Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer very slow. 100% cpu usage.


  • Please log in to reply
17 replies to this topic

#1 fmedwards3

fmedwards3

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:01:33 PM

Posted 10 August 2016 - 09:01 PM

Task Monitor shows svchost.exe(netsvcs) using 90%-100% of CPU

Restarts if killed.

Three days now.

No new programs installed.

Win7 64bit SP1

Please help.



BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:33 AM

Posted 11 August 2016 - 06:26 PM

p22002970.gif Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.


NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run

p22002970.gif Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


p22002970.gif Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size
  • List Restore Points

Click Go and post the result.

p22002970.gif Please download Malwarebytes Anti-Malware (MBAM) to your desktop.
NOTE. If you already have MBAM 2.0 installed scroll down.

  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:

    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.

  • Click Finish.
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.



If you already have MBAM 2.0 installed:

  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.


How to get logs:
(Export log to save as txt)


  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the Scan Log which shows the Date and time of the scan just performed.
  • Click 'Export'.
  • Click 'Text file (*.txt)'
  • In the Save File dialog box which appears, click on Desktop.
  • In the File name: box type a name for your scan log.
  • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
  • Click Ok
  • Attach that saved log to your next reply.



(Copy to clipboard for pasting into forum replies or tickets)

  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the Scan Log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.


p22002970.gifDownload 51a5f31352b88-icon_MBAR.pngMalwarebytes Anti-Rootkit (MBAR) to your desktop.
  • Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
  • Double click on downloaded file. OK self extracting prompt.
  • MBAR will start. Click "Next" to continue.
  • Click in the following screen "Update" to obtain the latest malware definitions.
  • Once the update is complete select "Next" and click "Scan".
  • When the scan is finished and no malware has been found select "Exit".
  • If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
  • Open the MBAR folder located on your Desktop and paste the content of the following files in your next reply:
  • "mbar-log-{date} (xx-xx-xx).txt"
  • "system-log.txt"


NOTE. If you see This version requires you to completely exit the Anti Malware application message right click on the Malwarebytes Anti-Malware icon in the system tray and click on Exit.

p22002970.gif Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Windows Vista, 7 or 8 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.


If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

NOTE Do NOT wrap your logs in "quote" or "code" brackets.
Do NOT use spoilers.
Do NOT edit your reply to post additional logs. Create new reply. I'll not get any email notifications about edits so I won't know you posted something new.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 fmedwards3

fmedwards3
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:01:33 PM

Posted 13 August 2016 - 11:05 PM

Replying by phone. The affected Laptop can connect to local network but not to internet. Other computers on same local network can access internet. I followed your previous instructions but can't post log files at the moment. Any possibility the programs you had me run did something to prevent internet access?

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:33 AM

Posted 13 August 2016 - 11:07 PM

I don't think so.

Did you try to restart computer?


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 fmedwards3

fmedwards3
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:01:33 PM

Posted 14 August 2016 - 12:35 PM

Rebooted laptop, router and modem several times.  Also took laptop to work and can't connect from there either - but other computers are online at home and work.



#6 fmedwards3

fmedwards3
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:01:33 PM

Posted 14 August 2016 - 02:28 PM

ipconfig shows '"Wireless LAN adapter Media State"  as 'Media Disconnected'



#7 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:33 AM

Posted 14 August 2016 - 04:28 PM

Did you try ethernet cable to see if wired connection works?


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#8 fmedwards3

fmedwards3
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:01:33 PM

Posted 14 August 2016 - 06:05 PM

I reinstalled the wireless network driver and regained internet connectivity. Will send log files shortly.

#9 fmedwards3

fmedwards3
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:01:33 PM

Posted 14 August 2016 - 06:47 PM

notcheckup31.txt
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
================
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=89728d693a0eab44871778328046ef8c
# end=init
# utc_time=2015-09-09 04:40:24
# local_time=2015-09-08 11:40:24 (-0600, Central Daylight Time)
# country="United States"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 25672
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=89728d693a0eab44871778328046ef8c
# end=updated
# utc_time=2015-09-09 04:43:37
# local_time=2015-09-08 11:43:37 (-0600, Central Daylight Time)
# country="United States"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=89728d693a0eab44871778328046ef8c
# engine=25672
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-09-09 06:08:03
# local_time=2015-09-09 01:08:03 (-0600, Central Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 0 193322333 0 0
# scanned=218070
# found=11
# cleaned=11
# scan_time=5065
sh=5FCA6BDAADFEE7CEC4CEE89A8DC553CC09DE9503 ft=1 fh=2583c8412e953c07 vn="a variant of Win32/Techsnab.O potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\IT Viewer\astask.exe.vir"
sh=C2D89CA99F4B8ABA331F0B6DDDEBABA9FF2C74D6 ft=0 fh=0000000000000000 vn="Win32/Techsnab.V potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\IT Viewer\default.filter.vir"
sh=0EEC05F1F263AF6DE5161C9EAA6E10572F6825B6 ft=1 fh=93fce1cd10acd913 vn="a variant of Win32/Techsnab.O potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\IT Viewer\gmchromium.exe.vir"
sh=69616E7A43AC9BD7E9AEDEAD56BF1703ED9A0B93 ft=1 fh=fab55a7c987c7ccb vn="a variant of Win64/Techsnab.B potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\IT Viewer\gmchromium64.exe.vir"
sh=C3E4C984C0CCD3ACBB155AF5C76E69D0285BF536 ft=1 fh=2c10b4e03f10a409 vn="a variant of Win32/Techsnab.O potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\IT Viewer\gmff.exe.vir"
sh=0EF610A09B3301CFEC10831293FE87C1273B00B2 ft=1 fh=ca156dfb2eb2873d vn="a variant of Win32/Techsnab.V potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\IT Viewer\gmie.dll.vir"
sh=079ADBDB8EB241487D1050657369E4321698EE31 ft=1 fh=ee95268637a13979 vn="a variant of Win32/Techsnab.V potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\IT Viewer\tsnet.dll.vir"
sh=B53B1BC69200103B5981738C24F333A60CC55A5E ft=1 fh=8db99d06d94f67fd vn="a variant of Win64/Techsnab.B potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\IT Viewer\tsnet64.dll.vir"
sh=C8CBE17CC99DDB54FEDBF679C2156D5BF88C0F4C ft=1 fh=4f0fbfedac6b98a0 vn="Win32/Techsnab.Q potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\fme\AppData\Roaming\Updater\winupd.exe.vir"
sh=413EA3E0D07CEF1E474C3D5B37410FFFAC43B1CB ft=1 fh=41c0cffa822a7343 vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="C:\Users\fme\Downloads\KMSPico 10.0.exe"
sh=ADCDB8CB47C14A557EF4E5CFCF76667069272EB2 ft=1 fh=3f13900b4cfb16f1 vn="a variant of Win32/Techsnab.X potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\fme\Downloads\Windows_7_Activation_-_Remove_WAT_v2.2.5.2__(ThumperTM).exe"
========================
Farbar Service Scanner Version: 27-01-2016
Ran by fme (administrator) on 11-08-2016 at 23:09:33
Running from "C:\Users\fme\Desktop\BleepingComputer"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Action Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
=============================
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
main: v2016.08.12.01
rootkit: v2016.08.09.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18376
fme :: LATITUDE13 [administrator]

8/11/2016 11:40:38 PM
mbar-log-2016-08-11 (23-40-38).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 518174
Time elapsed: 1 hour(s), 23 minute(s), 31 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
=============================
MiniToolBox by Farbar Version: 17-06-2016
Ran by fme (administrator) on 11-08-2016 at 23:11:27
Running from "C:\Users\fme\Desktop\BleepingComputer"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Model: Latitude 13 Manufacturer: Dell Inc.
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================
========================= IP Configuration: ================================

Intel® WiFi Link 5100 AGN = Wireless Network Connection (Connected)
VMware Virtual Ethernet Adapter for VMnet1 = VMware Network Adapter VMnet1 (Connected)
VMware Virtual Ethernet Adapter for VMnet8 = VMware Network Adapter VMnet8 (Connected)
Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="VMware Network Adapter VMnet1" address=192.168.85.1 mask=255.255.255.0
add address name="Local Area Connection" address=192.168.1.100 mask=255.255.255.0
add address name="VMware Network Adapter VMnet8" address=192.168.30.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Latitude13
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® WiFi Link 5100 AGN
Physical Address. . . . . . . . . : 00-24-D6-B1-9F-1E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2002:4472:7750:0:597c:7022:78cd:cd04(Preferred)
Temporary IPv6 Address. . . . . . : 2002:4472:7750:0:a1fb:8239:350e:a657(Preferred)
Link-local IPv6 Address . . . . . : fe80::597c:7022:78cd:cd04%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.102(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, August 10, 2016 8:42:39 PM
Lease Expires . . . . . . . . . . : Friday, August 12, 2016 10:50:51 PM
Default Gateway . . . . . . . . . : fe80::225:9cff:febe:ee56%13
192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 234890454
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-ED-99-F8-00-26-B9-69-B6-CB
DNS Servers . . . . . . . . . . . : 8.8.8.8
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller
Physical Address. . . . . . . . . : 00-26-B9-69-B6-CB
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter VMware Network Adapter VMnet1:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for VMnet1
Physical Address. . . . . . . . . : 00-50-56-C0-00-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d57:f1de:405b:7f6f%17(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.85.1(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 469782614
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-ED-99-F8-00-26-B9-69-B6-CB
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter VMware Network Adapter VMnet8:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for VMnet8
Physical Address. . . . . . . . . : 00-50-56-C0-00-08
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::2d09:2293:3275:ac7f%19(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.30.1(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 520114262
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-ED-99-F8-00-26-B9-69-B6-CB
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{8BCD882B-CD20-46F8-A234-872F4C8FBEE2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{CA0703F1-2535-42E0-BC53-2BC7F033C209}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{1F6D43D3-22CE-4996-9F66-FB92B3A511E2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: google.com
Addresses: 2607:f8b0:4002:805::200e
74.125.21.100
74.125.21.139
74.125.21.138
74.125.21.101
74.125.21.113
74.125.21.102


Pinging google.com [74.125.21.100] with 32 bytes of data:
Reply from 74.125.21.100: bytes=32 time=41ms TTL=44
Reply from 74.125.21.100: bytes=32 time=44ms TTL=44

Ping statistics for 74.125.21.100:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 41ms, Maximum = 44ms, Average = 42ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: yahoo.com
Addresses: 2001:4998:44:204::a7
2001:4998:58:c02::a9
2001:4998:c:a06::2:4008
206.190.36.45
98.138.253.109
98.139.183.24


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=93ms TTL=47
Reply from 206.190.36.45: bytes=32 time=95ms TTL=47

Ping statistics for 206.190.36.45:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 93ms, Maximum = 95ms, Average = 94ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...00 24 d6 b1 9f 1e ......Intel® WiFi Link 5100 AGN
11...00 26 b9 69 b6 cb ......Broadcom NetXtreme 57xx Gigabit Controller
17...00 50 56 c0 00 01 ......VMware Virtual Ethernet Adapter for VMnet1
19...00 50 56 c0 00 08 ......VMware Virtual Ethernet Adapter for VMnet8
1...........................Software Loopback Interface 1
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.102 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.102 281
192.168.1.102 255.255.255.255 On-link 192.168.1.102 281
192.168.1.255 255.255.255.255 On-link 192.168.1.102 281
192.168.30.0 255.255.255.0 On-link 192.168.30.1 276
192.168.30.1 255.255.255.255 On-link 192.168.30.1 276
192.168.30.255 255.255.255.255 On-link 192.168.30.1 276
192.168.85.0 255.255.255.0 On-link 192.168.85.1 276
192.168.85.1 255.255.255.255 On-link 192.168.85.1 276
192.168.85.255 255.255.255.255 On-link 192.168.85.1 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.102 281
224.0.0.0 240.0.0.0 On-link 192.168.85.1 276
224.0.0.0 240.0.0.0 On-link 192.168.30.1 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.102 281
255.255.255.255 255.255.255.255 On-link 192.168.85.1 276
255.255.255.255 255.255.255.255 On-link 192.168.30.1 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 4121 ::/0 fe80::225:9cff:febe:ee56
1 306 ::1/128 On-link
13 33 2002:4472:7750::/64 On-link
13 281 2002:4472:7750:0:597c:7022:78cd:cd04/128
On-link
13 281 2002:4472:7750:0:a1fb:8239:350e:a657/128
On-link
13 281 fe80::/64 On-link
17 276 fe80::/64 On-link
19 276 fe80::/64 On-link
17 276 fe80::d57:f1de:405b:7f6f/128
On-link
19 276 fe80::2d09:2293:3275:ac7f/128
On-link
13 281 fe80::597c:7022:78cd:cd04/128
On-link
1 306 ff00::/8 On-link
13 281 ff00::/8 On-link
17 276 ff00::/8 On-link
19 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/11/2016 11:06:23 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2016 10:55:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2016 08:43:02 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2016 08:14:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2016 04:45:55 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2855

Error: (08/10/2016 04:45:55 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2855

Error: (08/10/2016 04:45:55 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/10/2016 04:45:53 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1513

Error: (08/10/2016 04:45:53 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1513

Error: (08/10/2016 04:45:53 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (08/11/2016 11:11:13 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Computer Browser service, but this action failed with the following error:
%%1056 = An instance of the service is already running.


Error: (08/11/2016 11:11:13 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Multimedia Class Scheduler service, but this action failed with the following error:
%%1056 = An instance of the service is already running.


Error: (08/11/2016 11:11:13 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the User Profile Service service, but this action failed with the following error:
%%1056 = An instance of the service is already running.


Error: (08/11/2016 11:11:13 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error:
%%1056 = An instance of the service is already running.


Error: (08/11/2016 11:08:13 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Background Intelligent Transfer Service service, but this action failed with the following error:
%%1056 = An instance of the service is already running.


Error: (08/11/2016 11:08:13 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Server service, but this action failed with the following error:
%%1056 = An instance of the service is already running.


Error: (08/11/2016 11:07:59 PM) (Source: Service Control Manager) (User: )
Description: The Disk Defragmenter service terminated unexpectedly. It has done this 1 time(s).

Error: (08/11/2016 11:06:13 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service terminated unexpectedly. It has done this 2 time(s).

Error: (08/11/2016 11:06:13 PM) (Source: Service Control Manager) (User: )
Description: The Windows Management Instrumentation service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 300000 milliseconds: Restart the service.

Error: (08/11/2016 11:06:13 PM) (Source: Service Control Manager) (User: )
Description: The Themes service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.


Microsoft Office Sessions:
=========================
Error: (08/11/2016 11:06:23 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2016 10:55:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2016 08:43:02 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2016 08:14:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2016 04:45:55 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2855

Error: (08/10/2016 04:45:55 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2855

Error: (08/10/2016 04:45:55 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/10/2016 04:45:53 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1513

Error: (08/10/2016 04:45:53 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1513

Error: (08/10/2016 04:45:53 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


=========================== Installed Programs ============================

7-PDF Split & Merge Version 2.7.0 (Build 176) (HKLM-x32\...\7-PDF Split & Merge_is1) (Version: 7-PDF Split & Merge - Version 2.7.0 (Build 176) - 7-PDF, Germany - Thorsten Hodes)
7-Zip 9.38 beta (HKLM-x32\...\7-Zip) (Version: - )
AbleWord v3.0 (HKLM-x32\...\AbleWord_is1) (Version: - )
Adobe Flash Player 22 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 22.0.0.210 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
AppGini Free Trial Edition version 5.50 (HKLM-x32\...\AppGini Free Trial Edition_is1) (Version: 5.50 - BigProf Software)
Asoftech Data Recovery (HKLM-x32\...\{1AED6EB7-8FEA-4021-B8FD-EBAA6B21679F}) (Version: 1.00 - )
Auslogics Duplicate File Finder (HKLM-x32\...\{6845255F-15CC-4DD1-94D5-D38F370118B3}_is1) (Version: 5.2.1.0 - Auslogics Labs Pty Ltd)
BioAPI Framework (HKLM\...\{AF7E4468-E364-4991-BC2A-6E8293E1055B}) (Version: 1.0.1 - Dell Inc.) Hidden
Bitnami Precurio Stack (HKLM-x32\...\Bitnami Precurio Stack 4.3-0) (Version: 4.3-0 - Bitnami)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom NetXtreme-I Netlink Driver and Management Installer (HKLM\...\{D6E46FC2-B513-4B7D-8C8C-352F4735C541}) (Version: 12.54.02 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Coolmuster Lab.Fone for Android (HKCU\...\Coolmuster Lab.Fone for Android) (Version: 2.2.2.40 - Coolmuster)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery Manager (HKLM\...\{50B4B603-A4C6-4739-AE96-6C76A0F8A388}) (Version: 1.3.1 - Dell Inc.)
Dell Control Point 64 (HKLM\...\{7B7D73E7-79D5-4133-AB7A-E27BB5F64725}) (Version: 1.6.468.86 - Broadcom Corporation) Hidden
Dell ControlPoint Security Manager (HKLM-x32\...\{F4487649-7368-4217-AEA3-1E04DB3E2C5C}) (Version: 1.6.468.86 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Embassy Trust Suite by Wave Systems (HKLM\...\{ABBA2EA4-740E-4052-902B-9CA70B081E3F}) (Version: 02.05.04.001 - Wave Systems Corp) Hidden
Dell Security Device Driver Pack (HKLM-x32\...\{FF1DDCF4-3A28-4F7F-96D8-E3F4BD1C1702}) (Version: 1.4.056 - Dell Inc.)
Dell System Detect - 1 (HKCU\...\73f463568823ebbe) (Version: 6.2.0.5 - Dell)
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 3.3.2.1 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)
DeskNow (HKLM-x32\...\DeskNow) (Version: - )
Dropbox (HKLM-x32\...\Dropbox) (Version: 7.4.30 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.27.37 - Dropbox, Inc.) Hidden
dupeGuru (HKLM\...\{C11DACBD-8863-4AA4-94AD-708602F6F7EF}) (Version: 3.9.1 - Hardcoded Software)
EaseUS MobiSaver for Android version 4.5 (HKLM-x32\...\{82D2239C-0F46-4446-B3CA-810A07BF7A6E}_is1) (Version: 4.5 - CHENGDU YIWO Tech Development Co., Ltd.)
EaseUS Todo Backup Free 4.0 (HKLM-x32\...\EaseUS Todo Backup Free 4.0_is1) (Version: 4.0.0.5 - CHENGDU YIWO Tech Development Co., Ltd)
EchoLink (HKLM-x32\...\{DC33421C-0E1C-470A-BE37-7B7C82677812}) (Version: 2.0.908 - Synergenics, LLC)
EMBASSY Security Center Lite (HKLM\...\{131A2659-99A9-4A89-B012-22A898EAE9DA}) (Version: 04.01.00.044 - Wave Systems Corp) Hidden
EMBASSY Security Center Lite (HKLM-x32\...\InstallShield_{131A2659-99A9-4A89-B012-22A898EAE9DA}) (Version: - ) Hidden
EMBASSY Security Setup (HKLM\...\{53333479-6A52-4816-8497-5C52B67ED339}) (Version: 04.01.00.043 - Wave Systems Corp) Hidden
EMBASSY Security Setup (HKLM-x32\...\InstallShield_{53333479-6A52-4816-8497-5C52B67ED339}) (Version: - ) Hidden
ESC Home Page Plugin (HKLM\...\{E738A392-F690-4A9D-808E-7BAF80E0B398}) (Version: 04.01.00.010 - Wave Systems Corp) Hidden
ESC Home Page Plugin (HKLM-x32\...\InstallShield_{E738A392-F690-4A9D-808E-7BAF80E0B398}) (Version: - ) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
f.lux (HKCU\...\Flux) (Version: - )
FileMaker Pro 13 (HKLM-x32\...\{EA92821A-03A5-4B00-85F4-834BBD8ABC24}) (Version: 13.0.1.0 - FileMaker, Inc.) Hidden
FileMaker Pro 13 (HKLM-x32\...\{EA92821A-03A5-4B00-85F4-834BBD8ABC24}_FileMaker) (Version: 13.0.1.0 - FileMaker, Inc.)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 2.3.25.1124 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.0.6.1126 - Foxit Software Inc.)
Git version 1.9.5-preview20150319 (HKCU\...\Git_is1) (Version: 1.9.5-preview20150319 - The Git Development Community)
GitHub (HKCU\...\5f7eb300e2ea4ebf) (Version: 2.13.2.4 - GitHub, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Earth Pro (HKLM-x32\...\{35DAA04C-1720-4BE3-A920-A03731EC6A1D}) (Version: 7.1.5.1557 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.31.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Google Web Designer (HKLM\...\{811767F4-C586-4673-A41F-E9D767497222}) (Version: 1.3.5.0 - Google Inc.)
HDSDR 2.62 (HKLM-x32\...\{DB200CBD-9E3E-4C72-B711-B46D6817BC51}_is1) (Version: - DG0JBJ)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1883 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{CCAFF072-4DDB-4846-963D-15F02A8E9472}) (Version: 13.00.0000 - Intel Corporation)
iSEEK AnswerWorks English Runtime (HKLM-x32\...\{18A8E78B-9EF2-496E-B310-BCD8E4C1DAB3}) (Version: 010.000.0101 - Vantage Linguistics)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java™ 6 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416045FF}) (Version: 6.0.450 - Oracle)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kernel for PDF to Word ver 11.06.01 (HKLM-x32\...\Kernel for PDF to Word_is1) (Version: - Lepide Software Pvt. Ltd.)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4841.1002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC)
Mozilla Firefox 47.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 en-US)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1.6018 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyCheckBook (HKLM-x32\...\{4729A3D9-F958-4214-A198-ECA9715D47D0}) (Version: 12.0.0 - Avanquest North America Inc.)
NirSoft ProduKey (HKLM-x32\...\NirSoft ProduKey) (Version: - )
NTRU TCG Software Stack (HKLM\...\{BB93D30B-B395-44BB-A9ED-A0E057F07E53}) (Version: 2.1.29 - NTRU Cryptosystems) Hidden
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4841.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4841.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.4841.1002 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
PDFMate PDF Converter 1.7.5 (HKLM-x32\...\PDFMate PDF Converter_is1) (Version: - pdfmate.com)
PDFZilla V3.2 (HKLM-x32\...\PDFZilla_is1) (Version: - PDFZilla, Inc.)
Preboot Manager (HKLM\...\{3A6BE9F4-5FC8-44BB-BE7B-32A29607FEF6}) (Version: 03.01.00.084 - Wave Systems Corp.) Hidden
qBittorrent 3.2.3 (HKLM-x32\...\qBittorrent) (Version: 3.2.3 - The qBittorrent project)
Quicken 2015 (HKLM-x32\...\{00C2D443-43D9-4550-ABEA-318288E23E57}) (Version: 24.1.8.1 - Intuit)
R for Windows 3.2.0 (HKLM\...\R for Windows 3.2.0_is1) (Version: 3.2.0 - R Core Team)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6015 - Realtek Semiconductor Corp.)
RStudio (HKLM-x32\...\RStudio) (Version: 0.98.1103 - RStudio)
Rtools 3.2 (HKLM-x32\...\Rtools_is1) (Version: - The R Foundation)
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.)
Sandboxie 5.10 (64-bit) (HKLM\...\Sandboxie) (Version: 5.10 - Sandboxie Holdings, LLC)
Software Upgrade Assistant (HKLM\...\{B33BA940-B460-4F02-BFF3-1DDCE7083726}_is1) (Version: 2.1.4 - Motorola Mobility LLC)
TeX Live 2015 (HKCU\...\TeXLive2015) (Version: 2015 - )
Texmaker (HKLM-x32\...\Texmaker) (Version: - )
TeXstudio 2.10.4 (HKLM-x32\...\TeXstudio_is1) (Version: 2.10.4 - Benito van der Zander)
Trusted Drive Manager (HKLM\...\{DDD6BE8C-9AFA-48F1-A6AE-3BD596E2EB0B}) (Version: 3.3.3.104 - Wave Systems Corp.) Hidden
UltraEdit (HKLM\...\{AFFE5F64-3248-41E9-96AE-8B475F6EFAB3}) (Version: 22.20.0.43 - IDM Computer Solutions, Inc.)
UniPDF 1.2 (HKLM-x32\...\UniPDF) (Version: 1.2 - UniPDF.com)
UPEK TouchChip Fingerprint Reader (HKLM\...\{0003C1E0-E0E7-49BB-A0F6-4AE6D2B09202}) (Version: 1.2.0 - Dell Inc.) Hidden
Vibosoft Android Mobile Manager (HKCU\...\Vibosoft Android Mobile Manager) (Version: 2.4.154 - Vibosoft)
VisiPics V1.31 (HKLM-x32\...\VisiPics_is1) (Version: - Ozone)
VMware Workstation (HKLM\...\{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}) (Version: 11.1.0 - VMware, Inc.) Hidden
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 11.1.0 - VMware, Inc)
Wave Infrastructure Installer (HKLM\...\{67154CF5-2C33-41C2-A9F2-A4FBC29482AD}) (Version: 07.65.31.0000 - Wave Systems Corp) Hidden
Wave Support Software (HKLM\...\{07D618CD-B016-438A-ADC9-A75BD23F85CE}) (Version: 05.11.00.040 - Wave Systems Corp) Hidden
Wave Support Software (HKLM-x32\...\InstallShield_{07D618CD-B016-438A-ADC9-A75BD23F85CE}) (Version: - ) Hidden
Wickr Me (HKLM-x32\...\{7668652D-F198-4E7B-8FF4-5E2DC13D9AD7}) (Version: 2.6.0.4 - Wickr Inc.)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.100 - Broadcom Corporation)
Windows Driver Package - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (HKLM\...\9512AA21B791B05A54E27065C45BBC417AB282DF) (Version: 09/11/2009 1.0.1.6 - Dell Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Winrad 1.6.1 (HKLM-x32\...\{618A02F0-E2C5-4E1B-9D0E-B0282167431D}) (Version: 1.6.1.116 - Winrad.org)
Wondershare Dr.Fone for Android(Build 6.0.3.26) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 6.0.3.26 - Wondershare Software Co.,Ltd.)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 4055.29 MB
Available physical RAM: 2155.39 MB
Total Virtual: 8108.77 MB
Available Virtual: 5814.48 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:222.55 GB) (Free:37.76 GB) NTFS

========================= Users: ========================================

User accounts for \\LATITUDE13

Administrator desknowpostgres fme
fmeadmin Guest Robin

========================= Restore Points ==================================

16-07-2016 21:43:02 Windows Update
17-07-2016 08:00:24 Windows Update
18-07-2016 08:00:25 Windows Update
23-07-2016 01:31:13 Windows Update
27-07-2016 03:00:26 Windows Update
03-08-2016 00:58:55 Windows Update
08-08-2016 04:25:34 Removed Verizon Wireless Software Upgrade Assistant for Motorola炴╚ỳᅈɑΔ8
11-08-2016 02:09:13 Removed Check Designer.

**** End of log ****
====================================
Rkill 2.8.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2016 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/12/2016 12:24:10 AM in x64 mode.
Windows Version: Windows 7 Professional Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Users\fme\Desktop\BleepingComputer\SecurityCheck.exe (PID: 5744) [UP-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* Windows Update (wuauserv) is not Running.
Startup Type set to: Automatic (Delayed Start)

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 08/12/2016 12:34:26 AM
Execution time: 0 hours(s), 10 minute(s), and 16 seconds(s)
===========================
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.3.1001

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 11.0.9600.18376

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.396000 GHz
Memory total: 4252282880, free: 1583935488

Downloaded database version: v2016.08.12.01
Downloaded database version: v2016.08.09.01
Downloaded database version: v2016.08.08.02
=======================================
Initializing...
------------ Kernel report ------------
08/11/2016 23:39:42
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\DRIVERS\compbatt.sys
\SystemRoot\system32\DRIVERS\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\DRIVERS\vmci.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\vsock.sys
\SystemRoot\system32\drivers\iaStor.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\system32\DRIVERS\PBADRV.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\EUBKMON.sys
\SystemRoot\system32\drivers\eubakup.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\??\C:\Windows\system32\drivers\SBREdrv.sys
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\??\C:\Windows\system32\drivers\EuFdDisk.sys
\??\C:\Windows\system32\drivers\eudskacs.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\NETw5s64.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\b57nd60a.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\Acceler.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\vmnetadapter.sys
\SystemRoot\system32\DRIVERS\VMNET.SYS
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_iaStor.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\DRIVERS\vmnetbridge.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\??\C:\Windows\system32\drivers\hcmon.sys
\??\C:\Windows\system32\drivers\vmx86.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\??\C:\Windows\system32\drivers\vmnetuserif.sys
\SystemRoot\SysWOW64\drivers\vstor2-mntapi20-shared.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\system32\DRIVERS\WSDPrint.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\??\C:\Windows\system32\drivers\mbam.sys
\??\C:\Windows\system32\drivers\MBAMSwissArmy.sys
\??\C:\Windows\system32\drivers\mwac.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\shlwapi.dll
\Windows\System32\iertutil.dll
\Windows\System32\advapi32.dll
\Windows\System32\difxapi.dll
\Windows\System32\lpk.dll
\Windows\System32\Wldap32.dll
\Windows\System32\shell32.dll
\Windows\System32\ws2_32.dll
\Windows\System32\nsi.dll
\Windows\System32\msvcrt.dll
\Windows\System32\sechost.dll
\Windows\System32\setupapi.dll
\Windows\System32\normaliz.dll
\Windows\System32\wininet.dll
\Windows\System32\gdi32.dll
----------- End -----------
Done!

Scan started
Database versions:
main: v2016.08.12.01
rootkit: v2016.08.09.01

<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: B81E8A35

Partition information:

Partition 0 type is Other (0xde)
Partition is NOT ACTIVE.
Partition starts at LBA: 63 Numsec = 80262
Partition is not bootable

Partition 1 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 81920 Numsec = 21594112
Partition is bootable
Partition file system is NTFS

Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 21676032 Numsec = 466714624
Partition is not bootable
Partition file system is NTFS

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable

Disk Size: 250059350016 bytes
Sector size: 512 bytes

Done!
Scan finished
------------ Kernel report ------------
08/12/2016 01:06:10
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\DRIVERS\compbatt.sys
\SystemRoot\system32\DRIVERS\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\DRIVERS\vmci.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\vsock.sys
\SystemRoot\system32\drivers\iaStor.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\system32\DRIVERS\PBADRV.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\EUBKMON.sys
\SystemRoot\system32\drivers\eubakup.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\??\C:\Windows\system32\drivers\SBREdrv.sys
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\??\C:\Windows\system32\drivers\EuFdDisk.sys
\??\C:\Windows\system32\drivers\eudskacs.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\NETw5s64.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\b57nd60a.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\Acceler.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\vmnetadapter.sys
\SystemRoot\system32\DRIVERS\VMNET.SYS
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_iaStor.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\DRIVERS\vmnetbridge.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\??\C:\Windows\system32\drivers\hcmon.sys
\??\C:\Windows\system32\drivers\vmx86.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\??\C:\Windows\system32\drivers\vmnetuserif.sys
\SystemRoot\SysWOW64\drivers\vstor2-mntapi20-shared.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\system32\DRIVERS\WSDPrint.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\??\C:\Windows\system32\drivers\mbam.sys
\??\C:\Windows\system32\drivers\MBAMSwissArmy.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\shlwapi.dll
\Windows\System32\iertutil.dll
\Windows\System32\advapi32.dll
\Windows\System32\difxapi.dll
\Windows\System32\lpk.dll
\Windows\System32\Wldap32.dll
\Windows\System32\shell32.dll
\Windows\System32\ws2_32.dll
\Windows\System32\nsi.dll
\Windows\System32\msvcrt.dll
\Windows\System32\sechost.dll
\Windows\System32\setupapi.dll
\Windows\System32\normaliz.dll
\Windows\System32\wininet.dll
\Windows\System32\gdi32.dll
----------- End -----------
=======================================


Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-63-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-81920-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-2-21676032-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removal finished

#10 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:33 AM

Posted 14 August 2016 - 07:16 PM

Good news :)

 

Security Check log is incomplete.

Please repost.

 

I still need MBAM log.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#11 fmedwards3

fmedwards3
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:01:33 PM

Posted 15 August 2016 - 11:12 PM


securitycheck hangs after displaying the following and does not create the file checkup.txt

''Performing System Health Check''
Find '/I' : No such file or directory
Find: Windows 7' : No such file or directory


=========================
Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/15/2016
Scan Time: 10:09 PM
Logfile:
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2016.08.16.02
Rootkit Database: v2016.08.15.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: fme

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 508686
Time Elapsed: 26 min, 11 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

#12 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:33 AM

Posted 16 August 2016 - 07:53 PM

I still need all other logs.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#13 fmedwards3

fmedwards3
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:01:33 PM

Posted 16 August 2016 - 11:50 PM

Thanks for your patience and persistance.

I will try again to post all requested files except that
1. niether rkill nor iexplore would run - got an error about an environment variable.
2. SecurityCheck continues to hangbefore writing output file.

*************************************************
Farbar Service Scanner Version: 27-01-2016
Ran by fme (administrator) on 16-08-2016 at 20:59:49
Running from "C:\Users\fme\Desktop\BleepingComputer"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****
**************************************************************

MiniToolBox by Farbar Version: 17-06-2016
Ran by fme (administrator) on 16-08-2016 at 20:48:19
Running from "C:\Users\fme\Desktop\BleepingComputer"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Model: Latitude 13 Manufacturer: Dell Inc.
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================
========================= IP Configuration: ================================



# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Local Area Connection" address=192.168.1.100 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Latitude13
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® WiFi Link 5100 AGN
Physical Address. . . . . . . . . : 00-24-D6-B1-9F-1E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2002:4472:7750:0:9057:502b:3968:f2bb(Preferred)
Temporary IPv6 Address. . . . . . : 2002:4472:7750:0:50fb:5de7:a1b8:dcc5(Preferred)
Link-local IPv6 Address . . . . . : fe80::9057:502b:3968:f2bb%25(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.111(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, August 14, 2016 6:24:21 PM
Lease Expires . . . . . . . . . . : Wednesday, August 17, 2016 8:39:10 PM
Default Gateway . . . . . . . . . : fe80::225:9cff:febe:ee56%25
192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 419439830
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-ED-99-F8-00-26-B9-69-B6-CB
DNS Servers . . . . . . . . . . . : 8.8.8.8
8.8.4.4
192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller
Physical Address. . . . . . . . . : 00-26-B9-69-B6-CB
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{CEA216A1-D0D2-4D80-96F0-79754F6C6BD3}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{294C6ECE-0841-498A-8394-BE74FD0D97D2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: google.com
Addresses: 2607:f8b0:4002:c07::66
74.125.138.100
74.125.138.102
74.125.138.113
74.125.138.139
74.125.138.101
74.125.138.138


Pinging google.com [74.125.138.113] with 32 bytes of data:
Reply from 74.125.138.113: bytes=32 time=40ms TTL=44
Reply from 74.125.138.113: bytes=32 time=47ms TTL=44

Ping statistics for 74.125.138.113:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 40ms, Maximum = 47ms, Average = 43ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: yahoo.com
Addresses: 2001:4998:44:204::a7
2001:4998:58:c02::a9
2001:4998:c:a06::2:4008
98.138.253.109
206.190.36.45
98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=444ms TTL=47
Reply from 98.138.253.109: bytes=32 time=131ms TTL=47

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 131ms, Maximum = 444ms, Average = 287ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
25...00 24 d6 b1 9f 1e ......Intel® WiFi Link 5100 AGN
11...00 26 b9 69 b6 cb ......Broadcom NetXtreme 57xx Gigabit Controller
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.111 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.111 281
192.168.1.111 255.255.255.255 On-link 192.168.1.111 281
192.168.1.255 255.255.255.255 On-link 192.168.1.111 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.111 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.111 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
25 4121 ::/0 fe80::225:9cff:febe:ee56
1 306 ::1/128 On-link
25 33 2002:4472:7750::/64 On-link
25 281 2002:4472:7750:0:50fb:5de7:a1b8:dcc5/128
On-link
25 281 2002:4472:7750:0:9057:502b:3968:f2bb/128
On-link
25 281 fe80::/64 On-link
25 281 fe80::9057:502b:3968:f2bb/128
On-link
1 306 ff00::/8 On-link
25 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/16/2016 08:53:04 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.

Error: (08/16/2016 08:52:50 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.

Error: (08/16/2016 08:49:36 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.

Error: (08/16/2016 08:49:32 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.

Error: (08/16/2016 08:45:20 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.

Error: (08/16/2016 08:45:13 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.

Error: (08/16/2016 08:44:04 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.

Error: (08/16/2016 08:44:00 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.

Error: (08/16/2016 07:31:01 AM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.

Error: (08/16/2016 07:30:53 AM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Windows cannot load classes registry file.
DETAIL - The system cannot find the file specified.


System errors:
=============
Error: (08/16/2016 08:39:02 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

Error: (08/16/2016 08:12:54 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

Error: (08/16/2016 06:47:09 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

Error: (08/16/2016 01:46:44 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

Error: (08/16/2016 11:55:04 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

Error: (08/16/2016 11:55:04 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WinDefend service.

Error: (08/16/2016 07:15:14 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

Error: (08/16/2016 06:23:38 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (08/15/2016 08:46:52 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (08/15/2016 12:45:27 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.


Microsoft Office Sessions:
=========================
Error: (08/16/2016 08:53:04 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (08/16/2016 08:52:50 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (08/16/2016 08:49:36 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (08/16/2016 08:49:32 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (08/16/2016 08:45:20 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (08/16/2016 08:45:13 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (08/16/2016 08:44:04 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (08/16/2016 08:44:00 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (08/16/2016 07:31:01 AM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (08/16/2016 07:30:53 AM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.


=========================== Installed Programs ============================

7-PDF Split & Merge Version 2.7.0 (Build 176) (HKLM-x32\...\7-PDF Split & Merge_is1) (Version: 7-PDF Split & Merge - Version 2.7.0 (Build 176) - 7-PDF, Germany - Thorsten Hodes)
7-Zip 9.38 beta (HKLM-x32\...\7-Zip) (Version: - )
AbleWord v3.0 (HKLM-x32\...\AbleWord_is1) (Version: - )
Adobe Flash Player 22 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 22.0.0.210 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Auslogics Duplicate File Finder (HKLM-x32\...\{6845255F-15CC-4DD1-94D5-D38F370118B3}_is1) (Version: 5.2.1.0 - Auslogics Labs Pty Ltd)
BioAPI Framework (HKLM\...\{AF7E4468-E364-4991-BC2A-6E8293E1055B}) (Version: 1.0.1 - Dell Inc.) Hidden
Bitnami Precurio Stack (HKLM-x32\...\Bitnami Precurio Stack 4.3-0) (Version: 4.3-0 - Bitnami)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom NetXtreme-I Netlink Driver and Management Installer (HKLM\...\{D6E46FC2-B513-4B7D-8C8C-352F4735C541}) (Version: 12.54.02 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Coolmuster Lab.Fone for Android (HKCU\...\Coolmuster Lab.Fone for Android) (Version: 2.2.2.40 - Coolmuster)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery Manager (HKLM\...\{50B4B603-A4C6-4739-AE96-6C76A0F8A388}) (Version: 1.3.1 - Dell Inc.)
Dell Control Point 64 (HKLM\...\{7B7D73E7-79D5-4133-AB7A-E27BB5F64725}) (Version: 1.6.468.86 - Broadcom Corporation) Hidden
Dell ControlPoint Security Manager (HKLM-x32\...\{F4487649-7368-4217-AEA3-1E04DB3E2C5C}) (Version: 1.6.468.86 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Embassy Trust Suite by Wave Systems (HKLM\...\{ABBA2EA4-740E-4052-902B-9CA70B081E3F}) (Version: 02.05.04.001 - Wave Systems Corp) Hidden
Dell Security Device Driver Pack (HKLM-x32\...\{FF1DDCF4-3A28-4F7F-96D8-E3F4BD1C1702}) (Version: 1.4.056 - Dell Inc.)
Dell System Detect - 1 (HKCU\...\73f463568823ebbe) (Version: 6.2.0.5 - Dell)
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 3.3.2.1 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)
DeskNow (HKLM-x32\...\DeskNow) (Version: - )
Dropbox (HKLM-x32\...\Dropbox) (Version: 7.4.30 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.27.37 - Dropbox, Inc.) Hidden
dupeGuru (HKLM\...\{C11DACBD-8863-4AA4-94AD-708602F6F7EF}) (Version: 3.9.1 - Hardcoded Software)
EaseUS Todo Backup Free 4.0 (HKLM-x32\...\EaseUS Todo Backup Free 4.0_is1) (Version: 4.0.0.5 - CHENGDU YIWO Tech Development Co., Ltd)
EMBASSY Security Center Lite (HKLM\...\{131A2659-99A9-4A89-B012-22A898EAE9DA}) (Version: 04.01.00.044 - Wave Systems Corp) Hidden
EMBASSY Security Center Lite (HKLM-x32\...\InstallShield_{131A2659-99A9-4A89-B012-22A898EAE9DA}) (Version: - ) Hidden
EMBASSY Security Setup (HKLM\...\{53333479-6A52-4816-8497-5C52B67ED339}) (Version: 04.01.00.043 - Wave Systems Corp) Hidden
EMBASSY Security Setup (HKLM-x32\...\InstallShield_{53333479-6A52-4816-8497-5C52B67ED339}) (Version: - ) Hidden
ESC Home Page Plugin (HKLM\...\{E738A392-F690-4A9D-808E-7BAF80E0B398}) (Version: 04.01.00.010 - Wave Systems Corp) Hidden
ESC Home Page Plugin (HKLM-x32\...\InstallShield_{E738A392-F690-4A9D-808E-7BAF80E0B398}) (Version: - ) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FileMaker Pro 13 (HKLM-x32\...\{EA92821A-03A5-4B00-85F4-834BBD8ABC24}) (Version: 13.0.1.0 - FileMaker, Inc.) Hidden
FileMaker Pro 13 (HKLM-x32\...\{EA92821A-03A5-4B00-85F4-834BBD8ABC24}_FileMaker) (Version: 13.0.1.0 - FileMaker, Inc.)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 2.3.25.1124 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.0.6.1126 - Foxit Software Inc.)
Git version 1.9.5-preview20150319 (HKCU\...\Git_is1) (Version: 1.9.5-preview20150319 - The Git Development Community)
GitHub (HKCU\...\5f7eb300e2ea4ebf) (Version: 2.13.2.4 - GitHub, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Earth Pro (HKLM-x32\...\{35DAA04C-1720-4BE3-A920-A03731EC6A1D}) (Version: 7.1.5.1557 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.31.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Google Web Designer (HKLM\...\{811767F4-C586-4673-A41F-E9D767497222}) (Version: 1.3.5.0 - Google Inc.)
HDSDR 2.62 (HKLM-x32\...\{DB200CBD-9E3E-4C72-B711-B46D6817BC51}_is1) (Version: - DG0JBJ)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1883 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{CCAFF072-4DDB-4846-963D-15F02A8E9472}) (Version: 13.00.0000 - Intel Corporation)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java™ 6 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416045FF}) (Version: 6.0.450 - Oracle)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kernel for PDF to Word ver 11.06.01 (HKLM-x32\...\Kernel for PDF to Word_is1) (Version: - Lepide Software Pvt. Ltd.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4841.1002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC)
Mozilla Firefox 47.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 en-US)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1.6018 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyCheckBook (HKLM-x32\...\{4729A3D9-F958-4214-A198-ECA9715D47D0}) (Version: 12.0.0 - Avanquest North America Inc.)
NirSoft ProduKey (HKLM-x32\...\NirSoft ProduKey) (Version: - )
NTRU TCG Software Stack (HKLM\...\{BB93D30B-B395-44BB-A9ED-A0E057F07E53}) (Version: 2.1.29 - NTRU Cryptosystems) Hidden
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4841.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4841.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.4841.1002 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
PDFMate PDF Converter 1.7.5 (HKLM-x32\...\PDFMate PDF Converter_is1) (Version: - pdfmate.com)
PDFZilla V3.2 (HKLM-x32\...\PDFZilla_is1) (Version: - PDFZilla, Inc.)
Preboot Manager (HKLM\...\{3A6BE9F4-5FC8-44BB-BE7B-32A29607FEF6}) (Version: 03.01.00.084 - Wave Systems Corp.) Hidden
qBittorrent 3.2.3 (HKLM-x32\...\qBittorrent) (Version: 3.2.3 - The qBittorrent project)
Quicken 2015 (HKLM-x32\...\{00C2D443-43D9-4550-ABEA-318288E23E57}) (Version: 24.1.8.1 - Intuit)
R for Windows 3.2.0 (HKLM\...\R for Windows 3.2.0_is1) (Version: 3.2.0 - R Core Team)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6015 - Realtek Semiconductor Corp.)
RStudio (HKLM-x32\...\RStudio) (Version: 0.98.1103 - RStudio)
Rtools 3.2 (HKLM-x32\...\Rtools_is1) (Version: - The R Foundation)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.)
Sandboxie 5.10 (64-bit) (HKLM\...\Sandboxie) (Version: 5.10 - Sandboxie Holdings, LLC)
Software Upgrade Assistant (HKLM\...\{B33BA940-B460-4F02-BFF3-1DDCE7083726}_is1) (Version: 2.1.4 - Motorola Mobility LLC)
TeX Live 2015 (HKCU\...\TeXLive2015) (Version: 2015 - )
Texmaker (HKLM-x32\...\Texmaker) (Version: - )
TeXstudio 2.10.4 (HKLM-x32\...\TeXstudio_is1) (Version: 2.10.4 - Benito van der Zander)
Trusted Drive Manager (HKLM\...\{DDD6BE8C-9AFA-48F1-A6AE-3BD596E2EB0B}) (Version: 3.3.3.104 - Wave Systems Corp.) Hidden
UltraEdit (HKLM\...\{AFFE5F64-3248-41E9-96AE-8B475F6EFAB3}) (Version: 22.20.0.43 - IDM Computer Solutions, Inc.)
UniPDF 1.2 (HKLM-x32\...\UniPDF) (Version: 1.2 - UniPDF.com)
UPEK TouchChip Fingerprint Reader (HKLM\...\{0003C1E0-E0E7-49BB-A0F6-4AE6D2B09202}) (Version: 1.2.0 - Dell Inc.) Hidden
Vibosoft Android Mobile Manager (HKCU\...\Vibosoft Android Mobile Manager) (Version: 2.4.154 - Vibosoft)
VisiPics V1.31 (HKLM-x32\...\VisiPics_is1) (Version: - Ozone)
Wave Infrastructure Installer (HKLM\...\{67154CF5-2C33-41C2-A9F2-A4FBC29482AD}) (Version: 07.65.31.0000 - Wave Systems Corp) Hidden
Wave Support Software (HKLM\...\{07D618CD-B016-438A-ADC9-A75BD23F85CE}) (Version: 05.11.00.040 - Wave Systems Corp) Hidden
Wave Support Software (HKLM-x32\...\InstallShield_{07D618CD-B016-438A-ADC9-A75BD23F85CE}) (Version: - ) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.100 - Broadcom Corporation)
Windows Driver Package - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (HKLM\...\9512AA21B791B05A54E27065C45BBC417AB282DF) (Version: 09/11/2009 1.0.1.6 - Dell Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Winrad 1.6.1 (HKLM-x32\...\{618A02F0-E2C5-4E1B-9D0E-B0282167431D}) (Version: 1.6.1.116 - Winrad.org)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 62%
Total physical RAM: 4055.29 MB
Available physical RAM: 1507.14 MB
Total Virtual: 8108.77 MB
Available Virtual: 4671.14 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:222.55 GB) (Free:38.21 GB) NTFS

========================= Users: ========================================

User accounts for \\LATITUDE13

Administrator desknowpostgres fme
fmeadmin Guest Robin

========================= Restore Points ==================================

17-07-2016 08:00:24 Windows Update
18-07-2016 08:00:25 Windows Update
23-07-2016 01:31:13 Windows Update
27-07-2016 03:00:26 Windows Update
03-08-2016 00:58:55 Windows Update
08-08-2016 04:25:34 Removed Verizon Wireless Software Upgrade Assistant for Motorola炴╚ỳᅈɑΔ8
11-08-2016 02:09:13 Removed Check Designer.
14-08-2016 02:31:07 Removed Asoftech Data Recovery
14-08-2016 02:33:42 Removed EchoLink.
14-08-2016 02:35:48 Removed iSEEK AnswerWorks English Runtime
14-08-2016 02:38:31 Removed Samsung Kies3
14-08-2016 02:40:29 Removed Wickr Me

**** End of log ****
******************************************************************************************

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/16/2016
Scan Time: 8:50 PM
Logfile: MBAM_Log.txt
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2016.08.16.12
Rootkit Database: v2016.08.15.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: fme

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 509130
Time Elapsed: 1 hr, 19 min, 34 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)
***********************************************************

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
main: v2016.08.16.12
rootkit: v2016.08.15.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18376
fme :: LATITUDE13 [administrator]

8/16/2016 8:58:56 PM
mbar-log-2016-08-16 (20-58-56).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 513871
Time elapsed: 1 hour(s), 49 minute(s), 1 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
************

C\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\shlwapi.dll
\Windows\System32\iertutil.dll
\Windows\System32\advapi32.dll
\Windows\System32\difxapi.dll
\Windows\System32\lpk.dll
\Windows\System32\Wldap32.dll
\Windows\System32\shell32.dll
\Windows\System32\ws2_32.dll
\Windows\System32\nsi.dll
\Windows\System32\msvcrt.dll
\Windows\System32\sechost.dll
\Windows\System32\setupapi.dll
\Windows\System32\normaliz.dll
\Windows\System32\wininet.dll
\Windows\System32\gdi32.dll
----------- End -----------
=======================================


Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-63-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-81920-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-2-21676032-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removal finished
***************

#14 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:11:33 AM

Posted 17 August 2016 - 05:09 PM

Clean so far...

 

p22002970.gif Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
TFC will close all running programs, and it may ask you to restart computer.

p22002970.gif Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


p22002970.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


p22002970.gif Download Sophos Free Virus Removal Tool and save it to your desktop.
  • Double click the icon and select Run
  • Click Next
  • Select I accept the terms in this license agreement, then click Next twice
  • Click Install
  • Click Finish to launch the program
  • Once the virus database has been updated click Start Scanning
  • If any threats are found click Details, then View log file... (bottom left hand corner)
  • Copy and paste the results in your reply
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup
  • Click Exit to close the program


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#15 fmedwards3

fmedwards3
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:01:33 PM

Posted 18 August 2016 - 09:07 AM

NOTE:
The Processes Tab of Task Manager shows very little CPU ativity, but the Performance Tab graph

shows 100% usage. Resource Monitor shows svcehost.exe(netsvcs) using 88%-100% of CPU. I killed svchost.exe(netsvcs) and the computer ran fine -- until svchost(netsvcs) restarted on its own.


****************************************************************************



# AdwCleaner v6.000 - Logfile created 17/08/2016 at 20:18:29
# Updated on 12/08/2016 by ToolsLib
# Database : 2016-08-17.2 [Server]
# Operating System : Windows 7 Professional Service Pack 1 (X64)
# Username : fme - LATITUDE13
# Running from : C:\Users\fme\Desktop\BleepingComputer2\adwcleaner_6.000.exe
# Mode: Clean
# Support : https://toolslib.net/forum



***** [ Services ] *****



***** [ Folders ] *****

[-] Folder deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\AskToolbar
[-] Folder deleted: C:\Users\fme\AppData\Local\Google\Chrome\User Data\Default\Extensions

\dogmhlelnjpjgahofccgbfnmojkmlfep


***** [ Files ] *****

[-] File deleted: C:\Users\fme\AppData\Local\Google\Chrome\User Data\Default\Local Storage

\hxxp_any-android-data-recovery.en.softonic.com_0.localstorage
[-] File deleted: C:\Users\fme\AppData\Local\Google\Chrome\User Data\Default\Local Storage

\hxxp_any-android-data-recovery.en.softonic.com_0.localstorage-journal
[-] File deleted: C:\Users\fme\AppData\Local\Google\Chrome\User Data\Default\Local Storage

\hxxp_features.en.softonic.com_0.localstorage
[-] File deleted: C:\Users\fme\AppData\Local\Google\Chrome\User Data\Default\Local Storage

\hxxp_features.en.softonic.com_0.localstorage-journal


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\Live Malware

Protection
[-] Key deleted: [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\PrivoxyService
[-] Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[-] Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[-] Key deleted: [x64] HKLM\SOFTWARE\Classes\CLSID\{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}
[-] Key deleted: [x64] HKLM\SOFTWARE\Classes\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Key deleted: HKU\S-1-5-21-963752047-1521292436-1757112234-1006\Software\SoftSuma
[#] Key deleted on reboot: HKCU\Software\SoftSuma
[-] Key deleted: HKLM\SOFTWARE\Classes\f


***** [ Web browsers ] *****

[-] [yahoo.com search] [Search Provider] Deleted: yahoo.com search
[-] [search.yahoo.com] [Search Provider] Deleted: search.yahoo.com
[-] [C:\Users\fme\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted:

dogmhlelnjpjgahofccgbfnmojkmlfep


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C2].txt - [2061 Bytes] - [07/09/2015 01:21:41]
C:\AdwCleaner\AdwCleaner[C3].txt - [2655 Bytes] - [17/08/2016 20:18:29]
C:\AdwCleaner\AdwCleaner[R0].txt - [4155 Bytes] - [15/07/2015 20:37:24]
C:\AdwCleaner\AdwCleaner[S0].txt - [3833 Bytes] - [15/07/2015 20:49:31]
C:\AdwCleaner\AdwCleaner[S2].txt - [1893 Bytes] - [07/09/2015 01:03:38]
C:\AdwCleaner\AdwCleaner[S3].txt - [3159 Bytes] - [17/08/2016 20:13:19]

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [3020 Bytes] ##########



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.7 (07.03.2016)
Operating System: Windows 7 Professional x64
Ran by fme (Administrator) on Wed 08/17/2016 at 20:24:37.06
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 08/17/2016 at 20:28:12.81
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



2016-08-18 01:55:23.888 Sophos Virus Removal Tool version 2.5.6
2016-08-18 01:55:23.888 Copyright © 2009-2016 Sophos Limited. All rights reserved.

2016-08-18 01:55:23.888 This tool will scan your computer for viruses and other threats. If it

finds any, it will give you the option to remove them.

2016-08-18 01:55:23.888 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x100 PT=0x1

WOW64
2016-08-18 01:55:23.906 Checking for updates...
2016-08-18 01:55:24.719 Update progress: proxy server not available
2016-08-18 01:56:01.624 Option all = no
2016-08-18 01:56:01.624 Option recurse = yes
2016-08-18 01:56:01.624 Option archive = no
2016-08-18 01:56:01.624 Option service = yes
2016-08-18 01:56:01.624 Option confirm = yes
2016-08-18 01:56:01.625 Option sxl = yes
2016-08-18 01:56:01.628 Option max-data-age = 35
2016-08-18 01:56:01.628 Option vdl-logging = yes
2016-08-18 01:56:01.667 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2016-08-18 01:56:01.667 Machine ID: 3b7021d4ae494a3488c2096fb6c5b4f9
2016-08-18 01:56:01.668 Component SVRTcli.exe version 2.5.6
2016-08-18 01:56:01.669 Component control.dll version 2.5.6
2016-08-18 01:56:01.669 Component SVRTservice.exe version 2.5.6
2016-08-18 01:56:01.669 Component engine\osdp.dll version 1.44.1.2252
2016-08-18 01:56:01.669 Component engine\veex.dll version 3.65.2.2252
2016-08-18 01:56:01.669 Component engine\savi.dll version 9.0.1.2252
2016-08-18 01:56:01.670 Component rkdisk.dll version 1.5.30.0
2016-08-18 01:56:01.670 Version info: Product version 2.5.6
2016-08-18 01:56:01.671 Version info: Detection engine 3.65.2
2016-08-18 01:56:01.671 Version info: Detection data 5.30
2016-08-18 01:56:01.671 Version info: Build date 8/9/2016
2016-08-18 01:56:01.671 Version info: Data files added 189
2016-08-18 01:56:01.671 Version info: Last successful update (not yet updated)
2016-08-18 01:57:55.145 Downloading updates...
2016-08-18 01:57:55.147 Update progress: [I96736] sdds.svrt_10: adding primary package C1A903B2-

E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2016-08-18 01:57:55.148 Update progress: [I95020] sdds.svrt_10: looking for packages included

from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2016-08-18 01:57:55.148 Update progress: [I22529] sdds.svrt_10: looking for supplements included

from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2016-08-18 01:57:55.148 Update progress: [I49502] sdds.savi0910.xml: found supplement SAVIW32

LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED

path=]
2016-08-18 01:57:55.148 Update progress: [I95020] sdds.savi0910.xml: looking for packages

included from product SAVIW32 LATEST path=
2016-08-18 01:57:55.148 Update progress: [I22529] sdds.savi0910.xml: looking for supplements

included from product SAVIW32 LATEST path=
2016-08-18 01:57:55.148 Update progress: [I49502] sdds.data0910.xml: found supplement IDE531

LATEST path= baseVersion= [included from product SAVIW32 LATEST path=]
2016-08-18 01:57:55.148 Update progress: [I95020] sdds.data0910.xml: looking for packages

included from product IDE531 LATEST path=
2016-08-18 01:57:55.148 Update progress: [I22529] sdds.data0910.xml: looking for supplements

included from product IDE531 LATEST path=
2016-08-18 01:57:55.148 Update progress: [I49502] sdds.data0910.xml: found supplement IDE532

LATEST path= baseVersion= [included from product IDE531 LATEST path=]
2016-08-18 01:57:55.148 Update progress: [I95020] sdds.data0910.xml: looking for packages

included from product IDE532 LATEST path=
2016-08-18 01:57:55.148 Update progress: [I22529] sdds.data0910.xml: looking for supplements

included from product IDE532 LATEST path=
2016-08-18 01:57:55.148 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-

04BB9C457C60 RECOMMENDED path=
2016-08-18 01:57:55.585 Update progress: [I19463] Syncing product SAVIW32 LATEST path=
2016-08-18 01:57:55.585 Update progress: [I19463] Product download size 149796374 bytes
2016-08-18 01:57:59.870 Update progress: [I19463] Syncing product IDE531 LATEST path=
2016-08-18 01:57:59.870 Update progress: [I19463] Product download size 2071874 bytes
2016-08-18 01:58:01.838 Update progress: [I19463] Syncing product IDE532 LATEST path=
2016-08-18 01:58:01.838 Update progress: [I19463] Product download size 612833 bytes
2016-08-18 01:58:02.044 Installing updates...
2016-08-18 01:58:03.802 Error level 1
2016-08-18 01:58:39.065 Update successful
2016-08-18 01:59:21.713 Option all = no
2016-08-18 01:59:21.713 Option recurse = yes
2016-08-18 01:59:21.713 Option archive = no
2016-08-18 01:59:21.713 Option service = yes
2016-08-18 01:59:21.713 Option confirm = yes
2016-08-18 01:59:21.713 Option sxl = yes
2016-08-18 01:59:21.717 Option max-data-age = 35
2016-08-18 01:59:21.717 Option vdl-logging = yes
2016-08-18 01:59:21.722 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2016-08-18 01:59:21.722 Machine ID: 3b7021d4ae494a3488c2096fb6c5b4f9
2016-08-18 01:59:21.723 Component SVRTcli.exe version 2.5.6
2016-08-18 01:59:21.723 Component control.dll version 2.5.6
2016-08-18 01:59:21.723 Component SVRTservice.exe version 2.5.6
2016-08-18 01:59:21.723 Component engine\osdp.dll version 1.44.1.2252
2016-08-18 01:59:21.724 Component engine\veex.dll version 3.65.2.2252
2016-08-18 01:59:21.724 Component engine\savi.dll version 9.0.1.2252
2016-08-18 01:59:21.724 Component rkdisk.dll version 1.5.30.0
2016-08-18 01:59:21.724 Version info: Product version 2.5.6
2016-08-18 01:59:21.725 Version info: Detection engine 3.65.2
2016-08-18 01:59:21.725 Version info: Detection data 5.30
2016-08-18 01:59:21.725 Version info: Build date 8/9/2016
2016-08-18 01:59:21.726 Version info: Data files added 189
2016-08-18 01:59:21.726 Version info: Last successful update 8/17/2016 8:58:39 PM
2016-08-18 01:59:34.728 Error level 1

2016-08-18 01:59:34.730 Scan completed.
2016-08-18 01:59:34.730

------------------------------------------------------------

2016-08-18 02:00:21.629 Sophos Virus Removal Tool version 2.5.6
2016-08-18 02:00:21.629 Copyright © 2009-2016 Sophos Limited. All rights reserved.

2016-08-18 02:00:21.629 This tool will scan your computer for viruses and other threats. If it

finds any, it will give you the option to remove them.

2016-08-18 02:00:21.629 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x100 PT=0x1

WOW64
2016-08-18 02:00:21.671 Checking for updates...
2016-08-18 02:00:22.287 Update progress: proxy server not available
2016-08-18 02:00:57.044 Option all = no
2016-08-18 02:00:57.044 Option recurse = yes
2016-08-18 02:00:57.044 Option archive = no
2016-08-18 02:00:57.044 Option service = yes
2016-08-18 02:00:57.044 Option confirm = yes
2016-08-18 02:00:57.044 Option sxl = yes
2016-08-18 02:00:57.048 Option max-data-age = 35
2016-08-18 02:00:57.048 Option vdl-logging = yes
2016-08-18 02:00:57.949 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2016-08-18 02:00:57.949 Machine ID: 3b7021d4ae494a3488c2096fb6c5b4f9
2016-08-18 02:00:57.950 Component SVRTcli.exe version 2.5.6
2016-08-18 02:00:57.950 Component control.dll version 2.5.6
2016-08-18 02:00:57.950 Component SVRTservice.exe version 2.5.6
2016-08-18 02:00:57.951 Component engine\osdp.dll version 1.44.1.2252
2016-08-18 02:00:57.951 Component engine\veex.dll version 3.65.2.2252
2016-08-18 02:00:57.951 Component engine\savi.dll version 9.0.1.2252
2016-08-18 02:00:57.952 Component rkdisk.dll version 1.5.30.0
2016-08-18 02:00:57.952 Version info: Product version 2.5.6
2016-08-18 02:00:57.953 Version info: Detection engine 3.65.2
2016-08-18 02:00:57.953 Version info: Detection data 5.30
2016-08-18 02:00:57.953 Version info: Build date 8/9/2016
2016-08-18 02:00:57.953 Version info: Data files added 189
2016-08-18 02:00:57.953 Version info: Last successful update 8/17/2016 8:58:39 PM
2016-08-18 02:01:42.295 Downloading updates...
2016-08-18 02:01:42.297 Update progress: [I96736] sdds.svrt_10: adding primary package C1A903B2-

E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2016-08-18 02:01:42.297 Update progress: [I95020] sdds.svrt_10: looking for packages included

from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2016-08-18 02:01:42.297 Update progress: [I22529] sdds.svrt_10: looking for supplements included

from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2016-08-18 02:01:42.297 Update progress: [I49502] sdds.savi0910.xml: found supplement SAVIW32

LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED

path=]
2016-08-18 02:01:42.297 Update progress: [I95020] sdds.savi0910.xml: looking for packages

included from product SAVIW32 LATEST path=
2016-08-18 02:01:42.297 Update progress: [I22529] sdds.savi0910.xml: looking for supplements

included from product SAVIW32 LATEST path=
2016-08-18 02:01:42.297 Update progress: [I49502] sdds.data0910.xml: found supplement IDE531

LATEST path= baseVersion= [included from product SAVIW32 LATEST path=]
2016-08-18 02:01:42.297 Update progress: [I95020] sdds.data0910.xml: looking for packages

included from product IDE531 LATEST path=
2016-08-18 02:01:42.297 Update progress: [I22529] sdds.data0910.xml: looking for supplements

included from product IDE531 LATEST path=
2016-08-18 02:01:42.297 Update progress: [I49502] sdds.data0910.xml: found supplement IDE532

LATEST path= baseVersion= [included from product IDE531 LATEST path=]
2016-08-18 02:01:42.298 Update progress: [I95020] sdds.data0910.xml: looking for packages

included from product IDE532 LATEST path=
2016-08-18 02:01:42.298 Update progress: [I22529] sdds.data0910.xml: looking for supplements

included from product IDE532 LATEST path=
2016-08-18 02:01:42.298 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-

04BB9C457C60 RECOMMENDED path=
2016-08-18 02:01:42.392 Update progress: [I19463] Syncing product SAVIW32 LATEST path=
2016-08-18 02:01:42.423 Update progress: [I19463] Syncing product IDE531 LATEST path=
2016-08-18 02:01:42.437 Update progress: [I19463] Syncing product IDE532 LATEST path=
2016-08-18 02:01:42.535 Installing updates...
2016-08-18 02:01:44.413 Error level 1
2016-08-18 02:01:45.713 Update successful
2016-08-18 02:02:25.396 Option all = no
2016-08-18 02:02:25.396 Option recurse = yes
2016-08-18 02:02:25.396 Option archive = no
2016-08-18 02:02:25.396 Option service = yes
2016-08-18 02:02:25.396 Option confirm = yes
2016-08-18 02:02:25.396 Option sxl = yes
2016-08-18 02:02:25.411 Option max-data-age = 35
2016-08-18 02:02:25.411 Option vdl-logging = yes
2016-08-18 02:02:25.411 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2016-08-18 02:02:25.411 Machine ID: 3b7021d4ae494a3488c2096fb6c5b4f9
2016-08-18 02:02:25.411 Component SVRTcli.exe version 2.5.6
2016-08-18 02:02:25.411 Component control.dll version 2.5.6
2016-08-18 02:02:25.411 Component SVRTservice.exe version 2.5.6
2016-08-18 02:02:25.411 Component engine\osdp.dll version 1.44.1.2252
2016-08-18 02:02:25.411 Component engine\veex.dll version 3.65.2.2252
2016-08-18 02:02:25.411 Component engine\savi.dll version 9.0.1.2252
2016-08-18 02:02:25.411 Component rkdisk.dll version 1.5.30.0
2016-08-18 02:02:25.411 Version info: Product version 2.5.6
2016-08-18 02:02:25.411 Version info: Detection engine 3.65.2
2016-08-18 02:02:25.411 Version info: Detection data 5.30
2016-08-18 02:02:25.411 Version info: Build date 8/9/2016
2016-08-18 02:02:25.411 Version info: Data files added 189
2016-08-18 02:02:25.411 Version info: Last successful update 8/17/2016 9:01:45 PM

2016-08-18 06:30:38.472 Could not open C:\hiberfil.sys
2016-08-18 06:30:40.551 Could not open C:\pagefile.sys
2016-08-18 07:11:42.078 Could not open C:\System Volume Information\{2f17910e-4cc0-11e6-bab2-

bd9658430068}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.082 Could not open C:\System Volume Information\{2f179163-4cc0-11e6-bab2-

bd9658430068}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.082 Could not open C:\System Volume Information\{2f1791f5-4cc0-11e6-bab2-

bd9658430068}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.083 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-

04046e6cc752}
2016-08-18 07:11:42.083 Could not open C:\System Volume Information\{5e221f98-5c34-11e6-a32e-

005056c00008}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.085 Could not open C:\System Volume Information\{ce91e983-5f64-11e6-b290-

005056c00008}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.086 Could not open C:\System Volume Information\{d2ca20ef-64e1-11e6-81ad-

0026b969b6cb}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.086 Could not open C:\System Volume Information\{d2ca2117-64e1-11e6-81ad-

0026b969b6cb}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.087 Could not open C:\System Volume Information\{d2ca2149-64e1-11e6-81ad-

0026b969b6cb}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.087 Could not open C:\System Volume Information\{fde8dbf0-61c3-11e6-bb06-

005056c00008}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.088 Could not open C:\System Volume Information\{fde8dc00-61c3-11e6-bb06-

005056c00008}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.088 Could not open C:\System Volume Information\{fde8dc04-61c3-11e6-bb06-

005056c00008}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.089 Could not open C:\System Volume Information\{fde8dc08-61c3-11e6-bb06-

005056c00008}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:11:42.089 Could not open C:\System Volume Information\{fde8dc0c-61c3-11e6-bb06-

005056c00008}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-08-18 07:38:29.529 Could not open C:\Users\fme\AppData\Local\Google\Chrome\User Data

\Default\Current Session
2016-08-18 07:38:29.529 Could not open C:\Users\fme\AppData\Local\Google\Chrome\User Data

\Default\Current Tabs
2016-08-18 07:52:55.640 >>> Virus 'Mal/Generic-S' found in file C:\Users\fme\Downloads\android-

data-recovery-pro-trial.exe
2016-08-18 07:52:55.640 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-963752047-

1521292436-1757112234-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings

\WarnOnIntranet
2016-08-18 07:52:55.640 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-963752047-

1521292436-1757112234-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings

\WarnOnIntranet
2016-08-18 07:52:55.640 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-963752047-

1521292436-1757112234-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings

\WarnOnIntranet
2016-08-18 07:52:55.650 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-963752047-

1521292436-1757112234-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings

\WarnOnIntranet
2016-08-18 08:15:36.312 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-

00C04FC295EE}\catdb
2016-08-18 08:15:36.313 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-

00C04FC295EE}\catdb
2016-08-18 08:15:45.356 Could not open C:\Windows\System32\config\RegBack\DEFAULT
2016-08-18 08:15:45.356 Could not open C:\Windows\System32\config\RegBack\SAM
2016-08-18 08:15:45.356 Could not open C:\Windows\System32\config\RegBack\SECURITY
2016-08-18 08:15:45.366 Could not open C:\Windows\System32\config\RegBack\SOFTWARE
2016-08-18 08:15:45.366 Could not open C:\Windows\System32\config\RegBack\SYSTEM
2016-08-18 09:06:23.061 The following items will be cleaned up:
2016-08-18 09:06:23.061 Mal/Generic-S
2016-08-18 13:37:43.609 Threat 'Mal/Generic-S' has been cleaned up.
2016-08-18 13:37:43.609 File "C:\Users\fme\Downloads\android-data-recovery-pro-trial.exe" belongs

to malware 'Mal/Generic-S'.
2016-08-18 13:37:43.609 File "C:\Users\fme\Downloads\android-data-recovery-pro-trial.exe" has

been cleaned up.
2016-08-18 13:37:43.613 Removal successful
2016-08-18 13:37:45.765 Error level 0

2016-08-18 13:38:29.460 Scan completed.
2016-08-18 13:38:29.460

------------------------------------------------------------

2016-08-18 13:44:15.424 Sophos Virus Removal Tool version 2.5.6
2016-08-18 13:44:15.424 Copyright © 2009-2016 Sophos Limited. All rights reserved.

2016-08-18 13:44:15.424 This tool will scan your computer for viruses and other threats. If it

finds any, it will give you the option to remove them.

2016-08-18 13:44:15.424 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x100 PT=0x1

WOW64
2016-08-18 13:44:15.455 Checking for updates...
2016-08-18 13:44:16.282 Update progress: proxy server not available
2016-08-18 13:44:36.250 Downloading updates...
2016-08-18 13:44:36.250 Update progress: [I96736] sdds.svrt_10: adding primary package C1A903B2-

E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2016-08-18 13:44:36.250 Update progress: [I95020] sdds.svrt_10: looking for packages included

from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2016-08-18 13:44:36.250 Update progress: [I22529] sdds.svrt_10: looking for supplements included

from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2016-08-18 13:44:36.250 Update progress: [I49502] sdds.savi0910.xml: found supplement SAVIW32

LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED

path=]
2016-08-18 13:44:36.250 Update progress: [I95020] sdds.savi0910.xml: looking for packages

included from product SAVIW32 LATEST path=
2016-08-18 13:44:36.250 Update progress: [I22529] sdds.savi0910.xml: looking for supplements

included from product SAVIW32 LATEST path=
2016-08-18 13:44:36.250 Update progress: [I49502] sdds.data0910.xml: found supplement IDE531

LATEST path= baseVersion= [included from product SAVIW32 LATEST path=]
2016-08-18 13:44:36.250 Update progress: [I95020] sdds.data0910.xml: looking for packages

included from product IDE531 LATEST path=
2016-08-18 13:44:36.250 Update progress: [I22529] sdds.data0910.xml: looking for supplements

included from product IDE531 LATEST path=
2016-08-18 13:44:36.250 Update progress: [I49502] sdds.data0910.xml: found supplement IDE532

LATEST path= baseVersion= [included from product IDE531 LATEST path=]
2016-08-18 13:44:36.250 Update progress: [I95020] sdds.data0910.xml: looking for packages

included from product IDE532 LATEST path=
2016-08-18 13:44:36.250 Update progress: [I22529] sdds.data0910.xml: looking for supplements

included from product IDE532 LATEST path=
2016-08-18 13:44:36.250 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-

04BB9C457C60 RECOMMENDED path=
2016-08-18 13:44:36.359 Update progress: [I19463] Syncing product SAVIW32 LATEST path=
2016-08-18 13:44:36.671 Update progress: [I19463] Syncing product IDE531 LATEST path=
2016-08-18 13:44:37.139 Update progress: [I19463] Syncing product IDE532 LATEST path=
2016-08-18 13:44:37.139 Update progress: [I19463] Product download size 44619 bytes
2016-08-18 13:44:37.592 Installing updates...
2016-08-18 13:45:10.381 Update successful
2016-08-18 13:45:14.570 Error: an instance of this application is already running.
2016-08-18 13:45:39.988 Option all = no
2016-08-18 13:45:42.340 Option recurse = yes
2016-08-18 13:45:42.340 Option archive = no
2016-08-18 13:45:42.340 Option service = yes
2016-08-18 13:45:42.340 Option confirm = yes
2016-08-18 13:45:42.340 Option sxl = yes
2016-08-18 13:45:42.340 Option max-data-age = 35
2016-08-18 13:45:42.340 Option vdl-logging = yes
2016-08-18 13:45:42.340 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2016-08-18 13:45:42.340 Machine ID: 3b7021d4ae494a3488c2096fb6c5b4f9
2016-08-18 13:45:42.340 Component SVRTcli.exe version 2.5.6
2016-08-18 13:45:42.340 Component control.dll version 2.5.6
2016-08-18 13:45:42.340 Component SVRTservice.exe version 2.5.6
2016-08-18 13:45:42.340 Component engine\osdp.dll version 1.44.1.2252
2016-08-18 13:45:42.340 Component engine\veex.dll version 3.65.2.2252
2016-08-18 13:45:42.340 Component engine\savi.dll version 9.0.1.2252
2016-08-18 13:45:42.340 Component rkdisk.dll version 1.5.30.0
2016-08-18 13:45:42.340 Version info: Product version 2.5.6
2016-08-18 13:45:42.340 Version info: Detection engine 3.65.2
2016-08-18 13:45:42.340 Version info: Detection data 5.30
2016-08-18 13:45:42.340 Version info: Build date 8/9/2016
2016-08-18 13:45:42.340 Version info: Data files added 192
2016-08-18 13:45:42.340 Version info: Last successful update 8/18/2016 8:45:10 AM
2016-08-18 13:45:42.340 Error level 1

2016-08-18 13:46:35.783 Scan failed due to fatal error.
2016-08-18 13:46:35.783

------------------------------------------------------------




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users