Help got virus etc on laptop and no antivirus in place

an1179

Avira AntiVir Personal
Report file date: 23 February 2011 12:56

Scanning for 2426815 virus strains and unwanted programs.

The program is running as an unrestricted full version.
Online services are available:

Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows 7 x64
Windows version : (plain) [6.1.7600]
Boot mode : Normally booted
Username : SYSTEM
Computer name : NASHLAPTOP-PC

Version information:
BUILD.DAT : 10.0.0.611 31824 Bytes 14/01/2011 13:42:00
AVSCAN.EXE : 10.0.3.5 435368 Bytes 10/01/2011 14:23:31
AVSCAN.DLL : 10.0.3.0 46440 Bytes 01/04/2010 12:57:04
LUKE.DLL : 10.0.3.2 104296 Bytes 10/01/2011 14:23:40
LUKERES.DLL : 10.0.0.1 12648 Bytes 10/02/2010 23:40:49
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 09:05:36
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 14:23:50
VBASE002.VDF : 7.11.3.0 1950720 Bytes 09/02/2011 12:51:11
VBASE003.VDF : 7.11.3.1 2048 Bytes 09/02/2011 12:51:11
VBASE004.VDF : 7.11.3.2 2048 Bytes 09/02/2011 12:51:12
VBASE005.VDF : 7.11.3.3 2048 Bytes 09/02/2011 12:51:12
VBASE006.VDF : 7.11.3.4 2048 Bytes 09/02/2011 12:51:12
VBASE007.VDF : 7.11.3.5 2048 Bytes 09/02/2011 12:51:12
VBASE008.VDF : 7.11.3.6 2048 Bytes 09/02/2011 12:51:12
VBASE009.VDF : 7.11.3.7 2048 Bytes 09/02/2011 12:51:12
VBASE010.VDF : 7.11.3.8 2048 Bytes 09/02/2011 12:51:12
VBASE011.VDF : 7.11.3.9 2048 Bytes 09/02/2011 12:51:12
VBASE012.VDF : 7.11.3.10 2048 Bytes 09/02/2011 12:51:12
VBASE013.VDF : 7.11.3.59 157184 Bytes 14/02/2011 12:51:13
VBASE014.VDF : 7.11.3.97 120320 Bytes 16/02/2011 12:51:14
VBASE015.VDF : 7.11.3.148 128000 Bytes 19/02/2011 12:51:15
VBASE016.VDF : 7.11.3.183 140288 Bytes 22/02/2011 12:51:16
VBASE017.VDF : 7.11.3.184 2048 Bytes 22/02/2011 12:51:16
VBASE018.VDF : 7.11.3.185 2048 Bytes 22/02/2011 12:51:16
VBASE019.VDF : 7.11.3.186 2048 Bytes 22/02/2011 12:51:16
VBASE020.VDF : 7.11.3.187 2048 Bytes 22/02/2011 12:51:17
VBASE021.VDF : 7.11.3.188 2048 Bytes 22/02/2011 12:51:17
VBASE022.VDF : 7.11.3.189 2048 Bytes 22/02/2011 12:51:17
VBASE023.VDF : 7.11.3.190 2048 Bytes 22/02/2011 12:51:17
VBASE024.VDF : 7.11.3.191 2048 Bytes 22/02/2011 12:51:17
VBASE025.VDF : 7.11.3.192 2048 Bytes 22/02/2011 12:51:17
VBASE026.VDF : 7.11.3.193 2048 Bytes 22/02/2011 12:51:17
VBASE027.VDF : 7.11.3.194 2048 Bytes 22/02/2011 12:51:17
VBASE028.VDF : 7.11.3.195 2048 Bytes 22/02/2011 12:51:17
VBASE029.VDF : 7.11.3.196 2048 Bytes 22/02/2011 12:51:17
VBASE030.VDF : 7.11.3.197 2048 Bytes 22/02/2011 12:51:18
VBASE031.VDF : 7.11.3.203 23040 Bytes 23/02/2011 12:51:18
Engineversion : 8.2.4.170
AEVDF.DLL : 8.1.2.1 106868 Bytes 10/01/2011 14:23:26
AESCRIPT.DLL : 8.1.3.53 1282427 Bytes 23/02/2011 12:51:30
AESCN.DLL : 8.1.7.2 127349 Bytes 10/01/2011 14:23:26
AESBX.DLL : 8.1.3.2 254324 Bytes 10/01/2011 14:23:26
AERDL.DLL : 8.1.9.2 635252 Bytes 10/01/2011 14:23:25
AEPACK.DLL : 8.2.4.9 512374 Bytes 23/02/2011 12:51:29
AEOFFICE.DLL : 8.1.1.16 205179 Bytes 23/02/2011 12:51:28
AEHEUR.DLL : 8.1.2.78 3277175 Bytes 23/02/2011 12:51:28
AEHELP.DLL : 8.1.16.1 246134 Bytes 23/02/2011 12:51:22
AEGEN.DLL : 8.1.5.2 397683 Bytes 23/02/2011 12:51:21
AEEMU.DLL : 8.1.3.0 393589 Bytes 10/01/2011 14:23:18
AECORE.DLL : 8.1.19.2 196983 Bytes 23/02/2011 12:51:19
AEBB.DLL : 8.1.1.0 53618 Bytes 10/01/2011 14:23:18
AVWINLL.DLL : 10.0.0.0 19304 Bytes 10/01/2011 14:23:32
AVPREF.DLL : 10.0.0.0 44904 Bytes 10/01/2011 14:23:30
AVREP.DLL : 10.0.0.8 62209 Bytes 17/06/2010 14:27:13
AVREG.DLL : 10.0.3.2 53096 Bytes 10/01/2011 14:23:31
AVSCPLR.DLL : 10.0.3.2 84328 Bytes 10/01/2011 14:23:31
AVARKT.DLL : 10.0.22.6 231784 Bytes 10/01/2011 14:23:27
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 10/01/2011 14:23:28
SQLITE3.DLL : 3.6.19.0 355688 Bytes 17/06/2010 14:27:22
AVSMTP.DLL : 10.0.0.17 63848 Bytes 10/01/2011 14:23:31
NETNT.DLL : 10.0.0.0 11624 Bytes 17/06/2010 14:27:21
RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 28/01/2010 13:10:20
RCTEXT.DLL : 10.0.58.0 97128 Bytes 10/01/2011 14:23:52

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: C:\Program Files (x86)\Avira\AntiVir Desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, Q:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium

Start of the scan: 23 February 2011 12:56

Starting search for hidden objects.
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{00020D75-0000-0000-C000-000000000046}\ShellFolder\attributes
[NOTE] The registry entry is invisible.
C:\Program Files\Common Files\Microsoft Shared\Windows Live
C:\Program Files\Common Files\Microsoft Shared\Windows Live
[NOTE] The registry entry is invisible.
c:\program files\acer\acer epower management\setapm.exe
c:\program files\acer\acer epower management\setapm.exe
[NOTE] The process is not visible.

The scan of running processes will be started
Scan process 'avscan.exe' - '87' Module(s) have been scanned
Scan process 'avscan.exe' - '30' Module(s) have been scanned
Scan process 'avcenter.exe' - '103' Module(s) have been scanned
Scan process 'avgnt.exe' - '56' Module(s) have been scanned
Scan process 'sched.exe' - '50' Module(s) have been scanned
Scan process 'avguard.exe' - '68' Module(s) have been scanned
Scan process 'EgisUpdate.exe' - '44' Module(s) have been scanned
Scan process 'LMworker.exe' - '22' Module(s) have been scanned
Scan process 'communicator.exe' - '122' Module(s) have been scanned
Scan process 'LManager.exe' - '69' Module(s) have been scanned
Scan process 'BackupManagerTray.exe' - '41' Module(s) have been scanned
Scan process 'PmmUpdate.exe' - '31' Module(s) have been scanned
Scan process 'robotaskbaricon.exe' - '41' Module(s) have been scanned
Scan process 'Skype.exe' - '105' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '134' Module(s) have been scanned
Scan process 'PLFSetI.exe' - '42' Module(s) have been scanned
Scan process 'mwlDaemon.exe' - '70' Module(s) have been scanned
Scan process 'CVHSVC.EXE' - '97' Module(s) have been scanned
Scan process 'sftlist.exe' - '77' Module(s) have been scanned
Scan process 'UpdaterService.exe' - '23' Module(s) have been scanned
Scan process 'sftvsa.exe' - '28' Module(s) have been scanned
Scan process 'SeaPort.exe' - '50' Module(s) have been scanned
Scan process 'IScheduleSvc.exe' - '62' Module(s) have been scanned
Scan process 'GREGsvc.exe' - '11' Module(s) have been scanned
Scan process 'dsiwmis.exe' - '40' Module(s) have been scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'Q:\'
[INFO] No virus was found!
[INFO] Please restart the search with Administrator rights

Starting to scan executable files (registry).
The registry was scanned ( '96' files ).


Starting the file scan:

Begin scan in 'C:\' <Acer>
Begin scan in 'Q:\'
Search path Q:\ could not be opened!
System error [5]: Access is denied.


End of the scan: 23 February 2011 14:12
Used time: 1:15:36 Hour(s)

The scan has been done completely.

21223 Scanned directories
309169 Files were scanned
0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
0 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
309169 Files not concerned
2495 Archives were scanned
0 Warnings
0 Notes
500119 Objects were scanned with rootkit scan
3 Hidden objects were found

an1179

Malwarebytes' Anti-Malware 1.50.1.1100
https://www.malwarebytes.org

Database version: 5838

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

23/02/2011 15:13:07
mbam-log-2011-02-23 (15-13-07).txt

Scan type: Full scan (C:\|)
Objects scanned: 256581
Time elapsed: 32 minute(s), 52 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Browntoa

its looking good , wait for AlienRik to give the all clear on the combofix

aliEnRIK

Looks clean to me

(I was suprised combofix ran. they must have updated combofix to run on 64bit systems)

an1179

:j:beer: Thank you for all your help every one :beer::j

misstechnophobe

Can someone please help me?? I have the exact same problem with my laptop. I turned it on this morning and got the same message that was originally posted.

After reading through all your posts, I have tried the suggestions, but nothing is happening.

I downloaded Malware, Rkkill onto a usb stick frommy main computer, and transferred it to laptop but it is not letting me run any of them. When I try to run Rkkill it comes up briefly with a small black box then goes again.

Please help me, as per my name I am not technical in the least, so please be gentle with me!

Any help greatly appreciated

dogmaryxx

Run Malwarebytes as soon as Rkkill black box closes.

misstechnophobe

Thanks but I tried that and its not working

Browntoa

have you tried all of the versions of Rkill....

think the one something like eXploRer.exe