Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

An add-on for this website failed to run


  • This topic is locked This topic is locked
3 replies to this topic

#1 cueball119

cueball119

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 10 August 2013 - 04:50 AM

After a week of cleaning up my Acer Aspire E1 w/Win8 began constantly giving this error. It did not interfere with anything but was a pain. I tried disabling ALL add-ons without help. I ran numerous diags and malware programs. I finally found and ran ComboFix. Not only did the problem go away but I was again able to use Windows Live from the desktop instead of using Metro.

Here is the log

======================================================================

ComboFix 13-08-07.01 - Kirk 2013-08-08   6:28.1.4 - x64
Microsoft Windows 8  6.2.9200.0.1252.2.1033.18.8007.6137 [GMT -6:00]
Running from: c:\users\Kirk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0Z696EV2\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Lavasoft Ad-Aware *Disabled/Updated* {E0D97DD4-42BA-B3F2-A5A7-22E9ACE81FC7}
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Lavasoft Ad-Aware *Disabled* {D8E2FCF1-08D5-B2AA-8EF8-8BDC523B58BC}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Lavasoft Ad-Aware *Disabled/Updated* {5BB89C30-6480-BC7C-9F17-199BD76F557A}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Resident AV is active
.
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\program files (x86)\DefaultTab
c:\program files (x86)\DefaultTab\DefaultTab.crx
c:\program files (x86)\DefaultTab\DefaultTabSearch.exe
c:\program files (x86)\DefaultTab\uid
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\addon.ico
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\amazon_ie.ico
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.cfg
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabStart.exe
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabStart64.exe
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabUninstaller.exe
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabWrap.dll
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabWrap64.dll
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DT.ico
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\ebay_ie.ico
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\facebook_ie.ico
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\search_here_ie.ico
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\searchhere.ico
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\twitter_ie.ico
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\uninstalldt.exe
c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\wikipedia_ie.ico
F:\resycled
I:\autorun.inf
I:\install.exe
I:\setup.exe
.
.
(((((((((((((((((((((((((((((((((((((((   Drivers/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_DefaultTabSearch
-------\Legacy_DefaultTabUpdate
-------\Legacy_DefaultTabUpdate
-------\Service_DefaultTabUpdate
-------\Service_DefaultTabUpdate
.
.
(((((((((((((((((((((((((   Files Created from 2013-07-08 to 2013-08-08  )))))))))))))))))))))))))))))))
.
.
2013-08-08 12:12 . 2013-08-08 12:12 -------- d-----w- c:\program files\Defraggler
2013-08-08 12:08 . 2013-08-08 12:08 -------- d-----w- c:\program files\Recuva
2013-08-08 11:57 . 2013-08-08 11:57 -------- d-----w- c:\windows\ServiceProfiles\LocalService\winhttp
2013-08-08 11:32 . 2013-08-08 11:32 -------- d-----w- C:\Temp
2013-08-07 12:44 . 2013-08-07 12:41 1169609 ----a-w- c:\windows\unins000.exe
2013-08-07 12:44 . 2013-08-07 12:44 -------- d-----w- c:\program files (x86)\vGrabber-software
2013-08-07 12:30 . 2013-08-07 12:30 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-08-07 12:30 . 2013-08-07 12:30 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-08-07 12:30 . 2013-08-07 12:30 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-08-07 12:30 . 2013-08-07 12:30 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-08-07 12:30 . 2013-08-07 12:30 -------- d-----w- c:\program files (x86)\Java
2013-08-07 12:25 . 2013-08-07 12:25 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2013-08-07 03:42 . 2013-08-07 03:42 -------- d-----w- c:\program files (x86)\BillP Studios
2013-08-07 03:42 . 2013-08-07 03:42 -------- d-----w- c:\programdata\InstallMate
2013-08-07 02:45 . 2013-08-07 02:45 171 ----a-w- c:\windows\DeleteOnReboot.bat
2013-08-06 07:51 . 2013-01-16 22:02 2079816 ----a-w- c:\windows\RtlExUpd.dll
2013-08-06 07:47 . 2013-08-06 07:48 -------- d-----r- c:\program files (x86)\Skype
2013-08-06 07:47 . 2013-08-06 07:47 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-08-06 07:33 . 2013-08-06 07:35 -------- d-----w- c:\program files (x86)\LibreOffice 4
2013-08-06 03:10 . 2013-08-06 03:10 -------- d-----w- c:\program files\Windows Live
2013-08-06 03:10 . 2013-08-06 03:10 -------- d-----w- c:\windows\PCHEALTH
2013-08-06 03:09 . 2013-08-06 03:11 -------- d-----w- c:\program files (x86)\Windows Live
2013-08-06 03:04 . 2013-08-06 03:04 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2013-08-06 01:19 . 2013-08-06 01:22 -------- d-----w- c:\programdata\Ad-Aware Antivirus
2013-08-05 23:48 . 2013-08-05 23:48 -------- d-----w- c:\programdata\Lavasoft
2013-08-05 23:48 . 2013-08-06 01:19 -------- d-----w- c:\program files (x86)\Ad-Aware Antivirus
2013-08-05 23:48 . 2013-08-05 23:48 -------- d-----w- c:\programdata\Downloaded Installations
2013-08-05 23:47 . 2013-08-05 23:47 -------- d-----w- c:\programdata\Ad-Aware Browsing Protection
2013-08-05 23:47 . 2013-08-05 23:47 -------- d-----w- c:\program files (x86)\Toolbar Cleaner
2013-08-05 23:47 . 2013-08-05 23:47 -------- d-----w- c:\program files (x86)\Lavasoft
2013-08-05 23:43 . 2013-08-05 23:43 47496 ----a-w- c:\windows\system32\sbbd.exe
2013-08-05 23:43 . 2013-08-05 23:43 14456 ----a-w- c:\windows\system32\drivers\gfibto.sys
2013-08-05 23:23 . 2013-08-05 23:43 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-08-05 23:22 . 2009-01-25 19:14 17272 ----a-w- c:\windows\system32\sdnclean64.exe
2013-08-05 23:22 . 2013-08-05 23:23 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
2013-08-05 22:29 . 2013-08-05 22:29 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2013-08-05 22:29 . 2013-08-08 10:05 -------- d-----w- c:\programdata\Spyware Terminator
2013-08-05 22:23 . 2013-08-05 22:29 -------- d-----w- c:\program files (x86)\Spyware Terminator
2013-08-05 22:04 . 2013-08-05 22:04 1152 ----a-w- c:\windows\SysWow64\windrv.sys
2013-08-05 22:00 . 2013-08-05 22:01 -------- d-----w- c:\windows\system32\MRT
2013-08-05 21:05 . 2013-08-05 21:05 -------- d-----w- c:\programdata\VS Revo Group
2013-08-05 21:05 . 2009-12-30 17:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
2013-08-05 21:04 . 2013-08-05 21:04 -------- d-----w- c:\program files\VS Revo Group
2013-08-05 02:49 . 2013-08-05 02:59 -------- d-----w- c:\program files (x86)\SeeSimilar02
2013-08-05 02:49 . 2013-08-05 02:49 -------- d-----w- c:\program files (x86)\Video Performer
2013-08-04 12:18 . 2013-08-08 12:56 16152 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2013-08-04 12:17 . 2013-08-04 12:17 -------- d-----w- c:\program files (x86)\DriverUpdate
2013-08-04 11:10 . 2013-08-04 11:10 -------- d-----r- C:\Sandbox
2013-08-04 10:57 . 2013-08-04 10:57 -------- d-----w- c:\program files\Sandboxie
2013-08-04 10:26 . 2013-08-04 10:26 5402320 ----a-w- c:\programdata\pclunst.exe
2013-08-04 10:26 . 2013-08-04 10:26 -------- d-----w- c:\programdata\PC1Data
2013-08-03 23:49 . 2013-08-03 23:49 -------- d-----w- c:\program files\Google
2013-08-03 23:49 . 2013-08-03 23:49 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-08-03 23:49 . 2013-05-09 08:59 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-08-03 23:49 . 2013-05-09 08:59 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-08-03 23:49 . 2013-05-09 08:59 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-08-03 23:49 . 2013-08-03 23:49 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-08-03 23:49 . 2013-08-03 23:49 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-08-03 23:49 . 2013-05-09 08:59 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-08-03 23:49 . 2013-05-09 08:59 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-08-03 23:49 . 2013-05-09 08:58 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-08-03 23:47 . 2013-05-09 08:58 41664 ----a-w- c:\windows\avastSS.scr
2013-08-03 23:46 . 2013-08-03 23:46 -------- d-----w- c:\program files\AVAST Software
2013-08-03 23:45 . 2013-08-03 23:46 -------- d-----w- c:\programdata\AVAST Software
2013-08-03 23:26 . 2009-07-24 00:32 274432 ----a-w- c:\windows\SysWow64\ssleay32.dll
2013-08-03 23:26 . 2009-07-24 00:32 1122304 ----a-w- c:\windows\SysWow64\libeay32.dll
2013-08-03 23:26 . 2012-12-10 17:04 81920 ----a-w- c:\windows\eSellerateControl350.dll
2013-08-03 23:26 . 2012-12-10 17:04 356352 ----a-w- c:\windows\eSellerateEngine.dll
2013-08-03 23:26 . 2013-08-04 10:46 -------- d-----w- c:\program files (x86)\Monstermarketplace Cookie Removal Tool
2013-08-03 23:24 . 2010-09-20 11:00 88576 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPPAM.DLL
2013-08-03 23:24 . 2010-09-20 11:00 29696 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPDAM.DLL
2013-08-03 23:24 . 2010-09-20 11:00 374784 ----a-w- c:\windows\system32\CNMLMAM.DLL
2013-08-03 23:24 . 2010-10-21 11:00 302080 ----a-w- c:\windows\system32\CNCALAM.DLL
2013-08-03 16:31 . 2013-08-03 16:35 -------- d-----w- c:\program files\CCleaner
2013-08-03 16:13 . 2013-04-18 02:20 26432 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2013-08-03 03:54 . 2013-08-06 02:55 -------- d-----w- C:\Downloads
2013-08-03 03:51 . 2013-08-08 11:59 -------- d-----w- c:\program files (x86)\Free Download Manager
2013-08-03 03:22 . 2013-08-03 03:22 -------- d-----w- c:\programdata\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-08-03 03:22 . 2013-08-03 03:22 -------- d-----w- c:\programdata\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
2013-08-02 12:33 . 2013-08-02 12:33 -------- d-----w- c:\programdata\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-08-02 12:33 . 2013-08-02 12:33 -------- d-----w- c:\programdata\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F}
2013-08-02 12:33 . 2013-08-02 12:33 -------- d-----w- C:\IObit
2013-08-02 12:33 . 2013-08-03 03:17 -------- d-----w- c:\programdata\IObit
2013-08-02 12:33 . 2013-08-03 03:55 -------- d-----w- c:\program files (x86)\IObit
2013-08-01 23:34 . 2013-08-01 23:34 -------- d-----w- c:\programdata\Malwarebytes
2013-08-01 23:34 . 2013-08-01 23:34 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-08-01 23:34 . 2013-04-04 20:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-08-01 13:01 . 2009-12-30 19:21 65536 ----a-w- c:\windows\SysWow64\LxrSII1s.exe
2013-08-01 13:01 . 2009-12-30 16:32 63064 ----a-w- c:\windows\system32\drivers\LxrSII1d.sys
2013-08-01 13:01 . 2009-12-30 19:21 140288 ----a-w- c:\windows\SysWow64\LxrSII1.dll
2013-08-01 12:27 . 2013-08-01 12:27 -------- d-----w- c:\programdata\PC Drivers HeadQuarters
2013-08-01 12:26 . 2013-08-01 12:26 -------- d-----w- c:\program files (x86)\PC Drivers HeadQuarters
2013-08-01 11:53 . 2012-10-12 06:13 109568 ----a-w- c:\windows\system32\dskquota.dll
2013-08-01 11:53 . 2012-10-12 05:39 82944 ----a-w- c:\windows\SysWow64\dskquota.dll
2013-08-01 11:53 . 2012-10-24 04:54 396008 ----a-w- c:\windows\system32\hal.dll
2013-08-01 11:53 . 2012-10-17 04:32 1172992 ----a-w- c:\windows\system32\mfnetsrc.dll
2013-08-01 11:53 . 2012-10-17 04:32 677888 ----a-w- c:\windows\system32\mfnetcore.dll
2013-08-01 11:53 . 2012-10-17 04:32 673280 ----a-w- c:\windows\system32\mfmpeg2srcsnk.dll
2013-08-01 11:53 . 2012-10-17 03:57 929792 ----a-w- c:\windows\SysWow64\mfnetsrc.dll
2013-08-01 11:53 . 2012-10-17 03:57 568832 ----a-w- c:\windows\SysWow64\mfnetcore.dll
2013-08-01 11:53 . 2012-10-17 03:57 513024 ----a-w- c:\windows\SysWow64\mfmpeg2srcsnk.dll
2013-08-01 11:51 . 2012-10-11 05:24 275968 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipRes.dll
2013-08-01 11:51 . 2012-10-11 05:19 5632 ----a-w- c:\windows\system32\drivers\drmkaud.sys
2013-08-01 11:49 . 2012-11-08 04:22 641536 ----a-w- c:\windows\system32\WSShared.dll
2013-08-01 11:49 . 2012-11-08 04:25 523776 ----a-w- c:\windows\SysWow64\WSShared.dll
2013-08-01 11:49 . 2012-11-08 04:25 143872 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.dll
2013-08-01 11:49 . 2012-11-08 04:25 124928 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-08-01 11:49 . 2012-11-08 04:22 198656 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.dll
2013-08-01 11:49 . 2012-11-08 04:22 163840 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-08-01 11:48 . 2012-11-06 04:18 11459584 ----a-w- c:\windows\system32\glcndFilter.dll
2013-08-01 11:48 . 2012-11-06 04:19 8552448 ----a-w- c:\windows\SysWow64\glcndFilter.dll
2013-08-01 11:48 . 2012-11-06 04:19 710656 ----a-w- c:\windows\system32\winhttp.dll
2013-08-01 11:48 . 2012-11-06 07:33 1566432 ----a-w- c:\windows\system32\ole32.dll
2013-08-01 11:48 . 2012-11-06 04:18 976384 ----a-w- c:\windows\system32\KernelBase.dll
2013-08-01 11:48 . 2012-11-06 04:20 516608 ----a-w- c:\windows\SysWow64\winhttp.dll
2013-08-01 11:48 . 2012-11-06 04:18 1037312 ----a-w- c:\windows\system32\localspl.dll
2013-08-01 11:48 . 2012-11-06 04:48 1150160 ----a-w- c:\windows\SysWow64\ole32.dll
2013-08-01 11:48 . 2012-11-06 04:20 883712 ----a-w- c:\windows\HelpPane.exe
2013-08-01 11:48 . 2012-11-06 04:19 1386496 ----a-w- c:\windows\system32\wlansvc.dll
2013-08-01 11:46 . 2012-11-27 04:19 3245568 ----a-w- c:\windows\system32\rdpcorets.dll
2013-08-01 11:45 . 2012-11-27 04:19 245248 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2013-08-01 11:45 . 2012-11-27 04:18 378880 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2013-08-01 11:45 . 2012-09-11 05:28 23552 ----a-w- c:\windows\system32\vdsldr.exe
2013-08-01 11:45 . 2012-11-27 04:20 46592 ----a-w- c:\windows\SysWow64\vds_ps.dll
2013-08-01 11:45 . 2012-10-12 06:14 36352 ----a-w- c:\windows\system32\rfxvmt.dll
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-26 03:23 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-13 21:36 . 2013-05-13 21:36 828872 ----a-w- c:\windows\system32\msvcr110.dll
2013-05-13 21:36 . 2013-05-13 21:36 661448 ----a-w- c:\windows\system32\msvcp110.dll
2013-05-13 21:36 . 2013-05-13 21:36 354264 ----a-w- c:\windows\system32\vccorlib110.dll
2013-05-13 21:36 . 2013-05-13 21:36 251864 ----a-w- c:\windows\SysWow64\vccorlib110.dll
2013-05-13 21:36 . 2013-05-13 21:36 862664 ----a-w- c:\windows\SysWow64\msvcr110.dll
2013-05-13 21:36 . 2013-05-13 21:36 534480 ----a-w- c:\windows\SysWow64\msvcp110.dll
2013-05-13 21:36 . 2013-05-13 21:36 50864 ----a-w- c:\windows\system32\drivers\point64.sys
2013-05-13 21:36 . 2013-05-13 21:36 29312 ----a-w- c:\windows\system32\drivers\nuidfltr.sys
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Driver Manager"="c:\program files (x86)\Driver Manager\Driver Manager\DriverManager.exe" [2013-07-22 3978104]
"Driver Detective"="c:\program files (x86)\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe" [2013-07-22 3980696]
"Advanced SystemCare 6"="c:\program files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" [2013-04-19 491840]
"Free Download Manager"="c:\program files (x86)\Free Download Manager\fdm.exe" [2011-12-28 6875136]
"SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2013-07-08 759384]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-06-21 19875432]
"WinPatrol"="c:\program files (x86)\BillP Studios\WinPatrol\winpatrol.exe" [2013-07-15 436800]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"BakupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2012-08-23 533568]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2013-03-14 1532992]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" [2013-07-27 295512]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2013-07-25 5624784]
"Ad-Aware Browsing Protection"="c:\programdata\Ad-Aware Browsing Protection\adawarebp.exe" [2013-07-15 554384]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2012-07-26 62976]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
Acer Backup Manager Tray.lnk - c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe -h -k [2012-8-23 533568]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ    autocheck autochk *\0\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ad-Aware Service]
@="Ad-Aware Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
@="Service"
.
R0 mfeelamk;McAfee Inc. mfeelamk;c:\windows\system32\drivers\mfeelamk.sys;c:\windows\SYSNATIVE\drivers\mfeelamk.sys [x]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 DeviceFastLaneService;Device Fast-lane Service;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [x]
R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]
R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys;c:\windows\SYSNATIVE\drivers\HipShieldK.sys [x]
R3 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe;c:\progra~1\mcafee\msc\mcawfwk.exe [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys;c:\windows\SYSNATIVE\DRIVERS\SWDUMon.sys [x]
R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys;c:\windows\SYSNATIVE\drivers\gfibto.sys [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 MfeASKM;McAfee Application Statistics Device Driver;c:\program files\McAfee\AppStats\MfeASKM.sys;c:\program files\McAfee\AppStats\MfeASKM.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 Ad-Aware Service;Ad-Aware Service;c:\program files (x86)\Ad-Aware Antivirus\AdAwareService.exe;c:\program files (x86)\Ad-Aware Antivirus\AdAwareService.exe [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]
S2 LxrSII1d;Secure II Driver;c:\windows\System32\Drivers\LxrSII1d.sys;c:\windows\SYSNATIVE\Drivers\LxrSII1d.sys [x]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [x]
S2 MfeASUM;McAfee Application Statistics Service;c:\program files\McAfee\AppStats\MfeASUM.exe;c:\program files\McAfee\AppStats\MfeASUM.exe [x]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]
S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]
S2 RfButtonDriverService;Dritek RF Button Command Service;c:\windows\RfBtnSvc64.exe;c:\windows\RfBtnSvc64.exe [x]
S2 SBAMSvc;Ad-Aware;c:\program files (x86)\Ad-Aware Antivirus\SBAMSvc.exe;c:\program files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [x]
S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
S2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
S2 sp_rsdrv2;Spyware Terminator Driver Filter;c:\windows\system32\DRIVERS\stflt.sys;c:\windows\SYSNATIVE\DRIVERS\stflt.sys [x]
S2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files (x86)\Spyware Terminator\st_rsser64.exe;c:\program files (x86)\Spyware Terminator\st_rsser64.exe [x]
S2 StartMenuService;StartMenu8 Service;c:\program files (x86)\IObit\Start Menu 8\StartMenuServices.exe;c:\program files (x86)\IObit\Start Menu 8\StartMenuServices.exe [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S2 ZAtheros Wlan Agent;ZAtheros Wlan Agent;c:\program files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe;c:\program files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [x]
S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\System32\drivers\b57xdbd.sys;c:\windows\SYSNATIVE\drivers\b57xdbd.sys [x]
S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\System32\drivers\b57xdmp.sys;c:\windows\SYSNATIVE\drivers\b57xdmp.sys [x]
S3 bScsiMSa;bScsiMSa;c:\windows\System32\drivers\bScsiMSa.sys;c:\windows\SYSNATIVE\drivers\bScsiMSa.sys [x]
S3 bScsiSDa;bScsiSDa;c:\windows\System32\drivers\bScsiSDa.sys;c:\windows\SYSNATIVE\drivers\bScsiSDa.sys [x]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys;c:\windows\SYSNATIVE\DRIVERS\dc3d.sys [x]
S3 ePowerSvc;ePower Service;c:\program files\Acer\Acer Power Management\ePowerSvc.exe;c:\program files\Acer\Acer Power Management\ePowerSvc.exe [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys;c:\windows\SYSNATIVE\drivers\mferkdet.sys [x]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\System32\drivers\point64.sys;c:\windows\SYSNATIVE\drivers\point64.sys [x]
S3 Ps2Kb2Hid;PS/2 Keyboard to HID Driver;c:\windows\System32\drivers\aPs2Kb2Hid.sys;c:\windows\SYSNATIVE\drivers\aPs2Kb2Hid.sys [x]
S3 WSDScan;WSD Scan Support;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-08-01 23:30 1173456 ----a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-08-08 c:\windows\Tasks\DriverUpdate Startup.job
- c:\program files (x86)\DriverUpdate\DriverUpdate.exe [2013-06-22 21:30]
.
2013-08-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30 08:25]
.
2013-08-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30 08:25]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-08 398656]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]
"SpywareTerminatorShield"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe" [2013-04-03 2777736]
"SpywareTerminatorUpdater"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe" [2013-04-03 3684488]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mStart Page =
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Download all with Free Download Manager - file://c:\program files (x86)\Free Download Manager\dlall.htm
IE: Download selected with Free Download Manager - file://c:\program files (x86)\Free Download Manager\dlselected.htm
IE: Download video with Free Download Manager - file://c:\program files (x86)\Free Download Manager\dlfvideo.htm
IE: Download with Free Download Manager - file://c:\program files (x86)\Free Download Manager\dllink.htm
TCP: DhcpNameServer = 192.168.175.250 192.168.175.251
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{35853321-818D-4B5D-AA6B-6C56DBBFEEE7} - (no file)
BHO-{7F6AFBF1-E065-4627-A2FD-810366367D01} - c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-Softonic for Windows - c:\users\Kirk\AppData\Local\Softonic\Softonic.exe
Notify-SDWinLogon - SDWinLogon.dll
Toolbar-Locked - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
AddRemove-DefaultTab - c:\users\Kirk\AppData\Roaming\DefaultTab\DefaultTab\uninstalldt.exe
AddRemove-Softonic for Windows - c:\users\Kirk\AppData\Local\Softonic\Uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]
@Denied: (A) (Everyone)
"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Other Running Processes ------------------------
.
c:\windows\SysWOW64\LxrSII1s.exe
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
c:\program files (x86)\IObit\Start Menu 8\StartMenu8.exe
c:\program files (x86)\Launch Manager\LMutilps32.exe
c:\program files (x86)\Launch Manager\LManager.exe
c:\program files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Internet Explorer\IELowutil.exe
.
**************************************************************************
.
Completion time: 2013-08-08  07:00:13 - machine was rebooted
ComboFix-quarantined-files.txt  2013-08-08 13:00
.
Pre-Run: 927,279,669,248 bytes free
Post-Run: 927,072,825,344 bytes free
.
- - End Of File - - CC1DEC280A26511B56E5AB4346F5A0F2
D41D8CD98F00B204E9800998ECF8427E
==============================================================

It also uninstalled Softonic and EDTware (for the touchpad) but that was easy enough to reinstall.

At the request of Hamlus I ran DDS http://www.bleepingcomputer.com/forums/t/34773/preparation-guide-for-use-before-using-malware-removal-tools-and-requesting-help/

and here is the log from it

===================================================================

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 8
Boot Device: \Device\HarddiskVolume2
Install Date: 2013-07-25 9:25:14 PM
System Uptime: 2013-08-08 6:37:08 AM (45 hours ago)
.
Motherboard: Acer |  | EA50_HC_CR
Processor: Intel® Core™ i5-3210M CPU @ 2.50GHz | U3E1 | 2501/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 912 GiB total, 861.553 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 229 GiB total, 0.612 GiB free.
F: is FIXED (NTFS) - 8 GiB total, 3.508 GiB free.
G: is FIXED (NTFS) - 290 GiB total, 124.764 GiB free.
H: is FIXED (NTFS) - 75 GiB total, 74.764 GiB free.
I: is FIXED (NTFS) - 75 GiB total, 42.303 GiB free.
J: is FIXED (NTFS) - 255 GiB total, 254.198 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP7: 2013-08-03 10:14:22 AM - Windows Modules Installer
RP8: 2013-08-04 4:16:40 PM - Removed 7-Zip 9.21
RP9: 2013-08-05 9:06:02 PM - Windows Live Essentials
RP10: 2013-08-07 6:24:34 AM - Installed System Requirements Lab for Intel
.
==== Installed Programs ======================
.
7-Zip 9.22beta
Acer Backup Manager
Acer Device Fast-lane
Acer Power Management
Acer Recovery Management
Acer System Information
Advanced SystemCare 6
Agatha Christie - Death on the Nile
Aloha TriPeaks
avast! Free Antivirus
Backup Manager v4
Broadcom Card Reader Driver Installer
Canon MX360 series MP Drivers
Canon MX420 series MP Drivers
CCleaner
D3DX10
Defraggler
Dora's World Adventure
DriverUpdate
eBay Worldwide
ETDWare PS/2-X64 11.6.4.001_WHQL
File Opener Pro
Final Drive: Nitro
Free Download Manager 3.9.2
Glary Utilities PRO 3.8
Google Chrome
Google Update Helper
Identity Card
Intel® Management Engine Components
Intel® Processor Graphics
Intel® Rapid Storage Technology
Intel® SDK for OpenCL - CPU Only Runtime Package
Intel® Trusted Connect Service Client
IrfanView (remove only)
Java 7 Update 25
Java Auto Updater
Jewel Match 3
Junk Mail filter update
Launch Manager
LibreOffice 4.1.0.4
Live Updater
Malwarebytes Anti-Malware version 1.75.0.1300
McAfee Internet Security Suite
Microsoft Application Error Reporting
Microsoft Mouse and Keyboard Center
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Visual Studio 2005 Tools for Office Runtime
MSVCRT
MSVCRT_amd64
MSVCRT110
MSVCRT110_amd64
Mystery P.I. - Curious Case of Counterfeit Cove
MyWinLocker
MyWinLocker 4
MyWinLocker Suite
NTI Media Maker 9
Photo Common
Plants vs. Zombies - Game of the Year
Polar Bowler
Qualcomm Atheros WiFi Driver Installation
RealDownloader
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealNetworks - Microsoft Visual C++ 2010 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
Recuva
Revo Uninstaller Pro 3.0.5
Sandboxie 4.04 (64-bit)
Shared C Run-time for x64
Shredder
Skype Click to Call
Skype™ 6.6
Softonic for Windows
Speccy
Spybot - Search & Destroy
Spyware Terminator 2012
Start Menu 8
System Requirements Lab for Intel
Tales of Lagoona
TeamViewer 8
TreePad Business Edition 8.1
Update Installer for WildTangent Games App
Video Downloader
Video Downloader version 2.0
Video Performer
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio Tools for the Office system 3.0 Runtime
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258)
WildTangent Games
WildTangent Games App
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live MIME IFilter
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinPatrol
.
==== Event Viewer Messages From Past Week ========
.
2013-08-09 5:00:16 AM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the TeamViewer 8 service to connect.
2013-08-09 5:00:16 AM, Error: Service Control Manager [7000]  - The TeamViewer 8 service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
2013-08-09 1:41:33 AM, Error: Service Control Manager [7031]  - The avast! Antivirus service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.
2013-08-08 6:37:13 AM, Error: Microsoft-Windows-Kernel-General [6]  - An I/O operation initiated by the Registry failed unrecoverably.The Registry could not flush hive (file): ''.
2013-08-08 6:36:37 AM, Error: Service Control Manager [7030]  - The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
2013-08-08 6:35:27 AM, Error: Application Popup [1060]  -
2013-08-08 6:24:43 AM, Error: Service Control Manager [7031]  - The Spybot-S&D 2 Scanner Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
2013-08-08 6:23:13 AM, Error: Service Control Manager [7034]  - The McAfee SiteAdvisor Service service terminated unexpectedly.  It has done this 1 time(s).
2013-08-08 6:23:13 AM, Error: Service Control Manager [7031]  - The McAfee VirusScan Announcer service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
2013-08-08 6:23:13 AM, Error: Service Control Manager [7031]  - The McAfee Services service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
2013-08-08 6:23:13 AM, Error: Service Control Manager [7031]  - The McAfee Proxy Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
2013-08-08 6:23:13 AM, Error: Service Control Manager [7031]  - The McAfee Personal Firewall Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
2013-08-08 6:23:13 AM, Error: Service Control Manager [7031]  - The McAfee Network Agent service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
2013-08-08 6:23:13 AM, Error: Service Control Manager [7031]  - The McAfee Anti-Spam Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
2013-08-08 6:18:36 AM, Error: Service Control Manager [7034]  - The Skype C2C Service service terminated unexpectedly.  It has done this 1 time(s).
2013-08-08 6:18:36 AM, Error: Service Control Manager [7034]  - The DefaultTabUpdate service terminated unexpectedly.  It has done this 1 time(s).
2013-08-08 5:57:40 AM, Error: Service Control Manager [7034]  - The DefaultTabSearch service terminated unexpectedly.  It has done this 1 time(s).
2013-08-07 6:43:04 AM, Error: Service Control Manager [7030]  - The DefaultTabSearch service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
2013-08-07 3:56:59 PM, Error: Microsoft-Windows-Kernel-General [5]  - {Registry Hive Recovered} Registry hive (file): '\??\C:\Users\Kirk\AppData\Local\Microsoft\Windows\UsrClass.dat' was corrupted and it has been recovered. Some data might have been lost.
2013-08-06 8:33:37 PM, Error: Service Control Manager [7034]  - The McAfee McShield service terminated unexpectedly.  It has done this 1 time(s).
2013-08-06 1:19:40 AM, Error: Microsoft-Windows-DistributedCOM [10016]  - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {9BA05972-F6A8-11CF-A442-00A0C90A8F39}  and APPID  {9BA05972-F6A8-11CF-A442-00A0C90A8F39}  to the user Ace\Kirk SID (S-1-5-21-4199633789-1389527435-2673282036-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
2013-08-05 7:24:17 PM, Error: Service Control Manager [7031]  - The Updater Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
2013-08-03 7:13:04 PM, Error: Service Control Manager [7032]  - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error:  An instance of the service is already running.
2013-08-03 7:12:17 PM, Error: Service Control Manager [7031]  - The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
2013-08-03 7:10:21 PM, Error: volmgr [46]  - Crash dump initialization failed!
2013-08-03 7:10:03 PM, Error: Ntfs [137]  - The default transaction resource manager on volume G: encountered a non-retryable error and could not start.  The data contains the error code.
.
==== End Of File ===========================
In three days I have had one re-occurrence.

This site is amazing. It has been over 20 years since I have seen such a group.



BC AdBot (Login to Remove)

 


#2 cueball119

cueball119
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 10 August 2013 - 04:52 AM

PS I had also run Glary Utilities but I think it was the ComboxFix that did the job.



#3 nasdaq

nasdaq

  • Malware Response Team
  • 39,215 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:09:13 PM

Posted 14 August 2013 - 10:08 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete tab follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).
===

thisisujrt.gif Please download
Junkware Removal Tool to your Desktop.
  • Please close your security software to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete, depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
  • Please post the contents of JRT.txt into your reply.
===

Please download and run this DDS Scanning Tool. Nothing will be deleted. It will just give me some additional information about your system.

Download DDS by sUBs from one of the following links, if you no longer have it available. Save it to your desktop.

1: DDS.scr (Not recommended if you use Chrome to download this .scr file. Use the other options.)
2: DDS.pif
3: DDS.COM

Double click on the DDS icon, allow it to run.
A small box will open, with an explanation about the tool. No input is needed, the scan is running.
Notepad will open with the results.
Follow the instructions that pop up for posting the results.
Please note: You may have to disable any script protection running if the scan fails to run.

dds_scr.gif

Please just paste the contents of the DDS.txt log in your next post. DO NOT attach the log.
===

Third party programs if not up to date can be the cause of infiltration an infection.

Please restart the computer before running this security check.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

Please paste the logs in your next reply, DO NOT ATTACH THEM
Let me know what problem persists.

#4 nasdaq

nasdaq

  • Malware Response Team
  • 39,215 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:09:13 PM

Posted 20 August 2013 - 09:28 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users