I had a problem trying to run the program starting at step 5 (f:\frst64).
It would not run from here, so....
While still in Command Prompt I opened the program by going to computer, f-drive (where the download was stored) and opened and ran the program from there..
Here are the results: >>>>>>>>>>>>>>>>>
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-08-2013
Ran by SYSTEM on 02-09-2013 17:06:35
Running from F:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Recovery
The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Stage Remote] - C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe [2022976 2011-06-27] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-07-28] (Adobe Systems Incorporated)
HKLM\...\Run: [DellStage] - C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj [483424 2012-02-01] ()
HKLM-x32\...\Run: [IMSS] - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133400 2011-12-16] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [37960 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [1532992 2013-03-13] (McAfee, Inc.)
HKLM-x32\...\Run: [NeroLauncher] - C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe [66872 2011-12-31] ()
HKLM-x32\...\Run: [AccuWeatherWidget] - C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj [2835443 2012-02-01] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
==================== Services (Whitelisted) =================
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McAWFwk; c:\PROGRA~1\mcafee\msc\mcawfwk.exe [224704 2011-03-08] (McAfee, Inc.)
S2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [383608 2012-11-16] (McAfee, Inc.)
S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [241456 2013-02-19] (McAfee, Inc.)
S2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [218760 2013-02-19] (McAfee, Inc.)
S2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-02-19] (McAfee, Inc.)
S2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [73728 2012-02-07] (Atheros)
==================== Drivers (Whitelisted) ====================
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-02-19] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179280 2013-02-19] (McAfee, Inc.)
S3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [309840 2013-02-19] (McAfee, Inc.)
S3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [515968 2013-02-19] (McAfee, Inc.)
S0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [771536 2013-02-19] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106552 2013-02-19] (McAfee, Inc.)
S0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [340216 2013-02-19] (McAfee, Inc.)
S3 catchme; \??\C:\Combo-Fix.exe\catchme.sys [x]
S3 mfeavfk01; No ImagePath
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-08-29 20:48 - 2013-08-29 20:48 - 00000000 ____D C:\FRST
2013-08-28 15:21 - 2013-08-28 15:21 - 00001728 _____ C:\Users\Eagle AMDG\Downloads\aswMBR.txt 8282013.txt
2013-08-28 15:21 - 2013-08-28 15:21 - 00000512 _____ C:\Users\Eagle AMDG\Downloads\MBR.dat
2013-08-28 13:48 - 2013-08-28 15:18 - 04745728 _____ (AVAST Software) C:\Users\Eagle AMDG\Downloads\aswMBR(1).exe
2013-08-28 13:25 - 2013-08-28 13:25 - 00602112 _____ (OldTimer Tools) C:\Users\Eagle AMDG\Downloads\OTL(1).exe
2013-08-24 08:36 - 2013-08-24 08:36 - 00468481 _____ C:\Users\Eagle AMDG\Downloads\image0000001A (2).tif
2013-08-23 22:31 - 2013-08-23 22:31 - 00468481 _____ C:\Users\Eagle AMDG\Downloads\image0000001A (1).tif
2013-08-23 22:27 - 2013-08-23 22:27 - 00468481 _____ C:\Users\Eagle AMDG\Downloads\image0000001A.tif
2013-08-23 07:58 - 2013-08-23 07:58 - 00268264 _____ (Citrix Online) C:\Users\Eagle AMDG\Downloads\Citrix Online Launcher.exe
2013-08-23 07:42 - 2013-09-02 15:57 - 00388882 _____ C:\Windows\WindowsUpdate.log
2013-08-23 07:40 - 2013-08-29 21:29 - 00001522 _____ C:\Windows\setupact.log
2013-08-23 07:40 - 2013-08-23 07:40 - 00000000 _____ C:\Windows\setuperr.log
2013-08-23 06:48 - 2013-08-23 06:48 - 00000000 ___SD C:\Combo-Fix.exe
2013-08-21 10:16 - 2013-08-21 15:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-16 22:29 - 2013-08-16 22:29 - 00320089 _____ C:\Users\Eagle AMDG\Downloads\Alarm Quote - Ron Bell Bid
2013-08-15 06:32 - 2013-07-25 21:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-08-15 06:32 - 2013-07-25 21:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-08-15 06:32 - 2013-07-25 21:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-08-15 06:32 - 2013-07-25 21:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-08-15 06:32 - 2013-07-25 21:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-08-15 06:32 - 2013-07-25 19:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-08-15 06:32 - 2013-07-25 19:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-15 06:32 - 2013-07-25 19:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-15 06:32 - 2013-07-25 19:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-15 06:32 - 2013-07-25 19:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-15 06:32 - 2013-07-25 19:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-15 06:32 - 2013-07-25 19:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-15 06:32 - 2013-07-25 19:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-15 06:32 - 2013-07-25 19:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-15 06:32 - 2013-07-25 19:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-15 06:32 - 2013-07-25 19:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-15 06:32 - 2013-07-25 19:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-15 06:32 - 2013-07-25 19:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-15 06:32 - 2013-07-25 19:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-15 06:32 - 2013-07-25 18:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-15 06:32 - 2013-07-25 18:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-08-15 06:32 - 2013-07-25 17:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-14 07:34 - 2013-07-18 17:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\tzres.dll
2013-08-14 07:34 - 2013-07-18 17:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 07:33 - 2013-07-25 01:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL
2013-08-14 07:33 - 2013-07-25 00:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 07:33 - 2013-07-08 22:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-08-14 07:33 - 2013-07-08 21:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2013-08-14 07:33 - 2013-07-08 21:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\System32\wow64.dll
2013-08-14 07:33 - 2013-07-08 21:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2013-08-14 07:33 - 2013-07-08 21:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
2013-08-14 07:33 - 2013-07-08 21:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-08-14 07:33 - 2013-07-08 21:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-08-14 07:33 - 2013-07-08 21:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-08-14 07:33 - 2013-07-08 21:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 07:33 - 2013-07-08 21:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 07:33 - 2013-07-08 20:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 07:33 - 2013-07-08 20:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 07:33 - 2013-07-08 20:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 07:33 - 2013-07-08 20:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 07:33 - 2013-07-08 20:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 07:33 - 2013-07-08 20:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 07:33 - 2013-07-08 20:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 07:33 - 2013-07-08 18:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 07:33 - 2013-07-08 18:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 07:33 - 2013-07-08 18:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 07:33 - 2013-07-08 18:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 07:32 - 2013-07-05 22:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-08-14 07:32 - 2013-06-14 20:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tssecsrv.sys
2013-08-10 11:01 - 2013-08-10 11:06 - 00024581 _____ C:\Users\Eagle AMDG\Documents\Homes - Orangevale 2013.xlsx
2013-08-08 07:56 - 2013-08-08 07:56 - 00479679 _____ C:\Users\Eagle AMDG\Downloads\2012PrelimAnnUCR.zip
==================== One Month Modified Files and Folders =======
2013-09-02 15:57 - 2013-08-23 07:42 - 00388882 _____ C:\Windows\WindowsUpdate.log
2013-09-02 15:57 - 2012-10-11 07:47 - 00000000 ____D C:\Users\Eagle AMDG\AppData\Roaming\SoftGrid Client
2013-09-02 15:13 - 2012-11-10 23:42 - 00000906 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-02 15:11 - 2012-11-10 23:42 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-02 14:13 - 2012-11-10 23:42 - 00000902 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-02 13:58 - 2013-05-21 16:00 - 00003440 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2013-09-01 07:45 - 2009-07-13 20:45 - 00021296 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-01 07:45 - 2009-07-13 20:45 - 00021296 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-31 12:43 - 2013-01-29 14:14 - 00024232 _____ C:\Users\Eagle AMDG\Documents\Homes - Fair Oaks 95628 - 2013.ods
2013-08-29 21:49 - 2012-06-01 08:48 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2013-08-29 21:33 - 2009-07-13 21:13 - 00779788 _____ C:\Windows\System32\PerfStringBackup.INI
2013-08-29 21:29 - 2013-08-23 07:40 - 00001522 _____ C:\Windows\setupact.log
2013-08-29 21:29 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-29 20:48 - 2013-08-29 20:48 - 00000000 ____D C:\FRST
2013-08-29 07:51 - 2012-11-10 23:42 - 00002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-08-29 07:51 - 2012-11-10 23:42 - 00002185 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2013-08-28 15:21 - 2013-08-28 15:21 - 00001728 _____ C:\Users\Eagle AMDG\Downloads\aswMBR.txt 8282013.txt
2013-08-28 15:21 - 2013-08-28 15:21 - 00000512 _____ C:\Users\Eagle AMDG\Downloads\MBR.dat
2013-08-28 15:18 - 2013-08-28 13:48 - 04745728 _____ (AVAST Software) C:\Users\Eagle AMDG\Downloads\aswMBR(1).exe
2013-08-28 13:35 - 2013-01-04 10:14 - 00117920 _____ C:\Users\Eagle AMDG\Downloads\OTL.Txt
2013-08-28 13:25 - 2013-08-28 13:25 - 00602112 _____ (OldTimer Tools) C:\Users\Eagle AMDG\Downloads\OTL(1).exe
2013-08-27 23:22 - 2012-10-13 11:09 - 00017084 _____ C:\Users\Eagle AMDG\Documents\Word Among Us Reading.odt
2013-08-27 19:33 - 2013-01-04 23:51 - 00032386 _____ C:\Users\Eagle AMDG\Documents\Homes - Rancho 2013.xlsx
2013-08-27 12:06 - 2013-01-05 11:54 - 00027498 _____ C:\Users\Eagle AMDG\Documents\Homes - Citrus Heights - 2013.xlsx
2013-08-25 12:38 - 2012-10-25 13:18 - 00672943 _____ C:\Users\Eagle AMDG\Documents\Medjugorie Message.odt
2013-08-24 10:36 - 2012-10-13 11:23 - 00122272 _____ C:\Users\Eagle AMDG\Documents\Deck of Cards.odt
2013-08-24 08:36 - 2013-08-24 08:36 - 00468481 _____ C:\Users\Eagle AMDG\Downloads\image0000001A (2).tif
2013-08-23 22:31 - 2013-08-23 22:31 - 00468481 _____ C:\Users\Eagle AMDG\Downloads\image0000001A (1).tif
2013-08-23 22:27 - 2013-08-23 22:27 - 00468481 _____ C:\Users\Eagle AMDG\Downloads\image0000001A.tif
2013-08-23 07:58 - 2013-08-23 07:58 - 00268264 _____ (Citrix Online) C:\Users\Eagle AMDG\Downloads\Citrix Online Launcher.exe
2013-08-23 07:40 - 2013-08-23 07:40 - 00000000 _____ C:\Windows\setuperr.log
2013-08-23 07:27 - 2013-03-13 02:22 - 00000000 ____D C:\Windows\Minidump
2013-08-23 07:27 - 2011-02-10 06:02 - 00000000 ____D C:\Windows\panther
2013-08-23 06:48 - 2013-08-23 06:48 - 00000000 ___SD C:\Combo-Fix.exe
2013-08-23 06:48 - 2013-01-06 03:14 - 00000000 ____D C:\Qoobox
2013-08-23 06:46 - 2013-01-06 02:58 - 05111180 ____R (Swearware) C:\Users\Eagle AMDG\Desktop\Combo-Fix.exe.exe
2013-08-21 15:40 - 2013-01-12 00:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-21 15:40 - 2012-06-01 09:03 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-08-21 15:32 - 2013-08-21 10:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-20 13:11 - 2012-11-10 23:42 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-20 13:11 - 2012-06-01 08:29 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-20 13:11 - 2012-06-01 08:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-16 22:29 - 2013-08-16 22:29 - 00320089 _____ C:\Users\Eagle AMDG\Downloads\Alarm Quote - Ron Bell Bid
2013-08-15 09:51 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2013-08-13 09:20 - 2013-01-13 20:56 - 00029296 _____ C:\Users\Eagle AMDG\Documents\Homes - Roseville - 2013.ods
2013-08-10 11:06 - 2013-08-10 11:01 - 00024581 _____ C:\Users\Eagle AMDG\Documents\Homes - Orangevale 2013.xlsx
2013-08-08 07:56 - 2013-08-08 07:56 - 00479679 _____ C:\Users\Eagle AMDG\Downloads\2012PrelimAnnUCR.zip
==================== Known DLLs (Whitelisted) ================
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points =========================
Restore point made on: 2013-08-15 06:28:28
Restore point made on: 2013-08-23 00:13:55
Restore point made on: 2013-08-30 06:16:41
Restore point made on: 2013-09-02 15:47:11
Restore point made on: 2013-09-02 15:47:46
==================== Memory info ===========================
Percentage of memory in use: 11%
Total physical RAM: 6022.16 MB
Available physical RAM: 5332.56 MB
Total Pagefile: 6020.36 MB
Available Pagefile: 5328.68 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:911.66 GB) (Free:843.12 GB) NTFS
Drive f: () (Removable) (Total:14.53 GB) (Free:14.52 GB) FAT32
Drive g: (RECOVERY) (Fixed) (Total:19.81 GB) (Free:8.47 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 932 GB) (Disk ID: D303ABB4)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=912 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 15 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=15 GB) - (Type=0C)
LastRegBack: 2013-09-01 13:40
==================== End Of Log ============================
Did this work???
Thanks...