Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Spybot issues.


  • Please log in to reply
12 replies to this topic

#1 MrOrangeman

MrOrangeman

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 03 June 2013 - 11:06 PM

Just ran my Spybot software and picked up a couple or Adware stuff that Spybot won't allow me to remove. Run Malbytes, SuperAntiSpyware, & TDSS killer to try to remove it, but Spybot still detects it.  Anything you can help me with?


Edited by hamluis, 10 June 2013 - 03:37 PM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:16 AM

Posted 03 June 2013 - 11:29 PM

Hello and Welcome to the forum -

Could you list these "problems", or post a Screenshot of a finished Spybot scan.

This program is not greatly used these days due to the lack of correct detections compared to others.

 

Malwarebytes Anti-Malware Free and SUPERAntiSpyware Free are used more often as general scanners -

 

AdwCleaner by Xplode or Junkware Removal Tool are generally used for adware and toolbar removal.

Please ask if you would like directions on these free tools

 

Thank You -


Edited by noknojon, 03 June 2013 - 11:34 PM.


#3 MrOrangeman

MrOrangeman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 03 June 2013 - 11:49 PM

List of programs I use generally: AVG & AVG rootkit, TDSS killer, Malwarebytes, SuperAntiSpyware, & Spybot. If you think that adwcleaner or junkware removal tool would do the trick, then by all means direct away. Thank you.

 

Results from Spybot:

Babylon.Toolbar: [SBI $DEB52F26] Program directory (Directory, fixing failed)  C:\ProgramData\Babylon\
Babylon.Toolbar: [SBI $D1EDD9CA] Settings (Registry key, fixing failed)  HKEY_LOCAL_MACHINE\SOFTWARE\Babylon
CouponBar: [SBI $7A5ACBCB] Interface (Registry key, fixing failed)  HKEY_CLASSES_ROOT\Interface\{6E780F0B-BCD6-40CB-B2DB-7AF47AB4D4A4}
CouponBar: [SBI $7B15781E] Interface (Registry key, fixing failed)  HKEY_CLASSES_ROOT\Interface\{A138BE8B-F051-4802-9A3F-A750A6D862D4}
Babylon.Toolbar: [SBI $0DBCD782]  Data (File, nothing done)  C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml  Properties.size=6511  Properties.md5=52A86DE1B8A2D6DA5874690EBE1EFF25  Properties.filedate=1366475949  Properties.filedatetext=2013-04-20 12:39:09
Yontoo.Pagerage: [SBI $7EA79EE0] Settings (Registry key, fixing failed)  HKEY_CLASSES_ROOT\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}
Install.DomaIQ: [SBI $E29775C7] Program directory (Directory, fixing failed)  C:\Program Files\DomaIQ Uninstaller\
Install.DomaIQ: [SBI $EAE2D7A3]  Executable (File, nothing done)  C:\Program Files\DomaIQ Uninstaller\DomaIQUninstall.exe  Properties.size=42496  Properties.md5=CA0EAEAFAD9C303A8B20FA67FC0E46CB  Properties.filedate=1367695524  Properties.filedatetext=2013-05-04 15:25:24
SweetIM: [SBI $8D9D81BD] Settings (Registry key, fixing failed)  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
SweetIM: [SBI $3C0145EF] Settings (Registry value, fixing failed)  HKEY_LOCAL_MACHINE\SOFTWARE\SweetIM\simapp_id
SweetIM: [SBI $CA2339F3] Settings (Registry key, fixing failed)  HKEY_LOCAL_MACHINE\SOFTWARE\SweetIM
DoubleClick: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
MediaPlex: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
Zedo: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
Zedo: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
MediaPlex: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
MediaPlex: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
MediaPlex: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
FastClick: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
Zedo: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
Zedo: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
Zedo: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
Zedo: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 
Zedo: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 

Zedo: Tracking cookie (Chrome: Chrome) (Cookie, fixed) 

--- Spybot - Search & Destroy version: 1.6.2  (build: 20090126) ---
2009-01-26 blindman.exe (1.0.0.8) 2009-01-26 SDFiles.exe (1.6.1.7) 2009-01-26 SDMain.exe (1.0.0.6) 2009-01-26 SDShred.exe (1.0.2.5) 2009-01-26 SDUpdate.exe (1.6.0.12) 2009-01-26 SDWinSec.exe (1.0.0.12) 2009-01-26 SpybotSD.exe (1.6.2.46) 2009-03-05 TeaTimer.exe (1.6.6.32) 2012-05-09 unins000.exe (51.49.0.0) 2009-01-26 Update.exe (1.6.0.7) 2009-11-04 advcheck.dll (1.6.5.20) 2007-04-02 aports.dll (2.1.0.0) 2008-06-14 DelZip179.dll (1.79.11.1) 2009-01-26 SDHelper.dll (1.6.2.14) 2008-06-19 sqlite3.dll 2009-01-26 Tools.dll (2.1.6.10) 2009-01-16 UninsSrv.dll (1.0.0.0) 2013-04-11 Includes\Adware.sbi (*) 2013-05-28 Includes\AdwareC.sbi (*) 2010-08-13 Includes\Cookies.sbi (*) 2012-11-14 Includes\Dialer.sbi (*) 2013-04-11 Includes\DialerC.sbi (*) 2013-04-11 Includes\HeavyDuty.sbi (*) 2012-11-14 Includes\Hijackers.sbi (*) 2013-04-11 Includes\HijackersC.sbi (*) 2012-11-14 Includes\iPhone.sbi (*) 2012-11-14 Includes\Keyloggers.sbi (*) 2013-04-11 Includes\KeyloggersC.sbi (*) 2004-11-29 Includes\LSP.sbi (*) 2013-05-29 Includes\Malware.sbi (*) 2013-05-29 Includes\MalwareC.sbi (*) 2012-11-14 Includes\PUPS.sbi (*) 2013-05-22 Includes\PUPSC.sbi (*) 2010-01-25 Includes\Revision.sbi (*) 2012-11-14 Includes\Security.sbi (*) 2013-04-11 Includes\SecurityC.sbi (*) 2008-06-03 Includes\Spybots.sbi (*) 2008-06-03 Includes\SpybotsC.sbi (*) 2013-05-22 Includes\Spyware.sbi (*) 2013-05-08 Includes\SpywareC.sbi (*) 2012-11-19 Includes\Tracks.uti 2013-01-16 Includes\Trojans.sbi (*) 2013-05-13 Includes\TrojansC-02.sbi (*) 2013-05-29 Includes\TrojansC-03.sbi (*) 2013-05-16 Includes\TrojansC-04.sbi (*) 2013-05-08 Includes\TrojansC-05.sbi (*) 2013-04-19 Includes\TrojansC.sbi (*) 2008-03-04 Plugins\Chai.dll 2008-03-05 Plugins\Fennel.dll 2008-02-26 Plugins\Mate.dll 2007-12-24 Plugins\TCPIPAddress.dll

 



#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:16 AM

Posted 04 June 2013 - 06:42 AM

Hi -

If you have any of these programs installed, be sure to Check for Updates prior to any scan -

 

Please download Malwarebytes AntiMalware to desktop.

Check for updates if not done during download, then run a Quick Scan only.
You can check "Remove" for any infections found.

The program may ask you to Reboot if several infections are found.
Please Copy / Paste the Report log back here when completed.

 

 

Next: Please download SUPERAntiSpyware to desktop.

Check for latest updates if not done during the download. Run a Quick Scan only
You can check "Remove" for any infections found.

The program may ask you to Reboot if several infections are found.
 Copy / Paste the Report log back here when finished -

 

 

Next: Please download AdwCleaner to desktop.
Temporary disable your Antivirus while the program runs
Close all other running programs including your browser, as your computer will be rebooted after the scan.
Double click on the AdwCleaner icon to run the program
Vista or Win7 users Right click and select Run as Administrator
Select DELETE from the menu
Confirm with OK when asked.
A logfile will be produced after the reboot, please post it back here -

 

 

Next : Download Junkware Removal Tool
Again disable your Antivirus while the program runs, just to avoid conflicts
Double click on the new icon to start the program
Vista or Win7 users Right click and select Run as Administrator
Follow the directions in the Black box and the program will run
Your computer will not be rebooted, but a logfile will be produced
Please post it back here -

 

 

Make sure you enable your Antivirus when completed

 

 

Finally: Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
NOTE - TFC will close all running programs, and it may ask you to restart computer.

No log is produced after the clean-up -

 

These programs should remove any of those items listed by Spybot S&D.

 

Thank You -



#5 MrOrangeman

MrOrangeman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 10 June 2013 - 01:11 PM

Cleared up everything except one thing that Spybot still detects, but can't remove.....Some kind of "CouponBar" adware.



#6 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:16 AM

Posted 10 June 2013 - 05:51 PM

Hi -

 

Can you post your Operating System (XP, Vista, Win7) and your main internet browser used (I.E., F/fox, Chrome) -

 

Thank You -



#7 MrOrangeman

MrOrangeman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 11 June 2013 - 07:28 PM

Sure.

 

Internet Explorer 10

Windows 7



#8 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:16 AM

Posted 11 June 2013 - 08:24 PM

Full Name: Coupon Bar - Also Known as: CouponBar - Type: Adware
Category Description: Program that delivers advertisements on your PC.
Uninstall Coupon Bar < < Shows a few varieties of the Tool Bar.

 

Internet Explorer: Start with these direction > >
1.Click the Start menu and select Control Panel
2.Open "Add/Remove Programs" in XP, or "Programs and Features" in Vista & Windows 7
3.Find the "CouponBar" or the "Coupons.com Toolbar" entry and click the "Change/Remove" button in XP, or the "Uninstall" button in Vista & Windows 7 to remove the toolbar

 

 

If there is still a problem, then an ESET online scan usually removes this and any similar installed items

 

1.Hold down Control (CTRL) and click on This Link to open ESET OnlineScan in a new window.
2.Click the ESET Online Scanner button.
3.For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

  • .Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • .Double click on the ESET icon on your desktop.

4.Check "YES, I accept the Terms of Use."
5.Click the Start button.
6.Accept any security warnings from your browser.
7.Under scan settings, check "Scan Archives" and "Remove found threats"
8.Click Advanced settings and select the following:

Scan potentially unwanted applications
Scan for potentially unsafe applications
Enable Anti-Stealth technology

9.ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
10.When the scan completes, click List Threats
11.Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
12.Click the Back button.
13.Click the Finish button.
NOTE:Sometimes if ESET finds no infections it will not create a log.

 

Thanks -



#9 MrOrangeman

MrOrangeman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 13 June 2013 - 11:13 PM

ESET results:
 
C:\Users\All Users\Microsoft\Windows\DRM\8018.tmp Win64/Olmarik.AD trojan
C:\Users\All Users\Microsoft\Windows\DRM\8028.tmp Win64/Olmarik.AD trojan
C:\Users\All Users\Spybot - Search & Destroy\Recovery\InstallDomaIQ.zip Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\InstallDomaIQ1.zip Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\InstallDomaIQ2.zip Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\InstallDomaIQ3.zip Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\InstallDomaIQ4.zip Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\InstallDomaIQ5.zip Win32/Bagle.gen.zip worm
C:\$Recycle.Bin\S-1-5-21-2938423207-1445047761-1365816762-1000\$RN6W994.1\Farmville2CheatToolv1.1.exe multiple threats cleaned by deleting - quarantined
C:\Program Files (x86)\Cheat Engine 6.2\cheatengine-i386.exe a variant of Win32/HackTool.CheatEngine.AB application cleaned by deleting - quarantined
C:\Program Files (x86)\Cheat Engine 6.2\standalonephase1.dat a variant of Win32/HackTool.CheatEngine.AF application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\8018.tmp Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\8028.tmp Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\InstallDomaIQ.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\InstallDomaIQ1.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\InstallDomaIQ2.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\InstallDomaIQ3.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\InstallDomaIQ4.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\InstallDomaIQ5.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\Users\George\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G9MYJN6D\cbsidlm-tr1_13-RegSeeker-SEO-68382.exe Win32/DownloadAdmin.G application cleaned by deleting - quarantined
C:\Users\George\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SB52KVW6\yontoosetup[1].exe multiple threats cleaned by deleting - quarantined
C:\Users\George\AppData\Local\Temp\DIQ\cheat-engine_027\software\cheat-engine.exe multiple threats cleaned by deleting - quarantined
C:\Users\George\AppData\Local\Temp\DIQ\cheat-engine_027\software\Yontoo.exe multiple threats cleaned by deleting - quarantined
C:\Users\George\AppData\Local\Temp\DIQ\FlashPlayer_151\software\FlashPlayer.exe Win32/DomaIQ.M application cleaned by deleting - quarantined
C:\Users\George\AppData\Local\Temp\DIQ\FlashPlayer_151\software\SweetIPacks.exe probably a variant of Win32/SweetIM.C application cleaned by deleting - quarantined
C:\Users\George\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\6a1afde2-4feb42d3 a variant of Java/Exploit.CVE-2011-3544.AV trojan cleaned by deleting - quarantined
C:\Users\George\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\1788107a-3c098a65 a variant of Java/Exploit.CVE-2011-3544.CC trojan cleaned by deleting - quarantined
C:\Users\George\Documents\cheat engine setup.exe a variant of Win32/Soft32Downloader.D application cleaned by deleting - quarantined
C:\Users\George\Documents\CheatEngine62.exe multiple threats cleaned by deleting - quarantined
C:\Users\George\Downloads\cheat-engine.exe multiple threats cleaned by deleting - quarantined
C:\Users\George\Downloads\CheatEngine62.exe multiple threats cleaned by deleting - quarantined
C:\Users\George\Downloads\CheatEngine62.zip multiple threats deleted - quarantined
C:\Users\George\Downloads\FirstRowSportApp_setup_1_8.exe Win32/Adware.1ClickDownload.Y application cleaned by deleting - quarantined
C:\Users\George\Downloads\FV2cheat.zip multiple threats deleted - quarantined


#10 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:16 AM

Posted 14 June 2013 - 04:25 AM

Olmarik.AD trojan - Detection ratio: 33 / 44  Virus Total Results
Some like C:\Users\All Users\Spybot - Search & Destroy\Recovery\InstallDomaIQ1.zip Win32/Bagle.gen.zip worm had been "flagged" by Spybot, but never removed
Bagle.gen.zip worm - Kaspersky report
Farmville2CheatToolv1.1.exe - Hack Tool from Dangerous Torrent downloads
HackTool.CheatEngine.AB - Hack Tool from Dangerous Torrent downloads
Win32/HiddenStart.A - Detection ratio: 13 / 46  Virus Total Results
Win32/DownloadAdmin.G - A Trojan which gets infected in the system when you visit some malicious websites

Multiple others have been found, and are now cleaned / deleted -
SweetIM: [SBI $3C0145EF] Settings (Registry value, fixing failed) by Spybot - was cleaned by ESET scan

If you are linked to any Torrent download programs (uTorrent or similar) please stop using them, as they have infected the computer.

 

Now :

Please download MiniToolBox, Save it to your desktop and run it.
Now close any Firefox browsers you may have open
Checkmark the following boxes:
• Flush DNS
• Report IE Proxy Settings
• Reset IE Proxy Settings
• Report FF Proxy Settings
• Reset FF Proxy Settings
• List content of Hosts
• List IP configuration
• List last 10 Event Viewer log
• List Installed Programs
• List Users, Partitions and Memory size.
• List Minidump Files
 
Click Go at the bottom and copy / paste the result (Result.txt), once it has finished.

 

Can you tell if the computer is a bit better now.

Thank You -



#11 MrOrangeman

MrOrangeman
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:12:16 PM

Posted 14 June 2013 - 10:37 AM

MiniToolBox by Farbar  Version:21-04-2013
Ran by George (administrator) on 14-06-2013 at 11:34:48
Running from "E:\"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
::1             localhost

127.0.0.1       localhost

========================= IP Configuration: ================================

Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : George-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : twcny.rr.com

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 70-1A-04-13-E9-3C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : twcny.rr.com
   Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
   Physical Address. . . . . . . . . : 70-1A-04-13-E9-3C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::8963:83dc:4816:82ef%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.101(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, June 14, 2013 10:55:04 AM
   Lease Expires . . . . . . . . . . : Thursday, June 20, 2013 11:12:03 AM
   Default Gateway . . . . . . . . . : fe80::226:5aff:feb7:ac8e%11
                                       192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DNS Servers . . . . . . . . . . . : 192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
   Physical Address. . . . . . . . . : 00-25-64-57-17-4B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.twcny.rr.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 37:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection*:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : twcny.rr.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.twcny.rr.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 2:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3c68:277:3f57:ff9a(Preferred)
   Link-local IPv6 Address . . . . . : fe80::3c68:277:3f57:ff9a%51(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  UnKnown
Address:  192.168.0.1

Name:    google.com
Addresses:  2607:f8b0:4009:801::1007
   173.194.46.70
   173.194.46.71
   173.194.46.72
   173.194.46.73
   173.194.46.78
   173.194.46.64
   173.194.46.65
   173.194.46.66
   173.194.46.67
   173.194.46.68
   173.194.46.69

Pinging google.com [173.194.46.69] with 32 bytes of data:
Reply from 173.194.46.69: bytes=32 time=39ms TTL=53
Reply from 173.194.46.69: bytes=32 time=27ms TTL=53

Ping statistics for 173.194.46.69:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 27ms, Maximum = 39ms, Average = 33ms
Server:  UnKnown
Address:  192.168.0.1

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=167ms TTL=46
Reply from 98.139.183.24: bytes=32 time=113ms TTL=46

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 113ms, Maximum = 167ms, Average = 140ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...70 1a 04 13 e9 3c ......Microsoft Virtual WiFi Miniport Adapter
 11...70 1a 04 13 e9 3c ......Dell Wireless 1397 WLAN Mini-Card
 10...00 25 64 57 17 4b ......Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
  1...........................Software Loopback Interface 1
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 43...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
 53...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 49...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 51...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.101     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link     192.168.0.101    281
    192.168.0.101  255.255.255.255         On-link     192.168.0.101    281
    192.168.0.255  255.255.255.255         On-link     192.168.0.101    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.0.101    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.0.101    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 51     58 ::/0                     On-link
 11    281 ::/0                     fe80::226:5aff:feb7:ac8e
  1    306 ::1/128                  On-link
 51     58 2001::/32                On-link
 51    306 2001:0:4137:9e76:3c68:277:3f57:ff9a/128
                                    On-link
 11    281 fe80::/64                On-link
 51    306 fe80::/64                On-link
 51    306 fe80::3c68:277:3f57:ff9a/128
                                    On-link
 11    281 fe80::8963:83dc:4816:82ef/128
                                    On-link
  1    306 ff00::/8                 On-link
 51    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/14/2013 11:33:27 AM) (Source: TOASTER.EXE) (User: )
Description: An Unhandled Exception occured.
Width and Height must be non-negative.
   at System.Windows.Rect..ctor(Double x, Double y, Double width, Double height)
   at Toaster.Core.AppBarFunctions.ABSetPos(ABEdge edge, Window appbarWindow)
   at Toaster.Core.AppBarFunctions.RegisterInfo.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at System.Windows.Interop.HwndSource.PublicHooksFilterMessage(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler)

Error: (06/14/2013 11:33:15 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/14/2013 10:55:31 AM) (Source: Application Error) (User: )
Description: Faulting application name: sftservice.exe, version: 1.0.82.72, time stamp: 0x4e45499a
Faulting module name: sftservice.exe, version: 1.0.82.72, time stamp: 0x4e45499a
Exception code: 0xc0000005
Fault offset: 0x000ad6da
Faulting process id: 0x42c
Faulting application start time: 0xsftservice.exe0
Faulting application path: sftservice.exe1
Faulting module path: sftservice.exe2
Report Id: sftservice.exe3

Error: (06/14/2013 08:09:24 AM) (Source: Application Hang) (User: )
Description: The program IEXPLORE.EXE version 10.0.9200.16611 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: ee0

Start Time: 01ce68f7e17f1003

Termination Time: 0

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id:

Error: (06/14/2013 00:21:56 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/14/2013 00:21:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/14/2013 00:21:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/14/2013 00:21:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/14/2013 00:21:45 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/14/2013 00:16:13 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

System errors:
=============
Error: (06/14/2013 10:57:13 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (06/14/2013 10:57:13 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (06/14/2013 10:57:13 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (06/14/2013 10:57:13 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (06/14/2013 10:57:13 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (06/14/2013 10:57:13 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (06/14/2013 10:57:03 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (06/14/2013 10:57:03 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (06/14/2013 10:57:03 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (06/14/2013 10:56:39 AM) (Source: Service Control Manager) (User: )
Description: The SoftThinks Agent Service service terminated unexpectedly.  It has done this 1 time(s).

Microsoft Office Sessions:
=========================
Error: (06/14/2013 11:33:27 AM) (Source: TOASTER.EXE)(User: )
Description: An Unhandled Exception occured.
Width and Height must be non-negative.
   at System.Windows.Rect..ctor(Double x, Double y, Double width, Double height)
   at Toaster.Core.AppBarFunctions.ABSetPos(ABEdge edge, Window appbarWindow)
   at Toaster.Core.AppBarFunctions.RegisterInfo.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at System.Windows.Interop.HwndSource.PublicHooksFilterMessage(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler)

Error: (06/14/2013 11:33:15 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestE:\esetsmartinstaller_enu.exe

Error: (06/14/2013 10:55:31 AM) (Source: Application Error)(User: )
Description: sftservice.exe1.0.82.724e45499asftservice.exe1.0.82.724e45499ac0000005000ad6da42c01ce690f265a2cb5C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exeC:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe75203a2d-d502-11e2-82b2-00256457174b

Error: (06/14/2013 08:09:24 AM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE10.0.9200.16611ee001ce68f7e17f10030C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Error: (06/14/2013 00:21:56 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\George\Downloads\esetsmartinstaller_enu.exe

Error: (06/14/2013 00:21:50 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\George\Downloads\esetsmartinstaller_enu.exe

Error: (06/14/2013 00:21:50 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\George\Downloads\esetsmartinstaller_enu.exe

Error: (06/14/2013 00:21:50 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\George\Downloads\esetsmartinstaller_enu.exe

Error: (06/14/2013 00:21:45 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\George\Downloads\esetsmartinstaller_enu.exe

Error: (06/14/2013 00:16:13 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestE:\esetsmartinstaller_enu.exe

CodeIntegrity Errors:
===================================
  Date: 2012-03-04 15:39:24.637
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-03-04 15:39:24.523
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
Advanced Audio FX Engine (Version: 1.12.05)
Akamai NetSession Interface
Akamai NetSession Interface Service
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
AVG 2012 (Version: 12.0.3199)
AVG 2012 (Version: 12.1.2242)
AVG 2012 (Version: 2012.1.2242)
Bejeweled 2 Deluxe
CCleaner (Version: 3.17)
Cheat Engine 6.2
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software (Version: 9.4.60)
Dell DataSafe Local Backup (Version: 9.4.60)
Dell Dock (Version: 2.0.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Touchpad (Version: 7.1107.115.102)
Dell Webcam Central (Version: 1.40.35)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
ESET Online Scanner v3
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Google Chrome (Version: 27.0.1453.110)
Google Update Helper (Version: 1.3.21.145)
GoToAssist 8.0.0.514
Infinite Crosswords
Intel® Graphics Media Accelerator Driver
Intel® Rapid Storage Technology (Version: 10.5.0.1029)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 14 (64-bit) (Version: 6.0.140)
Java™ 6 Update 24 (Version: 6.0.240)
Junk Mail filter update (Version: 15.4.3502.0922)
LifeScan USB Device Driver vSL2.0 (Driver Removal)
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Merv Griffins Crosswords
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Meter Drivers for OneTouch® Software (Version: 1.10.0.0)
Meter Drivers for OneTouch® Software (Version: 1.9.1.0)
Meter Drivers for OneTouch® Software v1.10.0.0 (Version: 1.10.0.0)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.0 (Version: 8.01.249.0)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Search Enhancement Pack (Version: 3.0.133.0)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Windows Feedback Panel 6.2 (Version: 6.2.429)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 18.0.2 (x86 en-US) (Version: 18.0.2)
Mozilla Maintenance Service (Version: 18.0.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
My Dell (Version: 3.3.6261.27)
Octoshape add-in for Adobe Flash Player
OneTouch Software
PandoraRecovery (Remove Only)
PL-2303 USB-to-Serial (Version: 1.3.0)
PowerDVD DX (Version: 8.3.5424)
Quickset64 (Version: 9.6.6)
Roxio Burn (Version: 1.0)
Roxio Burn (Version: 1.0.0)
Roxio Update Manager (Version: 6.0.0)
Skype™ 6.3 (Version: 6.3.105)
Spotify (Version: 0.9.0.133.gd18ed589)
Spybot - Search & Destroy (Version: 1.6.2)
SUPERAntiSpyware (Version: 5.6.1012)
swMSM (Version: 12.0.0.1)
The Logo Creator
Total Immersion D'Fusion @Home Web Plug-In
Turbo Tourney Pro 2013 (Version: 18.0.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
USB-IDE Bridge Driver Ver1.4
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live OneCare safety scanner
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
Yahoo! Messenger
Yahoo! Software Update
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)

========================= Memory info: ===================================

Percentage of memory in use: 60%
Total physical RAM: 4056.36 MB
Available physical RAM: 1599.93 MB
Total Pagefile: 8110.91 MB
Available Pagefile: 5279.92 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978.7 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:386.23 GB) NTFS
3 Drive e: (KINGSTON) (Removable) (Total:1.87 GB) (Free:1.51 GB) FAT

========================= Users: ========================================

User accounts for \\GEORGE-PC

Administrator            George                   Guest                   

========================= Minidump Files ==================================

**** End of log ****

 

 

EDit Size ~~boopme


Edited by boopme, 14 June 2013 - 10:34 PM.


#12 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:16 AM

Posted 14 June 2013 - 07:01 PM

Have you downloaded the program to Desktop or to a USB Flash Drive, as it shows "Running from "E:\"
This is your USB Flash Drive letter

 

I just ran this on mine and this is what I got ................
Running from "C:\Users\xxxxx\Downloads"
Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal

 

This shows that I am running directly from Desktop and C: Drive

 

You are showing your drives as ...........
1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:386.23 GB) NTFS
3 Drive e: (KINGSTON) (Removable) (Total:1.87 GB) (Free:1.51 GB) FAT (your USB drive)
Remove any USB devices so that programs are not installed to E: drive, or infections are saved

 

Cheat Engine 6.2
Java Auto Updater (Version: 2.0.3.1) <-- Updater should be an icon in Control Panel
Java™ 6 Update 14 (64-bit) (Version: 6.0.140)
Java™ 6 Update 24 (Version: 6.0.240)
Spybot - Search & Destroy (Version: 1.6.2)

Open Control panel > Programs and Features and delete only the Highlighted items

 

While in Control Panel, open your Java icon (Java Auto Updater) and the Second tab is Update.
At my last check, Java7 Update 21 was the current version.

You had Java infections listed in your ESET scan, so you need to remove all old versions installed.

C:\Users\George\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\1788107a-3c098a65 a variant of Java/Exploit.CVE-2011-3544.CC trojan cleaned by deleting - quarantined

 

If you have a post that shows small lettering (as above) highlight the lettering and select Font Size (click second box in the editing header) and use Size 14 for all lettering (standard on the forum).

These posts may be from your USB drive, not from the C: drive.

 

Next post, I will finish looking at all the Errors, and have a few other minor changes to make.

 

Thanks -



#13 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:16 AM

Posted 14 June 2013 - 11:51 PM

toaster.exe may be a Notification Plugin from AOL part of WinAmp.
If you had AOL it is OK, but if you never used AOL it can be removed (please tell me)
Toaster.exe is a Windows file created by AOL. The file is usually found in Program Files\wanadoo folder. If you find it anywhere else. Please note that toaster.exe could be a virus, trojan, worm, or spyware. The location of the file can vary in different Windows versions or languages. This is an executable file. You can find it running in Task Manager as the process toaster.exe.

 

Error:
The Peer Name Resolution Protocol service terminated with the following error: ...................
Delete the file idstore.sst
its located in: C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming

 

You need to run sfc /scannow and then Disk check to check the integrety of some files

Go - Start > Programs > Accessories > Find Command Prompt and Right click on it and select Run as Administrator >
Type sfc /scannow and press Enter - Note the space between c and / as this must be there.
This should only take (on average) 10 to 15 minutes to run.

 

Run a Disk Check on your C: drive in Windows 7:
•Click Start and open Computer
•Right-click on C: (or your hard drive letter) and select Properties
•Click on the Tools tab
•Under Error-checking click the Check Now... button
•Mark the 2 boxes next to Automatically fix file system errors and Scan for and attempt recovery of bad sectors
•Click on the Start button
•When the message box pops up, click the Schedule disk check button and Restart your computer
•Once your computer restarts it will check the drive, don't press any keys so that it is allowed to do so
The computer will boot back to Normal when it is finished the scan.
This will take (on average) 1 to 2 hours, but please post back if it takes 3 hours, since this usually means errors.

 

 

Due to some errors we will reinstall Internet Explorer 9 for a few days, then you can go to I.E. 10 later -
To remove IE 10 from Windows 7 (and automatically reinstall IE 9):
1.Click Start > Control Panel > Programs and Features > Uninstall a Program.  
2.Select the option to View Installed Windows updates (top Left side)
3.Select the update labeled for Internet Explorer 10, right-click and select Uninstall.
After a reboot, your IE 9 will be restored.

 

We need to reset system restore to prevent your computer from being accidentally reinfected by using some old restore point(s).

We'll remove all old restore points and create fresh, clean restore point. See link below >
Turn system restore off.
Restart computer.
Turn system restore back on.
Vista and Windows 7: http://www.howtogeek.com/howto/windows-vista/disable-system-restore-in-windows-vista/

 

Make sure Windows Updates are now all current. Refuse (untick) IE 10 if offered.

 

Thank You -


Edited by noknojon, 14 June 2013 - 11:52 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users