Hi jlrq,
Maybe it's not relevant, but a lot of PPPoE and Outlook lines have been popping up in the Gmer window while analising...
GMER does not use virus database like AV/AM programs, nor it preform generics scans like OTL or FRST does. It is a powerfull
antirootkit tool which has the task to detect any possible rootkit or
malicious behavior using his own routines.
translated: . . GMER seeks hidden malware components/pieces/files, mal-behavior, malware designed to hide other active malware component from AV/AM or from our diagnostic tools, they are known as rootkit. This in other words means that the GMER shall likely detect
known or unknown malware (behavior) or some other type of rootkit. This also means that GMER will probably detect some legitimate program as a possible malicious behavior.
From posted GMER logs I can tell/gess how PPPoE and Outlook are related, as both application does calling kernel32.dll. My
guesses are that for this reason avast! using his own "
Eve-Gen" routine to flags
raspppoe.exe when Outlook has attempt to send e-mail.
---- User code sections - GMER 2.1 ----
.text C:\Program Files (x86)\WAN Miniport PPPOE\raspppoe.exe[916] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[3796] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter
.text C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE[4796] C:\Windows\system32\kernel32.dll!SetUnhandledExceptionFilter + 1 => I can confirm now, on your system there is no malware. To remove FRST and GMER, please download
DelFix again and check box for
Remove disinfection tools.
raspppoe.exe is a software for dial up connections (old way for internet connection) and is not digitally signed. You can uninstall this services driver, or I can use FRST to delete if you wish, but in any case this isn't legit nor malicious service by itself. If I where you, I would remove (uninstall) this if I do not use it.
