Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Antivirus/Anti Malware Page cannot be displayed in IE


  • This topic is locked This topic is locked
2 replies to this topic

#1 joetoml1n

joetoml1n

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:10:32 PM

Posted 23 July 2013 - 08:51 AM

When searching for Antivirus/Anti Malware and following the link to a page (for exmplae comodo or AVG) in IE i get a page cannot be displayed.

Same when trying to load Java web page to download.

 

MSE and Malware Bytes found nothing - same with avast ( I managed to download it on another laptop)

 

 

DDS.txt:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16635
Run by Download at 14:41:19 on 2013-07-23
Microsoft Windows 7 Professional   6.1.7601.1.1252.44.1033.18.3994.2937 [GMT 1:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\No-IP\ducservice.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\igfxpers.exe
C:\Program Files\PeerBlock\peerblock.exe
C:\Program Files (x86)\No-IP\DUC40.exe
C:\Users\Download\AppData\Roaming\uTorrent\uTorrent.exe
C:\Software\WOSB\wosb.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\system32\UI0Detect.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\LogonUI.exe
C:\Windows\system32\rdpclip.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.co.uk/
uRun: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe
uRun: [NoIPDUCv4] "C:\Program Files (x86)\No-IP\DUC40.exe" /minimize
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [uTorrent] "C:\Users\Download\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
uRun: [WOSB] "C:\Software\WOSB\wosb.exe" /run /systray dt="23/07/2013" tm="12:00:00" standbywait="12:0:0" /psbh weekdays="Sun+Mon+Tue+Wed+Thur+Fri+Sat" /ast kv="1" vID="1"
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{72CBE2F4-90B4-4FA6-B5E8-111E0877AD4F} : DHCPNameServer = 192.168.0.1
SSODL: WebCheck - <orphaned>
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-7-23 65336]
R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-7-23 189936]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-7-23 1030952]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-7-23 378944]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-7-9 283064]
R1 dwvkbd;DameWare Virtual Keyboard 64 bit Driver;C:\Windows\System32\drivers\dwvkbd64.sys [2007-2-15 30720]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-7-23 33400]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-7-23 80816]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-7-23 46808]
R2 NoIPDUCService4;NO-IP DUC v4;C:\Program Files (x86)\No-IP\ducservice.exe [2013-1-24 11264]
R3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;C:\Windows\System32\drivers\e1k62x64.sys [2009-11-6 293552]
R3 pbfilter;pbfilter;C:\Program Files\PeerBlock\pbfilter.sys [2013-7-9 24176]
S2 PS3 Media Server;PS3 Media Server;C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-5-17 366872]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-7-23 19456]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-7-23 57856]
.
=============== Created Last 30 ================
.
2013-07-23 13:38:08    --------    d-sh--w-    C:\$RECYCLE.BIN
2013-07-23 13:25:03    98816    ----a-w-    C:\Windows\sed.exe
2013-07-23 13:25:03    256000    ----a-w-    C:\Windows\PEV.exe
2013-07-23 13:25:03    208896    ----a-w-    C:\Windows\MBR.exe
2013-07-23 12:57:34    9552976    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-07-23 12:57:23    9460976    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7BB297E0-9630-4497-A47E-AF4FED2C0F0F}\mpengine.dll
2013-07-23 12:57:15    9460976    ------w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Updates\mpengine.dll
2013-07-23 12:36:25    72016    ----a-w-    C:\Windows\System32\drivers\aswRdr2.sys
2013-07-23 12:36:24    1030952    ----a-w-    C:\Windows\System32\drivers\aswSnx.sys
2013-07-23 12:36:23    189936    ----a-w-    C:\Windows\System32\drivers\aswVmm.sys
2013-07-23 12:36:21    65336    ----a-w-    C:\Windows\System32\drivers\aswRvrt.sys
2013-07-23 12:36:16    80816    ----a-w-    C:\Windows\System32\drivers\aswMonFlt.sys
2013-07-23 12:35:02    --------    d-----w-    C:\Program Files (x86)\FileASSASSIN
2013-07-23 12:34:37    41664    ----a-w-    C:\Windows\avastSS.scr
2013-07-23 12:34:25    --------    d-----w-    C:\Program Files\AVAST Software
2013-07-23 12:33:19    --------    d-----w-    C:\ProgramData\AVAST Software
2013-07-23 12:25:40    --------    d-----w-    C:\Users\Download\AppData\Local\ElevatedDiagnostics
2013-07-23 11:40:12    9728    ----a-w-    C:\Windows\System32\Wdfres.dll
2013-07-23 11:40:12    785512    ----a-w-    C:\Windows\System32\drivers\Wdf01000.sys
2013-07-23 11:40:12    54376    ----a-w-    C:\Windows\System32\drivers\WdfLdr.sys
2013-07-23 11:40:12    2560    ----a-w-    C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2013-07-23 11:35:28    3072    ----a-w-    C:\Windows\System32\drivers\en-US\tsusbflt.sys.mui
2013-07-23 11:33:45    87040    ----a-w-    C:\Windows\System32\drivers\WUDFPf.sys
2013-07-23 11:33:45    84992    ----a-w-    C:\Windows\System32\WUDFSvc.dll
2013-07-23 11:33:45    198656    ----a-w-    C:\Windows\System32\drivers\WUDFRd.sys
2013-07-23 11:33:45    194048    ----a-w-    C:\Windows\System32\WUDFPlatform.dll
2013-07-23 11:33:44    744448    ----a-w-    C:\Windows\System32\WUDFx.dll
2013-07-23 11:33:44    45056    ----a-w-    C:\Windows\System32\WUDFCoinstaller.dll
2013-07-23 11:33:44    229888    ----a-w-    C:\Windows\System32\WUDFHost.exe
2013-07-23 11:30:34    96768    ----a-w-    C:\Windows\System32\fsutil.exe
2013-07-23 11:28:13    --------    d-----w-    C:\Windows\System32\appmgmt
2013-07-11 21:51:48    294912    ----a-w-    C:\Windows\System32\browserchoice.exe
2013-07-11 21:49:48    34304    ----a-w-    C:\Windows\SysWow64\atmlib.dll
2013-07-11 21:49:47    70656    ----a-w-    C:\Windows\SysWow64\fontsub.dll
2013-07-11 21:49:47    46080    ----a-w-    C:\Windows\System32\atmlib.dll
2013-07-11 21:49:47    367616    ----a-w-    C:\Windows\System32\atmfd.dll
2013-07-11 21:49:47    295424    ----a-w-    C:\Windows\SysWow64\atmfd.dll
2013-07-11 21:49:47    100864    ----a-w-    C:\Windows\System32\fontsub.dll
2013-07-11 21:48:11    81408    ----a-w-    C:\Windows\System32\imagehlp.dll
2013-07-11 21:48:11    5120    ----a-w-    C:\Windows\SysWow64\wmi.dll
2013-07-11 21:48:11    5120    ----a-w-    C:\Windows\System32\wmi.dll
2013-07-11 21:48:11    23408    ----a-w-    C:\Windows\System32\drivers\fs_rec.sys
2013-07-11 21:48:11    159232    ----a-w-    C:\Windows\SysWow64\imagehlp.dll
2013-07-11 18:38:43    --------    d--h--w-    C:\Windows\System32\dwrcssft
2013-07-11 18:38:16    67584    ----a-w-    C:\Windows\SysWow64\DWRCSh64.dll
2013-07-11 18:38:15    85528    ----a-w-    C:\Windows\SysWow64\DWRCST.EXE
2013-07-11 18:38:15    59928    ----a-w-    C:\Windows\SysWow64\DWRCK.DLL
2013-07-11 18:38:15    241688    ----a-w-    C:\Windows\SysWow64\DWRCS.EXE
2013-07-11 18:38:15    240152    ----a-w-    C:\Windows\SysWow64\DWRCSET.DLL
2013-07-11 17:30:09    48640    ----a-w-    C:\Windows\System32\wwanprotdim.dll
2013-07-11 17:30:09    230400    ----a-w-    C:\Windows\System32\wwansvc.dll
2013-07-11 17:30:04    1930752    ----a-w-    C:\Windows\System32\authui.dll
2013-07-11 17:30:03    70144    ----a-w-    C:\Windows\System32\appinfo.dll
2013-07-11 17:30:03    1796096    ----a-w-    C:\Windows\SysWow64\authui.dll
2013-07-11 17:30:03    111448    ----a-w-    C:\Windows\System32\consent.exe
2013-07-11 17:29:54    340992    ----a-w-    C:\Windows\System32\schannel.dll
2013-07-11 17:29:53    96768    ----a-w-    C:\Windows\SysWow64\sspicli.dll
2013-07-11 17:29:53    458712    ----a-w-    C:\Windows\System32\drivers\cng.sys
2013-07-11 17:29:53    247808    ----a-w-    C:\Windows\SysWow64\schannel.dll
2013-07-11 17:29:53    22016    ----a-w-    C:\Windows\SysWow64\secur32.dll
2013-07-11 17:29:53    154480    ----a-w-    C:\Windows\System32\drivers\ksecpkg.sys
2013-07-11 17:29:53    1448448    ----a-w-    C:\Windows\System32\lsasrv.dll
2013-07-11 17:27:50    514560    ----a-w-    C:\Windows\SysWow64\qdvd.dll
2013-07-11 17:21:16    1887232    ----a-w-    C:\Windows\System32\d3d11.dll
2013-07-11 17:21:16    1505280    ----a-w-    C:\Windows\SysWow64\d3d11.dll
2013-07-10 19:46:27    --------    d-----w-    C:\Windows\System32\SPReview
2013-07-10 19:46:11    --------    d-----w-    C:\Windows\System32\EventProviders
2013-07-10 19:28:59    3207680    ----a-w-    C:\Windows\SysWow64\mf.dll
2013-07-10 19:27:59    98304    ----a-w-    C:\Program Files\Common Files\System\msadc\msadcs.dll
2013-07-10 19:26:59    98304    ----a-w-    C:\Windows\SysWow64\nslookup.exe
2013-07-10 19:25:37    363008    ----a-w-    C:\Windows\SysWow64\wbemcomn.dll
2013-07-10 19:25:37    189952    ----a-w-    C:\Program Files (x86)\Windows Portable Devices\sqmapi.dll
2013-07-10 19:25:36    606208    ----a-w-    C:\Windows\SysWow64\wbem\fastprox.dll
2013-07-10 19:22:52    529408    ----a-w-    C:\Windows\System32\wbemcomn.dll
2013-07-10 19:22:52    244736    ----a-w-    C:\Program Files\Windows Portable Devices\sqmapi.dll
2013-07-10 19:22:40    244736    ----a-w-    C:\Windows\System32\sqmapi.dll
2013-07-10 03:09:23    --------    d-----w-    C:\Windows\Panther
2013-07-10 03:08:59    --------    d-----w-    C:\Windows\System32\oem
2013-07-09 19:18:41    --------    d-----w-    C:\Intel
2013-07-09 19:14:23    --------    d-----w-    C:\ProgramData\Vitalwerks
2013-07-09 19:06:02    215040    ----a-w-    C:\Windows\System32\winsrv.dll
2013-07-09 19:06:01    7680    ----a-w-    C:\Windows\SysWow64\instnm.exe
2013-07-09 19:06:01    5120    ----a-w-    C:\Windows\SysWow64\wow32.dll
2013-07-09 19:06:01    25600    ----a-w-    C:\Windows\SysWow64\setup16.exe
2013-07-09 19:06:01    2048    ----a-w-    C:\Windows\SysWow64\user.exe
2013-07-09 19:06:01    14336    ----a-w-    C:\Windows\SysWow64\ntvdm64.dll
2013-07-09 19:05:59    278800    ------w-    C:\Windows\System32\MpSigStub.exe
2013-07-09 19:05:58    19968    ----a-w-    C:\Windows\System32\drivers\usb8023.sys
2013-07-09 19:05:52    --------    d-----w-    C:\Program Files\CCleaner
2013-07-09 19:05:16    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll
2013-07-09 19:05:16    2048    ----a-w-    C:\Windows\System32\tzres.dll
2013-07-09 19:03:52    64512    ----a-w-    C:\Windows\SysWow64\devobj.dll
2013-07-09 19:02:57    1731920    ----a-w-    C:\Windows\System32\ntdll.dll
2013-07-09 19:01:33    --------    d-----w-    C:\Program Files (x86)\VideoLAN
2013-07-09 19:00:59    2048    ----a-w-    C:\Windows\SysWow64\msxml3r.dll
2013-07-09 18:59:51    33792    ----a-w-    C:\Windows\System32\profprov.dll
2013-07-09 18:58:59    634880    ----a-w-    C:\Windows\System32\msvcrt.dll
2013-07-09 18:57:23    283064    ----a-w-    C:\Windows\System32\drivers\dtsoftbus01.sys
2013-07-09 18:57:20    --------    d-----w-    C:\Users\Download\AppData\Roaming\DAEMON Tools Lite
2013-07-09 18:57:16    --------    d-----w-    C:\Program Files (x86)\DAEMON Tools Lite
2013-07-09 18:56:55    --------    d-----w-    C:\ProgramData\DAEMON Tools Lite
2013-07-09 18:51:53    --------    d-----w-    C:\Users\Download\AppData\Local\Vitalwerks
2013-07-09 18:51:44    --------    d-----w-    C:\Program Files (x86)\No-IP
2013-07-09 18:50:40    --------    d-----w-    C:\Program Files\PeerBlock
2013-07-09 18:49:12    867240    ----a-w-    C:\Windows\SysWow64\npDeployJava1.dll
2013-07-09 18:49:12    789416    ----a-w-    C:\Windows\SysWow64\deployJava1.dll
2013-07-09 18:48:44    --------    d-sh--w-    C:\Windows\Installer
2013-07-09 18:48:02    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-09 18:48:02    692104    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2013-07-09 18:47:41    --------    d-----w-    C:\ProgramData\PMS
2013-07-09 18:47:35    --------    d-----w-    C:\Program Files (x86)\PS3 Media Server
2013-07-09 18:47:34    --------    d-----w-    C:\Users\Download\AppData\Local\Adobe
2013-07-09 18:41:32    77312    ----a-w-    C:\Windows\System32\packager.dll
2013-07-09 18:41:32    67072    ----a-w-    C:\Windows\SysWow64\packager.dll
2013-07-09 18:40:41    --------    d-----w-    C:\Software
2013-07-09 18:37:28    84992    ----a-w-    C:\Windows\System32\Spool\prtprocs\x64\CNBPP4.DLL
2013-07-09 18:27:45    2622464    ----a-w-    C:\Windows\System32\wucltux.dll
2013-07-09 18:27:39    99840    ----a-w-    C:\Windows\System32\wudriver.dll
2013-07-09 18:27:33    36864    ----a-w-    C:\Windows\System32\wuapp.exe
2013-07-09 18:27:33    186752    ----a-w-    C:\Windows\System32\wuwebv.dll
2013-07-09 18:22:28    --------    d-----w-    C:\Windows\pss
2013-07-09 18:20:06    --------    d-----w-    C:\Backup
.
==================== Find3M  ====================
.
2013-07-10 21:05:21    152576    ----a-w-    C:\Windows\SysWow64\msclmd.dll
2013-07-10 21:05:20    175616    ----a-w-    C:\Windows\System32\msclmd.dll
2013-06-05 03:34:27    3153920    ----a-w-    C:\Windows\System32\win32k.sys
2013-06-04 06:00:13    624128    ----a-w-    C:\Windows\System32\qedit.dll
2013-06-04 04:53:07    509440    ----a-w-    C:\Windows\SysWow64\qedit.dll
2013-05-13 05:51:01    184320    ----a-w-    C:\Windows\System32\cryptsvc.dll
2013-05-13 05:51:00    1464320    ----a-w-    C:\Windows\System32\crypt32.dll
2013-05-13 05:51:00    139776    ----a-w-    C:\Windows\System32\cryptnet.dll
2013-05-13 05:50:40    52224    ----a-w-    C:\Windows\System32\certenc.dll
2013-05-13 04:45:55    140288    ----a-w-    C:\Windows\SysWow64\cryptsvc.dll
2013-05-13 04:45:55    1160192    ----a-w-    C:\Windows\SysWow64\crypt32.dll
2013-05-13 04:45:55    103936    ----a-w-    C:\Windows\SysWow64\cryptnet.dll
2013-05-13 03:43:55    1192448    ----a-w-    C:\Windows\System32\certutil.exe
2013-05-13 03:08:10    903168    ----a-w-    C:\Windows\SysWow64\certutil.exe
2013-05-13 03:08:06    43008    ----a-w-    C:\Windows\SysWow64\certenc.dll
2013-05-10 05:49:27    30720    ----a-w-    C:\Windows\System32\cryptdlg.dll
2013-05-10 03:20:54    24576    ----a-w-    C:\Windows\SysWow64\cryptdlg.dll
2013-05-08 06:39:01    1910632    ----a-w-    C:\Windows\System32\drivers\tcpip.sys
2013-05-06 06:03:49    1887744    ----a-w-    C:\Windows\System32\WMVDECOD.DLL
2013-05-06 04:56:35    1620480    ----a-w-    C:\Windows\SysWow64\WMVDECOD.DLL
2013-04-26 05:51:36    751104    ----a-w-    C:\Windows\System32\win32spl.dll
2013-04-26 04:55:21    492544    ----a-w-    C:\Windows\SysWow64\win32spl.dll
.
============= FINISH: 14:42:10.06 ===============
 

 

 

combofix.txt:

ComboFix 13-07-22.01 - Download 23/07/2013  14:25:45.1.2 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.44.1033.18.3994.2899 [GMT 1:00]
Running from: G:\ComboFix.exe
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Download\Desktop\Internet Explorer.lnk
.
.
(((((((((((((((((((((((((   Files Created from 2013-06-23 to 2013-07-23  )))))))))))))))))))))))))))))))
.
.
2013-07-23 13:29 . 2013-07-23 13:29    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-07-23 12:57 . 2013-07-02 08:34    9460976    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{7BB297E0-9630-4497-A47E-AF4FED2C0F0F}\mpengine.dll
2013-07-23 12:36 . 2013-05-09 08:59    33400    ----a-w-    c:\windows\system32\drivers\aswFsBlk.sys
2013-07-23 12:36 . 2013-07-23 12:36    378944    ----a-w-    c:\windows\system32\drivers\aswSP.sys
2013-07-23 12:36 . 2013-05-09 08:59    72016    ----a-w-    c:\windows\system32\drivers\aswRdr2.sys
2013-07-23 12:36 . 2013-07-23 12:36    1030952    ----a-w-    c:\windows\system32\drivers\aswSnx.sys
2013-07-23 12:36 . 2013-05-09 08:59    64288    ----a-w-    c:\windows\system32\drivers\aswTdi.sys
2013-07-23 12:36 . 2013-07-23 12:36    189936    ----a-w-    c:\windows\system32\drivers\aswVmm.sys
2013-07-23 12:36 . 2013-05-09 08:59    65336    ----a-w-    c:\windows\system32\drivers\aswRvrt.sys
2013-07-23 12:36 . 2013-05-09 08:59    80816    ----a-w-    c:\windows\system32\drivers\aswMonFlt.sys
2013-07-23 12:36 . 2013-05-09 08:58    287840    ----a-w-    c:\windows\system32\aswBoot.exe
2013-07-23 12:35 . 2013-07-23 12:35    --------    d-----w-    c:\program files (x86)\FileASSASSIN
2013-07-23 12:34 . 2013-05-09 08:58    41664    ----a-w-    c:\windows\avastSS.scr
2013-07-23 12:34 . 2013-07-23 12:34    --------    d-----w-    c:\program files\AVAST Software
2013-07-23 12:33 . 2013-07-23 12:34    --------    d-----w-    c:\programdata\AVAST Software
2013-07-23 11:40 . 2012-07-26 04:55    785512    ----a-w-    c:\windows\system32\drivers\Wdf01000.sys
2013-07-23 11:40 . 2012-07-26 04:55    54376    ----a-w-    c:\windows\system32\drivers\WdfLdr.sys
2013-07-23 11:40 . 2012-07-26 04:47    2560    ----a-w-    c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2013-07-23 11:40 . 2012-07-26 02:36    9728    ----a-w-    c:\windows\system32\Wdfres.dll
2013-07-23 11:35 . 2012-08-23 15:09    3072    ----a-w-    c:\windows\system32\drivers\en-US\tsusbflt.sys.mui
2013-07-23 11:33 . 2012-07-26 03:08    84992    ----a-w-    c:\windows\system32\WUDFSvc.dll
2013-07-23 11:33 . 2012-07-26 03:08    194048    ----a-w-    c:\windows\system32\WUDFPlatform.dll
2013-07-23 11:33 . 2012-07-26 02:26    87040    ----a-w-    c:\windows\system32\drivers\WUDFPf.sys
2013-07-23 11:33 . 2012-07-26 02:26    198656    ----a-w-    c:\windows\system32\drivers\WUDFRd.sys
2013-07-23 11:33 . 2012-07-26 03:08    229888    ----a-w-    c:\windows\system32\WUDFHost.exe
2013-07-23 11:33 . 2012-07-26 03:08    744448    ----a-w-    c:\windows\system32\WUDFx.dll
2013-07-23 11:33 . 2012-07-26 03:08    45056    ----a-w-    c:\windows\system32\WUDFCoinstaller.dll
2013-07-23 11:30 . 2011-03-11 06:33    2565632    ----a-w-    c:\windows\system32\esent.dll
2013-07-23 11:28 . 2013-07-23 11:28    --------    d-----w-    c:\windows\system32\appmgmt
2013-07-16 12:09 . 2013-07-16 12:09    --------    d-----w-    c:\windows\Sun
2013-07-11 21:51 . 2010-02-23 08:16    294912    ----a-w-    c:\windows\system32\browserchoice.exe
2013-07-11 21:49 . 2012-12-16 14:13    34304    ----a-w-    c:\windows\SysWow64\atmlib.dll
2013-07-11 21:49 . 2012-12-16 17:11    46080    ----a-w-    c:\windows\system32\atmlib.dll
2013-07-11 21:49 . 2012-12-16 14:45    367616    ----a-w-    c:\windows\system32\atmfd.dll
2013-07-11 21:49 . 2012-12-16 14:13    295424    ----a-w-    c:\windows\SysWow64\atmfd.dll
2013-07-11 21:49 . 2010-09-30 10:41    100864    ----a-w-    c:\windows\system32\fontsub.dll
2013-07-11 21:49 . 2010-09-30 06:47    70656    ----a-w-    c:\windows\SysWow64\fontsub.dll
2013-07-11 21:48 . 2012-03-01 06:46    23408    ----a-w-    c:\windows\system32\drivers\fs_rec.sys
2013-07-11 21:48 . 2012-03-01 06:33    81408    ----a-w-    c:\windows\system32\imagehlp.dll
2013-07-11 21:48 . 2012-03-01 06:28    5120    ----a-w-    c:\windows\system32\wmi.dll
2013-07-11 21:48 . 2012-03-01 05:33    159232    ----a-w-    c:\windows\SysWow64\imagehlp.dll
2013-07-11 21:48 . 2012-03-01 05:29    5120    ----a-w-    c:\windows\SysWow64\wmi.dll
2013-07-11 18:38 . 2013-07-11 18:41    --------    d--h--w-    c:\windows\system32\dwrcssft
2013-07-11 18:38 . 2010-04-06 13:47    67584    ----a-w-    c:\windows\SysWow64\DWRCSh64.dll
2013-07-11 18:38 . 2010-04-07 10:12    85528    ----a-w-    c:\windows\SysWow64\DWRCST.EXE
2013-07-11 18:38 . 2010-04-07 10:12    240152    ----a-w-    c:\windows\SysWow64\DWRCSET.DLL
2013-07-11 18:38 . 2010-04-07 10:12    241688    ----a-w-    c:\windows\SysWow64\DWRCS.EXE
2013-07-11 18:38 . 2010-04-07 10:11    59928    ----a-w-    c:\windows\SysWow64\DWRCK.DLL
2013-07-11 17:30 . 2013-03-19 05:53    48640    ----a-w-    c:\windows\system32\wwanprotdim.dll
2013-07-11 17:30 . 2013-03-19 05:53    230400    ----a-w-    c:\windows\system32\wwansvc.dll
2013-07-11 17:30 . 2013-02-27 05:52    14172672    ----a-w-    c:\windows\system32\shell32.dll
2013-07-11 17:30 . 2013-02-27 05:48    1930752    ----a-w-    c:\windows\system32\authui.dll
2013-07-11 17:30 . 2013-02-27 06:02    111448    ----a-w-    c:\windows\system32\consent.exe
2013-07-11 17:30 . 2013-02-27 05:52    197120    ----a-w-    c:\windows\system32\shdocvw.dll
2013-07-11 17:30 . 2013-02-27 05:47    70144    ----a-w-    c:\windows\system32\appinfo.dll
2013-07-11 17:30 . 2013-02-27 04:49    1796096    ----a-w-    c:\windows\SysWow64\authui.dll
2013-07-11 17:29 . 2012-08-24 18:05    340992    ----a-w-    c:\windows\system32\schannel.dll
2013-07-11 17:29 . 2012-08-24 18:13    154480    ----a-w-    c:\windows\system32\drivers\ksecpkg.sys
2013-07-11 17:29 . 2012-08-24 18:09    458712    ----a-w-    c:\windows\system32\drivers\cng.sys
2013-07-11 17:29 . 2012-08-24 18:03    1448448    ----a-w-    c:\windows\system32\lsasrv.dll
2013-07-11 17:29 . 2012-08-24 16:57    247808    ----a-w-    c:\windows\SysWow64\schannel.dll
2013-07-11 17:29 . 2012-08-24 16:57    22016    ----a-w-    c:\windows\SysWow64\secur32.dll
2013-07-11 17:29 . 2012-08-24 16:53    96768    ----a-w-    c:\windows\SysWow64\sspicli.dll
2013-07-11 17:27 . 2012-05-04 11:00    366592    ----a-w-    c:\windows\system32\qdvd.dll
2013-07-11 17:21 . 2013-04-25 23:30    1505280    ----a-w-    c:\windows\SysWow64\d3d11.dll
2013-07-11 17:21 . 2013-03-31 22:52    1887232    ----a-w-    c:\windows\system32\d3d11.dll
2013-07-10 19:46 . 2013-07-10 19:46    --------    d-----w-    c:\windows\system32\SPReview
2013-07-10 19:46 . 2013-07-10 19:46    --------    d-----w-    c:\windows\system32\EventProviders
2013-07-10 19:28 . 2010-11-20 13:27    1646080    ----a-w-    c:\windows\system32\wevtsvc.dll
2013-07-10 19:27 . 2010-11-20 13:27    462336    ----a-w-    c:\windows\system32\wiadefui.dll
2013-07-10 19:26 . 2010-11-20 13:27    132608    ----a-w-    c:\windows\system32\wmpshell.dll
2013-07-10 19:25 . 2010-11-20 12:21    363008    ----a-w-    c:\windows\SysWow64\wbemcomn.dll
2013-07-10 19:25 . 2010-11-20 12:21    189952    ----a-w-    c:\program files (x86)\Windows Portable Devices\sqmapi.dll
2013-07-10 19:25 . 2010-11-20 12:19    606208    ----a-w-    c:\windows\SysWow64\wbem\fastprox.dll
2013-07-10 19:22 . 2010-11-20 13:27    529408    ----a-w-    c:\windows\system32\wbemcomn.dll
2013-07-10 19:22 . 2010-11-20 13:27    244736    ----a-w-    c:\program files\Windows Portable Devices\sqmapi.dll
2013-07-10 19:22 . 2010-11-20 13:27    244736    ----a-w-    c:\windows\system32\sqmapi.dll
2013-07-10 03:09 . 2013-07-23 12:22    --------    d-----w-    c:\windows\Panther
2013-07-10 03:08 . 2013-07-10 03:08    --------    d-----w-    c:\windows\system32\oem
2013-07-09 20:06 . 2013-07-10 20:51    --------    d-----w-    c:\program files\Microsoft Silverlight
2013-07-09 20:06 . 2013-07-10 20:51    --------    d-----w-    c:\program files (x86)\Microsoft Silverlight
2013-07-09 19:18 . 2013-07-09 19:18    --------    d-----w-    c:\program files (x86)\Intel
2013-07-09 19:18 . 2013-07-09 19:18    --------    d-----w-    C:\Intel
2013-07-09 19:14 . 2013-07-09 19:14    --------    d-----w-    c:\programdata\Vitalwerks
2013-07-09 19:06 . 2013-01-04 05:46    215040    ----a-w-    c:\windows\system32\winsrv.dll
2013-07-09 19:06 . 2013-01-04 04:51    5120    ----a-w-    c:\windows\SysWow64\wow32.dll
2013-07-09 19:06 . 2013-01-04 02:47    25600    ----a-w-    c:\windows\SysWow64\setup16.exe
2013-07-09 19:06 . 2013-01-04 02:47    7680    ----a-w-    c:\windows\SysWow64\instnm.exe
2013-07-09 19:06 . 2013-01-04 02:47    2048    ----a-w-    c:\windows\SysWow64\user.exe
2013-07-09 19:06 . 2013-01-04 02:47    14336    ----a-w-    c:\windows\SysWow64\ntvdm64.dll
2013-07-09 19:05 . 2013-05-02 01:06    278800    ------w-    c:\windows\system32\MpSigStub.exe
2013-07-09 19:05 . 2013-02-12 04:12    19968    ----a-w-    c:\windows\system32\drivers\usb8023.sys
2013-07-09 19:05 . 2013-07-09 19:05    --------    d-----w-    c:\program files\CCleaner
2013-07-09 19:05 . 2012-11-09 05:45    2048    ----a-w-    c:\windows\system32\tzres.dll
2013-07-09 19:05 . 2012-11-09 04:42    2048    ----a-w-    c:\windows\SysWow64\tzres.dll
2013-07-09 19:03 . 2011-05-24 11:42    404480    ----a-w-    c:\windows\system32\umpnpmgr.dll
2013-07-09 19:02 . 2011-11-17 06:41    1731920    ----a-w-    c:\windows\system32\ntdll.dll
2013-07-09 19:01 . 2013-07-09 19:01    --------    d-----w-    c:\program files (x86)\VideoLAN
2013-07-09 19:00 . 2012-11-01 04:47    1389568    ----a-w-    c:\windows\SysWow64\msxml6.dll
2013-07-09 18:59 . 2012-05-01 05:40    209920    ----a-w-    c:\windows\system32\profsvc.dll
2013-07-09 18:58 . 2011-12-16 08:46    634880    ----a-w-    c:\windows\system32\msvcrt.dll
2013-07-09 18:57 . 2013-07-09 18:57    283064    ----a-w-    c:\windows\system32\drivers\dtsoftbus01.sys
2013-07-09 18:57 . 2013-07-09 18:57    --------    d-----w-    c:\program files (x86)\DAEMON Tools Lite
2013-07-09 18:56 . 2013-07-09 18:57    --------    d-----w-    c:\programdata\DAEMON Tools Lite
2013-07-09 18:51 . 2013-07-09 18:51    --------    d-----w-    c:\program files (x86)\No-IP
2013-07-09 18:50 . 2013-07-23 13:29    --------    d-----w-    c:\program files\PeerBlock
2013-07-09 18:49 . 2013-07-09 18:49    867240    ----a-w-    c:\windows\SysWow64\npDeployJava1.dll
2013-07-09 18:49 . 2013-07-09 18:49    789416    ----a-w-    c:\windows\SysWow64\deployJava1.dll
2013-07-09 18:48 . 2013-07-23 12:36    --------    d-sh--w-    c:\windows\Installer
2013-07-09 18:48 . 2013-07-09 18:48    --------    d-----w-    c:\programdata\McAfee
2013-07-09 18:48 . 2013-07-09 18:48    71048    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-09 18:48 . 2013-07-09 18:48    692104    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2013-07-09 18:48 . 2013-07-09 18:48    --------    d-----w-    c:\windows\SysWow64\Macromed
2013-07-09 18:47 . 2013-07-09 18:47    --------    d-----w-    c:\windows\system32\Macromed
2013-07-09 18:47 . 2013-07-09 19:01    --------    d-----w-    c:\programdata\PMS
2013-07-09 18:47 . 2013-07-23 11:20    --------    d-----w-    c:\program files (x86)\PS3 Media Server
2013-07-09 18:41 . 2011-11-19 14:58    77312    ----a-w-    c:\windows\system32\packager.dll
2013-07-09 18:41 . 2011-11-19 14:01    67072    ----a-w-    c:\windows\SysWow64\packager.dll
2013-07-09 18:40 . 2013-07-23 13:03    --------    d-----w-    C:\Software
2013-07-09 18:37 . 2013-07-09 18:37    --------    d--h--w-    c:\programdata\CanonBJ
2013-07-09 18:37 . 2009-07-14 01:40    84992    ----a-w-    c:\windows\system32\Spool\prtprocs\x64\CNBPP4.DLL
2013-07-09 18:27 . 2012-06-02 22:19    2428952    ----a-w-    c:\windows\system32\wuaueng.dll
2013-07-09 18:27 . 2012-06-02 22:19    57880    ----a-w-    c:\windows\system32\wuauclt.exe
2013-07-09 18:27 . 2012-06-02 22:19    44056    ----a-w-    c:\windows\system32\wups2.dll
2013-07-09 18:27 . 2012-06-02 22:15    2622464    ----a-w-    c:\windows\system32\wucltux.dll
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-10 21:05 . 2009-07-14 02:36    152576    ----a-w-    c:\windows\SysWow64\msclmd.dll
2013-07-10 21:05 . 2009-07-14 02:36    175616    ----a-w-    c:\windows\system32\msclmd.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PeerBlock"="c:\program files\PeerBlock\peerblock.exe" [2010-11-06 2646128]
"NoIPDUCv4"="c:\program files (x86)\No-IP\DUC40.exe" [2013-01-24 270336]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-07-03 3673184]
"uTorrent"="c:\users\Download\AppData\Roaming\uTorrent\uTorrent.exe" [2013-07-09 1126480]
"WOSB2"="c:\software\WOSB\wosb.exe" [2013-06-29 2063408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 PS3 Media Server;PS3 Media Server;c:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe;c:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 dwvkbd;DameWare Virtual Keyboard 64 bit Driver;c:\windows\system32\DRIVERS\dwvkbd64.sys;c:\windows\SYSNATIVE\DRIVERS\dwvkbd64.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 NoIPDUCService4;NO-IP DUC v4;c:\program files (x86)\No-IP\ducservice.exe;c:\program files (x86)\No-IP\ducservice.exe [x]
S3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1k62x64.sys [x]
S3 pbfilter;pbfilter;c:\program files\PeerBlock\pbfilter.sys;c:\program files\PeerBlock\pbfilter.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - ASWRDR
*NewlyCreated* - ASWRVRT
*NewlyCreated* - ASWSNX
*NewlyCreated* - PBFILTER
.
Contents of the 'Scheduled Tasks' folder
.
2013-07-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-09 18:48]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58    133840    ----a-w-    c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 417304]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.co.uk/
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: java.com\www
TCP: DhcpNameServer = 192.168.0.1
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-07-23  14:30:47
ComboFix-quarantined-files.txt  2013-07-23 13:30
.
Pre-Run: 220,310,687,744 bytes free
Post-Run: 219,951,931,392 bytes free
.
- - End Of File - - 7824C330C58CF76B2250E253F60D0EE9
A36C5E4F47E84449FF07ED3517B43A31
 

Attached Files


Edited by joetoml1n, 23 July 2013 - 10:35 AM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 40,502 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:32 PM

Posted 25 July 2013 - 08:41 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Click the StartBtn.gif button. In the Search box, type Command Prompt, and then, in the list of results, double-click Command Prompt.

at the cursor type:
ipconfig /flushdns <-- (A space between g and / is needed)

repeat with
ipconfig /renew

Then hit Enter, type Exit, hit the Enter key.

You may need to run CMD - Command Prompt on Vista - Windows 7/8 with Elevated Privilege
http://www.mydigitallife.info/2007/02/17/how-to-open-elevated-command-prompt-with-administrator-privileges-in-windows-vista/
<<<>>>

If the problem persists try this:

Open Internet Explorer tools menu > Internet Options > Advanced tab.
Reset the Internet Setting - Click the Reset button.
Click the Apply button if required.
Restart the Computer normally.

How is it now

p.s.
Can you get to the pages in Safe Mode and select with Internet Connectiviry?

How to boot to Safe Mode, Vista - Windows 7
http://www.computerhope.com/issues/chsafe.htm#03

#3 nasdaq

nasdaq

  • Malware Response Team
  • 40,502 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:32 PM

Posted 01 August 2013 - 08:14 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users