Hi Marius!
First of all, allow me to express my gratitude for helping me out. Your help is deeply appreciated! I'm not really IT savvy hence you probably have to be patient with me if I am not able to follow with you instructions.
Here is the FRST.txt:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-11-2013 02
Ran by Eileen (administrator) on EILEEN-PC on 18-11-2013 23:08:32
Running from J:\
Microsoft® Windows Vista™ Home Premium Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Hewlett-Packard Corporation) C:\Windows\system32\Hpservice.exe
(Validity Sensors, Inc.) C:\Windows\system32\vfsFPService.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpAgent.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\aestsrv.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
() C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
() C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
() C:\Windows\SMINST\BLService.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Google Inc.) F:\Gmail Notifier\gnotify.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink Corp.) C:\Program Files\HP\QuickPlay\QPService.exe
(Hewlett-Packard Co.) F:\HP\HP Software Update\hpwuSchd2.exe
(FS2YOU) C:\Program Files\GridService\peer.exe
(Adobe Systems Inc.) F:\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) F:\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Hewlett-Packard Co.) F:\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
() C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [442433 2008-04-16] (IDT, Inc.)
HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [178712 2008-04-16] (Intel Corporation)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2007-12-25] (CyberLink Corp.)
HKLM\...\Run: [DpAgent] - C:\Program Files\DigitalPersona\Bin\DpAgent.exe [699456 2008-03-13] (DigitalPersona, Inc.)
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [QlbCtrl.exe] - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [202032 2008-03-14] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [OnScreenDisplay] - C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [554288 2007-11-02] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [hpWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2007-11-20] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] - F:\Gmail Notifier\gnotify.exe [479232 2005-07-16] (Google Inc.)
HKLM\...\Run: [HP Health Check Scheduler] - C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-06-16] (Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1033512 2008-01-18] (Synaptics, Inc.)
HKLM\...\Run: [QPService] - C:\Program Files\HP\QuickPlay\QPService.exe [468264 2008-04-24] (CyberLink Corp.)
HKLM\...\Run: [NvMediaCenter] - RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [HP Software Update] - F:\HP\HP Software Update\hpwuSchd2.exe [49152 2006-12-10] (Hewlett-Packard Co.)
HKLM\...\Run: [SymLnch] - "C:\Program Files\Common Files\Symantec Shared\SymSetup\{C1C185CA-C531-49F5-A6FA-B838405A049D}_15_5_0_23\Support\SymLnch\SymLnch.exe" "C:\PROGRA~1\COMMON~1\SYMANT~1\SymSetup\{C1C18~1\Setup.exe" " /X"
HKLM\...\Run: [Grid Service] - C:\Program Files\GridService\peer.exe [4993024 2008-12-31] (FS2YOU)
HKLM\...\Run: [AdobeCS4ServiceManager] - C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Acrobat Speed Launcher] - F:\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe [37232 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [Acrobat Assistant 8.0] - F:\Adobe\Acrobat 9.0\Acrobat\acrotray.exe [640376 2008-06-11] (Adobe Systems Inc.)
HKLM\...\Run: [Adobe_ID0ENQBO] - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - F:\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [iTunesHelper] - F:\iTunes\iTunesHelper.exe [152544 2012-12-12] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [BrowserPlugInHelper] - C:\Program Files\iSkysoft\iTube Studio\BrowserPlugInHelper.exe
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [service control] - C:\Program Files\service control\servicectrl.exe
HKCU\...\Run: [¿ì²¥Ó°ÊÓºÐ] - F:\qvodhd\play.exe /start
HKCU\...\Run: [pinomate] - C:\Users\Eileen\AppData\Local\PeeringPortal\Pino\pinomate.exe
HKCU\...\Run: [Easy-Hide-IP] - F:\Easy-Hide-IP\easy-hide-ip.exe
HKCU\...\Run: [Google Update] - C:\Users\Eileen\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-06-17] (Google Inc.)
HKCU\...\Run: [Orbitum] - C:\Users\Eileen\AppData\Local\Orbitum\Application\chrome.exe
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [202240 2008-01-21] (Microsoft Corporation)
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_Plugin.exe -update plugin [829832 2013-10-10] (Adobe Systems Incorporated)
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
AppInit_DLLs: browse~1\23796~1.11\{16cdf~1\browse~1.dll [ ] ()
Lsa: [Notification Packages] scecli DPPWDFLT
Startup: C:\Users\Eileen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> G:\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
ProxyServer: socks=127.0.0.1:4021;
URLSearchHook: HKLM - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
URLSearchHook: HKCU - (No Name) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - No File
URLSearchHook: HKCU - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
BHO: IE7Pro BHO - {00011268-E188-40DF-A514-835FCD78B1BF} - F:\IEPro\IEPro.dll (IE7Pro.com)
BHO: Octh Class - {000123B4-9B42-4900-B3F7-F4B073EFC214} - F:\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - F:\Adobe\/Adobe Contribute CS4/contributeieplugin.dll (Adobe Systems Incorporated.)
BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll No File
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll No File
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
BHO: No Name - {889D2FEB-5411-4565-8998-1DD2C5261283} - No File
BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - F:\Orbitdownloader\GrabPro.dll ()
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - F:\Adobe\/Adobe Contribute CS4/contributeieplugin.dll (Adobe Systems Incorporated.)
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKLM - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
Toolbar: HKCU - Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - F:\Orbitdownloader\GrabPro.dll ()
Toolbar: HKCU - No Name - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - No File
Toolbar: HKCU - No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {BA14329E-9550-4989-B3F2-9732E92D17CC} - No File
Toolbar: HKCU - DVDVideoSoftTB Toolbar - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Program Files\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
Handler: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - E:\Player\__CDS2.dll No File
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 202.156.1.16 218.186.2.16 218.186.2.6
FireFox:
========
FF ProfilePath: C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default
FF user.js: detected! => C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\user.js
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com.sg/
FF NetworkProxy: "http", "198.7.242.41"
FF NetworkProxy: "http_port", 3127
FF NetworkProxy: "socks_remote_dns", true
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - F:\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.450 - F:\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.448 - F:\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Eileen\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Eileen\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\searchplugins\firefox-add-ons.xml
FF SearchPlugin: C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\searchplugins\live-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF Extension: Xmarks - C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\Extensions\foxmarks@kei(84).com
FF Extension: FoxyProxy Basic - C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\Extensions\foxyproxy-basic@eric.h(150).jung
FF Extension: FoxyProxy Basic - C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\Extensions\foxyproxy@eric.h(85).jung
FF Extension: FlashGot - C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}(86)
FF Extension: DownloadHelper - C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: flashgot - C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF Extension: No Name - C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\Extensions\{35379F86-8CCB-4724-AE33-4278DE266C70}
FF Extension: DVDVideoSoft Menu - C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: No Name - C:\Users\Eileen\AppData\Roaming\Mozilla\Firefox\Profiles\xkfmli2b.default\Extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKCU\...\Firefox\Extensions: [support@easy-hide-ip.com] - F:\Easy-Hide-IP\ff-extension
FF HKCU\...\Firefox\Extensions: [{b64982b1-d112-42b5-b1e4-d3867c4533f8}] - Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension
Chrome:
=======
CHR HomePage: hxxp://sg.yahoo.com/
CHR RestoreOnStartup: "hxxp://www.yahoo.com.sg/"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Eileen\AppData\Local\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Eileen\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Eileen\AppData\Local\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll No File
CHR Plugin: ( "name": "",) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\bodddioamolcibagionmmobehnbhiakf\1.0.5_0\chromeNPAPI.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Cyworld Music Player List Control) - C:\Program Files\Mozilla Firefox\plugins\npCMListControl.dll (SK Communications Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Office Genuine Advantage) - C:\Program Files\Mozilla Firefox\plugins\npOGAPlugin.dll (Microsoft Corporation)
CHR Plugin: (RealPlayer G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Eileen\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (iTunes Application Detector) - F:\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Video Downloader professional) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil\1.97.37_0
CHR Extension: (Flash Video Downloader) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpokmaicekdgkapighofggglfcilkefn\2.0.5_0
CHR Extension: (Chrome to Mobile) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\idknbmbdnapjicclomlijcgfpikmndhd\2_0
CHR Extension: (Speed Dial 2) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik\1.7.0_0
CHR Extension: (TouristEye Planner) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpjpejalhlnocbhggpnokneghfenoneg\9_0
CHR Extension: (Evernote Web) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol\1.0.7_0
CHR Extension: (Enter the name) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfjkgbjaikamkkojmakjclmkianficch\5.0.2_0
CHR Extension: (Quick Note) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\mijlebbfndhelmdpmllgcfadlkankhok\1.6.0_0
CHR Extension: (Google Wallet) - C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR HKLM\...\Chrome\Extension: [pgafcinpmmpklohkojmllohdhomoefph] - Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Eileen\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
S3 Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\aestsrv.exe [73728 2008-02-13] (Andrea Electronics Corporation)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-06-16] (Hewlett-Packard)
R3 hpqcxs08; F:\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-03-26] (Hewlett-Packard Co.)
R2 hpqddsvc; F:\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-03-26] (Hewlett-Packard Co.)
R2 HPSLPSVC; F:\HP\Digital Imaging\bin\HPSLPSVC32.DLL [585728 2006-12-10] (Hewlett-Packard Co.)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 QPCapSvc; C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe [292232 2008-04-24] ()
R2 QPSched; C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe [112008 2008-04-24] ()
R2 Recovery Service for Windows; C:\Windows\SMINST\BLService.exe [341328 2008-03-27] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\STacSV.exe [221239 2008-04-16] (IDT, Inc.)
S2 Browser Manager; Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [x]
==================== Drivers (Whitelisted) ====================
R3 AVerBDA6x; C:\Windows\System32\DRIVERS\AVerBDA716x.sys [934912 2008-04-22] (AVerMedia TECHNOLOGIES, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-04-05] (Avira Operations GmbH & Co. KG)
S3 HpqRemHid; C:\Windows\System32\DRIVERS\HpqRemHid.sys [7168 2007-07-12] (Hewlett-Packard Development Company, L.P.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
U1 eabfiltr;
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NOWMEMDF; \??\C:\Windows\system32\NOWMEMDF.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 tcphoc; \??\C:\Program Files\Thunder Network\Thunder\XLDoctor\7.2.10.3694_1\Program\tcphoc.sys [x]
S3 UIUSys; system32\DRIVERS\UIUSYS.SYS [x]
U5 UnlockerDriver5; F:\Unlocker\UnlockerDriver5.sys [4096 2010-03-09] ()
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-18 23:07 - 2013-11-18 23:07 - 00000000 ____D C:\FRST
2013-11-18 09:21 - 2013-11-18 21:21 - 104931504 _____ C:\Windows\system32\먺☟ᰴ
2013-11-17 09:57 - 2013-11-17 09:57 - 104637397 _____ C:\Windows\system32\▤ᰴ
2013-11-15 09:55 - 2013-11-15 09:55 - 00000000 ____D C:\Users\Eileen\AppData\Roaming\Malwarebytes
2013-11-15 09:55 - 2013-11-15 09:55 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-15 09:55 - 2013-11-15 09:55 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-11-15 09:55 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-15 08:59 - 2013-11-15 08:59 - 104278918 _____ C:\Windows\system32\ꃳ寔ᰴ£
2013-11-13 15:57 - 2013-11-13 15:57 - 104004073 _____ C:\Windows\system32\셄㵝ᰴ¦
2013-11-11 21:15 - 2013-11-11 21:15 - 103716811 _____ C:\Windows\system32\黁✛ᰴ¸
2013-11-11 13:33 - 2013-11-11 13:34 - 00000000 ____D C:\Users\Eileen\[00000001]
2013-11-10 21:21 - 2013-11-10 21:21 - 103467942 _____ C:\Windows\system32\ᩳ犻ᰴ
2013-11-10 18:18 - 2013-11-18 20:03 - 00012286 _____ C:\Users\Eileen\Desktop\MY_AUDIO_101113_1.p2g
2013-11-10 16:53 - 2013-11-10 16:53 - 00117552 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmhgfs.sys
2013-11-10 16:53 - 2013-11-10 16:53 - 00063920 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx_svga.sys
2013-11-10 16:53 - 2013-11-10 16:53 - 00054960 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmci.sys
2013-11-10 16:53 - 2013-11-10 16:53 - 00019504 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmdebug.sys
2013-11-10 16:53 - 2013-11-10 16:53 - 00011696 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmmouse.sys
2013-11-10 16:52 - 2013-11-10 16:53 - 00025008 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmaudio.sys
2013-11-10 16:51 - 2013-11-10 16:51 - 00173232 _____ (VMware, Inc.) C:\Windows\system32\vmx_fb.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00111856 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMW32.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\WsmProv.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00035888 _____ (VMware, Inc.) C:\Windows\system32\vmhgfs.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00016432 _____ (VMware, Inc.) C:\Windows\system32\vmx_mode.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00009104 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMonUIjpn.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00001536 _____ (Microsoft Corporation) C:\Windows\system32\WsmCl.dll
2013-11-10 16:50 - 2013-11-10 16:51 - 00009104 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMonUIdeu.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00423208 _____ (ThinPrint GmbH) C:\Windows\system32\TPSvc.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00284016 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMon.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\extmgr.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\LANGWRBK.DLL
2013-11-10 16:50 - 2013-11-10 16:50 - 00079208 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMonUI.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\ieencode.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00023960 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMondeu.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00009632 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMonjpn.dll
2013-11-10 14:26 - 2013-11-10 14:27 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe
2013-11-10 14:26 - 2013-11-10 14:26 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\SnippingTool.exe
2013-11-10 14:19 - 2013-11-10 14:19 - 00000000 ____D C:\ProgramData\Weskysoft
2013-11-10 14:18 - 2013-11-10 14:18 - 00000000 ____D C:\Users\Eileen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2013
2013-11-10 10:34 - 2013-11-10 10:34 - 00000000 ____D C:\Program Files\DLLSuite
2013-11-10 09:19 - 2013-11-10 09:19 - 103387443 _____ C:\Windows\system32\쨂䓅ᰴ³
2013-11-09 21:53 - 2013-11-09 21:53 - 103378319 _____ C:\Windows\system32\꽷캇ᰴ
2013-11-09 02:53 - 2013-11-09 03:01 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-11-08 16:43 - 2013-11-09 03:01 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-11-08 09:05 - 2013-11-08 09:05 - 103066299 _____ C:\Windows\system32\숬⌒ᰴ
2013-11-07 21:20 - 2013-11-07 21:20 - 102946670 _____ C:\Windows\system32\傁ᰴ
2013-11-02 09:33 - 2013-11-02 09:33 - 00000000 ____D C:\ProgramData\Oracle
2013-11-02 09:32 - 2013-11-02 09:33 - 00004734 _____ C:\Windows\system32\jupdate-1.7.0_45-b18.log
2013-11-02 09:24 - 2013-11-02 09:24 - 104569497 _____ C:\Windows\system32\馱ᰴ
2013-10-29 09:29 - 2013-10-29 09:29 - 103871884 _____ C:\Windows\system32\僋쫞ᰴ
2013-10-28 21:21 - 2013-10-28 21:21 - 103734365 _____ C:\Windows\system32\⍿歓ᰴ«
2013-10-23 15:17 - 2013-10-23 15:17 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2013-10-23 15:17 - 2013-09-13 02:00 - 00112640 _____ C:\Windows\system32\ff_vfw.dll
2013-10-23 15:17 - 2013-03-18 00:21 - 03649536 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll
2013-10-23 15:17 - 2012-07-21 18:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2013-10-23 15:17 - 2011-12-08 01:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll
2013-10-23 15:17 - 2011-06-24 22:44 - 00243200 _____ C:\Windows\system32\xvidvfw.dll
2013-10-23 15:17 - 2011-06-24 22:28 - 00650752 _____ C:\Windows\system32\xvidcore.dll
==================== One Month Modified Files and Folders =======
2013-11-18 23:09 - 2012-07-30 00:56 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-18 23:07 - 2013-11-18 23:07 - 00000000 ____D C:\FRST
2013-11-18 23:07 - 2009-09-11 17:06 - 00000424 ____H C:\Windows\Tasks\User_Feed_Synchronization-{66A95A41-F5D3-46ED-876C-E78DF0ECA6FD}.job
2013-11-18 22:54 - 2010-08-16 19:55 - 00000248 ____H C:\Windows\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
2013-11-18 22:39 - 2010-08-16 19:55 - 00000290 ____H C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
2013-11-18 22:14 - 2012-06-17 15:19 - 00000912 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1630263006-122845437-3975794864-1003UA.job
2013-11-18 21:21 - 2013-11-18 09:21 - 104931504 _____ C:\Windows\system32\먺☟ᰴ
2013-11-18 21:19 - 2008-08-15 20:55 - 01167995 _____ C:\Windows\WindowsUpdate.log
2013-11-18 21:17 - 2006-11-02 20:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-18 21:17 - 2006-11-02 20:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-18 20:14 - 2012-06-17 15:19 - 00000860 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1630263006-122845437-3975794864-1003Core.job
2013-11-18 20:03 - 2013-11-10 18:18 - 00012286 _____ C:\Users\Eileen\Desktop\MY_AUDIO_101113_1.p2g
2013-11-18 20:03 - 2010-03-25 18:06 - 00000000 ____D C:\Users\Eileen\Desktop\New Folder (2)
2013-11-18 19:44 - 2010-12-24 15:52 - 00000000 ____D C:\Users\Eileen\AppData\Roaming\uTorrent
2013-11-18 19:18 - 2008-11-10 03:45 - 00000000 ____D C:\Users\Eileen\AppData\Roaming\Orbit
2013-11-18 19:16 - 2008-08-15 21:31 - 00174022 _____ C:\ProgramData\nvModes.001
2013-11-18 13:39 - 2013-10-02 16:29 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-18 09:18 - 2008-08-15 21:37 - 00003437 _____ C:\Users\Public\Documents\hpqp.ini
2013-11-18 09:18 - 2008-08-15 21:31 - 00174022 _____ C:\ProgramData\nvModes.dat
2013-11-18 09:17 - 2006-11-02 21:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-18 02:20 - 2008-08-15 20:56 - 00001660 _____ C:\Windows\bthservsdp.dat
2013-11-18 02:20 - 2006-11-02 21:01 - 00032606 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-17 20:53 - 2006-11-02 18:33 - 00703388 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-17 10:00 - 2008-07-01 15:41 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-17 09:57 - 2013-11-17 09:57 - 104637397 _____ C:\Windows\system32\▤ᰴ
2013-11-15 19:15 - 2012-06-17 15:20 - 00002047 _____ C:\Users\Eileen\Desktop\Google Chrome.lnk
2013-11-15 09:55 - 2013-11-15 09:55 - 00000000 ____D C:\Users\Eileen\AppData\Roaming\Malwarebytes
2013-11-15 09:55 - 2013-11-15 09:55 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-15 09:55 - 2013-11-15 09:55 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-11-15 08:59 - 2013-11-15 08:59 - 104278918 _____ C:\Windows\system32\ꃳ寔ᰴ£
2013-11-13 15:57 - 2013-11-13 15:57 - 104004073 _____ C:\Windows\system32\셄㵝ᰴ¦
2013-11-12 09:08 - 2009-05-26 09:29 - 00000052 _____ C:\Windows\system32\DOErrors.log
2013-11-11 21:15 - 2013-11-11 21:15 - 103716811 _____ C:\Windows\system32\黁✛ᰴ¸
2013-11-11 13:34 - 2013-11-11 13:33 - 00000000 ____D C:\Users\Eileen\[00000001]
2013-11-11 13:22 - 2008-04-10 18:26 - 00000000 ____D C:\Windows\SMINST
2013-11-10 21:21 - 2013-11-10 21:21 - 103467942 _____ C:\Windows\system32\ᩳ犻ᰴ
2013-11-10 16:53 - 2013-11-10 16:53 - 00117552 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmhgfs.sys
2013-11-10 16:53 - 2013-11-10 16:53 - 00063920 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx_svga.sys
2013-11-10 16:53 - 2013-11-10 16:53 - 00054960 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmci.sys
2013-11-10 16:53 - 2013-11-10 16:53 - 00019504 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmdebug.sys
2013-11-10 16:53 - 2013-11-10 16:53 - 00011696 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmmouse.sys
2013-11-10 16:53 - 2013-11-10 16:52 - 00025008 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmaudio.sys
2013-11-10 16:51 - 2013-11-10 16:51 - 00173232 _____ (VMware, Inc.) C:\Windows\system32\vmx_fb.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00111856 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMW32.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\WsmProv.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00035888 _____ (VMware, Inc.) C:\Windows\system32\vmhgfs.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00016432 _____ (VMware, Inc.) C:\Windows\system32\vmx_mode.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00009104 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMonUIjpn.dll
2013-11-10 16:51 - 2013-11-10 16:51 - 00001536 _____ (Microsoft Corporation) C:\Windows\system32\WsmCl.dll
2013-11-10 16:51 - 2013-11-10 16:50 - 00009104 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMonUIdeu.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00423208 _____ (ThinPrint GmbH) C:\Windows\system32\TPSvc.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00284016 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMon.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\extmgr.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\LANGWRBK.DLL
2013-11-10 16:50 - 2013-11-10 16:50 - 00079208 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMonUI.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\ieencode.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00023960 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMondeu.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2013-11-10 16:50 - 2013-11-10 16:50 - 00009632 _____ (ThinPrint GmbH) C:\Windows\system32\TPVMMonjpn.dll
2013-11-10 14:27 - 2013-11-10 14:26 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe
2013-11-10 14:26 - 2013-11-10 14:26 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\SnippingTool.exe
2013-11-10 14:25 - 2006-11-02 19:18 - 00000000 ____D C:\Windows\Help
2013-11-10 14:19 - 2013-11-10 14:19 - 00000000 ____D C:\ProgramData\Weskysoft
2013-11-10 14:18 - 2013-11-10 14:18 - 00000000 ____D C:\Users\Eileen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2013
2013-11-10 10:34 - 2013-11-10 10:34 - 00000000 ____D C:\Program Files\DLLSuite
2013-11-10 09:19 - 2013-11-10 09:19 - 103387443 _____ C:\Windows\system32\쨂䓅ᰴ³
2013-11-09 21:53 - 2013-11-09 21:53 - 103378319 _____ C:\Windows\system32\꽷캇ᰴ
2013-11-09 09:49 - 2008-01-21 10:47 - 00361248 _____ C:\Windows\PFRO.log
2013-11-09 03:01 - 2013-11-09 02:53 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-11-09 03:01 - 2013-11-08 16:43 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-11-09 03:00 - 2010-10-21 18:02 - 00000000 ____D C:\Users\Eileen\AppData\Roaming\DVDVideoSoft
2013-11-09 01:52 - 2013-05-04 06:56 - 00000000 ____D C:\Users\Eileen\AppData\Roaming\Skype
2013-11-08 16:45 - 2013-05-04 06:55 - 00000000 ___RD C:\Program Files\Skype
2013-11-08 16:45 - 2013-05-04 06:55 - 00000000 ____D C:\ProgramData\Skype
2013-11-08 09:05 - 2013-11-08 09:05 - 103066299 _____ C:\Windows\system32\숬⌒ᰴ
2013-11-07 21:20 - 2013-11-07 21:20 - 102946670 _____ C:\Windows\system32\傁ᰴ
2013-11-07 01:06 - 2006-11-02 19:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-11-07 01:06 - 2006-11-02 18:22 - 56360960 _____ C:\Windows\system32\config\software_previous
2013-11-07 01:06 - 2006-11-02 18:22 - 36700160 _____ C:\Windows\system32\config\components_previous
2013-11-07 01:06 - 2006-11-02 18:22 - 25165824 _____ C:\Windows\system32\config\system_previous
2013-11-07 01:06 - 2006-11-02 18:22 - 00524288 _____ C:\Windows\system32\config\default_previous
2013-11-07 01:06 - 2006-11-02 18:22 - 00262144 _____ C:\Windows\system32\config\security_previous
2013-11-07 01:06 - 2006-11-02 18:22 - 00262144 _____ C:\Windows\system32\config\sam_previous
2013-11-07 01:02 - 2012-06-25 19:54 - 00000000 ____D C:\Users\Eileen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2013-11-07 01:02 - 2009-03-31 17:10 - 00000000 ____D C:\ProgramData\FLEXnet
2013-11-07 01:02 - 2008-11-08 14:56 - 00000000 ____D C:\Users\Eileen\AppData\Local\QuickPlay
2013-11-07 01:02 - 2008-07-01 16:49 - 00000000 ____D C:\Program Files\Common Files\Java
2013-11-07 01:02 - 2006-11-02 19:18 - 00000000 ____D C:\Windows\system32\spool
2013-11-07 01:02 - 2006-11-02 19:18 - 00000000 ____D C:\Windows\registration
2013-11-02 19:15 - 2013-01-10 00:19 - 00000000 ____D C:\Windows\Minidump
2013-11-02 09:33 - 2013-11-02 09:33 - 00000000 ____D C:\ProgramData\Oracle
2013-11-02 09:33 - 2013-11-02 09:32 - 00004734 _____ C:\Windows\system32\jupdate-1.7.0_45-b18.log
2013-11-02 09:33 - 2008-07-01 16:49 - 00000000 ____D C:\Program Files\Java
2013-11-02 09:24 - 2013-11-02 09:24 - 104569497 _____ C:\Windows\system32\馱ᰴ
2013-10-29 09:29 - 2013-10-29 09:29 - 103871884 _____ C:\Windows\system32\僋쫞ᰴ
2013-10-28 21:21 - 2013-10-28 21:21 - 103734365 _____ C:\Windows\system32\⍿歓ᰴ«
2013-10-23 15:17 - 2013-10-23 15:17 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2013-10-19 16:47 - 2008-11-10 02:30 - 00036864 _____ C:\Users\Eileen\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
Files to move or delete:
====================
C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
C:\Windows\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
Some content of TEMP:
====================
C:\Users\Eileen\AppData\Local\Temp\appshat-distribution.exe
C:\Users\Eileen\AppData\Local\Temp\BI_RunOnce.exe
C:\Users\Eileen\AppData\Local\Temp\DiVapton_sm.exe
C:\Users\Eileen\AppData\Local\Temp\fmp-2.0.7-win32.exe
C:\Users\Eileen\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Eileen\AppData\Local\Temp\MoviesToolbarSetup_Somoto_9_10_2013.exe
C:\Users\Eileen\AppData\Local\Temp\ose00000.exe
C:\Users\Eileen\AppData\Local\Temp\ose00001.exe
C:\Users\Eileen\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Eileen\AppData\Local\Temp\temp~.DLL
C:\Users\Eileen\AppData\Local\Temp\temp~.EXE
C:\Users\Eileen\AppData\Local\Temp\UpdateCheckerSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-18 21:28
==================== End Of Log ============================
Here is the Addition.txt :
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 17-11-2013 02
Ran by Eileen at 2013-11-18 23:12:09
Running from J:\
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.1.2)
115ä¯ÀÀÆ÷ 1.2 (Version: 1.2)
32 Bit HP CIO Components Installer (Version: 1.0.0)
8700 (Version: 82.0.252.000)
8700_Help (Version: 82.0.252.000)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.2.443)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.0.0)
Adobe AIR (Version: 3.8.0.1430)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Asset Services CS4 (Version: 4)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Recommended Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Extra Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Contribute CS4 (Version: 5.0)
Adobe Creative Suite 4 Web Premium (Version: 4.0)
Adobe CS4 American English Speech Analysis Models (Version: 1)
Adobe CS4 French Speech Analysis Models (Version: 1)
Adobe CS4 German Speech Analysis Models (Version: 1)
Adobe CS4 International English Speech Analysis Models (Version: 1)
Adobe CS4 Italian Speech Analysis Models (Version: 1)
Adobe CS4 Japanese Speech Analysis Models (Version: 1)
Adobe CS4 Korean Speech Analysis Models (Version: 1)
Adobe CS4 Spanish Speech Analysis Models (Version: 1)
Adobe CSI CS4 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS4 (Version: 10.0)
Adobe Drive CS4 (Version: 1)
Adobe Dynamiclink Support (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Fireworks CS4 (Version: 10.0)
Adobe Flash CS4 (Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0)
Adobe Flash CS4 STI-en (Version: 10.0)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Fonts All (Version: 2.0)
Adobe Illustrator CS4 (Version: 14.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Encoder CS4 Importer (Version: 1.0)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Photoshop Elements 2.0 (Version: 2.0)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Shockwave Player (Version: 10.2.0.023)
Adobe Soundbooth CS4 (Version: 2)
Adobe Soundbooth CS4 Codecs (Version: 2)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe Version Cue CS4 Server (Version: 4.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Aegisub 2.1.7 (Version: 2.1.7)
Agere Systems HDA Modem
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
AVerMedia MCE Encoder x86 3.2.1.84 (Version: 3.2.1.84)
Avira Free Antivirus (Version: 13.0.0.4052)
Bonjour (Version: 3.0.0.10)
Browser Manager
BSIZE_CDB_ProductContext (Version: 82.0.252.000)
BSIZE_CDB_Software (Version: 82.0.252.000)
BufferChm (Version: 82.0.173.000)
Canon DIGITAL CAMERA Solution Disk Software Guide (Version: 1.3.0.1)
Canon MOV Decoder (Version: 1.7.0.6)
Canon MOV Encoder (Version: 1.5.0.3)
Canon MovieEdit Task for ZoomBrowser EX (Version: 3.6.0.5)
Canon PowerShot S95 Camera User Guide (Version: 1.0.0.1)
Canon Utilities CameraWindow DC 8 (Version: 8.3.0.6)
Canon Utilities CameraWindow Launcher (Version: 7.5.0.2)
Canon Utilities Digital Photo Professional 3.9 (Version: 3.9.0.3)
Canon Utilities Movie Uploader for YouTube (Version: 1.1.0.4)
Canon Utilities MyCamera (Version: 7.4.0.2)
Canon Utilities PhotoStitch (Version: 3.1.22.46)
Canon Utilities ZoomBrowser EX (Version: 6.6.0.23)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.4.0.4)
CCleaner (Version: 4.05)
Connect (Version: 1.0.0.1)
ConvertHelper 2.2
CustomerResearchQFolder (Version: 1.00.0000)
CyberLink DVD Suite (Version: 5.5.1519)
CyberLink YouCam (Version: 2.0.1616)
Destinations (Version: 82.0.173.000)
DeviceManagementQFolder (Version: 1.00.0000)
DigitalPersona Personal 3.0.1 (Version: 3.0.1)
DLL Suite 2013
DVDVideoSoftTB Toolbar (Version: )
eMule
eMule VeryCD
eMule VeryCD°æ
eSupportQFolder (Version: 1.00.0000)
Evernote v. 4.5.7 (Version: 4.5.7.7146)
Foxreal YouTube FLV Downloader version: 1.0.1.1
Free FLV Converter V 6.93.0 (Version: 6.93.0.0)
Free Sound Recorder 2010 v9.2.1
Free Studio version 2013 (Version: 6.2.0.1029)
GOGOBOX (Version: 2.0.5.84)
Google Chrome (HKCU Version: 31.0.1650.57)
Google Gmail Notifier
Hewlett-Packard Active Check for Health Check (Version: 1.1.15.2)
Hewlett-Packard Asset Agent for Health Check (Version: 2.0.64.0)
HP Active Support Library (Version: 3.1.6.1)
HP Customer Experience Enhancements (Version: 5.7.0.2630)
HP Customer Participation Program 8.0 (Version: 8.0)
HP Doc Viewer (Version: 1.03.0001)
HP Easy Setup - Frontend (Version: 5.7.0.2630)
HP Help and Support (Version: 2.0.10.0)
HP Imaging Device Functions 8.0 (Version: 8.0)
HP Integrated Module with Bluetooth wireless technology 6.0.1.6200 (Version: 6.0.1.6200)
HP MiniCard Hybrid TV 1.3.0.48 (Version: 1.3.0.48)
HP MULTIPLE MODEM INSTALLER for VISTA (Version: 1.0.0.30)
HP Photosmart Printer Driver Software 8.0.B (Version: 8.0)
HP Product Assistant (Version: 100.000.001.000)
HP Quick Launch Buttons 6.40 D1 (Version: 6.40 D1)
HP QuickPlay 3.7
HP QuickTouch 1.00 D2 (Version: 1.0.9)
HP Solution Center 8.0 (Version: 8.0)
HP Total Care Advisor (Version: 2.1.3359.2635)
HP Update (Version: 4.000.010.008)
HP User Guides 0102 (Version: 1.01.0000)
HP Wireless Assistant (Version: 3.00 I2)
HPNetworkAssistant (Version: 1.1.70)
HPProductAssistant (Version: 82.0.173.000)
HPSSupply (Version: 2.1.3.0000)
IDT Audio (Version: 1.0.5893.0)
IE7Pro (Version: 2.4.8)
Intel® Matrix Storage Manager
iTunes (Version: 11.0.1.12)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Java 6 Update 31 (Version: 6.0.310)
Java 6 Update 5 (Version: 1.6.0.50)
Java 6 Update 7 (Version: 1.6.0.70)
JavaFX 2.1.1 (Version: 2.1.1)
JMicron JMB38X Flash Media Controller (Version: 1.00.10.04)
Junk Mail filter update (Version: 14.0.8117.416)
K-Lite Mega Codec Pack 10.0.5 (Version: 10.0.5)
kuler (Version: 2.0)
LabelPrint (Version: 2.20.2719)
LightScribe System Software 1.12.33.2 (Version: 1.12.33.2)
LiveUpdate (Symantec Corporation) (Version: 3.4.1.232)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MarketResearch (Version: 82.0.174.000)
Maxthon Browser (remove only)
MediaRing Talk (Version: 2.5.1.4)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.3 (Version: 2.0.2313.0)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (Version: 12.0.4518.1014)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Native Client (Version: 9.00.3042.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.3042.00)
Microsoft SQL Server VSS Writer (Version: 9.00.3042.00)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 24.0 (x86 en-US) (Version: 24.0)
Mozilla Maintenance Service (Version: 24.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee autoProducer 6.1 (Version: 6.10.050)
My HP Games (Version: 1.0.0.43)
NetDeviceManager (Version: 82.0.173.000)
NVIDIA Drivers
Orbit Downloader
PDF reDirect (remove only) (Version: v2.2.8)
PDF Settings CS4 (Version: 9.0)
Photoshop Camera Raw (Version: 5.0)
Pinnacle VideoSpin (Version: 2.0.0.669)
Pixel Bender Toolkit (Version: 1.0)
Power2Go (Version: 5.6.3919)
PowerDirector (Version: 6.5.2719)
Prism Video Converter
ProtectSmart Hard Drive Protection (Version: 3.10 A7)
QuickPlay SlingPlayer 0.4.6 (Version: 0.4.6)
QuickTime (Version: 7.72.80.56)
RaySource 2.1.10.8366 (Version: 2.1.10.8366)
Real Alternative 2.0.2 (Version: 2.0.2)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Recuva
RichFLV (Version: 0.0.0)
RichFLV (Version: 4.2)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.5.0)
screen Screen Saver
service control
Skype™ 6.10 (Version: 6.10.104)
SolutionCenter (Version: 82.0.188.000)
Status (Version: 82.0.173.000)
Subtitle Edit 3.2.8 (Version: 3.2.8.1220)
Subtitle Workshop 2.51
Suite Shared Configuration CS4 (Version: 1.0)
Switch Sound File Converter
Synaptics Pointing Device Driver (Version: 10.2.4.0)
Tipard DVD to MP3 Converter
Toolbox (Version: 82.0.173.000)
TrayApp (Version: 82.0.188.000)
TVAnts ActiveX Control 1.0
Uninstall 1.0.0.1
UnloadSupport (Version: 1.00.0000)
Unlocker 1.8.9 (Version: 1.8.9)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Validity Sensors software (Version: 2.7.34)
VideoPad Video Editor
VobSub v2.23 (Remove Only)
WavePad Sound Editor (Version: 5.48)
WebReg (Version: 82.0.173.000)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.6)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR archiver
==================== Restore Points =========================
10-11-2013 04:12:46 Scheduled Checkpoint
11-11-2013 02:24:45 Scheduled Checkpoint
12-11-2013 01:03:50 Scheduled Checkpoint
12-11-2013 16:00:08 Scheduled Checkpoint
13-11-2013 04:03:54 Scheduled Checkpoint
14-11-2013 04:01:42 Scheduled Checkpoint
16-11-2013 02:58:52 Scheduled Checkpoint
17-11-2013 01:59:42 Windows Update
18-11-2013 08:26:52 Scheduled Checkpoint
==================== Hosts content: ==========================
2006-11-02 18:23 - 2009-08-16 13:55 - 00000830 ____A C:\Windows\system32\Drivers\etc\hosts
221.143.22.124 www.dcinside.com
221.143.22.124 dcinside.com
121.125.60.241 gall.dcinside.com
==================== Scheduled Tasks (whitelisted) =============
Task: {075BF2ED-8755-44F5-8380-B9F001DFD426} - System32\Tasks\NCH Software\switchShakeIcon => C:\Program Files\NCH Software\Switch\switch.exe [2011-10-06] (NCH Software)
Task: {0809A579-883D-4F92-8EB1-6C4473942CF0} - System32\Tasks\HP Health Check => C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-06-16] (Hewlett-Packard)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {1FAB568B-9F60-48E5-BEEB-C9A911D932A1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1630263006-122845437-3975794864-1003Core => C:\Users\Eileen\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-17] (Google Inc.)
Task: {2D23404C-C09A-403F-83F7-E426F2BD4CD3} - System32\Tasks\{22116563-108C-42c0-A7CE-60161B75E508} => C:\Users\Eileen\AppData\Local\Temp\Ahl.exe
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {43585A6B-C154-4222-9DEA-0C85A00625F9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-22] (Piriform Ltd)
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\System32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {736ED2BD-9F55-4B27-BE42-672E24AE79CD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {780B5712-24E6-4994-8186-EBB636D4F1CC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1630263006-122845437-3975794864-1003UA => C:\Users\Eileen\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-17] (Google Inc.)
Task: {ACD5B504-B7E5-4FDC-BADF-704663491342} - System32\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C} => C:\Windows\Azimyb.exe
Task: {B0E300C5-9110-4459-9320-0F961767EE9A} - System32\Tasks\NCH Software\videopadShakeIcon => C:\Program Files\NCH Software\VideoPad\videopad.exe [2013-07-20] (NCH Software)
Task: {C24C66EC-1BF0-4559-89E1-9EEA5C9F3FEA} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Eileen
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\System32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {F32E33C7-CFBB-477C-B599-3D74AFBC7030} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-10] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1630263006-122845437-3975794864-1003Core.job => C:\Users\Eileen\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1630263006-122845437-3975794864-1003UA.job => C:\Users\Eileen\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{66A95A41-F5D3-46ED-876C-E78DF0ECA6FD}.job => C:\Windows\system32\msfeedssync.exe
Task: C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job => C:\Users\Eileen\AppData\Local\Temp\Ahl.exe
Task: C:\Windows\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job => C:\Windows\Azimyb.exe
==================== Loaded Modules (whitelisted) =============
2008-07-01 14:57 - 2008-04-24 14:51 - 00120200 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLSchMgr.dll
2008-07-01 14:57 - 2008-04-24 14:51 - 00038184 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvcps.dll
2008-07-01 14:57 - 2008-04-24 14:51 - 00259472 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapEngine.dll
2008-07-01 14:57 - 2008-04-24 14:51 - 00345384 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLTinyDB.dll
2012-05-30 20:06 - 2012-05-30 20:06 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2012-05-30 20:06 - 2012-05-30 20:06 - 01242512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-15 19:15 - 2013-11-14 19:29 - 04055504 _____ () C:\Users\Eileen\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll
2013-11-15 19:15 - 2013-11-14 19:29 - 00399312 _____ () C:\Users\Eileen\AppData\Local\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll
2013-11-15 19:15 - 2013-11-14 19:28 - 01619408 _____ () C:\Users\Eileen\AppData\Local\Google\Chrome\Application\31.0.1650.57\ffmpegsumo.dll
2012-06-22 15:43 - 2012-06-22 15:43 - 00137216 _____ () C:\Users\Eileen\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfjkgbjaikamkkojmakjclmkianficch\5.0.2_0\plugin\download_helper.dll
2013-11-15 19:15 - 2013-11-14 19:28 - 00702416 _____ () C:\Users\Eileen\AppData\Local\Google\Chrome\Application\31.0.1650.57\libglesv2.dll
2013-11-15 19:15 - 2013-11-14 19:28 - 00099792 _____ () C:\Users\Eileen\AppData\Local\Google\Chrome\Application\31.0.1650.57\libegl.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:206E2596
AlternateDataStreams: C:\ProgramData\TEMP:63238B95
AlternateDataStreams: C:\ProgramData\TEMP:A66A990E
AlternateDataStreams: C:\ProgramData\TEMP:AD022376
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== Faulty Device Manager Devices =============
Name: Photosmart 8700 series
Description: Photosmart 8700 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/18/2013 05:04:19 PM) (Source: Application Hang) (User: )
Description: The program wavepad.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: e20
Start Time: 01cee43d22e07492
Termination Time: 10
Error: (11/18/2013 09:21:11 AM) (Source: Application Error) (User: )
Description: Faulting application avnotify.exe, version 13.6.20.2100, time stamp 0x51e6b921, faulting module ntdll.dll, version 6.0.6001.18538, time stamp 0x4cb733dc, exception code 0xc0000374, fault offset 0x000b0dbc,
process id 0x1560, application start time 0xavnotify.exe0.
Error: (11/18/2013 09:20:32 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description:
http://www.download....uthrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (11/18/2013 09:19:21 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/17/2013 03:17:43 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description:
http://www.download....uthrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (11/17/2013 03:15:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/17/2013 09:56:38 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description:
http://www.download....uthrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (11/17/2013 09:54:54 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/16/2013 10:18:01 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description:
http://www.download....uthrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (11/16/2013 10:16:50 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (11/29/2012 02:50:22 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.105 for the Network Card with network address 0016EABD2BCE has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
Error: (11/29/2012 02:31:17 PM) (Source: Service Control Manager) (User: )
Description: SQL Server VSS Writer1
Error: (11/29/2012 02:31:03 PM) (Source: Service Control Manager) (User: )
Description: QuickPlay Task Scheduler (QTS)
Error: (11/29/2012 02:30:59 PM) (Source: Service Control Manager) (User: )
Description: QuickPlay Background Capture Service (QBCS)
Error: (11/29/2012 02:30:28 PM) (Source: Service Control Manager) (User: )
Description: Browser Manager%%2
Error: (11/29/2012 02:30:28 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (11/29/2012 02:28:58 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos
Error: (11/28/2012 10:28:09 PM) (Source: VDS Dynamic Provider) (User: )
Description: The provider failed while storing notifications from the driver. The Virtual Disk Service should be restarted. hr=80042505
Error: (11/28/2012 09:47:49 PM) (Source: VDS Dynamic Provider) (User: )
Description: The provider failed while storing notifications from the driver. The Virtual Disk Service should be restarted. hr=80042505
Error: (11/28/2012 09:46:46 PM) (Source: VDS Dynamic Provider) (User: )
Description: The provider failed while storing notifications from the driver. The Virtual Disk Service should be restarted. hr=80042505
Microsoft Office Sessions:
=========================
Error: (11/09/2012 02:30:24 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 14 seconds with 0 seconds of active time. This session ended with a crash.
Error: (11/09/2012 02:29:43 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 29 seconds with 0 seconds of active time. This session ended with a crash.
Error: (11/09/2012 02:28:26 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 68 seconds with 0 seconds of active time. This session ended with a crash.
Error: (11/09/2012 02:27:12 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 174 seconds with 60 seconds of active time. This session ended with a crash.
Error: (11/09/2012 02:23:54 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash.
Error: (11/09/2012 02:23:33 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 494 seconds with 60 seconds of active time. This session ended with a crash.
Error: (05/24/2011 09:50:38 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 270 seconds with 180 seconds of active time. This session ended with a crash.
Error: (05/09/2011 00:34:55 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 69 seconds with 0 seconds of active time. This session ended with a crash.
Error: (05/09/2011 00:33:35 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 93 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/04/2011 10:20:04 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 343 seconds with 240 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2013-11-18 23:11:38.914
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-11-18 23:11:38.777
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-11-18 23:11:38.531
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-11-18 23:11:38.392
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-11-18 23:11:38.230
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-11-18 23:11:38.092
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-11-18 23:11:37.955
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-11-18 23:11:37.809
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-11-15 14:12:58.729
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-11-15 14:12:58.476
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 58%
Total physical RAM: 3068.27 MB
Available physical RAM: 1269.65 MB
Total Pagefile: 6341.54 MB
Available Pagefile: 4186.01 MB
Total Virtual: 2047.88 MB
Available Virtual: 1885.18 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:147.25 GB) (Free:30.68 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (HP_RECOVERY) (Fixed) (Total:9.58 GB) (Free:1.7 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (Applications) (Fixed) (Total:19.53 GB) (Free:9.21 GB) NTFS
Drive g: (Microsoft Office) (Fixed) (Total:2.93 GB) (Free:2.11 GB) NTFS
Drive h: (Music) (Fixed) (Total:9.77 GB) (Free:1.95 GB) NTFS
Drive i: (Photograph) (Fixed) (Total:9.77 GB) (Free:2.44 GB) NTFS
Drive j: (Msic) (Fixed) (Total:34.06 GB) (Free:10.8 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 233 GB) (Disk ID: 243F243F)
Partition 1: (Active) - (Size=147 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=57 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=10 GB) - (Type=07 NTFS)
==================== End Of Log ============================
I've tried to scan with Gmer but it half way thru the computer freezed and I had to restart it. I tried to scan for the 2nd time and it experience Blue Screen of Death and the computer restarts automatically. Do I still try to scan it again?
Thanks you so much,
Yours truly Eileen