Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

McAfee warning: ZeroAccess-FAT!06ACC1F60B70

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

McAfee warning: ZeroAccess-FAT!06ACC1F60B70

Unread postby Noely » October 30th, 2013, 4:50 am

Hi there,

McAfee is persistently telling me I have a trojan and is unable to remove it itself. After trying many routes and tools myself, I'm forced to ask for help please! Below are my logs from the DDS. I will check back over the next few hours. Many thanks in advance for any help offered.

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.25.2
Run by Sanebut at 8:40:51 on 2013-10-30
Microsoft Windows 8 Single Language 6.2.9200.0.1252.44.1033.18.3911.1170 [GMT 0:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\dwm.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\dashost.exe
C:\Program Files\Scarlet.Crush Productions\ScpService.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\McAfee\AppStats\MfeASUM.exe
C:\windows\system32\mfevtps.exe
C:\Program Files (x86)\M-Audio\MIDISPORT\AudioDevMon.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
C:\Windows\RfBtnSvc64.exe
C:\Program Files (x86)\Contour Shuttle\ShuttleEngine.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhostex.exe
C:\Program Files (x86)\Launch Manager\LMutilps32.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Tablet\Pen\WacomHost.exe
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
C:\Windows\system32\igfxext.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Users\Sanebut\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\BandwidthMeterPro\BandwidthMeterPro.exe
C:\Program Files (x86)\Contour Shuttle\ShuttleHelper.exe
C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sanebut\AppData\Local\Google\Chrome\Application\chrome.exe
c:\PROGRA~1\mcafee.com\agent\McUpdate.exe
c:\PROGRA~1\mcafee.com\agent\McUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\EgisTec IPS\PMMUpdate.exe
C:\Program Files\EgisTec IPS\EgisUpdate.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://acer13.msn.com
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://acer13.msn.com
uDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mWinlogon: Userinit = userinit.exe
BHO: CmjBrowserHelperObject Object: {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - C:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
uRun: [Google Update] "C:\Users\Sanebut\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [uTorrent] "C:\Users\Sanebut\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
uRun: [BandwidthMeterPro] C:\Program Files (x86)\BandwidthMeterPro\BandwidthMeterPro.exe
uRun: [Google Update] "C:\Users\Sanebut\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart
mRun: [LManager] <no file>
dRunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
mExplorerRun: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ACERBA~1.LNK - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: DisableCAD = dword:1
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: Send Image To MindManager - C:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/201
IE: Send Link To MindManager - C:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/203
IE: Send Page To MindManager - C:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/204
IE: Send Text To MindManager - C:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/202
IE: {2F72393D-2472-4F82-B600-ED77F354B7FF} - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - C:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll
LSP: mswsock.dll
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{434FB15E-4215-445C-A42A-DC78C01D568E} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{434FB15E-4215-445C-A42A-DC78C01D568E}\35B4959353641323 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{51A3C978-5F00-4CD9-958F-B610225A2846} : DHCPNameServer = 192.52.104.29
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
SSODL: WebCheck - <orphaned>
mASetup: {90EF4A5E-85DB-4825-96F5-1AB93C2A8EEB} - C:\Program Files (x86)\Mindjet\MindManager 10\sys\MmInternetExplorerActiveSetup.vbs
mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll",CreateReaderUserSettings
x64-BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll
x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4
x64-Run: [BtPreLoad] "C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe"
x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-Run: [Creative SB Monitoring Utility] RunDll32 sbavmon.dll,SBAVMonitor
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-ExplorerRun: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
x64-mPolicies-System: PromptOnSecureDesktop = dword:0
x64-mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
x64-mPolicies-System: DisableCAD = dword:1
x64-IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 excsd;ExpressCache Storage Filter Driver;C:\Windows\System32\Drivers\excsd.sys [2012-10-23 95024]
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-10-23 645952]
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\Drivers\mfehidk.sys [2012-6-22 781312]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\Drivers\mfewfpk.sys [2012-6-22 343568]
R1 excfs;ExpressCache File System Filter Driver;C:\Windows\System32\Drivers\excfs.sys [2012-10-23 23344]
R1 MfeASKM;McAfee Application Statistics Device Driver;C:\Program Files\mcafee\AppStats\MfeASKM.sys [2013-8-4 31408]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\Drivers\mwlPSDFilter.sys [2012-10-23 22648]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\Drivers\mwlPSDNserv.sys [2012-10-23 20520]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\Drivers\mwlPSDVDisk.sys [2012-10-23 62776]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe [2013-1-28 227456]
R2 CCDMonitorService;CCDMonitorService;C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-8-23 2435728]
R2 Ds3Service;SCP DS3 Service;C:\Program Files\Scarlet.Crush Productions\ScpService.exe [2013-9-29 388352]
R2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-10-23 348784]
R2 ExpressCache;ExpressCache;C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [2012-3-30 79664]
R2 FFSOpzSvc;Sleep memory optimizer;C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe [2012-3-12 161384]
R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-9-23 328928]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-10-23 166720]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2013-8-3 201304]
R2 McAPExe;McAfee AP Service;C:\Program Files\mcafee\msc\McAPExe.exe [2013-9-23 178048]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-9-23 328928]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-9-23 328928]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-9-23 328928]
R2 MfeASUM;McAfee Application Statistics Service;C:\Program Files\mcafee\AppStats\MfeASUM.exe [2013-8-4 335216]
R2 mfecore;McAfee Anti-Malware Core;C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe [2013-9-23 1017016]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2012-9-5 219272]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-9-5 182752]
R2 MIDISPORTAudioDevMon;MIDISPORT Audio Device Monitor;C:\Program Files (x86)\M-Audio\MIDISPORT\AudioDevMon.exe [2012-2-24 1638704]
R2 NTI IScheduleSvc;NTI IScheduleSvc;C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-8-23 259136]
R2 RfButtonDriverService;Dritek RF Button Command Service;C:\Windows\RfBtnSvc64.exe [2012-10-23 93296]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-10-23 365376]
R2 WTabletServiceCon;Wacom Consumer Service;C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [2013-8-24 619904]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;C:\Windows\System32\Drivers\btath_flt.sys [2013-9-8 89168]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\System32\Drivers\btath_a2dp.sys [2013-9-8 346192]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;C:\Windows\System32\Drivers\btath_avdt.sys [2013-9-8 115280]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;C:\Windows\System32\Drivers\btath_bus.sys [2013-9-8 34384]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\Drivers\btath_hcrp.sys [2013-9-8 179432]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\Drivers\btath_lwflt.sys [2013-9-8 77464]
R3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\System32\Drivers\btath_rcp.sys [2013-9-8 136424]
R3 BtFilter;BtFilter;C:\Windows\System32\Drivers\btfilter.sys [2013-9-8 581200]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-26 202752]
R3 ePowerSvc;ePower Service;C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-8-22 658576]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\Drivers\ETD.sys [2012-10-23 316816]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-10-23 342528]
R3 irstrtdv;Intel(R) Rapid Start Technology Driver;C:\Windows\System32\Drivers\irstrtdv.sys [2012-10-23 43800]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\Drivers\mfeavfk.sys [2012-6-22 310224]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\Drivers\mfefirek.sys [2012-6-22 519192]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\Drivers\mfencbdc.sys [2013-9-20 390552]
R3 Ps2Kb2Hid;PS/2 Keyboard to HID Driver;C:\Windows\System32\Drivers\aPs2Kb2Hid.sys [2012-10-23 26736]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\Windows\System32\Drivers\RtsUVStor.sys [2012-9-5 315536]
R3 ScpVBus;Scp Virtual Bus Driver;C:\Windows\System32\Drivers\ScpVBus.sys [2013-9-29 39168]
S0 mfeelamk;McAfee Inc. mfeelamk;C:\Windows\System32\Drivers\mfeelamk.sys [2012-6-18 69264]
S2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-9-23 328928]
S2 McOobeSv;McAfee OOBE Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2013-8-3 201304]
S3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\Drivers\cfwids.sys [2012-6-22 70112]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2013-9-1 79360]
S3 DeviceFastLaneService;Device Fast-lane Service;C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-8-22 468624]
S3 EgisTec Ticket Service;EgisTec Ticket Service;C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-7-11 174160]
S3 hidkmdf;KMDF Driver;C:\Windows\System32\Drivers\hidkmdf.sys [2013-8-24 13728]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\Drivers\HipShieldK.sys [2013-10-16 197704]
S3 irstrtsv;Intel(R) Rapid Start Technology Service;C:\Windows\SysWOW64\irstrtsv.exe [2012-10-23 193576]
S3 ksaud;Creative USB Audio Driver;C:\Windows\System32\Drivers\ksaud.sys [2011-7-6 1148288]
S3 MADFUMIDISPORT2010;Service for M-Audio MIDISPORT DFU;C:\Windows\System32\Drivers\MAudioMIDISPORT_DFU.sys [2012-2-24 30512]
S3 MAUSBMIDISPORT;Service for M-Audio MIDISPORT;C:\Windows\System32\Drivers\MAudioMIDISPORT.sys [2012-2-24 201008]
S3 McAWFwk;McAfee Activation Service;C:\PROGRA~1\mcafee\msc\mcawfwk.exe [2012-9-5 332080]
S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\Drivers\mfencrk.sys [2013-9-20 95984]
S3 USecuAppSvc;Acer Theft Shield Service;C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [2012-11-12 345744]
S3 WacHidRouter;Wacom Hid Router;C:\Windows\System32\Drivers\wachidrouter.sys [2013-8-24 81824]
S3 wacomrouterfilter;Wacom Router Filter Driver;C:\Windows\System32\Drivers\wacomrouterfilter.sys [2013-8-24 15776]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2013-10-30 08:16:06 -------- d-----w- C:\Windows\ERUNT
2013-10-30 08:10:16 -------- d-----w- C:\AdwCleaner
2013-10-29 21:31:46 27256 ----a-w- C:\Windows\System32\drivers\FixZeroAccess.sys
2013-10-29 13:03:58 -------- d-----w- C:\ProgramData\PopCap Games
2013-10-28 00:01:52 -------- d-----w- C:\Users\Sanebut\AppData\Roaming\Mad Head Games
2013-10-22 11:53:33 -------- d-----w- C:\Program Files\iPod
2013-10-22 11:53:27 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-22 11:53:27 -------- d-----w- C:\Program Files\iTunes
2013-10-16 14:46:02 197704 ----a-w- C:\Windows\System32\drivers\HipShieldK.sys
2013-10-14 08:58:53 -------- d-----w- C:\Users\Sanebut\AppData\Roaming\Trine2
2013-10-13 21:29:19 566784 ----a-w- C:\Windows\System32\wvc.dll
2013-10-13 21:29:19 1374208 ----a-w- C:\Windows\System32\wdc.dll
2013-10-13 21:29:18 462336 ----a-w- C:\Windows\System32\sysmon.ocx
2013-10-13 21:29:18 1245696 ----a-w- C:\Windows\SysWow64\wdc.dll
2013-10-13 21:29:17 399360 ----a-w- C:\Windows\SysWow64\sysmon.ocx
2013-10-13 21:29:16 437248 ----a-w- C:\Windows\SysWow64\wvc.dll
2013-10-12 11:23:27 -------- d-----w- C:\Program Files (x86)\BandwidthMeterPro
2013-10-10 19:09:00 652288 ----a-w- C:\Windows\System32\comctl32.dll
2013-10-10 19:06:44 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-10-10 19:06:44 54488 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2013-10-10 19:06:43 83968 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2013-10-10 19:06:43 32768 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2013-10-10 19:06:42 25600 ----a-w- C:\Windows\System32\drivers\usbprint.sys
2013-10-10 19:06:34 210560 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2013-10-10 19:06:33 99328 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2013-10-10 19:06:33 121984 ----a-w- C:\Windows\System32\drivers\USBAUDIO.sys
2013-10-10 19:06:30 362496 ----a-w- C:\Windows\System32\atmfd.dll
2013-10-10 19:06:30 300032 ----a-w- C:\Windows\SysWow64\atmfd.dll
2013-10-10 19:06:29 46080 ----a-w- C:\Windows\System32\atmlib.dll
2013-10-10 19:06:29 35328 ----a-w- C:\Windows\SysWow64\atmlib.dll
2013-10-10 19:05:24 4040192 ----a-w- C:\Windows\System32\win32k.sys
2013-10-10 17:14:44 337752 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS
2013-10-10 17:14:43 447320 ----a-w- C:\Windows\System32\drivers\USBHUB3.SYS
2013-10-10 17:14:42 213336 ----a-w- C:\Windows\System32\drivers\UCX01000.SYS
2013-10-10 17:14:38 623448 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-10-10 17:14:37 498008 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-10-10 17:14:36 79192 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-10-10 17:14:36 32256 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-10-10 17:14:36 21848 ----a-w- C:\Windows\System32\drivers\usbd.sys
2013-10-10 17:14:35 120832 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-10-10 17:14:30 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 17:14:30 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-10-08 09:20:20 -------- d-----w- C:\Windows\SysWow64\AGEIA
2013-10-08 09:19:44 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
.
==================== Find3M ====================
.
2013-10-02 01:38:13 78296 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-02 01:38:13 694232 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-09-24 19:29:46 70112 ----a-w- C:\Windows\System32\drivers\cfwids.sys
2013-09-24 19:25:40 343568 ----a-w- C:\Windows\System32\drivers\mfewfpk.sys
2013-09-24 19:25:24 182752 ----a-w- C:\Windows\System32\mfevtps.exe
2013-09-24 19:22:48 781312 ----a-w- C:\Windows\System32\drivers\mfehidk.sys
2013-09-24 19:21:32 519192 ----a-w- C:\Windows\System32\drivers\mfefirek.sys
2013-09-24 19:20:28 310224 ----a-w- C:\Windows\System32\drivers\mfeavfk.sys
2013-09-24 19:19:56 179664 ----a-w- C:\Windows\System32\drivers\mfeapfk.sys
2013-09-24 19:03:12 69264 ----a-w- C:\Windows\System32\drivers\mfeelamk.sys
2013-09-22 23:28:06 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-09-22 23:27:49 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-09-22 22:55:10 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-09-22 22:54:51 3959296 ----a-w- C:\Windows\System32\jscript9.dll
2013-09-20 08:38:30 10856 ----a-w- C:\Windows\System32\drivers\mfeclnrk.sys
2013-09-20 08:38:14 95984 ----a-w- C:\Windows\System32\drivers\mfencrk.sys
2013-09-20 08:37:56 390552 ----a-w- C:\Windows\System32\drivers\mfencbdc.sys
2013-09-08 12:01:59 12604416 ----a-w- C:\Windows\System32\igdumd64.dll
2013-09-07 07:51:28 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-09-07 07:51:27 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-09-07 07:51:27 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-09-01 14:49:07 466520 ----a-w- C:\Windows\System32\wrap_oal.dll
2013-09-01 14:49:07 445016 ----a-w- C:\Windows\SysWow64\wrap_oal.dll
2013-09-01 14:49:07 123480 ----a-w- C:\Windows\System32\OpenAL32.dll
2013-09-01 14:49:07 109144 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
2013-08-16 05:41:13 58200 ----a-w- C:\Windows\System32\drivers\dam.sys
2013-08-16 05:39:26 2371728 ----a-w- C:\Windows\System32\WSService.dll
2013-08-16 05:32:48 209200 ----a-w- C:\Windows\System32\NotificationUI.exe
2013-08-16 05:22:22 40448 ----a-w- C:\Windows\System32\wuapp.exe
2013-08-16 05:22:11 4917760 ----a-w- C:\Windows\System32\sppsvc.exe
2013-08-16 05:20:30 105984 ----a-w- C:\Windows\System32\WinSetupUI.dll
2013-08-15 22:43:21 35328 ----a-w- C:\Windows\SysWow64\wuapp.exe
2013-08-15 22:43:07 84992 ----a-w- C:\Windows\SysWow64\wudriver.dll
2013-08-15 22:43:07 126976 ----a-w- C:\Windows\SysWow64\wuwebv.dll
2013-08-15 22:43:03 562688 ----a-w- C:\Windows\SysWow64\WSShared.dll
2013-08-15 22:43:03 159232 ----a-w- C:\Windows\SysWow64\WSSync.dll
2013-08-15 22:43:02 83968 ----a-w- C:\Windows\SysWow64\OEMLicense.dll
2013-08-15 22:43:02 167424 ----a-w- C:\Windows\SysWow64\WSClient.dll
2013-08-15 22:43:02 143872 ----a-w- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
2013-08-15 22:43:02 124928 ----a-w- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-08-15 22:42:52 76800 ----a-w- C:\Windows\SysWow64\setupcln.dll
2013-08-15 22:42:47 91648 ----a-w- C:\Windows\SysWow64\sppc.dll
2013-08-10 05:21:51 448512 ----a-w- C:\Windows\System32\SettingSync.dll
2013-08-10 05:21:51 128512 ----a-w- C:\Windows\System32\SettingSyncInfo.dll
2013-08-10 03:58:51 356352 ----a-w- C:\Windows\SysWow64\SettingSync.dll
2013-08-09 02:29:19 338432 ----a-w- C:\Windows\SysWow64\REX Shared Library.dll
2013-08-09 02:29:17 406528 ----a-w- C:\Windows\SysWow64\ReWire.dll
2013-08-07 05:15:02 144896 ----a-w- C:\Windows\System32\tssdisai.dll
2013-08-02 06:28:29 10116608 ----a-w- C:\Windows\System32\twinui.dll
2013-08-02 06:26:53 2304512 ----a-w- C:\Windows\System32\authui.dll
2013-08-02 05:08:18 8858112 ----a-w- C:\Windows\SysWow64\twinui.dll
2013-08-02 05:06:50 2035712 ----a-w- C:\Windows\SysWow64\authui.dll
2013-08-01 10:41:31 2233688 ----a-w- C:\Windows\System32\drivers\tcpip.sys
.
============= FINISH: 8:41:18.17 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 8 Single Language
Boot Device: \Device\HarddiskVolume2
Install Date: 03/08/2013 09:47:08
System Uptime: 30/10/2013 08:29:47 (0 hours ago)
.
Motherboard: Acer | | Hummingbird2
Processor: Intel(R) Core(TM) i3-3217U CPU @ 1.80GHz | U3E1 | 1801/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 79 GiB total, 21.649 GiB free.
D: is FIXED (NTFS) - 200 GiB total, 136.837 GiB free.
E: is FIXED (NTFS) - 174 GiB total, 117.733 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP38: 28/10/2013 03:10:10 - Scheduled Checkpoint
.
==== Installed Programs ======================
.
7-Zip 9.22 (x64 edition)
A Virus Named TOM
Acer Backup Manager
Acer Device Fast-lane
Acer Instant Update Service
Acer Power Management
Acer Recovery Management
Acer Theft Shield
AcerCloud
AcerCloud Docs
Adobe AIR
Adobe Reader XI (11.0.03)
Agatha Christie - Death on the Nile
Aloha TriPeaks
Amazon Kindle
Amnesia - The Dark Descent
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ASIO4ALL
µTorrent
Backup Manager v4
Bamboo Dock
Bandwidth Meter Pro v2.6 build 629
Bastion
Battleships Forever v0.90d
Bejeweled 3
Big City Adventure Vancouver CE 1.00
Bonjour
Bookworm Adventures Vol. 2
Brütal Legend
CCleaner
Celestia 1.6.1
clear.fi Photo
ComicRack v0.9.160
Contour Shuttle
Creative Audio Control Panel
Creative Sound Blaster Properties x64 Edition
CyberLink MediaEspresso 6.5
Dear Esther
Debut Video Capture Software
Defraggler
Delicious: Emily's True Love Premium Edition
Dolby Home Theater v4
eBay Worldwide
Eets Munchies
EPUB to MOBI
ETDWare PS/2-X64 11.6.6.002_WHQL
ExpressCache
Fahrenheit
FEZ
Fishdom H2O Hidden Odyssey 1.00
Google Chrome
Governor of Poker 2 Premium Edition
Hoyle Puzzle and Board Games 2011
Identity Card
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Start Technology
Intel(R) Rapid Storage Technology
Intel(R) SDK for OpenCL - CPU Only Runtime Package
Intel® Trusted Connect Service Client
Island Tribe
iTunes
Java 7 Update 25
Java Auto Updater
Jewel Match 3
John Deere Drive Green
Last.fm Scrobbler 2.1.36
Launch Manager
LIMBO
Little Inferno 1.00
Live Updater
M-Audio MIDISPORT 6.1.3 (x64)
Magic Academy
Magic The Gathering - Duels of the Planeswalkers 2013
Magic Workstation 0.94f
Magicka
Mark of the Ninja
McAfee Internet Security Suite
Microsoft Office
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual Studio 2005 Tools for Office Runtime
Microsoft XNA Framework Redistributable 3.1
Microsoft XNA Framework Redistributable 4.0
Mindjet MindManager 2012
Mirror's Edge
MTG GamePack for Magic Workstation
MyWinLocker
MyWinLocker 4
MyWinLocker Suite
Nevertales - The Beauty Within CE
NVIDIA PhysX v8.10.17
Office Addin
OpenAL
OpenOffice 4.0.0
PDF-XChange 3
Penguins!
Picasa 3
Plants vs. Zombies - Game of the Year
Polar Bowler
Portal 2
Prism Video File Converter
Qualcomm Atheros Bluetooth Suite (64)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
Reason 5.0
Roads Of Rome 3
Rocketbirds: Hardboiled Chicken
Scribblenauts Unlimited
Shared C Run-time for x64
Shredder
Skydive - 0.25
Sleep Memory Optimizer
Smart Timer
Spore Collection version 1.05.0001
Steam
Steinberg Cubase 5
Steinberg Drum Loop Expansion 01
Steinberg Groove Agent ONE Content
Steinberg HALionOne
Steinberg HALionOne Additional Content Set 01
Steinberg HALionOne Expression Set
Steinberg HALionOne GM Drum Set
Steinberg HALionOne GM Set
Steinberg HALionOne Pro Set
Steinberg HALionOne Studio Drum Set
Steinberg HALionOne Studio Set
Steinberg LoopMash Content
Steinberg REVerence Content 01
Stellarium 0.12.1
System Requirements Lab for Intel
Tales of Lagoona
Text Twist 2 1.00
Tradewinds Odyssey 1.00
Treasures Of Montezuma 3
Trine 2
TweetDeck
Unity Web Player
VideoPad Video Editor
Virtual DJ Pro Full - Atomix Productions
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio Tools for the Office system 3.0 Runtime
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258)
VLC media player 2.0.8
Wacom
WebTablet FB Plugin 32 bit
WebTablet FB Plugin 64 bit
WildTangent Games
Youda Farmer 3 - Seasons
Zuma's Revenge
.
==== Event Viewer Messages From Past Week ========
.
30/10/2013 08:39:10, Error: Service Control Manager [7023] - The Function Discovery Resource Publication service terminated with the following error: General access denied error
30/10/2013 08:39:10, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: General access denied error
30/10/2013 08:33:56, Error: Service Control Manager [7003] - The McAfee Personal Firewall Service service depends on the following service: MpsSvc. This service might not be installed.
30/10/2013 08:29:55, Error: Service Control Manager [7003] - The IKE and AuthIP IPsec Keying Modules service depends on the following service: BFE. This service might not be installed.
30/10/2013 08:29:54, Error: Service Control Manager [7023] - The Computer Browser service terminated with the following error: The specified service does not exist as an installed service.
30/10/2013 08:07:49, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: The service has not been started.
29/10/2013 20:25:39, Error: Service Control Manager [7001] - The McAfee Personal Firewall Service service depends on the Windows Firewall service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
28/10/2013 14:58:11, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BITS service.
28/10/2013 14:57:41, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IKEEXT service.
28/10/2013 14:57:11, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
28/10/2013 14:56:41, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Appinfo service.
28/10/2013 14:56:11, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the iphlpsvc service.
26/10/2013 08:43:24, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
.
==== End Of File ===========================
Noely
Active Member
 
Posts: 3
Joined: October 30th, 2013, 4:42 am
Advertisement
Register to Remove

Re: McAfee warning: ZeroAccess-FAT!06ACC1F60B70

Unread postby deltalima » October 30th, 2013, 3:50 pm

checking your log - back soon.
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK

Re: McAfee warning: ZeroAccess-FAT!06ACC1F60B70

Unread postby deltalima » October 30th, 2013, 4:06 pm

Hi Noely,

Welcome to the forum.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.

Please note the following:
  • I will be working on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for this issue on this machine.
  • Please do not run any scans or make any changes to the system unless I ask you too.
  • Please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear.
  • If after 3 days you have not responded to this topic, it will be closed, and you will need to start a new one.
  • It's often worth reading through these instructions and printing them for ease of reference.
  • If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
  • Please reply to this thread. Do not start a new topic.

Windows 7 and Vista users
The programs I ask you to run need to be run in Administrator Mode by... Right clicking the program file and selecting: Run as Administrator.
Additionally, the built-in User Account Control (UAC) utility, if enabled, may prompt you for permission to run the program.
When prompted, please select: Allow. Reference: User Account Control (UAC) and Running as Administrator


Your logs show signs of a Remote Access Infection on your computer.

LSP: mswsock.dll


These indicate you are infected with ......

TDSS Rootkit


Please take time to carefully read THIS topic, then let me know how you want to proceed.
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK

Re: McAfee warning: ZeroAccess-FAT!06ACC1F60B70

Unread postby Noely » October 30th, 2013, 7:32 pm

Thanks so much for this. I'll follow this up in the next 24 hours.
Noely
Active Member
 
Posts: 3
Joined: October 30th, 2013, 4:42 am

Re: McAfee warning: ZeroAccess-FAT!06ACC1F60B70

Unread postby Noely » November 2nd, 2013, 7:43 am

Hi. I've decided to reformat my computer and re-install Windows. Thanks again for your help, you may consider this thread closed.
Noely
Active Member
 
Posts: 3
Joined: October 30th, 2013, 4:42 am

Re: McAfee warning: ZeroAccess-FAT!06ACC1F60B70

Unread postby deltalima » November 2nd, 2013, 10:28 am

As your problems appear to require a reformat, this topic is now closed.

We are pleased we could help you resolve your computer's malware issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see Feedback for Our Helpers - Say "Thanks" Here.
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 126 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware