Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pop ads in banner


  • Please log in to reply
15 replies to this topic

#1 kibaboy

kibaboy

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 04:42 AM

hi all,

I'm starting a new topic to avoid any confusion, but I am having the same issue as some others on here regarding popup ads in my browser. some of them look like iphones and others are more generic. I have performed the first steps mentioned in previous threads and will post the information here:

TDSS:

Here is my TDSS log:

17:03:21.0306 6104 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
17:03:22.0196 6104 ============================================================
17:03:22.0196 6104 Current date / time: 2012/10/09 17:03:22.0196
17:03:22.0196 6104 SystemInfo:
17:03:22.0196 6104
17:03:22.0196 6104 OS Version: 6.1.7601 ServicePack: 1.0
17:03:22.0196 6104 Product type: Workstation
17:03:22.0197 6104 ComputerName: TW-R98CXX6-L
17:03:22.0197 6104 UserName: twu
17:03:22.0197 6104 Windows directory: C:\Windows
17:03:22.0197 6104 System windows directory: C:\Windows
17:03:22.0197 6104 Running under WOW64
17:03:22.0197 6104 Processor architecture: Intel x64
17:03:22.0197 6104 Number of processors: 4
17:03:22.0197 6104 Page size: 0x1000
17:03:22.0197 6104 Boot type: Normal boot
17:03:22.0197 6104 ============================================================
17:03:27.0458 6104 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
17:03:27.0484 6104 ============================================================
17:03:27.0484 6104 \Device\Harddisk0\DR0:
17:03:27.0487 6104 MBR partitions:
17:03:27.0487 6104 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800
17:03:27.0487 6104 ============================================================
17:03:27.0566 6104 Initialize success
17:03:27.0566 6104 ============================================================
17:03:29.0599 3832 ============================================================
17:03:29.0599 3832 Scan started
17:03:29.0599 3832 Mode: Manual;
17:03:29.0599 3832 ============================================================
17:03:30.0480 3832 ================ Scan system memory ========================
17:03:30.0481 3832 System memory - ok
17:03:30.0481 3832 ================ Scan services =============================
17:03:30.0600 3832 !SASCORE - ok
17:03:30.0684 3832 1394ohci - ok
17:03:30.0726 3832 ACPI - ok
17:03:30.0788 3832 AcpiPmi - ok
17:03:30.0825 3832 Adobe Version Cue CS3 - ok
17:03:30.0934 3832 AdobeARMservice - ok
17:03:30.0997 3832 adp94xx - ok
17:03:31.0027 3832 adpahci - ok
17:03:31.0034 3832 adpu320 - ok
17:03:31.0043 3832 AeLookupSvc - ok
17:03:31.0071 3832 AFD - ok
17:03:31.0088 3832 agp440 - ok
17:03:31.0092 3832 ALG - ok
17:03:31.0130 3832 aliide - ok
17:03:31.0134 3832 amdide - ok
17:03:31.0160 3832 AmdK8 - ok
17:03:31.0168 3832 AmdPPM - ok
17:03:31.0201 3832 amdsata - ok
17:03:31.0222 3832 amdsbs - ok
17:03:31.0327 3832 amdxata - ok
17:03:31.0770 3832 AntiVirSchedulerService - ok
17:03:31.0967 3832 AntiVirService - ok
17:03:32.0038 3832 AppID - ok
17:03:32.0182 3832 AppIDSvc - ok
17:03:32.0296 3832 Appinfo - ok
17:03:32.0316 3832 AppMgmt - ok
17:03:32.0525 3832 arc - ok
17:03:32.0533 3832 arcsas - ok
17:03:32.0582 3832 AsyncMac - ok
17:03:32.0587 3832 atapi - ok
17:03:32.0609 3832 AudioEndpointBuilder - ok
17:03:32.0616 3832 AudioSrv - ok
17:03:32.0665 3832 AVGIDSDriver - ok
17:03:32.0710 3832 Avgloga - ok
17:03:32.0880 3832 avgntflt - ok
17:03:32.0902 3832 Avgrkx64 - ok
17:03:32.0922 3832 avipbb - ok
17:03:32.0929 3832 avkmgr - ok
17:03:32.0958 3832 AxInstSV - ok
17:03:32.0985 3832 b06bdrv - ok
17:03:33.0029 3832 b57nd60a - ok
17:03:33.0241 3832 BDESVC - ok
17:03:33.0291 3832 Beep - ok
17:03:33.0467 3832 BFE - ok
17:03:33.0472 3832 BITS - ok
17:03:33.0490 3832 blbdrive - ok
17:03:33.0552 3832 Bonjour Service - ok
17:03:33.0559 3832 bowser - ok
17:03:33.0632 3832 BrFiltLo - ok
17:03:33.0640 3832 BrFiltUp - ok
17:03:33.0682 3832 Browser - ok
17:03:33.0687 3832 Brserid - ok
17:03:33.0692 3832 BrSerWdm - ok
17:03:33.0697 3832 BrUsbMdm - ok
17:03:33.0702 3832 BrUsbSer - ok
17:03:33.0727 3832 BthEnum - ok
17:03:33.0731 3832 BTHMODEM - ok
17:03:33.0736 3832 BthPan - ok
17:03:33.0740 3832 BTHPORT - ok
17:03:33.0774 3832 bthserv - ok
17:03:33.0778 3832 BTHUSB - ok
17:03:33.0799 3832 CcmExec - ok
17:03:33.0870 3832 cdfs - ok
17:03:33.0896 3832 cdrom - ok
17:03:33.0954 3832 CertPropSvc - ok
17:03:34.0011 3832 circlass - ok
17:03:34.0037 3832 Cisco HVD Agent - ok
17:03:34.0059 3832 CLFS - ok
17:03:34.0063 3832 clr_optimization_v2.0.50727_32 - ok
17:03:34.0067 3832 clr_optimization_v2.0.50727_64 - ok
17:03:34.0078 3832 clr_optimization_v4.0.30319_32 - ok
17:03:34.0082 3832 clr_optimization_v4.0.30319_64 - ok
17:03:34.0123 3832 CmBatt - ok
17:03:34.0128 3832 cmdide - ok
17:03:34.0159 3832 CNG - ok
17:03:34.0169 3832 Compbatt - ok
17:03:34.0266 3832 CompositeBus - ok
17:03:34.0312 3832 COMSysApp - ok
17:03:34.0383 3832 cpudrv64 - ok
17:03:34.0390 3832 crcdisk - ok
17:03:34.0415 3832 CryptSvc - ok
17:03:34.0420 3832 CSC - ok
17:03:34.0426 3832 CscService - ok
17:03:34.0491 3832 DcomLaunch - ok
17:03:34.0526 3832 defragsvc - ok
17:03:34.0567 3832 DfsC - ok
17:03:34.0596 3832 Dhcp - ok
17:03:34.0603 3832 discache - ok
17:03:34.0617 3832 Disk - ok
17:03:34.0622 3832 Dnscache - ok
17:03:34.0629 3832 dot3svc - ok
17:03:34.0633 3832 DPS - ok
17:03:34.0681 3832 drmkaud - ok
17:03:34.0685 3832 DXGKrnl - ok
17:03:34.0705 3832 e1kexpress - ok
17:03:34.0730 3832 EapHost - ok
17:03:34.0734 3832 ebdrv - ok
17:03:34.0738 3832 EFS - ok
17:03:34.0741 3832 ehRecvr - ok
17:03:34.0746 3832 ehSched - ok
17:03:34.0779 3832 elxstor - ok
17:03:34.0783 3832 ErrDev - ok
17:03:34.0790 3832 EventSystem - ok
17:03:34.0793 3832 exfat - ok
17:03:34.0850 3832 f5ipfw - ok
17:03:34.0859 3832 fastfat - ok
17:03:34.0893 3832 Fax - ok
17:03:34.0900 3832 fdc - ok
17:03:34.0925 3832 fdPHost - ok
17:03:34.0930 3832 FDResPub - ok
17:03:34.0975 3832 FileInfo - ok
17:03:34.0979 3832 Filetrace - ok
17:03:35.0100 3832 FLEXnet Licensing Service - ok
17:03:35.0109 3832 flpydisk - ok
17:03:35.0118 3832 FltMgr - ok
17:03:35.0125 3832 FontCache - ok
17:03:35.0130 3832 FontCache3.0.0.0 - ok
17:03:35.0134 3832 FsDepends - ok
17:03:35.0138 3832 Fs_Rec - ok
17:03:35.0180 3832 fvevol - ok
17:03:35.0225 3832 gagp30kx - ok
17:03:35.0230 3832 gpsvc - ok
17:03:35.0233 3832 hcw85cir - ok
17:03:35.0271 3832 HdAudAddService - ok
17:03:35.0307 3832 HDAudBus - ok
17:03:35.0314 3832 HidBatt - ok
17:03:35.0321 3832 HidBth - ok
17:03:35.0366 3832 HidIr - ok
17:03:35.0374 3832 hidserv - ok
17:03:35.0380 3832 HidUsb - ok
17:03:35.0416 3832 hkmsvc - ok
17:03:35.0452 3832 HomeGroupListener - ok
17:03:35.0456 3832 HomeGroupProvider - ok
17:03:35.0524 3832 HpSAMD - ok
17:03:35.0598 3832 HTTP - ok
17:03:35.0605 3832 hwpolicy - ok
17:03:35.0630 3832 i8042prt - ok
17:03:35.0701 3832 iaStorV - ok
17:03:35.0729 3832 IBMPMDRV - ok
17:03:35.0737 3832 IBMPMSVC - ok
17:03:35.0744 3832 idsvc - ok
17:03:35.0751 3832 igfx - ok
17:03:35.0758 3832 iirsp - ok
17:03:35.0763 3832 IKEEXT - ok
17:03:35.0788 3832 Impcd - ok
17:03:35.0794 3832 IntcDAud - ok
17:03:35.0799 3832 intelide - ok
17:03:35.0834 3832 intelppm - ok
17:03:35.0892 3832 IPBusEnum - ok
17:03:35.0921 3832 IpFilterDriver - ok
17:03:35.0954 3832 iphlpsvc - ok
17:03:35.0967 3832 IPMIDRV - ok
17:03:35.0972 3832 IPNAT - ok
17:03:36.0003 3832 IRENUM - ok
17:03:36.0077 3832 is3srv - ok
17:03:36.0129 3832 isapnp - ok
17:03:36.0135 3832 iScsiPrt - ok
17:03:36.0156 3832 kbdclass - ok
17:03:36.0163 3832 kbdhid - ok
17:03:36.0169 3832 KeyIso - ok
17:03:36.0175 3832 KSecDD - ok
17:03:36.0181 3832 KSecPkg - ok
17:03:36.0186 3832 ksthunk - ok
17:03:36.0190 3832 KtmRm - ok
17:03:36.0284 3832 LanmanServer - ok
17:03:36.0292 3832 LanmanWorkstation - ok
17:03:36.0377 3832 LBTServ - ok
17:03:36.0402 3832 LEqdUsb - ok
17:03:36.0575 3832 LHidEqd - ok
17:03:36.0588 3832 LHidFilt - ok
17:03:36.0644 3832 lltdio - ok
17:03:36.0651 3832 lltdsvc - ok
17:03:36.0708 3832 lmhosts - ok
17:03:36.0716 3832 LMouFilt - ok
17:03:36.0763 3832 LSI_FC - ok
17:03:36.0769 3832 LSI_SAS - ok
17:03:36.0775 3832 LSI_SAS2 - ok
17:03:36.0782 3832 LSI_SCSI - ok
17:03:36.0790 3832 luafv - ok
17:03:36.0978 3832 McAfee EEGo - ok
17:03:37.0045 3832 McAfee Endpoint Encryption Agent - ok
17:03:37.0224 3832 McAfeeFramework - ok
17:03:37.0289 3832 McShield - ok
17:03:37.0297 3832 McTaskManager - ok
17:03:37.0305 3832 Mcx2Svc - ok
17:03:37.0313 3832 megasas - ok
17:03:37.0320 3832 MegaSR - ok
17:03:37.0324 3832 mfeapfk - ok
17:03:37.0352 3832 mfeavfk - ok
17:03:37.0393 3832 mfeavfk01 - ok
17:03:37.0464 3832 MfeEEAlg - ok
17:03:37.0937 3832 MfeEpePc - ok
17:03:38.0021 3832 mfehidk - ok
17:03:38.0135 3832 mferkdet - ok
17:03:38.0143 3832 mfevtp - ok
17:03:38.0150 3832 mfewfpk - ok
17:03:38.0188 3832 Microsoft SharePoint Workspace Audit Service - ok
17:03:38.0197 3832 MMCSS - ok
17:03:38.0204 3832 Modem - ok
17:03:38.0230 3832 monitor - ok
17:03:38.0276 3832 mouclass - ok
17:03:38.0496 3832 mouhid - ok
17:03:38.0503 3832 mountmgr - ok
17:03:38.0641 3832 MozillaMaintenance - ok
17:03:38.0870 3832 MpFilter - ok
17:03:38.0878 3832 mpio - ok
17:03:38.0931 3832 MpNWMon - ok
17:03:38.0938 3832 mpsdrv - ok
17:03:38.0945 3832 MpsSvc - ok
17:03:38.0951 3832 MRxDAV - ok
17:03:38.0956 3832 mrxsmb - ok
17:03:38.0970 3832 mrxsmb10 - ok
17:03:38.0974 3832 mrxsmb20 - ok
17:03:38.0979 3832 msahci - ok
17:03:38.0982 3832 msdsm - ok
17:03:38.0986 3832 MSDTC - ok
17:03:38.0993 3832 Msfs - ok
17:03:38.0997 3832 mshidkmdf - ok
17:03:39.0001 3832 msisadrv - ok
17:03:39.0034 3832 MSiSCSI - ok
17:03:39.0039 3832 msiserver - ok
17:03:39.0069 3832 MSKSSRV - ok
17:03:39.0073 3832 MsMpSvc - ok
17:03:39.0078 3832 MSPCLOCK - ok
17:03:39.0083 3832 MSPQM - ok
17:03:39.0086 3832 MsRPC - ok
17:03:39.0091 3832 mssmbios - ok
17:03:39.0096 3832 MSTEE - ok
17:03:39.0100 3832 MTConfig - ok
17:03:39.0104 3832 Mup - ok
17:03:39.0108 3832 napagent - ok
17:03:39.0170 3832 NativeWifiP - ok
17:03:39.0174 3832 NDIS - ok
17:03:39.0179 3832 NdisCap - ok
17:03:39.0198 3832 Ndiscdp - ok
17:03:39.0208 3832 NdisTapi - ok
17:03:39.0214 3832 Ndisuio - ok
17:03:39.0218 3832 NdisWan - ok
17:03:39.0290 3832 NDProxy - ok
17:03:39.0363 3832 Net Driver HPZ12 - ok
17:03:39.0376 3832 NetBIOS - ok
17:03:39.0382 3832 NetBT - ok
17:03:39.0387 3832 Netlogon - ok
17:03:39.0409 3832 Netman - ok
17:03:39.0415 3832 netprofm - ok
17:03:39.0420 3832 NetTcpPortSharing - ok
17:03:39.0453 3832 NETw5s64 - ok
17:03:39.0477 3832 NETwNs64 - ok
17:03:39.0514 3832 nfrd960 - ok
17:03:39.0520 3832 NisDrv - ok
17:03:39.0524 3832 NisSrv - ok
17:03:39.0562 3832 NlaSvc - ok
17:03:39.0566 3832 Npfs - ok
17:03:39.0571 3832 nsi - ok
17:03:39.0575 3832 nsiproxy - ok
17:03:39.0582 3832 Ntfs - ok
17:03:39.0587 3832 Null - ok
17:03:39.0610 3832 nvlddmkm - ok
17:03:39.0640 3832 nvraid - ok
17:03:39.0684 3832 nvstor - ok
17:03:39.0710 3832 nvsvc - ok
17:03:39.0715 3832 nv_agp - ok
17:03:39.0719 3832 ohci1394 - ok
17:03:39.0745 3832 ose - ok
17:03:39.0750 3832 osppsvc - ok
17:03:39.0757 3832 p2pimsvc - ok
17:03:39.0762 3832 p2psvc - ok
17:03:39.0767 3832 Parport - ok
17:03:39.0770 3832 partmgr - ok
17:03:39.0775 3832 PcaSvc - ok
17:03:39.0779 3832 pci - ok
17:03:39.0783 3832 pciide - ok
17:03:39.0787 3832 pcmcia - ok
17:03:39.0791 3832 pcw - ok
17:03:39.0794 3832 PEAUTH - ok
17:03:39.0799 3832 PeerDistSvc - ok
17:03:39.0821 3832 PerfHost - ok
17:03:39.0831 3832 pla - ok
17:03:39.0855 3832 PlugPlay - ok
17:03:39.0895 3832 Pml Driver HPZ12 - ok
17:03:39.0899 3832 PNRPAutoReg - ok
17:03:39.0903 3832 PNRPsvc - ok
17:03:39.0907 3832 PolicyAgent - ok
17:03:39.0941 3832 Power - ok
17:03:39.0975 3832 PptpMiniport - ok
17:03:39.0989 3832 prepdrvr - ok
17:03:39.0992 3832 Processor - ok
17:03:39.0997 3832 ProfSvc - ok
17:03:40.0000 3832 ProtectedStorage - ok
17:03:40.0067 3832 Psched - ok
17:03:40.0096 3832 ql2300 - ok
17:03:40.0130 3832 ql40xx - ok
17:03:40.0136 3832 QWAVE - ok
17:03:40.0143 3832 QWAVEdrv - ok
17:03:40.0150 3832 RasAcd - ok
17:03:40.0202 3832 RasAgileVpn - ok
17:03:40.0230 3832 RasAuto - ok
17:03:40.0234 3832 Rasl2tp - ok
17:03:40.0270 3832 RasMan - ok
17:03:40.0274 3832 RasPppoe - ok
17:03:40.0278 3832 RasSstp - ok
17:03:40.0283 3832 rdbss - ok
17:03:40.0290 3832 rdpbus - ok
17:03:40.0319 3832 RDPCDD - ok
17:03:40.0324 3832 RDPDR - ok
17:03:40.0346 3832 RDPENCDD - ok
17:03:40.0351 3832 RDPREFMP - ok
17:03:40.0400 3832 RdpVideoMiniport - ok
17:03:40.0405 3832 RDPWD - ok
17:03:40.0434 3832 rdyboost - ok
17:03:40.0439 3832 RemoteAccess - ok
17:03:40.0473 3832 RemoteRegistry - ok
17:03:40.0480 3832 RFCOMM - ok
17:03:40.0553 3832 RimUsb - ok
17:03:40.0670 3832 RimVSerPort - ok
17:03:40.0678 3832 ROOTMODEM - ok
17:03:40.0686 3832 RpcEptMapper - ok
17:03:40.0693 3832 RpcLocator - ok
17:03:40.0701 3832 RpcSs - ok
17:03:40.0720 3832 rspndr - ok
17:03:40.0725 3832 s3cap - ok
17:03:40.0729 3832 SamSs - ok
17:03:40.0764 3832 SASDIFSV - ok
17:03:40.0796 3832 SASKUTIL - ok
17:03:40.0799 3832 sbp2port - ok
17:03:40.0804 3832 SCardSvr - ok
17:03:40.0808 3832 scfilter - ok
17:03:40.0814 3832 Schedule - ok
17:03:40.0819 3832 SCPolicySvc - ok
17:03:40.0855 3832 sdbus - ok
17:03:40.0859 3832 SDRSVC - ok
17:03:40.0890 3832 secdrv - ok
17:03:40.0894 3832 seclogon - ok
17:03:40.0955 3832 SENS - ok
17:03:40.0966 3832 SensrSvc - ok
17:03:40.0975 3832 Serenum - ok
17:03:41.0005 3832 Serial - ok
17:03:41.0039 3832 sermouse - ok
17:03:41.0060 3832 SessionEnv - ok
17:03:41.0068 3832 sffdisk - ok
17:03:41.0074 3832 sffp_mmc - ok
17:03:41.0078 3832 sffp_sd - ok
17:03:41.0082 3832 sfloppy - ok
17:03:41.0281 3832 SharedAccess - ok
17:03:41.0290 3832 ShellHWDetection - ok
17:03:41.0314 3832 SiSRaid2 - ok
17:03:41.0321 3832 SiSRaid4 - ok
17:03:41.0362 3832 SkypeUpdate - ok
17:03:41.0387 3832 Smb - ok
17:03:41.0393 3832 smstsmgr - ok
17:03:41.0457 3832 SNMPTRAP - ok
17:03:41.0463 3832 spldr - ok
17:03:41.0469 3832 Spooler - ok
17:03:41.0475 3832 sppsvc - ok
17:03:41.0481 3832 sppuinotify - ok
17:03:41.0489 3832 srv - ok
17:03:41.0493 3832 srv2 - ok
17:03:41.0514 3832 SrvHsfHDA - ok
17:03:41.0518 3832 SrvHsfV92 - ok
17:03:41.0522 3832 SrvHsfWinac - ok
17:03:41.0526 3832 srvnet - ok
17:03:41.0613 3832 SSDPSRV - ok
17:03:41.0620 3832 SstpSvc - ok
17:03:41.0628 3832 stexstor - ok
17:03:41.0690 3832 stisvc - ok
17:03:41.0698 3832 storflt - ok
17:03:41.0709 3832 StorSvc - ok
17:03:41.0718 3832 storvsc - ok
17:03:41.0725 3832 swenum - ok
17:03:41.0731 3832 swprv - ok
17:03:41.0779 3832 Synth3dVsc - ok
17:03:41.0807 3832 SysMain - ok
17:03:41.0811 3832 szkg5 - ok
17:03:41.0815 3832 TabletInputService - ok
17:03:41.0819 3832 TapiSrv - ok
17:03:41.0827 3832 TBS - ok
17:03:41.0861 3832 Tcpip - ok
17:03:41.0885 3832 TCPIP6 - ok
17:03:41.0891 3832 tcpipreg - ok
17:03:41.0898 3832 TDPIPE - ok
17:03:41.0902 3832 TDTCP - ok
17:03:41.0906 3832 tdx - ok
17:03:41.0910 3832 TermDD - ok
17:03:41.0916 3832 TermService - ok
17:03:41.0919 3832 Themes - ok
17:03:41.0923 3832 THREADORDER - ok
17:03:41.0931 3832 TPM - ok
17:03:41.0936 3832 TrkWks - ok
17:03:41.0941 3832 TrustedInstaller - ok
17:03:41.0947 3832 tssecsrv - ok
17:03:41.0951 3832 TsUsbFlt - ok
17:03:41.0969 3832 tsusbhub - ok
17:03:41.0993 3832 tunnel - ok
17:03:41.0998 3832 uagp35 - ok
17:03:42.0003 3832 udfs - ok
17:03:42.0012 3832 UI0Detect - ok
17:03:42.0017 3832 uliagpkx - ok
17:03:42.0042 3832 umbus - ok
17:03:42.0047 3832 UmPass - ok
17:03:42.0052 3832 UmRdpService - ok
17:03:42.0056 3832 upnphost - ok
17:03:42.0071 3832 urvpndrv - ok
17:03:42.0093 3832 usbaudio - ok
17:03:42.0098 3832 usbccgp - ok
17:03:42.0127 3832 usbcir - ok
17:03:42.0132 3832 usbehci - ok
17:03:42.0171 3832 usbhub - ok
17:03:42.0176 3832 usbohci - ok
17:03:42.0181 3832 usbprint - ok
17:03:42.0186 3832 USBSTOR - ok
17:03:42.0191 3832 usbuhci - ok
17:03:42.0216 3832 usbvideo - ok
17:03:42.0220 3832 UxSms - ok
17:03:42.0225 3832 VaultSvc - ok
17:03:42.0254 3832 vdrvroot - ok
17:03:42.0258 3832 vds - ok
17:03:42.0263 3832 vga - ok
17:03:42.0267 3832 VgaSave - ok
17:03:42.0272 3832 VGPU - ok
17:03:42.0276 3832 vhdmp - ok
17:03:42.0282 3832 viaide - ok
17:03:42.0288 3832 vmbus - ok
17:03:42.0292 3832 VMBusHID - ok
17:03:42.0321 3832 volmgr - ok
17:03:42.0325 3832 volmgrx - ok
17:03:42.0330 3832 volsnap - ok
17:03:42.0347 3832 vsmraid - ok
17:03:42.0352 3832 VSS - ok
17:03:42.0356 3832 vwifibus - ok
17:03:42.0419 3832 vwififlt - ok
17:03:42.0493 3832 vwifimp - ok
17:03:42.0550 3832 W32Time - ok
17:03:42.0567 3832 WacomPen - ok
17:03:42.0596 3832 WANARP - ok
17:03:42.0620 3832 Wanarpv6 - ok
17:03:42.0665 3832 WatAdminSvc - ok
17:03:42.0674 3832 wbengine - ok
17:03:42.0683 3832 WbioSrvc - ok
17:03:42.0690 3832 wcncsvc - ok
17:03:42.0694 3832 WcsPlugInService - ok
17:03:42.0701 3832 Wd - ok
17:03:42.0705 3832 Wdf01000 - ok
17:03:42.0709 3832 WdiServiceHost - ok
17:03:42.0714 3832 WdiSystemHost - ok
17:03:42.0718 3832 WebClient - ok
17:03:42.0723 3832 Wecsvc - ok
17:03:42.0728 3832 wercplsupport - ok
17:03:42.0756 3832 WerSvc - ok
17:03:42.0799 3832 WfpLwf - ok
17:03:42.0804 3832 WIMMount - ok
17:03:42.0808 3832 WinDefend - ok
17:03:42.0817 3832 WinHttpAutoProxySvc - ok
17:03:42.0821 3832 Winmgmt - ok
17:03:42.0825 3832 WinRM - ok
17:03:42.0898 3832 WinUsb - ok
17:03:42.0903 3832 Wlansvc - ok
17:03:42.0909 3832 wlidsvc - ok
17:03:42.0947 3832 WmiAcpi - ok
17:03:42.0954 3832 wmiApSrv - ok
17:03:42.0961 3832 WMPNetworkSvc - ok
17:03:42.0966 3832 WPCSvc - ok
17:03:42.0971 3832 WPDBusEnum - ok
17:03:42.0976 3832 ws2ifsl - ok
17:03:42.0982 3832 wscsvc - ok
17:03:42.0987 3832 WSearch - ok
17:03:42.0995 3832 wuauserv - ok
17:03:43.0000 3832 WudfPf - ok
17:03:43.0032 3832 WUDFRd - ok
17:03:43.0037 3832 wudfsvc - ok
17:03:43.0041 3832 WwanSvc - ok
17:03:43.0140 3832 ================ Scan global ===============================
17:03:43.0141 3832 [Global] - ok
17:03:43.0143 3832 ================ Scan MBR ==================================
17:03:43.0179 3832 [ 1DBD1E4DD9325521E7600323C7EF5994 ] \Device\Harddisk0\DR0
17:03:43.0956 3832 \Device\Harddisk0\DR0 - ok
17:03:43.0956 3832 ================ Scan VBR ==================================
17:03:43.0975 3832 [ 40CD72047570B0D11B3E6CFFFF787921 ] \Device\Harddisk0\DR0\Partition1
17:03:43.0975 3832 \Device\Harddisk0\DR0\Partition1 - ok
17:03:43.0976 3832 ============================================================
17:03:43.0976 3832 Scan finished
17:03:43.0976 3832 ============================================================
17:03:43.0984 6584 Detected object count: 0
17:03:43.0984 6584 Actual detected object count: 0




And here is my ASWMBR log:





aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-09 17:04:29
-----------------------------
17:04:29.211 OS Version: Windows x64 6.1.7601 Service Pack 1
17:04:29.212 Number of processors: 4 586 0x2505
17:04:29.213 ComputerName: TW-R98CXX6-L UserName: twu
17:04:31.268 Initialize success
17:04:43.401 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
17:04:43.403 Disk 0 Vendor: TOSHIBA_MK2529GSG PS112E Size: 238475MB BusType: 11
17:04:43.439 Disk 0 MBR read successfully
17:04:43.444 Disk 0 MBR scan
17:04:43.448 Disk 0 unknown MBR code
17:04:43.456 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS 238473 MB offset 2048
17:04:43.463 Disk 0 scanning C:\Windows\system32\drivers
17:04:43.469 Service scanning
17:05:02.693 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
17:06:17.786 Modules scanning
17:06:17.799 Disk 0 trace - called modules:
17:06:17.837 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
17:06:17.845 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c6d060]
17:06:17.852 3 CLASSPNP.SYS[fffff88001bc943f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800498d060]
17:06:17.863 Scan finished successfully
17:10:20.469 Disk 0 MBR has been saved successfully to "C:\Users\twu\Desktop\MBR.dat"
17:10:20.548 The log file has been saved successfully to "C:\Users\twu\Desktop\aswMBR.txt"



And here is my MiniToolBox log:


MiniToolBox by Farbar Version: 23-07-2012
Ran by twu (administrator) on 09-10-2012 at 17:12:05
Microsoft Windows 7 Enterprise Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.autoconfig_url", "http://dc1wpad01.mpls.digitalriver.com/wpad.dat"

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































74.55.76.230 www.google-analytics.com.
74.55.76.230 ad-emea.doubleclick.net.
74.55.76.230 www.statcounter.com.
178.250.45.15 www.google-analytics.com.
178.250.45.15 ad-emea.doubleclick.net.
178.250.45.15 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® 82577LM Gigabit Network Connection = Local Area Connection (Connected)
Intel® Centrino® Ultimate-N 6300 AGN = Wireless Network Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : TW-R98CXX6-L
Primary Dns Suffix . . . . . . . : mpls.digitalriver.com
Node Type . . . . . . . . . . . . : Peer-Peer
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : mpls.digitalriver.com
taipei.digitalriver.com
digitalriver.com

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-24-D7-60-4D-05
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : mpls.digitalriver.com
Description . . . . . . . . . . . : Intel® Centrino® Ultimate-N 6300 AGN
Physical Address. . . . . . . . . : 00-24-D7-60-4D-04
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7dc7:eb3a:fe99:9336%14(Preferred)
IPv4 Address. . . . . . . . . . . : 10.224.1.18(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, October 09, 2012 10:00:57 AM
Lease Expires . . . . . . . . . . : Wednesday, October 10, 2012 10:01:01 AM
Default Gateway . . . . . . . . . : 10.224.1.1
DHCP Server . . . . . . . . . . . : 10.224.2.15
DHCPv6 IAID . . . . . . . . . . . : 369108183
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-30-65-3E-F0-DE-F1-1D-1F-11
DNS Servers . . . . . . . . . . . : 10.224.2.105
192.168.109.92
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 5C-AC-4C-CE-5C-C8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : taipei.digitalriver.com
Description . . . . . . . . . . . : Intel® 82577LM Gigabit Network Connection
Physical Address. . . . . . . . . : F0-DE-F1-1D-1F-11
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 10.224.2.88(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, October 08, 2012 6:35:50 PM
Lease Expires . . . . . . . . . . : Wednesday, October 17, 2012 10:00:51 AM
Default Gateway . . . . . . . . . : 10.224.2.1
DHCP Server . . . . . . . . . . . : 10.224.2.15
DNS Servers . . . . . . . . . . . : 10.224.2.105
192.168.109.92
Primary WINS Server . . . . . . . : 192.168.109.92
Secondary WINS Server . . . . . . : 192.168.30.93
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.taipei.digitalriver.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : taipei.digitalriver.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.mpls.digitalriver.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : mpls.digitalriver.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3BBD8866-2406-470D-A8DA-A0D5D473EF7B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{38E5950C-253D-4A28-8E18-C23BC86421C1}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: tpeadc02.mpls.digitalriver.com
Address: 10.224.2.105

Name: google.com
Addresses: 2607:f8b0:4009:800::1004
74.125.225.34
74.125.225.40
74.125.225.33
74.125.225.38
74.125.225.46
74.125.225.37
74.125.225.39
74.125.225.36
74.125.225.41
74.125.225.32
74.125.225.35


Pinging google.com [74.125.225.40] with 32 bytes of data:
Reply from 74.125.225.40: bytes=32 time=207ms TTL=52
Reply from 74.125.225.40: bytes=32 time=209ms TTL=52

Ping statistics for 74.125.225.40:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 207ms, Maximum = 209ms, Average = 208ms
Server: tpeadc02.mpls.digitalriver.com
Address: 10.224.2.105

Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=288ms TTL=50
Reply from 72.30.38.140: bytes=32 time=253ms TTL=50

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 253ms, Maximum = 288ms, Average = 270ms
Server: tpeadc02.mpls.digitalriver.com
Address: 10.224.2.105

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...00 24 d7 60 4d 05 ......Microsoft Virtual WiFi Miniport Adapter
14...00 24 d7 60 4d 04 ......Intel® Centrino® Ultimate-N 6300 AGN
13...5c ac 4c ce 5c c8 ......Bluetooth Device (Personal Area Network)
10...f0 de f1 1d 1f 11 ......Intel® 82577LM Gigabit Network Connection
1...........................Software Loopback Interface 1
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.224.2.1 10.224.2.88 10
0.0.0.0 0.0.0.0 10.224.1.1 10.224.1.18 30
10.224.1.0 255.255.255.0 On-link 10.224.1.18 286
10.224.1.18 255.255.255.255 On-link 10.224.1.18 286
10.224.1.255 255.255.255.255 On-link 10.224.1.18 286
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 10.224.1.18 286
192.168.1.8 255.255.255.255 On-link 10.224.1.18 286
192.168.1.255 255.255.255.255 On-link 10.224.1.18 286
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.224.1.18 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.224.1.18 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
14 286 fe80::/64 On-link
14 286 fe80::7dc7:eb3a:fe99:9336/128
On-link
1 306 ff00::/8 On-link
14 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/09/2012 03:45:15 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: Unable to write a shadowed header for file C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk. Error -1032.

Error: (10/09/2012 03:45:15 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: An attempt to open the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (10/09/2012 03:32:41 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: Unable to write a shadowed header for file C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk. Error -1032.

Error: (10/09/2012 03:32:41 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: An attempt to open the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (10/09/2012 03:17:17 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: Unable to write a shadowed header for file C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk. Error -1032.

Error: (10/09/2012 03:17:17 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: An attempt to open the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (10/09/2012 02:54:11 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: Unable to write a shadowed header for file C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk. Error -1032.

Error: (10/09/2012 02:54:11 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: An attempt to open the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (10/09/2012 02:53:02 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: Unable to write a shadowed header for file C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk. Error -1032.

Error: (10/09/2012 02:53:02 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: An attempt to open the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).


System errors:
=============
Error: (10/09/2012 05:12:36 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 05:07:28 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 05:02:19 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 04:57:12 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 04:52:05 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 04:46:58 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 04:41:50 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 04:36:43 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 04:31:36 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 04:26:29 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.


Microsoft Office Sessions:
=========================
Error: (10/09/2012 03:45:15 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032

Error: (10/09/2012 03:45:15 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process.

Error: (10/09/2012 03:32:41 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032

Error: (10/09/2012 03:32:41 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process.

Error: (10/09/2012 03:17:17 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032

Error: (10/09/2012 03:17:17 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process.

Error: (10/09/2012 02:54:11 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032

Error: (10/09/2012 02:54:11 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process.

Error: (10/09/2012 02:53:02 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032

Error: (10/09/2012 02:53:02 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process.


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 8.2.1)
Add or Remove Adobe Creative Suite 3 Web Premium (Version: 1.0)
Adobe Acrobat 8 Professional (Version: 8.1.3)
Adobe Acrobat 8.1.3 Professional (Version: 8.1.3)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe BridgeTalk Plugin CS3 (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Contribute CS3 (Version: 4.1)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Dreamweaver CS3 (Version: 9)
Adobe ExtendScript Toolkit 2 (Version: 2.0.2)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Fireworks CS3 (Version: 9.0)
Adobe Flash CS3 (Version: 9.0)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.278)
Adobe Flash Video Encoder (Version: 2.0)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CS3 (Version: 13.0)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe MotionPicture Color Files (Version: 1.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe Version Cue CS3 Server {ko_KR} (Version: 3.0.0.0 {ko_KR} )
Adobe WAS CS3 (Version: 1.0)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AHV content for Acrobat and Flash (Version: 1)
Anki
ArgoUML 0.32.2 (Version: 0.32.2)
BIG-IP Edge Client Components (All Users) (Version: 70.2011.0622.1118)
BlackBerry App World Browser Plugin (Version: 2.1.3)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
CCleaner (Version: 3.23)
Cisco Unified Personal Communicator (Version: 8.5.5.19839)
Configuration Manager Client (Version: 4.00.6487.2000)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dropbox (Version: 1.4.7)
Endpoint Encryption Go (Version: 1.0.0)
eReg (Version: 1.20.138.34)
Essbase Client
FeedDemon (Version: 4.1.0.0)
FileZilla Client 3.5.3 (Version: 3.5.3)
Google Chrome (Version: 22.0.1229.79)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
Intel® Turbo Boost Technology Driver (Version: 01.02.00.1002)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 20 (64-bit) (Version: 6.0.200)
Java™ 6 Update 29 (Version: 6.0.290)
JavaFX 2.1.0 (Version: 2.1.0)
LINE (Version: 2.0.1.31)
Logitech SetPoint 6.22 (Version: 6.22.24)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Maruo editor 64 (8.20ƒÀ14) (Version: 8.20ƒÀ14)
McAfee Agent (Version: 4.6.0.2292)
McAfee Endpoint Encryption Agent (Version: 1.1.3.7409862)
McAfee Endpoint Encryption for PC v6 (Version: 6.1.3.7409862)
McAfee VirusScan Enterprise (Version: 8.8.01000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Lync 2010 Attendee (Version: 4.0.7577.4098)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio Viewer 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server PowerPivot for Excel (32-bit) (Version: 10.51.2500.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60816.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 15.4.2862.0708)
Notepad++ (Version: 5.9.1)
NVIDIA Display Control Panel (Version: 6.14.12.5738)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Updatus (Version: 1.0.3)
Paint.NET v3.5.8 (Version: 3.58.0)
PDF Settings (Version: 1.0)
Skype™ 5.10 (Version: 5.10.115)
Snagit 10 (Version: 10.0.0)
Spotify (Version: 0.8.4.124.ga3559d86)
Spybot - Search & Destroy (Version: 1.6.2)
SUPERAntiSpyware (Version: 5.6.1008)
System Requirements Lab
System Requirements Lab for Intel (Version: 4.4.24.0)
ThinkPad Power Management Driver (Version: 1.43)
ThinkPad UltraNav Utility (Version: 2.13.0)
Toad for Oracle 10.5 (Version: 10.5.0.41)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Vim 7.3 (self-installing)
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinMerge 2.12.4 (Version: 2.12.4)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
Yahoo! Messenger

========================= Memory info: ===================================

Percentage of memory in use: 76%
Total physical RAM: 3891.65 MB
Available physical RAM: 921.97 MB
Total Pagefile: 7781.5 MB
Available Pagefile: 2573.63 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.68 MB

========================= Partitions: =====================================

1 Drive c: (Local Disk) (Fixed) (Total:232.88 GB) (Free:140.29 GB) NTFS
3 Drive f: (Data2) (Network) (Total:1024 GB) (Free:510.78 GB) NTFS
4 Drive h: (Data2) (Network) (Total:1024 GB) (Free:510.78 GB) NTFS
5 Drive o: (Data1) (Network) (Total:256 GB) (Free:187.97 GB) NTFS
6 Drive t: (Data2) (Network) (Total:1024 GB) (Free:510.78 GB) NTFS
7 Drive y: (Hitachi02_Disk3_Common) (Network) (Total:249.97 GB) (Free:0 GB) NTFS

========================= Users: ========================================

User accounts for \\TW-R98CXX6-L

drguest localadmin UpdatusUser


**** End of log ****


can someone help advise the next step? really appreciate it.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:50 PM

Posted 09 October 2012 - 06:56 AM

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#3 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 08:39 AM

thanks...working on these and will post asap

#4 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 11:05 AM

ESET and Malware both reported nothing wrong.

Here is the MiniToolBox output:

MiniToolBox by Farbar Version: 23-07-2012
Ran by twu (administrator) on 09-10-2012 at 23:47:44
Microsoft Windows 7 Enterprise Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































74.55.76.230 www.google-analytics.com.
74.55.76.230 ad-emea.doubleclick.net.
74.55.76.230 www.statcounter.com.
178.250.45.15 www.google-analytics.com.
178.250.45.15 ad-emea.doubleclick.net.
178.250.45.15 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® 82577LM Gigabit Network Connection = Local Area Connection (Connected)
Intel® Centrino® Ultimate-N 6300 AGN = Wireless Network Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : TW-R98CXX6-L
Primary Dns Suffix . . . . . . . : mpls.digitalriver.com
Node Type . . . . . . . . . . . . : Peer-Peer
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : mpls.digitalriver.com
taipei.digitalriver.com
digitalriver.com

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-24-D7-60-4D-05
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : mpls.digitalriver.com
Description . . . . . . . . . . . : Intel® Centrino® Ultimate-N 6300 AGN
Physical Address. . . . . . . . . : 00-24-D7-60-4D-04
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7dc7:eb3a:fe99:9336%14(Preferred)
IPv4 Address. . . . . . . . . . . : 10.224.1.18(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, October 09, 2012 8:26:17 PM
Lease Expires . . . . . . . . . . : Wednesday, October 10, 2012 11:01:28 PM
Default Gateway . . . . . . . . . : 10.224.1.1
DHCP Server . . . . . . . . . . . : 10.224.2.15
DHCPv6 IAID . . . . . . . . . . . : 369108183
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-30-65-3E-F0-DE-F1-1D-1F-11
DNS Servers . . . . . . . . . . . : 10.224.2.105
192.168.109.92
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 5C-AC-4C-CE-5C-C8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : taipei.digitalriver.com
Description . . . . . . . . . . . : Intel® 82577LM Gigabit Network Connection
Physical Address. . . . . . . . . : F0-DE-F1-1D-1F-11
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 10.224.2.88(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, October 09, 2012 8:24:40 PM
Lease Expires . . . . . . . . . . : Wednesday, October 17, 2012 9:22:29 PM
Default Gateway . . . . . . . . . : 10.224.2.1
DHCP Server . . . . . . . . . . . : 10.224.2.15
DNS Servers . . . . . . . . . . . : 10.224.2.105
192.168.109.92
Primary WINS Server . . . . . . . : 192.168.109.92
Secondary WINS Server . . . . . . : 192.168.30.93
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.taipei.digitalriver.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.mpls.digitalriver.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : mpls.digitalriver.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3BBD8866-2406-470D-A8DA-A0D5D473EF7B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{38E5950C-253D-4A28-8E18-C23BC86421C1}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: tpeadc02.mpls.digitalriver.com
Address: 10.224.2.105

Name: google.com
Addresses: 2607:f8b0:4009:800::100e
74.125.225.46
74.125.225.40
74.125.225.32
74.125.225.36
74.125.225.38
74.125.225.39
74.125.225.34
74.125.225.41
74.125.225.35
74.125.225.33
74.125.225.37


Pinging google.com [74.125.225.40] with 32 bytes of data:
Reply from 74.125.225.40: bytes=32 time=207ms TTL=52
Reply from 74.125.225.40: bytes=32 time=207ms TTL=52

Ping statistics for 74.125.225.40:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 207ms, Maximum = 207ms, Average = 207ms
Server: tpeadc02.mpls.digitalriver.com
Address: 10.224.2.105

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=615ms TTL=48
Reply from 98.139.183.24: bytes=32 time=539ms TTL=48

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 539ms, Maximum = 615ms, Average = 577ms
Server: tpeadc02.mpls.digitalriver.com
Address: 10.224.2.105

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...00 24 d7 60 4d 05 ......Microsoft Virtual WiFi Miniport Adapter
14...00 24 d7 60 4d 04 ......Intel® Centrino® Ultimate-N 6300 AGN
13...5c ac 4c ce 5c c8 ......Bluetooth Device (Personal Area Network)
10...f0 de f1 1d 1f 11 ......Intel® 82577LM Gigabit Network Connection
1...........................Software Loopback Interface 1
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.224.2.1 10.224.2.88 10
0.0.0.0 0.0.0.0 10.224.1.1 10.224.1.18 25
10.224.1.0 255.255.255.0 On-link 10.224.1.18 281
10.224.1.18 255.255.255.255 On-link 10.224.1.18 281
10.224.1.255 255.255.255.255 On-link 10.224.1.18 281
10.224.2.0 255.255.255.0 On-link 10.224.2.88 266
10.224.2.88 255.255.255.255 On-link 10.224.2.88 266
10.224.2.255 255.255.255.255 On-link 10.224.2.88 266
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.224.2.88 266
224.0.0.0 240.0.0.0 On-link 10.224.1.18 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.224.2.88 266
255.255.255.255 255.255.255.255 On-link 10.224.1.18 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
14 281 fe80::/64 On-link
14 281 fe80::7dc7:eb3a:fe99:9336/128
On-link
1 306 ff00::/8 On-link
14 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/09/2012 11:12:12 PM) (Source: Software Protection Platform Service) (User: )
Description: Failed to schedule Software Protection service for re-start at 2012-10-10T04:52:11Z. Error Code: 0x80041321.

Error: (10/09/2012 08:38:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/09/2012 08:38:39 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/09/2012 08:34:28 PM) (Source: Software Protection Platform Service) (User: )
Description: Failed to schedule Software Protection service for re-start at 2012-10-10T04:51:27Z. Error Code: 0x80041321.

Error: (10/09/2012 08:31:49 PM) (Source: SmsClient) (User: )
Description: DC1CORPSCCM011The ConfigMgr Advanced Client encountered a certificate for Management Point DC1CORPSCCM01 that could not be verified.DC1CORPSCCM012

Error: (10/09/2012 08:15:25 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/09/2012 08:15:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/09/2012 08:15:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/09/2012 03:45:15 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: Unable to write a shadowed header for file C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk. Error -1032.

Error: (10/09/2012 03:45:15 PM) (Source: ESENT) (User: )
Description: Windows (4604) Windows: An attempt to open the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).


System errors:
=============
Error: (10/09/2012 11:47:14 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 11:42:07 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 11:37:01 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 11:31:54 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 11:26:48 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 11:21:41 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 11:16:34 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 11:11:26 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 11:06:20 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/09/2012 11:01:13 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.


Microsoft Office Sessions:
=========================
Error: (10/09/2012 11:12:12 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800413212012-10-10T04:52:11Z

Error: (10/09/2012 08:38:42 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\twu\Desktop\esetsmartinstaller_enu.exe

Error: (10/09/2012 08:38:39 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\twu\Desktop\esetsmartinstaller_enu.exe

Error: (10/09/2012 08:34:28 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800413212012-10-10T04:51:27Z

Error: (10/09/2012 08:31:49 PM) (Source: SmsClient)(User: )
Description: DC1CORPSCCM01

Error: (10/09/2012 08:15:25 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\twu\Desktop\esetsmartinstaller_enu.exe

Error: (10/09/2012 08:15:19 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\twu\Desktop\esetsmartinstaller_enu.exe

Error: (10/09/2012 08:15:17 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\twu\Desktop\esetsmartinstaller_enu.exe

Error: (10/09/2012 03:45:15 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032

Error: (10/09/2012 03:45:15 PM) (Source: ESENT)(User: )
Description: Windows4604Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process.


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 8.2.1)
Add or Remove Adobe Creative Suite 3 Web Premium (Version: 1.0)
Adobe Acrobat 8 Professional (Version: 8.1.3)
Adobe Acrobat 8.1.3 Professional (Version: 8.1.3)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe BridgeTalk Plugin CS3 (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Contribute CS3 (Version: 4.1)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Dreamweaver CS3 (Version: 9)
Adobe ExtendScript Toolkit 2 (Version: 2.0.2)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Fireworks CS3 (Version: 9.0)
Adobe Flash CS3 (Version: 9.0)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.278)
Adobe Flash Video Encoder (Version: 2.0)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CS3 (Version: 13.0)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe MotionPicture Color Files (Version: 1.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe Version Cue CS3 Server {ko_KR} (Version: 3.0.0.0 {ko_KR} )
Adobe WAS CS3 (Version: 1.0)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AHV content for Acrobat and Flash (Version: 1)
Anki
ArgoUML 0.32.2 (Version: 0.32.2)
BIG-IP Edge Client Components (All Users) (Version: 70.2011.0622.1118)
BlackBerry App World Browser Plugin (Version: 2.1.3)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
CCleaner (Version: 3.23)
Cisco Unified Personal Communicator (Version: 8.5.5.19839)
Configuration Manager Client (Version: 4.00.6487.2000)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dropbox (Version: 1.4.7)
Endpoint Encryption Go (Version: 1.0.0)
eReg (Version: 1.20.138.34)
ESET Online Scanner v3
Essbase Client
FeedDemon (Version: 4.1.0.0)
FileZilla Client 3.5.3 (Version: 3.5.3)
Google Chrome (Version: 22.0.1229.92)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
Intel® Turbo Boost Technology Driver (Version: 01.02.00.1002)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 20 (64-bit) (Version: 6.0.200)
Java™ 6 Update 29 (Version: 6.0.290)
JavaFX 2.1.0 (Version: 2.1.0)
LINE (Version: 2.0.1.31)
Logitech SetPoint 6.22 (Version: 6.22.24)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Maruo editor 64 (8.20ƒÀ14) (Version: 8.20ƒÀ14)
McAfee Agent (Version: 4.6.0.2292)
McAfee Endpoint Encryption Agent (Version: 1.1.3.7409862)
McAfee Endpoint Encryption for PC v6 (Version: 6.1.3.7409862)
McAfee VirusScan Enterprise (Version: 8.8.01000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Lync 2010 Attendee (Version: 4.0.7577.4098)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio Viewer 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server PowerPivot for Excel (32-bit) (Version: 10.51.2500.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60816.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 15.4.2862.0708)
Notepad++ (Version: 5.9.1)
NVIDIA Display Control Panel (Version: 6.14.12.5738)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Updatus (Version: 1.0.3)
Paint.NET v3.5.8 (Version: 3.58.0)
PDF Settings (Version: 1.0)
Skype™ 5.10 (Version: 5.10.115)
Snagit 10 (Version: 10.0.0)
Spotify (Version: 0.8.4.124.ga3559d86)
Spybot - Search & Destroy (Version: 1.6.2)
SUPERAntiSpyware (Version: 5.6.1008)
System Requirements Lab
System Requirements Lab for Intel (Version: 4.4.24.0)
ThinkPad Power Management Driver (Version: 1.43)
ThinkPad UltraNav Utility (Version: 2.13.0)
Toad for Oracle 10.5 (Version: 10.5.0.41)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Vim 7.3 (self-installing)
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinMerge 2.12.4 (Version: 2.12.4)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
Yahoo! Messenger

========================= Memory info: ===================================

Percentage of memory in use: 78%
Total physical RAM: 3891.65 MB
Available physical RAM: 841.69 MB
Total Pagefile: 7781.5 MB
Available Pagefile: 2639.77 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.6 MB

========================= Partitions: =====================================

1 Drive c: (Local Disk) (Fixed) (Total:232.88 GB) (Free:139.49 GB) NTFS
3 Drive f: (Data2) (Network) (Total:1024 GB) (Free:466.74 GB) NTFS
4 Drive h: (Data2) (Network) (Total:1024 GB) (Free:466.74 GB) NTFS
5 Drive o: (Data1) (Network) (Total:256 GB) (Free:187.97 GB) NTFS
6 Drive t: (Data2) (Network) (Total:1024 GB) (Free:466.74 GB) NTFS
7 Drive y: (Hitachi02_Disk3_Common) (Network) (Total:249.97 GB) (Free:0.01 GB) NTFS

========================= Users: ========================================

User accounts for \\TW-R98CXX6-L

drguest localadmin UpdatusUser

========================= Restore Points ==================================

02-10-2012 16:34:23 Scheduled Checkpoint
05-10-2012 02:44:46 Windows Update
08-10-2012 10:47:26 Windows Update
08-10-2012 16:03:19 Installed AVG 2013
08-10-2012 16:03:24 avast! Free Antivirus Setup
08-10-2012 16:04:19 Installed AVG 2013
09-10-2012 02:40:42 avast! Free Antivirus Setup
09-10-2012 02:49:57 Removed AVG 2013
09-10-2012 02:55:15 Removed AVG 2013

**** End of log ****

#5 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 11:11 AM

Service Scanner output:

Farbar Service Scanner Version: 07-10-2012
Ran by twu (administrator) on 10-10-2012 at 00:07:17
Running from "C:\Users\twu\Desktop"
Microsoft Windows 7 Enterprise Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#6 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 11:43 AM

ADW Cleaner Output:

# AdwCleaner v2.004 - Logfile created 10/10/2012 at 00:31:42
# Updated 06/10/2012 by Xplode
# Operating system : Windows 7 Enterprise Service Pack 1 (64 bits)
# User : twu - TW-R98CXX6-L
# Boot Mode : Normal
# Running from : C:\Users\twu\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default
File : C:\Users\twu\AppData\Roaming\Mozilla\Firefox\Profiles\v5ekthuv.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v22.0.1229.92

File : C:\Users\twu\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1805 octets] - [10/10/2012 00:28:04]
AdwCleaner[S1].txt - [1605 octets] - [10/10/2012 00:31:42]

########## EOF - C:\AdwCleaner[S1].txt - [1665 octets] ##########

#7 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 12:09 PM

JRT Output:

Junkware Removal Tool (JRT) by Thisisu
Version: 1.3.6 (10.09.2012)
OS: Windows 7 Enterprise x64
Ran by twu on Wed 10/10/2012 at 1:07:24.94
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys: 0 Detections



*** Files:

Successfully deleted: [FILE] C:\eula.1028.txt
Successfully deleted: [FILE] C:\eula.1031.txt
Successfully deleted: [FILE] C:\eula.1033.txt
Successfully deleted: [FILE] C:\eula.1036.txt
Successfully deleted: [FILE] C:\eula.1040.txt
Successfully deleted: [FILE] C:\eula.1041.txt
Successfully deleted: [FILE] C:\eula.1042.txt
Successfully deleted: [FILE] C:\eula.2052.txt
Successfully deleted: [FILE] C:\install.res.1028.dll
Successfully deleted: [FILE] C:\install.res.1031.dll
Successfully deleted: [FILE] C:\install.res.1033.dll
Successfully deleted: [FILE] C:\install.res.1036.dll
Successfully deleted: [FILE] C:\install.res.1040.dll
Successfully deleted: [FILE] C:\install.res.1041.dll
Successfully deleted: [FILE] C:\install.res.1042.dll
Successfully deleted: [FILE] C:\install.res.2052.dll
Successfully deleted: [FILE] C:\install.res.3082.dll



*** Folders: 0 Detections



*** FireFox detected and repaired



*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Wed 10/10/2012 at 1:08:46.73
End of Report




what's next? appreciate your help with this.

#8 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 12:27 PM

unfortunately still seems like the problem is here...just saw another iphone pop up :angry:

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:50 PM

Posted 09 October 2012 - 05:24 PM

Click on startmenu and type

cmd

right click on it and select run as administrator

Now copy following commands and press ENTER one by one

cd C:\windows\system32\drivers\etc
takeown /a /f hosts
cacls hosts /p everyone:f


Press Y

attrib -s -h -r hosts

After running these commands

Download

Hosts fixit

Run it,restart the PC

Now launch mini toolbox and checkmark hosts contents alone and post the new log

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#10 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 09:48 PM

ran the commands and this is the new minitoolbox outoput:

MiniToolBox by Farbar Version: 23-07-2012
Ran by twu (administrator) on 10-10-2012 at 10:40:06
Microsoft Windows 7 Enterprise Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

# ::1 localhost

========================= IP Configuration: ================================

Intel® Centrino® Ultimate-N 6300 AGN = Wireless Network Connection (Connected)
Intel® 82577LM Gigabit Network Connection = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : TW-R98CXX6-L
Primary Dns Suffix . . . . . . . : mpls.digitalriver.com
Node Type . . . . . . . . . . . . : Peer-Peer
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : digitalriver.com
mpls.digitalriver.com
dc1.digitalriver.com
dc2.digitalriver.com
oc.digitalriver.com
dc20.digitalriver.com

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-24-D7-60-4D-05
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : RT-G32
Description . . . . . . . . . . . : Intel® Centrino® Ultimate-N 6300 AGN
Physical Address. . . . . . . . . : 00-24-D7-60-4D-04
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7dc7:eb3a:fe99:9336%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.8(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, October 10, 2012 10:21:50 AM
Lease Expires . . . . . . . . . . : Thursday, October 11, 2012 10:21:50 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 369108183
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-30-65-3E-F0-DE-F1-1D-1F-11
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 5C-AC-4C-CE-5C-C8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : taipei.digitalriver.com
Description . . . . . . . . . . . : Intel® 82577LM Gigabit Network Connection
Physical Address. . . . . . . . . : F0-DE-F1-1D-1F-11
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.taipei.digitalriver.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:2892:22ff:c58d:b4d9(Preferred)
Link-local IPv6 Address . . . . . : fe80::2892:22ff:c58d:b4d9%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.RT-G32:

Connection-specific DNS Suffix . : RT-G32
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.1.8%20(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{3BBD8866-2406-470D-A8DA-A0D5D473EF7B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{38E5950C-253D-4A28-8E18-C23BC86421C1}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: RT-G32
Address: 192.168.1.1

Name: google.com.dc1.digitalriver.com
Address: 209.87.178.252


Pinging google.com [74.125.31.101] with 32 bytes of data:
Reply from 74.125.31.101: bytes=32 time=22ms TTL=48
Reply from 74.125.31.101: bytes=32 time=14ms TTL=48

Ping statistics for 74.125.31.101:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 14ms, Maximum = 22ms, Average = 18ms
Server: RT-G32
Address: 192.168.1.1

Name: yahoo.com.dc1.digitalriver.com
Address: 209.87.178.252


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=202ms TTL=48
Reply from 98.138.253.109: bytes=32 time=195ms TTL=48

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 195ms, Maximum = 202ms, Average = 198ms
Server: RT-G32
Address: 192.168.1.1

Name: bleepingcomputer.com.dc1.digitalriver.com
Address: 209.87.178.252


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...00 24 d7 60 4d 05 ......Microsoft Virtual WiFi Miniport Adapter
14...00 24 d7 60 4d 04 ......Intel® Centrino® Ultimate-N 6300 AGN
13...5c ac 4c ce 5c c8 ......Bluetooth Device (Personal Area Network)
10...f0 de f1 1d 1f 11 ......Intel® 82577LM Gigabit Network Connection
1...........................Software Loopback Interface 1
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.8 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.8 281
192.168.1.8 255.255.255.255 On-link 192.168.1.8 281
192.168.1.255 255.255.255.255 On-link 192.168.1.8 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.8 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.8 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 58 ::/0 On-link
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:9d38:6ab8:2892:22ff:c58d:b4d9/128
On-link
14 281 fe80::/64 On-link
11 306 fe80::/64 On-link
20 286 fe80::5efe:192.168.1.8/128
On-link
11 306 fe80::2892:22ff:c58d:b4d9/128
On-link
14 281 fe80::7dc7:eb3a:fe99:9336/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
14 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/10/2012 10:30:55 AM) (Source: Software Protection Platform Service) (User: )
Description: Failed to schedule Software Protection service for re-start at 2012-10-10T04:51:54Z. Error Code: 0x80041321.

Error: (10/10/2012 10:24:14 AM) (Source: AutoEnrollment) (User: )
Description: MPLS\twu0x8007003aThe specified server cannot perform the requested operation.

Error: (10/10/2012 06:42:14 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/10/2012 06:41:12 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (10/10/2012 06:39:03 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/10/2012 06:36:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "imaging1".Error in manifest or policy file "imaging2" on line imaging3.
The element imaging appears as a child of element urn:schemas-microsoft-com:asm.v1^assembly which is not supported by this version of Windows.


System errors:
=============
Error: (10/10/2012 10:40:30 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:40:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:39:45 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:39:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:38:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:37:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:36:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:36:01 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:35:25 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:35:20 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.


Microsoft Office Sessions:
=========================
Error: (10/10/2012 10:30:55 AM) (Source: Software Protection Platform Service)(User: )
Description: 0x800413212012-10-10T04:51:54Z

Error: (10/10/2012 10:24:14 AM) (Source: AutoEnrollment)(User: )
Description: MPLS\twu0x8007003aThe specified server cannot perform the requested operation.

Error: (10/10/2012 06:42:14 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\twu\Desktop\esetsmartinstaller_enu.exe

Error: (10/10/2012 06:41:12 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8

Error: (10/10/2012 06:39:03 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (10/10/2012 06:36:59 AM) (Source: SideBySide)(User: )
Description: imagingurn:schemas-microsoft-com:asm.v1^assemblyc:\program files\microsoft security client\MSESysprep.dllc:\program files\microsoft security client\MSESysprep.dll10


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 8.2.1)
Add or Remove Adobe Creative Suite 3 Web Premium (Version: 1.0)
Adobe Acrobat 8 Professional (Version: 8.1.3)
Adobe Acrobat 8.1.3 Professional (Version: 8.1.3)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe BridgeTalk Plugin CS3 (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Contribute CS3 (Version: 4.1)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Dreamweaver CS3 (Version: 9)
Adobe ExtendScript Toolkit 2 (Version: 2.0.2)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Fireworks CS3 (Version: 9.0)
Adobe Flash CS3 (Version: 9.0)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.278)
Adobe Flash Video Encoder (Version: 2.0)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CS3 (Version: 13.0)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe MotionPicture Color Files (Version: 1.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe Version Cue CS3 Server {ko_KR} (Version: 3.0.0.0 {ko_KR} )
Adobe WAS CS3 (Version: 1.0)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AHV content for Acrobat and Flash (Version: 1)
Anki
ArgoUML 0.32.2 (Version: 0.32.2)
BIG-IP Edge Client Components (All Users) (Version: 70.2011.0622.1118)
BlackBerry App World Browser Plugin (Version: 2.1.3)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
CCleaner (Version: 3.23)
Cisco Unified Personal Communicator (Version: 8.5.5.19839)
Configuration Manager Client (Version: 4.00.6487.2000)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dropbox (Version: 1.4.7)
Endpoint Encryption Go (Version: 1.0.0)
eReg (Version: 1.20.138.34)
ESET Online Scanner v3
Essbase Client
FeedDemon (Version: 4.1.0.0)
FileZilla Client 3.5.3 (Version: 3.5.3)
Google Chrome (Version: 22.0.1229.92)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
Intel® Turbo Boost Technology Driver (Version: 01.02.00.1002)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 20 (64-bit) (Version: 6.0.200)
Java™ 6 Update 29 (Version: 6.0.290)
JavaFX 2.1.0 (Version: 2.1.0)
LINE (Version: 2.0.1.31)
Logitech SetPoint 6.22 (Version: 6.22.24)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Maruo editor 64 (8.20ƒÀ14) (Version: 8.20ƒÀ14)
McAfee Agent (Version: 4.6.0.2292)
McAfee Endpoint Encryption Agent (Version: 1.1.3.7409862)
McAfee Endpoint Encryption for PC v6 (Version: 6.1.3.7409862)
McAfee VirusScan Enterprise (Version: 8.8.01000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Lync 2010 Attendee (Version: 4.0.7577.4098)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio Viewer 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server PowerPivot for Excel (32-bit) (Version: 10.51.2500.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60816.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 15.4.2862.0708)
Notepad++ (Version: 5.9.1)
NVIDIA Display Control Panel (Version: 6.14.12.5738)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Updatus (Version: 1.0.3)
Paint.NET v3.5.8 (Version: 3.58.0)
PDF Settings (Version: 1.0)
Skype™ 5.10 (Version: 5.10.115)
Snagit 10 (Version: 10.0.0)
Spotify (Version: 0.8.4.124.ga3559d86)
Spybot - Search & Destroy (Version: 1.6.2)
SUPERAntiSpyware (Version: 5.6.1008)
System Requirements Lab
System Requirements Lab for Intel (Version: 4.4.24.0)
ThinkPad Power Management Driver (Version: 1.43)
ThinkPad UltraNav Utility (Version: 2.13.0)
Toad for Oracle 10.5 (Version: 10.5.0.41)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Vim 7.3 (self-installing)
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinMerge 2.12.4 (Version: 2.12.4)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
Yahoo! Messenger

========================= Memory info: ===================================

Percentage of memory in use: 59%
Total physical RAM: 3891.65 MB
Available physical RAM: 1582.52 MB
Total Pagefile: 7781.5 MB
Available Pagefile: 4873.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3954.09 MB

========================= Partitions: =====================================

1 Drive c: (Local Disk) (Fixed) (Total:232.88 GB) (Free:138.57 GB) NTFS

========================= Users: ========================================

User accounts for \\TW-R98CXX6-L

drguest localadmin UpdatusUser

========================= Restore Points ==================================

02-10-2012 16:34:23 Scheduled Checkpoint
05-10-2012 02:44:46 Windows Update
08-10-2012 10:47:26 Windows Update
08-10-2012 16:03:19 Installed AVG 2013
08-10-2012 16:03:24 avast! Free Antivirus Setup
08-10-2012 16:04:19 Installed AVG 2013
09-10-2012 02:40:42 avast! Free Antivirus Setup
09-10-2012 02:49:57 Removed AVG 2013
09-10-2012 02:55:15 Removed AVG 2013
10-10-2012 01:51:05 Installed Microsoft Fix it 50267

**** End of log ****

rkill output:

MiniToolBox by Farbar Version: 23-07-2012
Ran by twu (administrator) on 10-10-2012 at 10:40:06
Microsoft Windows 7 Enterprise Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

# ::1 localhost

========================= IP Configuration: ================================

Intel® Centrino® Ultimate-N 6300 AGN = Wireless Network Connection (Connected)
Intel® 82577LM Gigabit Network Connection = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : TW-R98CXX6-L
Primary Dns Suffix . . . . . . . : mpls.digitalriver.com
Node Type . . . . . . . . . . . . : Peer-Peer
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : digitalriver.com
mpls.digitalriver.com
dc1.digitalriver.com
dc2.digitalriver.com
oc.digitalriver.com
dc20.digitalriver.com

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-24-D7-60-4D-05
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : RT-G32
Description . . . . . . . . . . . : Intel® Centrino® Ultimate-N 6300 AGN
Physical Address. . . . . . . . . : 00-24-D7-60-4D-04
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7dc7:eb3a:fe99:9336%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.8(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, October 10, 2012 10:21:50 AM
Lease Expires . . . . . . . . . . : Thursday, October 11, 2012 10:21:50 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 369108183
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-30-65-3E-F0-DE-F1-1D-1F-11
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 5C-AC-4C-CE-5C-C8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : taipei.digitalriver.com
Description . . . . . . . . . . . : Intel® 82577LM Gigabit Network Connection
Physical Address. . . . . . . . . : F0-DE-F1-1D-1F-11
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.taipei.digitalriver.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:2892:22ff:c58d:b4d9(Preferred)
Link-local IPv6 Address . . . . . : fe80::2892:22ff:c58d:b4d9%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.RT-G32:

Connection-specific DNS Suffix . : RT-G32
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.1.8%20(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{3BBD8866-2406-470D-A8DA-A0D5D473EF7B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{38E5950C-253D-4A28-8E18-C23BC86421C1}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: RT-G32
Address: 192.168.1.1

Name: google.com.dc1.digitalriver.com
Address: 209.87.178.252


Pinging google.com [74.125.31.101] with 32 bytes of data:
Reply from 74.125.31.101: bytes=32 time=22ms TTL=48
Reply from 74.125.31.101: bytes=32 time=14ms TTL=48

Ping statistics for 74.125.31.101:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 14ms, Maximum = 22ms, Average = 18ms
Server: RT-G32
Address: 192.168.1.1

Name: yahoo.com.dc1.digitalriver.com
Address: 209.87.178.252


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=202ms TTL=48
Reply from 98.138.253.109: bytes=32 time=195ms TTL=48

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 195ms, Maximum = 202ms, Average = 198ms
Server: RT-G32
Address: 192.168.1.1

Name: bleepingcomputer.com.dc1.digitalriver.com
Address: 209.87.178.252


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...00 24 d7 60 4d 05 ......Microsoft Virtual WiFi Miniport Adapter
14...00 24 d7 60 4d 04 ......Intel® Centrino® Ultimate-N 6300 AGN
13...5c ac 4c ce 5c c8 ......Bluetooth Device (Personal Area Network)
10...f0 de f1 1d 1f 11 ......Intel® 82577LM Gigabit Network Connection
1...........................Software Loopback Interface 1
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.8 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.8 281
192.168.1.8 255.255.255.255 On-link 192.168.1.8 281
192.168.1.255 255.255.255.255 On-link 192.168.1.8 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.8 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.8 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 58 ::/0 On-link
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:9d38:6ab8:2892:22ff:c58d:b4d9/128
On-link
14 281 fe80::/64 On-link
11 306 fe80::/64 On-link
20 286 fe80::5efe:192.168.1.8/128
On-link
11 306 fe80::2892:22ff:c58d:b4d9/128
On-link
14 281 fe80::7dc7:eb3a:fe99:9336/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
14 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/10/2012 10:30:55 AM) (Source: Software Protection Platform Service) (User: )
Description: Failed to schedule Software Protection service for re-start at 2012-10-10T04:51:54Z. Error Code: 0x80041321.

Error: (10/10/2012 10:24:14 AM) (Source: AutoEnrollment) (User: )
Description: MPLS\twu0x8007003aThe specified server cannot perform the requested operation.

Error: (10/10/2012 06:42:14 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/10/2012 06:41:12 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (10/10/2012 06:39:03 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/10/2012 06:36:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "imaging1".Error in manifest or policy file "imaging2" on line imaging3.
The element imaging appears as a child of element urn:schemas-microsoft-com:asm.v1^assembly which is not supported by this version of Windows.


System errors:
=============
Error: (10/10/2012 10:40:30 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:40:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:39:45 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:39:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:38:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:37:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:36:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:36:01 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:35:25 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.

Error: (10/10/2012 10:35:20 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 47.


Microsoft Office Sessions:
=========================
Error: (10/10/2012 10:30:55 AM) (Source: Software Protection Platform Service)(User: )
Description: 0x800413212012-10-10T04:51:54Z

Error: (10/10/2012 10:24:14 AM) (Source: AutoEnrollment)(User: )
Description: MPLS\twu0x8007003aThe specified server cannot perform the requested operation.

Error: (10/10/2012 06:42:14 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\twu\Desktop\esetsmartinstaller_enu.exe

Error: (10/10/2012 06:41:12 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8

Error: (10/10/2012 06:39:03 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (10/10/2012 06:36:59 AM) (Source: SideBySide)(User: )
Description: imagingurn:schemas-microsoft-com:asm.v1^assemblyc:\program files\microsoft security client\MSESysprep.dllc:\program files\microsoft security client\MSESysprep.dll10


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 8.2.1)
Add or Remove Adobe Creative Suite 3 Web Premium (Version: 1.0)
Adobe Acrobat 8 Professional (Version: 8.1.3)
Adobe Acrobat 8.1.3 Professional (Version: 8.1.3)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe BridgeTalk Plugin CS3 (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Contribute CS3 (Version: 4.1)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Dreamweaver CS3 (Version: 9)
Adobe ExtendScript Toolkit 2 (Version: 2.0.2)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Fireworks CS3 (Version: 9.0)
Adobe Flash CS3 (Version: 9.0)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.278)
Adobe Flash Video Encoder (Version: 2.0)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CS3 (Version: 13.0)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe MotionPicture Color Files (Version: 1.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe Version Cue CS3 Server {ko_KR} (Version: 3.0.0.0 {ko_KR} )
Adobe WAS CS3 (Version: 1.0)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AHV content for Acrobat and Flash (Version: 1)
Anki
ArgoUML 0.32.2 (Version: 0.32.2)
BIG-IP Edge Client Components (All Users) (Version: 70.2011.0622.1118)
BlackBerry App World Browser Plugin (Version: 2.1.3)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
CCleaner (Version: 3.23)
Cisco Unified Personal Communicator (Version: 8.5.5.19839)
Configuration Manager Client (Version: 4.00.6487.2000)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dropbox (Version: 1.4.7)
Endpoint Encryption Go (Version: 1.0.0)
eReg (Version: 1.20.138.34)
ESET Online Scanner v3
Essbase Client
FeedDemon (Version: 4.1.0.0)
FileZilla Client 3.5.3 (Version: 3.5.3)
Google Chrome (Version: 22.0.1229.92)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
Intel® Turbo Boost Technology Driver (Version: 01.02.00.1002)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 20 (64-bit) (Version: 6.0.200)
Java™ 6 Update 29 (Version: 6.0.290)
JavaFX 2.1.0 (Version: 2.1.0)
LINE (Version: 2.0.1.31)
Logitech SetPoint 6.22 (Version: 6.22.24)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Maruo editor 64 (8.20ƒÀ14) (Version: 8.20ƒÀ14)
McAfee Agent (Version: 4.6.0.2292)
McAfee Endpoint Encryption Agent (Version: 1.1.3.7409862)
McAfee Endpoint Encryption for PC v6 (Version: 6.1.3.7409862)
McAfee VirusScan Enterprise (Version: 8.8.01000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Lync 2010 Attendee (Version: 4.0.7577.4098)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio Viewer 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server PowerPivot for Excel (32-bit) (Version: 10.51.2500.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60816.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 15.4.2862.0708)
Notepad++ (Version: 5.9.1)
NVIDIA Display Control Panel (Version: 6.14.12.5738)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Updatus (Version: 1.0.3)
Paint.NET v3.5.8 (Version: 3.58.0)
PDF Settings (Version: 1.0)
Skype™ 5.10 (Version: 5.10.115)
Snagit 10 (Version: 10.0.0)
Spotify (Version: 0.8.4.124.ga3559d86)
Spybot - Search & Destroy (Version: 1.6.2)
SUPERAntiSpyware (Version: 5.6.1008)
System Requirements Lab
System Requirements Lab for Intel (Version: 4.4.24.0)
ThinkPad Power Management Driver (Version: 1.43)
ThinkPad UltraNav Utility (Version: 2.13.0)
Toad for Oracle 10.5 (Version: 10.5.0.41)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Vim 7.3 (self-installing)
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinMerge 2.12.4 (Version: 2.12.4)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
Yahoo! Messenger

========================= Memory info: ===================================

Percentage of memory in use: 59%
Total physical RAM: 3891.65 MB
Available physical RAM: 1582.52 MB
Total Pagefile: 7781.5 MB
Available Pagefile: 4873.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3954.09 MB

========================= Partitions: =====================================

1 Drive c: (Local Disk) (Fixed) (Total:232.88 GB) (Free:138.57 GB) NTFS

========================= Users: ========================================

User accounts for \\TW-R98CXX6-L

drguest localadmin UpdatusUser

========================= Restore Points ==================================

02-10-2012 16:34:23 Scheduled Checkpoint
05-10-2012 02:44:46 Windows Update
08-10-2012 10:47:26 Windows Update
08-10-2012 16:03:19 Installed AVG 2013
08-10-2012 16:03:24 avast! Free Antivirus Setup
08-10-2012 16:04:19 Installed AVG 2013
09-10-2012 02:40:42 avast! Free Antivirus Setup
09-10-2012 02:49:57 Removed AVG 2013
09-10-2012 02:55:15 Removed AVG 2013
10-10-2012 01:51:05 Installed Microsoft Fix it 50267

**** End of log ****

#11 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 09:50 PM

rkill output:




Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 10/10/2012 10:47:35 AM in x64 mode.
Windows Version: Windows 7 Enterprise Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 10/10/2012 10:47:46 AM
Execution time: 0 hours(s), 0 minute(s), and 10 seconds(s)

#12 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 09:59 PM

Autoruns output:



"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "EvtMgr6" "Logitech SetPoint Event Manager (UNICODE)" "Logitech, Inc." "c:\program files\logitech\setpointp\setpoint.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "MfeEpePcMonitor" "McAfee Endpoint Encryption Monitor" "" "c:\program files\mcafee\endpoint encryption for pc v6\epepcmonitor.exe"
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Acrobat Assistant 8.0" "AcroTray" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 8.0\acrobat\acrotray.exe"
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "Adobe_ID0EYTHM" "Adobe Version Cue CS3" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\adobe version cue cs3\server\bin\versioncuecs3tray.exe"
+ "AttendeeCommunicator" "Microsoft Lync 2010 Attendee" "Microsoft Corporation" "c:\program files (x86)\microsoft lync attendee\attendeecommunicator.exe"
+ "BCSSync" "Microsoft Office 2010 component" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\bcssync.exe"
+ "Device Switcher" "Cisco VXC Device Selector" "Cisco Systems, Inc." "c:\program files (x86)\cisco systems\unified personal communicator\deviceswitcher.exe"
+ "McAfeeUpdaterUI" "Common User Interface" "McAfee, Inc." "c:\program files (x86)\mcafee\common framework\udaterui.exe"
+ "RIMBBLaunchAgent.exe" "Launch Agent Service" "Research In Motion Limited" "c:\program files (x86)\common files\research in motion\usb drivers\rimbblaunchagent.exe"
+ "ShStatEXE" "VirusScan tray icon" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\shstat.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Snagit 10.lnk" "Snagit" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\snagit32.exe"
"C:\Users\twu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Dropbox.lnk" "Dropbox" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropbox.exe"
+ "Maruo.lnk" "Maruo Editor" "Saitou Kikaku Corporation" "c:\program files\maruo\maruo.exe"
+ "OneNote 2010 Screen Clipper and Launcher.lnk" "Microsoft OneNote Quick Launcher" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onenotem.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Cisco Unified Personal Communicator" "Cisco Unified Personal Communicator" "Cisco Systems, Inc." "c:\program files (x86)\cisco systems\unified personal communicator\cupc.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\twu\appdata\local\google\update\googleupdate.exe"
+ "GoToMeeting" "GoToMeeting" "Citrix Online, a division of Citrix Systems, Inc." "c:\program files (x86)\citrix\gotomeeting\880\g2mstart.exe"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "Spotify" "Spotify" "Spotify Ltd" "c:\users\twu\appdata\roaming\spotify\spotify.exe"
+ "Spotify Web Helper" "" "" "c:\users\twu\appdata\roaming\spotify\data\spotifywebhelper.exe"
+ "SpybotSD TeaTimer" "System settings protector" "Safer-Networking Ltd." "c:\program files (x86)\spybot - search & destroy\teatimer.exe"
+ "SUPERAntiSpyware" "SUPERAntiSpyware Application" "SUPERAntiSpyware.com" "c:\program files\superantispyware\superantispyware.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 8.0\acrobat elements\contextmenu64.dll"
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "gvim" "A small project for the context menu of gvim!" "Tianmiao Hu's Developer Studio" "c:\program files (x86)\vim\vim73\gvimext.dll"
+ "Notepad++64" "ShellHandler for Notepad++ (64 bit)" "" "c:\program files (x86)\notepad++\nppshell_04.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
+ "SnagItMainShellExt" "Snagit Shell Extension DLL" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\dllx64\snagitshellext64.dll"
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\x64\shext.dll"
+ "WinMerge" "WinMerge Shell Integration library" "http://winmerge.org" "c:\program files (x86)\winmerge\shellextensionx64.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 8.0\acrobat elements\contextmenu.dll"
+ "SnagItMainShellExt" "Snagit Shell Extension DLL" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\snagitshellext.dll"
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\shext.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
+ "SnagItMainShellExt" "Snagit Shell Extension DLL" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\dllx64\snagitshellext64.dll"
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\x64\shext.dll"
+ "WinMerge" "WinMerge Shell Integration library" "http://winmerge.org" "c:\program files (x86)\winmerge\shellextensionx64.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "SnagItMainShellExt" "Snagit Shell Extension DLL" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\snagitshellext.dll"
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\shext.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "FileZilla3CopyHook" "fzshellext Dynamic Link Library" "" "c:\program files (x86)\filezilla ftp client\fzshellext_64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "FileZilla3CopyHook" "fzshellext Dynamic Link Library" "" "c:\program files (x86)\filezilla ftp client\fzshellext.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
+ "WinMerge" "WinMerge Shell Integration library" "http://winmerge.org" "c:\program files (x86)\winmerge\shellextensionx64.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 8.0\acrobat elements\contextmenu64.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\x64\shext.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 8.0\acrobat elements\contextmenu.dll"
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\shext.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\twu\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "scriptproxy" "VSCore Script Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\scriptsn.20120309114020.dll"
+ "SnagIt Toolbar Loader" "Snagit Browser Helper Object for Internet Explorer" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\dllx64\snagitbho64.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Conversion Toolbar Helper" "Adobe PDF Toolbar for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\acrobat 8.0\acrobat\acroiefavclient.dll"
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "ContributeBHO Class" "Contribute IE Plugin" "Adobe Systems Incorporated." "c:\program files (x86)\adobe\/adobe contribute cs3/contributeieplugin.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "scriptproxy" "VSCore Script Scanner" "McAfee, Inc." "c:\program files (x86)\common files\mcafee\systemcore\scriptsn.20120309114022.dll"
+ "SnagIt Toolbar Loader" "Snagit Browser Helper Object for Internet Explorer" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\snagitbho.dll"
+ "Spybot-S&D IE Protection" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Snagit" "Snagit Add-in for Internet Explorer" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\dllx64\snagitieaddin64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Adobe PDF" "Adobe PDF Toolbar for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\acrobat 8.0\acrobat\acroiefavclient.dll"
+ "Snagit" "Snagit Add-in for Internet Explorer" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\snagitieaddin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
+ "Spybot - Search & Destroy Configuration" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
"Task Scheduler" "" "" ""
+ "\Cisco CDP Monitor" "" "" "c:\program files (x86)\common files\cisco systems\cdp driver\ndiscdp.vbs"
+ "\GoogleUpdateTaskUserS-1-5-21-1123561945-1659004503-682003330-37327Core" "Google Installer" "Google Inc." "c:\users\twu\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1123561945-1659004503-682003330-37327UA" "Google Installer" "Google Inc." "c:\users\twu\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Microsoft Antimalware\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\antimalware\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "!SASCORE" "SUPERAntiSpyware Core Service" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sascore64.exe"
+ "Adobe Version Cue CS3" "Adobe Version Cue CS3" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\adobe version cue cs3\server\bin\versioncuecs3.exe"
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "Cisco HVD Agent" "Cisco Hosted Virtual Desktop Agent" "" "c:\program files (x86)\cisco systems\unified personal communicator\cisco.uc.clients.vc.hvdagent.service.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Macrovision Europe Ltd." "c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "IBMPMSVC" "ThinkPad Power Management Service" "Lenovo" "c:\windows\system32\ibmpmsvc.exe"
+ "LBTServ" "Logitech Bluetooth Service" "Logitech, Inc." "c:\program files\common files\logishrd\bluetooth\lbtserv.exe"
+ "McAfee EEGo" "" "" "c:\program files (x86)\mcafee\eego\eegoservice.exe"
+ "McAfee Endpoint Encryption Agent" "Coordinates encryption services between McAfee Agent and installed encryption provider(s)." "" "c:\program files\mcafee\endpoint encryption agent\mfeepehost.exe"
+ "McAfeeFramework" "Shared component framework for McAfee products" "McAfee, Inc." "c:\program files (x86)\mcafee\common framework\frameworkservice.exe"
+ "McShield" "McAfee OnAccess Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mcshield.exe"
+ "McTaskManager" "Allows scheduling of McAfee scanning and updating activities." "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\vstskmgr.exe"
+ "mfevtp" "Provides validation trust protection services" "McAfee, Inc." "c:\windows\system32\mfevtps.exe"
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\groove.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\antimalware\msmpeng.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "NisSrv" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\microsoft security client\antimalware\nissrv.exe"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "cpudrv64" "" "" "c:\program files (x86)\systemrequirementslab\cpudrv64.sys"
+ "e1kexpress" "Intel® Gigabit Adapter NDIS 6.x driver" "Intel Corporation" "c:\windows\system32\drivers\e1k62x64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "f5ipfw" "StoneWall Filter Driver" "F5 Networks, Inc." "c:\windows\system32\drivers\urfltv64.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "IBMPMDRV" "ThinkPad Power Management Driver" "Lenovo." "c:\windows\system32\drivers\ibmpmdrv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "Impcd" "Intel® Turbo Boost Technology Driver" "Intel Corporation" "c:\windows\system32\drivers\impcd.sys"
+ "IntcDAud" "Intel® Display Audio Driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "is3srv" "" "" "File not found: SySWOW64\drivers\is3srv64.sys"
+ "LEqdUsb" "Logitech Equad USB Driver." "Logitech, Inc." "c:\windows\system32\drivers\leqdusb.sys"
+ "LHidEqd" "Logitech HID Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lhideqd.sys"
+ "LHidFilt" "Logitech HID Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lhidfilt.sys"
+ "LMouFilt" "Logitech Mouse Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lmoufilt.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "mfeapfk" "Access Protection Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeapfk.sys"
+ "mfeavfk" "Anti-Virus File System Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeavfk.sys"
+ "mfeavfk01" "" "" "File not found: C:\Windows\System32\Drivers\mfeavfk01.sys"
+ "MfeEEAlg" "McAfee Endpoint Encryption Cryptographic Algorithms" "McAfee, Inc." "c:\windows\system32\drivers\mfeeealg.sys"
+ "MfeEpePc" "McAfee, Inc." "McAfee, Inc." "c:\windows\system32\drivers\mfeepepc.sys"
+ "mfehidk" "McAfee Link Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfehidk.sys"
+ "mferkdet" "McAfee Code Analysis Driver" "McAfee, Inc." "c:\windows\system32\drivers\mferkdet.sys"
+ "mfewfpk" "Anti-Virus Mini-Firewall Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfewfpk.sys"
+ "Ndiscdp" "Cisco CDP KMDF NDIS Protocol Driver" "Cisco Systems" "c:\windows\system32\drivers\ndiscdp.sys"
+ "NETw5s64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw5s64.sys"
+ "NETwNs64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netwns64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 257.38 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RimUsb" "BlackBerry Device Driver" "Research In Motion Limited" "c:\windows\system32\drivers\rimusb_amd64.sys"
+ "RimVSerPort" "RIM Virtual Serial Driver" "Research in Motion Ltd" "c:\windows\system32\drivers\rimserial_amd64.sys"
+ "SASDIFSV" "SASDIFSV64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\sasdifsv64.sys"
+ "SASKUTIL" "SASKUTIL64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\saskutil64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SrvHsfHDA" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl6.sys"
+ "SrvHsfV92" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv6.sys"
+ "SrvHsfWinac" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt6.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "Synth3dVsc" "" "" "File not found: System32\drivers\synth3dvsc.sys"
+ "szkg5" "" "" "File not found: SySWOW64\DRIVERS\szkg64.sys"
+ "tsusbhub" "@%SystemRoot%\system32\drivers\tsusbhub.sys,-2" "" "File not found: system32\drivers\tsusbhub.sys"
+ "urvpndrv" "NetworkAccess NDIS WAN/TAPI Miniport for Windows." "F5 Networks, Inc." "c:\windows\system32\drivers\covpnv64.sys"
+ "VGPU" "" "" "File not found: System32\drivers\rdvgkmd.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "MainConcept AAC Decoder" "AAC audio decoder filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_dec_aac_ds.ax"
+ "MainConcept AMR Decoder" "AMR Decoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_dec_amr_ds.ax"
+ "MainConcept Audio Converter" "Audio Converter DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_trans_audio_converter_ds.ax"
+ "MainConcept Audio Resampler" "Audio Resampler Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_trans_audio_samplerate_ds.ax"
+ "MainConcept AVC/H.264 Video Decoder" "AVC/H.264 Decoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_dec_avc_ds.ax"
+ "MainConcept Color Space Converter" "Color Space Converter DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_trans_video_colorspace_ds.ax"
+ "MainConcept Frame Rate Converter" "Frame Rate Converter DS Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_trans_video_framerate_ds.ax"
+ "MainConcept ImageScaler" "ImageScaler DS Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_trans_video_imagescaler_ds.ax"
+ "MainConcept Layer II Audio Decoder" "Layer II Audio Decoder" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_dec_mpa_ds.ax"
+ "MainConcept MP4 Demultiplexer" "MP4 Demultiplexer Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_demux_mp4_ds.ax"
+ "MainConcept MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_demux_mp2_ds.ax"
+ "MainConcept MPEG-2 Video Decoder" "MPEG-2 Video Decoder" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_dec_mp2v_ds.ax"
+ "MainConcept MPEG-4 Video Decoder" "MPEG-4 Video Decoder Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_dec_mp4v_ds.ax"
+ "MainConcept Sink Filter" "Sink DS Filter" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_render_fileindex_ds.ax"
+ "MainConcept Stream Parser" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\research in motion\blackberry desktop\codecs\mc_demux_mp2_ds.ax"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls" "" "" ""
+ "C:\Windows\system32\nvinitx.dll" "NVIDIA Compatible NVIDIA shim initialization dll, Version 257.38 " "NVIDIA Corporation" "c:\windows\system32\nvinitx.dll"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls" "" "" ""
+ "C:\Windows\SysWOW64\nvinit.dll" "NVIDIA Compatible NVIDIA shim initialization dll, Version 257.38 " "NVIDIA Corporation" "c:\windows\syswow64\nvinit.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "MfeEpeCredentialProvider" "McAfee Endpoint Encryption Credential Provider" "" "c:\program files\mcafee\endpoint encryption for pc v6\epepccredentialprovider64.dll"
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters" "" "" ""
+ "MfeEpeCredentialProvider" "McAfee Endpoint Encryption Credential Provider" "" "c:\program files\mcafee\endpoint encryption for pc v6\epepccredentialprovider64.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
+ "LBTWlgn" "Logitech Bluetooth Service" "Logitech, Inc." "c:\program files\common files\logishrd\bluetooth\lbtwlgn.dll"
"HKCU\SOFTWARE\Policies\Microsoft\Windows\Control Panel\Desktop\Scrnsave.exe" "" "" ""
+ "ssstars.scr" "" "" "File not found: ssstars.scr"
"HKCU\Control Panel\Desktop\Scrnsave.exe" "" "" ""
+ "C:\Windows\system32\pscr_nt.SCR" "" "" "File not found: C:\Windows\system32\pscr_nt.SCR"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Computer, Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "Adobe PDF Port" "Acrobat ® PDF Port" "Adobe Systems Incorporated." "c:\windows\system32\adobepdf64.dll"
+ "HPPMOPJL" "Language Monitor for USB composite devices" "Hewlett-Packard Company" "c:\windows\system32\hppmopjl.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages" "" "" ""
+ "EpePcNp64" "McAfee Endpoint Encryption Network Provider" "" "c:\windows\system32\epepcnp64.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "MfeEpePcNP" "McAfee Endpoint Encryption for PC Network Provider" "" "c:\windows\system32\epepcnp64.dll"

thanks for your help narenxp and please advise the next step

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:50 PM

Posted 09 October 2012 - 10:02 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

#14 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 11:26 PM

thanks so much narenxp, i am not seeing popups anymore at the moment, i hope they're gone for good. i think i accidentaly clicked on a link before, now i will be extra careful.

#15 kibaboy

kibaboy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 09 October 2012 - 11:33 PM

hi narenxp, after these changes, do i need to reset some permissions to connect to my company's vpn and exchange server?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users