Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Cant start windows defender or malwarebytes anti malware [Solved]


  • This topic is locked This topic is locked

#1
shanecam

shanecam

    Member

  • Member
  • PipPip
  • 48 posts
Hi,
My computer has been running slower lately and I tried to check for malware but i cant start windows defender or malwarebytes anti malware. Here is my OTL log. Any help would be greatly appreciated.
Thanks Shane

OTL logfile created on: 05/01/2014 11:22:57 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\campbell\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

2.94 Gb Total Physical Memory | 1.63 Gb Available Physical Memory | 55.59% Memory free
6.07 Gb Paging File | 4.69 Gb Available in Paging File | 77.23% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455.71 Gb Total Space | 352.01 Gb Free Space | 77.24% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 6.13 Gb Free Space | 61.32% Space Free | Partition Type: NTFS

Computer Name: CAMPBELL-PC | User Name: campbell | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/01/05 11:22:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\campbell\Downloads\OTL.exe
PRC - [2013/10/23 15:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2013/10/23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2013/10/23 14:55:28 | 000,948,440 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2013/08/28 20:23:38 | 001,861,968 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2013/05/10 03:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/01/17 06:22:20 | 004,907,008 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007/12/05 05:17:24 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTSrv.exe
PRC - [2007/01/05 17:12:58 | 000,258,048 | ---- | M] (SONIX) -- C:\Windows\tsnp2std.exe
PRC - [2006/09/15 13:21:54 | 000,675,840 | ---- | M] (Sonix) -- C:\Windows\vsnp2std.exe


========== Modules (No Company Name) ==========

MOD - [2013/12/03 22:48:04 | 000,399,312 | ---- | M] () -- C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppgooglenaclpluginchrome.dll
MOD - [2013/12/03 22:48:03 | 013,586,896 | ---- | M] () -- C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll
MOD - [2013/12/03 22:48:02 | 004,055,504 | ---- | M] () -- C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll
MOD - [2013/12/03 22:47:11 | 000,702,416 | ---- | M] () -- C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
MOD - [2013/12/03 22:47:11 | 000,099,792 | ---- | M] () -- C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\libegl.dll
MOD - [2013/12/03 22:47:08 | 001,619,408 | ---- | M] () -- C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
MOD - [2013/08/28 20:25:02 | 000,100,688 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2013/08/28 20:23:38 | 001,861,968 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011/09/27 06:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/09/27 06:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll


========== Services (SafeList) ==========

SRV - [2013/12/20 15:19:19 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/12/10 22:38:53 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/10/23 15:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2013/10/23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013/05/10 03:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2010/12/28 04:00:34 | 001,296,728 | ---- | M] (www.BitComet.com) [On_Demand | Stopped] -- C:\Program Files\BitComet\tools\BitCometService.exe -- (BITCOMET_HELPER_SERVICE)
SRV - [2008/04/07 08:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008/01/19 03:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008/01/10 21:30:56 | 000,016,936 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files\Citrix\GoToAssist\480\g2aservice.exe -- (GoToAssist)
SRV - [2007/12/05 05:17:24 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AERTSrv.exe -- (AERTFilters)
SRV - [2007/05/31 10:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 10:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (Normandy)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2014/01/05 06:04:26 | 000,040,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DC2D1E2B-483A-4C68-B5DB-280EE79F8784}\MpKsl57dd5710.sys -- (MpKsl57dd5710)
DRV - [2013/09/27 09:53:06 | 000,104,768 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2009/08/24 08:23:18 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009/07/14 17:54:00 | 009,557,216 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2007/12/23 10:51:03 | 000,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2007/09/17 14:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007/08/09 17:12:30 | 000,110,624 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2007/04/27 18:02:08 | 012,039,552 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2sxp.sys -- (SNP2STD)
DRV - [2007/04/25 05:15:52 | 000,522,624 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atinavrr.sys -- (ATIAVPCI)
DRV - [2007/03/15 09:57:30 | 001,059,112 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2006/11/02 03:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2006/11/02 03:30:55 | 000,200,704 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\URLSearchHook: {7f3f960e-a836-45ca-8911-0accb522246e} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...ie7&rlz=1I7DACA
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...8991772290&UM=2

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.condui...&ctid=CT3294791
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {7f3f960e-a836-45ca-8911-0accb522246e} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask...8A-6779B9FAD181
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...z=1I7GPEA_en-GB
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...8991772290&UM=2
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www1.sympatic...n&stn=CAPE0005"


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\campbell\AppData\Roaming\Move Networks\plugins\npqmp071502000008.dll (Move Networks)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\campbell\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\campbell\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/12/20 15:18:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/12/20 15:18:46 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\campbell\AppData\Roaming\Move Networks [2010/01/25 21:21:28 | 000,000,000 | ---D | M]

[2008/08/31 07:50:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\campbell\AppData\Roaming\Mozilla\Extensions
[2013/12/12 16:50:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\extensions
[2010/05/06 05:43:16 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2013/12/12 16:50:20 | 000,000,000 | ---D | M] (Vafmusic2) -- C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\extensions\{7f3f960e-a836-45ca-8911-0accb522246e}
[2011/10/22 11:09:32 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2013/11/05 15:59:06 | 000,053,945 | ---- | M] () (No name found) -- C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\extensions\[email protected]
[2010/11/16 21:20:05 | 000,002,388 | ---- | M] () -- C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\searchplugins\askcom.xml
[2013/11/07 22:14:18 | 000,000,995 | ---- | M] () -- C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\searchplugins\conduit.xml
[2013/12/20 15:18:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/12/20 15:19:21 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011/09/09 00:49:04 | 001,037,112 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Widevine Content Decryption Module (Enabled) = C:\Users\campbell\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.376\_platform_specific\win_x86\widevinecdmadapter.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Disabled) = internal-remoting-viewer
CHR - plugin: Native Client (Disabled) = C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np32dsw.dll
CHR - plugin: BitCometAgent (Disabled) = C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll
CHR - plugin: DivX Player Netscape Plugin (Disabled) = C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
CHR - plugin: 2007 Microsoft Office system (Disabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime Alternative\plugins\npqtplugin5.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
CHR - plugin: DivX VOD Helper Plug-in (Disabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Disabled) = C:\Program Files\DivX\DivX Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Disabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Updater (Disabled) = C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll
CHR - plugin: Java Deployment Toolkit 7.0.450.18 (Enabled) = C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
CHR - plugin: Java™ Platform SE 7 U45 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: iTunes Application Detector (Disabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Google Update (Enabled) = C:\Users\campbell\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll
CHR - plugin: Move Streaming Media Player (Disabled) = C:\Users\campbell\AppData\Roaming\Move Networks\plugins\npqmp071502000008.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Disabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Entanglement Web App = C:\Users\campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\3.4.9_0\
CHR - Extension: Poppit = C:\Users\campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi\2.2_0\
CHR - Extension: Google Wallet = C:\Users\campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\

O1 HOSTS File: ([2010/12/15 16:10:13 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Vafmusic2 Toolbar) - {7f3f960e-a836-45ca-8911-0accb522246e} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (PricePeep) - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files\PricePeep\pricepeep.dll (PricePeep)
O3 - HKLM\..\Toolbar: (Vafmusic2 Toolbar) - {7f3f960e-a836-45ca-8911-0accb522246e} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Vafmusic2 Toolbar) - {7F3F960E-A836-45CA-8911-0ACCB522246E} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [ECenter] C:\DELL\E-Center\EULALauncher.exe ( )
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime Alternative\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [snp2std] C:\Windows\vsnp2std.exe (Sonix)
O4 - HKLM..\Run: [tsnp2std] C:\Windows\tsnp2std.exe (SONIX)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [BitComet] C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O4 - HKCU..\Run: [MobileDocuments] C:\Program Files\Common Files\Apple\Internet Services\ubd.exe File not found
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B3E45FFE-5593-4101-943B-E08E7926BE25}: DhcpNameServer = 192.168.2.1 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\campbell\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\campbell\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/12/20 15:18:44 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/12/14 16:22:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/12/14 16:21:52 | 000,000,000 | ---D | C] -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2013/12/13 01:20:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2007/12/29 14:40:25 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\campbell\AppData\Roaming\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2014/01/05 11:24:13 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/01/05 11:10:18 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2848612992-254581648-1744192224-1000UA.job
[2014/01/05 10:37:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/01/05 10:10:00 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2848612992-254581648-1744192224-1000Core.job
[2014/01/05 10:07:01 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/01/05 10:05:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/01/04 13:53:00 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2014/01/04 08:06:37 | 000,430,736 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014/01/04 08:05:59 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2014/01/04 08:05:56 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/12/27 11:08:35 | 000,609,182 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/12/27 11:08:35 | 000,108,690 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/12/27 11:00:37 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2013/12/14 16:22:53 | 000,001,666 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/12/13 01:20:59 | 000,002,075 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk

========== Files Created - No Company Name ==========

[2013/12/14 16:22:53 | 000,001,666 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/12/13 01:20:59 | 000,002,075 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2011/06/18 21:36:12 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/03/07 20:40:00 | 000,001,356 | ---- | C] () -- C:\Users\campbell\AppData\Local\d3d9caps.dat
[2009/03/07 20:39:59 | 000,000,552 | ---- | C] () -- C:\Users\campbell\AppData\Local\d3d8caps.dat
[2008/01/10 21:30:47 | 000,060,968 | ---- | C] () -- C:\Users\campbell\GoToAssistDownloadHelper.exe
[2008/01/04 15:23:18 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2007/12/29 14:40:25 | 000,087,608 | ---- | C] () -- C:\Users\campbell\AppData\Roaming\inst.exe
[2007/12/29 14:40:25 | 000,007,887 | ---- | C] () -- C:\Users\campbell\AppData\Roaming\pcouffin.cat
[2007/12/29 14:40:25 | 000,001,144 | ---- | C] () -- C:\Users\campbell\AppData\Roaming\pcouffin.inf
[2007/12/26 21:55:11 | 000,000,120 | ---- | C] () -- C:\Users\campbell\AppData\Roaming\FixVTS.ini
[2007/12/23 19:33:52 | 000,001,024 | ---- | C] () -- C:\Users\campbell\.rnd
[2007/12/23 11:32:13 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2007/12/12 23:17:18 | 000,000,284 | ---- | C] () -- C:\Users\campbell\AppData\Roaming\wklnhst.dat
[2007/12/11 21:49:22 | 000,168,960 | ---- | C] () -- C:\Users\campbell\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2006/11/02 08:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 13:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 02:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 02:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/08/13 13:00:40 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\BitComet
[2011/11/06 15:39:06 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\FrostWire
[2010/06/05 17:29:56 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\GetRightToGo
[2012/02/17 16:00:48 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\HandBrake
[2008/10/19 19:49:52 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\LimeWire
[2008/09/25 19:59:44 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\OLYMPUS
[2010/03/23 20:15:23 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\PC Suite
[2011/04/26 16:39:56 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\RipIt4Me
[2010/06/01 11:41:12 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\Samsung
[2009/03/07 20:39:15 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\SystemRequirementsLab
[2007/12/20 19:56:29 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\Template
[2012/10/25 18:32:11 | 000,000,000 | ---D | M] -- C:\Users\campbell\AppData\Roaming\Vso

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 76 bytes -> C:\Users\campbell\Documents\school:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\campbell\Documents\PcSetup:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\campbell\Documents\OneNote Notebooks:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\campbell\Documents\My Projects:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\campbell\Documents\DVDFab:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\campbell\Documents\Alcohol 120%:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\campbell\Desktop\resumes:Roxio EMC Stream

< End of report >

OTL Extras logfile created on: 05/01/2014 11:22:57 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\campbell\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

2.94 Gb Total Physical Memory | 1.63 Gb Available Physical Memory | 55.59% Memory free
6.07 Gb Paging File | 4.69 Gb Available in Paging File | 77.23% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455.71 Gb Total Space | 352.01 Gb Free Space | 77.24% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 6.13 Gb Free Space | 61.32% Space Free | Partition Type: NTFS

Computer Name: CAMPBELL-PC | User Name: campbell | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{12C960B3-607E-4590-9528-683F84D614BD}" = lport=59364 | protocol=17 | dir=in | name=bitcomet 59364 udp |
"{1DBAF56C-1C2E-4E52-AB47-C7FAAEEF5D6D}" = lport=9364 | protocol=17 | dir=in | name=bitcomet 9364 udp |
"{1E955154-BE49-4330-A95D-9810EF2D8E66}" = lport=10243 | protocol=6 | dir=in | app=system |
"{60392407-6481-40E5-A841-2486271ECC88}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8E878563-38AB-47B0-9DB4-D0EE9B39A2E2}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9AA40D49-77D1-483C-936A-B5E07FBBF249}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A3403370-BB24-4051-AC89-05CBB3D52C17}" = lport=2869 | protocol=6 | dir=in | app=system |
"{A491579B-C8D1-4136-81A9-747F034A28DB}" = lport=9364 | protocol=6 | dir=in | name=bitcomet 9364 tcp |
"{C589F1E2-6B77-4ADE-B5BC-2F03C36B01F9}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DCC7F50A-B041-4B1E-B779-DD67E08A4CB1}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F210D502-09F6-4F89-BF6D-3D3310C46EF2}" = lport=59364 | protocol=6 | dir=in | name=bitcomet 59364 tcp |
"{F7149B28-F582-4839-8433-1B53FFD8C6EE}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{FA4F6C20-C693-410A-9908-6E6877EA00DB}" = rport=10243 | protocol=6 | dir=out | app=system |
"{FF9E8B2F-76FB-498B-8651-9D9BDBD070F4}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0AE5D01D-DFA0-4885-B3A2-DF77AD32CEA0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0DBA2188-65CF-492D-BB05-9067021C5B2A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{247F5E24-A5B1-49B5-BE85-33054BA580E0}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{4B95F77D-DBC1-47F0-A2E0-7C5ED7CC109A}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{5C900605-448B-443F-A7B9-E65805630E97}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6217F909-A73B-4EBC-A938-2D6CB56C2BA1}" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"{6BB33322-9EE4-4A3F-BFDF-C0F0C7302448}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{78CCE00A-3C96-415E-BFCE-69D21A598A7D}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{79B8359B-1EBF-42C1-ABE4-D8DE59F36BB4}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{7DD5C844-E39C-42F5-9BB9-DBDA57E806CE}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{8231B237-7437-44A4-B4B7-9C88E4EFD65D}" = protocol=17 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"{82A896FF-464D-4498-A444-A29B29102951}" = protocol=6 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"{8B637FF3-C916-44AD-B156-78D8786F9A7A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8C6631AE-48CD-44F4-A034-08BE032F37D8}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{8FAA8B95-8DF1-4694-A8F5-B26C020B4CA1}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{93407A1F-B5B4-48FB-AFC9-FBC0077DD7C7}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{93B06AA9-A503-4DDB-85A0-2F4BF7864BA6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{94C14B42-63B2-453E-85D5-A9CC04155612}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{95D47B41-1526-4D1C-BB26-0F73ADAF78BD}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{9A8D9C52-4422-4306-ADED-5F7372B91ECD}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{A0B161DC-B359-4C98-894F-8BDB87FE734D}" = protocol=6 | dir=out | app=system |
"{A49710E8-D242-4503-8EF1-223280B1C3A1}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B02056A7-FE6C-4BF8-ABF7-2603E41985AC}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{B13CF492-97CD-4A6A-84DD-3D99B7D2070C}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{B1EE1BFE-64E4-4C27-9F5E-76A3A2DC3443}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{BFC197AD-844D-4E29-BA94-03D274AA0D02}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CB5614AF-4156-4BA0-89B9-3BF7AB811B35}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{CC4D90BD-F5AC-4BF9-B3D4-FAF7A8590A56}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D5225BA8-D26F-4F99-B0FF-E5ABBF2FC0C3}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{E4FF1A8C-7F2C-4012-899D-023C34340C99}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E8E2B041-1315-4DA4-9021-47DBF25954FC}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{FF8B248B-D11B-46D9-B04F-C60D93499B5A}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"TCP Query User{152973B2-6126-4083-939E-A46F5552112F}C:\program files\bitcomet\bitcomet.exe" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"TCP Query User{288A8FC6-8A94-4933-BF7E-1B79DF0C00AA}C:\program files\microsoft office\office12\groove.exe" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"TCP Query User{33909D1D-4F72-454D-B4B6-288136723347}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"TCP Query User{70E3EC33-E609-4B65-8658-2F9EB06D5A9C}C:\program files\bitcomet\bitcomet.exe" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"TCP Query User{712A8692-AE8D-4632-91F4-A724BB792192}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{9C7BE7F2-8206-4B26-86DF-D651EC55DEF8}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{BDA91DA9-2A25-4956-9450-780FD238C131}C:\program files\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"TCP Query User{CEDBF7D9-2D9B-4A26-A196-C1F181F243F2}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{F3F164CF-AF34-467B-BCC9-B8DFA068F801}C:\program files\frostwire\frostwire.exe" = protocol=6 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"UDP Query User{08186BB8-CA32-43C3-A0C4-E1A4315013C0}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{15E5E2D2-D027-40F8-BA60-91429540B2A5}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{1DBBAE8D-2753-47C5-A270-24AAE935F735}C:\program files\bitcomet\bitcomet.exe" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"UDP Query User{1E606454-A460-416B-B483-D3DC6A564316}C:\program files\frostwire\frostwire.exe" = protocol=17 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"UDP Query User{595064EA-D0B3-4112-A719-8C7CBC55105B}C:\program files\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"UDP Query User{787DB9E8-E944-429A-AACD-BAAA0F7E4E52}C:\program files\microsoft office\office12\groove.exe" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"UDP Query User{C246F207-781C-40DA-8413-99373136F019}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"UDP Query User{C6401C8A-A7CF-4C82-95D3-CDFE87D8E526}C:\program files\bitcomet\bitcomet.exe" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"UDP Query User{FDED1C7C-23AA-4724-B3FE-B7B90540DB67}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0394CDC8-FABD-4ed8-B104-03393876DFDF}" = Roxio Creator Tools
"{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}" = Apple Mobile Device Support
"{0CD47142-BA4F-46B0-AA92-2675864928B8}" = Microsoft Security Client
"{0D397393-9B50-4c52-84D5-77E344289F87}" = Roxio Creator Data
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1943A043-5C85-4A16-A0D0-D687B2C1A40F}" = VirtualCom driver
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 45
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}" = Sonic Activation Module
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}" = Google Earth
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}" = User's Guides
"{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler
"{67A5D171-4C74-4075-A492-0E480FA4B944}" = Brother BRAdmin Professional 2.49
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{710BF966-43C8-4216-A8EC-BC4E169FF7C1}" = MobileMe Control Panel
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{75438C0E-9925-412E-AD85-D0E71C6CE2ED}" = USB2.0 PC Camera (SN9C201&202)
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7B63B2922B174135AFC0E1377DD81EC2}" =
"{83FFCFC7-88C6-41c6-8752-958A45325C82}" = Roxio Creator Audio
"{880AF49C-34F7-4285-A8AD-8F7A3D1C33DC}" = Roxio Creator BDAV Plugin
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E1AB809-F821-4F41-8431-44A11ED1EDBA}" = TVT7Diag
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ULTIMATER_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ULTIMATER_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ULTIMATER_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ULTIMATER_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ULTIMATER_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{904CCF62-818D-4675-BC76-D37EB399F917}" = Windows Mobile Device Center
"{91120000-002E-0000-0000-0000000FF1CE}" = Microsoft Office Ultimate 2007
"{91120000-002E-0000-0000-0000000FF1CE}_ULTIMATER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{925F1DB6-E86E-4378-9091-D1F68B0583C9}" = iCloud
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{9862E0CB-4727-4FFC-963A-E22A9E9EC10C}" = Creative ZEN V Series (R2)
"{A1B7B9B3-E1D2-41CA-9B4A-F18DC2710704}" = Microsoft Works 6.0
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.8)
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B67BAFBA-4C9F-48FA-9496-933E3B255044}" = QuickTime
"{BD3DCAB0-3FE5-44FB-90DA-EFB0A2CD1387}" = Works Synchronization
"{C197BC08-3D82-4651-8886-E68C21578A38}" = iTunes
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator DE
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D24DDB61-8868-46CF-BC36-BECC1674F0C1}" = Creative ZEN
"{D639085F-4B6E-4105-9F37-A0DBB023E2FB}" = Roxio MyDVD DE
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{DC19E750-988B-4005-A355-85EF66055EFE}" = Works Suite OS Pack
"{E7044E25-3038-4A76-9064-344AC038043E}" = Windows Mobile Device Center Driver Update
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EFAD4066-CAF3-4B27-9669-12EED352C376}" = NVIDIANetworkDiagnostic
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FA4C2D53-205F-4245-9717-F3761154824D}" = Safari
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"AC3Filter" = AC3Filter (remove only)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"BitComet" = BitComet 1.35
"Creative Removable Disk Manager" = Creative Removable Disk Manager
"DivX Setup" = DivX Setup
"E24870CB6AA1C3511635FF9020A3E9471287FBE7" = Windows Driver Package - MobileTop (sshpmdm) Modem (01/26/2008 2.6.0.0)
"Google Desktop" = Google Desktop
"Google Updater" = Google Updater
"GoToAssist" = GoToAssist 8.0.0.480
"IECT3294791" = Vafmusic2 Toolbar for IE
"InstallShield_{EFAD4066-CAF3-4B27-9669-12EED352C376}" = NVIDIANetworkDiagnostic
"JFileManager" = JFileManager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.70.0.1100
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 26.0 (x86 en-US)" = Mozilla Firefox 26.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIA Drivers" = NVIDIA Drivers
"PricePeep" = PricePeep
"QuicktimeAlt_is1" = QuickTime Alternative 1.47
"SysInfo" = Creative System Information
"SystemRequirementsLab" = System Requirements Lab
"ULTIMATER" = Microsoft Office Ultimate 2007
"WinAVI VideoConverter_is1" = WinAVI VideoConverter
"WinRAR archiver" = WinRAR archiver
"Works2002Setup" = Microsoft Works 2002 Setup Launcher

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GCalc 3" = GCalc 3
"Google Chrome" = Google Chrome
"Move Media Player" = Move Media Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 09/11/2011 3:58:03 AM | Computer Name = campbell-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 09/11/2011 4:01:31 AM | Computer Name = campbell-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 09/11/2011 4:01:31 AM | Computer Name = campbell-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 09/11/2011 4:03:00 AM | Computer Name = campbell-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 09/11/2011 4:03:10 AM | Computer Name = campbell-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 09/11/2011 4:03:10 AM | Computer Name = campbell-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 13/11/2011 2:22:07 AM | Computer Name = campbell-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 13/11/2011 2:22:11 AM | Computer Name = campbell-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 22/11/2011 5:41:58 PM | Computer Name = campbell-PC | Source = Application Error | ID = 1000
Description = Faulting application WinRAR.exe, version 3.30.0.0, time stamp 0x00000000,
faulting module ntdll.dll, version 6.0.6002.18327, time stamp 0x4cb73436, exception
code 0xc0000374, fault offset 0x000b06fc, process id 0xe90, application start time
0x01cca95f7012f6a0.

Error - 04/12/2011 2:10:39 AM | Computer Name = campbell-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

[ Media Center Events ]
Error - 04/10/2013 6:05:08 PM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 13
Description = Event Info: Failure attempting to download new Guide data. Please
check your Internet connection settings. If you are connecting through a firewall
or proxy, please verify that it has been properly configured. Process: DefaultDomain
Object
Name: Microsoft.Ehome.Epg.EhepgdatSingleton

Error - 05/10/2013 5:14:20 AM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 13
Description = Event Info: Failure attempting to download new Guide data. Please
check your Internet connection settings. If you are connecting through a firewall
or proxy, please verify that it has been properly configured. Process: DefaultDomain
Object
Name: Microsoft.Ehome.Epg.EhepgdatSingleton

Error - 11/10/2013 5:14:45 AM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 13
Description = Event Info: Failure attempting to download new Guide data. Please
check your Internet connection settings. If you are connecting through a firewall
or proxy, please verify that it has been properly configured. Process: DefaultDomain
Object
Name: Microsoft.Ehome.Epg.EhepgdatSingleton

Error - 18/10/2013 2:18:30 AM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 13
Description = Event Info: Failure attempting to download new Guide data. Please
check your Internet connection settings. If you are connecting through a firewall
or proxy, please verify that it has been properly configured. Process: DefaultDomain
Object
Name: Microsoft.Ehome.Epg.EhepgdatSingleton

Error - 13/11/2013 2:16:03 AM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 13
Description = Event Info: Failure attempting to download new Guide data. Please
check your Internet connection settings. If you are connecting through a firewall
or proxy, please verify that it has been properly configured. Process: DefaultDomain
Object
Name: Microsoft.Ehome.Epg.EhepgdatSingleton

Error - 20/11/2013 2:06:18 AM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 13
Description = Event Info: Failure attempting to download new Guide data. Please
check your Internet connection settings. If you are connecting through a firewall
or proxy, please verify that it has been properly configured. Process: DefaultDomain
Object
Name: Microsoft.Ehome.Epg.EhepgdatSingleton

Error - 01/12/2013 9:51:42 AM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 4
Description = Event Info: An unknown connection failure occurred. Windows Media
Center was unable to connect to the Internet. See Help for more information. Process:
DefaultDomain Object Name: Microsoft.Ehome.Epg.EhepgdatSingleton

Error - 02/12/2013 6:17:16 AM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 13
Description = Event Info: Failure attempting to download new Guide data. Please
check your Internet connection settings. If you are connecting through a firewall
or proxy, please verify that it has been properly configured. Process: DefaultDomain
Object
Name: Microsoft.Ehome.Epg.EhepgdatSingleton

Error - 04/01/2014 8:07:54 AM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 34
Description = Event Info: Discovery Service: Unexpected error. The Guide listings
service is not currently available. Please try again later. Process: DefaultDomain
Object
Name: Microsoft.Ehome.Epg.EhepgdatSingleton

Error - 05/01/2014 6:00:17 AM | Computer Name = campbell-PC | Source = Media Center Guide | ID = 34
Description = Event Info: Discovery Service: Unexpected error. The Guide listings
service is not currently available. Please try again later. Process: DefaultDomain
Object
Name: Microsoft.Ehome.Epg.EhepgdatSingleton

[ OSession Events ]
Error - 07/05/2009 9:34:59 PM | Computer Name = campbell-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 1666
seconds with 1080 seconds of active time. This session ended with a crash.

Error - 17/01/2011 7:52:22 AM | Computer Name = campbell-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 47
seconds with 0 seconds of active time. This session ended with a crash.


Error encountered while reading event logs.

< End of report >
  • 0

Advertisements


#2
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi there, I would like to use a different programme to check some different areas

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

  • 0

#3
shanecam

shanecam

    Member

  • Topic Starter
  • Member
  • PipPip
  • 48 posts
Heres the log you requested

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-01-2014
Ran by campbell (administrator) on CAMPBELL-PC on 05-01-2014 12:37:42
Running from C:\Users\campbell\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: English(US)
Internet Explorer Version 7
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Andrea Electronics Corporation) C:\Windows\System32\AERTSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Sonic Solutions) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(SONIX) C:\Windows\tsnp2std.exe
(Sonix) C:\Windows\vsnp2std.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Users\campbell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\campbell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\campbell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\campbell\AppData\Local\Google\Chrome\Application\chrome.exe
(OldTimer Tools) C:\Users\campbell\Downloads\OTL.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-19] (Microsoft Corporation)
HKLM\...\Run: [ECenter] - C:\DELL\E-Center\EULALauncher.exe [17920 2007-05-25] ( )
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [4907008 2008-01-17] (Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [ISUSScheduler] - C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2006-10-03] (Macrovision Corporation)
HKLM\...\Run: [RoxWatchTray] - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [221184 2006-11-05] (Sonic Solutions)
HKLM\...\Run: [Google Desktop Search] - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [1838592 2007-12-04] (Google)
HKLM\...\Run: [tsnp2std] - C:\Windows\tsnp2std.exe [258048 2007-01-05] (SONIX)
HKLM\...\Run: [snp2std] - C:\Windows\vsnp2std.exe [675840 2006-09-15] (Sonix)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-08-21] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-28] ()
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime Alternative\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehtray.exe [125952 2008-01-19] (Microsoft Corporation)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2007-12-04] (Google Inc.)
HKCU\...\Run: [Google Update] - C:\Users\campbell\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2010-10-16] (Google Inc.)
HKCU\...\Run: [MobileDocuments] - C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
HKCU\...\Run: [BitComet] - C:\Program Files\BitComet\BitComet.exe [12805888 2013-02-19] (www.BitComet.com)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\Default\...\Run: [WindowsWelcomeCenter] - C:\Windows\System32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation)
AppInit_DLLs: C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [ 2007-12-04] (Google)
Startup: C:\Users\campbell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
BootExecute:

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.condui...&ctid=CT3294791
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
URLSearchHook: HKLM - Vafmusic2 Toolbar - {7f3f960e-a836-45ca-8911-0accb522246e} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
URLSearchHook: HKCU - Vafmusic2 Toolbar - {7f3f960e-a836-45ca-8911-0accb522246e} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
SearchScopes: HKLM - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.condui...8991772290&UM=2
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.condui...8991772290&UM=2
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask...8A-6779B9FAD181
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.condui...8991772290&UM=2
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Vafmusic2 Toolbar - {7f3f960e-a836-45ca-8911-0accb522246e} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Skype Plug-In - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: PricePeep - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files\PricePeep\pricepeep.dll (PricePeep)
Toolbar: HKLM - Vafmusic2 Toolbar - {7f3f960e-a836-45ca-8911-0accb522246e} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - Vafmusic2 Toolbar - {7F3F960E-A836-45CA-8911-0ACCB522246E} - C:\Program Files\Vafmusic2\prxtbVafm.dll (Conduit Ltd.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default
FF user.js: detected! => C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\user.js
FF Homepage: hxxp://www1.sympatico.ca/cgi-bin/wx2004.pl?lng=en&stn=CAPE0005
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @movenetworks.com/Quantum Media Player - C:\Users\campbell\AppData\Roaming\Move Networks\plugins\npqmp071502000008.dll (Move Networks)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\campbell\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\campbell\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF Extension: Microsoft .NET Framework Assistant - C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: Vafmusic2 - C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\Extensions\{7f3f960e-a836-45ca-8911-0accb522246e}
FF Extension: BitComet Video Downloader - C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\Extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
FF Extension: PricePeep - C:\Users\campbell\AppData\Roaming\Mozilla\Firefox\Profiles\wnrdlkz9.default\Extensions\[email protected]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKCU\...\Firefox\Extensions: [[email protected]] - C:\Users\campbell\AppData\Roaming\Move Networks
FF Extension: Move Media Player - C:\Users\campbell\AppData\Roaming\Move Networks

Chrome:
=======
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\campbell\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.376\_platform_specific\win_x86\widevinecdmadapter.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\Program Files\Mozilla Firefox\plugins\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (BitCometAgent) - C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll (BitComet)
CHR Plugin: (DivX Player Netscape Plugin) - C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime Alternative\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime Alternative\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime Alternative\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime Alternative\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime Alternative\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Updater) - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
CHR Plugin: (Java Deployment Toolkit 7.0.450.18) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java™ Platform SE 7 U45) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Google Update) - C:\Users\campbell\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Move Streaming Media Player) - C:\Users\campbell\AppData\Roaming\Move Networks\plugins\npqmp071502000008.dll (Move Networks)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Entanglement Web App) - C:\Users\campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\3.4.9_0
CHR Extension: (Poppit) - C:\Users\campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi\2.2_0
CHR Extension: (Google Wallet) - C:\Users\campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR HKLM\...\Chrome\Extension: [cbjibcbpmbcabnfnohhgjjmkgkimajko] - C:\Users\campbell\AppData\Local\CRE\cbjibcbpmbcabnfnohhgjjmkgkimajko.crx
CHR StartMenuInternet: Google Chrome - C:\Users\campbell\AppData\Local\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

R2 AERTFilters; C:\Windows\system32\AERTSrv.exe [77824 2007-12-05] (Andrea Electronics Corporation)
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2010-12-28] (www.BitComet.com)
S3 GoogleDesktopManager; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [1838592 2007-12-04] (Google)
S2 gupdate1c99c59907cd3e2; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-03-03] (Google Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 ATIAVPCI; C:\Windows\System32\DRIVERS\atinavrr.sys [522624 2007-04-25] (ATI Technologies Inc.)
S3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [36608 2009-08-24] ()
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKsl57dd5710; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DC2D1E2B-483A-4C68-B5DB-280EE79F8784}\MpKsl57dd5710.sys [40392 2014-01-05] (Microsoft Corporation)
R3 SNP2STD; C:\Windows\System32\DRIVERS\snp2sxp.sys [12039552 2007-04-27] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [685816 2007-12-23] ()
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 Normandy; No ImagePath
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-05 12:37 - 2014-01-05 12:37 - 00019843 _____ C:\Users\campbell\Downloads\FRST.txt
2014-01-05 12:37 - 2014-01-05 12:37 - 00000000 ____D C:\FRST
2014-01-05 12:36 - 2014-01-05 12:36 - 01064761 _____ (Farbar) C:\Users\campbell\Downloads\FRST.exe
2014-01-05 11:32 - 2014-01-05 11:32 - 00060312 _____ C:\Users\campbell\Downloads\Extras.Txt
2014-01-05 11:30 - 2014-01-05 11:30 - 00065786 _____ C:\Users\campbell\Downloads\OTL.Txt
2014-01-05 11:22 - 2014-01-05 11:22 - 00602112 _____ (OldTimer Tools) C:\Users\campbell\Downloads\OTL.exe
2014-01-04 11:52 - 2014-01-04 11:52 - 00131072 _____ C:\Users\campbell\Downloads\ROM.bin
2013-12-28 21:20 - 2013-12-28 21:20 - 04901896 _____ (Adobe Systems Inc.) C:\Users\campbell\Downloads\Shockwave_Installer_Slim.exe
2013-12-20 15:18 - 2013-12-20 15:19 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-14 16:22 - 2013-12-14 16:22 - 00001666 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-12-13 14:56 - 2013-12-13 14:56 - 00008781 _____ C:\Users\campbell\Downloads\[kickass.to]percy.jackson.sea.of.monsters.2013.720p.brrip.x264.yify.torrent
2013-12-13 11:59 - 2013-12-13 11:59 - 00017528 _____ C:\Users\campbell\Downloads\[kickass.to]elysium.2013.1080p.brrip.x264.yify.torrent
2013-12-13 01:20 - 2013-12-13 01:20 - 00002075 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-12 22:30 - 2013-12-12 22:30 - 00013820 _____ C:\Users\campbell\Downloads\[kickass.to]the.hobbit.an.unexpected.journey.2012.1080p.brrip.x264.yify.torrent
2013-12-12 18:11 - 2013-12-12 18:11 - 00010454 _____ C:\Users\campbell\Downloads\[kickass.to]the.wolverine.2013.extended.720p.brrip.x264.yify.torrent
2013-12-11 14:21 - 2013-10-29 22:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2013-12-11 14:21 - 2013-10-29 21:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 14:21 - 2013-10-29 20:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-11 14:21 - 2013-10-29 20:35 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 14:21 - 2013-10-23 22:17 - 06119424 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 03626496 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 01177600 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00380928 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-11 14:21 - 2013-10-23 22:17 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-11 14:21 - 2013-10-23 22:16 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll
2013-12-11 14:21 - 2013-10-23 20:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-11 14:21 - 2013-10-23 20:44 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-11 14:21 - 2013-10-22 03:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 14:21 - 2013-10-10 22:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 14:21 - 2013-10-10 22:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 14:21 - 2013-10-10 22:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2013-12-11 14:21 - 2013-10-10 20:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 14:21 - 2013-10-10 20:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-10 17:56 - 2013-12-10 17:56 - 01376554 _____ C:\Users\campbell\Downloads\TI83.zip

==================== One Month Modified Files and Folders =======

2014-01-05 12:37 - 2014-01-05 12:37 - 00019843 _____ C:\Users\campbell\Downloads\FRST.txt
2014-01-05 12:37 - 2014-01-05 12:37 - 00000000 ____D C:\FRST
2014-01-05 12:37 - 2013-02-14 07:20 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-05 12:36 - 2014-01-05 12:36 - 01064761 _____ (Farbar) C:\Users\campbell\Downloads\FRST.exe
2014-01-05 12:26 - 2009-06-30 07:57 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-05 12:10 - 2010-10-24 12:44 - 00000920 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2848612992-254581648-1744192224-1000UA.job
2014-01-05 11:32 - 2014-01-05 11:32 - 00060312 _____ C:\Users\campbell\Downloads\Extras.Txt
2014-01-05 11:30 - 2014-01-05 11:30 - 00065786 _____ C:\Users\campbell\Downloads\OTL.Txt
2014-01-05 11:22 - 2014-01-05 11:22 - 00602112 _____ (OldTimer Tools) C:\Users\campbell\Downloads\OTL.exe
2014-01-05 10:10 - 2010-10-24 12:44 - 00000868 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2848612992-254581648-1744192224-1000Core.job
2014-01-05 10:07 - 2009-06-30 07:57 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-05 10:05 - 2007-12-04 08:36 - 01931114 _____ C:\Windows\WindowsUpdate.log
2014-01-04 13:53 - 2009-03-03 19:39 - 00000868 _____ C:\Windows\Tasks\Google Software Updater.job
2014-01-04 11:52 - 2014-01-04 11:52 - 00131072 _____ C:\Users\campbell\Downloads\ROM.bin
2014-01-04 08:07 - 2006-11-02 08:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2014-01-04 08:06 - 2006-11-02 08:47 - 00430736 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-04 08:05 - 2006-11-02 09:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-04 08:05 - 2006-11-02 08:47 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-04 08:05 - 2006-11-02 08:47 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-28 21:20 - 2013-12-28 21:20 - 04901896 _____ (Adobe Systems Inc.) C:\Users\campbell\Downloads\Shockwave_Installer_Slim.exe
2013-12-27 11:08 - 2006-11-02 06:33 - 00703516 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-27 11:00 - 2007-12-04 08:46 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-12-27 11:00 - 2006-11-02 09:01 - 00032610 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-25 23:05 - 2008-01-04 15:21 - 00000000 ____D C:\Users\campbell\AppData\Roaming\Skype
2013-12-25 14:29 - 2012-04-26 14:17 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-20 15:19 - 2013-12-20 15:18 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-16 18:57 - 2007-12-13 22:03 - 00000000 ____D C:\Users\campbell\Desktop\resumes
2013-12-14 16:22 - 2013-12-14 16:22 - 00001666 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-12-14 16:22 - 2010-06-19 20:33 - 00000000 ____D C:\Program Files\iTunes
2013-12-14 16:21 - 2010-06-19 20:33 - 00000000 ____D C:\Program Files\iPod
2013-12-14 10:28 - 2007-12-15 19:52 - 00000000 ____D C:\Users\campbell\AppData\Roaming\DivX
2013-12-13 21:02 - 2010-01-28 20:57 - 00000000 ____D C:\Users\campbell\Desktop\New Folder
2013-12-13 14:56 - 2013-12-13 14:56 - 00008781 _____ C:\Users\campbell\Downloads\[kickass.to]percy.jackson.sea.of.monsters.2013.720p.brrip.x264.yify.torrent
2013-12-13 11:59 - 2013-12-13 11:59 - 00017528 _____ C:\Users\campbell\Downloads\[kickass.to]elysium.2013.1080p.brrip.x264.yify.torrent
2013-12-13 01:20 - 2013-12-13 01:20 - 00002075 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-13 01:20 - 2007-12-04 08:59 - 00000000 ____D C:\Program Files\Google
2013-12-12 22:30 - 2013-12-12 22:30 - 00013820 _____ C:\Users\campbell\Downloads\[kickass.to]the.hobbit.an.unexpected.journey.2012.1080p.brrip.x264.yify.torrent
2013-12-12 18:11 - 2013-12-12 18:11 - 00010454 _____ C:\Users\campbell\Downloads\[kickass.to]the.wolverine.2013.extended.720p.brrip.x264.yify.torrent
2013-12-12 03:21 - 2007-12-04 08:34 - 00000000 ____D C:\Windows\system32\RTCOM
2013-12-12 03:03 - 2013-07-30 17:49 - 00000000 ____D C:\Windows\system32\MRT
2013-12-12 03:01 - 2006-11-02 06:24 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-12-10 22:38 - 2012-05-10 06:19 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-12-10 22:38 - 2011-08-26 19:41 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-12-10 17:56 - 2013-12-10 17:56 - 01376554 _____ C:\Users\campbell\Downloads\TI83.zip

Some content of TEMP:
====================
C:\Users\campbell\AppData\Local\Temp\DivXSetup.exe
C:\Users\campbell\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\campbell\AppData\Local\Temp\nse767D.exe
C:\Users\campbell\AppData\Local\Temp\nsg3CB1.exe
C:\Users\campbell\AppData\Local\Temp\nsi43F4.exe
C:\Users\campbell\AppData\Local\Temp\nslA555.exe
C:\Users\campbell\AppData\Local\Temp\nsmB9DB.exe
C:\Users\campbell\AppData\Local\Temp\nsxC2F3.exe
C:\Users\campbell\AppData\Local\Temp\nsy1821.exe
C:\Users\campbell\AppData\Local\Temp\pricepeep_1.exe
C:\Users\campbell\AppData\Local\Temp\SPStub.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-04 20:13

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 04-01-2014
Ran by campbell at 2014-01-05 12:38:18
Running from C:\Users\campbell\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Update for Microsoft Office 2007 (KB2508958) (Version: - Microsoft)
AC3Filter (remove only) (Version: - )
Adobe AIR (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader X (10.1.8) (Version: 10.1.8 - Adobe Systems Incorporated)
Adobe Shockwave Player (Version: 10.3.0.24 - Adobe Systems, Inc.)
Apple Application Support (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (Version: 2.1.3.127 - Apple Inc.)
ATI Parental Control & Encoder (Version: 3.0 - ATI Technologies Inc.) Hidden
BitComet 1.35 (Version: 1.35 - CometNetwork)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Brother BRAdmin Professional 2.49 (Version: 2.49 - Brother)
Browser Address Error Redirector (Version: 1.00.0000 - Dell)
Creative Removable Disk Manager (Version: - )
Creative System Information (Version: - )
Creative ZEN (Version: 1.0 - )
Creative ZEN V Series (R2) (Version: 1.0 - )
DivX Converter (Version: 7.1.0 - DivX, Inc.)
DivX Setup (Version: 2.6.1.84 - DivX, LLC)
DivX Version Checker (Version: 7.1.0.9 - DivX, Inc.)
GCalc 3 (Version: - gcalc.net)
Google Chrome (Version: 31.0.1650.63 - Google Inc.)
Google Desktop (Version: - - Google)
Google Earth (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
Google Updater (Version: 2.4.2432.1652 - Google Inc.)
GoToAssist 8.0.0.480 (Version: - )
iCloud (Version: 2.1.2.8 - Apple Inc.)
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 45 (Version: 7.0.450 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JavaFX 2.1.1 (Version: 2.1.1 - Oracle Corporation)
JFileManager (Version: v1.10 - TUGUU SL)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100 - Malwarebytes Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Ultimate 2007 (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Ultimate 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Works (Version: 08.05.0818 - Microsoft Corporation)
Microsoft Works 2002 Setup Launcher (Version: - )
Microsoft Works 6.0 (Version: 06.00.0000 - Microsoft Corporation)
Microsoft XML Parser (Version: 8.70.1104.04 - Microsoft Corporation) Hidden
MobileMe Control Panel (Version: 3.1.8.0 - Apple Inc.)
Move Media Player (Version: - Move Networks)
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 26.0 - Mozilla)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
neroxml (Version: 1.0.0 - Nero AG) Hidden
NVIDIA Drivers (Version: 1.4 - NVIDIA Corporation)
NVIDIANetworkDiagnostic (Version: 1.00.0000 - NVIDIA Corporation)
NVIDIANetworkDiagnostic (Version: 1.00.0000 - NVIDIA Corporation) Hidden
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
PC Connectivity Solution (Version: 8.15.0.0 - Nokia)
PricePeep (Version: 2.2.0.4 - betwikx LLC) <==== ATTENTION
QuickTime (Version: 7.74.80.86 - Apple Inc.)
QuickTime Alternative 1.47 (Version: 1.47 - )
Realtek High Definition Audio Driver (Version: - )
Roxio Creator Audio (Version: 3.3.0 - Roxio)
Roxio Creator BDAV Plugin (Version: 3.3.0 - Roxio)
Roxio Creator Copy (Version: 3.3.0 - Roxio)
Roxio Creator Data (Version: 3.3.0 - Roxio)
Roxio Creator DE (Version: 3.3.0 - Roxio)
Roxio Creator Tools (Version: 3.3.0 - Roxio)
Roxio Express Labeler (Version: 2.1.0 - Roxio)
Roxio MyDVD DE (Version: 9.0.116 - Roxio, Inc.)
Roxio Update Manager (Version: 3.0.0 - Roxio)
Safari (Version: 5.34.57.2 - Apple Inc.)
Skype Toolbars (Version: 5.0.4137 - Skype Technologies S.A.)
Skype™ 5.10 (Version: 5.10.116 - Skype Technologies S.A.)
Sonic Activation Module (Version: 1.0 - Sonic Solutions) Hidden
Spelling Dictionaries Support For Adobe Reader 8 (Version: 8.0.0 - Adobe Systems)
System Requirements Lab (Version: - )
TVT7Diag (Version: 1.10 - ATI Technologies Inc.) Hidden
Update for 2007 Microsoft Office System (KB967642) (Version: - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (Version: - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (Version: - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (Version: - Microsoft)
USB2.0 PC Camera (SN9C201&202) (Version: 5.7.23.000 - Sonix)
User's Guides (Version: - )
Vafmusic2 Toolbar for IE (Version: 6.17.0.33 - Vafmusic2)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
VirtualCom driver (Version: 1.0.0 - AIT)
WinAVI VideoConverter (Version: - ZJ Computing, Inc.)
Windows Driver Package - MobileTop (sshpmdm) Modem (01/26/2008 2.6.0.0) (Version: 01/26/2008 2.6.0.0 - MobileTop)
Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0) (Version: 10/12/2007 6.85.4.0 - Nokia)
Windows Media Player Firefox Plugin (Version: 1.0.0.8 - Microsoft Corp)
Windows Mobile Device Center (Version: 6.1.6965.0 - Microsoft Corporation)
Windows Mobile Device Center Driver Update (Version: 6.1.6965.0 - Microsoft Corporation)
WinRAR archiver (Version: - )
Works Suite OS Pack (Version: 1.0.0.0000 - Microsoft Corporation) Hidden
Works Synchronization (Version: 1.0.0.0000 - Your Company Name) Hidden

==================== Restore Points =========================

04-01-2014 13:49:17 Scheduled Checkpoint
04-01-2014 16:02:20 Windows Update

==================== Hosts content: ==========================

2006-11-02 06:23 - 2010-12-15 16:10 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {16AE1C77-957F-4D41-BD28-745E356FDEB5} - System32\Tasks\{5F5D02C0-514B-4924-92D5-5AFA83E4DF9B} => Firefox.exe http://ui.skype.com/...all?page=tsMain
Task: {17BB488E-FB74-4F85-A0D1-3C3017AB00F3} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-14] (Google)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {21F635AD-EB20-4731-86F6-2D64BD41291A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\System32\RacAgent.exe [2008-01-19] (Microsoft Corporation)
Task: {4D1FCD49-B658-468C-8DFD-45FF2880F95F} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - campbell => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-11] (Microsoft Corporation)
Task: {6D08058B-5B3D-4021-BB81-1C22F456940D} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {7953DD76-028A-47CD-B122-23DD5A184284} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {819CD08A-CCF2-419A-89A6-807FF7B35D7F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2848612992-254581648-1744192224-1000Core => C:\Users\campbell\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-16] (Google Inc.)
Task: {9B4A5AD9-ECB7-444A-AF9A-9B489C15C33D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-03] (Google Inc.)
Task: {AB43E731-72EE-49D3-AD1D-A440532ACBA6} - System32\Tasks\{B0A6876D-2A9C-4AF7-A999-FD54F3DEE9A2} => C:\Program Files\Skype\\Phone\Skype.exe [2012-07-13] (Skype Technologies S.A.)
Task: {DE06E41C-CA7F-47CC-B8D1-EFF0DA267E1E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-03] (Google Inc.)
Task: {E4B8F095-F8AE-43EF-8E6F-3946DE5EB65F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2848612992-254581648-1744192224-1000UA => C:\Users\campbell\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-16] (Google Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\System32\gatherWirelessInfo.vbs [2008-01-05] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2848612992-254581648-1744192224-1000Core.job => C:\Users\campbell\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2848612992-254581648-1744192224-1000UA.job => C:\Users\campbell\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-08-28 20:25 - 2013-08-28 20:25 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
2011-09-27 06:23 - 2011-09-27 06:23 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2011-09-27 06:22 - 2011-09-27 06:22 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-05 05:06 - 2013-12-03 22:48 - 04055504 _____ () C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-05 05:06 - 2013-12-03 22:48 - 00399312 _____ () C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-05 05:06 - 2013-12-03 22:47 - 01619408 _____ () C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
2013-12-05 05:06 - 2013-12-03 22:47 - 00702416 _____ () C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-05 05:06 - 2013-12-03 22:47 - 00099792 _____ () C:\Users\campbell\AppData\Local\Google\Chrome\Application\31.0.1650.63\libegl.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\campbell\Desktop\resumes:Roxio EMC Stream
AlternateDataStreams: C:\Users\campbell\Documents\Alcohol 120%:Roxio EMC Stream
AlternateDataStreams: C:\Users\campbell\Documents\DVDFab:Roxio EMC Stream
AlternateDataStreams: C:\Users\campbell\Documents\My Projects:Roxio EMC Stream
AlternateDataStreams: C:\Users\campbell\Documents\OneNote Notebooks:Roxio EMC Stream
AlternateDataStreams: C:\Users\campbell\Documents\PcSetup:Roxio EMC Stream
AlternateDataStreams: C:\Users\campbell\Documents\school:Roxio EMC Stream

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/05/2014 00:38:16 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: 5 (0x5)Access is denied.

Error: (01/05/2014 00:38:16 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: -528

Error: (01/05/2014 00:38:16 PM) (Source: ESENT) (User: )
Description: Catalog Database (1628) Catalog Database: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Windows\system32\CatRoot2\edb.log.

Error: (01/05/2014 00:38:16 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: 5 (0x5)Access is denied.

Error: (01/05/2014 00:38:16 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: -528

Error: (01/05/2014 00:38:16 PM) (Source: ESENT) (User: )
Description: Catalog Database (1628) Catalog Database: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Windows\system32\CatRoot2\edb.log.

Error: (01/05/2014 00:37:04 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: 5 (0x5)Access is denied.

Error: (01/05/2014 00:37:04 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: -528

Error: (01/05/2014 00:37:04 PM) (Source: ESENT) (User: )
Description: Catalog Database (1628) Catalog Database: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Windows\system32\CatRoot2\edb.log.

Error: (01/05/2014 00:37:04 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: 5 (0x5)Access is denied.


System errors:
=============
Error: (01/05/2014 00:36:53 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (01/05/2014 11:30:11 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (01/05/2014 11:30:11 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.

Error: (01/05/2014 11:30:11 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.

Error: (01/05/2014 11:30:11 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (01/05/2014 11:30:11 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.

Error: (01/05/2014 11:30:11 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.

Error: (01/05/2014 11:26:48 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.

Error: (01/05/2014 11:26:48 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (01/05/2014 11:26:48 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.


Microsoft Office Sessions:
=========================
Error: (01/17/2011 07:52:22 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 47 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/07/2009 09:34:59 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 1666 seconds with 1080 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2013-11-17 13:28:13.828
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-11-17 13:28:13.463
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-16 03:01:42.678
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-16 03:01:42.288
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-16 03:01:41.893
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-16 03:01:41.466
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-16 03:00:52.732
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-16 03:00:52.303
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-16 03:00:51.922
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-16 03:00:51.558
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 52%
Total physical RAM: 3005.76 MB
Available physical RAM: 1416.47 MB
Total Pagefile: 6219.53 MB
Available Pagefile: 4691.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1883.23 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:455.71 GB) (Free:352.27 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:6.13 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: F8000000)
Partition 1: (Not Active) - (Size=47 MB) - (Type=DE)
Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=456 GB) - (Type=07 NTFS)

==================== End Of Log ============================
  • 0

#4
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK first priority will be to sort out the hard drive as you have some problems building up there

Follow the initial steps on this page http://www.howtogeek...-windows-vista/ starting at "Using CheckDisk the GUI Way"
Once you have scheduled the check then reboot to run it

This may take a while as your disc looks bad

Windows defender will not run as you have Microsoft Security Essentials running. So after the chkdsk then retry Malwarebytes.
You do have some adware but we will remove that once your system is better
  • 0

#5
shanecam

shanecam

    Member

  • Topic Starter
  • Member
  • PipPip
  • 48 posts
I tried to run the chkdsk many times and it wont complete.
  • 0

#6
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
What is the make of your hard drive ?

Go to control panel > device manager
Click disc drives and let me know what it says

  • 0

#7
shanecam

shanecam

    Member

  • Topic Starter
  • Member
  • PipPip
  • 48 posts
I will try. I am having trouble keeping the computer running.
  • 0

#8
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Sounds very much like the hard drive is going south. I would recommend that you back up everything you need now. Start with the most important stuff first
  • 0

#9
shanecam

shanecam

    Member

  • Topic Starter
  • Member
  • PipPip
  • 48 posts
Best way to backup to a DVD disk?
  • 0

#10
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Yes I believe that would be the best option
  • 0

Advertisements


#11
shanecam

shanecam

    Member

  • Topic Starter
  • Member
  • PipPip
  • 48 posts
This is what it says under the device manager.
TEAC USB HS-CF Card USB Device
TEAC USB HS-MS Card USB Device
TEAC USB HS-SD Card USB Device
TEAC USB HS-xD/SM USB Device
  • 0

#12
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
That appears to show that you do not have a hard disc

Could you confirm that you selected disk drives as shown in my screenshot
  • 0

#13
shanecam

shanecam

    Member

  • Topic Starter
  • Member
  • PipPip
  • 48 posts
Here it isscr.jpg
  • 0

#14
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK here is the drive diagnostic page for that hard drive, this will let you know the state of the drive

http://support.wd.co...0&sid=3&lang=en visit this page and download WinDlg_124.zip follow the instructions to run the test
  • 0

#15
shanecam

shanecam

    Member

  • Topic Starter
  • Member
  • PipPip
  • 48 posts
It wouldn't finish the test it got stuck on a sector and the estimated finish time just kept increasing. Looks like I am in the market for another computer.
Thank you for your help
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP