4 Replies Latest reply on Dec 15, 2011 7:14 AM by Dinz

    cant turn on mcafee internet security firewall in version 11 using windows 7 ?

      hi i cannot turn on the mcafee internet security firewall in version 11 using windows 7 it keeps switching itself off, have tried ur McAfee Virtual Technician who was no help what soever as he said it was because i had windows 7 firewall in place which is also not turned on.

       

      here is a listing of what is installed and starting on my computer, please help, to allow me turn it on, many thanks william.

       

       

      DDS (Ver_2011-08-26.01) - NTFSAMD64

      Internet Explorer: 9.0.8112.16421  BrowserJavaVersion: 1.6.0_21

      Run by wilarm1988acer at 7:54:15 on 2011-12-13

      Microsoft Windows 7 Home Premium   6.1.7600.0.1252.44.1033.18.3895.2278 [GMT 0:00]

      .

      AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}

      SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

      SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}

      FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}

      .

      ============== Running Processes ===============

      .

      C:\Windows\system32\wininit.exe

      C:\Windows\system32\lsm.exe

      C:\Windows\system32\svchost.exe -k DcomLaunch

      C:\Windows\system32\svchost.exe -k RPCSS

      C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

      C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

      C:\Windows\system32\svchost.exe -k netsvcs

      C:\Windows\system32\svchost.exe -k LocalService

      C:\Windows\system32\svchost.exe -k NetworkService

      C:\Windows\SYSTEM32\WISPTIS.EXE

      C:\Windows\System32\spoolsv.exe

      C:\Program Files (x86)\Bonjour\mDNSResponder.exe

      C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

      C:\Windows\SysWOW64\dgdersvc.exe

      C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork

      C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

      C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

      C:\Program Files (x86)\Kodak\AiO\Center\ekdiscovery.exe

      C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

      C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

      C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe

      C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe

      C:\Windows\system32\rundll32.exe

      C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe

      C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

      C:\Windows\system32\svchost.exe -k imgsvc

      C:\Program Files\Acer\Acer Updater\UpdaterService.exe

      C:\Windows\system32\vssvc.exe

      C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe

      C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe

      C:\Windows\system32\svchost.exe -k bthsvcs

      C:\Windows\SysWOW64\rundll32.exe

      C:\Windows\system32\WUDFHost.exe

      C:\Program Files (x86)\Nero\Update\NASvc.exe

      C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

      C:\Windows\system32\SearchIndexer.exe

      C:\Program Files\Windows Media Player\wmpnetwk.exe

      C:\Windows\system32\wbem\wmiprvse.exe

      C:\Windows\system32\taskhost.exe

      C:\Windows\SYSTEM32\WISPTIS.EXE

      C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe

      C:\Windows\system32\Dwm.exe

      C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe

      C:\Windows\Explorer.EXE

      C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe

      C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe

      C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

      C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

      C:\Program Files (x86)\Acer\Acer Touch Suite\TouchPortalLauncher.exe

      C:\Windows\System32\igfxtray.exe

      C:\Windows\System32\hkcmd.exe

      C:\Windows\System32\igfxpers.exe

      C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

      C:\Windows\system32\wbem\unsecapp.exe

      C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE

      C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

      C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe

      C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe

      C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

      C:\Program Files (x86)\Acer\Acer Touch Suite\Acer Touch Movie\TouchMovieService.exe

      C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe

      C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe

      C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe

      C:\Program Files (x86)\Cyberlink\Shared files\brs.exe

      C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

      C:\Program Files (x86)\PowerISO\PWRISOVM.EXE

      C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUI.exe

      C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe

      C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe

      C:\Windows\System32\svchost.exe -k LocalServicePeerNet

      C:\Program Files (x86)\Ask.com\Updater\Updater.exe

      C:\Program Files (x86)\Freecorder\FLVSrvc.exe

      C:\Windows\system32\wuauclt.exe

      C:\Program Files (x86)\Mozilla Firefox\firefox.exe

      C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

      C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe

      C:\Windows\ehome\ehRecvr.exe

      C:\Program Files\mcafee.com\agent\mcagent.exe

      C:\Program Files (x86)\VSO\ConvertX\4\ConvertXtoDvd.exe

      C:\Windows\system32\wbem\wmiprvse.exe

      C:\adult\MicrosoftFixit.WindowsFirewall.Run.exe

      C:\Windows\TEMP\RunBoot-Temp_.86d3b8f2-99d9-4718-873f-0ae5fd31461c\MatsBoot.exe

      C:\Users\wilarm1988acer\AppData\Local\Temp\MATS-Temp\CAB2pzivq2y.hf5\MATSWiz.exe

      C:\Windows\System32\sdiagnhost.exe

      C:\Windows\system32\conhost.exe

      C:\Windows\system32\mmc.exe

      C:\Windows\SysWOW64\cmd.exe

      C:\Windows\system32\conhost.exe

      C:\Windows\SysWOW64\cscript.exe

      .

      ============== Pseudo HJT Report ===============

      .

      uStart Page = hxxp://www.yahoo.co.uk/

      uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0809&m=aspire_z5700&r=27360710i500pe 457y155w4671u448

      mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0809&m=aspire_z5700&r=27360710i500pe 457y155w4671u448

      mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0809&m=aspire_z5700&r=27360710i500pe 457y155w4671u448

      uURLSearchHooks: UrlSearchHook Class: {00000000-6e41-4fd3-8538-502f5495e5fc} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

      uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

      uURLSearchHooks: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll

      mURLSearchHooks: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll

      mWinlogon: Userinit=userinit.exe

      BHO: vShare Plugin: {043c5167-00bb-4324-af7e-62013faedacf} - C:\Program Files (x86)\vShare\vshare_toolbar.dll

      BHO: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll

      BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

      BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll

      BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll

      BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

      BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

      BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL

      BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111211102729.dll

      BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

      BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

      BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

      BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL

      BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

      BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

      BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll

      TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

      TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll

      TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

      TB: vShare Plugin: {043c5167-00bb-4324-af7e-62013faedacf} - C:\Program Files (x86)\vShare\vshare_toolbar.dll

      TB: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll

      TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll

      TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

      uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

      uRun: [OfficeSyncProcess] C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE

      uRunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10t_Plugin.exe -update plugin

      mRun: [UCam_Menu] "C:\Program Files (x86)\Acer\Acer Touch Suite\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer\Acer Touch Suite\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"

      mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

      mRun: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"

      mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d

      mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"

      mRun: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

      mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

      mRun: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

      mRun: [MDS_Menu] "C:\Program Files (x86)\CyberLink\MediaShowEspresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\MediaShowEspresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.0"

      mRun: [TouchMovieService] "C:\Program Files (x86)\Acer\Acer Touch Suite\Acer Touch Movie\TouchMovieService.exe"

      mRun: [Conime] %windir%\system32\conime.exe

      mRun: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart

      mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"

      mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe

      mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

      mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

      mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

      mRun: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE

      mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

      mRun: [fctcap] C:\Program Files (x86)\Fchat\fctcap.exe

      mRun: [<NO NAME>]

      mRun: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"

      mRun: [Freecorder FLV Service] "C:\Program Files (x86)\Freecorder\FLVSrvc.exe" /run

      StartupFolder: C:\Users\WILARM~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\PM BMED~1.LNK - C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe

      StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe

      mPolicies-explorer: NoActiveDesktop = 1 (0x1)

      mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

      mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

      mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

      mPolicies-system: EnableLinkedConnections = 1 (0x1)

      IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000

      IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105

      IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

      IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

      IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

      IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

      IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

      IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

      IE: {7F9DB11C-E358-4ca6-A83D-ACC663939424} - {9999A076-A9E2-4C99-8A2B-632FC9429223} - C:\Program Files (x86)\Bonjour\ExplorerPlugin.dll

      Trusted Zone: skillport.com

      Trusted Zone: skillsoft.com\support

      Trusted Zone: skillwsa.com

      DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

      DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

      DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

      TCP: DhcpNameServer = 192.168.0.1

      TCP: Interfaces\{561BA2F8-B587-4C37-ACB1-476EB2F785A1} : DhcpNameServer = 192.168.0.1

      TCP: Interfaces\{D956D8A4-62CC-4DC9-A5E9-4F7CA4674465} : DhcpNameServer = 192.168.0.1

      Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\McAfee\msc\McSnIePl.dll

      Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL

      Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\McAfee\SITEAD~1\McIEPlg.dll

      Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\McAfee\SITEAD~1\McIEPlg.dll

      Handler: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files (x86)\vShare\vshare_toolbar.dll

      SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL

      BHO-X64: vShare Plugin: {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll

      BHO-X64: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll

      BHO-X64:     Freecorder - No File

      BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

      BHO-X64:     AcroIEHelperStub - No File

      BHO-X64: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll

      BHO-X64:     McAfee Phishing Filter - No File

      BHO-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll

      BHO-X64:     Conduit Engine - No File

      BHO-X64: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

      BHO-X64: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

      BHO-X64:     Search Helper - No File

      BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL

      BHO-X64: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111211102729.dll

      BHO-X64:     scriptproxy - No File

      BHO-X64: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

      BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

      BHO-X64: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

      BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL

      BHO-X64:     URLRedirectionBHO - No File

      BHO-X64: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

      BHO-X64:     Ask Toolbar BHO - No File

      BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

      BHO-X64: Windows Live Toolbar Helper: {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll

      TB-X64: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

      TB-X64: &Windows Live Toolbar: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll

      TB-X64: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

      TB-X64: vShare Plugin: {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll

      TB-X64: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll

      TB-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll

      TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

      mRun-x64: [UCam_Menu] "C:\Program Files (x86)\Acer\Acer Touch Suite\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer\Acer Touch Suite\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"

      mRun-x64: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

      mRun-x64: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"

      mRun-x64: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d

      mRun-x64: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"

      mRun-x64: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

      mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

      mRun-x64: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

      mRun-x64: [MDS_Menu] "C:\Program Files (x86)\CyberLink\MediaShowEspresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\MediaShowEspresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.0"

      mRun-x64: [TouchMovieService] "C:\Program Files (x86)\Acer\Acer Touch Suite\Acer Touch Movie\TouchMovieService.exe"

      mRun-x64: [Conime] %windir%\system32\conime.exe

      mRun-x64: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart

      mRun-x64: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"

      mRun-x64: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe

      mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

      mRun-x64: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

      mRun-x64: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

      mRun-x64: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE

      mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

      mRun-x64: [fctcap] C:\Program Files (x86)\Fchat\fctcap.exe

      mRun-x64: [(Default)]

      mRun-x64: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"

      mRun-x64: [Freecorder FLV Service] "C:\Program Files (x86)\Freecorder\FLVSrvc.exe" /run

      IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

      SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL

      .

      ================= FIREFOX ===================

      .

      FF - ProfilePath - C:\Users\wilarm1988acer\AppData\Roaming\Mozilla\Firefox\Profiles\8yi90bh5.defau lt\

      FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=

      FF - prefs.js: browser.search.selectedEngine - Web Search...

      FF - prefs.js: browser.startup.homepage - hxxp://uk.yahoo.com/

      FF - prefs.js: keyword.URL - hxxp://vshare.toolbarhome.com/search.aspx?srch=ku&q=

      FF - prefs.js: network.proxy.type - 0

      FF - plugin: c:\progra~2\mcafee\msc\npMcSnFFPl.dll

      FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL

      FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL

      FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

      FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll

      FF - plugin: C:\Program Files (x86)\McAfee\SiteAdvisor\NPMcFFPlg32.dll

      FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll

      FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

      FF - plugin: C:\Program Files (x86)\Veetle\Player\npvlc.dll

      FF - plugin: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll

      FF - plugin: C:\Program Files (x86)\Veetle\VLCBroadcast\npvbp.dll

      FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

      FF - plugin: C:\Windows\system32\Wat\npWatWeb.dll

      FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

      .

      ---- FIREFOX POLICIES ----

      FF - user.js: yahoo.homepage.dontask - true

      ============= SERVICES / DRIVERS ===============

      .

      R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\system32\drivers\mfehidk.sys --> C:\Windows\system32\drivers\mfehidk.sys [?]

      R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\system32\drivers\mfewfpk.sys --> C:\Windows\system32\drivers\mfewfpk.sys [?]

      R1 mfenlfk;McAfee NDIS Light Filter;C:\Windows\system32\DRIVERS\mfenlfk.sys --> C:\Windows\system32\DRIVERS\mfenlfk.sys [?]

      R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\system32\DRIVERS\mwlPSDFilter.sys --> C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [?]

      R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\system32\DRIVERS\mwlPSDNServ.sys --> C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [?]

      R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys --> C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [?]

      R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]

      R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/08/05 07:14:46];C:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\000.fcl [2010-4-2 146928]

      R2 {6E090BD5-4EF5-4bf0-A968-74049E88E935};Power Control [2010/06/04 18:37:45];C:\Program Files (x86)\Acer\Acer Touch Suite\Acer Touch Movie\000.fcl [2010-4-15 146928]

      R2 dgdersvc;Device Error Recovery Service;C:\Windows\SysWOW64\dgdersvc.exe [2010-7-26 95568]

      R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-8-28 1150496]

      R2 Kodak AiO Network Discovery Service;Kodak AiO Network Discovery Service;C:\Program Files (x86)\Kodak\AiO\Center\ekdiscovery.exe [2010-5-17 308592]

      R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-9-5 249936]

      R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-9-5 249936]

      R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-9-5 249936]

      R2 McShield;McAfee McShield;C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe [2010-5-7 199272]

      R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2010-5-7 208536]

      R2 mfevtp;McAfee Validation Trust Protection Service;C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe [2010-5-7 161168]

      R2 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-4-17 305520]

      R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-3-25 490280]

      R3 AVerPola;AVerMedia USB Polaris Series Capture Service;C:\Windows\system32\DRIVERS\AVerPola.sys --> C:\Windows\system32\DRIVERS\AVerPola.sys [?]

      R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys --> C:\Windows\system32\DRIVERS\btwl2cap.sys [?]

      R3 dgderdrv;dgderdrv;C:\Windows\System32\drivers\dgderdrv.sys [2010-7-26 18120]

      R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;C:\Windows\system32\DRIVERS\e1k62x64.sys --> C:\Windows\system32\DRIVERS\e1k62x64.sys [?]

      R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]

      R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]

      R3 itecir;ITECIR Infrared Receiver;C:\Windows\system32\DRIVERS\itecir.sys --> C:\Windows\system32\DRIVERS\itecir.sys [?]

      R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\system32\drivers\mfeavfk.sys --> C:\Windows\system32\drivers\mfeavfk.sys [?]

      R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\system32\drivers\mfefirek.sys --> C:\Windows\system32\drivers\mfefirek.sys [?]

      R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\system32\DRIVERS\netr28x.sys --> C:\Windows\system32\DRIVERS\netr28x.sys [?]

      S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

      S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

      S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-7-30 135664]

      S2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-9-5 249936]

      S3 cfwids;McAfee Inc. cfwids;C:\Windows\system32\drivers\cfwids.sys --> C:\Windows\system32\drivers\cfwids.sys [?]

      S3 FlashUSB;FlashUSB;C:\Windows\system32\DRIVERS\FlashUSB_x64.sys --> C:\Windows\system32\DRIVERS\FlashUSB_x64.sys [?]

      S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]

      S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-4-28 704872]

      S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-7-30 135664]

      S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\system32\drivers\mferkdet.sys --> C:\Windows\system32\drivers\mferkdet.sys [?]

      S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-1-21 30963576]

      S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

      S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys --> C:\Windows\system32\Drivers\RtsUStor.sys [?]

      S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\system32\DRIVERS\ssadbus.sys --> C:\Windows\system32\DRIVERS\ssadbus.sys [?]

      S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\system32\DRIVERS\ssadmdfl.sys --> C:\Windows\system32\DRIVERS\ssadmdfl.sys [?]

      S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\system32\DRIVERS\ssadmdm.sys --> C:\Windows\system32\DRIVERS\ssadmdm.sys [?]

      S3 TFsExDisk;TFsExDisk;C:\Windows\System32\drivers\TFsExDisk.Sys [2010-8-11 16392]

      S4 McOobeSv;McAfee OOBE Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2011-9-5 249936]

      .

      =============== Created Last 30 ================

      .

      2011-12-11 10:27:12    284648    ----a-w-    C:\Windows\System32\drivers\mfewfpk.sys

      2011-12-08 15:29:45    --------    d-----w-    C:\ProgramData\Citrix

      2011-12-08 15:25:19    --------    d-----w-    C:\Program Files (x86)\Citrix

      2011-12-08 15:25:12    --------    d-----w-    C:\Users\wilarm1988acer\AppData\Local\Citrix

      2011-12-08 15:25:10    103784    ----a-w-    C:\Users\wilarm1988acer\GoToAssistDownloadHelper.exe

      2011-11-29 19:55:49    --------    d-sh--w-    C:\Users\wilarm1988acer\AppData\Local\696fabbd

      2011-11-13 14:59:10    28760    ----a-w-    C:\Program Files (x86)\Mozilla Firefox\ScriptFF.dll

      .

      ==================== Find3M  ====================

      .

      2011-10-15 13:16:16    75808    ----a-w-    C:\Windows\System32\drivers\mfenlfk.sys

      2011-10-15 13:16:16    65264    ----a-w-    C:\Windows\System32\drivers\cfwids.sys

      2011-10-15 13:16:16    647080    ----a-w-    C:\Windows\System32\drivers\mfehidk.sys

      2011-10-15 13:16:16    481768    ----a-w-    C:\Windows\System32\drivers\mfefirek.sys

      2011-10-15 13:16:16    229528    ----a-w-    C:\Windows\System32\drivers\mfeavfk.sys

      2011-10-15 13:16:16    160280    ----a-w-    C:\Windows\System32\drivers\mfeapfk.sys

      2011-10-15 13:16:16    10248    ----a-w-    C:\Windows\System32\drivers\mfeclnk.sys

      2011-10-15 13:16:16    100912    ----a-w-    C:\Windows\System32\drivers\mferkdet.sys

      2011-09-29 16:24:44    1897328    ----a-w-    C:\Windows\System32\drivers\tcpip.sys

      2011-09-29 04:09:30    3141120    ----a-w-    C:\Windows\System32\win32k.sys

      .

      ============= FINISH:  7:55:44.43 ===============