Jump to content

JORDAN8

Honorary Members
  • Posts

    31
  • Joined

  • Last visited

Reputation

0 Neutral

Recent Profile Visitors

719 profile views
  1. ??? I copied one folder to an external drive a few nights ago. Is this still from when I tried to use Windows Backup? If I click that icon: I disabled the Cannon IJ Network Scanner Selector EX. I'd delete it, but won't right now. It started itself when I installed software to use the printer in this house. I don't know what ControlCenter4 is. I used to keep stuff from infiltrating the system, but...probably when I started trying to get the important MS Updates that'd been missed.
  2. Hi - I need to check a few things on the list (e.g., I don't think I'm running antivirus unless Malwarebytes got something running, or Defender turned itself on). But, to your first 2 questions: NO. That was part of what made me start looking at things. I couldn't get a full back-up done of my files. I've gotten parts of them moved, at different times. I wanted to set up some sort of auto-backup, but the Windows Backup program wouldn't work at all. NO. I tried to use one a month or so ago, and there weren't ANY. I tried to create one, but it wouldn't work. I thought one of the scans I just did here made a Restore Point. I just looked, and there are still None. Oh, I found Windows Defender in the Control Panel, but...how do I turn it off?
  3. Okay. I deleted the one I knew about, then searched for *mb-support* (C: drive, all time). It found 3 more: mb-support-log.txt, mb-support.exe, mb-support.exe.Config in the Users\me\AppData\Local\Temp\mwb39EC.tmp\ folder. I deleted those 3 as well. I did a complete Shut-down. Then used a browser to download the MBST again (to the desktop). Closed EVERYTHING and ran the Tool. I had noticed the first time that the FRST portion seemed to take a long time. It seemed to take awhile again…~10 minutes (didn't watch the 1st time to know how long). I ran only "Gather Logs" (I did leave "Anonymously help the community..." checked). Well, this was weird. I clicked to attach the zip file ("choose files...") and it didn't show on the desktop. When I…"physically" went to the desktop (put it on the screen)…I could see it. I looked in Windows Explorer, and it didn't show as being on the desktop there, either. So I partial-minimized the browser window, and dragged the file to attach it. mbst-grab-results.zip
  4. I know these logs will tell you pretty much everything, but a bit of 'context': Yes, I'm still running Windows 7. Yes, it is 'behind' on several updates, including, I think, a couple of pretty important ones. I've tried a few times to get to where I can install all updates, but nothing's worked so far. Let's backup--the System was running fine until I started getting the BSOD--frequently--beginning in late Spring. That didn't start until I'd been trying to backup my files to an older, external HDD. It randomly failed (Windows Backup didn't work at all). At the time, it seemed to be linked to a USB problem. Anyway, the BSODs are usually a KERNEL_DATA_INPAGE_ERROR (STOP: 0x0000007A). I can't think of anything I changed around that time, except: attempting the backups I started using a Laptop Cooling Stand (plugged into a USB port) because the laptop had been running hot (a stop-gap step until I can buy & install a new fan). The stand's Fan has already stopped working. I bought an Asus brand (same as laptop) Bluetooth dongle (plugs into USB port), which never worked, and I haven't gotten back to fixing/troubleshooting it. The problems seem to revolve around: one or more of the USB ports, the laptop getting overheated, when I stream certain things (live TV), which seems to cause overheating, a problem w/ Windows Explorer and/or the Memory. Recently, the COM Surrogate program...was part of some problem that forced a shutdown. Then today the System kept locking up when I tried to access a folder with pics & vids that has been a problem for awhile. I decided something was probably corrupt in that folder, and tried running a couple scans (Malwarebytes, then AdwCleaner). The System started running VERY slow. Mbytes found 1 PUP, which was quarantined (DriverMax). AdwCleaner found 9 PUPs, and when it tried to quarantine them, it tossed up a BSOD of BAD_POOL_CALLER (STOP: 0xooooooC2). The System had been randomly locking up and shutting down before that (after I started trying to clean out that problematic folder). So I finally came to ask for some expert help. I have very little money, and can't buy a new System (or pay to upgrade Windows, and, I don't WANT an upgrade, I'd rather move to Lynux if I could figure that out). When I'm done trying to repair the money-pit of a house I was forced into, I was going to buy a new SSD (although the original drive still has plenty of room), and probably a bit more Memory. Again, I'm hoping those will get me 9-12 more months before I have to find the money for something newer. TIA for the help! Mbytes.Scan.SUMMARY_8-13-23_4.55pm.txt Mbytes.Scan_8.13.23_8.57pm.txt FRST.txt Addition.txt
  5. Sigh. I actually FIGURED the logs would show that everything was/is clean. AND YET...my mom keeps seeing those fake tech alerts. It was/is NOT just an issue with Malwarebytes. The title says "MBAM and other programs." NOTHING--NONE OF THE PROGRAMS--found a problem (just like in the other thread). And yet problems kept/keep happening. I did the steps recommended by someone else in the other thread. I see (when I got in here tonight) that all of that was deleted by the administrators, presumably after you asked them to look at the thread. I find it interesting that it appears you didn't ask an administrator to look at the thread because the problem wasn't getting resolved in spite of the OP doing everything you suggested, but that you asked an admin to look because someone else had accidentally posted some suggestions in violation of the rules. I also found it interesting that the OP on the other thread ALSO took the advice of that [evil and dangerous] newcomer (who was also looking for help with this exact problem). And it just might have resolved the OP's problem. But, like me, there's no way to tell immediately. Which leads right into... I'm still waiting to see if the evil suggestions might have resolved the problems of some sort of persistent-yet-hidden malware/virus. Because--JUST LIKE IN THE OTHER THREAD--the appearance of the malware/virus is SPORADIC and it can actually not appear for a week or longer. It may be some time before my mom and I know if those steps worked. You completely missed the point of the very long and detailed post I wrote out asking for some help. How did you miss that I ran all the "cleaning" programs twice, that the logs are from those sessions spent cleaning her system, and that I'm posting here asking for help because THE PROBLEM KEEPS HAPPENING??
  6. I found this other thread shortly after starting mine here. Ditch67 describes pretty much EXACTLY what is happening on my mom's computer. He/She is running Win10 and using Edge in addition to Chrome. And he/she doesn't mention seeing the MS Security Essentials fake popup. It was interesting, and a little frightening, to read thru that thread. Because Ditch67 was instructed to do the same things over and over yet nothing seemed to resolve the problem.
  7. Hi - This is a problem on my mom's laptop; I've been trying to help her. It seems to be, basically, the Fake MS Help Desk Tech Support Scam from 2016. I cleaned that off her system then, including following the steps from a 'remove tech support scam popups' blog (but it took more than just those). But I had info on that virus saved, which is why I say it's nearly the same thing. It was talked about here: https://www.bleepingcomputer.com/virus-removal/remove-microsoft-help-desk-tech-support-scam So she told me about this in May, and had been having the problem for...maybe a month or so. She mostly gets the screen with the MS Security Essentials 'castle,' but sometimes she'll get that bright orange screen. It locks up her system and she has to go into Task Manager to get out of it. So I ran some basic steps: AdwCleaner, Tweaking (because I always forget to backup the Registry first), MBAM, HitmanPro, Zemana. None of those seemed to find anything, so I did a restart of her laptop, then followed some other steps: Rkill, Tweaking (yup, again), MBAM, FRST. I didn't notice that anything seemed to "catch" anything. I thought it must have gotten it. But she let me know later that she was still getting the popups and her system was still being locked up. I ran more stuff a couple weeks after the first time. I didn't write down each step, but assume it was much the same, including an in-depth scan by MBAM that took several hours to run. Nothing was found. She was still having the problem. At that point, I thought maybe it wasn't on her computer but somewhere else. And there was all that stuff about routers. So I had her re-boot her router. I didn't have ALL the steps to be done for that, though, so a re-boot is all that was done. She says she usually gets it when she's playing Words with Friends in Facebook. But she doesn't do a lot else online--checks her email (yahoo), maybe reads a news article or 2, spends time on Facebook (much of that playing games there). I was on her computer (via TeamViewer) about a week ago, and played a game of Words with myself. I was hoping the problem would happen while I was "in," so I could see it and maybe get some more info on what was happening. Of course, it didn't. (She's also been having a big problem with Facebook--it will get really laggy/slow, then lock up. Almost always when she's playing Words. It did that to me when I was 'playing' myself. On my laptop, there was NO slowdown and no problems. She's got something/s that are constantly loading when she's in Facebook, and I found that was being discussed quite a bit by FB users about 3 years ago. I tried switching her to a different browser (the one I was using that didn't have a problem--Firefox), but she has the same problem. So I think this problem she's having is Facebook-specific, and that it's un-related to the popup scam virus problem. But I'm mentioning it just in case.) So now I don't know what to do. Web searches didn't show this to be a common problem any more, so I didn't find suggestions. I found what seemed to be a similar problem on this other thread here, but I didn't do any of the steps recommended there because...time to get some help before I completely mess something up. https://forums.malwarebytes.com/topic/231525-wmc-agent-folder-trojan-yelloader-will-not-disapppear/ I have FRST.txt, addition.txt, and MBAM scan results from both May 31, and June 22. I have Rkill.txt from 5-31. I grabbed some screenshots of Processes of all users from yesterday, when Facebook locked up. I'll attach the files from 6-22, but wait to be asked for anything else. (I also attached the 5-22 MBAM, because it DID find 36 PUP files at that time.) Please know that I'm trying to help her remotely. For the most part, that's been okay. (Although the last week or so, I had trouble connecting to her computer and got booted off of it a lot. I'm not sure what's going on with that--I know a virus could do that, but it's only happened recently, and I've been looking for the problem on her system for about 6 weeks now.) So it might take me a little extra time to complete any steps that are given. Thank you very much for any help you can offer! 5-31_MBAM scan results--36 PUP files.txt 6-22_MBAM scan results--No Threats Detected.txt FRST_6-22-18.txt Addition_6-22-18.txt
  8. Yes, I know this is an old thread. But it came up when I did a [general internet] search for "malwarebytes winsock repair". This result is the closest...although this discussion in the Win 10 forum directly addresses the issue: https://www.tenforums.com/software-apps/111111-malwarebytes-adwcleaner-basic-repair-question.html (Not a member there and not running Win 10 so I didn't respond.) Anyway, Metallica asked for instances, and I just had one. I'm not having problems w/ my computer, but was making a document about "repairing" some problems, and while doing that was getting the newest versions of many programs, and running them so I could accurately describe what someone might see. I ran AdwCleaner (it got the latest version--7.2.0). It didn't find anything (no threats), but it had what the OP described at the end--"You may optionally want to run a Basic Repair which will reset Winsock and other settings to their default values." I hesitated, but then--mostly because I thought I could trust Malwarebytes--I thought 'what the heck,' and let it run the Basic Repair. After the shutdown/reboot, it took quite a long time for Windows to start after I entered my password, and when it did open, there was an immediate "alert" in the corner. I didn't jot it down or get a screenshot of it, but if I remember correctly, it was something about Windows being unable to connect to the Event Service (??). Anyway, I had no Internet connection. Fortunately, I had run another program shortly before running AdwCleaner, and that program had created 2 Restore Points. I used one of them to fix the laptop. NO, I did not get any prompt that the computer needed another reboot to fix anything. Not from Malwarebytes or anything else. Since I'd just downloaded AdwCleaner v. 7.1.1.0 (which updated to v. 7.2.0 upon opening), and wasn't actually running it to fix a problem, all settings were still at their defaults. As TwinHeadedEagle noted, the loss of the Internet connection/s totally surprised me, and nearly threw me into a panic. I don't know much about OSs--I basically know how to look up info/help for a current problem. But I can't do that if I can't get online! Thankfully I remembered the Restore System option. And it worked. I'm not on too many forums, but wanted to let someone know about this, especially since a new version/build was JUST released. Let me know if you have any questions. I might have gotten screenshots of things--or noted things--that would give you an answer.
  9. okay, i ran both of those. they seemed to run fine. i guess everything's okay. after a full shutdown, my internet connection/s are wonky today. (and the cursor is a bit weird when typing online--e.g., i can't see the cursor here; i just assume that i really DID click in this box to type a reply. if i want to correct an error and use the arrow keys to move the cursor to it, i can't see the cursor and have no idea where i am in the text.) after running the 2 tools, i ran speedtest again and it was up to a whopping 4.4 download. (earlier, trying to "fix" it, i had a .6, a .4, and a 2.2.) but i had a similar problem not long ago, so it must be something here with the router, or with the laptop but not virus/malware related. i noticed that the MS Virtual WiFi Miniport Adapter is now on the system. it wasn't there before everything we did. but no one online is freaking out about it. (it's Disabled--installed itself that way, i guess. i haven't Enabled it yet) thank you for the explanation about Win Defender. (that's probably in that link, but i haven't gotten to it yet.) i was wondering if i had some sort of AV running, since that was present. i noticed the price for MBAM when i installed it on my sister's machine. i'll probably pick that up, as i can use it for the 3 computers then. can i ask what was wrong with my system? i mean, obviously the KeyLogger thing. but that seemed (to me) to be removed after the first couple steps. but something must have told you there were more problems. what were they? (if you answer, i'm only looking for a brief answer--nothing in-depth. i wouldn't understand it anyway.) thank you for all your time, help, and patience!!
  10. i hadn't bothered to turn on the security (which right now is only Win Firewall and Win Defender) because you noted that Security Check might need them turned off. curious, though, that the program found Firewall but not Defender. i haven't noticed anything other than the weird MS Word problems still. i'll spend some more time now on the computer to see if i notice anything else. i haven't noticed any "Key Logger" references on any of the logs i've scanned thru. i assume that was removed awhile back? i've been leery of paying some bills online. is it at bleepingComputer where they have "classes" to learn how to do this stuff? i saw something about learning how to help others with virus/malware removal somewhere. my sister said her computer was being weird (browser shutting itself down on its own), and i was there saturday night. she was running Avast, which kept saying stuff was doing something. i downloaded MBAM for her, and let it run. it found just over 2900 "problems" lol. i let it "fix" all of them. i haven't gotten a frantic phone call, so i assume she can still at least use her computer after that. i haven't read thru ALL of that info page you sent about computer security yet. thank you for pointing me to that! Security Check log: Results of screen317's Security Check version 1.006 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Windows Firewall Disabled! WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Adobe Flash Player 18.0.0.209 Adobe Reader XI Mozilla Firefox (39.0.3) Mozilla Thunderbird 31.6.0 Thunderbird out of Date! ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbam.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 1% ````````````````````End of Log``````````````````````
  11. sorry. i know these are really long. let me know if you want the other 2 MTB logs. here's the ESET log. that ran okay. i haven't done the Security Check yet. will do that later today. ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=10f1403cadbbb24c8720840c38843d4a # end=init # utc_time=2015-08-15 01:47:07 # local_time=2015-08-15 08:47:07 (-0600, Central Daylight Time) # country="United States" # osver=6.1.7601 NT Service Pack 1 Update Init Update Download esets_scanner_update returned -1 esets_gle=41221 Update Finalize Updated modules version: 0 Old modules - leave modules Update Init Update Download Update Finalize Updated modules version: 25292 ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=10f1403cadbbb24c8720840c38843d4a # end=init # utc_time=2015-08-17 01:54:12 # local_time=2015-08-17 08:54:12 (-0600, Central Daylight Time) # country="United States" # osver=6.1.7601 NT Service Pack 1 Update Init Update Download Update Finalize Updated modules version: 25313 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=10f1403cadbbb24c8720840c38843d4a # end=updated # utc_time=2015-08-17 01:56:04 # local_time=2015-08-17 08:56:04 (-0600, Central Daylight Time) # country="United States" # osver=6.1.7601 NT Service Pack 1 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7777 # api_version=3.1.1 # EOSSerial=10f1403cadbbb24c8720840c38843d4a # engine=25313 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2015-08-17 03:10:00 # local_time=2015-08-17 10:10:00 (-0600, Central Daylight Time) # country="United States" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode_1='' # compatibility_mode=5893 16776574 100 94 0 191367650 0 0 # scanned=172668 # found=10 # cleaned=10 # scan_time=4435 sh=8B47F8F9C0CB46B01F19259C99F08D57223581C9 ft=0 fh=0000000000000000 vn="multiple threats (deleted - quarantined)" ac=C fn="C:\Users\Diana\Desktop\July 30 - d.top\DeskTop June 17 2015\Computer Stuff\moms laptop\Ghost\Hirens.BootCD.15.2.zip" sh=13DDFA1862B74BDBBC06FC8766B36B9B73B25760 ft=1 fh=891ef6f01345cc13 vn="a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application (deleted - quarantined)" ac=C fn="C:\Users\Diana\Desktop\July 30 - d.top\DeskTop June 17 2015\from Red PNY flash\-1Original\electronic stuff\Magnavox M515\DVD info\SetupImgBurn_2.5.7.0.exe" sh=300628F86507C70ACD7BE3F09ADF54E81625F11E ft=1 fh=2f397753890bcb1f vn="a variant of Win32/Bunndle potentially unsafe application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Diana\Desktop\July 30 - d.top\DeskTop June 17 2015\from Red PNY flash\AUGUST 27\uTorrent\uTorrent.exe" sh=13DDFA1862B74BDBBC06FC8766B36B9B73B25760 ft=1 fh=891ef6f01345cc13 vn="a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application (deleted - quarantined)" ac=C fn="C:\Users\Diana\Desktop\July 30 - d.top\DeskTop June 17 2015\from Red PNY flash\ImgBurn\SetupImgBurn_2.5.7.0.exe" sh=39A296EC9235E69EB9CABF6EA9E92BBC879FF796 ft=1 fh=4d3826fb6865e106 vn="a variant of Win32/Bunndle potentially unsafe application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Diana\Desktop\July 30 - d.top\DeskTop June 17 2015\from Red PNY flash\NEW 7-26\uTorrent.exe" sh=13DDFA1862B74BDBBC06FC8766B36B9B73B25760 ft=1 fh=891ef6f01345cc13 vn="a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application (deleted - quarantined)" ac=C fn="C:\Users\Diana\Desktop\July 30 - d.top\DeskTop June 17 2015\old Asus\Old Data\from Red PNY flash\-1Original\electronic stuff\Magnavox M515\DVD info\SetupImgBurn_2.5.7.0.exe" sh=300628F86507C70ACD7BE3F09ADF54E81625F11E ft=1 fh=2f397753890bcb1f vn="a variant of Win32/Bunndle potentially unsafe application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Diana\Desktop\July 30 - d.top\DeskTop June 17 2015\old Asus\Old Data\from Red PNY flash\AUGUST 27\uTorrent\uTorrent.exe" sh=13DDFA1862B74BDBBC06FC8766B36B9B73B25760 ft=1 fh=891ef6f01345cc13 vn="a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application (deleted - quarantined)" ac=C fn="C:\Users\Diana\Desktop\July 30 - d.top\DeskTop June 17 2015\old Asus\Old Data\from Red PNY flash\ImgBurn\SetupImgBurn_2.5.7.0.exe" sh=39A296EC9235E69EB9CABF6EA9E92BBC879FF796 ft=1 fh=4d3826fb6865e106 vn="a variant of Win32/Bunndle potentially unsafe application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Diana\Desktop\July 30 - d.top\DeskTop June 17 2015\old Asus\Old Data\from Red PNY flash\NEW 7-26\uTorrent.exe" sh=AA7AFFCBDAF13C3872F32EACCF3BEFB92FD0FA80 ft=1 fh=02ff89afc7fa57e5 vn="Win32/Bundled.Toolbar.Google.D potentially unsafe application (deleted - quarantined)" ac=C fn="C:\Users\Diana\Desktop\WinUpdate fix AND PerfectKeyLogger\CCleaner\ccsetup508.exe"
  12. so, i ran MiniToolbox 1 time. realized i have 2 options for connecting and wasn't sure if that mattered. but there was a long time between the first run and when got back to it. so i ran it again with the internal card; then ran it a 3rd time with the external Netgear Genie (the 3rd time, i checked List Devices - Only Problems. the other 2 times i used List Devices - All.) i can't figure out how to add attachments here. i see others do that, but i can't figure it out, so i paste the log text in here. anyway, i'll just put the 1st MTB log text here. MiniToolBox by Farbar Version: 25-07-2015 01 Ran by Diana (administrator) on 16-08-2015 at 20:46:26 Running from "C:\Users\Diana\Desktop" Microsoft Windows 7 Home Premium Service Pack 1 (X64) Model: K55A Manufacturer: ASUSTeK COMPUTER INC. Boot Mode: Normal *************************************************************************** ========================= Flush DNS: =================================== Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========================= IE Proxy Settings: ============================== Proxy is not enabled. ProxyServer: localhost:8080 "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "network.proxy.type", 4 "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= 127.0.0.1 localhost ========================= IP Configuration: ================================ Atheros AR9485 Wireless Network Adapter = Wireless Network Connection (Connected) Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected) Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected) # ---------------------------------- # IPv4 Configuration # ---------------------------------- pushd interface ipv4 reset set global icmpredirects=enabled popd # End of IPv4 configuration Windows IP Configuration Host Name . . . . . . . . . . . . : Laptop Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : charterinternet.com Wireless LAN adapter Wireless Network Connection 2: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter Physical Address. . . . . . . . . : 66-6D-57-A6-37-77 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Wireless LAN adapter Wireless Network Connection: Connection-specific DNS Suffix . : charterinternet.com Description . . . . . . . . . . . : Atheros AR9485 Wireless Network Adapter Physical Address. . . . . . . . . : 44-6D-57-A6-37-77 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::1111:28e0:4071:4a25%12(Preferred) IPv4 Address. . . . . . . . . . . : 192.168.44.12(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Lease Obtained. . . . . . . . . . : Friday, August 14, 2015 5:32:24 AM Lease Expires . . . . . . . . . . : Sunday, August 23, 2015 8:30:29 PM Default Gateway . . . . . . . . . : 192.168.44.1 DHCP Server . . . . . . . . . . . : 192.168.44.1 DHCPv6 IAID . . . . . . . . . . . : 323251543 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-68-CE-A0-10-BF-48-28-F2-5F DNS Servers . . . . . . . . . . . : 71.10.216.1 71.10.216.2 NetBIOS over Tcpip. . . . . . . . : Enabled Ethernet adapter Local Area Connection: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller Physical Address. . . . . . . . . : 10-BF-48-28-F2-5F DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Tunnel adapter isatap.charterinternet.com: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : charterinternet.com Description . . . . . . . . . . . : Microsoft ISATAP Adapter Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter Reusable ISATAP Interface {C59E58E1-1672-4C89-BDF6-78411F35213F}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2 Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter isatap.{E2E738C3-F93B-4E27-8DE4-BCA7DBF0EEDB}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3 Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter Teredo Tunneling Pseudo-Interface: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter isatap.{89DEE88E-8F11-4DB6-AA47-4B4166EDE1D2}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4 Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Server: rns01.charter.com Address: 71.10.216.1 Name: google.com Addresses: 2607:f8b0:4009:80a::200e 216.58.216.206 Pinging google.com [216.58.216.238] with 32 bytes of data: Reply from 216.58.216.238: bytes=32 time=39ms TTL=51 Reply from 216.58.216.238: bytes=32 time=28ms TTL=51 Ping statistics for 216.58.216.238: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 28ms, Maximum = 39ms, Average = 33ms Server: rns01.charter.com Address: 71.10.216.1 Name: yahoo.com Addresses: 2001:4998:c:a06::2:4008 2001:4998:44:204::a7 2001:4998:58:c02::a9 98.139.183.24 206.190.36.45 98.138.253.109 Pinging yahoo.com [206.190.36.45] with 32 bytes of data: Reply from 206.190.36.45: bytes=32 time=81ms TTL=46 Reply from 206.190.36.45: bytes=32 time=85ms TTL=46 Ping statistics for 206.190.36.45: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 81ms, Maximum = 85ms, Average = 83ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms =========================================================================== Interface List 13...66 6d 57 a6 37 77 ......Microsoft Virtual WiFi Miniport Adapter 12...44 6d 57 a6 37 77 ......Atheros AR9485 Wireless Network Adapter 11...10 bf 48 28 f2 5f ......Realtek PCIe GBE Family Controller 1...........................Software Loopback Interface 1 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface 37...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4 =========================================================================== IPv4 Route Table =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.44.1 192.168.44.12 26 127.0.0.0 255.0.0.0 On-link 127.0.0.1 306 127.0.0.1 255.255.255.255 On-link 127.0.0.1 306 127.255.255.255 255.255.255.255 On-link 127.0.0.1 306 192.168.44.0 255.255.255.0 On-link 192.168.44.12 281 192.168.44.12 255.255.255.255 On-link 192.168.44.12 281 192.168.44.255 255.255.255.255 On-link 192.168.44.12 281 224.0.0.0 240.0.0.0 On-link 127.0.0.1 306 224.0.0.0 240.0.0.0 On-link 192.168.44.12 281 255.255.255.255 255.255.255.255 On-link 127.0.0.1 306 255.255.255.255 255.255.255.255 On-link 192.168.44.12 281 =========================================================================== Persistent Routes: None IPv6 Route Table =========================================================================== Active Routes: If Metric Network Destination Gateway 1 306 ::1/128 On-link 12 281 fe80::/64 On-link 12 281 fe80::1111:28e0:4071:4a25/128 On-link 1 306 ff00::/8 On-link 12 281 ff00::/8 On-link =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation) Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation) Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation) Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation) Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation) Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation) x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation) x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation) x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation) x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation) x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (08/15/2015 08:46:26 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (08/15/2015 08:46:18 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (08/14/2015 05:27:24 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/14/2015 05:08:50 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/14/2015 01:21:18 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/12/2015 01:42:10 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/11/2015 01:48:38 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/11/2015 01:38:46 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/11/2015 01:32:04 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/11/2015 01:03:06 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (08/16/2015 08:23:43 PM) (Source: DCOM) (User: ) Description: {995C996E-D918-4A8C-A302-45719A6F4EA7} Error: (08/15/2015 05:46:27 PM) (Source: DCOM) (User: ) Description: {995C996E-D918-4A8C-A302-45719A6F4EA7} Error: (08/15/2015 09:11:30 AM) (Source: Service Control Manager) (User: ) Description: The eapihdrv service failed to start due to the following error: %%1275 Error: (08/15/2015 09:11:30 AM) (Source: Application Popup) (User: ) Description: \??\C:\Users\Diana\AppData\Local\Temp\ehdrv.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver. Error: (08/15/2015 09:11:29 AM) (Source: Service Control Manager) (User: ) Description: The eapihdrv service failed to start due to the following error: %%1275 Error: (08/15/2015 09:11:29 AM) (Source: Application Popup) (User: ) Description: \??\C:\Users\Diana\AppData\Local\Temp\ehdrv.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver. Error: (08/15/2015 09:11:29 AM) (Source: Service Control Manager) (User: ) Description: The eapihdrv service failed to start due to the following error: %%1275 Error: (08/15/2015 09:11:29 AM) (Source: Application Popup) (User: ) Description: \??\C:\Users\Diana\AppData\Local\Temp\ehdrv.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver. Error: (08/15/2015 08:51:12 AM) (Source: Service Control Manager) (User: ) Description: The eapihdrv service failed to start due to the following error: %%1275 Error: (08/15/2015 08:51:12 AM) (Source: Application Popup) (User: ) Description: \??\C:\Users\Diana\AppData\Local\Temp\ehdrv.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver. Microsoft Office Sessions: ========================= Error: (08/15/2015 08:46:26 AM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\Diana\Desktop\WinUpdate fix AND PerfectKeyLogger\ESET Online Scanner\esetsmartinstaller_enu.exe Error: (08/15/2015 08:46:18 AM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\Diana\Desktop\WinUpdate fix AND PerfectKeyLogger\ESET Online Scanner\esetsmartinstaller_enu.exe Error: (08/14/2015 05:27:24 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/14/2015 05:08:50 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/14/2015 01:21:18 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/12/2015 01:42:10 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/11/2015 01:48:38 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/11/2015 01:38:46 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/11/2015 01:32:04 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/11/2015 01:03:06 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 CodeIntegrity Errors: =================================== Date: 2015-08-15 08:39:20.845 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-15 08:39:20.830 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-15 08:39:20.799 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-15 08:39:20.783 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-11 13:47:04.991 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-11 13:47:04.976 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-20 03:08:26.453 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\2417b62.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-05-20 03:08:26.413 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\2417b62.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. =========================== Installed Programs ============================ Adobe Digital Editions 3.0 (HKLM-x32\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated) Adobe Photoshop 5.5 (HKLM-x32\...\Adobe Photoshop 5.5) (Version: 5.5 - Adobe Systems, Inc.) Adobe Reader XI (11.0.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated) Agent Ransack x64 (HKLM\...\{FD8C1365-2229-4F37-A126-558DB2471CBE}) (Version: 7.0.828.1 - Mythicsoft Ltd) ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.25 - ASUS) calibre 64bit (HKLM\...\{4C296BF8-1A08-4C8D-A4B3-16FB6AECEF20}) (Version: 1.30.0 - Kovid Goyal) Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.4.0.0 - SEIKO EPSON CORPORATION) Epson Event Manager (HKLM-x32\...\{44F72193-F59C-4303-BAE8-E3E4BC1C122C}) (Version: 3.01.0003 - Seiko Epson Corporation) Epson E-Web Print (HKLM-x32\...\{E904F572-D7DB-43C1-929F-043F267FC77D}) (Version: 1.22.0000 - SEIKO EPSON CORPORATION) Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.46.00 - SEIKO EPSON CORPORATION) Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - ) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPSON XP-800 Series Printer Uninstall (HKLM\...\EPSON XP-800 Series) (Version: - SEIKO EPSON Corporation) EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION) ERUNT 1.1j (HKLM-x32\...\ERUNT_is1) (Version: - Lars Hederer) ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.) Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation) Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation) Intel® PROSet/Wireless for Bluetooth® + High Speed (HKLM\...\{2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}) (Version: 15.0.0.0083 - Intel Corporation) Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{3015F546-6C3E-4E6A-B564-BCDF88C0BA2A}) (Version: 2.1.1.0153 - Intel Corporation) Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation) Intel® PROSet/Wireless WiFi Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0708 - Intel Corporation) Kobo (HKLM-x32\...\Kobo) (Version: /Qt-5.2.0 - Kobo Inc.) Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office 2000 SR-1 Premium (HKLM-x32\...\{00000409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.9327 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Mozilla Firefox 39.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 en-US)) (Version: 39.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla) Mozilla Thunderbird 31.6.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 31.6.0 (x86 en-US)) (Version: 31.6.0 - Mozilla) NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.4.12.00 - NETGEAR Inc.) NETGEAR WNA1100 N150 Wireless USB Adapter (HKLM-x32\...\{A2AE9709-283B-4B48-AA34-729C070A62FB}) (Version: 1.0.0.133 - NETGEAR) OpenOffice 4.0.1 (HKLM-x32\...\{47F460DA-D1BE-4D85-8DF2-AA1F31D3445F}) (Version: 4.01.9714 - Apache Software Foundation) Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek) Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.27015 - Realtek Semiconductor Corp.) SnagIt 6 (HKLM-x32\...\SnagIt6) (Version: 6.1 - TechSmith Corporation) Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45471 - TeamViewer) VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN) Windows Resource Kit Tools - SubInAcl.exe (HKLM-x32\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation) ========================= Devices: ================================ Name: Generic volume Description: Generic volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volsnap Device ID: STORAGE\VOLUME\_??_USBSTOR#DISK&VEN_SANDISK&PROD_&REV_1.26#4C532000010607115363&0#{53F56307-B6BF-11D0-94F2-00A0C91EFB8B} Name: Microsoft ACPI-Compliant Embedded Controller Description: Microsoft ACPI-Compliant Embedded Controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C09\4&2D894E00&0 Name: HID-compliant mouse Description: HID-compliant mouse Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: mouhid Device ID: HID\VID_046D&PID_C52F&MI_00\7&6A11A88&0&0000 Name: NETBT Description: NETBT Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NetBT Device ID: ROOT\LEGACY_NETBT\0000 Name: Intel® Core i5-3210M CPU @ 2.50GHz Description: Intel Processor Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65} Manufacturer: Intel Service: intelppm Device ID: ACPI\GENUINEINTEL_-_INTEL64_FAMILY_6_MODEL_58_-________INTEL®_CORE_I5-3210M_CPU_@_2.50GHZ\_4 Name: TCP/IP Protocol Driver Description: TCP/IP Protocol Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Tcpip Device ID: ROOT\LEGACY_TCPIP\0000 Name: WAN Miniport (PPPOE) Description: WAN Miniport (PPPOE) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: RasPppoe Device ID: ROOT\MS_PPPOEMINIPORT\0000 Name: KSecDD Description: KSecDD Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: KSecDD Device ID: ROOT\LEGACY_KSECDD\0000 Name: Microsoft ACPI-Compliant Control Method Battery Description: Microsoft ACPI-Compliant Control Method Battery Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a} Manufacturer: Microsoft Service: CmBatt Device ID: ACPI\PNP0C0A\0 Name: Generic volume Description: Generic volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volsnap Device ID: STORAGE\VOLUME\{8AA291C0-7E45-11E3-A547-806E6F6E6963}#0000000000100000 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT4 Name: TCP/IP Registry Compatibility Description: TCP/IP Registry Compatibility Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: tcpipreg Device ID: ROOT\LEGACY_TCPIPREG\0000 Name: TSSTcorp CDDVDW SN-208BB ATA Device Description: CD-ROM Drive Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard CD-ROM drives) Service: cdrom Device ID: IDE\CDROMTSSTCORP_CDDVDW_SN-208BB________________AS01____\5&2C79AD1F&0&2.0.0 Name: ACPI Lid Description: ACPI Lid Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C0D\2&DABA3FF&2 Name: WAN Miniport (PPTP) Description: WAN Miniport (PPTP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: PptpMiniport Device ID: ROOT\MS_PPTPMINIPORT\0000 Name: Intel® 7 Series/C216 Chipset Family SATA AHCI Controller - 1E03 Description: Intel® 7 Series/C216 Chipset Family SATA AHCI Controller - 1E03 Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: msahci Device ID: PCI\VEN_8086&DEV_1E03&SUBSYS_14571043&REV_04\3&11583659&0&FA Name: KSecPkg Description: KSecPkg Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: KSecPkg Device ID: ROOT\LEGACY_KSECPKG\0000 Name: Intel® USB 3.0 eXtensible Host Controller Description: Intel® USB 3.0 eXtensible Host Controller Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel® Corporation Service: iusb3xhc Device ID: PCI\VEN_8086&DEV_1E31&SUBSYS_14571043&REV_04\3&11583659&0&A0 Name: NSI proxy service driver. Description: NSI proxy service driver. Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: nsiproxy Device ID: ROOT\LEGACY_NSIPROXY\0000 Name: Ancillary Function Driver for Winsock Description: Ancillary Function Driver for Winsock Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: AFD Device ID: ROOT\LEGACY_AFD\0000 Name: NetIO Legacy TDI Support Driver Description: NetIO Legacy TDI Support Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: tdx Device ID: ROOT\LEGACY_TDX\0000 Name: ACPI Sleep Button Description: ACPI Sleep Button Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C0E\2&DABA3FF&2 Name: WAN Miniport (SSTP) Description: WAN Miniport (SSTP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: RasSstp Device ID: ROOT\MS_SSTPMINIPORT\0000 Name: Link-Layer Topology Discovery Mapper I/O Driver Description: Link-Layer Topology Discovery Mapper I/O Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: lltdio Device ID: ROOT\LEGACY_LLTDIO\0000 Name: Generic USB Hub Description: Generic USB Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Generic USB Hub) Service: usbhub Device ID: USB\VID_8087&PID_0024\5&1A9F44E1&0&1 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT5 Name: IDE Channel Description: IDE Channel Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: atapi Device ID: ROOT\LEGACY_ATAPI\0000 Name: E:\ Description: Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: SanDisk Service: WUDFRd Device ID: WPDBUSENUMROOT\UMB\2&37C186B&0&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_SANDISK&PROD_&REV_1.26#4C532000010607115363&0# Name: Microsoft Windows Management Interface for ACPI Description: Microsoft Windows Management Interface for ACPI Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: WmiAcpi Device ID: ACPI\PNP0C14\ATK Name: Terminal Server Keyboard Driver Description: Terminal Server Keyboard Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: TermDD Device ID: ROOT\RDP_KBD\0000 Name: Generic volume Description: Generic volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volsnap Device ID: STORAGE\VOLUME\{8AA291C0-7E45-11E3-A547-806E6F6E6963}#0000000006500000 Name: Null Description: Null Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Null Device ID: ROOT\LEGACY_NULL\0000 Name: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 1 - 1E10 Description: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 1 - 1E10 Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: pci Device ID: PCI\VEN_8086&DEV_1E10&SUBSYS_14571043&REV_C4\3&11583659&0&E0 Name: Intel® Management Engine Interface Description: Intel® Management Engine Interface Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: MEIx64 Device ID: PCI\VEN_8086&DEV_1E3A&SUBSYS_14571043&REV_04\3&11583659&0&B0 Name: Intel® 82802 Firmware Hub Device Description: Intel® 82802 Firmware Hub Device Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Device ID: ACPI\INT0800\4&2D894E00&0 Name: VgaSave Description: VgaSave Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: VgaSave Device ID: ROOT\LEGACY_VGASAVE\0000 Name: Beep Description: Beep Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Beep Device ID: ROOT\LEGACY_BEEP\0000 Name: Generic USB Hub Description: Generic USB Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Generic USB Hub) Service: usbhub Device ID: USB\VID_8087&PID_0024\5&1C308B7C&0&1 Name: ACPI Thermal Zone Description: ACPI Thermal Zone Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\THERMALZONE\THRM Name: Terminal Server Mouse Driver Description: Terminal Server Mouse Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: TermDD Device ID: ROOT\RDP_MOU\0000 Name: WDC WD5000BPKX-22HPJT0 ATA Device Description: Disk drive Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard disk drives) Service: disk Device ID: IDE\DISKWDC_WD5000BPKX-22HPJT0__________________01.01A01\5&7064BD5&0&0.0.0 Name: Microsoft AC Adapter Description: Microsoft AC Adapter Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a} Manufacturer: Microsoft Service: CmBatt Device ID: ACPI\ACPI0003\3&11583659&0 Name: Performance Counters for Windows Driver Description: Performance Counters for Windows Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: pcw Device ID: ROOT\LEGACY_PCW\0000 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT6 Name: SanDisk USB Device Description: Disk drive Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard disk drives) Service: disk Device ID: USBSTOR\DISK&VEN_SANDISK&PROD_&REV_1.26\4C532000010607115363&0 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\INT340E\2&DABA3FF&2 Name: Plug and Play Software Device Enumerator Description: Plug and Play Software Device Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: swenum Device ID: ROOT\SYSTEM\0000 Name: Dynamic Volume Manager Description: Dynamic Volume Manager Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: volmgrx Device ID: ROOT\LEGACY_VOLMGRX\0000 Name: Microsoft ACPI-Compliant System Description: Microsoft ACPI-Compliant System Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: ACPI Device ID: ACPI_HAL\PNP0C08\0 Name: PEAUTH Description: PEAUTH Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: PEAUTH Device ID: ROOT\LEGACY_PEAUTH\0000 Name: ELAN PS/2 Port Smart-Pad Description: ELAN PS/2 Port Smart-Pad Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: ELAN Service: i8042prt Device ID: ACPI\ETD0108\4&2D894E00&0 Name: Microsoft ISATAP Adapter #4 Description: Microsoft ISATAP Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Device ID: ROOT\*ISATAP\0003 Name: HID-compliant consumer control device Description: HID-compliant consumer control device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: Microsoft Service: Device ID: HID\VID_046D&PID_C52F&MI_01&COL01\7&2A78584A&0&0000 Name: UMBus Root Bus Enumerator Description: UMBus Root Bus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: umbus Device ID: ROOT\UMBUS\0000 Name: Mount Point Manager Description: Mount Point Manager Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mountmgr Device ID: ROOT\LEGACY_MOUNTMGR\0000 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\INT3F0D\4&2D894E00&0 Name: Storage volumes Description: Storage volumes Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: volsnap Device ID: ROOT\LEGACY_VOLSNAP\0000 Name: USB Composite Device Description: USB Composite Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbccgp Device ID: USB\VID_046D&PID_C52F\5&F3C7769&0&3 Name: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 2 - 1E12 Description: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 2 - 1E12 Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: pci Device ID: PCI\VEN_8086&DEV_1E12&SUBSYS_14571043&REV_C4\3&11583659&0&E1 Name: Intel® HM76 Express Chipset LPC Controller - 1E59 Description: Intel® HM76 Express Chipset LPC Controller - 1E59 Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: msisadrv Device ID: PCI\VEN_8086&DEV_1E59&SUBSYS_14571043&REV_04\3&11583659&0&F8 Name: USB Composite Device Description: USB Composite Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbccgp Device ID: USB\VID_058F&PID_A014\6&27991FEB&0&3 Name: Generic volume Description: Generic volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volsnap Device ID: STORAGE\VOLUME\{8AA291C0-7E45-11E3-A547-806E6F6E6963}#000000000E500000 Name: Microsoft Virtual Drive Enumerator Driver Description: Microsoft Virtual Drive Enumerator Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: vdrvroot Device ID: ROOT\VDRVROOT\0000 Name: ACPI Fixed Feature Button Description: ACPI Fixed Feature Button Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\FIXEDBUTTON\2&DABA3FF&2 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT7 Name: Windows Firewall Authorization Driver Description: Windows Firewall Authorization Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mpsdrv Device ID: ROOT\LEGACY_MPSDRV\0000 Name: Common Log (CLFS) Description: Common Log (CLFS) Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: CLFS Device ID: ROOT\LEGACY_CLFS\0000 Name: Programmable interrupt controller Description: Programmable interrupt controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0000\4&2D894E00&0 Name: Virtual WiFi Filter Driver Description: Virtual WiFi Filter Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: VWiFiFlt Device ID: ROOT\LEGACY_VWIFIFLT\0000 Name: Intel® USB 3.0 Root Hub Description: Intel® USB 3.0 Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel® Corporation Service: iusb3hub Device ID: IUSB3\ROOT_HUB30\4&1B383070&0 Name: Volume Manager Description: Volume Manager Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: volmgr Device ID: ROOT\VOLMGR\0000 Name: QoS Packet Scheduler Description: QoS Packet Scheduler Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Psched Device ID: ROOT\LEGACY_PSCHED\0000 Name: Generic PnP Monitor Description: Generic PnP Monitor Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard monitor types) Service: monitor Device ID: DISPLAY\SEC324A\4&1A4D0E70&0&UID67568640 Name: CNG Description: CNG Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: CNG Device ID: ROOT\LEGACY_CNG\0000 Name: Intel® Core i5-3210M CPU @ 2.50GHz Description: Intel Processor Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65} Manufacturer: Intel Service: intelppm Device ID: ACPI\GENUINEINTEL_-_INTEL64_FAMILY_6_MODEL_58_-________INTEL®_CORE_I5-3210M_CPU_@_2.50GHZ\_1 Name: ASUS USB2.0 WebCam Description: USB Video Device Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: usbvideo Device ID: USB\VID_058F&PID_A014&MI_00\7&2D6E2D62&0&0000 Name: System timer Description: System timer Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0100\4&2D894E00&0 Name: Remote Access IPv6 ARP Driver Description: Remote Access IPv6 ARP Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Wanarpv6 Device ID: ROOT\LEGACY_WANARPV6\0000 Name: Realtek PCIE CardReader Description: Realtek PCIE CardReader Class Guid: {4d36e970-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Semiconduct Corp. Service: RSBASTOR Device ID: PCI\VEN_10EC&DEV_5289&SUBSYS_14571043&REV_01\4&23236B67&0&00E3 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT8 Name: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 4 - 1E16 Description: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 4 - 1E16 Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: pci Device ID: PCI\VEN_8086&DEV_1E16&SUBSYS_14571043&REV_C4\3&11583659&0&E3 Name: ATA Channel 0 Description: IDE Channel Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard IDE ATA/ATAPI controllers) Service: atapi Device ID: PCIIDE\IDECHANNEL\4&15F38412&0&0 Name: High precision event timer Description: High precision event timer Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0103\0 Name: Kernel Mode Driver Frameworks service Description: Kernel Mode Driver Frameworks service Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Wdf01000 Device ID: ROOT\LEGACY_WDF01000\0000 Name: High Definition Audio Device Description: High Definition Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HdAudAddService Device ID: HDAUDIO\FUNC_01&VEN_10EC&DEV_0270&SUBSYS_10431457&REV_1001\4&2C8D18D6&0&0001 Name: RDPCDD Description: RDPCDD Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: RDPCDD Device ID: ROOT\LEGACY_RDPCDD\0000 Name: System Attribute Cache Description: System Attribute Cache Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: discache Device ID: ROOT\LEGACY_DISCACHE\0000 Name: Direct memory access controller Description: Direct memory access controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0200\4&2D894E00&0 Name: ATA Channel 2 Description: IDE Channel Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard IDE ATA/ATAPI controllers) Service: atapi Device ID: PCIIDE\IDECHANNEL\4&15F38412&0&2 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT9 Name: WFP Lightweight Filter Description: WFP Lightweight Filter Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: WfpLwf Device ID: ROOT\LEGACY_WFPLWF\0000 Name: RDP Encoder Mirror Driver Description: RDP Encoder Mirror Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: RDPENCDD Device ID: ROOT\LEGACY_RDPENCDD\0000 Name: LDDM Graphics Subsystem Description: LDDM Graphics Subsystem Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: DXGKrnl Device ID: ROOT\LEGACY_DXGKRNL\0000 Name: Realtek PCIe GBE Family Controller Description: Realtek PCIe GBE Family Controller Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Service: RTL8167 Device ID: PCI\VEN_10EC&DEV_8168&SUBSYS_14571043&REV_0A\69792722684CE00002 Name: Standard PS/2 Keyboard Description: Standard PS/2 Keyboard Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard keyboards) Service: i8042prt Device ID: ACPI\PNP0303\4&2D894E00&0 Name: High Definition Audio Controller Description: High Definition Audio Controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HDAudBus Device ID: PCI\VEN_8086&DEV_1E20&SUBSYS_14571043&REV_04\3&11583659&0&D8 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT10 Name: USB Input Device Description: USB Input Device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: HidUsb Device ID: USB\VID_046D&PID_C52F&MI_00\6&2767CCAC&0&0000 Name: Winsock IFS Driver Description: Winsock IFS Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ws2ifsl Device ID: ROOT\LEGACY_WS2IFSL\0000 Name: Microsoft ISATAP Adapter Description: Microsoft ISATAP Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Device ID: ROOT\*ISATAP\0000 Name: Reflector Display Driver used to gain access to graphics data Description: Reflector Display Driver used to gain access to graphics data Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: RDPREFMP Device ID: ROOT\LEGACY_RDPREFMP\0000 Name: Intel® Core i5-3210M CPU @ 2.50GHz Description: Intel Processor Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65} Manufacturer: Intel Service: intelppm Device ID: ACPI\GENUINEINTEL_-_INTEL64_FAMILY_6_MODEL_58_-________INTEL®_CORE_I5-3210M_CPU_@_2.50GHZ\_2 Name: HID-compliant device Description: HID-compliant device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Device ID: HID\VID_046D&PID_C52F&MI_01&COL02\7&2A78584A&0&0001 Name: msisadrv Description: msisadrv Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: msisadrv Device ID: ROOT\LEGACY_MSISADRV\0000 Name: PCI bus Description: PCI bus Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: pci Device ID: ACPI\PNP0A08\0 Name: Microsoft ISATAP Adapter #2 Description: Microsoft ISATAP Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Device ID: ROOT\*ISATAP\0001 Name: Intel® Display Audio Description: Intel® Display Audio Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Intel® Corporation Service: IntcDAud Device ID: HDAUDIO\FUNC_01&VEN_8086&DEV_2806&SUBSYS_80860101&REV_1000\4&2C8D18D6&0&0301 Name: User Mode Driver Frameworks Platform Driver Description: User Mode Driver Frameworks Platform Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: WudfPf Device ID: ROOT\LEGACY_WUDFPF\0000 Name: Link-Layer Topology Discovery Responder Description: Link-Layer Topology Discovery Responder Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: rspndr Device ID: ROOT\LEGACY_RSPNDR\0000 Name: System CMOS/real time clock Description: System CMOS/real time clock Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0B00\4&2D894E00&0 Name: Microsoft ISATAP Adapter #3 Description: Microsoft ISATAP Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Device ID: ROOT\*ISATAP\0002 Name: Microsoft System Management BIOS Driver Description: Microsoft System Management BIOS Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: mssmbios Device ID: ROOT\MSSMBIOS\0000 Name: Atheros AR9485 Wireless Network Adapter Description: Atheros AR9485 Wireless Network Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Atheros Communications Inc. Service: athr Device ID: PCI\VEN_168C&DEV_0032&SUBSYS_662711AD&REV_01\4&ADD75C4&0&00E1 Name: Intel® 7 Series/C216 Chipset Family SMBus Host Controller - 1E22 Description: Intel® 7 Series/C216 Chipset Family SMBus Host Controller - 1E22 Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Device ID: PCI\VEN_8086&DEV_1E22&SUBSYS_14571043&REV_04\3&11583659&0&FB Name: General NDIS Protocol Driver Description: General NDIS Protocol Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: SCMNdisP Device ID: ROOT\LEGACY_SCMNDISP\0000 Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Device ID: ROOT\*TEREDO\0000 Name: System board Description: System board Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C01\1 Name: NativeWiFi Filter Description: NativeWiFi Filter Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NativeWifiP Device ID: ROOT\LEGACY_NATIVEWIFIP\0000 Name: UMBus Enumerator Description: UMBus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: umbus Device ID: UMB\UMB\1&841921D&0&PRINTERBUSENUMERATOR Name: WAN Miniport (IKEv2) Description: WAN Miniport (IKEv2) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: RasAgileVpn Device ID: ROOT\MS_AGILEVPNMINIPORT\0000 Name: System board Description: System board Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C01\2 Name: ACPI x64-based PC Description: ACPI x64-based PC Class Guid: {4d36e966-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard computers) Service: \Driver\ACPI_HAL Device ID: ROOT\ACPI_HAL\0000 Name: USB Mass Storage Device Description: USB Mass Storage Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Compatible USB storage device Service: USBSTOR Device ID: USB\VID_0781&PID_5576\4C532000010607115363 Name: Security Driver Description: Security Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: secdrv Device ID: ROOT\LEGACY_SECDRV\0000 Name: NDIS System Driver Description: NDIS System Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NDIS Device ID: ROOT\LEGACY_NDIS\0000 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C02\1 Name: Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter Description: Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter Class Guid: {dad27e18-2598-4484-98b0-5dba8e007f6a} Manufacturer: Intel Corporation Service: AMPPAL Device ID: ROOT\AMPPAL\0000 Name: WAN Miniport (L2TP) Description: WAN Miniport (L2TP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: Rasl2tp Device ID: ROOT\MS_L2TPMINIPORT\0000 Name: Intel® Core i5-3210M CPU @ 2.50GHz Description: Intel Processor Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65} Manufacturer: Intel Service: intelppm Device ID: ACPI\GENUINEINTEL_-_INTEL64_FAMILY_6_MODEL_58_-________INTEL®_CORE_I5-3210M_CPU_@_2.50GHZ\_3 Name: Security Processor Loader Driver Description: Security Processor Loader Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: spldr Device ID: ROOT\LEGACY_SPLDR\0000 Name: UMBus Enumerator Description: UMBus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: umbus Device ID: UMB\UMB\1&841921D&0&WPDBUSENUMROOT Name: Bitlocker Drive Encryption Filter Driver Description: Bitlocker Drive Encryption Filter Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: fvevol Device ID: ROOT\LEGACY_FVEVOL\0000 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C02\10 Name: 3rd Gen Core processor DRAM Controller - 0154 Description: 3rd Gen Core processor DRAM Controller - 0154 Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Device ID: PCI\VEN_8086&DEV_0154&SUBSYS_14571043&REV_09\3&11583659&0&00 Name: NDIS Usermode I/O Protocol Description: NDIS Usermode I/O Protocol Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Ndisuio Device ID: ROOT\LEGACY_NDISUIO\0000 Name: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E26 Description: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E26 Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel Service: usbehci Device ID: PCI\VEN_8086&DEV_1E26&SUBSYS_14571043&REV_04\3&11583659&0&E8 Name: File as Volume Driver Description: File as Volume Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: blbdrive Device ID: ROOT\BLBDRIVE\0000 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C02\2 Name: WAN Miniport (Network Monitor) Description: WAN Miniport (Network Monitor) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Device ID: ROOT\MS_NDISWANBH\0000 Name: USB Input Device Description: USB Input Device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: HidUsb Device ID: USB\VID_046D&PID_C52F&MI_01\6&2767CCAC&0&0001 Name: HTTP Description: HTTP Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: HTTP Device ID: ROOT\LEGACY_HTTP\0000 Name: Composite Bus Enumerator Description: Composite Bus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: CompositeBus Device ID: ROOT\COMPOSITEBUS\0000 Name: NDProxy Description: NDProxy Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NDProxy Device ID: ROOT\LEGACY_NDPROXY\0000 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C02\9 Name: USB Root Hub Description: USB Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Device ID: USB\ROOT_HUB20\4&348BAABE&0 Name: Microsoft Virtual WiFi Miniport Adapter Description: Microsoft Virtual WiFi Miniport Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vwifimp Device ID: {5D624F94-8850-40C3-A3FA-A4FD2080BAF3}\VWIFIMP\5&25F56EAC&0&01 Name: WAN Miniport (IP) Description: WAN Miniport (IP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Device ID: ROOT\MS_NDISWANIP\0000 Name: Hardware Policy Driver Description: Hardware Policy Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: hwpolicy Device ID: ROOT\LEGACY_HWPOLICY\0000 Name: Numeric data processor Description: Numeric data processor Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C04\4&2D894E00&0 Name: Microsoft Composite Battery Description: Microsoft Composite Battery Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a} Manufacturer: Microsoft Service: Compbatt Device ID: ROOT\COMPOSITE_BATTERY\0000 Name: HID-compliant device Description: HID-compliant device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Device ID: HID\VID_046D&PID_C52F&MI_01&COL03\7&2A78584A&0&0002 Name: Intel® HD Graphics 4000 Description: Intel® HD Graphics 4000 Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Corporation Service: igfx Device ID: PCI\VEN_8086&DEV_0166&SUBSYS_21021043&REV_09\3&11583659&0&10 Name: USB Root Hub Description: USB Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Device ID: USB\ROOT_HUB20\4&39982804&0 Name: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E2D Description: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E2D Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel Service: usbehci Device ID: PCI\VEN_8086&DEV_1E2D&SUBSYS_14571043&REV_04\3&11583659&0&D0 Name: WAN Miniport (IPv6) Description: WAN Miniport (IPv6) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Device ID: ROOT\MS_NDISWANIPV6\0000 Name: JumpStart Wireless Filter Driver Description: JumpStart Wireless Filter Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: JSWPSLWF Device ID: ROOT\LEGACY_JSWPSLWF\0000 ========================= Memory info: =================================== Percentage of memory in use: 32% Total physical RAM: 3981.91 MB Available physical RAM: 2690.55 MB Total Virtual: 7962.02 MB Available Virtual: 6709.39 MB ========================= Partitions: ===================================== 1 Drive c: () (Fixed) (Total:465.54 GB) (Free:382.92 GB) NTFS 3 Drive e: () (Removable) (Total:14.9 GB) (Free:2.4 GB) FAT32 ========================= Users: ======================================== User accounts for \\LAPTOP Administrator Diana Guest ========================= Minidump Files ================================== C:\Windows\Minidump\012515-28548-01.dmp C:\Windows\Minidump\012715-22885-01.dmp C:\Windows\Minidump\070415-27378-01.dmp C:\Windows\Minidump\072715-28236-01.dmp ========================= Restore Points ================================== 02-08-2015 02:48:48 JRT Pre-Junkware Removal 02-08-2015 12:00:10 Windows Update 03-08-2015 05:17:25 Windows Modules Installer 08-08-2015 10:36:35 Windows Modules Installer 10-08-2015 10:06:17 Windows Update 11-08-2015 18:04:25 JRT Pre-Junkware Removal 15-08-2015 13:35:36 ComboFix created restore point **** End of log ****
  13. no. i know nothing about proxy servers. i see it pop up once in awhile, but have never done anything. i didn't enter anything for any server or internet connections for Firefox or IE. i hook up to the internet via....the apartment building has free wi-fi, if you're close enough to the router in the office to access it. my apartment is close enough, although it's not always very good. (i had a download speed of 2 a few weeks ago, per speedtest.net.) and all i do is find the name of the building's connection, and type in the password. it's a "public" network, obviously. if i try to look for info, i don't see anything about "proxy." it's IPv4...i can see more "lists" of stuff, but nothing about proxy.
  14. this has been a pain. the instructions for turning off AV and malware aren't quite right. i'm guessing i don't actually have MS Security Essentials on here, because i couldn't find it. (but i seem to remember turning it off last time for ComboFix.) anyway, i did step 1 and will put the ComboFix log here. but i need help with running the ESET scanner. i downloaded the installer, etc., etc. checked the settings you requested (although it looks different now--i wrote it down to send to you so you have it). clicked Start and it tried to download the database. then it stopped or hung, and i got a message saying i needed to set a proxy server. i saw that during the setup, but it wasn't checked to use a proxy server, and i know absolutely nothing about it so i left it unchecked. the laptop is connected to the internet, but it must want something else. what configuration values do i put in? oh....i also only have the free version of MBAM. i did open it and looked to see if there was anything i could turn off, but nothing in the instructions (from the link above) was available to me. so i thought it was okay. but i just now got a message from the program saying my database is out of date. so what do i need to turn off? okay, i went back in, and under Settings>Update Settings, i unchecked "Notify user if database is out of date..." and "Check for program updates when..." that should take care of it. ComboFix 15-08-14.01 - Diana 08/15/2015 8:36.2.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3982.2739 [GMT -5:00] Running from: c:\users\Diana\Desktop\ComboFix.exe Command switches used :: c:\users\Diana\Desktop\CFScript.txt SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Created a new restore point . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\wininit.ini . . ((((((((((((((((((((((((( Files Created from 2015-07-15 to 2015-08-15 ))))))))))))))))))))))))))))))) . . 2015-08-15 13:39 . 2015-08-15 13:39 -------- d-----w- c:\users\Default\AppData\Local\temp 2015-08-10 10:06 . 2015-07-21 12:25 12222168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7C1040D7-70C7-4A78-B386-407623491934}\mpengine.dll 2015-08-03 09:30 . 2015-08-03 09:30 -------- d-----w- c:\users\Diana\AppData\Local\GWX 2015-08-02 05:12 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDTAT.DLL 2015-08-02 05:12 . 2014-07-09 01:31 7168 ----a-w- c:\windows\SysWow64\KBDYAK.DLL 2015-08-02 05:12 . 2014-07-09 01:31 6656 ----a-w- c:\windows\SysWow64\KBDBASH.DLL 2015-08-02 05:12 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDYAK.DLL 2015-08-02 05:12 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDRU1.DLL 2015-08-02 05:12 . 2014-07-09 02:03 6656 ----a-w- c:\windows\system32\KBDRU.DLL 2015-08-02 05:12 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDBASH.DLL 2015-08-01 13:42 . 2015-08-01 13:42 -------- d-----w- c:\windows\Migration 2015-08-01 13:42 . 2015-08-01 13:42 -------- d-s---w- c:\windows\system32\CompatTel 2015-08-01 13:42 . 2015-08-01 13:42 -------- d-----w- c:\windows\system32\appraiser 2015-08-01 12:15 . 2015-05-01 13:17 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-08-01 12:15 . 2015-05-01 13:16 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll 2015-08-01 12:06 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll 2015-08-01 12:06 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll 2015-08-01 12:04 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll 2015-08-01 12:04 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll 2015-08-01 12:04 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll 2015-08-01 12:04 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe 2015-08-01 12:04 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll 2015-08-01 12:04 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe 2015-08-01 12:04 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe 2015-08-01 12:04 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe 2015-08-01 06:43 . 2015-08-01 06:43 -------- d-----w- c:\users\Diana\AppData\Local\CrashDumps 2015-08-01 04:29 . 2015-08-01 04:29 -------- d-----w- c:\program files\Common Files\AV 2015-08-01 02:42 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll 2015-08-01 02:42 . 2015-01-09 03:14 950272 ----a-w- c:\windows\system32\perftrack.dll 2015-08-01 02:42 . 2015-01-09 03:14 29696 ----a-w- c:\windows\system32\powertracker.dll 2015-08-01 02:42 . 2015-01-09 02:48 76800 ----a-w- c:\windows\SysWow64\wdi.dll 2015-08-01 02:26 . 2015-06-02 00:07 254976 ----a-w- c:\windows\system32\cewmdm.dll 2015-08-01 02:25 . 2015-05-09 03:27 362496 ----a-w- c:\windows\system32\wow64win.dll 2015-08-01 02:23 . 2015-07-09 17:58 37888 ----a-w- c:\windows\system32\wups2.dll 2015-08-01 02:14 . 2015-04-24 18:17 633856 ----a-w- c:\windows\system32\comctl32.dll 2015-08-01 02:14 . 2015-04-24 17:56 530432 ----a-w- c:\windows\SysWow64\comctl32.dll 2015-08-01 02:14 . 2015-07-04 18:07 2087424 ----a-w- c:\windows\system32\ole32.dll 2015-08-01 02:14 . 2015-07-04 17:48 1414656 ----a-w- c:\windows\SysWow64\ole32.dll 2015-08-01 02:12 . 2015-06-15 21:50 112064 ----a-w- c:\windows\system32\consent.exe 2015-08-01 02:09 . 2015-04-18 03:10 460800 ----a-w- c:\windows\system32\certcli.dll 2015-08-01 02:08 . 2015-02-03 03:34 693176 ----a-w- c:\windows\system32\winload.efi 2015-08-01 02:02 . 2014-12-19 03:06 210432 ----a-w- c:\windows\system32\profsvc.dll 2015-08-01 02:01 . 2014-10-14 02:13 683520 ----a-w- c:\windows\system32\termsrv.dll 2015-08-01 02:00 . 2014-06-06 10:10 624128 ----a-w- c:\windows\system32\qedit.dll 2015-08-01 01:59 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll 2015-08-01 01:58 . 2014-11-26 03:53 861696 ----a-w- c:\windows\system32\oleaut32.dll 2015-08-01 01:58 . 2014-11-26 03:32 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll 2015-08-01 01:58 . 2015-03-04 04:10 295936 ----a-w- c:\windows\SysWow64\apphelp.dll 2015-08-01 01:58 . 2015-03-04 04:41 6656 ----a-w- c:\windows\system32\shimeng.dll 2015-08-01 01:58 . 2015-03-04 04:41 72192 ----a-w- c:\windows\system32\aelupsvc.dll 2015-08-01 01:58 . 2015-03-04 04:41 342016 ----a-w- c:\windows\system32\apphelp.dll 2015-08-01 01:58 . 2015-03-04 04:41 23552 ----a-w- c:\windows\system32\sdbinst.exe 2015-08-01 01:58 . 2015-03-04 04:11 5120 ----a-w- c:\windows\SysWow64\shimeng.dll 2015-08-01 01:58 . 2015-03-04 04:10 20992 ----a-w- c:\windows\SysWow64\sdbinst.exe 2015-08-01 01:50 . 2015-07-15 03:19 41984 ----a-w- c:\windows\system32\lpk.dll 2015-08-01 01:50 . 2015-07-15 03:19 100864 ----a-w- c:\windows\system32\fontsub.dll 2015-08-01 01:50 . 2015-07-15 03:19 14336 ----a-w- c:\windows\system32\dciman32.dll 2015-08-01 01:50 . 2015-07-15 03:19 46080 ----a-w- c:\windows\system32\atmlib.dll 2015-08-01 01:50 . 2015-07-15 02:55 70656 ----a-w- c:\windows\SysWow64\fontsub.dll 2015-08-01 01:50 . 2015-07-15 02:55 10240 ----a-w- c:\windows\SysWow64\dciman32.dll 2015-08-01 01:50 . 2015-07-15 02:55 34304 ----a-w- c:\windows\SysWow64\atmlib.dll 2015-08-01 01:50 . 2015-07-15 02:54 25600 ----a-w- c:\windows\SysWow64\lpk.dll 2015-08-01 01:50 . 2015-07-15 01:59 372224 ----a-w- c:\windows\system32\atmfd.dll 2015-08-01 01:50 . 2015-07-15 01:52 299008 ----a-w- c:\windows\SysWow64\atmfd.dll 2015-08-01 01:48 . 2015-02-18 07:06 123904 ----a-w- c:\windows\SysWow64\poqexec.exe 2015-08-01 01:48 . 2015-02-18 07:04 142336 ----a-w- c:\windows\system32\poqexec.exe 2015-08-01 01:37 . 2014-10-25 01:57 77824 ----a-w- c:\windows\system32\packager.dll 2015-08-01 01:36 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll 2015-08-01 01:36 . 2015-02-04 02:54 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll 2015-07-31 23:37 . 2015-08-11 17:44 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable) 2015-07-31 07:22 . 2015-07-31 07:22 35064 ----a-w- c:\windows\system32\drivers\TrueSight.sys 2015-07-31 07:22 . 2015-07-31 23:22 -------- d-----w- c:\programdata\RogueKiller 2015-07-31 05:52 . 2015-07-31 05:54 -------- d-----w- C:\FRST 2015-07-28 12:41 . 2015-07-28 12:41 -------- d-----w- c:\program files (x86)\ERUNT 2015-07-28 11:38 . 2015-08-11 18:01 -------- d-----w- C:\AdwCleaner 2015-07-28 08:14 . 2015-07-28 08:14 -------- d-----w- c:\program files (x86)\Windows Resource Kits . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2015-08-15 13:26 . 2015-05-20 08:56 113880 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys 2015-08-11 17:32 . 2015-05-20 08:56 107736 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys 2015-08-04 13:35 . 2015-05-06 10:47 369168 ----a-w- c:\windows\system32\wpcap.dll 2015-08-04 13:35 . 2015-05-06 10:47 35344 ----a-w- c:\windows\system32\drivers\npf.sys 2015-08-04 13:35 . 2015-05-06 10:47 106000 ----a-w- c:\windows\system32\packet.dll 2015-07-22 01:46 . 2014-01-19 00:56 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2015-07-22 01:46 . 2014-01-19 00:56 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2015-07-03 13:43 . 2014-01-16 04:15 130333168 ----a-w- c:\windows\system32\MRT.exe 2015-06-23 18:30 . 2010-11-21 03:27 300704 ------w- c:\windows\system32\MpSigStub.exe 2015-06-18 13:41 . 2015-05-20 08:56 63704 ----a-w- c:\windows\system32\drivers\mwac.sys 2015-06-18 13:41 . 2014-01-16 03:50 25816 ----a-w- c:\windows\system32\drivers\mbam.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NETGEARGenie"="c:\program files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe" [2015-06-02 602880] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "USB3MON"="c:\program files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-02-07 291608] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Microsoft Office.lnk - c:\program files (x86)\Microsoft Office\Office\OSA9.EXE -b -l [2000-1-21 65588] NETGEAR WNA1100 Genie.lnk - c:\program files (x86)\NETGEAR\WNA1100\WNA1100.exe [2015-1-1 8247264] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x] R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x] R3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys;c:\windows\SYSNATIVE\DRIVERS\athurx.sys [x] R3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x] R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x] R3 jswpsapi;JumpStart Wi-Fi Protected Setup;c:\program files (x86)\NETGEAR\WNA1100\jswpsapi.exe;c:\program files (x86)\NETGEAR\WNA1100\jswpsapi.exe [x] R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x] R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x] R3 NETGEARGenieDaemon;NETGEARGenieDaemon;c:\program files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe;c:\program files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] S0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x] S0 SCMNdisP;General NDIS Protocol Driver;c:\windows\system32\DRIVERS\scmndisp.sys;c:\windows\SYSNATIVE\DRIVERS\scmndisp.sys [x] S1 JSWPSLWF;JumpStart Wireless Filter Driver;c:\windows\system32\DRIVERS\jswpslwfx.sys;c:\windows\SYSNATIVE\DRIVERS\jswpslwfx.sys [x] S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x] S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x] S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x] S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x] S2 EpsonCustomerParticipation;EpsonCustomerParticipation;c:\program files\EPSON\EpsonCustomerParticipation\EPCP.exe;c:\program files\EPSON\EpsonCustomerParticipation\EPCP.exe [x] S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x] S2 WSWNA1100;WSWNA1100;c:\program files (x86)\NETGEAR\WNA1100\WifiSvc.exe;c:\program files (x86)\NETGEAR\WNA1100\WifiSvc.exe [x] S2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x] S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x] S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x] S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x] S3 iusb3hub;Intel® USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x] S3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x] S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x] S3 RSBASTOR;Realtek PCIE CardReader Driver - BA;c:\windows\system32\DRIVERS\RtsBaStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsBaStor.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] . . --- Other Services/Drivers In Memory --- . *NewlyCreated* - MBAMSWISSARMY . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ETDCtrl"="c:\program files (x86)\Elantech\ETDCtrl.exe" [bU] . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = https://duckduckgo.com/ mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyServer = localhost:8080 TCP: DhcpNameServer = 71.10.216.1 71.10.216.2 FF - ProfilePath - c:\users\Diana\AppData\Roaming\Mozilla\Firefox\Profiles\bc4g19d0.default\ FF - prefs.js: browser.startup.homepage - about:sessionrestore|hxxp://diy.stackexchange.com/questions/53078/dripping-sound-inside-wall/53137#53137|http://tonyortega.org/|http://aattp.org/new-study-shows-that-conservatives-react-more-squeamishly-to-disgusting-images/|http://www.amazon.com/gp/search/ref=sr_nr_p_36_4?bbn=3732191&qid=1416313293&rh=n%3A1055398%2Cn%3A%211063498%2Cn%3A1063252%2Cn%3A1063280%2Cn%3A3732181%2Cn%3A3732191%2Cp_n_size_browse-bin%3A362279011%2Cp_n_feature_keywords_browse-bin%3A7799429011&rnid=386465011&low-price=25&high-price=110&x=9&y=17|http://workplace.stackexchange.com/questions/36368/a-co-worker-is-using-my-cup|https://getadblock.com/installed/?u=bnkooacl64543479|http://www.wbcws.org/|http://www.newscientist.com/article/dn26481-left-or-rightwing-brains-disgust-response-tells-all.html#.VGa4aMlnvtQ|http://www.huffingtonpost.com/2014/11/12/heating-gadgets_n_6147088.html?cps=gravity|http://ideas.time.com/2013/11/26/religious-people-are-more-charitable/|http://www.dailykos.com/story/2014/11/08/1343359/-Man-assaulted-for-being-gay-sends-message-to-his-attacker-and-it-s-amazing?detail=email|http://www.dailykos.com/story/2014/11/08/1343257/-How-Native-Americans-Beat-the-Kochs-in-America-s-Most-Competitive-Congressional-District?detail=email|http://www.dailykos.com/story/2014/11/06/1342751/-Michigan-Dems-Got-More-Votes-and-Still-Lost|http://www.dailykos.com/story/2014/11/11/1343931/-Another-Open-Letter-To-Americans-About-Midterms-This-Time-From-Canada-This-One-Hurts?detail=email|http://www.aspca.org/blog/strong-sentences-handed-down-alabama-court-historic-dog-fighting-case?ms=em_new_blogpost-dogfightingsentences-20141114&initialms=em_new_blogpost-dogfightingsentences-20141114&utm_source=newsalertemail_20141114&utm_medium=email&utm_campaign=newsalert|http://blog.theanimalrescuesite.com/feralshelteridea/|http://nypost.com/2014/08/11/louisiana-gov-defies-christie-helps-cash-strapped-astorino/|https://www.yahoo.com/parenting/dear-santa-sign-stirs-controversy-102370375437.html|http://www.gutenberg.org/ebooks/14980 FF - prefs.js: network.proxy.type - 4 . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2015-08-15 08:40:49 ComboFix-quarantined-files.txt 2015-08-15 13:40 . Pre-Run: 408,586,797,056 bytes free Post-Run: 408,521,453,568 bytes free . - - End Of File - - A03990D0A69AA69B73A5D8F37B1CCBAF 5FB38429D5D77768867C76DCBDB35194
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.