Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Not sure whether or not infected


  • Please log in to reply
28 replies to this topic

#1 ricee

ricee

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 02 October 2014 - 08:55 PM

I opened up link in a malicious email and was afraid that it got infected. I scanned it with Symantec Endpoint Protection and at most there were tracking cookies at times. After that I used Malwarebytes, I scanned and discover that there were a ton of detected objects, I quarantined all after it ended and restarted my laptop as instructed. I am not sure if it is already safe so I came in here to seek for advice.

 

Both Malwarebytes and Symantec Endpoint Protection were installed by my school itself.



BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,663 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:12:51 PM

Posted 04 October 2014 - 01:03 AM

Welcome aboard p22002758.gif

 

p22002970.gif Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run

p22002970.gif Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


p22002970.gif Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size
  • List Restore Points

Click Go and post the result.

p22002970.gif Please download Malwarebytes Anti-Malware to your desktop.
NOTE. If you already have MBAM 2.0 installed scroll down.

  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:

    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.

  • Click Finish.
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.



If you already have MBAM 2.0 installed:

  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.


How to get logs:
(Export log to save as txt)


  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the Scan Log which shows the Date and time of the scan just performed.
  • Click 'Export'.
  • Click 'Text file (*.txt)'
  • In the Save File dialog box which appears, click on Desktop.
  • In the File name: box type a name for your scan log.
  • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
  • Click Ok
  • Attach that saved log to your next reply.



(Copy to clipboard for pasting into forum replies or tickets)

  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.


p22002970.gifDownload 51a5f31352b88-icon_MBAR.pngMalwarebytes Anti-Rootkit to your desktop.
  • Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
  • Double click on downloaded file. OK self extracting prompt.
  • MBAR will start. Click "Next" to continue.
  • Click in the following screen "Update" to obtain the latest malware definitions.
  • Once the update is complete select "Next" and click "Scan".
  • When the scan is finished and no malware has been found select "Exit".
  • If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
  • Open the MBAR folder located on your Desktop and paste the content of the following files in your next reply:
  • "mbar-log-{date} (xx-xx-xx).txt"
  • "system-log.txt"



p22002970.gif Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.


If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

NOTE Do NOT wrap your logs in "quote" or "code" brackets.
Do NOT use spoilers.
Do NOT edit your reply to post additional logs. Create new reply. I'll not get any email notifications about edits so I won't know you posted something new.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 ricee

ricee
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 05 October 2014 - 01:00 AM

Sorry for the late reply

 Results of screen317's Security Check version 0.99.88  
 Windows 7 Service Pack 1 x86 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Disabled!  
电脑管家系统防护               
Symantec Endpoint Protection   
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
 CCleaner     
 Java 7 Update 67  
 Adobe Flash Player     15.0.0.152  
 Adobe Reader 10.1.12 Adobe Reader out of Date!  
 Mozilla Firefox (32.0.3)
 Google Chrome 37.0.2062.120  
 Google Chrome 37.0.2062.124  
 Google Chrome Plugins...  
````````Process Check: objlist.exe by Laurent````````  
 Norton ccSvcHst.exe
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
 Microsoft Firewall Client 2004 FwcAgent.exe   
 Microsoft Firewall Client 2004 FwcMgmt.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````
 



#4 ricee

ricee
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 05 October 2014 - 01:04 AM

Microsoft Windows 7 Enterprise  Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => File is digitally signed
C:\Windows\system32\Drivers\nsiproxy.sys => File is digitally signed
C:\Windows\system32\dhcpcore.dll => File is digitally signed
C:\Windows\system32\Drivers\afd.sys => File is digitally signed
C:\Windows\system32\Drivers\tdx.sys => File is digitally signed
C:\Windows\system32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\system32\dnsrslvr.dll => File is digitally signed
C:\Windows\system32\mpssvc.dll => File is digitally signed
C:\Windows\system32\bfe.dll => File is digitally signed
C:\Windows\system32\Drivers\mpsdrv.sys => File is digitally signed
C:\Windows\system32\SDRSVC.dll => File is digitally signed
C:\Windows\system32\vssvc.exe => File is digitally signed
C:\Windows\system32\wscsvc.dll => File is digitally signed
C:\Windows\system32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\system32\wuaueng.dll => File is digitally signed
C:\Windows\system32\qmgr.dll => File is digitally signed
C:\Windows\system32\es.dll => File is digitally signed
C:\Windows\system32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\system32\ipnathlp.dll => File is digitally signed
C:\Windows\system32\iphlpsvc.dll => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed


**** End of log ****



#5 ricee

ricee
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 05 October 2014 - 01:06 AM

Sorry didn't copy everything and this is the one.

 

Farbar Service Scanner Version: 21-07-2014
Ran by 127320 (administrator) on 05-10-2014 at 15:03:21
Running from "C:\Users\127320\Desktop"
Microsoft Windows 7 Enterprise  Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => File is digitally signed
C:\Windows\system32\Drivers\nsiproxy.sys => File is digitally signed
C:\Windows\system32\dhcpcore.dll => File is digitally signed
C:\Windows\system32\Drivers\afd.sys => File is digitally signed
C:\Windows\system32\Drivers\tdx.sys => File is digitally signed
C:\Windows\system32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\system32\dnsrslvr.dll => File is digitally signed
C:\Windows\system32\mpssvc.dll => File is digitally signed
C:\Windows\system32\bfe.dll => File is digitally signed
C:\Windows\system32\Drivers\mpsdrv.sys => File is digitally signed
C:\Windows\system32\SDRSVC.dll => File is digitally signed
C:\Windows\system32\vssvc.exe => File is digitally signed
C:\Windows\system32\wscsvc.dll => File is digitally signed
C:\Windows\system32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\system32\wuaueng.dll => File is digitally signed
C:\Windows\system32\qmgr.dll => File is digitally signed
C:\Windows\system32\es.dll => File is digitally signed
C:\Windows\system32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\system32\ipnathlp.dll => File is digitally signed
C:\Windows\system32\iphlpsvc.dll => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed


**** End of log ****



#6 ricee

ricee
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 05 October 2014 - 01:12 AM

Symantec detected MiniToolBox and didn't allow it to be opened. Should I allow MiniToolBox to run the program ?



#7 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,663 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:12:51 PM

Posted 05 October 2014 - 06:08 PM

Yes.

 

Also could you identify this in Security Check?

 

电脑管家系统防护       


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#8 ricee

ricee
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 05 October 2014 - 10:21 PM

What do you mean by identify 电脑管家系统防护 in Security Check ?

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by 127320 (administrator) on 06-10-2014 at 12:08:53
Running from "C:\Users\127320\Desktop"
Microsoft Windows 7 Enterprise  Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: ISA-Firewall.rp.sg:8080

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® Centrino® Ultimate-N 6300 AGN = Wireless Network Connection 2 (Connected)
Hamachi Network Interface = Hamachi (Connected)
Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows = Local Area Connection 2 (Hardware not present)
TAP-Win32 Adapter V9 (Tunngle) = Tunngle (Hardware not present)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
VPN Client Adapter - VPN = VPN - VPN Client (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled taskoffload=disabled
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=25.0.0.1 publish=Yes
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="VPN - VPN Client" forwarding=disabled advertise=disabled metric=1 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : RP127320
   Primary Dns Suffix  . . . . . . . : rp.edu.sg
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : rp.edu.sg
                                       singnet.com.sg

Ethernet adapter VPN - VPN Client:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : VPN Client Adapter - VPN
   Physical Address. . . . . . . . . : 00-AC-E2-43-A5-6A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 24-77-03-5A-05-ED
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

   Connection-specific DNS Suffix  . : singnet.com.sg
   Description . . . . . . . . . . . : Intel® Centrino® Ultimate-N 6300 AGN
   Physical Address. . . . . . . . . : 24-77-03-5A-05-EC
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::116b:9a2f:b95e:82c8%15(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.33(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, 6 October, 2014 11:49:43 AM
   Lease Expires . . . . . . . . . . : Monday, 6 October, 2014 3:49:43 PM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 589592323
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-D4-C0-6F-DC-0E-A1-7B-E1-1B
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : DC-0E-A1-89-3C-93
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Hamachi:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Hamachi Network Interface
   Physical Address. . . . . . . . . : 7A-79-19-31-A8-03
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2620:9b::1931:a803(Preferred)
   Link-local IPv6 Address . . . . . : fe80::9075:f3cf:2e41:9128%16(Preferred)
   IPv4 Address. . . . . . . . . . . : 25.49.168.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Lease Obtained. . . . . . . . . . : Monday, 6 October, 2014 11:49:33 AM
   Lease Expires . . . . . . . . . . : Tuesday, 6 October, 2015 11:53:46 AM
   Default Gateway . . . . . . . . . : 2620:9b::1900:1
                                       25.0.0.1
   DHCP Server . . . . . . . . . . . : 25.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 746224076
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-D4-C0-6F-DC-0E-A1-7B-E1-1B
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{F8A39480-BF16-4D2B-8FC0-749D5AED65AC}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.singnet.com.sg:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : singnet.com.sg
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 25:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:1cb4:2cdd:3f57:fede(Preferred)
   Link-local IPv6 Address . . . . . : fe80::1cb4:2cdd:3f57:fede%61(Preferred)
   Default Gateway . . . . . . . . . :
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{455492E3-2268-4ED7-919F-15389A9A12A8}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  app.singnet.com.sg
Address:  192.168.1.254

Name:    google.com
Addresses:  2404:6800:4003:c01::66
      74.125.68.102
      74.125.68.139
      74.125.68.138
      74.125.68.100
      74.125.68.113
      74.125.68.101


Pinging google.com [74.125.130.138] with 32 bytes of data:
Reply from 74.125.130.138: bytes=32 time=38ms TTL=43
Reply from 74.125.130.138: bytes=32 time=18ms TTL=43

Ping statistics for 74.125.130.138:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 18ms, Maximum = 38ms, Average = 28ms
Server:  app.singnet.com.sg
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=362ms TTL=47
Reply from 98.138.253.109: bytes=32 time=446ms TTL=47

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 362ms, Maximum = 446ms, Average = 404ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 65...00 ac e2 43 a5 6a ......VPN Client Adapter - VPN
 24...24 77 03 5a 05 ed ......Microsoft Virtual WiFi Miniport Adapter
 15...24 77 03 5a 05 ec ......Intel® Centrino® Ultimate-N 6300 AGN
 13...dc 0e a1 89 3c 93 ......Broadcom NetLink ™ Gigabit Ethernet
 16...7a 79 19 31 a8 03 ......Hamachi Network Interface
  1...........................Software Loopback Interface 1
 44...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 63...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 61...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 47...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         25.0.0.1      25.49.168.3   9256
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.33     25
         25.0.0.0        255.0.0.0         On-link       25.49.168.3   9256
      25.49.168.3  255.255.255.255         On-link       25.49.168.3   9256
   25.255.255.255  255.255.255.255         On-link       25.49.168.3   9256
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.33    281
     192.168.1.33  255.255.255.255         On-link      192.168.1.33    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.33    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       25.49.168.3   9256
        224.0.0.0        240.0.0.0         On-link      192.168.1.33    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       25.49.168.3   9256
  255.255.255.255  255.255.255.255         On-link      192.168.1.33    281
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0         25.0.0.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 16   9020 ::/0                     2620:9b::1900:1
  1    306 ::1/128                  On-link
 61     58 2001::/32                On-link
 61    306 2001:0:9d38:6ab8:1cb4:2cdd:3f57:fede/128
                                    On-link
 16    276 2620:9b::/64             On-link
 16    276 2620:9b::/96             On-link
 16    276 2620:9b::1931:a803/128   On-link
 16    276 fe80::/64                On-link
 15    281 fe80::/64                On-link
 61    306 fe80::/64                On-link
 15    281 fe80::116b:9a2f:b95e:82c8/128
                                    On-link
 61    306 fe80::1cb4:2cdd:3f57:fede/128
                                    On-link
 16    276 fe80::9075:f3cf:2e41:9128/128
                                    On-link
  1    306 ff00::/8                 On-link
 61    306 ff00::/8                 On-link
 16    276 ff00::/8                 On-link
 15    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll [197440] (Microsoft ® Corporation)
Catalog5 02 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 11 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll [197440] (Microsoft ® Corporation)
Catalog9 02 C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll [197440] (Microsoft ® Corporation)
Catalog9 03 C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll [197440] (Microsoft ® Corporation)
Catalog9 04 C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll [197440] (Microsoft ® Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll [197440] (Microsoft ® Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 44 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 45 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 46 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 47 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 48 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 49 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 50 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 51 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 52 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 53 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 54 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 55 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 56 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 57 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 58 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 59 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 60 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 61 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 62 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 63 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 64 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 65 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 66 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 67 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 68 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 69 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 70 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 71 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 72 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 73 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 74 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 75 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 76 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 77 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 78 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 79 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 80 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/06/2014 11:52:09 AM) (Source: Communicator) (User: )
Description: Communicator could not connect securely to server sip.rp.edu.sg because the certificate presented by the server did not match the expected hostname (sip.rp.edu.sg).



Resolution:

If you are using manual configuration with an IP address or a NetBIOS shortened server name, a fully-qualified server name will be required.  If you are using automatic configuration, the network administrator will need to make sure that the published server name in DNS is supported by the server certificate.

Error: (10/06/2014 11:52:09 AM) (Source: Communicator) (User: )
Description: Communicator was unable to resolve the DNS hostname of the login server sipinternal.rp.edu.sg.



Resolution:

If you are using manual configuration for Communicator, please check that the server name is typed correctly and in full.  If you are using automatic configuration, the network administrator will need to double-check the DNS A record configuration for sipinternal.rp.edu.sg because it could not be resolved.

Error: (10/06/2014 11:52:09 AM) (Source: Communicator) (User: )
Description: Communicator was unable to resolve the DNS hostname of the login server sipinternal.rp.edu.sg.



Resolution:

If you are using manual configuration for Communicator, please check that the server name is typed correctly and in full.  If you are using automatic configuration, the network administrator will need to double-check the DNS A record configuration for sipinternal.rp.edu.sg because it could not be resolved.

Error: (10/06/2014 01:34:06 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!WS.Reputation.1 in File: c:\users\127320\desktop\minitoolbox.exe by: Auto-Protect scan.  Action: Quarantine succeeded.  Action Description: The file was quarantined successfully.

Error: (10/06/2014 01:32:07 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!WS.Reputation.1 in File: c:\users\127320\desktop\minitoolbox.exe by: Auto-Protect scan.  Action: Process or service must be halted.  Action Description:

Error: (10/06/2014 01:30:32 AM) (Source: Application Hang) (User: )
Description: The program SavUI.exe version 12.1.3001.165 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 3040

Start Time: 01cfe062b83574b8

Termination Time: 7

Application Path: C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.3001.165.105\Bin\SavUI.exe

Report Id:

Error: (10/05/2014 10:06:17 PM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume (C:) was not defragmented because an error was encountered: An attempt was made to load a program with an incorrect format. (0x8007000B)

Error: (10/05/2014 09:48:38 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/05/2014 09:48:37 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/05/2014 00:33:23 PM) (Source: Communicator) (User: )
Description: Communicator could not connect securely to server sip.rp.edu.sg because the certificate presented by the server did not match the expected hostname (sip.rp.edu.sg).



Resolution:

If you are using manual configuration with an IP address or a NetBIOS shortened server name, a fully-qualified server name will be required.  If you are using automatic configuration, the network administrator will need to make sure that the published server name in DNS is supported by the server certificate.


System errors:
=============
Error: (10/06/2014 11:59:22 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{24FF4FDC-1D9F-4195-8C79-0DA39248FF48}{B292921D-AF50-400C-9B75-0C57A7F29BA1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (10/06/2014 11:58:06 AM) (Source: TermService) (User: )
Description: The terminal server cannot register 'TERMSRV' Service Principal Name to be used for server authentication. The following error occured: The specified domain either does not exist or could not be contacted.
.

Error: (10/06/2014 11:52:09 AM) (Source: Schannel) (User: RP)
Description: The certificate received from the remote server does not contain the expected name. It is therefore not possible to determine whether we are connecting to the correct server. The server name we were expecting is sip.rp.edu.sg. The SSL connection request has failed. The attached data contains the server certificate.

Error: (10/06/2014 11:52:09 AM) (Source: Schannel) (User: RP)
Description: The following fatal alert was generated: 43. The internal error state is 552.

Error: (10/06/2014 11:50:11 AM) (Source: Microsoft-Windows-GroupPolicy) (User: RP)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (10/06/2014 11:49:58 AM) (Source: Microsoft-Windows-GroupPolicy) (User: NT AUTHORITY)
Description: The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:
a) Name Resolution failure on the current domain controller.
B) Active Directory Replication Latency (an account created on another domain controller has not replicated to the current domain controller).

Error: (10/06/2014 11:49:52 AM) (Source: NETLOGON) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain RP due to the following:
%%1311

This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.



ADDITIONAL INFO

If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.

Error: (10/06/2014 02:16:47 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SmcService service.

Error: (10/06/2014 02:14:19 AM) (Source: DCOM) (User: )
Description: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}

Error: (10/06/2014 00:40:55 AM) (Source: TermService) (User: )
Description: The terminal server cannot register 'TERMSRV' Service Principal Name to be used for server authentication. The following error occured: The specified domain either does not exist or could not be contacted.
.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-09-30 20:43:22.393
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-30 20:43:21.523
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-30 19:17:59.419
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-30 19:17:59.257
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-30 18:51:36.542
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-30 18:51:36.375
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-30 18:51:34.466
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-30 18:51:34.072
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-30 18:51:33.609
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-30 18:51:33.396
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.



 Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{90120000-0017-0000-0000-0000000FF1CE}_SharePointDesigner_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
|?o?¤§¥ú (HKLM\...\|?o?¤§¥ú_is1) (Version:  - )
=========================== Installed Programs ============================
μTorrent (HKCU\...\uTorrent) (Version: 3.4.2.34024 - BitTorrent Inc.)
3DSSPP 6.0.6 (HKLM\...\{CCB9F10C-FC23-4BB9-9F2D-B705D2E6834B}) (Version: 1.0.8 - University of Michigan)
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader X (10.1.12) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.9.149 - Adobe Systems, Inc.)
Aeria Ignite (HKLM\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (HKLM\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
AhnLab Online Security (HKLM\...\AhnLab Online Security) (Version:  - AhnLab, Inc)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (HKLM\...\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}) (Version: 2.3.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arc (HKLM\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.5510 - Perfect World Entertainment)
Archeblade (HKLM\...\Steam App 207230) (Version:  - )
AutoCAD Mechanical 2010 (HKLM\...\AutoCAD Mechanical 2010) (Version: 14.0.48.300 - Autodesk)
AutoCAD Mechanical 2010 (Version: 14.0.48.300 - Autodesk) Hidden
AutoCAD Mechanical 2010 Language Pack - English (Version: 14.0.48.300 - Autodesk) Hidden
AVG Security Toolbar (HKLM\...\AVG Secure Search) (Version: 18.1.9.799 - AVG Technologies)
Baby-G (HKLM\...\Baby-G) (Version:  - )
Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version:  - )
Bass Fishing (HKLM\...\{CE0AE5D0-3FA0-46AC-A6C1-BD944A180A09}) (Version: 1.02.0000 - Sega)
Battle.net (HKLM\...\Battle.net) (Version:  - Blizzard Entertainment)
Big Fish: Game Manager (HKLM\...\BFGC) (Version: 3.3.0.2 - )
Bing Bar (HKLM\...\{08234a0d-cf39-4dca-99f0-0c5cb496da81}) (Version: 6.3.2291.0 - Microsoft Corporation)
Bing Bar Platform (Version: 6.3.2291.0 - Microsoft Corporation) Hidden
BlueStacks App Player (HKLM\...\BlueStacks App Player) (Version: 0.8.8.8006 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM\...\{689FD579-0642-4D3E-AB61-F63B79C5075A}) (Version: 0.8.8.8006 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Bootstrapper (Version: 1.2.1.0 - Minitab, Inc.) Hidden
Borderlands (HKLM\...\{52B65911-1559-4ED5-9461-46957FDD48CD}) (Version: 1.0.295 - 2K Games)
Borderlands 2 (HKLM\...\Borderlands 2_is1) (Version:  - )
Broadcom Gigabit NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.8.3.3 - Broadcom Corporation)
BYOND (HKLM\...\BYOND) (Version: 496.1145 - BYOND)
Camtasia Studio 8 (HKLM\...\{80AE23DF-71A4-4E3F-B931-F93AB5DF0BDD}) (Version: 8.4.2.1768 - TechSmith Corporation)
cape pack v2.05 (HKLM\...\cape pack v2.05) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 3.14 - Piriform)
Cisco AnyConnect Secure Mobility Client  (HKLM\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.0.2052 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (Version: 3.0.2052 - Cisco Systems, Inc.) Hidden
Client for Microsoft Office SharePoint Portal Server 2003 (HKLM\...\{21B9D2F9-1CE7-4CDA-9D0D-28EB96565D25}) (Version: 11.0.5704.0 - Microsoft)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Configuration Manager Client (Version: 4.00.6487.2000 - Microsoft Corporation) Hidden
CoolPack (HKLM\...\CoolPack_is1) (Version: 1.50 - IPU)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DARK BLOOD ONLINE (HKLM\...\Steam App 267790) (Version:  - JCR Soft Co., Ltd)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{132D27B8-C656-44BD-8C16-73C54EA8A85F}) (Version:  - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{132D27B8-C656-44BD-8C16-73C54EA8A85F}) (Version:  - Microsoft)
Dota 2 (HKLM\...\Steam App 570) (Version:  - )
Double-E (HKLM\...\{B3A69653-8AAF-443B-81FC-E4E34C48D630}) (Version: 2.1.0 - Double-E)
DPL 8 (HKLM\...\{C9A0DB8C-7C42-471E-9549-8314199AF5B8}) (Version: 8.0.1 - Syncopation Software)
eFile Search Engine (HKLM\...\{61F1AB37-F5BA-459D-9C51-03D04D743F27}) (Version: 2.200.00001 - Republic Polytechnic)
EGCabal Online version 2.1.0 (HKLM\...\{606E1B88-065A-41C6-B996-287A0E756FB0}_is1) (Version: 2.1.0 - EliteGamers.Co)
Energy Management (HKLM\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.0 - Lenovo)
Energy Management (Version: 6.0.2.0 - Lenovo) Hidden
eSupport UndeletePlus 3.0.2.1214 (HKLM\...\eSupport UndeletePlus_is1) (Version:  - Copyright ? 2011 eSupport.com ? All Rights Reserved)
Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
ffdshow v1.2.4496 [2012-12-13] (HKLM\...\ffdshow_is1) (Version: 1.2.4496.0 - )
FIFA 13 version 5.1 (HKLM\...\{B810D852-DFD6-FIFA13-89A5-CC4D47756DAF}_is1) (Version: 5.1 - Black_Box)
FlexSim 7.0 (HKLM\...\{F4CADF89-8B35-4B2F-9EB3-BCC704CA3E8F}) (Version: 7.0.0 - FlexSim Software Products Inc.)
Garena - FIFA ONLINE 3(English) (HKLM\...\FO3) (Version:  - Garena Online Pte Ltd.)
Garena - League of Legends (HKLM\...\LoL) (Version:  - Garena Online Pte Ltd.)
Garena - Mstar (HKLM\...\Mstar) (Version:  - Garena Online Pte Ltd.)
Garena - MStar (HKLM\...\MStarTW) (Version:  - ¥x?W?v?R?T??|3--¤?¥q)
Garena - Path of Exile (HKLM\...\PoE) (Version:  - Garena Online Pte Ltd.)
Garena - PointBlank (HKLM\...\PB) (Version:  - Garena Online Pte Ltd.)
Garena+ (HKLM\...\im) (Version: 2011 - Garena Online Pte Ltd.)
Girls' Generation Browser Theme (HKLM\...\{6DC85976-8E59-48F0-BE80-6AFF73C9BE63}) (Version: 0.9.0.1 - Brand Thunder)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
GrandDog Run Time System V1.0.35 (HKLM\...\{F5025D45-CAE1-4329-8FA9-F12B1BB7E540}) (Version:  - )
GunZ 2: The Second Duel (HKLM\...\Steam App 242720) (Version:  - MAIET Entertainment)
Hearthstone (HKLM\...\Hearthstone) (Version:  - Blizzard Entertainment)
HP Deskjet 3070 B611 series Basic Device Software (HKLM\...\{DF3BD40C-0D13-45CE-BE22-A9432F264540}) (Version: 25.0.571.0 - Hewlett-Packard Co.)
HP Deskjet 3070 B611 series Help (HKLM\...\{9F20CE56-3828-432D-A3C5-3EC6A2ED93C6}) (Version: 140.0.2.2 - Hewlett Packard)
HP Deskjet 3070 B611 series Product Improvement Study (HKLM\...\{A8895AC3-EF5B-47B0-9A75-98584F6CA69E}) (Version: 25.0.571.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.5192 - HP Photo Creations)
HP Update (HKLM\...\{97486FBE-A3FC-4783-8D55-EA37E9D171CC}) (Version: 5.005.000.002 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
IAHGames Player 2.03.2331 (HKLM\...\{B904D0AE-C4D8-4808-AEB9-FAFCC9F6EB1B}_is1) (Version:  - PlayFast)
iCloud (HKLM\...\{5DDB3393-E08B-447E-925F-6C00B95D0FE7}) (Version: 2.1.1.3 - Apple Inc.)
inSSIDer (HKLM\...\{BF6379E6-9936-46B0-B6AC-C56EE3987D2E}) (Version: 2.1.1 - MetaGeek)
Intel® Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2462 - Intel Corporation)
Internet Download Manager (HKLM\...\{9E60329C-A602-4C4C-9D47-C80D5807DAAD}) (Version: 6.7.1.1 - Tonec Inc.)
iTunes (HKLM\...\{268278CF-FB69-4D98-B70E-BFEC1CDCA225}) (Version: 11.0.2.26 - Apple Inc.)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden
JMicron Flash Media Controller Driver (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.55.0 - JMicron Technology Corp.)
K-Lite Mega Codec Pack 7.6.0 (HKLM\...\KLiteCodecPack_is1) (Version: 7.6.0 - )
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version:  - Valve)
Lenovo EasyCamera (HKLM\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.1.7600.0098 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0.3212 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 7.0.0.3212 - CyberLink Corp.) Hidden
Lenovo_Wireless_Driver (HKLM\...\{28ABE740-47F3-441B-9437-852F6A64EFF8}) (Version: 1.02.01 - Lenovo)
Little Fighter 2 version 2.0a (HKLM\...\Little Fighter 2 version 2.0a) (Version:  - )
LogMeIn Hamachi (HKLM\...\LogMeIn Hamachi) (Version: 2.2.0.236 - LogMeIn, Inc.)
LogMeIn Hamachi (Version: 2.2.0.236 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MapInfo Professional 11.5 (HKLM\...\{8C9128C2-2077-4B6E-BFCF-2BD32A801A80}) (Version: 11.5.0 - Pitney Bowes Software)
MapleStory (HKLM\...\Maple) (Version:  - )
MapleStorySEA 1.39 (HKLM\...\{1C1ED4D6-D46E-4352-9AFE-D75B464FBA79}_is1) (Version: 1.39 - Asiasoft Online Pte. Ltd.)
MapleStorySEA version 1.41 (HKLM\...\{FCDA4FC9-D020-4DA8-A8D6-FB8950DE63D1}_is1) (Version: 1.41 - Asiasoft Online Pte.Ltd.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
MediaRing Talk (HKLM\...\{34DAFDEC-A4B4-488A-A5CD-C91975A6F083}) (Version: 2.9.3.11.41.190.20110914 en RP - MediaRing)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Version: 4.5.51209 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Default Manager (Version: 2.2.114.0 - Microsoft Corporation) Hidden
Microsoft Firewall Client (HKLM\...\{199B7F78-69B7-47C5-8D4B-A3ED1391FB6B}) (Version: 4.0.3442 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Communicator 2007 R2 (HKLM\...\{0D1CBBB9-F4A8-45B6-95E7-202BA61D7AF4}) (Version: 3.5.6907.261 - Microsoft Corporation)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 (HKLM\...\SharePointDesigner) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office SharePoint Designer 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Visio 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Search Enhancement Pack (Version: 3.0.131.0 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visio Premium 2010 (HKLM\...\Office14.VISIO) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual Basic for Applications 7.1 (x86) (Version: 7.1.00.00 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x86) English (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (Version: 8.0.50727.146 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 3.0 (HKLM\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minitab 15 English (HKLM\...\{71D075F0-A6F5-40B9-A771-FC59E90B0183}) (Version: 15.1.30 - Minitab, Inc)
Minitab 17 (HKLM\...\Minitab17) (Version: 17.1.0 - Minitab, Inc.)
Minitab Software Update Manager (HKLM\...\MinitabSoftwareManager) (Version: 1.2.0.0 - Minitab, Inc.)
Minitab17 (Version: 17.1.0.0 - Minitab Inc) Hidden
Minitab17 (Version: 17.1.0.0 - Minitab, Inc.) Hidden
Mnet - IAM. (HKLM\...\Mnet - IAM.) (Version:  - )
Movie Maker (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 32.0.3 (x86 en-US) (HKLM\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (Version: 16.4.1108.0727 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWin Driver 1.2 (HKLM\...\MyWin Driver_is1) (Version: 1.2 - )
NCSOFT Game Launcher (HKLM\...\NCLauncher_NCWest) (Version:  - NCSOFT)
Nexon Game Manager (HKLM\...\{415ADF7E-6DB8-4481-86C0-1CEC0163CC7B}) (Version:  - )
Nexon Game Manager (HKLM\...\{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}) (Version:  - )
NVIDIA PhysX (HKLM\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
osu! (HKLM\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1BF}) (Version: 3.60.0 - dotPDN LLC)
Pangya (Ntreev USA) (HKLM\...\Pangya) (Version:  - )
Phantasy Star Online 2 (HKLM\...\http://pso2.jp/appid/release/asiasoft_sg_is1) (Version:  - Asiasoft)
Photo Gallery (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PowerISO (HKLM\...\PowerISO) (Version: 5.1 - Power Software Ltd)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
PyScripter 2.5.3 (HKLM\...\PyScripter_is1) (Version: 2.5.3 - PyScripter)
Python 2.6 PIL-1.1.7 (HKCU\...\PIL-py2.6) (Version:  - )
Python 2.6.5 (HKLM\...\{4723F199-FA64-4233-8E6E-9FCCC95A18EE}) (Version: 2.6.5150 - Python Software Foundation)
Quality Companion 3 (HKLM\...\{E9BDD615-078E-488E-B321-8CE77A94D32E}) (Version: 3.2.1 - Minitab, Inc.)
QuickTime (HKLM\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
Rainmeter (HKLM\...\Rainmeter) (Version: 2.4 r1678 - )
Raptr (HKLM\...\Raptr) (Version:  - )
Really Big Sky (HKLM\...\Steam App 201570) (Version:  - Boss Baddie)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6339 - Realtek Semiconductor Corp.)
ReliaSoft Synthesis 9 (HKLM\...\{92F8BE1F-422F-4901-85E8-EA24FF3F6E39}) (Version: 9.0.2.1 - ReliaSoft)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Rights Management Add-on for Internet Explorer (HKLM\...\{3505E1E2-8127-4681-A3EC-F9B5CAAA07C9}) (Version: 1.0.1.0000 - Microsoft)
Scarlet Blade (HKLM\...\Scarlet Blade) (Version:  - )
Search Assistant AppsAreFun 1.66 (HKLM\...\SP_18a3f1aa) (Version:  - )
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
SlimDX Runtime .NET 4.0 x86 (January 2012) (HKLM\...\{7EBD0E43-6AC0-4CA8-9990-00E50069AD29}) (Version: 2.0.13.43 - SlimDX Group)
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.10.9473 - SoftEther VPN Project)
SoftwareManager (Version: 1.2.0.0 - Minitab, Inc.) Hidden
SolForge (HKLM\...\Steam App 232450) (Version:  - Stone Blade Entertainment)
SolidWorks 2013 SP02 (HKLM\...\SolidWorks Installation Manager 20130-40200-1100-200) (Version: 21.2.0.50 - SolidWorks Corporation)
SolidWorks 2013 SP02 (Version: 21.120.50 - SolidWorks) Hidden
SolidWorks eDrawings 2013 SP02 (Version: 13.2.110 - Dassault Systèmes SolidWorks Corp.) Hidden
SolidWorks Flow Simulation 2013 SP02 (Version: 21.20.51 - SolidWorks Corporation) Hidden
SolidWorks Plastics 2013 SP02 (Version: 21.20.50 - SolidWorks Corporation) Hidden
SpaceChem (HKLM\...\Steam App 92800) (Version:  - Zachtronics)
StarCraft II (HKLM\...\StarCraft II) (Version: 2.0.11.26825 - Blizzard Entertainment)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Symantec Endpoint Protection (HKLM\...\{8693E64C-16F3-4388-ACC0-9E8D586BEC17}) (Version: 12.1.3001.165 - Symantec Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.31.1 - Synaptics Incorporated)
System Requirements Lab CYRI (HKLM\...\{E362724E-9320-4946-AF34-874E7B6B2927}) (Version: 6.0.7.0 - Husdawg, LLC)
TeamViewer 7 (HKLM\...\TeamViewer 7) (Version: 7.0.13989 - TeamViewer)
The Expendabros (HKLM\...\Steam App 312990) (Version:  - Free Lives)
Tunngle beta (HKLM\...\Tunngle beta_is1) (Version:  - Tunngle.net GmbH)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0017-0000-0000-0000000FF1CE}_SharePointDesigner_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2553439) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3D1F379C-AA64-4823-90A4-A8DDD4B48C21}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_SharePointDesigner_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2202188) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2202188) (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2523113) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C0FF04BF-A05E-408B-81CA-B7FACDA508A3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2523113) (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{C0FF04BF-A05E-408B-81CA-B7FACDA508A3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553065) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A8686D24-1E89-43A1-973E-05A258D2B3F8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553092) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7AC49FC8-F8D2-4DD8-9086-09E52385A21F}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{48E1B6C2-7299-4F3F-AA63-42F0ACE55AA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{48E1B6C2-7299-4F3F-AA63-42F0ACE55AA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{18B3CF2A-73F7-4716-B1AE-86D68726D408}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{17E7B9AB-2DD2-457D-8D8E-CD14ACA973FE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.VISIO_{17E7B9AB-2DD2-457D-8D8E-CD14ACA973FE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{15058154-469F-4794-ACD5-94F8420F9B80}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.VISIO_{15058154-469F-4794-ACD5-94F8420F9B80}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (HKLM\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{995A7832-B512-46D5-87C9-2D71FB541435}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (HKLM\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.VISIO_{995A7832-B512-46D5-87C9-2D71FB541435}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C8694FF0-8203-483B-A07A-2BC40433167D}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{C8694FF0-8203-483B-A07A-2BC40433167D}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (HKLM\...\{90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{73E67A3A-8D61-44EF-90C2-1697C3DBE668}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (HKLM\...\{90140000-006E-0409-0000-0000000FF1CE}_Office14.VISIO_{73E67A3A-8D61-44EF-90C2-1697C3DBE668}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{28FAC187-7C0E-413A-B90A-76F19D0FBF30}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{28FAC187-7C0E-413A-B90A-76F19D0FBF30}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2566458) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{EFB525A0-E1C0-4E32-9968-FE401BC87363}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2566458) (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{EFB525A0-E1C0-4E32-9968-FE401BC87363}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ED31DE9A-3E13-4E2C-9106-E0D8AFFB9FA6}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{ED31DE9A-3E13-4E2C-9106-E0D8AFFB9FA6}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4D98EEEA-A31B-42FA-991A-F989594F4DA5}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{4D98EEEA-A31B-42FA-991A-F989594F4DA5}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_SharePointDesigner_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Sharepoint Designer 2007 Help (KB963675) (HKLM\...\{90120000-0017-0409-0000-0000000FF1CE}_SharePointDesigner_{9A9DF47B-DB4B-485D-8211-7430ABEC5259}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BEBC2484-290C-46AD-9834-6DAD1FA80273}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (HKLM\...\{90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUS_{9865DC3A-2898-48D9-B96A-46397571C934}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{38990592-F6A1-4A26-96C7-0600E36AE794}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition (HKLM\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{5EBDE1DE-3B28-4134-AB00-85CFF2B4F94D}) (Version:  - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BC6DFBFD-16DD-47E1-A7EF-2C062930FA4F}) (Version:  - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (HKLM\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{1EEFF749-6F29-4F0B-AB08-4C6EA52AA110}) (Version:  - Microsoft)
Update for Office 2007 (KB932080) (HKLM\...\{90120000-0017-0000-0000-0000000FF1CE}_SharePointDesigner_{EDC9CA29-6BC1-471C-828C-7A36109005D7}) (Version:  - Microsoft)
Update for Office 2007 (KB934391) (HKLM\...\{90120000-0017-0000-0000-0000000FF1CE}_SharePointDesigner_{B3091818-7C56-4C45-BE7D-CA23027A5EA5}) (Version:  - Microsoft)
UTClient (Version: 4.700.1027 - Republic Poly) Hidden
UTClient6.0.2 (HKLM\...\{4618370B-662D-4FB4-BF01-B6A844CDB1CE}) (Version: 6.0.2 - Republic Polytechnic)
UTKey (HKLM\...\{E0DC327E-8445-42B9-89DB-01D8CD2DB084}) (Version: 14.80.505 - Republic Polytechnic)
Warframe (HKLM\...\Steam App 230410) (Version:  - Digital Extremes)
web beanfun! (HKCU\...\beanfun!) (Version: 2.1.3.11 - Gamania Inc.)
Windows Live Communications Platform (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.11 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wireless Projector 4.1.6 (HKLM\...\{6AB21FCD-D00E-496F-9F54-840484EDB03A}_is1) (Version:  - WOW Vision Pte Ltd)
WordWeb (HKLM\...\WordWeb) (Version: 6 - WordWeb Software)
Xiph.Org Open Codecs 0.85.17777 (HKLM\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Zoo Tycoon 2 Trial Version (HKLM\...\Zoo Tycoon 2 Trial Version) (Version: 1.0 - Microsoft)
剑灵_腾讯 (HKLM\...\剑灵_腾讯) (Version:  - Tencent)
电脑管家10.2 (HKLM\...\QQPCMgr) (Version: 10.2.15408.216 - 腾讯科技(深圳)有限公司)

========================= Devices: ================================

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Win32 Adapter V9 (Tunngle)
Description: TAP-Win32 Adapter V9 (Tunngle)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9 (Tunngle)
Service: tap0901t
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 82%
Total physical RAM: 3017.86 MB
Available physical RAM: 541 MB
Total Pagefile: 6034.01 MB
Available Pagefile: 3247.04 MB
Total Virtual: 2047.88 MB
Available Virtual: 1935.99 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:120.11 GB) (Free:24.49 GB) NTFS
2 Drive d: () (Fixed) (Total:548.43 GB) (Free:205.62 GB) NTFS

========================= Users: ========================================

User accounts for \\RP127320

Admin                    Administrator            Guest                    

========================= Restore Points ==================================

03-10-2014 00:17:10 Installed Java 7 Update 67

**** End of log ****
 



#9 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,663 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:12:51 PM

Posted 05 October 2014 - 10:34 PM

What do you mean by identify 电脑管家系统防护 in Security Check ?

 

Look at Security Check log.

There is some program listed in Chinese.

Since I don't read Chinese I need to know what it is.

 

In MIniToolbox list of installed programs I can also see these:

 

剑灵_腾讯 (HKLM\...\剑灵_腾讯) (Version:  - Tencent)
电脑管家10.2 (HKLM\...\QQPCMgr) (Version: 10.2.15408.216 - 腾讯科技(深圳)有限公司)

 

I need to know what they are.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#10 ricee

ricee
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 05 October 2014 - 11:03 PM

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6/10/2014
Scan Time: 12:28:04 PM
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.10.06.01
Rootkit Database: v2014.09.19.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: 127320

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 507753
Time Elapsed: 33 min, 28 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 19
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.admin", false);), No Action By User,[800528c7a7d4dd590d9c72d54fb648b8]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.aflt", "babsst");), No Action By User,[a6df1bd40c6f85b1f6b30d3a64a17b85]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");), No Action By User,[8ff6da15a8d3ad898227e26564a119e7]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.autoRvrt", "false");), No Action By User,[4a3b2dc23e3d7fb7eebb0146c73ec13f]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.dfltLng", "en");), No Action By User,[d9ac40afa7d4c96d5455b493f510728e]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.excTlbr", false);), No Action By User,[2065a946fa81bd794f5a6ed99c6958a8]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.id", "14d577fa0000000000002477035a05ec");), No Action By User,[e99c19d6413a979f337699ae3ec72fd1]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.instlDay", "15803");), No Action By User,[b6cf12ddc6b584b29f0ad374fc0953ad]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.instlRef", "sst");), No Action By User,[0f7610df6e0d48eeb1f854f3aa5b51af]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.newTab", false);), No Action By User,[661fc32cb6c59b9b8623f5529273a060]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.prdct", "delta");), No Action By User,[95f0945b1f5c9f977930e661798ca55b]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.prtnrId", "delta");), No Action By User,[d7ae737c6c0f42f4149553f446bf9070]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.rvrt", "false");), No Action By User,[7f06559ad3a8fb3badfc2e194bbadf21]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.smplGrp", "none");), No Action By User,[7114eb041e5ddb5bb7f23b0ce42149b7]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.tlbrId", "base");), No Action By User,[246128c7502b2d091e8b3a0dcd387e82]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.tlbrSrchUrl", "");), No Action By User,[ed98b53a81faf93d4f5a23243bca926e]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.vrsn", "1.8.10.0");), No Action By User,[6d185c93b6c5f83e5653410631d4e31d]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.vrsnTs", "1.8.10.019:25:29");), No Action By User,[94f1cf20dba04ee8327792b5dd2849b7]
PUP.Optional.Delta.A, C:\Users\127320\AppData\Roaming\Mozilla\Firefox\Profiles\zpd26my8.default-1353306917492\prefs.js, Good: (), Bad: (user_pref("extensions.delta.vrsni", "1.8.10.0");), No Action By User,[760f1dd2710aab8b169310377590ed13]

Physical Sectors: 0
(No malicious items detected)


(end)



#11 ricee

ricee
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 05 October 2014 - 11:07 PM

电脑管家系统防护 is a protection software that is installed together with the game 剑灵_腾讯



#12 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,663 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:12:51 PM

Posted 05 October 2014 - 11:08 PM

What kind of protection?
Some AV program?

What is the name of it?


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#13 ricee

ricee
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 05 October 2014 - 11:10 PM

The Malwarebytes Anti-Rootkit link shows a invalid request on my side



#14 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,663 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:12:51 PM

Posted 05 October 2014 - 11:14 PM

Works for me.

Uploaded it for you here: https://www.sendspace.com/file/bfl78m

 

Please answer questions from my previous reply.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#15 ricee

ricee
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:04:51 AM

Posted 05 October 2014 - 11:14 PM

I not sure of what kind of protection since I rarely use it but there were a few pop-ups and that software blocked it.

Th software name is 电脑管家.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users