Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Hijacked webrowser, pirrit?

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Hijacked webrowser, pirrit?

Unread postby kmp90 » February 19th, 2014, 1:03 pm

Alright well here we go again

so on my main computer I am having this issue. with highlighted linked text and also popups.
I've reached the end of my rope so looking here where help elsewhere has been fruitless.

the original issue was this

"Hello, I been fighting and working on my computer for hours.
I have a windows 7 computer, its three years old. just yesterday I started having hyper links appear on webpages
with popups and random advertisements opening.
this is happening on all browsers. I've run it through spywearbots search and destroy,
malwarebytes, and few other recomended programs such as jtr and adwcleaner.
I am just a college art student so running out of ideas on what I should do for this issue. I saw a page like what I was having issues with.
the page was posted by pey321 in 2011. "

LOGS listed are the alienwears most current logs. right now need help restoring its net to make this process from the program likely causing all the trouble named "pirrit" currently posting from my other laptop inorder to get help. and this may not be the only issue.

here are the logs below from DDS most current.


.
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by KristinP at 10:58:55.31 on Wed 02/19/2014
Internet Explorer: 9.11.9600.16428 BrowserJavaVersion: 10.45.2
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.16366.12103 [GMT -6:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe
C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
C:\Program Files (x86)\Cisco\Cisco NAC Agent\NACAgent.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Pirrit\AutoUpdater.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\AlienRespawn\sftservice.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe
C:\Windows\System32\Drivers\WTSRV.EXE
C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\AlienRespawn\Components\Scheduler\STService.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe
C:\Program Files (x86)\AlienRespawn\TOASTER.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Users\KristinP\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Users\KristinP\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
C:\Program Files\Tablet\Pen\WacomHost.exe
C:\Program Files (x86)\Integrated Webcam\Live! Central\WebcamInt.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
C:\Program Files (x86)\Cisco\Cisco NAC Agent\NACAgentUI.exe
C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
C:\Windows\system32\conhost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Program Files\Alienware\Command Center\AlienFusionService.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files\Alienware\Command Center\AlienFusionController.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Nero\SyncUP\SyncUP.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Nero\SyncUP\Nero.AndroidServer.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Giraffic\Veoh_Giraffic.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\KristinP\Desktop\dds.scr
C:\Windows\system32\conhost.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uStart Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://AlienwareArena.com
uSearch Bar = hxxp://www.google.com
uInternet Settings,ProxyServer = http=hxxp://127.0.0.1:9881
uInternet Settings,ProxyOverride = <local>
uSearchAssistant = hxxp://www.google.com
mURLSearchHooks: H - No File
mWinlogon: Userinit=userinit.exe,
BHO: {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: SelectionLinks: {1c8501dd-5580-48ab-b25c-6d5dbe835a6a} - C:\Program Files (x86)\OApps\SelectionLinks.dll
BHO: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: AVG SafeGuard toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\17.3.2.113\AVG SafeGuard toolbar_toolbar.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: {B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} - No File
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: IEExtension.Extension: {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} - mscoree.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
TB: AVG SafeGuard toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\17.3.2.113\AVG SafeGuard toolbar_toolbar.dll
TB: {09EC805C-CB2E-4D53-B0D3-A75A428B81C7} - No File
uRun: [VeohPlugin] "C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
uRun: [Akamai NetSession Interface] "C:\Users\KristinP\AppData\Local\Akamai\netsession_win.exe"
uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
uRun: [AdobeBridge]
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [TBHostSupport] "C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\KristinP\AppData\Local\TBHostSupport\TBHostSupport.dll",DLLRunTBHostSupportPlugin
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [AlienwareOn-ScreenDisplay] C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Integrated Webcam Live! Central] "C:\Program Files (x86)\Integrated Webcam\Live! Central\WebcamInt.exe" /mode2
mRun: [<NO NAME>]
mRun: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"
mRun: [NeroLauncher] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe 900
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
mRun: [WTClient] WTClient.exe
mRun: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
mRun: [NACAgentUI] C:\Program Files (x86)\Cisco\Cisco NAC Agent\NACAgentUI.exe
mRun: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
mRun: [vProt] "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRunOnce: [Launcher] C:\Program Files (x86)\AlienRespawn\Components\Scheduler\Launcher.exe
dRun: [SearchProtect] \SearchProtect\bin\cltmng.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\ADOBEG~1.LNK - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - C:\Users\KristinP\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\KristinP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
LSP: %SYSTEMROOT%\system32\BfLLR.dll
Trusted Zone: vizzed.com\www
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} - hxxp://support.dell.com/systemprofiler/ ... emLite.CAB
DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwar ... /CTPID.cab
DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} - hxxp://utilities.pcpitstop.com/da2/PCPitStop2.cab
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.3.0\ViProtocol.dll
AppInit_DLLs: c:\windows\syswow64\nvinit.dll c:\progra~2\browse~1\sprote~1.dll
mASetup: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
BHO-X64: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
BHO-X64: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
BHO-X64: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
BHO-X64: SkypeIEPluginBHO - No File
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
TB-X64: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
TB-X64: {09EC805C-CB2E-4D53-B0D3-A75A428B81C7} - No File
mRun-x64: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun-x64: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
mRun-x64: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
mRun-x64: [IgfxTray] C:\Windows\system32\igfxtray.exe
mRun-x64: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
mRun-x64: [Persistence] C:\Windows\system32\igfxpers.exe
mRun-x64: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
mRun-x64: [(Default)]
mRun-x64: [Command Center Controllers] "C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe"
mRun-x64: [LogMeIn GUI] "C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe"
mRun-x64: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
mRun-x64: [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
mRun-x64: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
AppInit_DLLs-X64: C:\Windows\system32\nvinitx.dll
Hosts: 216.239.32.20 google.com www.google.com
Hosts: 216.239.32.20 google.com www.google.ad
Hosts: 216.239.32.20 google.com www.google.ae
Hosts: 216.239.32.20 google.com www.google.com.af
Hosts: 216.239.32.20 google.com www.google.com.ag
.
Note: multiple HOSTS entries found. Please refer to Attach.txt
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\KristinP\AppData\Roaming\Mozilla\Firefox\Profiles\ghi0i1kp.default-1392568032962\
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dll
FF - plugin: C:\Program Files (x86)\Vizzed\Vizzed Retro Game Room\NpVizzedRgr.dll
FF - plugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll
FF - plugin: C:\Users\KristinP\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll
.
============= SERVICES / DRIVERS ===============
.
R0 EMSC;COMPAL Embedded System Control;C:\Windows\System32\drivers\EMSC.sys [2009-6-26 16752]
R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2011-12-15 25960]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-12-15 55856]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\System32\drivers\stdcfltn.sys [2011-12-15 21616]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2011-12-22 969200]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2011-12-22 359464]
R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2013-11-24 46368]
R1 BfLwf;Bigfoot Networks Bandwidth Control;C:\Windows\System32\drivers\bflwfx64.sys [2011-3-29 68712]
R1 nvkflt;nvkflt;C:\Windows\System32\drivers\nvkflt.sys [2012-10-8 284008]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2013-8-11 89600]
R2 AlienFusionService;Alienware Fusion Service;C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2012-6-15 14704]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2011-12-22 25232]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2011-12-22 71600]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-8-26 44808]
R2 Bigfoot Networks Killer Service;Bigfoot Networks Killer Service;C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [2011-3-29 763904]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2013-4-22 822504]
R2 Giraffic;Veoh Giraffic Video Accelerator;C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe --service --> C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe --service [?]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-12-15 13336]
R2 LMIInfo;LogMeIn Kernel Information Provider;C:\Program Files (x86)\LogMeIn\x64\rainfo.sys [2013-4-30 16056]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;C:\Windows\System32\drivers\LMIRfsDriver.sys [2013-7-16 72216]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-6-14 418376]
R2 mi-raysat_3dsmax2013_64;mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit;C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [2011-9-14 86016]
R2 NACAgent;Cisco NAC Agent;C:\Program Files (x86)\Cisco\Cisco NAC Agent\NACAgent.exe [2012-12-3 1270744]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-7-13 769432]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-1-7 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-10-28 15129376]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-12-31 1914656]
R2 PirritUpdater;PirritUpdater;C:\Program Files (x86)\Pirrit\AutoUpdater.exe [2013-11-14 59904]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2012-9-11 1153368]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-6-26 523944]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\AlienRespawn\SftService.exe [2011-12-15 1692480]
R2 vToolbarUpdater17.3.0;vToolbarUpdater17.3.0;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe [2014-1-10 1772056]
R2 WTabletServiceCon;Wacom Consumer Service;C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [2013-8-11 619904]
R3 Acceler;Accelerometer Service;C:\Windows\System32\drivers\Accelern.sys [2011-12-15 27760]
R3 Ak27x64;Killer Wireless-N 1102 device driver;C:\Windows\System32\drivers\Ak27x64.sys [2011-3-29 2705000]
R3 btwampfl;Bluetooth AMP USB Filter;C:\Windows\System32\drivers\btwampfl.sys [2011-12-15 344616]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2011-12-15 176096]
R3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);C:\Windows\System32\drivers\vrtaucbl.sys [2012-9-8 66728]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2011-12-15 76912]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-6-14 25928]
R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\System32\drivers\HECIx64.sys [2010-10-19 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2011-12-15 82432]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2011-12-15 181760]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\System32\drivers\nvhda64v.sys [2013-11-24 196384]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-1-7 39200]
R3 PTSimBus;PenTablet Bus Enumerator;C:\Windows\System32\drivers\PTSimBus.sys [2012-5-26 27304]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\System32\drivers\RtsPStor.sys [2011-12-15 337512]
R3 ScreamBAudioSvc;ScreamBee Audio;C:\Windows\System32\drivers\ScreamingBAudio64.sys [2010-7-1 38992]
R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2013-6-26 767144]
R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2013-6-26 273576]
R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2013-6-26 28840]
R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2013-6-26 23208]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-6-26 207528]
R3 SiBEAMSB92xxHostSerial;SiBEAMSB92xxHostSerial;C:\Windows\System32\drivers\SiBEAM_x64.sys [2011-12-15 62464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-6-23 116648]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-6-14 701512]
S2 PirritDesktop;PirritDesktop;C:\Users\KristinP\AppData\Local\PirritSuggestor\PirritService.exe --> C:\Users\KristinP\AppData\Local\PirritSuggestor\PirritService.exe [?]
S2 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-5-9 257928]
S3 cphs;Intel(R) Content Protection HECI Service;C:\Windows\SysWOW64\IntelCpHeciSvc.exe [2012-10-10 277024]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-1-4 1432400]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-6-23 116648]
S3 hidkmdf;KMDF Driver;C:\Windows\System32\drivers\hidkmdf.sys [2013-3-6 13728]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-12-12 111616]
S3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2011-12-15 158976]
S3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-12-15 317440]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-9-9 117656]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 OverwolfUpdaterService;Overwolf Updater Service;C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2014-1-3 96184]
S3 PTSimHid;PenTablet Simulated HID MiniDriver;C:\Windows\System32\drivers\PTSimHid.sys [2012-5-26 17064]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
S3 rzudd;Razer Mouse Driver;C:\Windows\System32\drivers\rzudd.sys [2012-9-18 112640]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-8-2 51712]
S3 WacHidRouter;Wacom Hid Router;C:\Windows\System32\drivers\wachidrouter.sys [2013-3-6 81824]
S3 wacomrouterfilter;Wacom Router Filter Driver;C:\Windows\System32\drivers\wacomrouterfilter.sys [2013-3-6 15776]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-12-22 1255736]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2008-5-6 14464]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2009-7-22 61976]
S4 PCPitstop Scheduling;PCPitstop Scheduling;C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe [2013-8-11 85504]
S4 RsFx0105;RsFx0105 Driver;C:\Windows\System32\drivers\RsFx0105.sys [2011-9-22 311144]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2011-9-22 431464]
.
=============== Created Last 30 ================
.
2014-02-19 16:50:49 10536864 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{FDB550A6-117C-4A21-B65F-0273311D01B0}\mpengine.dll
2014-02-18 00:08:43 -------- d-----w- C:\Program Files (x86)\VS Revo Group
2014-02-17 23:59:52 -------- d-----w- C:\PROGRA~3\HitmanPro
2014-02-17 19:21:16 -------- d-----w- C:\_OTL
2014-02-17 15:49:36 -------- d-----w- C:\Users\KristinP\AppData\Local\LogMeInIgnition
2014-02-17 04:53:37 -------- d-----w- C:\Users\KristinP\AppData\Local\Skype
2014-02-17 02:45:41 -------- d-----w- C:\FRST
2014-02-16 16:37:41 -------- d-----w- C:\Windows\ERUNT
2014-02-16 16:31:05 -------- d-----w- C:\AdwCleaner
2014-01-29 22:52:13 -------- d-----w- C:\Users\KristinP\AppData\Local\Skyrim
2014-01-29 22:23:28 -------- d-----w- C:\Program Files (x86)\The Elder Scrolls V Skyrim
2014-01-29 20:06:19 -------- d-----w- C:\Users\KristinP\AppData\Roaming\DownLite
.
==================== Find3M ====================
.
2014-02-05 04:40:39 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-05 04:40:39 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-02-05 04:40:31 17890696 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
2014-01-21 17:43:57 107368 ----a-w- C:\Windows\System32\LMIRfsClientNP.dll
2014-01-21 17:43:56 92488 ----a-w- C:\Windows\System32\LMIinit.dll
2014-01-21 17:43:56 35656 ----a-w- C:\Windows\System32\LMIport.dll
2013-12-18 12:13:56 270496 ------w- C:\Windows\System32\MpSigStub.exe
2013-12-13 03:07:28 107368 ----a-w- C:\Windows\System32\LMIRfsClientNP.dll.000.bak
2013-12-10 02:13:11 982232 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2013-12-10 02:13:01 1100248 ----a-w- C:\Windows\System32\nvspcap64.dll
2013-12-05 08:42:30 39200 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys
2013-12-05 08:42:26 35104 ----a-w- C:\Windows\System32\nvaudcap64v.dll
2013-12-05 08:42:26 32544 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
2013-11-27 01:42:42 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-11-27 01:42:20 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-11-27 01:42:18 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-11-27 01:42:16 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-11-27 01:42:13 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2013-11-27 01:42:12 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-11-27 01:42:08 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2013-11-26 11:40:00 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2013-11-26 10:32:56 3156480 ----a-w- C:\Windows\System32\win32k.sys
2013-11-26 10:19:07 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2013-11-26 10:18:23 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2013-11-26 09:48:07 66048 ----a-w- C:\Windows\System32\iesetup.dll
2013-11-26 09:46:25 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2013-11-26 09:23:02 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-11-26 09:18:39 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-11-26 09:18:09 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2013-11-26 09:16:57 708608 ----a-w- C:\Windows\System32\jscript9diag.dll
2013-11-26 09:02:09 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2013-11-26 09:02:09 194048 ----a-w- C:\Windows\SysWow64\elshyph.dll
2013-11-26 08:35:02 5769216 ----a-w- C:\Windows\System32\jscript9.dll
2013-11-26 08:28:16 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2013-11-26 08:16:12 4243968 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-11-26 08:02:16 1995264 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-11-26 07:32:06 1928192 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-11-26 07:07:57 2334208 ----a-w- C:\Windows\System32\wininet.dll
2013-11-26 06:33:33 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-11-24 07:31:46 46368 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
2013-11-23 18:26:20 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2013-11-23 17:47:34 465920 ----a-w- C:\Windows\System32\WMPhoto.dll
.
============= FINISH: 10:59:22.28 ===============



.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 12/21/2011 6:27:38 PM
System Uptime: 2/18/2014 6:44:07 AM (28 hours ago)
.
Motherboard: Alienware | | M17xR3
Processor: Intel(R) Core(TM) i7-2760QM CPU @ 2.40GHz | CPU1 | 2401/1600mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 466 GiB total, 196.314 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Hosts File Hijack ======================
.
Hosts: 216.239.32.20 google.com www.google.com
Hosts: 216.239.32.20 google.com www.google.ad
Hosts: 216.239.32.20 google.com www.google.ae
Hosts: 216.239.32.20 google.com www.google.com.af
Hosts: 216.239.32.20 google.com www.google.com.ag
Hosts: 216.239.32.20 google.com www.google.com.ai
Hosts: 216.239.32.20 google.com www.google.al
Hosts: 216.239.32.20 google.com www.google.am
Hosts: 216.239.32.20 google.com www.google.co.ao
Hosts: 216.239.32.20 google.com www.google.com.ar
Hosts: 216.239.32.20 google.com www.google.as
Hosts: 216.239.32.20 google.com www.google.at
Hosts: 216.239.32.20 google.com www.google.com.au
Hosts: 216.239.32.20 google.com www.google.az
Hosts: 216.239.32.20 google.com www.google.ba
Hosts: 216.239.32.20 google.com www.google.com.bd
Hosts: 216.239.32.20 google.com www.google.be
Hosts: 216.239.32.20 google.com www.google.bf
Hosts: 216.239.32.20 google.com www.google.bg
Hosts: 216.239.32.20 google.com www.google.com.bh
Hosts: 216.239.32.20 google.com www.google.bi
Hosts: 216.239.32.20 google.com www.google.bj
Hosts: 216.239.32.20 google.com www.google.com.bn
Hosts: 216.239.32.20 google.com www.google.com.bo
Hosts: 216.239.32.20 google.com www.google.com.br
Hosts: 216.239.32.20 google.com www.google.bs
Hosts: 216.239.32.20 google.com www.google.bt
Hosts: 216.239.32.20 google.com www.google.co.bw
Hosts: 216.239.32.20 google.com www.google.by
Hosts: 216.239.32.20 google.com www.google.com.bz
Hosts: 216.239.32.20 google.com www.google.ca
Hosts: 216.239.32.20 google.com www.google.cd
Hosts: 216.239.32.20 google.com www.google.cf
Hosts: 216.239.32.20 google.com www.google.cg
Hosts: 216.239.32.20 google.com www.google.ch
Hosts: 216.239.32.20 google.com www.google.ci
Hosts: 216.239.32.20 google.com www.google.co.ck
Hosts: 216.239.32.20 google.com www.google.cl
Hosts: 216.239.32.20 google.com www.google.cm
Hosts: 216.239.32.20 google.com www.google.cn
Hosts: 216.239.32.20 google.com www.google.com.co
Hosts: 216.239.32.20 google.com www.google.co.cr
Hosts: 216.239.32.20 google.com www.google.com.cu
Hosts: 216.239.32.20 google.com www.google.cv
Hosts: 216.239.32.20 google.com www.google.com.cy
Hosts: 216.239.32.20 google.com www.google.cz
Hosts: 216.239.32.20 google.com www.google.de
Hosts: 216.239.32.20 google.com www.google.dj
Hosts: 216.239.32.20 google.com www.google.dk
Hosts: 216.239.32.20 google.com www.google.dm
Hosts: 216.239.32.20 google.com www.google.com.do
Hosts: 216.239.32.20 google.com www.google.dz
Hosts: 216.239.32.20 google.com www.google.com.ec
Hosts: 216.239.32.20 google.com www.google.ee
Hosts: 216.239.32.20 google.com www.google.com.eg
Hosts: 216.239.32.20 google.com www.google.es
Hosts: 216.239.32.20 google.com www.google.com.et
Hosts: 216.239.32.20 google.com www.google.fi
Hosts: 216.239.32.20 google.com www.google.com.fj
Hosts: 216.239.32.20 google.com www.google.fm
Hosts: 216.239.32.20 google.com www.google.fr
Hosts: 216.239.32.20 google.com www.google.ga
Hosts: 216.239.32.20 google.com www.google.ge
Hosts: 216.239.32.20 google.com www.google.gg
Hosts: 216.239.32.20 google.com www.google.com.gh
Hosts: 216.239.32.20 google.com www.google.com.gi
Hosts: 216.239.32.20 google.com www.google.gl
Hosts: 216.239.32.20 google.com www.google.gm
Hosts: 216.239.32.20 google.com www.google.gp
Hosts: 216.239.32.20 google.com www.google.gr
Hosts: 216.239.32.20 google.com www.google.com.gt
Hosts: 216.239.32.20 google.com www.google.gy
Hosts: 216.239.32.20 google.com www.google.com.hk
Hosts: 216.239.32.20 google.com www.google.hn
Hosts: 216.239.32.20 google.com www.google.hr
Hosts: 216.239.32.20 google.com www.google.ht
Hosts: 216.239.32.20 google.com www.google.hu
Hosts: 216.239.32.20 google.com www.google.co.id
Hosts: 216.239.32.20 google.com www.google.ie
Hosts: 216.239.32.20 google.com www.google.co.il
Hosts: 216.239.32.20 google.com www.google.im
Hosts: 216.239.32.20 google.com www.google.co.in
Hosts: 216.239.32.20 google.com www.google.iq
Hosts: 216.239.32.20 google.com www.google.is
Hosts: 216.239.32.20 google.com www.google.it
Hosts: 216.239.32.20 google.com www.google.je
Hosts: 216.239.32.20 google.com www.google.com.jm
Hosts: 216.239.32.20 google.com www.google.jo
Hosts: 216.239.32.20 google.com www.google.co.jp
Hosts: 216.239.32.20 google.com www.google.co.ke
Hosts: 216.239.32.20 google.com www.google.com.kh
Hosts: 216.239.32.20 google.com www.google.ki
Hosts: 216.239.32.20 google.com www.google.kg
Hosts: 216.239.32.20 google.com www.google.co.kr
Hosts: 216.239.32.20 google.com www.google.com.kw
Hosts: 216.239.32.20 google.com www.google.kz
Hosts: 216.239.32.20 google.com www.google.la
Hosts: 216.239.32.20 google.com www.google.com.lb
Hosts: 216.239.32.20 google.com www.google.li
Hosts: 216.239.32.20 google.com www.google.lk
Hosts: 216.239.32.20 google.com www.google.co.ls
Hosts: 216.239.32.20 google.com www.google.lt
Hosts: 216.239.32.20 google.com www.google.lu
Hosts: 216.239.32.20 google.com www.google.lv
Hosts: 216.239.32.20 google.com www.google.com.ly
Hosts: 216.239.32.20 google.com www.google.co.ma
Hosts: 216.239.32.20 google.com www.google.md
Hosts: 216.239.32.20 google.com www.google.me
Hosts: 216.239.32.20 google.com www.google.mg
Hosts: 216.239.32.20 google.com www.google.mk
Hosts: 216.239.32.20 google.com www.google.ml
Hosts: 216.239.32.20 google.com www.google.com.mm
Hosts: 216.239.32.20 google.com www.google.mn
Hosts: 216.239.32.20 google.com www.google.ms
Hosts: 216.239.32.20 google.com www.google.com.mt
Hosts: 216.239.32.20 google.com www.google.mu
Hosts: 216.239.32.20 google.com www.google.mv
Hosts: 216.239.32.20 google.com www.google.mw
Hosts: 216.239.32.20 google.com www.google.com.mx
Hosts: 216.239.32.20 google.com www.google.com.my
Hosts: 216.239.32.20 google.com www.google.co.mz
Hosts: 216.239.32.20 google.com www.google.com.na
Hosts: 216.239.32.20 google.com www.google.com.nf
Hosts: 216.239.32.20 google.com www.google.com.ng
Hosts: 216.239.32.20 google.com www.google.com.ni
Hosts: 216.239.32.20 google.com www.google.ne
Hosts: 216.239.32.20 google.com www.google.nl
Hosts: 216.239.32.20 google.com www.google.no
Hosts: 216.239.32.20 google.com www.google.com.np
Hosts: 216.239.32.20 google.com www.google.nr
Hosts: 216.239.32.20 google.com www.google.nu
Hosts: 216.239.32.20 google.com www.google.co.nz
Hosts: 216.239.32.20 google.com www.google.com.om
Hosts: 216.239.32.20 google.com www.google.com.pa
Hosts: 216.239.32.20 google.com www.google.com.pe
Hosts: 216.239.32.20 google.com www.google.com.pg
Hosts: 216.239.32.20 google.com www.google.com.ph
Hosts: 216.239.32.20 google.com www.google.com.pk
Hosts: 216.239.32.20 google.com www.google.pl
Hosts: 216.239.32.20 google.com www.google.pn
Hosts: 216.239.32.20 google.com www.google.com.pr
Hosts: 216.239.32.20 google.com www.google.ps
Hosts: 216.239.32.20 google.com www.google.pt
Hosts: 216.239.32.20 google.com www.google.com.py
Hosts: 216.239.32.20 google.com www.google.com.qa
Hosts: 216.239.32.20 google.com www.google.ro
Hosts: 216.239.32.20 google.com www.google.ru
Hosts: 216.239.32.20 google.com www.google.rw
Hosts: 216.239.32.20 google.com www.google.com.sa
Hosts: 216.239.32.20 google.com www.google.com.sb
Hosts: 216.239.32.20 google.com www.google.sc
Hosts: 216.239.32.20 google.com www.google.se
Hosts: 216.239.32.20 google.com www.google.com.sg
Hosts: 216.239.32.20 google.com www.google.sh
Hosts: 216.239.32.20 google.com www.google.si
Hosts: 216.239.32.20 google.com www.google.sk
Hosts: 216.239.32.20 google.com www.google.com.sl
Hosts: 216.239.32.20 google.com www.google.sn
Hosts: 216.239.32.20 google.com www.google.so
Hosts: 216.239.32.20 google.com www.google.sm
Hosts: 216.239.32.20 google.com www.google.st
Hosts: 216.239.32.20 google.com www.google.com.sv
Hosts: 216.239.32.20 google.com www.google.td
Hosts: 216.239.32.20 google.com www.google.tg
Hosts: 216.239.32.20 google.com www.google.co.th
Hosts: 216.239.32.20 google.com www.google.com.tj
Hosts: 216.239.32.20 google.com www.google.tk
Hosts: 216.239.32.20 google.com www.google.tl
Hosts: 216.239.32.20 google.com www.google.tm
Hosts: 216.239.32.20 google.com www.google.tn
Hosts: 216.239.32.20 google.com www.google.to
Hosts: 216.239.32.20 google.com www.google.com.tr
Hosts: 216.239.32.20 google.com www.google.tt
Hosts: 216.239.32.20 google.com www.google.com.tw
Hosts: 216.239.32.20 google.com www.google.co.tz
Hosts: 216.239.32.20 google.com www.google.com.ua
Hosts: 216.239.32.20 google.com www.google.co.ug
Hosts: 216.239.32.20 google.com www.google.co.uk
Hosts: 216.239.32.20 google.com www.google.com.uy
Hosts: 216.239.32.20 google.com www.google.co.uz
Hosts: 216.239.32.20 google.com www.google.com.vc
Hosts: 216.239.32.20 google.com www.google.co.ve
Hosts: 216.239.32.20 google.com www.google.vg
Hosts: 216.239.32.20 google.com www.google.co.vi
Hosts: 216.239.32.20 google.com www.google.com.vn
Hosts: 216.239.32.20 google.com www.google.vu
Hosts: 216.239.32.20 google.com www.google.ws
Hosts: 216.239.32.20 google.com www.google.rs
Hosts: 216.239.32.20 google.com www.google.co.za
Hosts: 216.239.32.20 google.com www.google.co.zm
Hosts: 216.239.32.20 google.com www.google.co.zw
Hosts: 216.239.32.20 google.com www.google.cat
.
==== Installed Programs ======================
.
.
Leawo Video Converter version 5.2.0.1
µTorrent
4K Video Downloader 3.1
7-Zip 9.20
Accidental Damage Services Agreement
Adobe After Effects CS5.5
Adobe AIR
Adobe Community Help
Adobe Digital Editions
Adobe Download Assistant
Adobe Flash Player 12 ActiveX
Adobe Flash Player 12 Plugin
Adobe Illustrator CS5.1
Adobe Photoshop 7.0
Adobe Photoshop CS6
Adobe Premiere Pro CS5.5
Adobe Premiere Pro CS6 Functional Content
Adobe Reader 9.1.2
Adobe Shockwave Player 12.0
Adobe Story
Advanced Audio FX Engine
Akamai NetSession Interface
AlienRespawn
AlienRespawn - Support Software
Alienware Command Center
Alienware M17x Manual
Alienware On-Screen Display
Any Video to DVD Converter and Burner 3.9.1
Apple Application Support
Apple Software Update
Applian FLV and Media Player 3.1.1.12
ASIO4ALL
Assassin's Creed III 1.01
Audacity 1.3.14 (Unicode)
Autodesk Backburner 2012.0.0
Autodesk Download Manager
Autodesk FBX Converter 2011.3.1
Autodesk FBX Converter x64 2012.2
Autodesk FBX Plug-in 2012.2 - 3ds Max 2012
Autodesk Material Library 2012
Autodesk Material Library 2013
Autodesk Material Library Base Resolution Image Library 2012
Autodesk Material Library Base Resolution Image Library 2013
Autodesk Material Library Medium Resolution Image Library 2012
Autodesk Material Library Medium Resolution Image Library 2013
avast! Free Antivirus
Avimator (remove only)
AVS Update Manager 1.0
AVS Video Converter 8
AVS4YOU Software Navigator 1.4
Bamboo Dock
Bamboo Tablets Tutorial
Banctec Service Agreement
Bigfoot Networks Killer Network Manager
bvhacker
Carambis Driver Updater
Catznip Viewer (remove only)
CeguiMeshViewer
Cheat Engine 6.2
Cisco NAC Agent
Cool VL Viewer
Craften Terminal Beta 3.4.4943.39049
Creatures of Darkness
Curse Client
D-Fend Reloaded 1.3.5 (deinstall)
DarkStorm (remove only)
Darkstorm Viewer
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell MusicStage
Dell PhotoStage
Dell Stage
Dell VideoStage
DirectX 9 Runtime
Download Updater (AOL Inc.)
DriverIdentifier 4.2.6
Drumaxx
DVD Shrink 3.2
EMSC
ExodusViewerBeta (remove only)
Female Voice Pack
FeralHeart version 1.13
Firestorm-Beta (remove only)
Firestorm-Release (remove only)
FL Studio 9
FMOD Programmers API Windows
Free YouTube to MP3 Converter version 3.11.29.825
Furry Voices for Second Life
Galactic Voices
GankedLifeViewer (remove only)
Garry's Mod
Google Chrome
Google Update Helper
Groove-Stream
Growl for Windows
Gyazo 1.0
Hardcore
Hotfix for Microsoft Visual C++ 2010 Express - ENU (KB2542054)
Hotfix for Microsoft Visual C++ 2010 Express - ENU (KB2635973)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2280741)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2284668)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2295689)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2420513)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2452649)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2455033)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2485545)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982517)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982721)
Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB983233)
IDT Audio
IL Download Manager
Impressive World
Imprudence 1.4.0 beta 2
IMVU Avatar Chat Software
Inkscape 0.48.2
Integrated Webcam Live! Central
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
iVIDI Plugin 1.3
Java 7 Update 45
Java Auto Updater
K-Lite Codec Pack 8.7.0 (Basic)
LAME v3.99.3 (for Windows)
Last.fm Scrobbler 2.1.33
LINE
LogMeIn
Magic ISO Maker v5.5 (build 0281)
Male Voice Pack
Malwarebytes Anti-Malware version 1.75.0.1300
Maxthon Cloud Browser
Microsoft .NET Framework 4 Multi-Targeting Pack
Microsoft Application Error Reporting
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Click-to-Run 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Home and Student 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Single Image 2010
Microsoft Office Word MUI (English) 2010
Microsoft SQL Server 2008 Browser
Microsoft SQL Server Compact 3.5 SP2 ENU
Microsoft VC9 runtime libraries
Microsoft Visual C++ Compilers 2010 Standard - enu - x86
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219
Microsoft Visual C++ 2010 Express - ENU
Microsoft Visual Studio 2010 Service Pack 1
Microsoft WSE 3.0 Runtime
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
Microsoft_VC90_MFCLOC_x86
Milkshake (remove only)
Mischief 1.08
MorphVOX Pro
Mozilla Firefox 23.0.1 (x86 en-US)
Mozilla Maintenance Service
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Naga Firmware Updater 1.13
Nero 10 Movie ThemePack Basic
Nero Blu-ray Player
Nero Control Center 10
Nero ControlCenter 10 Help (CHM)
Nero Core Components 10
Nero Update
NVIDIA PhysX
Overwolf
PaintTool SAI Ver.1
PC Pitstop Driver Alert2 2.0.0.0
PCSX2 - Playstation 2 Emulator
PDF Settings CS5
PDF Settings CS6
Pen Pad Driver with Macro Key Manager
Phoenix Viewer 1.5.2.1185
PhotoShowExpress
PirritSuggestor version 1.5
PoiZone
Portal
Power Presenter RE
PowerISO
Primal Carnage
PunkBuster Services
PxMergeModule
QuickTime
Razer Synapse 2.0
Roadkill1_1
Roxio Activation Module
Roxio BackOnTrack
Roxio Burn
Roxio Creator Starter
Roxio Express Labeler 3
Sakura
Sawer
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
Security Update for Microsoft Excel 2010 (KB2826033) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2826023) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2826035) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition
Security Update for Microsoft Outlook 2010 (KB2837597) 32-Bit Edition
SelectionLinks
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Singularity (remove only)
SingularityViewer (remove only)
Skype Click to Call
Skype™ 6.11
Snap.Do Engine
Sonic CinePlayer Decoder Pack
SPORE™
Spybot - Search & Destroy
Steam
SweetIM for Messenger 3.7
swMSM
SyncUP
TeamSpeak 3 Client
The Sims™ 3
The Sims™ 3 Supernatural
Toxic Biohazard
Unity Web Player
Universal Extractor 1.6.1
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition
Uplay
UVMapper Professional Demo 3.6c
Veoh Giraffic Video Accelerator
Veoh Web Player
VizUp Evaluation 4.6.8
Vizzed Retro Game Room
VLC media player 2.0.5
WebTablet FB Plugin 32 bit
WiHD Controller
Wings 3D 1.4.1
WinRAR 4.11 (32-bit)
Zip Motion Block Video codec (Remove Only)
.
==== Event Viewer Messages From Past Week ========
.
2/19/2014 10:58:47 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
2/18/2014 6:45:50 AM, Error: Service Control Manager [7022] - The PirritUpdater service hung on starting.
2/18/2014 6:45:26 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
2/18/2014 6:44:25 AM, Error: Service Control Manager [7000] - The PirritDesktop service failed to start due to the following error: The system cannot find the file specified.
2/18/2014 6:39:24 AM, Error: Service Control Manager [7034] - The PirritDesktop service terminated unexpectedly. It has done this 1 time(s).
2/18/2014 6:34:47 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.167.36.0).
2/18/2014 6:31:54 AM, Error: Service Control Manager [7030] - The PirritDesktop service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
2/18/2014 6:31:53 AM, Error: Service Control Manager [7034] - The PirritUpdater service terminated unexpectedly. It has done this 1 time(s).
2/18/2014 6:31:53 AM, Error: Service Control Manager [7030] - The PirritUpdater service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
2/18/2014 6:31:44 AM, Error: Microsoft-Windows-DNS-Client [1012] - There was an error while attempting to read the local hosts file.
.
==== End Of File ===========================
kmp90
Active Member
 
Posts: 4
Joined: February 16th, 2014, 2:28 pm
Advertisement
Register to Remove

Re: Hijacked webrowser, pirrit?

Unread postby nunped » February 23rd, 2014, 5:57 am

Hello kmp90, and welcome to the forum.

My name is nunped and I'll be helping you with any malware problems.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.

Here are some guidelines for the cleaning process to run as easy as possible.

  1. Please read this topic: ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.
  2. The instructions being given are for YOUR computer and system only! Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  3. You must have Administrator rights permissions for this computer.
  4. DO NOT run any other fix or removal tools unless instructed to do so!
  5. DO NOT install any other software (or hardware) during the cleaning process. This adds more items to be researched.
  6. Only post your problem at one help site. Applying fixes from multiple help sites can cause problems.
  7. Only reply to this thread. Do not start another thread.
  8. The absence of symptoms does not imply the absence of malware. Please continue responding until I give you the "All Clean".
  9. No Reply Within 3 Days will result in your topic being closed!


Read through these instructions with your full attention.
Please ask first if you have any doubts.

I am currently reviewing your logs and will return, as soon as possible, with additional instructions.
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Hijacked webrowser, pirrit?

Unread postby nunped » February 23rd, 2014, 6:19 am

Hi kmp90,

Warning!
You have P2P (Peer to Peer) File Sharing Programs installed on your computer.
uTorrent

As long as you have the P2P program installed, we won't offer you no further assistance. See Forum Policy

If you choose NOT to remove the program, indicate that in your next reply and this topic will be closed.

Else, uninstall the program and proceed to the next steps:
Step 1 - CKScanner
Please download CKScanner ... Save it to your desktop.
This program should only be run once!
Make sure that CKScanner.exe is on the your desktop before running the application!

  1. Right-click on the CKScanner.exe icon and select "Run as Administrator", then click the Search For Files button.
  2. When the scan is finished (the cursor hourglass disappears) click the Save List To File button.
    A text file will be created on your desktop named "ckfiles.txt"
  3. Click OK at the file saved message box. Double-click on the ckfiles.txt icon on your desktop.
  4. Please copy/paste the contents of ckfiles.txt in your next reply.

Step 2 - OTL
Please download OTL by Old Timer. Save it to your Desktop.
If you can't download the exe file, try these links:
http://oldtimer.geekstogo.com/OTL.com
http://oldtimer.geekstogo.com/OTL.scr
  • Right-click OTL.exe (or OTL.com or OTL.scr) and select "Run as Administrator" to launch the program.
  • Click the Scan All Users checkbox.
    Leave the remaining selections to the default settings.
  • Click on Run Scan at the top left hand corner.
  • When done, two Notepad files will open.
    • OTL.txt <-- Will be opened, maximized
    • Extras.txt <-- Will be minimized on task bar.
  • Please post the contents of both OTL.txt and Extras.txt files in your next reply.
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Hijacked webrowser, pirrit?

Unread postby Cypher » February 26th, 2014, 11:00 am

Due to a lack of response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 41 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware