If anyone could provide info on how to fix this I will be very grateful thanks
Possible virus? [Solved]
Started by
DanEvans_
, Apr 29 2013 01:43 PM
#1
Posted 29 April 2013 - 01:43 PM
If anyone could provide info on how to fix this I will be very grateful thanks
#2
Posted 07 May 2013 - 06:00 PM
Hello DanEvans,
Sorry for the delay.
Welcome to Geekstogo.
Now
Please download Farbar Recovery Scan Tool and save it to your desktop.
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
Sorry for the delay.
Welcome to Geekstogo.
Now
Please download Farbar Recovery Scan Tool and save it to your desktop.
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
- Double-click to run it. When the tool opens click Yes to disclaimer.
- Press Scan button.
- It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
- The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
#3
Posted 09 May 2013 - 03:16 AM
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-05-2013
Ran by Dan (administrator) on 09-05-2013 07:06:07
Running from C:\Users\Dan\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\eMachines\Registration\GregHSRW.exe
(Memeo) C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
(TMRG, Inc.) C:\Program Files (x86)\RelevantKnowledge\rlservice.exe
(Acer) C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apntex.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Acer Incorporated) C:\Program Files\eMachines\eMachines Power Management\ePowerEvent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\javaw.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Dan\Desktop\FRST64.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-10-13] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7982112 2009-07-28] (Realtek Semiconductor)
HKLM\...\Run: [Acer ePower Management] C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe [823840 2009-09-30] (Acer Incorporated)
HKLM\...\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe [301056 2009-06-11] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Monitor] C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM-x32\...\Runonce: [removeiLividdatamngr] cmd.exe /c RD /S /Q "C:\Program Files (x86)\Search Results Toolbar" [x]
HKCU\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2009-11-03] (Google Inc.)
HKCU\...\Run: [OurSoftUpdaterChecker] C:\Program Files (x86)\NetNucleous\GorillaPrice\GPCheck.exe [x]
HKLM-x32\...\Runonce: [removeiLividdatamngr] cmd.exe /c RD /S /Q "C:\Program Files (x86)\Search Results Toolbar" [x]
HKLM-x32\...\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe [1157128 2009-08-18] (Dritek System Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-10-25] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-03-28] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW [1263952 2013-02-13] ()
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345312 2013-05-06] (Avira Operations GmbH & Co. KG)
HKU\Default\...\RunOnce: [ScrSav] C:\Program Files (x86)\eMachines\Screensaver\run_eMachines.exe /default [162336 2009-07-22] ()
HKU\Default User\...\RunOnce: [ScrSav] C:\Program Files (x86)\eMachines\Screensaver\run_eMachines.exe /default [162336 2009-07-22] ()
HKU\Mcx1-DAN-PC\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18642024 2013-02-28] (Skype Technologies S.A.)
HKU\Mcx1-DAN-PC\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2009-11-03] (Google Inc.)
HKU\Mcx1-DAN-PC\...\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent [x]
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\Datamngr\x64\mgrldr.dll [39408 2009-11-03] (Google Inc.)
Startup: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Dan\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www2.delta-se...880C417FE208014
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...24z1k5r4412423s
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emac...24z1k5r4412423s
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...24z1k5r4412423s
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emac...24z1k5r4412423s
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...24z1k5r4412423s
URLSearchHook: (No Name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No File
HKLM SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
HKLM-x32 SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www2.delta-se...880C417FE208014
SearchScopes: HKCU - {33524C00-63FB-43DB-A6BF-0A4E14B24649} URL = http://www.basicscan...s={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {7825CFB6-490A-436B-9F26-4A7B5CFC01A9} - No File
BHO-x32: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Wajam - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: GamesBarBHO Class - {CB0D163C-E9F4-4236-9496-0597E24B23A5} - No File
BHO-x32: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - No File
Toolbar: HKLM-x32 - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
PDF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab
PDF: HKLM-x32 {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab
PDF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
PDF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicr...osoft/wrc32.ocx
PDF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [65024] (Microsoft Corporation)
Winsock: Catalog5-x64 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\xnw0vhic.default
FF NetworkProxy: "type", 0
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @oberon-media.com/ONCAdapter - C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: SweetPacks Toolbar for Firefox - C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\xnw0vhic.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
FF Extension: ftdownloader3 - C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\xnw0vhic.default\Extensions\[email protected]
Chrome:
=======
CHR HomePage: hxxp://www.searchnu.com/406?appid=390
CHR RestoreOnStartup: "hxxp://www.google.co.uk/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Oberon com adapter) - C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
CHR Plugin: (RIM Handheld Application Loader) - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll No File
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Extension: (Docs) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Gmail) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86752 2013-04-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110816 2013-04-27] (Avira Operations GmbH & Co. KG)
R2 ePowerSvc; C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe [844320 2009-09-30] (Acer Incorporated)
R2 Greg_Service; C:\Program Files (x86)\eMachines\Registration\GregHSRW.exe [1150496 2009-08-28] (Acer Incorporated)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [3804120 2011-08-07] (INCA Internet Co., Ltd.)
R2 RelevantKnowledge; C:\Program Files (x86)\RelevantKnowledge\rlservice.exe [162072 2013-04-04] (TMRG, Inc.)
R2 Updater Service; C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [240160 2009-07-04] (Acer)
S2 WajamUpdater; "C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe" [x]
==================== Drivers (Whitelisted) ====================
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-01] (INCA Internet Co., Ltd.)
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [74752 2011-07-25] (Research In Motion Limited)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44032 2011-07-20] (Research in Motion Ltd)
R2 avgntflt; system32\DRIVERS\avgntflt.sys [x]
R1 avipbb; system32\DRIVERS\avipbb.sys [x]
R1 avkmgr; system32\DRIVERS\avkmgr.sys [x]
S3 X6va005; \??\C:\Users\Dan\AppData\Local\Temp\0058820.tmp [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-05-09 07:06 - 2013-05-09 07:06 - 00000000 ____D C:\FRST
2013-05-09 07:03 - 2013-05-09 07:04 - 01874958 ____A (Farbar) C:\Users\Dan\Desktop\FRST64.exe
2013-05-06 21:24 - 2013-05-06 21:24 - 00013439 ____A C:\Users\Dan\Downloads\1B35119EA6BAFE68769955BCB045A9BBD00F9429.torrent
2013-05-06 21:24 - 2013-05-06 21:24 - 00000000 ____D C:\Users\Dan\Downloads\Game Of Thrones Season 1 complete
2013-05-06 21:22 - 2013-05-06 21:22 - 00000000 ____D C:\ProgramData\BrowserProtect
2013-05-06 21:21 - 2013-05-06 21:21 - 00217592 ____A C:\Users\Dan\Downloads\Games_of_Thrones_season_1_.exe
2013-05-06 21:21 - 2013-05-06 21:21 - 00000000 ____D C:\Users\Dan\AppData\Local\PutLockerDownloader
2013-05-06 15:42 - 2013-05-06 15:42 - 00000000 ____D C:\ProgramData\Browser Manager
2013-05-06 13:12 - 2013-05-06 13:13 - 00000000 ____D C:\Users\Dan\Downloads\TooManyItems2013_04_25_1.5.2
2013-05-06 13:12 - 2013-05-06 13:12 - 00097946 ____A C:\Users\Dan\Downloads\TooManyItems2013_04_25_1.5.2.zip
2013-05-06 13:07 - 2013-05-07 22:05 - 00000000 ____D C:\Program Files (x86)\Search Results Toolbar
2013-05-06 09:33 - 2013-05-06 09:33 - 00083160 ____A (Avira GmbH) C:\Windows\System32\Drivers\avnetflt.sys
2013-05-01 20:56 - 2013-05-01 20:56 - 00029848 ____A C:\Users\Dan\Desktop\hs_err_pid4316.log
2013-05-01 20:30 - 2013-05-01 20:35 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Open Download Manager
2013-05-01 20:29 - 2013-05-01 20:35 - 00000000 ____D C:\Users\Dan\AppData\Roaming\PerformerSoft
2013-05-01 20:29 - 2013-05-01 20:29 - 00000000 ____D C:\ProgramData\IBUpdaterService
2013-05-01 20:29 - 2013-05-01 20:29 - 00000000 ____D C:\Program Files (x86)\NetNucleous
2013-05-01 20:29 - 2012-12-19 15:53 - 00019632 ____A (PerformerSoft LLC) C:\Windows\System32\roboot64.exe
2013-05-01 18:38 - 2013-05-01 18:38 - 00662509 ____A C:\Users\Dan\Downloads\3M presentation.pptx
2013-05-01 17:08 - 2013-05-01 17:13 - 319925655 ____A C:\Users\Dan\Downloads\Zombieland.The.Series.S01E01.avi
2013-05-01 16:30 - 2013-05-01 16:30 - 00117591 ____A C:\Users\Dan\Downloads\Businees STUDENT WORK.pptx
2013-04-30 22:21 - 2013-04-30 22:21 - 03926016 ____A C:\Users\Dan\Downloads\Biology coursework title page.pub
2013-04-30 10:03 - 2013-04-30 10:02 - 00311200 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-04-30 10:03 - 2013-04-30 10:02 - 00188832 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-04-30 10:03 - 2013-04-30 10:02 - 00188320 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-04-30 10:03 - 2013-04-30 10:02 - 00108448 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2013-04-30 09:52 - 2013-04-30 10:02 - 01092512 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-04-29 20:57 - 2013-04-30 22:20 - 01743807 ____A C:\Users\Dan\Downloads\Biology coursework 22.04.13.odt
2013-04-28 19:42 - 2013-04-28 19:42 - 00000000 ____D C:\Users\Dan\Documents\School work
2013-04-28 19:36 - 2013-04-28 19:36 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Sports Interactive
2013-04-28 19:36 - 2013-04-28 19:36 - 00000000 ____D C:\Users\Dan\AppData\Local\Sports Interactive
2013-04-28 18:57 - 2013-04-28 18:57 - 00000000 ____D C:\Program Files (x86)\IZArc
2013-04-28 18:56 - 2013-04-28 18:56 - 00000000 ____D C:\Users\Dan\AppData\Roaming\DealPly
2013-04-28 18:45 - 2013-04-29 07:12 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-04-28 15:53 - 2013-04-28 15:53 - 00000064 ____A C:\Windows\GPlrLanc.dat
2013-04-28 15:52 - 2013-04-28 15:52 - 00263186 ____A C:\Users\Dan\Desktop\Minecraft.exe
2013-04-28 15:52 - 2013-04-28 15:52 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Babylon
2013-04-28 15:52 - 2013-04-28 15:52 - 00000000 ____D C:\ProgramData\Babylon
2013-04-28 15:01 - 2013-04-28 14:40 - 730857472 ____A C:\Users\Dan\Downloads\The Dark Knight.avi
2013-04-28 14:15 - 2013-04-28 13:44 - 840902044 ____A C:\Users\Dan\Downloads\Schindlers List.mkv
2013-04-28 14:15 - 2013-04-24 17:58 - 528324938 ____A C:\Users\Dan\Downloads\Children Of Men.mkv
2013-04-28 14:15 - 2012-08-09 08:02 - 523676202 ____A C:\Users\Dan\Downloads\Rock N' Rolla.mkv
2013-04-28 12:59 - 2013-04-28 12:59 - 00001222 ____A C:\Users\Dan\Desktop\FrostWire 5.5.6.lnk
2013-04-28 12:59 - 2013-04-28 12:59 - 00000000 ____D C:\Program Files (x86)\FrostWire 5
2013-04-28 12:56 - 2013-04-28 12:56 - 00002264 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2013-04-27 14:20 - 2013-04-27 14:20 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Avira
2013-04-27 14:10 - 2013-04-27 14:10 - 00002075 ____A C:\Users\Public\Desktop\Avira Control Center.lnk
2013-04-27 14:10 - 2013-04-27 14:10 - 00000000 ____D C:\ProgramData\Avira
2013-04-27 14:10 - 2013-04-27 14:10 - 00000000 ____D C:\Program Files (x86)\Avira
2013-04-27 14:10 - 2013-04-27 14:04 - 00130016 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avipbb.sys
2013-04-27 14:10 - 2013-04-27 14:04 - 00100712 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avgntflt.sys
2013-04-27 14:10 - 2013-04-27 14:04 - 00028600 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avkmgr.sys
2013-04-25 15:39 - 2013-04-25 15:39 - 00000000 ____D C:\ProgramData\Mozilla
2013-04-24 21:47 - 2013-04-24 21:47 - 00001179 ____A C:\Users\Dan\Desktop\DivX Plus Converter.lnk
2013-04-24 21:41 - 2013-04-24 21:41 - 00001345 ____A C:\Users\Dan\Desktop\Media Center.lnk
2013-04-24 21:18 - 2013-04-24 21:18 - 00000020 ___SH C:\Users\Mcx1-DAN-PC\ntuser.ini
2013-04-24 21:18 - 2013-04-24 21:18 - 00000000 ____D C:\users\Mcx1-DAN-PC
2013-04-24 21:18 - 2013-03-20 18:11 - 00000000 ____D C:\Users\Mcx1-DAN-PC\AppData\Roaming\TuneUp Software
2013-04-24 21:18 - 2010-08-26 10:52 - 00000000 ____D C:\Users\Mcx1-DAN-PC\AppData\Local\Microsoft Help
2013-04-24 21:15 - 2013-04-24 21:18 - 00000258 _RASH C:\ProgramData\ntuser.pol
2013-04-24 16:03 - 2013-04-12 14:45 - 01656680 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2013-04-22 18:30 - 2013-04-22 18:30 - 00001100 ____A C:\Users\Dan\Desktop\OpenOffice.org Writer.lnk
2013-04-22 17:45 - 2013-04-30 10:10 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Skype
2013-04-22 17:45 - 2013-04-22 17:45 - 00002515 ____A C:\Users\Public\Desktop\Skype.lnk
2013-04-22 17:45 - 2013-04-22 17:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-04-22 17:45 - 2013-04-22 17:45 - 00000000 ____D C:\ProgramData\Skype
2013-04-15 18:13 - 2013-02-22 06:57 - 17817088 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-04-15 18:13 - 2013-02-22 06:29 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-04-15 18:13 - 2013-02-22 06:27 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-04-15 18:13 - 2013-02-22 06:21 - 01346560 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-04-15 18:13 - 2013-02-22 06:20 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-04-15 18:13 - 2013-02-22 06:19 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-04-15 18:13 - 2013-02-22 06:18 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-04-15 18:13 - 2013-02-22 06:17 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-04-15 18:13 - 2013-02-22 06:15 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-04-15 18:13 - 2013-02-22 06:15 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-04-15 18:13 - 2013-02-22 06:15 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-04-15 18:13 - 2013-02-22 06:14 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-04-15 18:13 - 2013-02-22 06:13 - 02147840 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-04-15 18:13 - 2013-02-22 06:13 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-04-15 18:13 - 2013-02-22 06:12 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-04-15 18:13 - 2013-02-22 06:09 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-04-15 18:13 - 2013-02-22 04:05 - 12324352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-04-15 18:13 - 2013-02-22 03:47 - 09738752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-04-15 18:13 - 2013-02-22 03:46 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-04-15 18:13 - 2013-02-22 03:38 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-04-15 18:13 - 2013-02-22 03:38 - 01104384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-04-15 18:13 - 2013-02-22 03:37 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-04-15 18:13 - 2013-02-22 03:36 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-04-15 18:13 - 2013-02-22 03:35 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-04-15 18:13 - 2013-02-22 03:34 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-04-15 18:13 - 2013-02-22 03:34 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-04-15 18:13 - 2013-02-22 03:34 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-04-15 18:13 - 2013-02-22 03:33 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-04-15 18:13 - 2013-02-22 03:32 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-04-15 18:13 - 2013-02-22 03:31 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-04-15 18:13 - 2013-02-22 03:31 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-04-15 18:13 - 2013-02-22 03:28 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-04-11 20:06 - 2013-02-15 06:08 - 00044032 ____A (Microsoft Corporation) C:\Windows\System32\tsgqec.dll
2013-04-11 20:06 - 2013-02-15 06:06 - 03717632 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll
2013-04-11 20:06 - 2013-02-15 06:02 - 00158720 ____A (Microsoft Corporation) C:\Windows\System32\aaclient.dll
2013-04-11 20:06 - 2013-02-15 04:37 - 03217408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-04-11 20:06 - 2013-02-15 04:34 - 00131584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-04-11 20:06 - 2013-02-15 03:25 - 00036864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-04-11 20:05 - 2013-03-19 06:04 - 05550424 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-04-11 20:05 - 2013-03-19 05:46 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\csrsrv.dll
2013-04-11 20:05 - 2013-03-19 05:04 - 03968856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-04-11 20:05 - 2013-03-19 05:04 - 03913560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-04-11 20:05 - 2013-03-19 04:47 - 00006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-04-11 20:05 - 2013-03-19 03:06 - 00112640 ____A (Microsoft Corporation) C:\Windows\System32\smss.exe
2013-04-11 20:05 - 2013-03-01 03:36 - 03153408 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-04-11 20:05 - 2013-01-24 06:01 - 00223752 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys
==================== One Month Modified Files and Folders =======
2013-05-09 07:06 - 2013-05-09 07:06 - 00000000 ____D C:\FRST
2013-05-09 07:04 - 2013-05-09 07:03 - 01874958 ____A (Farbar) C:\Users\Dan\Desktop\FRST64.exe
2013-05-09 06:56 - 2012-04-17 18:15 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-05-09 06:56 - 2010-08-24 13:54 - 00000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-05-08 23:08 - 2010-01-04 14:02 - 01351165 ____A C:\Windows\WindowsUpdate.log
2013-05-08 23:06 - 2009-07-14 04:51 - 00127023 ____A C:\Windows\setupact.log
2013-05-08 22:07 - 2009-07-14 05:13 - 00726444 ____A C:\Windows\System32\PerfStringBackup.INI
2013-05-08 17:17 - 2010-08-24 13:54 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-05-07 22:05 - 2013-05-06 13:07 - 00000000 ____D C:\Program Files (x86)\Search Results Toolbar
2013-05-07 21:42 - 2010-12-19 22:28 - 00000000 ____D C:\Users\Dan\AppData\Roaming\.minecraft
2013-05-06 21:24 - 2013-05-06 21:24 - 00013439 ____A C:\Users\Dan\Downloads\1B35119EA6BAFE68769955BCB045A9BBD00F9429.torrent
2013-05-06 21:24 - 2013-05-06 21:24 - 00000000 ____D C:\Users\Dan\Downloads\Game Of Thrones Season 1 complete
2013-05-06 21:24 - 2012-11-19 16:55 - 00000000 ____D C:\Users\Dan\.frostwire5
2013-05-06 21:22 - 2013-05-06 21:22 - 00000000 ____D C:\ProgramData\BrowserProtect
2013-05-06 21:21 - 2013-05-06 21:21 - 00217592 ____A C:\Users\Dan\Downloads\Games_of_Thrones_season_1_.exe
2013-05-06 21:21 - 2013-05-06 21:21 - 00000000 ____D C:\Users\Dan\AppData\Local\PutLockerDownloader
2013-05-06 15:42 - 2013-05-06 15:42 - 00000000 ____D C:\ProgramData\Browser Manager
2013-05-06 14:24 - 2009-07-14 04:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-05-06 14:24 - 2009-07-14 04:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-05-06 13:13 - 2013-05-06 13:12 - 00000000 ____D C:\Users\Dan\Downloads\TooManyItems2013_04_25_1.5.2
2013-05-06 13:12 - 2013-05-06 13:12 - 00097946 ____A C:\Users\Dan\Downloads\TooManyItems2013_04_25_1.5.2.zip
2013-05-06 09:33 - 2013-05-06 09:33 - 00083160 ____A (Avira GmbH) C:\Windows\System32\Drivers\avnetflt.sys
2013-05-02 15:07 - 2009-11-03 06:17 - 00938032 ____A C:\Windows\PFRO.log
2013-05-02 15:07 - 2009-07-14 05:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-05-02 02:06 - 2010-10-22 23:05 - 00278800 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2013-05-01 20:56 - 2013-05-01 20:56 - 00029848 ____A C:\Users\Dan\Desktop\hs_err_pid4316.log
2013-05-01 20:35 - 2013-05-01 20:30 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Open Download Manager
2013-05-01 20:35 - 2013-05-01 20:29 - 00000000 ____D C:\Users\Dan\AppData\Roaming\PerformerSoft
2013-05-01 20:29 - 2013-05-01 20:29 - 00000000 ____D C:\ProgramData\IBUpdaterService
2013-05-01 20:29 - 2013-05-01 20:29 - 00000000 ____D C:\Program Files (x86)\NetNucleous
2013-05-01 18:38 - 2013-05-01 18:38 - 00662509 ____A C:\Users\Dan\Downloads\3M presentation.pptx
2013-05-01 17:13 - 2013-05-01 17:08 - 319925655 ____A C:\Users\Dan\Downloads\Zombieland.The.Series.S01E01.avi
2013-05-01 16:30 - 2013-05-01 16:30 - 00117591 ____A C:\Users\Dan\Downloads\Businees STUDENT WORK.pptx
2013-04-30 22:21 - 2013-04-30 22:21 - 03926016 ____A C:\Users\Dan\Downloads\Biology coursework title page.pub
2013-04-30 22:20 - 2013-04-29 20:57 - 01743807 ____A C:\Users\Dan\Downloads\Biology coursework 22.04.13.odt
2013-04-30 10:10 - 2013-04-22 17:45 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Skype
2013-04-30 10:07 - 2010-09-01 23:07 - 00002828 ____A C:\Users\Dan\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2013-04-30 10:02 - 2013-04-30 10:03 - 00311200 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-04-30 10:02 - 2013-04-30 10:03 - 00188832 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-04-30 10:02 - 2013-04-30 10:03 - 00188320 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-04-30 10:02 - 2013-04-30 10:03 - 00108448 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2013-04-30 10:02 - 2013-04-30 09:52 - 01092512 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-04-30 10:02 - 2010-11-13 15:23 - 00971680 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2013-04-30 10:02 - 2010-11-13 15:22 - 00000000 ____D C:\Program Files\Java
2013-04-30 09:54 - 2010-10-30 14:49 - 00000000 ____D C:\Program Files (x86)\Java
2013-04-29 07:12 - 2013-04-28 18:45 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-04-28 19:42 - 2013-04-28 19:42 - 00000000 ____D C:\Users\Dan\Documents\School work
2013-04-28 19:36 - 2013-04-28 19:36 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Sports Interactive
2013-04-28 19:36 - 2013-04-28 19:36 - 00000000 ____D C:\Users\Dan\AppData\Local\Sports Interactive
2013-04-28 18:57 - 2013-04-28 18:57 - 00000000 ____D C:\Program Files (x86)\IZArc
2013-04-28 18:56 - 2013-04-28 18:56 - 00000000 ____D C:\Users\Dan\AppData\Roaming\DealPly
2013-04-28 17:19 - 2009-11-03 05:41 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-04-28 15:53 - 2013-04-28 15:53 - 00000064 ____A C:\Windows\GPlrLanc.dat
2013-04-28 15:52 - 2013-04-28 15:52 - 00263186 ____A C:\Users\Dan\Desktop\Minecraft.exe
2013-04-28 15:52 - 2013-04-28 15:52 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Babylon
2013-04-28 15:52 - 2013-04-28 15:52 - 00000000 ____D C:\ProgramData\Babylon
2013-04-28 15:50 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\Resources
2013-04-28 14:40 - 2013-04-28 15:01 - 730857472 ____A C:\Users\Dan\Downloads\The Dark Knight.avi
2013-04-28 13:44 - 2013-04-28 14:15 - 840902044 ____A C:\Users\Dan\Downloads\Schindlers List.mkv
2013-04-28 13:00 - 2013-02-22 12:25 - 00000000 ____D C:\Users\Dan\AppData\Local\Avg2013
2013-04-28 13:00 - 2013-02-22 12:25 - 00000000 ____D C:\ProgramData\MFAData
2013-04-28 13:00 - 2012-11-19 16:56 - 00000000 ____D C:\Users\Dan\FrostWire
2013-04-28 12:59 - 2013-04-28 12:59 - 00001222 ____A C:\Users\Dan\Desktop\FrostWire 5.5.6.lnk
2013-04-28 12:59 - 2013-04-28 12:59 - 00000000 ____D C:\Program Files (x86)\FrostWire 5
2013-04-28 12:57 - 2013-02-22 12:49 - 00000000 ____D C:\ProgramData\AVG2013
2013-04-28 12:56 - 2013-04-28 12:56 - 00002264 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2013-04-28 12:56 - 2009-11-03 06:09 - 00000000 ____D C:\Program Files (x86)\Google
2013-04-28 12:48 - 2010-08-25 11:14 - 00000000 ____D C:\Program Files (x86)\DivX
2013-04-28 12:48 - 2010-08-25 11:12 - 00000000 ____D C:\ProgramData\DivX
2013-04-28 12:29 - 2009-07-14 03:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-04-27 16:05 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\rescache
2013-04-27 14:21 - 2012-08-09 08:01 - 00000000 ____D C:\Program Files (x86)\RelevantKnowledge
2013-04-27 14:20 - 2013-04-27 14:20 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Avira
2013-04-27 14:10 - 2013-04-27 14:10 - 00002075 ____A C:\Users\Public\Desktop\Avira Control Center.lnk
2013-04-27 14:10 - 2013-04-27 14:10 - 00000000 ____D C:\ProgramData\Avira
2013-04-27 14:10 - 2013-04-27 14:10 - 00000000 ____D C:\Program Files (x86)\Avira
2013-04-27 14:04 - 2013-04-27 14:10 - 00130016 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avipbb.sys
2013-04-27 14:04 - 2013-04-27 14:10 - 00100712 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avgntflt.sys
2013-04-27 14:04 - 2013-04-27 14:10 - 00028600 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avkmgr.sys
2013-04-25 15:50 - 2011-02-23 14:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-04-25 15:49 - 2011-03-06 17:34 - 00086576 ____A C:\Windows\System32\GDIPFONTCACHEV1.DAT
2013-04-25 15:39 - 2013-04-25 15:39 - 00000000 ____D C:\ProgramData\Mozilla
2013-04-25 15:25 - 2010-08-24 13:39 - 00000000 ____D C:\Users\Dan\AppData\Local\Google
2013-04-25 15:15 - 2012-09-24 22:28 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Dropbox
2013-04-24 21:47 - 2013-04-24 21:47 - 00001179 ____A C:\Users\Dan\Desktop\DivX Plus Converter.lnk
2013-04-24 21:41 - 2013-04-24 21:41 - 00001345 ____A C:\Users\Dan\Desktop\Media Center.lnk
2013-04-24 21:18 - 2013-04-24 21:18 - 00000020 ___SH C:\Users\Mcx1-DAN-PC\ntuser.ini
2013-04-24 21:18 - 2013-04-24 21:18 - 00000000 ____D C:\users\Mcx1-DAN-PC
2013-04-24 21:18 - 2013-04-24 21:15 - 00000258 _RASH C:\ProgramData\ntuser.pol
2013-04-24 21:15 - 2009-07-14 07:44 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-04-24 21:15 - 2009-07-14 03:20 - 00000000 ___HD C:\Windows\System32\GroupPolicy
2013-04-24 17:58 - 2013-04-28 14:15 - 528324938 ____A C:\Users\Dan\Downloads\Children Of Men.mkv
2013-04-22 18:30 - 2013-04-22 18:30 - 00001100 ____A C:\Users\Dan\Desktop\OpenOffice.org Writer.lnk
2013-04-22 17:45 - 2013-04-22 17:45 - 00002515 ____A C:\Users\Public\Desktop\Skype.lnk
2013-04-22 17:45 - 2013-04-22 17:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-04-22 17:45 - 2013-04-22 17:45 - 00000000 ____D C:\ProgramData\Skype
2013-04-17 21:24 - 2009-11-03 06:13 - 00000000 ____D C:\ProgramData\Adobe
2013-04-17 21:24 - 2009-11-03 06:13 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-04-16 19:00 - 2012-09-24 22:36 - 00000000 ___RD C:\Users\Dan\Dropbox
2013-04-16 18:28 - 2009-07-14 04:45 - 00364144 ____A C:\Windows\System32\FNTCACHE.DAT
2013-04-15 18:15 - 2010-08-29 15:00 - 72702784 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-04-14 15:47 - 2012-07-11 21:09 - 00861088 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-04-14 15:47 - 2010-11-25 18:45 - 00782240 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-04-12 14:45 - 2013-04-24 16:03 - 01656680 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2013-04-12 11:47 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\System32\NDF
2013-04-12 11:12 - 2010-11-24 17:41 - 00000000 ____D C:\Program Files\Ranger Outpost Client
2013-04-12 11:08 - 2012-04-23 17:35 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Apple Computer
2013-04-09 14:36 - 2013-01-10 12:08 - 00000403 ____A C:\Windows\wininit.ini
2013-04-09 14:28 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-04-09 14:28 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-04-09 14:28 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\System32\zh-HK
2013-04-09 14:28 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\System32\tr-TR
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
Last Boot: 2013-05-04 12:50
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-05-2013
Ran by Dan at 2013-05-09 07:06:55 Run:
Running from C:\Users\Dan\Desktop
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Adobe Reader XI (11.0.02) (Version: 11.0.02)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Alice Greenfingers
ALPS Touch Pad Driver (Version: Version 7.102.2002.208)
Amazonia
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.10)
Avira Free Antivirus (Version: 13.0.0.3640)
Bonjour (Version: 3.0.0.10)
Bundled software uninstaller
Canon MP280 series MP Drivers
Chicken Invaders 2
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Dairy Dash
DivX Setup (Version: 2.6.1.28)
Dream Day First Home
eBay Worldwide (Version: 2.1.0901)
eMachines GameZone Console (Version: 5.1.1.3)
eMachines Power Management (Version: 4.05.3004)
eMachines Recovery Management (Version: 4.05.3005)
eMachines Registration (Version: 1.02.3006)
eMachines ScreenSaver (Version: 1.1.0805)
eMachines Updater (Version: 1.01.3017)
Farm Frenzy 2
First Class Flurry
FrostWire 5.5.6 (Version: 5.5.6.0)
Google Chrome (Version: 26.0.1410.64)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.145)
Granny In Paradise
Heroes of Hellas
iCloud (Version: 2.1.0.39)
Identity Card (Version: 1.00.3003)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2202)
Intel® Matrix Storage Manager
Internet Explorer Toolbar 4.6 by SweetPacks (Version: 4.6.0004)
iTunes (Version: 11.0.0.163)
IZArc 4.1.7 (Version: 4.1.7)
Java 7 Update 21 (64-bit) (Version: 7.0.210)
Junk Mail filter update (Version: 14.0.8117.416)
Launch Manager (Version: 3.0.02)
Memeo Instant Backup (Version: 4.60.0.7876)
Merriam Websters Spell Jam
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 1.0.0.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 9.7.0621)
MSVCRT (Version: 14.0.1468.721)
OpenOffice.org 3.3 (Version: 3.3.9567)
QuickTime (Version: 7.73.80.64)
Ranger Outpost Remote Client (Version: 2.0.1.1187)
Realtek High Definition Audio Driver (Version: 6.0.1.5904)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30104)
RelevantKnowledge (Version: 1.3.335.337)
Skype™ 6.3 (Version: 6.3.105)
Spotify (Version: 0.8.3.222.g317ab79d)
SweetIM for Messenger 3.7 (Version: 3.7.0007)
SweetPacks bundle uninstaller (Version: 1.0.0001)
swMSM (Version: 12.0.0.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 (KB974631)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Manager for SweetPacks 1.1 (Version: 1.1.0008)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Welcome Center (Version: 1.00.3009)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
==================== Restore Points =========================
07-05-2013 06:41:35 Windows Update
08-05-2013 22:40:43 Removed System Requirements Lab Detection
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/08/2013 11:12:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8330
Error: (05/08/2013 11:12:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8330
Error: (05/08/2013 11:12:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (05/08/2013 11:12:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7332
Error: (05/08/2013 11:12:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7332
Error: (05/08/2013 11:12:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (05/08/2013 11:12:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6333
Error: (05/08/2013 11:12:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6333
Error: (05/08/2013 11:12:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (05/08/2013 11:12:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5335
System errors:
=============
Error: (05/07/2013 10:13:27 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/06/2013 05:40:54 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/06/2013 02:56:41 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/06/2013 01:07:34 PM) (Source: Service Control Manager) (User: )
Description: The Datamngr Coordinator service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Error: (05/06/2013 10:57:22 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/04/2013 02:30:32 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/02/2013 03:07:59 PM) (Source: Service Control Manager) (User: )
Description: The WajamUpdater service failed to start due to the following error:
%%2
Error: (05/01/2013 10:08:50 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/01/2013 08:20:51 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (04/30/2013 09:38:07 AM) (Source: Service Control Manager) (User: )
Description: The WajamUpdater service failed to start due to the following error:
%%2
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 56%
Total physical RAM: 4025.98 MB
Available physical RAM: 1762.29 MB
Total Pagefile: 8050.14 MB
Available Pagefile: 5339.54 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (eMachines) (Fixed) (Total:136.95 GB) (Free:59.42 GB) NTFS (Disk=0 Partition=3)
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 98D51C85)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=137 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Ran by Dan (administrator) on 09-05-2013 07:06:07
Running from C:\Users\Dan\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\eMachines\Registration\GregHSRW.exe
(Memeo) C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
(TMRG, Inc.) C:\Program Files (x86)\RelevantKnowledge\rlservice.exe
(Acer) C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apntex.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Acer Incorporated) C:\Program Files\eMachines\eMachines Power Management\ePowerEvent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\javaw.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Dan\Desktop\FRST64.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-10-13] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7982112 2009-07-28] (Realtek Semiconductor)
HKLM\...\Run: [Acer ePower Management] C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe [823840 2009-09-30] (Acer Incorporated)
HKLM\...\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe [301056 2009-06-11] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Monitor] C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM-x32\...\Runonce: [removeiLividdatamngr] cmd.exe /c RD /S /Q "C:\Program Files (x86)\Search Results Toolbar" [x]
HKCU\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2009-11-03] (Google Inc.)
HKCU\...\Run: [OurSoftUpdaterChecker] C:\Program Files (x86)\NetNucleous\GorillaPrice\GPCheck.exe [x]
HKLM-x32\...\Runonce: [removeiLividdatamngr] cmd.exe /c RD /S /Q "C:\Program Files (x86)\Search Results Toolbar" [x]
HKLM-x32\...\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe [1157128 2009-08-18] (Dritek System Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-10-25] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-03-28] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW [1263952 2013-02-13] ()
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345312 2013-05-06] (Avira Operations GmbH & Co. KG)
HKU\Default\...\RunOnce: [ScrSav] C:\Program Files (x86)\eMachines\Screensaver\run_eMachines.exe /default [162336 2009-07-22] ()
HKU\Default User\...\RunOnce: [ScrSav] C:\Program Files (x86)\eMachines\Screensaver\run_eMachines.exe /default [162336 2009-07-22] ()
HKU\Mcx1-DAN-PC\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18642024 2013-02-28] (Skype Technologies S.A.)
HKU\Mcx1-DAN-PC\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2009-11-03] (Google Inc.)
HKU\Mcx1-DAN-PC\...\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent [x]
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\Datamngr\x64\mgrldr.dll [39408 2009-11-03] (Google Inc.)
Startup: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Dan\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www2.delta-se...880C417FE208014
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...24z1k5r4412423s
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emac...24z1k5r4412423s
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...24z1k5r4412423s
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emac...24z1k5r4412423s
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emac...24z1k5r4412423s
URLSearchHook: (No Name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No File
HKLM SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
HKLM-x32 SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www2.delta-se...880C417FE208014
SearchScopes: HKCU - {33524C00-63FB-43DB-A6BF-0A4E14B24649} URL = http://www.basicscan...s={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-re...q={searchTerms}
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {7825CFB6-490A-436B-9F26-4A7B5CFC01A9} - No File
BHO-x32: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Wajam - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: GamesBarBHO Class - {CB0D163C-E9F4-4236-9496-0597E24B23A5} - No File
BHO-x32: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - No File
Toolbar: HKLM-x32 - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
PDF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab
PDF: HKLM-x32 {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab
PDF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
PDF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicr...osoft/wrc32.ocx
PDF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [65024] (Microsoft Corporation)
Winsock: Catalog5-x64 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\xnw0vhic.default
FF NetworkProxy: "type", 0
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @oberon-media.com/ONCAdapter - C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: SweetPacks Toolbar for Firefox - C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\xnw0vhic.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
FF Extension: ftdownloader3 - C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\xnw0vhic.default\Extensions\[email protected]
Chrome:
=======
CHR HomePage: hxxp://www.searchnu.com/406?appid=390
CHR RestoreOnStartup: "hxxp://www.google.co.uk/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Oberon com adapter) - C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
CHR Plugin: (RIM Handheld Application Loader) - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll No File
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Extension: (Docs) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Gmail) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86752 2013-04-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110816 2013-04-27] (Avira Operations GmbH & Co. KG)
R2 ePowerSvc; C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe [844320 2009-09-30] (Acer Incorporated)
R2 Greg_Service; C:\Program Files (x86)\eMachines\Registration\GregHSRW.exe [1150496 2009-08-28] (Acer Incorporated)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [3804120 2011-08-07] (INCA Internet Co., Ltd.)
R2 RelevantKnowledge; C:\Program Files (x86)\RelevantKnowledge\rlservice.exe [162072 2013-04-04] (TMRG, Inc.)
R2 Updater Service; C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [240160 2009-07-04] (Acer)
S2 WajamUpdater; "C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe" [x]
==================== Drivers (Whitelisted) ====================
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-01] (INCA Internet Co., Ltd.)
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [74752 2011-07-25] (Research In Motion Limited)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44032 2011-07-20] (Research in Motion Ltd)
R2 avgntflt; system32\DRIVERS\avgntflt.sys [x]
R1 avipbb; system32\DRIVERS\avipbb.sys [x]
R1 avkmgr; system32\DRIVERS\avkmgr.sys [x]
S3 X6va005; \??\C:\Users\Dan\AppData\Local\Temp\0058820.tmp [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-05-09 07:06 - 2013-05-09 07:06 - 00000000 ____D C:\FRST
2013-05-09 07:03 - 2013-05-09 07:04 - 01874958 ____A (Farbar) C:\Users\Dan\Desktop\FRST64.exe
2013-05-06 21:24 - 2013-05-06 21:24 - 00013439 ____A C:\Users\Dan\Downloads\1B35119EA6BAFE68769955BCB045A9BBD00F9429.torrent
2013-05-06 21:24 - 2013-05-06 21:24 - 00000000 ____D C:\Users\Dan\Downloads\Game Of Thrones Season 1 complete
2013-05-06 21:22 - 2013-05-06 21:22 - 00000000 ____D C:\ProgramData\BrowserProtect
2013-05-06 21:21 - 2013-05-06 21:21 - 00217592 ____A C:\Users\Dan\Downloads\Games_of_Thrones_season_1_.exe
2013-05-06 21:21 - 2013-05-06 21:21 - 00000000 ____D C:\Users\Dan\AppData\Local\PutLockerDownloader
2013-05-06 15:42 - 2013-05-06 15:42 - 00000000 ____D C:\ProgramData\Browser Manager
2013-05-06 13:12 - 2013-05-06 13:13 - 00000000 ____D C:\Users\Dan\Downloads\TooManyItems2013_04_25_1.5.2
2013-05-06 13:12 - 2013-05-06 13:12 - 00097946 ____A C:\Users\Dan\Downloads\TooManyItems2013_04_25_1.5.2.zip
2013-05-06 13:07 - 2013-05-07 22:05 - 00000000 ____D C:\Program Files (x86)\Search Results Toolbar
2013-05-06 09:33 - 2013-05-06 09:33 - 00083160 ____A (Avira GmbH) C:\Windows\System32\Drivers\avnetflt.sys
2013-05-01 20:56 - 2013-05-01 20:56 - 00029848 ____A C:\Users\Dan\Desktop\hs_err_pid4316.log
2013-05-01 20:30 - 2013-05-01 20:35 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Open Download Manager
2013-05-01 20:29 - 2013-05-01 20:35 - 00000000 ____D C:\Users\Dan\AppData\Roaming\PerformerSoft
2013-05-01 20:29 - 2013-05-01 20:29 - 00000000 ____D C:\ProgramData\IBUpdaterService
2013-05-01 20:29 - 2013-05-01 20:29 - 00000000 ____D C:\Program Files (x86)\NetNucleous
2013-05-01 20:29 - 2012-12-19 15:53 - 00019632 ____A (PerformerSoft LLC) C:\Windows\System32\roboot64.exe
2013-05-01 18:38 - 2013-05-01 18:38 - 00662509 ____A C:\Users\Dan\Downloads\3M presentation.pptx
2013-05-01 17:08 - 2013-05-01 17:13 - 319925655 ____A C:\Users\Dan\Downloads\Zombieland.The.Series.S01E01.avi
2013-05-01 16:30 - 2013-05-01 16:30 - 00117591 ____A C:\Users\Dan\Downloads\Businees STUDENT WORK.pptx
2013-04-30 22:21 - 2013-04-30 22:21 - 03926016 ____A C:\Users\Dan\Downloads\Biology coursework title page.pub
2013-04-30 10:03 - 2013-04-30 10:02 - 00311200 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-04-30 10:03 - 2013-04-30 10:02 - 00188832 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-04-30 10:03 - 2013-04-30 10:02 - 00188320 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-04-30 10:03 - 2013-04-30 10:02 - 00108448 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2013-04-30 09:52 - 2013-04-30 10:02 - 01092512 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-04-29 20:57 - 2013-04-30 22:20 - 01743807 ____A C:\Users\Dan\Downloads\Biology coursework 22.04.13.odt
2013-04-28 19:42 - 2013-04-28 19:42 - 00000000 ____D C:\Users\Dan\Documents\School work
2013-04-28 19:36 - 2013-04-28 19:36 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Sports Interactive
2013-04-28 19:36 - 2013-04-28 19:36 - 00000000 ____D C:\Users\Dan\AppData\Local\Sports Interactive
2013-04-28 18:57 - 2013-04-28 18:57 - 00000000 ____D C:\Program Files (x86)\IZArc
2013-04-28 18:56 - 2013-04-28 18:56 - 00000000 ____D C:\Users\Dan\AppData\Roaming\DealPly
2013-04-28 18:45 - 2013-04-29 07:12 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-04-28 15:53 - 2013-04-28 15:53 - 00000064 ____A C:\Windows\GPlrLanc.dat
2013-04-28 15:52 - 2013-04-28 15:52 - 00263186 ____A C:\Users\Dan\Desktop\Minecraft.exe
2013-04-28 15:52 - 2013-04-28 15:52 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Babylon
2013-04-28 15:52 - 2013-04-28 15:52 - 00000000 ____D C:\ProgramData\Babylon
2013-04-28 15:01 - 2013-04-28 14:40 - 730857472 ____A C:\Users\Dan\Downloads\The Dark Knight.avi
2013-04-28 14:15 - 2013-04-28 13:44 - 840902044 ____A C:\Users\Dan\Downloads\Schindlers List.mkv
2013-04-28 14:15 - 2013-04-24 17:58 - 528324938 ____A C:\Users\Dan\Downloads\Children Of Men.mkv
2013-04-28 14:15 - 2012-08-09 08:02 - 523676202 ____A C:\Users\Dan\Downloads\Rock N' Rolla.mkv
2013-04-28 12:59 - 2013-04-28 12:59 - 00001222 ____A C:\Users\Dan\Desktop\FrostWire 5.5.6.lnk
2013-04-28 12:59 - 2013-04-28 12:59 - 00000000 ____D C:\Program Files (x86)\FrostWire 5
2013-04-28 12:56 - 2013-04-28 12:56 - 00002264 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2013-04-27 14:20 - 2013-04-27 14:20 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Avira
2013-04-27 14:10 - 2013-04-27 14:10 - 00002075 ____A C:\Users\Public\Desktop\Avira Control Center.lnk
2013-04-27 14:10 - 2013-04-27 14:10 - 00000000 ____D C:\ProgramData\Avira
2013-04-27 14:10 - 2013-04-27 14:10 - 00000000 ____D C:\Program Files (x86)\Avira
2013-04-27 14:10 - 2013-04-27 14:04 - 00130016 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avipbb.sys
2013-04-27 14:10 - 2013-04-27 14:04 - 00100712 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avgntflt.sys
2013-04-27 14:10 - 2013-04-27 14:04 - 00028600 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avkmgr.sys
2013-04-25 15:39 - 2013-04-25 15:39 - 00000000 ____D C:\ProgramData\Mozilla
2013-04-24 21:47 - 2013-04-24 21:47 - 00001179 ____A C:\Users\Dan\Desktop\DivX Plus Converter.lnk
2013-04-24 21:41 - 2013-04-24 21:41 - 00001345 ____A C:\Users\Dan\Desktop\Media Center.lnk
2013-04-24 21:18 - 2013-04-24 21:18 - 00000020 ___SH C:\Users\Mcx1-DAN-PC\ntuser.ini
2013-04-24 21:18 - 2013-04-24 21:18 - 00000000 ____D C:\users\Mcx1-DAN-PC
2013-04-24 21:18 - 2013-03-20 18:11 - 00000000 ____D C:\Users\Mcx1-DAN-PC\AppData\Roaming\TuneUp Software
2013-04-24 21:18 - 2010-08-26 10:52 - 00000000 ____D C:\Users\Mcx1-DAN-PC\AppData\Local\Microsoft Help
2013-04-24 21:15 - 2013-04-24 21:18 - 00000258 _RASH C:\ProgramData\ntuser.pol
2013-04-24 16:03 - 2013-04-12 14:45 - 01656680 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2013-04-22 18:30 - 2013-04-22 18:30 - 00001100 ____A C:\Users\Dan\Desktop\OpenOffice.org Writer.lnk
2013-04-22 17:45 - 2013-04-30 10:10 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Skype
2013-04-22 17:45 - 2013-04-22 17:45 - 00002515 ____A C:\Users\Public\Desktop\Skype.lnk
2013-04-22 17:45 - 2013-04-22 17:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-04-22 17:45 - 2013-04-22 17:45 - 00000000 ____D C:\ProgramData\Skype
2013-04-15 18:13 - 2013-02-22 06:57 - 17817088 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-04-15 18:13 - 2013-02-22 06:29 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-04-15 18:13 - 2013-02-22 06:27 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-04-15 18:13 - 2013-02-22 06:21 - 01346560 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-04-15 18:13 - 2013-02-22 06:20 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-04-15 18:13 - 2013-02-22 06:19 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-04-15 18:13 - 2013-02-22 06:18 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-04-15 18:13 - 2013-02-22 06:17 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-04-15 18:13 - 2013-02-22 06:15 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-04-15 18:13 - 2013-02-22 06:15 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-04-15 18:13 - 2013-02-22 06:15 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-04-15 18:13 - 2013-02-22 06:14 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-04-15 18:13 - 2013-02-22 06:13 - 02147840 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-04-15 18:13 - 2013-02-22 06:13 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-04-15 18:13 - 2013-02-22 06:12 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-04-15 18:13 - 2013-02-22 06:09 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-04-15 18:13 - 2013-02-22 04:05 - 12324352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-04-15 18:13 - 2013-02-22 03:47 - 09738752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-04-15 18:13 - 2013-02-22 03:46 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-04-15 18:13 - 2013-02-22 03:38 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-04-15 18:13 - 2013-02-22 03:38 - 01104384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-04-15 18:13 - 2013-02-22 03:37 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-04-15 18:13 - 2013-02-22 03:36 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-04-15 18:13 - 2013-02-22 03:35 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-04-15 18:13 - 2013-02-22 03:34 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-04-15 18:13 - 2013-02-22 03:34 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-04-15 18:13 - 2013-02-22 03:34 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-04-15 18:13 - 2013-02-22 03:33 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-04-15 18:13 - 2013-02-22 03:32 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-04-15 18:13 - 2013-02-22 03:31 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-04-15 18:13 - 2013-02-22 03:31 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-04-15 18:13 - 2013-02-22 03:28 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-04-11 20:06 - 2013-02-15 06:08 - 00044032 ____A (Microsoft Corporation) C:\Windows\System32\tsgqec.dll
2013-04-11 20:06 - 2013-02-15 06:06 - 03717632 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll
2013-04-11 20:06 - 2013-02-15 06:02 - 00158720 ____A (Microsoft Corporation) C:\Windows\System32\aaclient.dll
2013-04-11 20:06 - 2013-02-15 04:37 - 03217408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-04-11 20:06 - 2013-02-15 04:34 - 00131584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-04-11 20:06 - 2013-02-15 03:25 - 00036864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-04-11 20:05 - 2013-03-19 06:04 - 05550424 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-04-11 20:05 - 2013-03-19 05:46 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\csrsrv.dll
2013-04-11 20:05 - 2013-03-19 05:04 - 03968856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-04-11 20:05 - 2013-03-19 05:04 - 03913560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-04-11 20:05 - 2013-03-19 04:47 - 00006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-04-11 20:05 - 2013-03-19 03:06 - 00112640 ____A (Microsoft Corporation) C:\Windows\System32\smss.exe
2013-04-11 20:05 - 2013-03-01 03:36 - 03153408 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-04-11 20:05 - 2013-01-24 06:01 - 00223752 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys
==================== One Month Modified Files and Folders =======
2013-05-09 07:06 - 2013-05-09 07:06 - 00000000 ____D C:\FRST
2013-05-09 07:04 - 2013-05-09 07:03 - 01874958 ____A (Farbar) C:\Users\Dan\Desktop\FRST64.exe
2013-05-09 06:56 - 2012-04-17 18:15 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-05-09 06:56 - 2010-08-24 13:54 - 00000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-05-08 23:08 - 2010-01-04 14:02 - 01351165 ____A C:\Windows\WindowsUpdate.log
2013-05-08 23:06 - 2009-07-14 04:51 - 00127023 ____A C:\Windows\setupact.log
2013-05-08 22:07 - 2009-07-14 05:13 - 00726444 ____A C:\Windows\System32\PerfStringBackup.INI
2013-05-08 17:17 - 2010-08-24 13:54 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-05-07 22:05 - 2013-05-06 13:07 - 00000000 ____D C:\Program Files (x86)\Search Results Toolbar
2013-05-07 21:42 - 2010-12-19 22:28 - 00000000 ____D C:\Users\Dan\AppData\Roaming\.minecraft
2013-05-06 21:24 - 2013-05-06 21:24 - 00013439 ____A C:\Users\Dan\Downloads\1B35119EA6BAFE68769955BCB045A9BBD00F9429.torrent
2013-05-06 21:24 - 2013-05-06 21:24 - 00000000 ____D C:\Users\Dan\Downloads\Game Of Thrones Season 1 complete
2013-05-06 21:24 - 2012-11-19 16:55 - 00000000 ____D C:\Users\Dan\.frostwire5
2013-05-06 21:22 - 2013-05-06 21:22 - 00000000 ____D C:\ProgramData\BrowserProtect
2013-05-06 21:21 - 2013-05-06 21:21 - 00217592 ____A C:\Users\Dan\Downloads\Games_of_Thrones_season_1_.exe
2013-05-06 21:21 - 2013-05-06 21:21 - 00000000 ____D C:\Users\Dan\AppData\Local\PutLockerDownloader
2013-05-06 15:42 - 2013-05-06 15:42 - 00000000 ____D C:\ProgramData\Browser Manager
2013-05-06 14:24 - 2009-07-14 04:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-05-06 14:24 - 2009-07-14 04:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-05-06 13:13 - 2013-05-06 13:12 - 00000000 ____D C:\Users\Dan\Downloads\TooManyItems2013_04_25_1.5.2
2013-05-06 13:12 - 2013-05-06 13:12 - 00097946 ____A C:\Users\Dan\Downloads\TooManyItems2013_04_25_1.5.2.zip
2013-05-06 09:33 - 2013-05-06 09:33 - 00083160 ____A (Avira GmbH) C:\Windows\System32\Drivers\avnetflt.sys
2013-05-02 15:07 - 2009-11-03 06:17 - 00938032 ____A C:\Windows\PFRO.log
2013-05-02 15:07 - 2009-07-14 05:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-05-02 02:06 - 2010-10-22 23:05 - 00278800 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2013-05-01 20:56 - 2013-05-01 20:56 - 00029848 ____A C:\Users\Dan\Desktop\hs_err_pid4316.log
2013-05-01 20:35 - 2013-05-01 20:30 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Open Download Manager
2013-05-01 20:35 - 2013-05-01 20:29 - 00000000 ____D C:\Users\Dan\AppData\Roaming\PerformerSoft
2013-05-01 20:29 - 2013-05-01 20:29 - 00000000 ____D C:\ProgramData\IBUpdaterService
2013-05-01 20:29 - 2013-05-01 20:29 - 00000000 ____D C:\Program Files (x86)\NetNucleous
2013-05-01 18:38 - 2013-05-01 18:38 - 00662509 ____A C:\Users\Dan\Downloads\3M presentation.pptx
2013-05-01 17:13 - 2013-05-01 17:08 - 319925655 ____A C:\Users\Dan\Downloads\Zombieland.The.Series.S01E01.avi
2013-05-01 16:30 - 2013-05-01 16:30 - 00117591 ____A C:\Users\Dan\Downloads\Businees STUDENT WORK.pptx
2013-04-30 22:21 - 2013-04-30 22:21 - 03926016 ____A C:\Users\Dan\Downloads\Biology coursework title page.pub
2013-04-30 22:20 - 2013-04-29 20:57 - 01743807 ____A C:\Users\Dan\Downloads\Biology coursework 22.04.13.odt
2013-04-30 10:10 - 2013-04-22 17:45 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Skype
2013-04-30 10:07 - 2010-09-01 23:07 - 00002828 ____A C:\Users\Dan\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2013-04-30 10:02 - 2013-04-30 10:03 - 00311200 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-04-30 10:02 - 2013-04-30 10:03 - 00188832 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-04-30 10:02 - 2013-04-30 10:03 - 00188320 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-04-30 10:02 - 2013-04-30 10:03 - 00108448 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2013-04-30 10:02 - 2013-04-30 09:52 - 01092512 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-04-30 10:02 - 2010-11-13 15:23 - 00971680 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2013-04-30 10:02 - 2010-11-13 15:22 - 00000000 ____D C:\Program Files\Java
2013-04-30 09:54 - 2010-10-30 14:49 - 00000000 ____D C:\Program Files (x86)\Java
2013-04-29 07:12 - 2013-04-28 18:45 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-04-28 19:42 - 2013-04-28 19:42 - 00000000 ____D C:\Users\Dan\Documents\School work
2013-04-28 19:36 - 2013-04-28 19:36 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Sports Interactive
2013-04-28 19:36 - 2013-04-28 19:36 - 00000000 ____D C:\Users\Dan\AppData\Local\Sports Interactive
2013-04-28 18:57 - 2013-04-28 18:57 - 00000000 ____D C:\Program Files (x86)\IZArc
2013-04-28 18:56 - 2013-04-28 18:56 - 00000000 ____D C:\Users\Dan\AppData\Roaming\DealPly
2013-04-28 17:19 - 2009-11-03 05:41 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-04-28 15:53 - 2013-04-28 15:53 - 00000064 ____A C:\Windows\GPlrLanc.dat
2013-04-28 15:52 - 2013-04-28 15:52 - 00263186 ____A C:\Users\Dan\Desktop\Minecraft.exe
2013-04-28 15:52 - 2013-04-28 15:52 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Babylon
2013-04-28 15:52 - 2013-04-28 15:52 - 00000000 ____D C:\ProgramData\Babylon
2013-04-28 15:50 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\Resources
2013-04-28 14:40 - 2013-04-28 15:01 - 730857472 ____A C:\Users\Dan\Downloads\The Dark Knight.avi
2013-04-28 13:44 - 2013-04-28 14:15 - 840902044 ____A C:\Users\Dan\Downloads\Schindlers List.mkv
2013-04-28 13:00 - 2013-02-22 12:25 - 00000000 ____D C:\Users\Dan\AppData\Local\Avg2013
2013-04-28 13:00 - 2013-02-22 12:25 - 00000000 ____D C:\ProgramData\MFAData
2013-04-28 13:00 - 2012-11-19 16:56 - 00000000 ____D C:\Users\Dan\FrostWire
2013-04-28 12:59 - 2013-04-28 12:59 - 00001222 ____A C:\Users\Dan\Desktop\FrostWire 5.5.6.lnk
2013-04-28 12:59 - 2013-04-28 12:59 - 00000000 ____D C:\Program Files (x86)\FrostWire 5
2013-04-28 12:57 - 2013-02-22 12:49 - 00000000 ____D C:\ProgramData\AVG2013
2013-04-28 12:56 - 2013-04-28 12:56 - 00002264 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2013-04-28 12:56 - 2009-11-03 06:09 - 00000000 ____D C:\Program Files (x86)\Google
2013-04-28 12:48 - 2010-08-25 11:14 - 00000000 ____D C:\Program Files (x86)\DivX
2013-04-28 12:48 - 2010-08-25 11:12 - 00000000 ____D C:\ProgramData\DivX
2013-04-28 12:29 - 2009-07-14 03:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-04-27 16:05 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\rescache
2013-04-27 14:21 - 2012-08-09 08:01 - 00000000 ____D C:\Program Files (x86)\RelevantKnowledge
2013-04-27 14:20 - 2013-04-27 14:20 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Avira
2013-04-27 14:10 - 2013-04-27 14:10 - 00002075 ____A C:\Users\Public\Desktop\Avira Control Center.lnk
2013-04-27 14:10 - 2013-04-27 14:10 - 00000000 ____D C:\ProgramData\Avira
2013-04-27 14:10 - 2013-04-27 14:10 - 00000000 ____D C:\Program Files (x86)\Avira
2013-04-27 14:04 - 2013-04-27 14:10 - 00130016 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avipbb.sys
2013-04-27 14:04 - 2013-04-27 14:10 - 00100712 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avgntflt.sys
2013-04-27 14:04 - 2013-04-27 14:10 - 00028600 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avkmgr.sys
2013-04-25 15:50 - 2011-02-23 14:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-04-25 15:49 - 2011-03-06 17:34 - 00086576 ____A C:\Windows\System32\GDIPFONTCACHEV1.DAT
2013-04-25 15:39 - 2013-04-25 15:39 - 00000000 ____D C:\ProgramData\Mozilla
2013-04-25 15:25 - 2010-08-24 13:39 - 00000000 ____D C:\Users\Dan\AppData\Local\Google
2013-04-25 15:15 - 2012-09-24 22:28 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Dropbox
2013-04-24 21:47 - 2013-04-24 21:47 - 00001179 ____A C:\Users\Dan\Desktop\DivX Plus Converter.lnk
2013-04-24 21:41 - 2013-04-24 21:41 - 00001345 ____A C:\Users\Dan\Desktop\Media Center.lnk
2013-04-24 21:18 - 2013-04-24 21:18 - 00000020 ___SH C:\Users\Mcx1-DAN-PC\ntuser.ini
2013-04-24 21:18 - 2013-04-24 21:18 - 00000000 ____D C:\users\Mcx1-DAN-PC
2013-04-24 21:18 - 2013-04-24 21:15 - 00000258 _RASH C:\ProgramData\ntuser.pol
2013-04-24 21:15 - 2009-07-14 07:44 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-04-24 21:15 - 2009-07-14 03:20 - 00000000 ___HD C:\Windows\System32\GroupPolicy
2013-04-24 17:58 - 2013-04-28 14:15 - 528324938 ____A C:\Users\Dan\Downloads\Children Of Men.mkv
2013-04-22 18:30 - 2013-04-22 18:30 - 00001100 ____A C:\Users\Dan\Desktop\OpenOffice.org Writer.lnk
2013-04-22 17:45 - 2013-04-22 17:45 - 00002515 ____A C:\Users\Public\Desktop\Skype.lnk
2013-04-22 17:45 - 2013-04-22 17:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-04-22 17:45 - 2013-04-22 17:45 - 00000000 ____D C:\ProgramData\Skype
2013-04-17 21:24 - 2009-11-03 06:13 - 00000000 ____D C:\ProgramData\Adobe
2013-04-17 21:24 - 2009-11-03 06:13 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-04-16 19:00 - 2012-09-24 22:36 - 00000000 ___RD C:\Users\Dan\Dropbox
2013-04-16 18:28 - 2009-07-14 04:45 - 00364144 ____A C:\Windows\System32\FNTCACHE.DAT
2013-04-15 18:15 - 2010-08-29 15:00 - 72702784 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-04-14 15:47 - 2012-07-11 21:09 - 00861088 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-04-14 15:47 - 2010-11-25 18:45 - 00782240 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-04-12 14:45 - 2013-04-24 16:03 - 01656680 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2013-04-12 11:47 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\System32\NDF
2013-04-12 11:12 - 2010-11-24 17:41 - 00000000 ____D C:\Program Files\Ranger Outpost Client
2013-04-12 11:08 - 2012-04-23 17:35 - 00000000 ____D C:\Users\Dan\AppData\Roaming\Apple Computer
2013-04-09 14:36 - 2013-01-10 12:08 - 00000403 ____A C:\Windows\wininit.ini
2013-04-09 14:28 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-04-09 14:28 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-04-09 14:28 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\System32\zh-HK
2013-04-09 14:28 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\System32\tr-TR
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
Last Boot: 2013-05-04 12:50
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-05-2013
Ran by Dan at 2013-05-09 07:06:55 Run:
Running from C:\Users\Dan\Desktop
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Adobe Reader XI (11.0.02) (Version: 11.0.02)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Alice Greenfingers
ALPS Touch Pad Driver (Version: Version 7.102.2002.208)
Amazonia
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.10)
Avira Free Antivirus (Version: 13.0.0.3640)
Bonjour (Version: 3.0.0.10)
Bundled software uninstaller
Canon MP280 series MP Drivers
Chicken Invaders 2
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Dairy Dash
DivX Setup (Version: 2.6.1.28)
Dream Day First Home
eBay Worldwide (Version: 2.1.0901)
eMachines GameZone Console (Version: 5.1.1.3)
eMachines Power Management (Version: 4.05.3004)
eMachines Recovery Management (Version: 4.05.3005)
eMachines Registration (Version: 1.02.3006)
eMachines ScreenSaver (Version: 1.1.0805)
eMachines Updater (Version: 1.01.3017)
Farm Frenzy 2
First Class Flurry
FrostWire 5.5.6 (Version: 5.5.6.0)
Google Chrome (Version: 26.0.1410.64)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.145)
Granny In Paradise
Heroes of Hellas
iCloud (Version: 2.1.0.39)
Identity Card (Version: 1.00.3003)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2202)
Intel® Matrix Storage Manager
Internet Explorer Toolbar 4.6 by SweetPacks (Version: 4.6.0004)
iTunes (Version: 11.0.0.163)
IZArc 4.1.7 (Version: 4.1.7)
Java 7 Update 21 (64-bit) (Version: 7.0.210)
Junk Mail filter update (Version: 14.0.8117.416)
Launch Manager (Version: 3.0.02)
Memeo Instant Backup (Version: 4.60.0.7876)
Merriam Websters Spell Jam
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 1.0.0.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 9.7.0621)
MSVCRT (Version: 14.0.1468.721)
OpenOffice.org 3.3 (Version: 3.3.9567)
QuickTime (Version: 7.73.80.64)
Ranger Outpost Remote Client (Version: 2.0.1.1187)
Realtek High Definition Audio Driver (Version: 6.0.1.5904)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30104)
RelevantKnowledge (Version: 1.3.335.337)
Skype™ 6.3 (Version: 6.3.105)
Spotify (Version: 0.8.3.222.g317ab79d)
SweetIM for Messenger 3.7 (Version: 3.7.0007)
SweetPacks bundle uninstaller (Version: 1.0.0001)
swMSM (Version: 12.0.0.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 (KB974631)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Manager for SweetPacks 1.1 (Version: 1.1.0008)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Welcome Center (Version: 1.00.3009)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
==================== Restore Points =========================
07-05-2013 06:41:35 Windows Update
08-05-2013 22:40:43 Removed System Requirements Lab Detection
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/08/2013 11:12:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8330
Error: (05/08/2013 11:12:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8330
Error: (05/08/2013 11:12:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (05/08/2013 11:12:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7332
Error: (05/08/2013 11:12:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7332
Error: (05/08/2013 11:12:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (05/08/2013 11:12:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6333
Error: (05/08/2013 11:12:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6333
Error: (05/08/2013 11:12:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (05/08/2013 11:12:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5335
System errors:
=============
Error: (05/07/2013 10:13:27 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/06/2013 05:40:54 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/06/2013 02:56:41 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/06/2013 01:07:34 PM) (Source: Service Control Manager) (User: )
Description: The Datamngr Coordinator service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Error: (05/06/2013 10:57:22 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/04/2013 02:30:32 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/02/2013 03:07:59 PM) (Source: Service Control Manager) (User: )
Description: The WajamUpdater service failed to start due to the following error:
%%2
Error: (05/01/2013 10:08:50 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (05/01/2013 08:20:51 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DGB2LM3J
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C2A5E1E3-0433-4B5F-ADFD-A7FB7CA43D68}.
The master browser is stopping or an election is being forced.
Error: (04/30/2013 09:38:07 AM) (Source: Service Control Manager) (User: )
Description: The WajamUpdater service failed to start due to the following error:
%%2
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 56%
Total physical RAM: 4025.98 MB
Available physical RAM: 1762.29 MB
Total Pagefile: 8050.14 MB
Available Pagefile: 5339.54 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (eMachines) (Fixed) (Total:136.95 GB) (Free:59.42 GB) NTFS (Disk=0 Partition=3)
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 98D51C85)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=137 GB) - (Type=07 NTFS)
==================== End Of Log ============================
#4
Posted 09 May 2013 - 02:00 PM
Hello DanEvans,
Please download Junkware Removal Tool to your desktop.
Please download Junkware Removal Tool to your desktop.
- Shut down your protection software now to avoid potential conflicts.
- Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right click JRT.exe and "Run as Administrator".
- The tool will open and start scanning your system.
- Please be patient as this can take a while to complete depending on your system's specifications.
- On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
- Post the contents of JRT.txt into your next message.
#5
Posted 09 May 2013 - 03:16 PM
All sorted thanks for a help really done me a favour
Cheers
Dan
Cheers
Dan
#6
Posted 09 May 2013 - 05:48 PM
Hello again Dan,
You are welcome.
I take it you are happy with your machine now. Normally we would run a couple of other scans to make sure we haven't missed anything.
Assuming you are, we have a couple of last steps to perform and then you're all set.
Please delete Junk Removal Tool and Farbars Recovery Scan Tool from your desktop.
Next, we need to clean your restore points and set a new one:
Open System by clicking the Start button, right-clicking Computer, and then clicking Properties.
To help protect your computer in the future:
If you do not already have automatic updates set then it is recommended that you do set Windows to check, download and install your updates automatically.
* Click Start > Control Panel > System and Security > Windows Update
* Under Windows Update click on Turn automatic updating on or off
* Check items shown to ensure you receive updates automatically. Click OK.
Be aware of what emails you open and websites you visit.
Go here for some good advice about how to prevent infection.
A fun way to check your online safety literacy.
Quiz - getsafeonline
Have a safe and happy computing day!
All sorted thanks for a help really done me a favour
You are welcome.
I take it you are happy with your machine now. Normally we would run a couple of other scans to make sure we haven't missed anything.
Assuming you are, we have a couple of last steps to perform and then you're all set.
Please delete Junk Removal Tool and Farbars Recovery Scan Tool from your desktop.
Next, we need to clean your restore points and set a new one:
Open System by clicking the Start button, right-clicking Computer, and then clicking Properties.
- In the left pane, click System protection. Administrator permission required If you're prompted for an administrator password or confirmation, type the password or provide confirmation.
- Under Protection Settings, click the radio button Configure.
- Under Disk Space Usage, click the radio button Delete.
- Click Continue, and then click OK.
-------------------------------------------------------------------------------------------------------------------
A reminder: Remember to (re-install if uninstalled during cleaning) update and turn back on any anti-malware programs you may have turned off during the cleaning process.
-------------------------------------------------------------------------------------------------------------------
Here are some things that I think are worth having a look at if you don't already know about them:
---------------------------------------------------------------------------------------------------------------------
It is good security practice to change your passwords to all your online accounts on a fairly regular basis, this is especially true after an infection. Refer to this Microsoft article Strong passwords: How to create and use them.
----------------------------------------------------------------------------------------------------------------------
Regularly check that your Java is up to date. Older versions are vunerable to malicious attack.
[list] - Download Java for Windows
Reboot your computer.
You also need to unininstall older versions of Java.
- Click Start > Control Panel > Add or Remove Programs
- Remove all Java updates except the latest one you have just installed.
To help protect your computer in the future:
If you do not already have automatic updates set then it is recommended that you do set Windows to check, download and install your updates automatically.
* Click Start > Control Panel > System and Security > Windows Update
* Under Windows Update click on Turn automatic updating on or off
* Check items shown to ensure you receive updates automatically. Click OK.
Be aware of what emails you open and websites you visit.
Go here for some good advice about how to prevent infection.
A fun way to check your online safety literacy.
Quiz - getsafeonline
Have a safe and happy computing day!
#7
Posted 18 May 2013 - 01:28 AM
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.
If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.
Everyone else please begin a New Topic.
If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.
Everyone else please begin a New Topic.
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users