF-A442-00A0C90A8F39} to the user Gold\IP SID (S-1-5-21-2894996668-511279994-1279267973-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
    .
    ==== End Of File ===========================
  6. Broni

    Broni Malware Annihilator Posts: 46,321   +252

    [​IMG]

  7. IanP

    IanP Newcomer, in training Topic Starter

    Hi!!

    I've uninstalled 3 copies - yes THREE copies of Lavasoft Ad-Aware and one copy of the associated tool bar (that I did not know I had)

    I've also uninstalled Avast - I installed MSE today.

    What else am I doing wrong?

    THANKS!!!!
  8. Broni

    Broni Malware Annihilator Posts: 46,321   +252

    Good.

    Download aswMBR to your desktop.
    Double click the aswMBR.exe to run it.
    If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
    Click the "Scan" button to start scan.
    On completion of the scan click "Save log", save it to your desktop and post in your next reply.

    NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

    =============================================================

    Download Bootkit Remover to your Desktop.

    • Unzip downloaded file to your Desktop.
    • Double-click on boot_cleaner.exe to run the program (Vista/7 users,right click on boot_cleaner.exe and click Run As Administrator).
    • It will show a Black screen with some data on it.
    • Right click on the screen and click Select All.
    • Press CTRL+C
    • Open a Notepad and press CTRL+V
    • Post the output back here.
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.