Jump to content
Sign in to follow this  
PeregrineKodiak

Recurrent Malware Issue? Involuntary Backups?

Recommended Posts

After deleting those items, and taking ownership and deleting all of the D drive auto-download folders, I got to the last folder (which uploaded itself this morning) and it wouldn't let me delete it. It said it was open in another program. Its a mystery to me.

 

The computer is still running hot and hard all of the time, even after a reboot. Not sure if its malware or just my computer.

Share this post


Link to post
Share on other sites

Thank you for the PayPal offer but the service is free.  If you really want to donate then please pick a worthwhile cause and provide them with the donation as I'm sure it would do much more good for the poor.

 

You need to go to Control Panel\System and Security and there you can change when updates from Microsoft happen.

 

Control Panel\System and Security\Windows Update\Change settings

 

I would recommend that you keep it on to check at least once per week.  Then you can set a time that is to your liking.  3:00AM was chosen by default so that for most users it would update and reboot while they were sleeping.

 

The folders are normal and you should not try to remove them unless you're sure that all Windows updates have completed and you've restarted the computer a couple of time to make sure.

 

 

Let's go ahead then and run through these scans just to make sure that anything else left hiding is found and removed.

 

 

 

Please go ahead and run through the following steps and post back the logs when ready.

STEP 03
Please download Malwarebytes Anti-Rootkit from here

  • Unzip the contents to a folder in a convenient location.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • Click on the Cleanup button to remove any threats and reboot if prompted to do so.
  • Wait while the system shuts down and the cleanup process is performed.
  • Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
  • When done, please post the two logs produced they will be in the MBAR folder... mbar-log.txt and system-log.txt

STEP 04
Please download Junkware Removal Tool to your desktop.


  • Shutdown your antivirus to avoid any conflicts.
  • Right click over JRT.exe and select Run as administrator on Windows Vista or Windows 7, double-click on XP.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next reply message
  • When completed make sure to re-enable your antivirus

STEP 05
Please download AdwCleaner by Xplode and save to your Desktop.


  • Double click on AdwCleaner.exe to run the tool.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.


STEP 06
button_eos.gif

Please go here to run the online antivirus scannner from ESET.


  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activex control to install
  • Click Start
  • Make sure that the option Remove found threats is unticked
  • Click on Advanced Settings and ensure these options are ticked:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Click Scan
  • Wait for the scan to finish
  • If any threats were found, click the 'List of found threats' , then click Export to text file....
  • Save it to your desktop, then please copy and paste that log as a reply to this topic.

STEP 07
Please download the Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit


  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press the Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it also makes another log (Addition.txt). Please attach it to your reply as well.

 

 

Share this post


Link to post
Share on other sites

I've tried to run mbar.exe a couple of times. When I click to run it, I get a blue screen that says Windows will shut down to prevent damage to my computer. Then my computer restarts and sits on a blank screen for several minutes before returning to my log-in password screen... Maybe I should delete and try to download mbar again?

Share this post


Link to post
Share on other sites

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.9 (09.07.2013:1)
OS: Windows 7 Home Premium x64
Ran by Free Bird on Tue 09/10/2013 at  9:08:36.39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\mypc backup"



~~~ FireFox

Emptied folder: C:\Users\Free Bird\AppData\Roaming\mozilla\firefox\profiles\eciapt2f.default\minidumps [97 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 09/10/2013 at  9:16:39.07
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

Share this post


Link to post
Share on other sites

# AdwCleaner v3.003 - Report created 10/09/2013 at 09:48:01
# Updated 07/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Free Bird - FREEBIRD-PC
# Running from : C:\Users\Free Bird\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\Users\Free Bird\AppData\Roaming\Mozilla\Firefox\Profiles\eciapt2f.default\jetpack

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AVG Secure Search
Key Found : [x64] HKCU\Software\AVG Secure Search
Key Found : HKLM\Software\AVG Secure Search

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660


-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Users\Free Bird\AppData\Roaming\Mozilla\Firefox\Profiles\eciapt2f.default\prefs.js ]


-\\ Google Chrome v29.0.1547.66

[ File : C:\Users\Free Bird\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R6].txt - [1016 octets] - [10/09/2013 09:48:01]

########## EOF - C:\AdwCleaner\AdwCleaner[R6].txt - [1076 octets] ##########
 

Share this post


Link to post
Share on other sites

Yes please.

 

Double click on AdwCleaner.exe to run the tool again.

  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[s0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.


 

Share this post


Link to post
Share on other sites

Your Firefox appears to have crashed quite a bit. 

 

Please visit each of the following sites and lets reset all of your browsers back to defaults to prevent unexpected issues.
If you are not using one of the browsers but it is installed then you may want to consider uninstalling it as older versions of some software can pose an increase in the potential for an infection to get in.

Internet Explorer
How to reset Internet Explorer settings

Firefox
Restore Firefox Default Settings Without Uninstalling It

Chrome
Chrome - Reset browser settings

Opera
How to Perform a (really) clean Reinstall of Opera

 

Share this post


Link to post
Share on other sites

# AdwCleaner v3.003 - Report created 10/09/2013 at 22:26:52
# Updated 07/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Free Bird - FREEBIRD-PC
# Running from : C:\Users\Free Bird\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Free Bird\AppData\Roaming\Mozilla\Firefox\Profiles\eciapt2f.default\jetpack

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Secure Search

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660


-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Users\Free Bird\AppData\Roaming\Mozilla\Firefox\Profiles\eciapt2f.default\prefs.js ]


-\\ Google Chrome v29.0.1547.66

[ File : C:\Users\Free Bird\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R6].txt - [1160 octets] - [10/09/2013 09:48:01]
AdwCleaner[s4].txt - [1038 octets] - [10/09/2013 22:26:52]

########## EOF - C:\AdwCleaner\AdwCleaner[s4].txt - [1098 octets] ##########
 

Share this post


Link to post
Share on other sites

I tried to restore my Firefox default settings, but it didn't work for me. Those instructions show two ways to access firefox safe mode:

 

1) Firefox is in a programs folder with a safe mode option (mine isn't in a folder, and only has a start up option)

2) Firefox can be selected to "run", and "safe-mode" can be typed in (mine only has a "run as administrator option", which just starts firefox.

 

I'm not sure how to get around that.

 

For now, I'm going to complete the last step you outlined for me - the farbar recovery tool.

 

Thanks.

Share this post


Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-09-2013
Ran by Free Bird (administrator) on FREEBIRD-PC on 10-09-2013 22:48:55
Running from C:\Users\Free Bird\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
() C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Dell Inc.) C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidFind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apntex.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Dell Inc.) C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE
(Jeroen Laarhoven) C:\Program Files (x86)\AllChars\AllChars.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
() C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
() C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
(SupportSoft, Inc.) C:\Program Files (x86)\DELL\DellComms\bin\sprtcmd.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
(Microsoft Corporation) C:\Windows\ehome\ehRecvr.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Apoint] - C:\Program Files\DellTPad\Apoint.exe [357376 2009-09-16] (Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8158240 2009-10-09] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [broadcom Wireless Manager UI] - C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe [4968960 2009-07-17] (Dell Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
HKLM-x32\...\Run: [PDVDDXSrv] - C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520 2009-06-24] (CyberLink Corp.)
HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe [1779952 2009-07-07] ()
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [498160 2009-10-15] ()
HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744 2009-06-24] (Creative Technology Ltd)
HKLM-x32\...\Run: [DellSupportCenter] - C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe [206064 2009-05-21] (SupportSoft, Inc.)
HKLM-x32\...\Run: [DellComms] - C:\Program Files (x86)\Dell\DellComms\bin\sprtcmd.exe [206064 2009-05-05] (SupportSoft, Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [blackBerryAutoUpdate] - C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe [623888 2009-05-12] (Research In Motion Limited)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2012-02-20] (Apple Inc.)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736 2012-03-06] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [TkBellExe] - C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [295072 2013-03-01] (RealNetworks, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AllChars.lnk
ShortcutTarget: AllChars.lnk -> C:\Program Files (x86)\AllChars\AllChars.exe (Jeroen Laarhoven)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Desktop Manager.lnk
ShortcutTarget: Desktop Manager.lnk -> C:\Program Files (x86)\Research In Motion\BlackBerry\DesktopMgr.exe (Research In Motion Limited)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Free Bird\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Free Bird\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
ShortcutTarget: OpenOffice.org 3.2.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {A7B674D0-41CF-4F47-B296-42036AFC48E2} URL = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {6D5090C7-791B-4499-9408-20B2EC8187CB} URL =
SearchScopes: HKCU - {A7B674D0-41CF-4F47-B296-42036AFC48E2} URL =
BHO: No Name - {27B4851A-3207-45A2-B947-BE8AFE6163AB} -  No File
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: No Name - {27B4851A-3207-45A2-B947-BE8AFE6163AB} -  No File
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Free Bird\AppData\Roaming\Mozilla\Firefox\Profiles\eciapt2f.default
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.0.282 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.0 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.0 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.0 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.0.282 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF Extension: ToneCheck™ for Gmail™ beta - C:\Users\Free Bird\AppData\Roaming\Mozilla\Firefox\Profiles\eciapt2f.default\Extensions\jid1-RgQXqotzndApjg@jetpack
FF Extension: Skype extension - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKLM-x32\...\Firefox\Extensions: [{34712C68-7391-4c47-94F3-8F88D49AD632}] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR DefaultSearchURL: (AVG Secure Search) - http://mysearch.avg.com/search?cid={242EC987-FCCE-4DA1-B391-EAB12C2C4F5B}&mid=21dfb43a3fb847d3b08c69e529b0d4ff-61a2b446987a2d842bf35f9b9508d07897a79d04〈=en&ds=co011&pr=sa&d=2013-08-20 10:06:09&v=15.4.0.5&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
CHR DefaultSuggestURL: (AVG Secure Search) - http://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Extension: (Google Docs) - C:\Users\FREEBI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\FREEBI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\FREEBI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\FREEBI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (RealDownloader) - C:\Users\FREEBI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.0_1
CHR Extension: (Chrome In-App Payments service) - C:\Users\FREEBI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\Users\FREEBI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx

==================== Services (Whitelisted) =================

R2 McciCMService64; C:\Program Files\Common Files\Motive\McciCMService.exe [517632 2009-10-22] (Alcatel-Lucent)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [38608 2012-11-29] ()
R2 wltrysvc; C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE [33280 2009-07-17] ()
S2 RoxLiveShare9; "C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe" [x]

==================== Drivers (Whitelisted) ====================

R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-08-20] (AVG Technologies)
S3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [92376 2013-09-09] (MalwareBytes)
S3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [92376 2013-09-09] (MalwareBytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [116440 2013-09-09] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [116440 2013-09-09] (Malwarebytes Corporation)
R1 MPFP; C:\Windows\System32\Drivers\Mpfp.sys [176144 2009-04-09] (McAfee, Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-05-20] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [31744 2009-01-09] (Research in Motion Ltd)
S3 vzandnetdiag; C:\Windows\System32\DRIVERS\lgvzandnetdiag64.sys [29696 2013-05-06] (LG Electronics Inc.)
S3 vzandnetmodem; C:\Windows\System32\DRIVERS\lgvzandnetmdm64.sys [36864 2013-05-06] (LG Electronics Inc.)
S3 vzandnetndis; C:\Windows\System32\DRIVERS\lgvzandnetndis64.sys [94208 2013-07-06] (LG Electronics Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-10 22:48 - 2013-09-10 22:48 - 00000000 ____D C:\FRST
2013-09-10 09:51 - 2013-09-10 09:51 - 02347384 _____ (ESET) C:\Users\Free Bird\Downloads\esetsmartinstaller_enu.exe
2013-09-10 09:47 - 2013-09-10 22:26 - 00000000 ____D C:\AdwCleaner
2013-09-10 09:44 - 2013-09-10 09:44 - 01037278 _____ C:\Users\Free Bird\Downloads\AdwCleaner.exe
2013-09-10 09:16 - 2013-09-10 09:16 - 00000844 _____ C:\Users\Free Bird\Desktop\JRT.txt
2013-09-10 09:08 - 2013-09-07 22:01 - 01029490 _____ (Thisisu) C:\Users\Free Bird\Desktop\JRT_NEW.exe
2013-09-09 21:09 - 2013-09-09 21:10 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-09 21:09 - 2013-09-09 21:09 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-09-09 21:06 - 2013-09-09 21:06 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Free Bird\Downloads\mbar-1.07.0.1005.exe
2013-09-09 20:59 - 2013-09-09 20:59 - 00277824 _____ C:\Windows\Minidump\090913-17035-01.dmp
2013-09-09 20:54 - 2013-09-09 20:54 - 00277824 _____ C:\Windows\Minidump\090913-18158-01.dmp
2013-09-09 20:53 - 2013-09-09 20:58 - 00092376 _____ (MalwareBytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-09-09 16:52 - 2013-09-09 16:52 - 00000000 __RSD C:\Users\Free Bird\Documents\My Stationery
2013-09-09 16:50 - 2013-09-09 16:51 - 00155890 _____ C:\Users\Free Bird\Downloads\noname.eml
2013-09-07 17:55 - 2013-09-07 17:55 - 00000226 _____ C:\Users\Free Bird\Desktop\EsetScan9.7.13.txt
2013-09-07 11:44 - 2013-09-10 22:28 - 00000392 _____ C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Free Bird.job
2013-09-07 11:44 - 2013-09-10 11:46 - 00000382 _____ C:\Windows\Tasks\ReclaimerUpdateXML_Free Bird.job
2013-09-07 11:44 - 2013-09-09 11:45 - 00002986 _____ C:\Windows\System32\Tasks\ReclaimerUpdateXML_Free Bird
2013-09-07 11:44 - 2013-09-09 10:45 - 00002990 _____ C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Free Bird
2013-09-07 11:44 - 2013-09-09 10:45 - 00000386 _____ C:\Windows\Tasks\ReclaimerUpdateFiles_Free Bird.job
2013-09-07 11:44 - 2013-09-07 11:44 - 00003634 _____ C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Free Bird
2013-09-07 11:44 - 2013-09-07 11:44 - 00002694 _____ C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Free Bird
2013-09-07 08:40 - 2013-09-07 08:40 - 00000000 ____D C:\Program Files (x86)\ESET
2013-09-07 00:04 - 2013-09-07 00:04 - 00026072 _____ C:\ComboFix.txt
2013-09-06 09:17 - 2013-09-06 09:17 - 00000926 _____ C:\Users\Free Bird\Desktop\NTREGOPT.lnk
2013-09-06 09:17 - 2013-09-06 09:17 - 00000907 _____ C:\Users\Free Bird\Desktop\ERUNT.lnk
2013-09-06 09:17 - 2013-09-06 09:17 - 00000000 ____D C:\Program Files (x86)\ERUNT
2013-09-06 09:15 - 2013-09-06 09:15 - 00791393 _____ (Lars Hederer                                                ) C:\Users\Free Bird\Downloads\erunt-setup.exe
2013-09-05 20:58 - 2013-09-05 20:58 - 12136448 _____ C:\Users\Free Bird\Desktop\HKLM_UserData.TXT
2013-09-04 22:03 - 2011-06-26 01:45 - 00256000 _____ C:\Windows\PEV.exe
2013-09-04 22:03 - 2010-11-07 12:20 - 00208896 _____ C:\Windows\MBR.exe
2013-09-04 22:03 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-09-04 22:03 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-09-04 22:03 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-09-04 22:03 - 2000-08-30 19:00 - 00098816 _____ C:\Windows\sed.exe
2013-09-04 22:03 - 2000-08-30 19:00 - 00080412 _____ C:\Windows\grep.exe
2013-09-04 22:03 - 2000-08-30 19:00 - 00068096 _____ C:\Windows\zip.exe
2013-09-04 22:02 - 2013-09-07 00:06 - 00000000 ____D C:\Qoobox
2013-09-04 12:43 - 2013-09-04 12:56 - 00000000 ____D C:\Users\FREEBI~1\AppData\Local\Paint.NET
2013-09-04 12:43 - 2013-09-04 12:43 - 00000000 ____D C:\Program Files\Paint.NET
2013-09-04 12:42 - 2013-09-04 12:43 - 00000000 ____D C:\Users\Free Bird\AppData\Roaming\SmartPCFix
2013-09-04 12:23 - 2013-09-04 12:34 - 90139696 _____ (The GIMP Team                                               ) C:\Users\Free Bird\Downloads\gimp-2.8.6-setup.exe
2013-09-04 12:00 - 2013-09-04 12:00 - 00000856 _____ C:\Users\Free Bird\.recently-used.xbel
2013-09-04 08:58 - 2013-09-06 23:10 - 05120615 ____R (Swearware) C:\Users\Free Bird\Downloads\ComboFix.exe
2013-09-01 13:20 - 2013-09-01 13:20 - 00023659 _____ C:\Users\Free Bird\Desktop\dds.txt
2013-09-01 13:20 - 2013-09-01 13:20 - 00012168 _____ C:\Users\Free Bird\Desktop\attach.txt
2013-09-01 13:12 - 2013-09-01 13:12 - 00688992 ____R (Swearware) C:\Users\Free Bird\Desktop\dds.scr
2013-09-01 13:11 - 2013-09-01 13:11 - 00000000 _____ C:\MyScheduledTasks.txt
2013-08-31 20:50 - 2013-08-31 20:50 - 01027511 _____ (Thisisu) C:\Users\Free Bird\Desktop\JRT(1).exe
2013-08-26 20:58 - 2013-09-10 22:27 - 00026448 _____ C:\Windows\PFRO.log
2013-08-26 10:26 - 2013-09-10 22:27 - 00001736 _____ C:\Windows\setupact.log
2013-08-26 10:26 - 2013-08-26 10:26 - 00000000 _____ C:\Windows\setuperr.log
2013-08-22 13:44 - 2013-08-22 13:44 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-08-21 23:19 - 2013-09-06 09:17 - 00000000 ____D C:\Windows\erdnt
2013-08-20 10:23 - 2013-08-20 10:23 - 00000000 ____D C:\Windows\ERUNT
2013-08-20 10:06 - 2013-08-20 10:06 - 00000000 ____D C:\Users\FREEBI~1\AppData\Local\AVG SafeGuard toolbar
2013-08-20 10:06 - 2013-08-20 10:06 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar
2013-08-20 10:06 - 2013-08-20 10:06 - 00000000 ____D C:\Program Files (x86)\AVG SafeGuard toolbar
2013-08-20 10:06 - 2013-08-20 10:05 - 00045856 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-08-20 10:05 - 2013-08-20 10:06 - 00003725 _____ C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2013-08-17 18:28 - 2013-08-17 18:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-17 17:22 - 2013-07-26 00:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-17 17:22 - 2013-07-26 00:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-17 17:22 - 2013-07-26 00:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-17 17:22 - 2013-07-26 00:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-17 17:22 - 2013-07-26 00:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-17 17:22 - 2013-07-25 22:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-17 17:22 - 2013-07-25 22:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-17 17:22 - 2013-07-25 22:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-17 17:22 - 2013-07-25 22:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-17 17:22 - 2013-07-25 22:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-17 17:22 - 2013-07-25 22:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-17 17:22 - 2013-07-25 22:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-17 17:22 - 2013-07-25 22:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-17 17:22 - 2013-07-25 22:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-17 17:22 - 2013-07-25 22:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-17 17:22 - 2013-07-25 22:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-17 17:22 - 2013-07-25 22:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-17 17:22 - 2013-07-25 22:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-17 17:22 - 2013-07-25 22:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-17 17:22 - 2013-07-25 21:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-17 17:22 - 2013-07-25 21:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-17 17:22 - 2013-07-25 20:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-15 11:14 - 2013-07-18 20:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-15 11:14 - 2013-07-18 20:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-13 20:58 - 2013-07-09 00:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-13 20:58 - 2013-07-09 00:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-13 20:58 - 2013-07-09 00:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-13 20:58 - 2013-07-09 00:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-13 20:58 - 2013-07-08 23:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-13 20:58 - 2013-07-08 23:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-13 20:58 - 2013-07-08 23:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-13 20:58 - 2013-07-08 23:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-13 20:57 - 2013-07-25 04:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-13 20:57 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-13 20:57 - 2013-07-09 01:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-13 20:57 - 2013-07-09 00:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-13 20:57 - 2013-07-09 00:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-13 20:57 - 2013-07-09 00:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-13 20:57 - 2013-07-09 00:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-13 20:57 - 2013-07-09 00:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-13 20:57 - 2013-07-08 23:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-13 20:57 - 2013-07-08 23:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-13 20:57 - 2013-07-08 23:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-13 20:57 - 2013-07-08 21:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-13 20:57 - 2013-07-08 21:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-13 20:57 - 2013-07-08 21:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-13 20:57 - 2013-07-08 21:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-13 20:57 - 2013-07-06 01:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-13 20:57 - 2013-06-14 23:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

==================== One Month Modified Files and Folders =======

2013-09-10 22:48 - 2013-09-10 22:48 - 01949408 _____ (Farbar) C:\Users\Free Bird\Downloads\FRST64.exe
2013-09-10 22:48 - 2013-09-10 22:48 - 00000000 ____D C:\FRST
2013-09-10 22:43 - 2010-04-26 20:53 - 00000904 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-10 22:35 - 2009-07-13 23:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-10 22:35 - 2009-07-13 23:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-10 22:32 - 2009-07-14 00:10 - 01866564 _____ C:\Windows\WindowsUpdate.log
2013-09-10 22:28 - 2013-09-07 11:44 - 00000392 _____ C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Free Bird.job
2013-09-10 22:28 - 2010-04-26 20:53 - 00000900 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-10 22:27 - 2013-08-26 20:58 - 00026448 _____ C:\Windows\PFRO.log
2013-09-10 22:27 - 2013-08-26 10:26 - 00001736 _____ C:\Windows\setupact.log
2013-09-10 22:27 - 2013-06-10 08:24 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-10 22:27 - 2010-01-15 22:37 - 00000000 ____D C:\DELL
2013-09-10 22:27 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-10 22:26 - 2013-09-10 09:47 - 00000000 ____D C:\AdwCleaner
2013-09-10 22:23 - 2013-06-10 08:24 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-10 22:23 - 2012-11-17 10:17 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-10 22:23 - 2012-11-17 10:17 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-10 22:22 - 2013-07-06 08:36 - 00000944 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2374328083-628559870-3858990220-1000UA.job
2013-09-10 11:46 - 2013-09-07 11:44 - 00000382 _____ C:\Windows\Tasks\ReclaimerUpdateXML_Free Bird.job
2013-09-10 09:51 - 2013-09-10 09:51 - 02347384 _____ (ESET) C:\Users\Free Bird\Downloads\esetsmartinstaller_enu.exe
2013-09-10 09:44 - 2013-09-10 09:44 - 01037278 _____ C:\Users\Free Bird\Downloads\AdwCleaner.exe
2013-09-10 09:16 - 2013-09-10 09:16 - 00000844 _____ C:\Users\Free Bird\Desktop\JRT.txt
2013-09-09 21:10 - 2013-09-09 21:09 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-09 21:09 - 2013-09-09 21:09 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-09-09 21:06 - 2013-09-09 21:06 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Free Bird\Downloads\mbar-1.07.0.1005.exe
2013-09-09 20:59 - 2013-09-09 20:59 - 00277824 _____ C:\Windows\Minidump\090913-17035-01.dmp
2013-09-09 20:59 - 2010-05-19 06:44 - 00000000 ____D C:\Windows\Minidump
2013-09-09 20:58 - 2013-09-09 20:53 - 00092376 _____ (MalwareBytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-09-09 20:54 - 2013-09-09 20:54 - 00277824 _____ C:\Windows\Minidump\090913-18158-01.dmp
2013-09-09 16:52 - 2013-09-09 16:52 - 00000000 __RSD C:\Users\Free Bird\Documents\My Stationery
2013-09-09 16:51 - 2013-09-09 16:50 - 00155890 _____ C:\Users\Free Bird\Downloads\noname.eml
2013-09-09 11:45 - 2013-09-07 11:44 - 00002986 _____ C:\Windows\System32\Tasks\ReclaimerUpdateXML_Free Bird
2013-09-09 10:45 - 2013-09-07 11:44 - 00002990 _____ C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Free Bird
2013-09-09 10:45 - 2013-09-07 11:44 - 00000386 _____ C:\Windows\Tasks\ReclaimerUpdateFiles_Free Bird.job
2013-09-07 22:01 - 2013-09-10 09:08 - 01029490 _____ (Thisisu) C:\Users\Free Bird\Desktop\JRT_NEW.exe
2013-09-07 17:55 - 2013-09-07 17:55 - 00000226 _____ C:\Users\Free Bird\Desktop\EsetScan9.7.13.txt
2013-09-07 11:44 - 2013-09-07 11:44 - 00003634 _____ C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Free Bird
2013-09-07 11:44 - 2013-09-07 11:44 - 00002694 _____ C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Free Bird
2013-09-07 08:45 - 2013-07-06 08:36 - 00000922 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2374328083-628559870-3858990220-1000Core.job
2013-09-07 08:40 - 2013-09-07 08:40 - 00000000 ____D C:\Program Files (x86)\ESET
2013-09-07 00:06 - 2013-09-04 22:02 - 00000000 ____D C:\Qoobox
2013-09-07 00:04 - 2013-09-07 00:04 - 00026072 _____ C:\ComboFix.txt
2013-09-06 23:25 - 2009-07-13 21:34 - 00000215 _____ C:\Windows\system.ini
2013-09-06 23:10 - 2013-09-04 08:58 - 05120615 ____R (Swearware) C:\Users\Free Bird\Downloads\ComboFix.exe
2013-09-06 09:17 - 2013-09-06 09:17 - 00000926 _____ C:\Users\Free Bird\Desktop\NTREGOPT.lnk
2013-09-06 09:17 - 2013-09-06 09:17 - 00000907 _____ C:\Users\Free Bird\Desktop\ERUNT.lnk
2013-09-06 09:17 - 2013-09-06 09:17 - 00000000 ____D C:\Program Files (x86)\ERUNT
2013-09-06 09:17 - 2013-08-21 23:19 - 00000000 ____D C:\Windows\erdnt
2013-09-06 09:15 - 2013-09-06 09:15 - 00791393 _____ (Lars Hederer                                                ) C:\Users\Free Bird\Downloads\erunt-setup.exe
2013-09-05 20:58 - 2013-09-05 20:58 - 12136448 _____ C:\Users\Free Bird\Desktop\HKLM_UserData.TXT
2013-09-05 09:04 - 2009-07-13 21:34 - 19136512 _____ C:\Windows\system32\config\system.bak
2013-09-05 09:00 - 2009-07-13 21:34 - 85983232 _____ C:\Windows\system32\config\software.bak
2013-09-05 07:09 - 2009-07-13 21:34 - 00258048 _____ C:\Windows\system32\config\default.bak
2013-09-05 07:08 - 2009-07-13 21:34 - 00024576 _____ C:\Windows\system32\config\security.bak
2013-09-05 06:50 - 2009-07-13 21:34 - 00057344 _____ C:\Windows\system32\config\sam.bak
2013-09-04 12:56 - 2013-09-04 12:43 - 00000000 ____D C:\Users\FREEBI~1\AppData\Local\Paint.NET
2013-09-04 12:50 - 2010-04-06 22:29 - 00000000 ___RD C:\Users\Free Bird\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-04 12:43 - 2013-09-04 12:43 - 00000000 ____D C:\Program Files\Paint.NET
2013-09-04 12:43 - 2013-09-04 12:42 - 00000000 ____D C:\Users\Free Bird\AppData\Roaming\SmartPCFix
2013-09-04 12:34 - 2013-09-04 12:23 - 90139696 _____ (The GIMP Team                                               ) C:\Users\Free Bird\Downloads\gimp-2.8.6-setup.exe
2013-09-04 12:19 - 2010-06-07 11:24 - 00000000 ____D C:\Users\Free Bird\.gimp-2.6
2013-09-04 12:00 - 2013-09-04 12:00 - 00000856 _____ C:\Users\Free Bird\.recently-used.xbel
2013-09-04 12:00 - 2010-07-19 19:20 - 00000000 ____D C:\Users\Free Bird\AppData\Roaming\gtk-2.0
2013-09-04 12:00 - 2010-04-06 22:29 - 00000000 ____D C:\Users\Free Bird
2013-09-01 13:20 - 2013-09-01 13:20 - 00023659 _____ C:\Users\Free Bird\Desktop\dds.txt
2013-09-01 13:20 - 2013-09-01 13:20 - 00012168 _____ C:\Users\Free Bird\Desktop\attach.txt
2013-09-01 13:12 - 2013-09-01 13:12 - 00688992 ____R (Swearware) C:\Users\Free Bird\Desktop\dds.scr
2013-09-01 13:11 - 2013-09-01 13:11 - 00000000 _____ C:\MyScheduledTasks.txt
2013-08-31 20:50 - 2013-08-31 20:50 - 01027511 _____ (Thisisu) C:\Users\Free Bird\Desktop\JRT(1).exe
2013-08-26 10:26 - 2013-08-26 10:26 - 00000000 _____ C:\Windows\setuperr.log
2013-08-26 10:26 - 2013-04-22 22:44 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-08-26 10:25 - 2010-03-03 14:46 - 00000000 ____D C:\Windows\Panther
2013-08-22 13:44 - 2013-08-22 13:44 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-08-21 23:48 - 2009-07-13 22:20 - 00000000 __RHD C:\Users\Default
2013-08-20 13:23 - 2009-07-14 00:13 - 00732638 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-20 10:23 - 2013-08-20 10:23 - 00000000 ____D C:\Windows\ERUNT
2013-08-20 10:06 - 2013-08-20 10:06 - 00000000 ____D C:\Users\FREEBI~1\AppData\Local\AVG SafeGuard toolbar
2013-08-20 10:06 - 2013-08-20 10:06 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar
2013-08-20 10:06 - 2013-08-20 10:06 - 00000000 ____D C:\Program Files (x86)\AVG SafeGuard toolbar
2013-08-20 10:06 - 2013-08-20 10:05 - 00003725 _____ C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2013-08-20 10:05 - 2013-08-20 10:06 - 00045856 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-08-19 09:56 - 2012-07-31 07:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-17 18:35 - 2010-06-06 23:17 - 00000000 ____D C:\ProgramData\Soulseek
2013-08-17 18:33 - 2010-06-06 23:31 - 00000000 ____D C:\Users\Public\Documents\Slsk
2013-08-17 18:28 - 2013-08-17 18:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-17 09:03 - 2010-04-07 17:42 - 00000000 ____D C:\Program Files (x86)\PCDJ Red Mobile
2013-08-17 09:02 - 2013-08-05 10:54 - 00000000 ____D C:\Users\FREEBI~1\AppData\Local\Backup Assistant Plus
2013-08-16 09:42 - 2010-03-03 13:21 - 00000000 ____D C:\ProgramData\Microsoft Help

Files to move or delete:
====================
C:\Users\FREEBI~1\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-01 18:51

==================== End Of Log ============================

Share this post


Link to post
Share on other sites

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-09-2013
Ran by Free Bird at 2013-09-10 22:50:27
Running from C:\Users\Free Bird\Downloads
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

 Update for Microsoft Office 2007 (KB2508958) (x32)
64 Bit HP CIO Components Installer (Version: 6.2.2)
Acrobat.com (x32 Version: 0.0.0)
Acrobat.com (x32 Version: 1.2.443)
Adobe AIR (x32 Version: 2.5.1.17730)
Adobe Community Help (x32 Version: 3.4.980)
Adobe Dreamweaver CS5.5 (x32 Version: 11.5)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.168)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Media Player (x32 Version: 0.0.0)
Adobe Media Player (x32 Version: 1.1)
Adobe Reader X (10.1.7) (x32 Version: 10.1.7)
Adobe Widget Browser (x32 Version: 2.0 Build 230)
Adobe Widget Browser (x32 Version: 2.0.230)
AllChars 4.0.321 (x32 Version: 4.0.321)
Apple Application Support (x32 Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (x32 Version: 2.1.3.127)
ARO 2013 (Version: 8.0)
ATT-RC Self Support Tool
ATT-RC Self Support Tool (x32)
Audacity 1.3.12 (Unicode) (x32)
Avery Template (x32 Version: 2.0.0.0)
AVG SafeGuard toolbar (x32 Version: 15.4.0.5)
Banctec Service Agreement (x32 Version: 2.0.0)
BlackBerry Desktop Software 5.0 (x32 Version: 5.0.0.8)
BlackBerry Desktop Software 6.0 (x32 Version: 6.0.0.43)
BlackBerry® Media Sync (x32 Version: 2.0.20)
Bonjour (Version: 3.0.0.10)
BufferChm (x32 Version: 130.0.331.000)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000)
Complete Care Business Service Agreement (x32 Version: 2.0.0)
Complete Care Consumer Service Agreement (x32 Version: 2.0.0)
Consumer In-Home Service Agreement (x32 Version: 2.0.0)
Copy (x32 Version: 130.0.428.000)
Cozi (x32 Version: 1.0.4323.24051)
Dell Communications (Support Software) (x32 Version: 1.0.09094)
Dell DataSafe Online (x32 Version: 1.1.0029)
Dell Dock (Version: 2.0.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Home Systems Service Agreement (x32 Version: 2.0.0)
Dell Support Center (Support Software) (x32 Version: 2.5.09100)
Dell Touchpad (Version: 7.102.101.303)
Dell Webcam Central (x32 Version: 1.40.05)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
Destinations (x32 Version: 130.0.0.0)
DeviceDiscovery (x32 Version: 130.0.465.000)
DJ_AIO_03_F4200_Software_Min (x32 Version: 130.0.365.000)
Doxillion Document Converter (x32)
ERUNT 1.1j (x32)
ESET Online Scanner v3 (x32)
Express Burn Disc Burning Software (x32)
F4200 (x32 Version: 130.0.365.000)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
ffdshow [rev 2527] [2008-12-19] (x32 Version: 1.0)
Free M4a to MP3 Converter 7.1 (x32)
Free YouTube to MP3 Converter Studio 7.3 (x32)
Google Chrome (x32 Version: 29.0.1547.66)
Google Earth (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.153)
GoToAssist 8.0.0.514 (x32)
GPBaseService2 (x32 Version: 130.0.371.000)
GPL Ghostscript (Version: 9.05)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Deskjet F4200 All-In-One Driver Software 13.0 Rel. 3 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Photosmart Plus B209a-m All-in-One Driver 14.0 Rel. 6 (Version: 14.0)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Solution Center 13.0 (Version: 13.0)
HP Update (x32 Version: 4.000.011.006)
HPPhotoGadget (x32 Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000)
HPPhotosmartEssential (x32 Version: 2.04.0000)
HPProductAssistant (x32 Version: 130.0.371.000)
HPSSupply (x32 Version: 130.0.371.000)
Intel® Graphics Media Accelerator Driver (x32 Version: 8.15.10.1986)
iTunes (Version: 10.6.0.40)
Java Auto Updater (x32 Version: 2.0.1.2)
Java 6 Update 16 (64-bit) (Version: 6.0.160)
Java 6 Update 18 (x32 Version: 6.0.180)
Junk Mail filter update (x32 Version: 14.0.8089.726)
LG VZW United Drivers (x32 Version: 2.11.1)
Live! Cam Avatar Creator (x32 Version: 4.6.3009.1)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MarketResearch (x32 Version: 130.0.374.000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (x32 Version: 2.0.48.0)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (x32 Version: 1.2.1)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (x32 Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (x32 Version: 1.0.1215.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Works (x32 Version: 9.7.0621)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000)
MixPad Audio Mixer (x32)
Mozilla Firefox 23.0.1 (x86 en-US) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
MSVCRT (x32 Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
muvee Reveal (x32 Version: 8.0.1.16177)
Network64 (Version: 140.0.215.000)
OpenOffice.org 3.2 (x32 Version: 3.2.9483)
PowerDVD DX (x32 Version: 8.3.5424)
PS_AIO_06_B209a-m_SW_Min (x32 Version: 140.0.690.000)
QualXServ Service Agreement (x32 Version: 2.0.0)
Quickset64 (Version: 9.6.11)
RealDownloader (x32 Version: 1.3.0)
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0)
RealPlayer (x32 Version: 16.0.0)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5951)
RealUpgrade 1.1 (x32 Version: 1.1.0)
Roxio Burn (x32 Version: 1.01)
Scan (x32 Version: 140.0.80.000)
Scribus 1.4.0 (x32 Version: 1.4.0)
Shop for HP Supplies (Version: 13.0)
Skype Toolbars (x32 Version: 5.3.7280)
Skype™ 5.10 (x32 Version: 5.10.116)
SmartWebPrinting (x32 Version: 130.0.457.000)
SolutionCenter (x32 Version: 130.0.373.000)
Status (x32 Version: 130.0.469.000)
Toolbox (x32 Version: 140.0.428.000)
TrayApp (x32 Version: 130.0.422.000)
UnloadSupport (x32 Version: 11.0.0)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Access 2007 Help (KB963663) (x32)
Update for Microsoft Office Excel 2007 Help (KB963678) (x32)
Update for Microsoft Office Infopath 2007 Help (KB963662) (x32)
Update for Microsoft Office OneNote 2007 Help (KB963670) (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2768023) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Help (KB963677) (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817642) 32-Bit Edition (x32)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update for Microsoft Office Publisher 2007 Help (KB963667) (x32)
Update for Microsoft Office Script Editor Help (KB963671) (x32)
Update for Microsoft Office Word 2007 Help (KB963665) (x32)
VirtualDJ Home FREE (x32 Version: 7.0.3)
VirtualDJ PRO Full (x32 Version: 7.0.3)
WavePad Sound Editor (x32)
WebReg (x32 Version: 130.0.132.017)
WildTangent Games (x32 Version: 1.0.0.71)
Windows Live Call (x32 Version: 14.0.8064.0206)
Windows Live Communications Platform (x32 Version: 14.0.8064.206)
Windows Live Essentials (x32 Version: 14.0.8089.0726)
Windows Live Essentials (x32 Version: 14.0.8089.726)
Windows Live Mail (x32 Version: 14.0.8089.0726)
Windows Live Messenger (x32 Version: 14.0.8089.0726)
Windows Live Movie Maker (x32 Version: 14.0.8091.0730)
Windows Live Photo Gallery (x32 Version: 14.0.8081.709)
Windows Live Sign-in Assistant (x32 Version: 5.000.818.5)
Windows Live Sync (x32 Version: 14.0.8089.726)
Windows Live Upload Tool (x32 Version: 14.0.8014.1029)
Windows Live Writer (x32 Version: 14.0.8089.0726)
Zipeg (HKCU Version: 2.9.3.1278)

==================== Restore Points  =========================

10-09-2013 16:47:59 Scheduled Checkpoint

==================== Hosts content: ==========================

2009-07-13 21:34 - 2013-09-05 09:12 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {0BA9CF41-B212-4209-891D-2233FDC7EC1E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-10] (Adobe Systems Incorporated)
Task: {1680EEB9-A91B-4FBF-B9D1-1B181BDB5B77} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2374328083-628559870-3858990220-1000Core => C:\Users\Free Bird\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-06] (Facebook Inc.)
Task: {1CC792C8-7D39-45EA-8011-08E6970B4976} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-20] (Microsoft Corporation)
Task: {209A5440-35FF-43C9-81B4-E80E8B100C94} - System32\Tasks\{B610A31D-DADB-44D8-950E-AD85D61065E2} => C:\Users\Free Bird\Downloads\FacebookVideoCallSetup_v1.2.205.0.exe [2013-07-06] (Facebook Inc.)
Task: {2670187C-2E12-46CA-8226-3C0EC39A2982} - System32\Tasks\{9AE5F7ED-D070-4C34-84CA-7F1CEDB833E5} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13] (Skype Technologies S.A.)
Task: {6455F348-887C-4B8E-9FE7-075D8F79D7B2} - System32\Tasks\ReclaimerUpdateFiles_Free Bird => C:\Users\Free Bird\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe [2013-09-07] (RealNetworks, Inc.)
Task: {74285284-AF6C-4AC5-9A7A-D46B32221665} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2374328083-628559870-3858990220-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {744B3546-9877-4C14-96E5-6ED471CBE60A} - System32\Tasks\RNUpgradeHelperResumePrompt_Free Bird => C:\Users\Free Bird\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe [2013-09-07] (RealNetworks, Inc.)
Task: {7EF506AE-D924-4930-A665-26ADF747E0C9} - System32\Tasks\RNUpgradeHelperLogonPrompt_Free Bird => C:\Users\Free Bird\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe [2013-09-07] (RealNetworks, Inc.)
Task: {93F211BA-1F88-4997-A2A7-58D727F57086} - System32\Tasks\AdobeAAMUpdater-1.0-FreeBird-PC-Free Bird => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15] (Adobe Systems Incorporated)
Task: {9473C9EC-13FD-4DDD-B654-70FC63D5CBD2} - System32\Tasks\ReclaimerUpdateXML_Free Bird => C:\Users\Free Bird\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe [2013-09-07] (RealNetworks, Inc.)
Task: {9FB800A0-F5B7-45AF-8DAD-6C0C83C63492} - System32\Tasks\{42D9B1FF-CF67-49BE-9860-D2AA96CC44FF} => C:\Users\Free Bird\Downloads\FacebookVideoCallSetup_v1.2.205.0.exe [2013-07-06] (Facebook Inc.)
Task: {AB9AB3CF-15E1-4F45-816B-CD0373FD8D61} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-04-26] (Google Inc.)
Task: {B7EB2563-9106-4CB0-94CB-9FE4979728D0} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2374328083-628559870-3858990220-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {BCA70C6C-E04F-4DD8-9D57-AD9D87FB3AA1} - System32\Tasks\{589DD16A-A05C-49A9-BD36-EFC83D5599D1} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13] (Skype Technologies S.A.)
Task: {C53EEED9-10BB-4AB0-BCE6-107744ED4AE0} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2374328083-628559870-3858990220-1000UA => C:\Users\Free Bird\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-06] (Facebook Inc.)
Task: {FBB8BCD5-7BDC-487D-91E2-541B22866050} - System32\Tasks\D1234567\Administrator - Start WLAN Tray Applet => C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE [2009-07-17] (Dell Inc.)
Task: {FF49B870-4977-4D1E-8F36-5B0C893F065F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {FFF3A1F8-62FA-4DBB-8BB6-3A1A7585C375} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-04-26] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2374328083-628559870-3858990220-1000Core.job => C:\Users\Free Bird\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2374328083-628559870-3858990220-1000UA.job => C:\Users\Free Bird\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ReclaimerUpdateFiles_Free Bird.job => C:\Users\Free Bird\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe
Task: C:\Windows\Tasks\ReclaimerUpdateXML_Free Bird.job => C:\Users\Free Bird\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe
Task: C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Free Bird.job => C:\Users\Free Bird\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe

==================== Loaded Modules (whitelisted) =============

2009-08-30 22:05 - 2009-08-30 22:05 - 00099328 _____ (Alps Electric Co., Ltd.) C:\Windows\system32\Vxdif.dll
2009-10-30 13:19 - 2009-10-30 13:19 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrENU.lrc
2009-08-30 22:05 - 2009-08-30 22:05 - 00099328 _____ (Alps Electric Co., Ltd.) C:\Windows\system32\VXDIF.DLL
2010-03-03 13:01 - 2009-07-17 11:06 - 00058368 _____ () C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlrmt.dll
2013-08-14 17:27 - 2013-08-14 17:27 - 00402944 _____ (Stardock) C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\dc6c1c14dc9722e80172cb3b44cca792\MyDock.Util.ni.dll
2013-08-14 17:27 - 2013-08-14 17:27 - 03412480 _____ (Stardock Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\91a13a875d44da80f791e92fce232e4d\DellDock.ni.exe
2013-08-14 17:27 - 2013-08-14 17:27 - 00472576 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\b02a06065bf03ce9817ae9cce23bc2e4\VistaBridgeLibrary.ni.dll
2013-08-14 17:27 - 2013-08-14 17:27 - 22171136 _____ (DevComponents.com) C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\681b16a5e035a2bf314b3151991cca96\MenuSkinning.ni.dll
2009-06-30 12:21 - 2009-06-30 12:21 - 00482672 _____ (Stardock) C:\Program Files\Dell\DellDock\MyDockLib.dll
2007-07-25 22:28 - 2007-07-25 22:28 - 00052736 _____ (Jeroen Laarhoven) C:\Program Files (x86)\AllChars\ALLCHR32.DLL
2009-10-20 21:02 - 2010-04-11 19:32 - 00970752 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2009-07-07 11:24 - 2009-07-07 11:24 - 00268528 _____ () C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll
2009-07-07 11:23 - 2009-07-07 11:23 - 00058608 _____ () C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll
2009-07-07 11:24 - 2009-07-07 11:24 - 00095472 _____ () C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll
2009-07-07 11:24 - 2009-07-07 11:24 - 00140528 _____ () C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll
2009-07-07 11:23 - 2009-07-07 11:23 - 00337648 _____ (TODO: <Company name>) C:\Program Files (x86)\Dell DataSafe Online\OlbEng.dll
2009-06-03 15:37 - 2009-06-03 15:37 - 01647104 _____ (SwapDrive, Inc.) C:\Program Files (x86)\Dell DataSafe Online\BuEng.dll
2009-07-07 11:23 - 2009-07-07 11:23 - 00017648 _____ () C:\Program Files (x86)\Dell DataSafe Online\cpputils.dll
2010-03-03 13:34 - 2009-06-22 21:15 - 00235008 _____ (Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
2010-03-03 13:34 - 2009-06-23 18:16 - 00065536 _____ (Creative Technology Ltd.) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
2009-05-21 09:59 - 2009-05-21 09:59 - 00073728 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll
2009-05-21 09:59 - 2009-05-21 09:59 - 00881960 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll
2009-05-21 09:59 - 2009-05-21 09:59 - 00382248 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll
2009-05-21 09:59 - 2009-05-21 09:59 - 00402728 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll
2009-05-21 09:59 - 2009-05-21 09:59 - 01069056 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\LIBEAY32.dll
2009-05-21 09:59 - 2009-05-21 09:59 - 00881960 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll
2009-05-21 09:59 - 2009-05-21 09:59 - 00386344 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll
2009-05-21 09:59 - 2009-05-21 09:59 - 00040848 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll
2009-05-21 09:59 - 2009-05-21 09:59 - 00024464 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll
2009-05-05 06:39 - 2009-05-05 06:39 - 00881960 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell\DellComms\bin\sprtsched.dll
2009-05-05 06:39 - 2009-05-05 06:39 - 00382248 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell\DellComms\bin\sprtevent.dll
2009-05-05 06:39 - 2009-05-05 06:39 - 00402728 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell\DellComms\bin\sprtfod.dll
2009-05-05 06:39 - 2009-05-05 06:39 - 01069056 _____ (SupportSoft, Inc.) C:\Program Files (x86)\DELL\DellComms\bin\LIBEAY32.dll
2009-05-05 06:39 - 2009-05-05 06:39 - 00881960 _____ (SupportSoft, Inc.) C:\Program Files (x86)\Dell\DellComms\bin\sprtsync.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 00053608 _____ (Open Source Software community project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-08-31 00:05 - 2011-08-31 00:05 - 00085864 _____ (Apple Inc.) C:\Windows\system32\dnssd.dll
2009-05-14 17:49 - 2009-05-14 17:49 - 00053760 _____ (Hewlett-Packard) C:\Windows\system32\hpzipr12.dll
2013-08-17 18:28 - 2013-08-17 18:28 - 03551640 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) ==========

AlternateDataStreams: C:\ProgramData:$SS_DESCRIPTOR_1VPTV1VTMVFBFLVHKV6FYJ6VDVPMF7LBWK96HUTVVVVVVVVVVVVV
AlternateDataStreams: C:\Users\All Users:$SS_DESCRIPTOR_1VPTV1VTMVFBFLVHKV6FYJ6VDVPMF7LBWK96HUTVVVVVVVVVVVVV
AlternateDataStreams: C:\ProgramData\Application Data:$SS_DESCRIPTOR_1VPTV1VTMVFBFLVHKV6FYJ6VDVPMF7LBWK96HUTVVVVVVVVVVVVV
AlternateDataStreams: C:\Users\Free Bird\Downloads\noname.eml:OECustomProperty


==================== Faulty Device Manager Devices =============

Name: Deskjet 3050A J611 series
Description: Deskjet 3050A J611 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Photosmart Plus B210 series
Description: Photosmart Plus B210 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/10/2013 11:43:36 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1".Error in manifest or policy file "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" on line WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Please use sxstrace.exe for detailed diagnosis.

Error: (09/10/2013 11:43:20 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/10/2013 11:42:27 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/10/2013 09:52:22 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/10/2013 09:51:57 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (09/10/2013 10:29:07 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (09/10/2013 10:29:07 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (09/10/2013 10:29:07 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (09/10/2013 10:29:07 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (09/10/2013 10:29:07 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (09/10/2013 10:29:07 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (09/10/2013 10:29:05 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (09/10/2013 10:29:05 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (09/10/2013 10:29:05 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (09/10/2013 10:27:09 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535


Microsoft Office Sessions:
=========================
Error: (12/28/2011 11:36:44 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 82107 seconds with 0 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2013-08-21 23:44:17.043
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-08-21 23:44:16.793
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 38%
Total physical RAM: 3892.54 MB
Available physical RAM: 2391.02 MB
Total Pagefile: 7783.26 MB
Available Pagefile: 6110.95 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:58.59 GB) (Free:3.46 GB) NTFS
Drive d: () (Fixed) (Total:229.63 GB) (Free:111.13 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 2DA44573)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=10 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=59 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=230 GB) - (Type=OF Extended)

==================== End Of Log ============================

Share this post


Link to post
Share on other sites

Please uninstall ALL versions of Java from the system and then reboot the computer.

 

Then do the following.

 

Please download the attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST or FRST64 and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on this particular machine. Running this on another machine may cause damage to your operating system.

Run FRST or FRST64 and press the Fix button just once and wait.
If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart.
The tool will make a log on the Desktop (Fixlog.txt). Please attach or post it to your next reply.

Note: If the tool warned you about an outdated version please download and save it to your computer, do not run it from the Browser.  Save it then quit your browser and then run the new one.
 

fixlist.txt

Share this post


Link to post
Share on other sites

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-09-2013 02
Ran by Free Bird at 2013-09-11 23:36:07 Run:1
Running from C:\Users\Free Bird\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope {A7B674D0-41CF-4F47-B296-42036AFC48E2} URL = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {6D5090C7-791B-4499-9408-20B2EC8187CB} URL =
SearchScopes: HKCU - {A7B674D0-41CF-4F47-B296-42036AFC48E2} URL =
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
C:\Users\FREEBI~1\AppData\Local\Temp\Quarantine.exe
AlternateDataStreams: C:\ProgramData:$SS_DESCRIPTOR_1VPTV1VTMVFBFLVHKV6FYJ6VDVPMF7LBWK96HUTVVVVVVVVVVVVV
AlternateDataStreams: C:\Users\All Users:$SS_DESCRIPTOR_1VPTV1VTMVFBFLVHKV6FYJ6VDVPMF7LBWK96HUTVVVVVVVVVVVVV
AlternateDataStreams: C:\ProgramData\Application Data:$SS_DESCRIPTOR_1VPTV1VTMVFBFLVHKV6FYJ6VDVPMF7LBWK96HUTVVVVVVVVVVVVV
AlternateDataStreams: C:\Users\Free Bird\Downloads\noname.eml:OECustomProperty



*****************

HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6D5090C7-791B-4499-9408-20B2EC8187CB} => Key deleted successfully.
HKCR\CLSID\{6D5090C7-791B-4499-9408-20B2EC8187CB} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A7B674D0-41CF-4F47-B296-42036AFC48E2} => Key deleted successfully.
HKCR\CLSID\{A7B674D0-41CF-4F47-B296-42036AFC48E2} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} => Value deleted successfully.
HKCR\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068} => Key not found.
C:\Users\FREEBI~1\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\ProgramData => ":$SS_DESCRIPTOR_1VPTV1VTMVFBFLVHKV6FYJ6VDVPMF7LBWK96HUTVVVVVVVVVVVVV" ADS removed successfully.
"C:\Users\All Users" => ":$SS_DESCRIPTOR_1VPTV1VTMVFBFLVHKV6FYJ6VDVPMF7LBWK96HUTVVVVVVVVVVVVV" ADS not found.
"C:\ProgramData\Application Data" => ":$SS_DESCRIPTOR_1VPTV1VTMVFBFLVHKV6FYJ6VDVPMF7LBWK96HUTVVVVVVVVVVVVV" ADS not found.
C:\Users\Free Bird\Downloads\noname.eml => ":OECustomProperty" ADS removed successfully.

==== End of Fixlog ====

Share this post


Link to post
Share on other sites

Great, okay please run the following.

 

Please download MiniToolBox save it to your desktop and run it.

Checkmark the following check-boxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using Reset FF Proxy Settings option Firefox should be closed.
 

 

 

Then run MBAM and check for updates and do a Quick Scan and post back that log.

 

Share this post


Link to post
Share on other sites

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Free Bird (administrator) on 12-09-2013 at 12:20:34
Running from "C:\Users\Free Bird\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection 2" forwarding=disabled advertise=disabled mtu=1428 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : FreeBird-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : B8-AC-6F-54-3D-0C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
   Physical Address. . . . . . . . . : C4-17-FE-D5-E2-E5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 192.168.1.5(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, September 12, 2013 12:14:39 PM
   Lease Expires . . . . . . . . . . : Friday, September 13, 2013 12:14:39 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{858B84A8-F1E7-49BB-93AC-C690F586E259}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{30229B51-6BC5-4D5A-81BB-C7FC8F69C826}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:183e:3dff:3f57:fefa(Preferred)
   Link-local IPv6 Address . . . . . : fe80::183e:3dff:3f57:fefa%13(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4009:805::1005
      173.194.46.64
      173.194.46.65
      173.194.46.66
      173.194.46.67
      173.194.46.68
      173.194.46.69
      173.194.46.70
      173.194.46.71
      173.194.46.72
      173.194.46.73
      173.194.46.78


Pinging google.com [173.194.46.65] with 32 bytes of data:
Reply from 173.194.46.65: bytes=32 time=185ms TTL=54
Reply from 173.194.46.65: bytes=32 time=64ms TTL=54

Ping statistics for 173.194.46.65:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 64ms, Maximum = 185ms, Average = 124ms
Server:  UnKnown
Address:  192.168.1.1

DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=118ms TTL=46
Reply from 98.139.183.24: bytes=32 time=118ms TTL=46

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 118ms, Maximum = 118ms, Average = 118ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...b8 ac 6f 54 3d 0c ......Realtek PCIe FE Family Controller
 10...c4 17 fe d5 e2 e5 ......Dell Wireless 1397 WLAN Mini-Card
  1...........................Software Loopback Interface 1
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.5     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.5    281
      192.168.1.5  255.255.255.255         On-link       192.168.1.5    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.5    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.5    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.5    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:4137:9e76:183e:3dff:3f57:fefa/128
                                    On-link
 13    306 fe80::/64                On-link
 13    306 fe80::183e:3dff:3f57:fefa/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/12/2013 00:20:55 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.

Error: (09/12/2013 00:20:53 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.

Error: (09/12/2013 00:20:52 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.

Error: (09/12/2013 00:20:51 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.

Error: (09/12/2013 00:20:50 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.

Error: (09/12/2013 00:20:49 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.

Error: (09/12/2013 00:20:47 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.

Error: (09/12/2013 00:20:46 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.

Error: (09/12/2013 00:20:45 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.

Error: (09/12/2013 00:20:44 PM) (Source: MsiInstaller) (User: FreeBird-PC)
Description: Product: Adobe Reader X (10.1.8) -- Error 1711.An error occurred while writing installation information to disk.  Check to make sure enough disk space is available, and click Retry, or Cancel to end the installation.


System errors:
=============
Error: (09/12/2013 00:20:51 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070652: Security Update for Microsoft Office Outlook 2007 (KB2825999).

Error: (09/12/2013 00:20:45 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070652: Security Update for Microsoft Office 2007 suites (KB2596825).

Error: (09/12/2013 00:20:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070652: Security Update for Microsoft Office 2007 suites (KB2760411).

Error: (09/12/2013 00:14:56 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (09/12/2013 00:14:56 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (09/12/2013 00:14:56 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (09/12/2013 00:14:56 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (09/12/2013 00:14:56 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (09/12/2013 00:14:56 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (09/12/2013 00:14:49 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535


Microsoft Office Sessions:
=========================
Error: (12/28/2011 11:36:44 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 82107 seconds with 0 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2013-08-21 23:44:17.043
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-08-21 23:44:16.793
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
64 Bit HP CIO Components Installer (Version: 6.2.2)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.2.443)
Adobe AIR (Version: 2.5.1.17730)
Adobe Community Help (Version: 3.4.980)
Adobe Dreamweaver CS5.5 (Version: 11.5)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.168)
Adobe Flash Player 11 Plugin (Version: 11.8.800.168)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Reader X (10.1.7) (Version: 10.1.7)
Adobe Widget Browser (Version: 2.0 Build 230)
Adobe Widget Browser (Version: 2.0.230)
AllChars 4.0.321 (Version: 4.0.321)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ARO 2013 (Version: 8.0)
ATT-RC Self Support Tool
Audacity 1.3.12 (Unicode)
Avery Template (Version: 2.0.0.0)
AVG SafeGuard toolbar (Version: 15.4.0.5)
Banctec Service Agreement (Version: 2.0.0)
BlackBerry Desktop Software 5.0 (Version: 5.0.0.8)
BlackBerry Desktop Software 6.0 (Version: 6.0.0.43)
BlackBerry® Media Sync (Version: 2.0.20)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 130.0.331.000)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Complete Care Business Service Agreement (Version: 2.0.0)
Complete Care Consumer Service Agreement (Version: 2.0.0)
Consumer In-Home Service Agreement (Version: 2.0.0)
Copy (Version: 130.0.428.000)
Cozi (Version: 1.0.4323.24051)
Dell Communications (Support Software) (Version: 1.0.09094)
Dell DataSafe Online (Version: 1.1.0029)
Dell Dock (Version: 2.0.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell Support Center (Support Software) (Version: 2.5.09100)
Dell Touchpad (Version: 7.102.101.303)
Dell Webcam Central (Version: 1.40.05)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.465.000)
DJ_AIO_03_F4200_Software_Min (Version: 130.0.365.000)
Doxillion Document Converter
ERUNT 1.1j
ESET Online Scanner v3
Express Burn Disc Burning Software
F4200 (Version: 130.0.365.000)
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
ffdshow [rev 2527] [2008-12-19] (Version: 1.0)
Free M4a to MP3 Converter 7.1
Free YouTube to MP3 Converter Studio 7.3
Google Chrome (Version: 29.0.1547.66)
Google Earth (Version: 7.1.1.1888)
Google Update Helper (Version: 1.3.21.153)
GoToAssist 8.0.0.514
GPBaseService2 (Version: 130.0.371.000)
GPL Ghostscript (Version: 9.05)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Deskjet F4200 All-In-One Driver Software 13.0 Rel. 3 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Photosmart Plus B209a-m All-in-One Driver 14.0 Rel. 6 (Version: 14.0)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 4.000.011.006)
HPPhotoGadget (Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1986)
iTunes (Version: 10.6.0.40)
Java Auto Updater (Version: 2.0.1.2)
Java 6 Update 16 (64-bit) (Version: 6.0.160)
Java 6 Update 18 (Version: 6.0.180)
Junk Mail filter update (Version: 14.0.8089.726)
LG VZW United Drivers (Version: 2.11.1)
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MarketResearch (Version: 130.0.374.000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 1.2.1)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
MixPad Audio Mixer
Mozilla Firefox 23.0.1 (x86 en-US) (Version: 23.0.1)
Mozilla Maintenance Service (Version: 23.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee Reveal (Version: 8.0.1.16177)
Network64 (Version: 140.0.215.000)
OpenOffice.org 3.2 (Version: 3.2.9483)
PowerDVD DX (Version: 8.3.5424)
PS_AIO_06_B209a-m_SW_Min (Version: 140.0.690.000)
QualXServ Service Agreement (Version: 2.0.0)
Quickset64 (Version: 9.6.11)
RealDownloader (Version: 1.3.0)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.0)
Realtek High Definition Audio Driver (Version: 6.0.1.5951)
RealUpgrade 1.1 (Version: 1.1.0)
Roxio Burn (Version: 1.01)
Scan (Version: 140.0.80.000)
Scribus 1.4.0 (Version: 1.4.0)
Shop for HP Supplies (Version: 13.0)
Skype Toolbars (Version: 5.3.7280)
Skype™ 5.10 (Version: 5.10.116)
SmartWebPrinting (Version: 130.0.457.000)
SolutionCenter (Version: 130.0.373.000)
Status (Version: 130.0.469.000)
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 130.0.422.000)
UnloadSupport (Version: 11.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2768023) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817642) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VirtualDJ Home FREE (Version: 7.0.3)
VirtualDJ PRO Full (Version: 7.0.3)
WavePad Sound Editor
WebReg (Version: 130.0.132.017)
WildTangent Games (Version: 1.0.0.71)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Zipeg (Version: 2.9.3.1278)

========================= Devices: ================================

Name: Deskjet 3050A J611 series
Description: Deskjet 3050A J611 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Photosmart Plus B210 series
Description: Photosmart Plus B210 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 3892.54 MB
Available physical RAM: 2247.47 MB
Total Pagefile: 7783.26 MB
Available Pagefile: 6044.96 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970.54 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:58.59 GB) (Free:3.37 GB) NTFS
2 Drive d: () (Fixed) (Total:229.63 GB) (Free:111.18 GB) NTFS

========================= Users: ========================================

User accounts for \\FREEBIRD-PC

Administrator            Free Bird                Guest                    

========================= Minidump Files ==================================


**** End of log ****
 

Share this post


Link to post
Share on other sites

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.09.12.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Free Bird :: FREEBIRD-PC [administrator]

9/12/2013 12:23:05 PM
mbam-log-2013-09-12 (12-23-05).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 308390
Time elapsed: 7 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.