Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

DNS Changer? Back again to hopefully completely solve problem


  • Please log in to reply
11 replies to this topic

#1 FuchsiaIce

FuchsiaIce

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:New Orleans, LA
  • Local time:03:51 PM

Posted 25 January 2017 - 07:34 PM

Acer Aspire 5251
Supposed to be Wireless connection, currently on Ethernet
AT&T uVerse Gateway: Pace Model 5268AC FXN
In same room and right next to Gateway
I have AT&T uVerse DSL

 

I am back again after being in this Networking forum the last time just 10 days ago when I shifted over to the Virus forum to try and have them help.  Nasdaq sent me back here, so here I am again and I'm still not able to connect wirelessly.  The below is what I posted over in the Virus forum verbatim because it explains all that I can figure out.  Over in the Virus forum in my topic there (https://www.bleepingcomputer.com/forums/t/637693/dnschanger-invalid-wifi-ipconfig-could-this-have-been-the-problem-all-along/) Nasdaq had me run FRST fix and then reset the connection.  Lan setting not being his forté he sent me back to this forum.  Please help, this is getting seriously frustrating.  I will post the MiniToolBox log at the end.

 

"Last August something very weird happened with this machine that appeared to be wholly unconnected to what this forum is for, and so I took the strangeness to the Networking forums - https://www.bleepingcomputer.com/forums/t/625024/laptop-connects-everywhere-but-home-now/

 

The problem got resolved, though I and the two people helping me couldn't actually figure out what fixed it or what caused the original problem in the first place.

 

A little over a month a later in November more weird badness happened - When I say "weird", I mean it never seemed like a typical (whatever that means) infection - that defined infection for me but the way it came about was very odd and contained a very similar element to my previous networking problem.  So, I posted in this forum - https://www.bleepingcomputer.com/forums/t/631208/seafaring-bertha-or-possible-sort-of-repeat-of-previously-solved-problem/ - and everything got resolved well.

 

Fast forward to a week ago and the original problem (without all the added strange sound-only advertisements and endlessly cycling cursor and tons of other crap added in, thank the gods) crops up after I'd done a system restore.

 

Posting once again to the Networking forums (https://www.bleepingcomputer.com/forums/t/637045/invalid-wifi-ip-configuration-again/), Trikein and Wand3r3r helped me again and I did everything they instructed.

 

When we couldn't get me back on wifi connection Trikein pointed out something and directed me to the DNSUnlocker page (https://www.bleepingcomputer.com/virus-removal/remove-dnsunlocker-advertisements) where I followed the removal guide.

 

So, this is where I am now:  (And so you're aware, I have five phones, three console game systems, two more laptops and a tablet which all are connecting fine to my home wireless.)

 

I think something happened that never got fully cleaned back last summer (the second time I had the problem whatever was infecting me [which downloaded a bunch of nasty buggers onto my machine when no one was home to be on the computer but it was on and wirelessly connected] deleted system restore points I'd had and only left me one from that past June, which I found odd).  There have been these little “hiccups” that are seemingly unobtrusive and I was just sloughing off as glitches (this machine is going on seven years old).  Things like pop ups that blink in and then are gone on sites where I had not encountered such before but passed off as site owners trying to make more money with more ads and I was assuming (bad, I know) my ad blocker was taking care of them; the command prompt window blinking up and then out on rare occasions; signing into an app on my phone when here at home and its proximity map telling me I’m somewhere overseas (it’s never been Israel, though, and all of these things I’m relaying only happened on rare occasions, not often), but when I would close the app and sign back in it would indicate the proper place of my phone (the phone isn't my computer, I know, it just relates to something Trikein pointed out about the DNS Servers).

 

Following the removal guide on the DNSUnlocker page I wasn’t able to complete some of the steps because I was missing the item to delete from my Certificate Manager as it’s probably labeled something else due to me not having DNSUnlocker but something that came up in the MalwareBytes log as DNSChanger.  When I ran MalwareBytes I kept getting a pop up telling me MWB was blocking Outbound with the DNS Server address from Israel Trikein pointed out that I was getting.  I was also unable to run the Hitman Pro step, as Hitman Pro wouldn’t remove anything unless I bought it, the license says it’s expired and won’t perform that action (got the download from the DNSUnlocker page, too)."

 

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Julie (administrator) on 25-01-2017 at 17:44:25
Running from "C:\Users\Julie\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: ACRPRDCT Manufacturer: Acer
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    1000gratisproben.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    www.100sexlinks.com
127.0.0.1    100sexlinks.com
127.0.0.1    10sek.com
127.0.0.1    www.10sek.com
127.0.0.1    www.1-2005-search.com
127.0.0.1    1-2005-search.com
127.0.0.1    123fporn.info
127.0.0.1    www.123fporn.info
127.0.0.1    123haustiereundmehr.com
127.0.0.1    www.123haustiereundmehr.com
127.0.0.1    123moviedownload.com
127.0.0.1    www.123moviedownload.com

There are 15531 entries.

========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)
Broadcom 802.11n Network Adapter = Wireless Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : JubilationLee
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : attlocal.net

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 78-E4-00-F1-8E-49
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : 78-E4-00-F1-8E-49
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : attlocal.net
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : 88-AE-1D-61-15-11
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, January 22, 2017 1:57:28 AM
   Lease Expires . . . . . . . . . . : Thursday, January 26, 2017 1:57:28 PM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{EF09A829-DC9F-48A7-9620-8CA865F76522}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.attlocal.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : attlocal.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{22622142-FCAB-4270-AD57-A77EF2BCC417}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  homeportal
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4002:c07::66
      216.58.216.78


Pinging google.com [172.217.1.46] with 32 bytes of data:
Reply from 172.217.1.46: bytes=32 time=55ms TTL=50
Reply from 172.217.1.46: bytes=32 time=55ms TTL=50

Ping statistics for 172.217.1.46:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 55ms, Maximum = 55ms, Average = 55ms
Server:  homeportal
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
      2001:4998:44:204::a7
      2001:4998:c:a06::2:4008
      206.190.36.45
      98.139.183.24
      98.138.253.109


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=89ms TTL=45
Reply from 206.190.36.45: bytes=32 time=91ms TTL=45

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 89ms, Maximum = 91ms, Average = 90ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...78 e4 00 f1 8e 49 ......Microsoft Virtual WiFi Miniport Adapter
 14...78 e4 00 f1 8e 49 ......Broadcom 802.11n Network Adapter
 10...88 ae 1d 61 15 11 ......Broadcom NetLink ™ Gigabit Ethernet
  1...........................Software Loopback Interface 1
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.65     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.65    266
     192.168.1.65  255.255.255.255         On-link      192.168.1.65    266
    192.168.1.255  255.255.255.255         On-link      192.168.1.65    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.65    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.65    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  1    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/22/2017 01:26:17 AM) (Source: Application Error) (User: )
Description: Faulting application name: wmprph.exe, version: 12.0.7600.16385, time stamp: 0x4a5bd018
Faulting module name: ntdll.dll, version: 6.1.7601.23572, time stamp: 0x57fd0651
Exception code: 0xc0000005
Fault offset: 0x0000000000048f24
Faulting process id: 0xcfc
Faulting application start time: 0xwmprph.exe0
Faulting application path: wmprph.exe1
Faulting module path: wmprph.exe2
Report Id: wmprph.exe3

Error: (01/20/2017 04:04:07 AM) (Source: Application Error) (User: )
Description: Faulting application name: wmprph.exe, version: 12.0.7600.16385, time stamp: 0x4a5bd018
Faulting module name: ntdll.dll, version: 6.1.7601.23572, time stamp: 0x57fd0651
Exception code: 0xc0000005
Fault offset: 0x0000000000048f24
Faulting process id: 0x9f8
Faulting application start time: 0xwmprph.exe0
Faulting application path: wmprph.exe1
Faulting module path: wmprph.exe2
Report Id: wmprph.exe3

Error: (01/16/2017 03:35:12 AM) (Source: Application Error) (User: )
Description: Faulting application name: CompatTelRunner.exe, version: 10.0.14913.1002, time stamp: 0x57d1070d
Faulting module name: devinv.dll, version: 10.0.14913.1002, time stamp: 0x57d10950
Exception code: 0xc0000005
Fault offset: 0x0000000000023c00
Faulting process id: 0x16e4
Faulting application start time: 0xCompatTelRunner.exe0
Faulting application path: CompatTelRunner.exe1
Faulting module path: CompatTelRunner.exe2
Report Id: CompatTelRunner.exe3

Error: (01/10/2017 08:35:20 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.23537, time stamp: 0x57c44efe
Faulting module name: ntdll.dll, version: 6.1.7601.23572, time stamp: 0x57fd0651
Exception code: 0xc0000374
Fault offset: 0x00000000000bf3e2
Faulting process id: 0xa9c
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (12/31/2016 06:33:02 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3"1".
Dependent Assembly Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (12/31/2016 06:31:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3"1".
Dependent Assembly Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (12/31/2016 06:31:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3"1".
Dependent Assembly Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (12/31/2016 07:51:32 AM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 50.1.0.6186 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 430c

Start Time: 01d2633f773929a6

Termination Time: 2052

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: e7af2f13-cf5f-11e6-9759-88ae1d611511

Error: (12/31/2016 07:50:48 AM) (Source: Application Hang) (User: )
Description: The program dw20.exe version 2.0.50727.5483 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 52d0

Start Time: 01d2635a10749d7c

Termination Time: 1105

Application Path: C:\Windows\Microsoft.NET\Framework64\v2.0.50727\dw20.exe

Report Id: d3237bcf-cf5f-11e6-9759-88ae1d611511

Error: (12/31/2016 05:30:55 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {01b63f96-2469-43c2-a1aa-fa6a0f7c5df2}


System errors:
=============
Error: (01/24/2017 01:43:04 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.235.1075.0).

Error: (01/24/2017 01:36:45 AM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

    New Signature Version:

    Previous Signature Version: 1.235.1069.0

    Update Source: %NT AUTHORITY59

    Update Stage: 4.10.209.00

    Source Path: 4.10.209.01

    Signature Type: %NT AUTHORITY602

    Update Type: %NT AUTHORITY604

    User: NT AUTHORITY\SYSTEM

    Current Engine Version: %NT AUTHORITY605

    Previous Engine Version: %NT AUTHORITY606

    Error code: %NT AUTHORITY607

    Error description: %NT AUTHORITY608

Error: (01/22/2017 01:17:12 AM) (Source: Service Control Manager) (User: )
Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.


Error: (01/22/2017 01:16:57 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Scanner Service service to connect.

Error: (01/22/2017 01:14:54 AM) (Source: Service Control Manager) (User: )
Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.


Error: (01/22/2017 01:14:54 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Scanner Service service to connect.

Error: (01/22/2017 01:13:44 AM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (01/22/2017 01:11:20 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2017 01:10:29 AM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/22/2017 01:09:33 AM) (Source: Service Control Manager) (User: )
Description: The NTI IScheduleSvc service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (01/22/2017 01:26:17 AM) (Source: Application Error)(User: )
Description: wmprph.exe12.0.7600.163854a5bd018ntdll.dll6.1.7601.2357257fd0651c00000050000000000048f24cfc01d27480cc3b1603C:\Program Files\Windows Media Player\wmprph.exeC:\Windows\SYSTEM32\ntdll.dll0f6d9244-e074-11e6-8327-88ae1d611511

Error: (01/20/2017 04:04:07 AM) (Source: Application Error)(User: )
Description: wmprph.exe12.0.7600.163854a5bd018ntdll.dll6.1.7601.2357257fd0651c00000050000000000048f249f801d27304805057a7C:\Program Files\Windows Media Player\wmprph.exeC:\Windows\SYSTEM32\ntdll.dllc732c878-def7-11e6-8ac9-88ae1d611511

Error: (01/16/2017 03:35:12 AM) (Source: Application Error)(User: )
Description: CompatTelRunner.exe10.0.14913.100257d1070ddevinv.dll10.0.14913.100257d10950c00000050000000000023c0016e401d26fd7e3e92e7aC:\Windows\system32\CompatTelRunner.exeC:\Windows\system32\devinv.dll13d8c7b2-dbcf-11e6-8ac9-88ae1d611511

Error: (01/10/2017 08:35:20 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.2353757c44efentdll.dll6.1.7601.2357257fd0651c000037400000000000bf3e2a9c01d26bb2a3f0e85eC:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll97e26ea2-d7a6-11e6-97ef-88ae1d611511

Error: (12/31/2016 06:33:02 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3"C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe

Error: (12/31/2016 06:31:05 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3"C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe

Error: (12/31/2016 06:31:05 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3"C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe

Error: (12/31/2016 07:51:32 AM) (Source: Application Hang)(User: )
Description: firefox.exe50.1.0.6186430c01d2633f773929a62052C:\Program Files (x86)\Mozilla Firefox\firefox.exee7af2f13-cf5f-11e6-9759-88ae1d611511

Error: (12/31/2016 07:50:48 AM) (Source: Application Hang)(User: )
Description: dw20.exe2.0.50727.548352d001d2635a10749d7c1105C:\Windows\Microsoft.NET\Framework64\v2.0.50727\dw20.exed3237bcf-cf5f-11e6-9759-88ae1d611511

Error: (12/31/2016 05:30:55 AM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {01b63f96-2469-43c2-a1aa-fa6a0f7c5df2}


CodeIntegrity Errors:
===================================
  Date: 2014-11-16 19:16:29.492
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:16:29.414
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:15:42.436
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:15:42.358
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:13:42.062
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:13:41.906
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:08:16.781
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:08:16.719
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:06:28.166
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:06:28.103
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


**** End of log ****


Edited by FuchsiaIce, 25 January 2017 - 07:36 PM.

Fuchsia Ice

BC AdBot (Login to Remove)

 


#2 Blindbatkid

Blindbatkid

  • Banned
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 27 January 2017 - 02:31 AM

Remove your tunnel adapters via command prompt.

 

Open elevated command and copy paste each line below hitting enter after each.

https://www.bleepingcomputer.com/tutorials/windows-elevated-command-prompt/

netsh interface ipv6 6to4 set state state=disabled undoonstop=disabled
netsh interface ipv6 isatap set state state=disabled
netsh interface teredo set state disabled

Uninstall these programs.

 

 

Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.63 - NewTech Infosystems)
Acer Crystal Eye webcam (HKLM-x32\...\{51F026FA-5146-4232-A8BA-1364740BD053}) (Version: 1.0.2.1 - liteon)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3002 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3007 - Acer Incorporated)
Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.0.80 - WildTangent)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.03.3002 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0105.2010 - Acer Incorporated)

Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)

 

 

 

Eliminate Bad Settings with this nice tool.

  • Download SupRestric.exe save to your desktop.
  • Close all running programs.
  • Temporarily disable the antivirus
  • Double click the file to launch it.
  • Windows: 7/8/10 Vista and run as administrator
  • Click Yes at any prompt.
  • The analysis takes only a few moments.
  • The report is on the desktop ( CTR.txt )
  • Copy paste report in next reply.
  • A reboot is needed to complete the repairs.

Reset your hosts file to default.

 

http://www.thewindowsclub.com/how-to-set-the-windows-7-hosts-file-back-to-default

 

Reboot your machine and check the connection.


Edited by Blindbatkid, 27 January 2017 - 02:39 AM.


#3 Blindbatkid

Blindbatkid

  • Banned
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 27 January 2017 - 03:40 AM

Also, looking at your malware thread stuff was missed. This should have been your fix. I'd highly suggest you run this fix.

start
CreateRestorePoint:
CloseProcesses:
emptytemp:
C:\ProgramData\1321760f2e0e72bfe9747dfdbd0949e1
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyiii[1].exe
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyi[1].exe
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6A1561ZG\trilogyii[1].exe
C:\PROGRA~3\5425cc40\5db51df1.dll
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{205253D9-B0F2-46BE-B8C1-00D0A94B7D06}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{22622142-FCAB-4270-AD57-A77EF2BCC417}: [NameServer] 8.8.8.8
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\MountPoints2: {3e06af2b-2116-11e6-888f-88ae1d611511} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\MountPoints2: {3e06af34-2116-11e6-888f-88ae1d611511} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\MountPoints2: {4e7d26e2-7040-11e4-b129-88ae1d611511} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\MountPoints2: {b2522f8a-0e7c-11e2-b8f5-88ae1d04156e} - F:\PMCsetup.exe
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-658284135-3662055118-2884648652-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\Advisor\System\BAVoilaX.dll [2011-08-10] (Belarc, Inc.)
Handler-x32: http - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: http - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: https - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: https - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: ipp - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: msdaipp - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: msdaipp - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
FF SelectedSearchEngine: Philips-Songbird\Profiles\9p1ya3nl.default -> Philips Songbird
FF SearchPlugin: C:\Users\Julie\AppData\Roaming\Philips-Songbird\Profiles\9p1ya3nl.default\searchplugins\7digital.xml [2012-11-03]
FF Homepage: Mozilla\Firefox\Profiles\74xmzvwr.default-1484472233330 -> www.aol.com/
FF Extension: (TinEye Reverse Image Search) - C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\74xmzvwr.default-1484472233330\Extensions\tineye@ideeinc.com.xpi [2017-01-17]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll [2012-02-18] ()
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
R2 cmcore; c:\program files (x86)\cmcm\Clean Master\cmcore.exe [315208 2016-06-15] (Kingsoft Corporation)
c:\program files (x86)\cmcm
C:\Program Files (x86)\Google
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit)
C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
C:\Program Files (x86)\Spybot - Search & Destroy 2
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
R3 ksapi64; C:\Windows\system32\drivers\ksapi64.sys [56680 2016-06-15] (Kingsoft Corporation)
C:\Windows\system32\drivers\ksapi64.sys
C:\Users\Julie\Desktop\jxpiinstall.exe
C:\Windows\System32\drivers\VirtualAudio1.sys
C:\Windows\System32\drivers\VirtualAudio2.sys
C:\Windows\System32\drivers\VirtualAudio3.sys
C:\Windows\System32\drivers\VirtualAudio4.sys
C:\Windows\System32\drivers\VirtualAudio5.sys
R3 WsAudio_Device(1); C:\Windows\System32\drivers\VirtualAudio1.sys [31080 2013-01-25] (Wondershare)
R3 WsAudio_Device(2); C:\Windows\System32\drivers\VirtualAudio2.sys [31080 2013-01-25] (Wondershare)
R3 WsAudio_Device(3); C:\Windows\System32\drivers\VirtualAudio3.sys [31080 2013-01-25] (Wondershare)
R3 WsAudio_Device(4); C:\Windows\System32\drivers\VirtualAudio4.sys [31080 2013-01-25] (Wondershare)
R3 WsAudio_Device(5); C:\Windows\System32\drivers\VirtualAudio5.sys [31080 2013-01-25] (Wondershare)
C:\Windows\System32\Tasks\{C24EF494-75E5-433F-5EB9-17B51C930DD9}
C:\Windows\System32\Tasks\{172572AE-A08E-C505-AE3D-3975821EBDE4}
C:\Windows\System32\Tasks\{9868813B-2FC3-3690-3EB3-AC4462C442EB}
C:\Windows\System32\Tasks\{0CB78BFA-BB1C-3C51-189C-9A11D1CFBB97}
C:\Windows\System32\Tasks\{C4D5029A-737E-B531-DC66-BA02773894CD}
C:\Windows\System32\Tasks\{300F7ED6-87A4-C97D-8F74-EFFFB0BC246E}
C:\Windows\System32\Tasks\{35F1E434-825A-539F-5DCD-321613ADE1CF}
C:\Windows\System32\Tasks\{0E8559D8-B92E-EE73-21CD-FA7E221F8791}
C:\Windows\System32\Tasks\{3898ABAC-8F33-1C07-F1AB-FB09EED30C11}
C:\Windows\System32\Tasks\{30E34557-8748-F2FC-7374-DDFD321F2182}
C:\Windows\System32\Tasks\{CF41AB61-78EA-1CCA-564C-BFD5F7C2F835}
C:\Windows\System32\Tasks\{416B323D-F6C0-8596-55E5-0AE35E3F5048}
C:\Windows\System32\Tasks\{D1EC1045-6647-A7EE-7743-E7D3743FD033}
C:\Windows\System32\Tasks\{48BF5808-FF14-EFA3-1007-FA0C2F2A116D}
C:\Windows\System32\Tasks\{30236CF7-8788-DB5C-1FA6-92583FF92472}
C:\Windows\System32\Tasks\{291BAC74-9EB0-1BDF-6611-D279515D79CD}
C:\Windows\System32\Tasks\{1B76A525-ACDD-128E-79C5-9483A1B43ADB}
C:\Windows\System32\Tasks\{074B5343-B0E0-E4E8-2C72-49E2C6B999F2}
C:\Windows\System32\Tasks\{0BBF794A-BC14-CEE1-C0D8-13E64010A609}
C:\Windows\System32\Tasks\{041CCB44-B3B7-7CEF-9220-209D6673C907}
C:\Windows\System32\Tasks\{B3E4284D-044F-9FE6-A413-2C6822CA3344}
C:\Windows\System32\Tasks\{3163F9A6-86C8-4E0D-DDA7-94E92CA7A2CD}
C:\Windows\System32\Tasks\{7145781B-C6EE-CFB0-AA8F-5B925AC73E0E}
C:\Windows\System32\Tasks\{50269BB5-E78D-2C1E-2EDF-3FA12C35228D}
C:\Windows\System32\Tasks\{A5A454A9-120F-E302-5173-3B1AA673BA9C}
C:\Windows\System32\Tasks\{778FE9D4-C024-5E7F-E604-12B365730275}
C:\Windows\System32\Tasks\{DD89A159-6A22-16F2-3192-4B748C89E066}
C:\Windows\System32\Tasks\{9B26CA5B-2C8D-7DF0-8B7E-A6C58A547D6B}
C:\Windows\System32\Tasks\{9B23798D-2C88-CE26-7062-958EAAE4A8F7}
C:\Windows\System32\Tasks\{C166A24E-76CD-15E5-42A8-814FD7673AD0}
C:\Windows\System32\Tasks\{8162E81A-36C9-5FB1-187B-AFB590F28574}
C:\Windows\System32\Tasks\{B090F4BA-F7EE-D581-AB53-A0968CD5592C}
C:\Windows\System32\Tasks\Uninstaller_SkipUac_Julie
C:\Program Files\COMODO
C:\ProgramData\COMODO
C:\Program Files\1321760f2e0e72bfe9747dfdbd0949e1
C:\Windows\System32\Tasks\Apple
C:\Program Files (x86)\Apple Software Update
C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-658284135-3662055118-2884648652-1000UA.job
C:\Windows\Tasks\Adobe Flash Player Updater.job
C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-658284135-3662055118-2884648652-1000Core.job
C:\Windows\SysWOW64\WDPABKP.dat
C:\Windows\System32\Tasks\Adobe Acrobat Update Task
C:\ProgramData\ProductData
2014-06-09 01:38 - 2014-06-09 01:50 - 0000985 _____ () C:\Users\Julie\AppData\Roaming\freepdftowordexceljpgtiffhtmlconverterSystem.dat
2016-10-23 17:16 - 2016-10-23 17:16 - 0140288 _____ () C:\Users\Julie\AppData\Roaming\Installer.dat
2011-01-18 22:59 - 2015-01-03 21:39 - 0008192 _____ () C:\Users\Julie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-11-17 08:19 - 2011-11-17 08:19 - 0002587 _____ () C:\Users\Julie\AppData\Local\MyWinLockerInstaller.txt-20111117.log
2013-09-06 22:07 - 2015-05-21 21:27 - 0007670 _____ () C:\Users\Julie\AppData\Local\Resmon.ResmonCfg
2016-10-23 17:16 - 2016-10-23 17:19 - 0000003 _____ () C:\Users\Julie\AppData\Local\run1.txt
2015-09-28 17:44 - 2015-09-28 17:44 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
C:\Users\Julie\AppData\Local\Temp\2250760.t.exe
C:\Users\Julie\AppData\Local\Temp\2995168.t.exe
C:\Users\Julie\AppData\Local\Temp\34775960.t.exe
C:\Users\Julie\AppData\Local\Temp\60813995.t.exe
C:\Windows\SysWOW64\NTIOFM4.dll
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Task: {08E245AF-BD4D-4DAB-A39E-D2B9D54585EB} - System32\Tasks\{7145781B-C6EE-CFB0-AA8F-5B925AC73E0E} => C:\ProgramData\{F545ED39-42EE-5A92-552D-92895B7603CB}\871750D4-30BC-E77F-7C0C-3576345ABAEE.exe <==== ATTENTION
Task: {19DC2523-25B0-46ED-8169-4D58F571FD26} - System32\Tasks\{0E8559D8-B92E-EE73-21CD-FA7E221F8791} => C:\ProgramData\{7B9C110E-CC37-A6A5-ADDA-44C80CA1B300}\6D3078D6-DA9B-CF7D-5A95-C2762445159D.exe <==== ATTENTION
Task: {2766BEB7-1172-454A-BAA5-1A24F902CF0B} - System32\Tasks\{D1EC1045-6647-A7EE-7743-E7D3743FD033} => C:\ProgramData\{654736C6-D2EC-816D-F6FE-9951E2EACBE5}\78607BBE-CFCB-CC15-A6C6-32537F0A2F2C.exe <==== ATTENTION
Task: {2B8919A8-402D-4C6A-BEB2-1CB7638FA174} - System32\Tasks\{A5A454A9-120F-E302-5173-3B1AA673BA9C} => C:\ProgramData\{6FC71012-D86C-A7B9-C9C2-BB8E40866C69}\93A8F772-2403-40D9-5900-6197A0F5A1B1.exe <==== ATTENTION
Task: {2D86107A-6B7A-48C4-93A3-2EEB8DC87C81} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {2D9D85A4-B627-4423-B8C8-938FC7B1A7E8} - System32\Tasks\{48BF5808-FF14-EFA3-1007-FA0C2F2A116D} => C:\ProgramData\{947D5F03-23D6-E8A8-A5D5-450BC7B11D75}\50FCC2E9-E757-7542-37C0-7EC212E5F9BB.exe <==== ATTENTION
Task: {32A4C248-E010-4F1A-878C-A9CCC0E4084B} - System32\Tasks\{2FAEEFE5-2A64-4AE3-A2B3-671A1605F446} => C:\Users\Julie\Desktop\GURU1_1\SETUP.EXE
Task: {33876DCC-95C2-42EF-8D8F-83473BE3158E} - System32\Tasks\{9B26CA5B-2C8D-7DF0-8B7E-A6C58A547D6B} => C:\ProgramData\{4CE4ED55-FB4F-5AFE-12DA-3223A6643F4A}\2C7E0B26-9BD5-BC8D-4774-1677F0660E78.exe <==== ATTENTION
Task: {34ABDDFA-8435-4817-AA0C-6DC6F5A061B0} - System32\Tasks\{3898ABAC-8F33-1C07-F1AB-FB09EED30C11} => C:\ProgramData\{BA74F400-0DDF-43AB-5731-FF3BA13CAE59}\C036D9AD-779D-6E06-CAD5-A7B38DE1AD63.exe <==== ATTENTION
Task: {38AB0D67-5DBA-479D-8E1F-8D0EE181D298} - System32\Tasks\{041CCB44-B3B7-7CEF-9220-209D6673C907} => C:\ProgramData\{FD6784CC-4ACC-3367-E77C-472FC7570B4A}\A4DC494B-1377-FEE0-2E2C-62FB054D7D6A.exe <==== ATTENTION
Task: {3984DBA2-55D7-471C-8A1C-DF08A3D93961} - System32\Tasks\{074B5343-B0E0-E4E8-2C72-49E2C6B999F2} => C:\ProgramData\{DA82A375-6D29-14DE-6BC0-77D62B66A57F}\BD51AA14-0AFA-1DBF-E3D3-92D04BD4037E.exe <==== ATTENTION
Task: {3A9C296F-8903-446C-9712-F7E0865D9769} - System32\Tasks\{C24EF494-75E5-433F-5EB9-17B51C930DD9} => C:\ProgramData\{FA18728E-4DB3-C525-8B60-A9F8FAF0656E}\48C9A86D-FF62-1FC6-8DA2-DEA362D5DE5C.exe <==== ATTENTION
Task: {3C482EBD-2522-4B07-877C-60E05659A00D} - System32\Tasks\{1B76A525-ACDD-128E-79C5-9483A1B43ADB} => C:\ProgramData\{6A4FD9B6-DDE4-6E1D-A2B6-2FEDB30F5E24}\D3B2F61B-6419-41B0-7BC6-61388DAEA99B.exe <==== ATTENTION
Task: {41C35E59-9B69-4999-BD3A-34EFDE3AB5A2} - System32\Tasks\{9B23798D-2C88-CE26-7062-958EAAE4A8F7} => C:\ProgramData\{F9A7C46F-4E0C-73C4-5EE0-AE5DFC5273BD}\A1358AE6-169E-3D4D-C45F-2B699EF42368.exe <==== ATTENTION
Task: {4AD93102-274F-4B28-9851-E30509B8DCF5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {4CA76C82-9A07-469B-8FEB-EDDF35CDF35C} - System32\Tasks\{DD89A159-6A22-16F2-3192-4B748C89E066} => C:\ProgramData\{7E6061DB-C9CB-D670-97A2-FDBB949F074D}\BF9263B8-0839-D413-BBFC-1367ED9824B2.exe <==== ATTENTION
Task: {4E0FD37B-9AF1-4D31-B113-79D7660063FD} - System32\Tasks\{DCC88D28-B8B3-4ECF-BEE7-F4B730DD4AA2} => C:\Users\Julie\Desktop\ComicRack.exe
Task: {51A17922-038A-4AC0-9EBE-917998B0CBEF} - System32\Tasks\{35F1E434-825A-539F-5DCD-321613ADE1CF} => C:\ProgramData\{04D32809-B378-9FA2-5434-269339149CD1}\6F403CBF-D8EB-8B14-A1C5-B47F1DD1456B.exe <==== ATTENTION
Task: {5AFC101F-A17C-4D5A-B67F-C2D93972FF9D} - System32\Tasks\{291BAC74-9EB0-1BDF-6611-D279515D79CD} => C:\ProgramData\{1674E7EA-A1DF-5041-750B-FB767B0D335B}\745C5F4A-C3F7-E8E1-ADCC-3F19397DA690.exe <==== ATTENTION
Task: {6CC54F71-FB5B-4ED5-BA8E-CC62A5A85EA1} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx2-JUBILATIONLEE => C:\Windows\ehome\McxTask.exe [2009-07-13] (Microsoft Corporation)
Task: {6E15EE09-EB80-427F-9BFE-445375055C4D} - System32\Tasks\{C4D5029A-737E-B531-DC66-BA02773894CD} => C:\ProgramData\{11532002-A6F8-97A9-09B6-B95D4364B9CB}\9BD37E5E-2C78-C9F5-0DAE-570063C9DAA0.exe <==== ATTENTION
Task: {721DA855-534B-47EB-8DE8-291F13781BB1} - System32\Tasks\{0CB78BFA-BB1C-3C51-189C-9A11D1CFBB97} => C:\ProgramData\{08A94816-BF02-FFBD-61EC-2227766596BE}\DAE6AC98-6D4D-1B33-C4D3-4FE0B0EDFF00.exe <==== ATTENTION
Task: {7E3D4FF0-F7E4-4EC0-8A52-F69C09A33BF9} - System32\Tasks\{01193487-7CD9-4057-8AB7-2AC6B968CA47} => pcalua.exe -a "C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyiii[1].exe" -d C:\Users\Julie\Desktop
Task: {7EC71250-12B1-4EEA-B97F-B3C4A0B349FD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {89EB33C7-CEF7-4F91-B111-7071AEFF8864} - System32\Tasks\{F1DF62BF-AEBC-4909-A0BF-0ECBEB8A082E} => C:\Users\Julie\Desktop\GURU1_1\SETUP.EXE
Task: {91ACEC36-D5BC-4CDF-B394-3A438C7B997E} - System32\Tasks\{215343FD-8BCE-42DC-B5BA-8A39D0590B76} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{77B5AD60-8F14-11D4-9BC9-0050041A1090}\Setup.exe" -d C:\Windows -c -uninst
Task: {922D83B7-5B22-4CE6-8AB3-35EE5C1F049C} - System32\Tasks\{778FE9D4-C024-5E7F-E604-12B365730275} => C:\ProgramData\{AA766877-1DDD-DFDC-7FE5-242205D40E80}\537241D6-E4D9-F67D-4B82-DDB14F592913.exe <==== ATTENTION
Task: {97CBAEEE-0412-4B4E-B2FA-CAD5DBFB17EE} - System32\Tasks\{3163F9A6-86C8-4E0D-DDA7-94E92CA7A2CD} => C:\ProgramData\{36D1C2A8-817A-7503-BDB9-DAA8F53AB6F1}\E008C69D-57A3-7136-CCE8-4DDD7421791F.exe <==== ATTENTION
Task: {9EB8D30E-EDCA-4391-B8EA-39702DBFDC70} - System32\Tasks\{172572AE-A08E-C505-AE3D-3975821EBDE4} => C:\ProgramData\{E845A9F6-5FEE-1E5D-1F25-DFDC79EE9E19}\8C2AA30D-3B81-14A6-3E1F-010361AD198B.exe <==== ATTENTION
Task: {9F0542DC-4CAC-46D1-B3AE-B46142102E05} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-JUBILATIONLEE => C:\Windows\ehome\McxTask.exe [2009-07-13] (Microsoft Corporation)
C:\PROGRA~3\5425cc40\5db51df1.dll
Task: {A2646E7F-E4FB-484E-8D56-0CBAD732D987} - System32\Tasks\{B090F4BA-F7EE-D581-AB53-A0968CD5592C} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\5425cc40\5db51df1.dll" <==== ATTENTION
Task: {A92CEDC5-36EF-4F99-8375-1AF843A74FDB} - System32\Tasks\{7C3153F6-535A-4FF2-9620-8FD97AC11C04} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}\setup.exe" -c -runfromtemp -l0x0409 -removeonly
Task: {AB4ED7EB-044A-44A8-9FEF-926379475267} - System32\Tasks\{8162E81A-36C9-5FB1-187B-AFB590F28574} => C:\ProgramData\{CAA8648D-7D03-D326-6E2B-9683024CCCDC}\20F1D504-975A-62AF-3B86-97A88BE727DD.exe <==== ATTENTION
Task: {AD45ED20-9FD9-4976-A48E-C0BF778CAE46} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-26] (Google Inc.)
Task: {B403C2F3-6D3C-4A60-AEDF-1A86DA478FEC} - System32\Tasks\{B3E4284D-044F-9FE6-A413-2C6822CA3344} => C:\ProgramData\{AE33F576-1998-42DD-1AE9-24E3E6342482}\74A9E4FB-C302-5350-DB07-9B3B8BF95E1B.exe <==== ATTENTION
Task: {BC1423F5-43EB-4C31-BCC2-61211A1292FB} - System32\Tasks\{A9264E4C-6252-4221-A1B6-81EEDCE3F0D8} => C:\Users\Julie\Desktop\ComicRack.exe
Task: {BD3FCCA8-20D4-4E46-AF4D-240965DA8563} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {BFE6C894-ED20-4674-8B24-19AF8F85BC08} - System32\Tasks\{C166A24E-76CD-15E5-42A8-814FD7673AD0} => C:\ProgramData\{36D73F50-817C-88FB-E47E-FD0D47B77586}\A9AB5644-1E00-E1EF-E495-AF158C1F90A5.exe <==== ATTENTION
Task: {C32F9E53-FC8C-49C5-846B-03F17EC02863} - System32\Tasks\{300F7ED6-87A4-C97D-8F74-EFFFB0BC246E} => C:\ProgramData\{61C1CA53-D66A-7DF8-098C-4B483F5682CF}\A2ABF12C-1500-4687-25AA-315564AB1BF7.exe <==== ATTENTION
Task: {C3BA7914-1BD9-456D-ABCD-BE5AD4D2BE9F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-26] (Google Inc.)
Task: {CFED50A2-EF68-4A63-BC7E-DE1BEF0D11F2} - System32\Tasks\{1F9200B8-059F-472F-BCFD-F11410906C77} => C:\Users\Julie\Desktop\ComicRack.exe
Task: {D5AEDA6F-CF13-4595-BA45-8EE6C95BFD95} - System32\Tasks\Uninstaller_SkipUac_Julie => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-01-12] (IObit)
Task: {D6095DF2-A69D-45D3-BA09-575F2C30C6D8} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {D6A47C89-B6D1-49EF-958D-4DEE22B5CA0C} - System32\Tasks\{31800488-493B-4A09-BDAE-0AB8E3FD3532} => pcalua.exe -a "C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyi[1].exe" -d C:\Users\Julie\Desktop
Task: {D92F3FB9-3F08-40DF-BAEF-0173782984F4} - System32\Tasks\{30E34557-8748-F2FC-7374-DDFD321F2182} => C:\ProgramData\{4A727D2B-FDD9-CA80-9104-340DBB3929E7}\0561F597-B2CA-423C-DDB5-5AF66AA41815.exe <==== ATTENTION
Task: {D9C10825-C4CF-4C7A-A94D-F1BF022A11F1} - System32\Tasks\{0BBF794A-BC14-CEE1-C0D8-13E64010A609} => C:\ProgramData\{4722B85A-F089-0FF1-CEE7-933BCF117AB8}\E0C4A050-576F-17FB-85FE-3E2431739DF8.exe <==== ATTENTION
Task: {DC80B6F6-CCF9-40E1-94A8-73CB8D0BE0E0} - System32\Tasks\{FE25CCC7-71A5-4721-92B8-3998CD7A9324} => pcalua.exe -a "C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6A1561ZG\trilogyii[1].exe" -d C:\Users\Julie\Desktop
Task: {DCA94F61-1916-4C71-9763-049B7B3587C2} - System32\Tasks\{30236CF7-8788-DB5C-1FA6-92583FF92472} => C:\ProgramData\{CD565826-7AFD-EF8D-A81A-3C513C5BBB63}\1F9147F3-A83A-F058-D8AF-54022B1FAEFD.exe <==== ATTENTION
Task: {DDD7897D-F61E-4F8C-811A-FF8A4467CDB2} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {EEEEBCCD-38A6-4727-A0C5-E7A9F2C248D3} - System32\Tasks\{9868813B-2FC3-3690-3EB3-AC4462C442EB} => C:\ProgramData\{ED15032E-5ABE-B485-4652-B06A8F4BAF03}\13623FD5-A4C9-887E-65D0-4B71BE40CAC3.exe <==== ATTENTION
Task: {EF5D8D53-F871-450C-8047-42CC0920F5A2} - System32\Tasks\{E702521E-FD6F-4F91-B963-A4971D6AD3AD} => pcalua.exe -a C:\Users\Julie\Desktop\jxpiinstall.exe -d C:\Users\Julie\Desktop
Task: {F300A44E-5098-482E-AC29-3F1208BD66FE} - System32\Tasks\{CF41AB61-78EA-1CCA-564C-BFD5F7C2F835} => C:\ProgramData\{AE034305-19A8-F4AE-5824-841872DC3231}\9AA307D1-2D08-B07A-C9EE-A7546E1ACE57.exe <==== ATTENTION
Task: {F6F69977-CEE6-41E9-A226-EF08B76A3575} - System32\Tasks\{416B323D-F6C0-8596-55E5-0AE35E3F5048} => C:\ProgramData\{1E654AB9-A9CE-FD12-9E2E-5CCE215834E3}\50648294-E7CF-353F-8237-B0E48E9ED55A.exe <==== ATTENTION
Task: {F74578F6-01AD-460C-BBCD-2628CED97712} - System32\Tasks\{50269BB5-E78D-2C1E-2EDF-3FA12C35228D} => C:\ProgramData\{1FEC7159-A847-C6F2-07DE-37A4C425806E}\717288AE-C6D9-3F05-D6E8-7A20DE76DEF5.exe <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
C:\Program Files (x86)\IObit\IObit Malware Fighter
C:\Program Files (x86)\IObit\Advanced SystemCare
C:\Program Files (x86)\QuickTime
C:\Windows\system32\CompatTelRunner.exe
C:\Program Files\Common Files\AV\Spybot - Search and Destroy
FirewallRules: [TCP Query User{2A46123B-37C7-4667-B2C4-F927D8472EC9}E:\torrent\utorrentportable\app\utorrent\utorrent.exe] => E:\torrent\utorrentportable\app\utorrent\utorrent.exe
FirewallRules: [UDP Query User{EA25E867-5FD9-4B93-AF27-26A773DF0FBB}E:\torrent\utorrentportable\app\utorrent\utorrent.exe] => E:\torrent\utorrentportable\app\utorrent\utorrent.exe
FirewallRules: [{593E3D76-5B56-4A8F-8D29-7114A53DDE3B}] => E:\Torrent\uTorrentPortable\App\uTorrent\uTorrent.exe
FirewallRules: [{3D3FB187-A296-4584-AA76-C1019CBEEAF6}] => E:\Torrent\uTorrentPortable\App\uTorrent\uTorrent.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
C:\Program Files (x86)\Itibiti Soft Phone
C:\ProgramData\Spybot - Search & Destroy 2
C:\ProgramData\McAfee
C:\Windows\System32\config\systemprofile\AppData\Roaming\McAfee
C:\Windows\Logs\Gwx
C:\Windows\System32\winevt\Logs\Microsoft-Windows-GWX-Ins%4Operational.evtx
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent
C:\Users\Julie\AppData\Local\GWX
C:\Windows\System32\GWX
C:\Windows\SysWOW64\GWX
C:\WINDOWS\system32\Drivers\etc\hosts
RemoveProxy:
Hosts:
cmd: sc stop DiagTrack
cmd: sc delete DiagTrack
cmd: sc stop dmwappushservice
cmd: sc delete dmwappushservice
cmd: ipconfig /flushdns
reboot:
end

Also, run the Mcafee removal tool.


Edited by Blindbatkid, 27 January 2017 - 04:48 AM.


#4 FuchsiaIce

FuchsiaIce
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:New Orleans, LA
  • Local time:03:51 PM

Posted 27 January 2017 - 06:21 PM

Hello, Blindbatkid!  Thank you so much for offering your help.  I removed my tunnel adapters as per your instructions, uninstalled the programs you noted, ran the SupRestric tool and reset my Hosts to default.  After reboot still no wireless connection.  Here is the CTR log:

 

Rapport de Contrôle restrictions Pierre13 (CTR version 2.4.0.0 ) du 27\01\2017 à  16:06:03
PC de Julie
Windows 7 Home Premium Service Pack 1 (64 bits)

réparation erreur 2203 effectuée.

Contrôle présence restrictions

[TROJ_POWELIKS.B] clé feature_browser_emulation supprimée.
[TROJ_POWELIKS.B] clé smartdithering supprimée.
Autorisation installation sponsor Java(x86) supprimée.
Autorisation installation sponsor Java(x64) supprimée.
Restriction Affichage Documents récents supprimée.
Restriction Affichage Documents supprimée.
Restriction synchronisation en arrière-plan des flux d'informations et des Web Slices supprimée.
Restriction découverte des flux RSS et des Web Slices supprimée.
Restriction UpperFilters Bluetooth supprimée.
Restriction LowerFilters Bluetooth supprimée.
Pavé numérique activé.
Restriction utilisateur pour Windows Installer supprimée.
Recherche Windows Update rétablie.
Service Pare feu Windows activé.
Paramètres Pare feu Windows rétablis par défaut et activés.

238 restrictions contrôlées.

14 restriction(s) réparée(s).
Re démarrer le PC pour prendre en compte la ou les réparations.


Le rapport est sur le bureau (C:\Users\Julie\Desktop\CTR.txt)

 

 

 

 

I then ran the fix you posted and used the McAfee Removal tool.  After reboot that time the window popped up while trying to reach my wireless connection stating "Limited Connectivity" and asked if I wanted to troubleshoot, which I did.  This "Limited Connectivity" window while trying to connect is completely new, by the way.  Troubleshooting brought me to again turning off my Gateway and turning it back on.  Once I clicked the "Check if this solved the problem" button it popped up a window stating, yet again, I do not have a valid wifi ip configuration.

 

Here is the fixlog from running your FRST fix:

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 25-01-2017 01
Ran by Julie (27-01-2017 15:05:12) Run:5
Running from C:\Users\Julie\Desktop
Loaded Profiles: Julie (Available Profiles: Julie & Mcx1-JUBILATIONLEE & Mcx2-JUBILATIONLEE)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
emptytemp:
C:\ProgramData\1321760f2e0e72bfe9747dfdbd0949e1
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyiii[1].exe
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyi[1].exe
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6A1561ZG\trilogyii[1].exe
C:\PROGRA~3\5425cc40\5db51df1.dll
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{205253D9-B0F2-46BE-B8C1-00D0A94B7D06}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{22622142-FCAB-4270-AD57-A77EF2BCC417}: [NameServer] 8.8.8.8
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\MountPoints2: {3e06af2b-2116-11e6-888f-88ae1d611511} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\MountPoints2: {3e06af34-2116-11e6-888f-88ae1d611511} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\MountPoints2: {4e7d26e2-7040-11e4-b129-88ae1d611511} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\...\MountPoints2: {b2522f8a-0e7c-11e2-b8f5-88ae1d04156e} - F:\PMCsetup.exe
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-658284135-3662055118-2884648652-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\Advisor\System\BAVoilaX.dll [2011-08-10] (Belarc, Inc.)
Handler-x32: http - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: http - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: https - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: https - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: ipp - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: msdaipp - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: msdaipp - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
FF SelectedSearchEngine: Philips-Songbird\Profiles\9p1ya3nl.default -> Philips Songbird
FF SearchPlugin: C:\Users\Julie\AppData\Roaming\Philips-Songbird\Profiles\9p1ya3nl.default\searchplugins\7digital.xml [2012-11-03]
FF Homepage: Mozilla\Firefox\Profiles\74xmzvwr.default-1484472233330 -> www.aol.com/
FF Extension: (TinEye Reverse Image Search) - C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\74xmzvwr.default-1484472233330\Extensions\tineye@ideeinc.com.xpi [2017-01-17]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll [2012-02-18] ()
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
R2 cmcore; c:\program files (x86)\cmcm\Clean Master\cmcore.exe [315208 2016-06-15] (Kingsoft Corporation)
c:\program files (x86)\cmcm
C:\Program Files (x86)\Google
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit)
C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
C:\Program Files (x86)\Spybot - Search & Destroy 2
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
R3 ksapi64; C:\Windows\system32\drivers\ksapi64.sys [56680 2016-06-15] (Kingsoft Corporation)
C:\Windows\system32\drivers\ksapi64.sys
C:\Users\Julie\Desktop\jxpiinstall.exe
C:\Windows\System32\drivers\VirtualAudio1.sys
C:\Windows\System32\drivers\VirtualAudio2.sys
C:\Windows\System32\drivers\VirtualAudio3.sys
C:\Windows\System32\drivers\VirtualAudio4.sys
C:\Windows\System32\drivers\VirtualAudio5.sys
R3 WsAudio_Device(1); C:\Windows\System32\drivers\VirtualAudio1.sys [31080 2013-01-25] (Wondershare)
R3 WsAudio_Device(2); C:\Windows\System32\drivers\VirtualAudio2.sys [31080 2013-01-25] (Wondershare)
R3 WsAudio_Device(3); C:\Windows\System32\drivers\VirtualAudio3.sys [31080 2013-01-25] (Wondershare)
R3 WsAudio_Device(4); C:\Windows\System32\drivers\VirtualAudio4.sys [31080 2013-01-25] (Wondershare)
R3 WsAudio_Device(5); C:\Windows\System32\drivers\VirtualAudio5.sys [31080 2013-01-25] (Wondershare)
C:\Windows\System32\Tasks\{C24EF494-75E5-433F-5EB9-17B51C930DD9}
C:\Windows\System32\Tasks\{172572AE-A08E-C505-AE3D-3975821EBDE4}
C:\Windows\System32\Tasks\{9868813B-2FC3-3690-3EB3-AC4462C442EB}
C:\Windows\System32\Tasks\{0CB78BFA-BB1C-3C51-189C-9A11D1CFBB97}
C:\Windows\System32\Tasks\{C4D5029A-737E-B531-DC66-BA02773894CD}
C:\Windows\System32\Tasks\{300F7ED6-87A4-C97D-8F74-EFFFB0BC246E}
C:\Windows\System32\Tasks\{35F1E434-825A-539F-5DCD-321613ADE1CF}
C:\Windows\System32\Tasks\{0E8559D8-B92E-EE73-21CD-FA7E221F8791}
C:\Windows\System32\Tasks\{3898ABAC-8F33-1C07-F1AB-FB09EED30C11}
C:\Windows\System32\Tasks\{30E34557-8748-F2FC-7374-DDFD321F2182}
C:\Windows\System32\Tasks\{CF41AB61-78EA-1CCA-564C-BFD5F7C2F835}
C:\Windows\System32\Tasks\{416B323D-F6C0-8596-55E5-0AE35E3F5048}
C:\Windows\System32\Tasks\{D1EC1045-6647-A7EE-7743-E7D3743FD033}
C:\Windows\System32\Tasks\{48BF5808-FF14-EFA3-1007-FA0C2F2A116D}
C:\Windows\System32\Tasks\{30236CF7-8788-DB5C-1FA6-92583FF92472}
C:\Windows\System32\Tasks\{291BAC74-9EB0-1BDF-6611-D279515D79CD}
C:\Windows\System32\Tasks\{1B76A525-ACDD-128E-79C5-9483A1B43ADB}
C:\Windows\System32\Tasks\{074B5343-B0E0-E4E8-2C72-49E2C6B999F2}
C:\Windows\System32\Tasks\{0BBF794A-BC14-CEE1-C0D8-13E64010A609}
C:\Windows\System32\Tasks\{041CCB44-B3B7-7CEF-9220-209D6673C907}
C:\Windows\System32\Tasks\{B3E4284D-044F-9FE6-A413-2C6822CA3344}
C:\Windows\System32\Tasks\{3163F9A6-86C8-4E0D-DDA7-94E92CA7A2CD}
C:\Windows\System32\Tasks\{7145781B-C6EE-CFB0-AA8F-5B925AC73E0E}
C:\Windows\System32\Tasks\{50269BB5-E78D-2C1E-2EDF-3FA12C35228D}
C:\Windows\System32\Tasks\{A5A454A9-120F-E302-5173-3B1AA673BA9C}
C:\Windows\System32\Tasks\{778FE9D4-C024-5E7F-E604-12B365730275}
C:\Windows\System32\Tasks\{DD89A159-6A22-16F2-3192-4B748C89E066}
C:\Windows\System32\Tasks\{9B26CA5B-2C8D-7DF0-8B7E-A6C58A547D6B}
C:\Windows\System32\Tasks\{9B23798D-2C88-CE26-7062-958EAAE4A8F7}
C:\Windows\System32\Tasks\{C166A24E-76CD-15E5-42A8-814FD7673AD0}
C:\Windows\System32\Tasks\{8162E81A-36C9-5FB1-187B-AFB590F28574}
C:\Windows\System32\Tasks\{B090F4BA-F7EE-D581-AB53-A0968CD5592C}
C:\Windows\System32\Tasks\Uninstaller_SkipUac_Julie
C:\Program Files\COMODO
C:\ProgramData\COMODO
C:\Program Files\1321760f2e0e72bfe9747dfdbd0949e1
C:\Windows\System32\Tasks\Apple
C:\Program Files (x86)\Apple Software Update
C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-658284135-3662055118-2884648652-1000UA.job
C:\Windows\Tasks\Adobe Flash Player Updater.job
C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-658284135-3662055118-2884648652-1000Core.job
C:\Windows\SysWOW64\WDPABKP.dat
C:\Windows\System32\Tasks\Adobe Acrobat Update Task
C:\ProgramData\ProductData
2014-06-09 01:38 - 2014-06-09 01:50 - 0000985 _____ () C:\Users\Julie\AppData\Roaming\freepdftowordexceljpgtiffhtmlconverterSystem.dat
2016-10-23 17:16 - 2016-10-23 17:16 - 0140288 _____ () C:\Users\Julie\AppData\Roaming\Installer.dat
2011-01-18 22:59 - 2015-01-03 21:39 - 0008192 _____ () C:\Users\Julie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-11-17 08:19 - 2011-11-17 08:19 - 0002587 _____ () C:\Users\Julie\AppData\Local\MyWinLockerInstaller.txt-20111117.log
2013-09-06 22:07 - 2015-05-21 21:27 - 0007670 _____ () C:\Users\Julie\AppData\Local\Resmon.ResmonCfg
2016-10-23 17:16 - 2016-10-23 17:19 - 0000003 _____ () C:\Users\Julie\AppData\Local\run1.txt
2015-09-28 17:44 - 2015-09-28 17:44 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
C:\Users\Julie\AppData\Local\Temp\2250760.t.exe
C:\Users\Julie\AppData\Local\Temp\2995168.t.exe
C:\Users\Julie\AppData\Local\Temp\34775960.t.exe
C:\Users\Julie\AppData\Local\Temp\60813995.t.exe
C:\Windows\SysWOW64\NTIOFM4.dll
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Task: {08E245AF-BD4D-4DAB-A39E-D2B9D54585EB} - System32\Tasks\{7145781B-C6EE-CFB0-AA8F-5B925AC73E0E} => C:\ProgramData\{F545ED39-42EE-5A92-552D-92895B7603CB}\871750D4-30BC-E77F-7C0C-3576345ABAEE.exe <==== ATTENTION
Task: {19DC2523-25B0-46ED-8169-4D58F571FD26} - System32\Tasks\{0E8559D8-B92E-EE73-21CD-FA7E221F8791} => C:\ProgramData\{7B9C110E-CC37-A6A5-ADDA-44C80CA1B300}\6D3078D6-DA9B-CF7D-5A95-C2762445159D.exe <==== ATTENTION
Task: {2766BEB7-1172-454A-BAA5-1A24F902CF0B} - System32\Tasks\{D1EC1045-6647-A7EE-7743-E7D3743FD033} => C:\ProgramData\{654736C6-D2EC-816D-F6FE-9951E2EACBE5}\78607BBE-CFCB-CC15-A6C6-32537F0A2F2C.exe <==== ATTENTION
Task: {2B8919A8-402D-4C6A-BEB2-1CB7638FA174} - System32\Tasks\{A5A454A9-120F-E302-5173-3B1AA673BA9C} => C:\ProgramData\{6FC71012-D86C-A7B9-C9C2-BB8E40866C69}\93A8F772-2403-40D9-5900-6197A0F5A1B1.exe <==== ATTENTION
Task: {2D86107A-6B7A-48C4-93A3-2EEB8DC87C81} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {2D9D85A4-B627-4423-B8C8-938FC7B1A7E8} - System32\Tasks\{48BF5808-FF14-EFA3-1007-FA0C2F2A116D} => C:\ProgramData\{947D5F03-23D6-E8A8-A5D5-450BC7B11D75}\50FCC2E9-E757-7542-37C0-7EC212E5F9BB.exe <==== ATTENTION
Task: {32A4C248-E010-4F1A-878C-A9CCC0E4084B} - System32\Tasks\{2FAEEFE5-2A64-4AE3-A2B3-671A1605F446} => C:\Users\Julie\Desktop\GURU1_1\SETUP.EXE
Task: {33876DCC-95C2-42EF-8D8F-83473BE3158E} - System32\Tasks\{9B26CA5B-2C8D-7DF0-8B7E-A6C58A547D6B} => C:\ProgramData\{4CE4ED55-FB4F-5AFE-12DA-3223A6643F4A}\2C7E0B26-9BD5-BC8D-4774-1677F0660E78.exe <==== ATTENTION
Task: {34ABDDFA-8435-4817-AA0C-6DC6F5A061B0} - System32\Tasks\{3898ABAC-8F33-1C07-F1AB-FB09EED30C11} => C:\ProgramData\{BA74F400-0DDF-43AB-5731-FF3BA13CAE59}\C036D9AD-779D-6E06-CAD5-A7B38DE1AD63.exe <==== ATTENTION
Task: {38AB0D67-5DBA-479D-8E1F-8D0EE181D298} - System32\Tasks\{041CCB44-B3B7-7CEF-9220-209D6673C907} => C:\ProgramData\{FD6784CC-4ACC-3367-E77C-472FC7570B4A}\A4DC494B-1377-FEE0-2E2C-62FB054D7D6A.exe <==== ATTENTION
Task: {3984DBA2-55D7-471C-8A1C-DF08A3D93961} - System32\Tasks\{074B5343-B0E0-E4E8-2C72-49E2C6B999F2} => C:\ProgramData\{DA82A375-6D29-14DE-6BC0-77D62B66A57F}\BD51AA14-0AFA-1DBF-E3D3-92D04BD4037E.exe <==== ATTENTION
Task: {3A9C296F-8903-446C-9712-F7E0865D9769} - System32\Tasks\{C24EF494-75E5-433F-5EB9-17B51C930DD9} => C:\ProgramData\{FA18728E-4DB3-C525-8B60-A9F8FAF0656E}\48C9A86D-FF62-1FC6-8DA2-DEA362D5DE5C.exe <==== ATTENTION
Task: {3C482EBD-2522-4B07-877C-60E05659A00D} - System32\Tasks\{1B76A525-ACDD-128E-79C5-9483A1B43ADB} => C:\ProgramData\{6A4FD9B6-DDE4-6E1D-A2B6-2FEDB30F5E24}\D3B2F61B-6419-41B0-7BC6-61388DAEA99B.exe <==== ATTENTION
Task: {41C35E59-9B69-4999-BD3A-34EFDE3AB5A2} - System32\Tasks\{9B23798D-2C88-CE26-7062-958EAAE4A8F7} => C:\ProgramData\{F9A7C46F-4E0C-73C4-5EE0-AE5DFC5273BD}\A1358AE6-169E-3D4D-C45F-2B699EF42368.exe <==== ATTENTION
Task: {4AD93102-274F-4B28-9851-E30509B8DCF5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {4CA76C82-9A07-469B-8FEB-EDDF35CDF35C} - System32\Tasks\{DD89A159-6A22-16F2-3192-4B748C89E066} => C:\ProgramData\{7E6061DB-C9CB-D670-97A2-FDBB949F074D}\BF9263B8-0839-D413-BBFC-1367ED9824B2.exe <==== ATTENTION
Task: {4E0FD37B-9AF1-4D31-B113-79D7660063FD} - System32\Tasks\{DCC88D28-B8B3-4ECF-BEE7-F4B730DD4AA2} => C:\Users\Julie\Desktop\ComicRack.exe
Task: {51A17922-038A-4AC0-9EBE-917998B0CBEF} - System32\Tasks\{35F1E434-825A-539F-5DCD-321613ADE1CF} => C:\ProgramData\{04D32809-B378-9FA2-5434-269339149CD1}\6F403CBF-D8EB-8B14-A1C5-B47F1DD1456B.exe <==== ATTENTION
Task: {5AFC101F-A17C-4D5A-B67F-C2D93972FF9D} - System32\Tasks\{291BAC74-9EB0-1BDF-6611-D279515D79CD} => C:\ProgramData\{1674E7EA-A1DF-5041-750B-FB767B0D335B}\745C5F4A-C3F7-E8E1-ADCC-3F19397DA690.exe <==== ATTENTION
Task: {6CC54F71-FB5B-4ED5-BA8E-CC62A5A85EA1} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx2-JUBILATIONLEE => C:\Windows\ehome\McxTask.exe [2009-07-13] (Microsoft Corporation)
Task: {6E15EE09-EB80-427F-9BFE-445375055C4D} - System32\Tasks\{C4D5029A-737E-B531-DC66-BA02773894CD} => C:\ProgramData\{11532002-A6F8-97A9-09B6-B95D4364B9CB}\9BD37E5E-2C78-C9F5-0DAE-570063C9DAA0.exe <==== ATTENTION
Task: {721DA855-534B-47EB-8DE8-291F13781BB1} - System32\Tasks\{0CB78BFA-BB1C-3C51-189C-9A11D1CFBB97} => C:\ProgramData\{08A94816-BF02-FFBD-61EC-2227766596BE}\DAE6AC98-6D4D-1B33-C4D3-4FE0B0EDFF00.exe <==== ATTENTION
Task: {7E3D4FF0-F7E4-4EC0-8A52-F69C09A33BF9} - System32\Tasks\{01193487-7CD9-4057-8AB7-2AC6B968CA47} => pcalua.exe -a "C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyiii[1].exe" -d C:\Users\Julie\Desktop
Task: {7EC71250-12B1-4EEA-B97F-B3C4A0B349FD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {89EB33C7-CEF7-4F91-B111-7071AEFF8864} - System32\Tasks\{F1DF62BF-AEBC-4909-A0BF-0ECBEB8A082E} => C:\Users\Julie\Desktop\GURU1_1\SETUP.EXE
Task: {91ACEC36-D5BC-4CDF-B394-3A438C7B997E} - System32\Tasks\{215343FD-8BCE-42DC-B5BA-8A39D0590B76} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{77B5AD60-8F14-11D4-9BC9-0050041A1090}\Setup.exe" -d C:\Windows -c -uninst
Task: {922D83B7-5B22-4CE6-8AB3-35EE5C1F049C} - System32\Tasks\{778FE9D4-C024-5E7F-E604-12B365730275} => C:\ProgramData\{AA766877-1DDD-DFDC-7FE5-242205D40E80}\537241D6-E4D9-F67D-4B82-DDB14F592913.exe <==== ATTENTION
Task: {97CBAEEE-0412-4B4E-B2FA-CAD5DBFB17EE} - System32\Tasks\{3163F9A6-86C8-4E0D-DDA7-94E92CA7A2CD} => C:\ProgramData\{36D1C2A8-817A-7503-BDB9-DAA8F53AB6F1}\E008C69D-57A3-7136-CCE8-4DDD7421791F.exe <==== ATTENTION
Task: {9EB8D30E-EDCA-4391-B8EA-39702DBFDC70} - System32\Tasks\{172572AE-A08E-C505-AE3D-3975821EBDE4} => C:\ProgramData\{E845A9F6-5FEE-1E5D-1F25-DFDC79EE9E19}\8C2AA30D-3B81-14A6-3E1F-010361AD198B.exe <==== ATTENTION
Task: {9F0542DC-4CAC-46D1-B3AE-B46142102E05} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-JUBILATIONLEE => C:\Windows\ehome\McxTask.exe [2009-07-13] (Microsoft Corporation)
C:\PROGRA~3\5425cc40\5db51df1.dll
Task: {A2646E7F-E4FB-484E-8D56-0CBAD732D987} - System32\Tasks\{B090F4BA-F7EE-D581-AB53-A0968CD5592C} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\5425cc40\5db51df1.dll" <==== ATTENTION
Task: {A92CEDC5-36EF-4F99-8375-1AF843A74FDB} - System32\Tasks\{7C3153F6-535A-4FF2-9620-8FD97AC11C04} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}\setup.exe" -c -runfromtemp -l0x0409 -removeonly
Task: {AB4ED7EB-044A-44A8-9FEF-926379475267} - System32\Tasks\{8162E81A-36C9-5FB1-187B-AFB590F28574} => C:\ProgramData\{CAA8648D-7D03-D326-6E2B-9683024CCCDC}\20F1D504-975A-62AF-3B86-97A88BE727DD.exe <==== ATTENTION
Task: {AD45ED20-9FD9-4976-A48E-C0BF778CAE46} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-26] (Google Inc.)
Task: {B403C2F3-6D3C-4A60-AEDF-1A86DA478FEC} - System32\Tasks\{B3E4284D-044F-9FE6-A413-2C6822CA3344} => C:\ProgramData\{AE33F576-1998-42DD-1AE9-24E3E6342482}\74A9E4FB-C302-5350-DB07-9B3B8BF95E1B.exe <==== ATTENTION
Task: {BC1423F5-43EB-4C31-BCC2-61211A1292FB} - System32\Tasks\{A9264E4C-6252-4221-A1B6-81EEDCE3F0D8} => C:\Users\Julie\Desktop\ComicRack.exe
Task: {BD3FCCA8-20D4-4E46-AF4D-240965DA8563} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {BFE6C894-ED20-4674-8B24-19AF8F85BC08} - System32\Tasks\{C166A24E-76CD-15E5-42A8-814FD7673AD0} => C:\ProgramData\{36D73F50-817C-88FB-E47E-FD0D47B77586}\A9AB5644-1E00-E1EF-E495-AF158C1F90A5.exe <==== ATTENTION
Task: {C32F9E53-FC8C-49C5-846B-03F17EC02863} - System32\Tasks\{300F7ED6-87A4-C97D-8F74-EFFFB0BC246E} => C:\ProgramData\{61C1CA53-D66A-7DF8-098C-4B483F5682CF}\A2ABF12C-1500-4687-25AA-315564AB1BF7.exe <==== ATTENTION
Task: {C3BA7914-1BD9-456D-ABCD-BE5AD4D2BE9F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-26] (Google Inc.)
Task: {CFED50A2-EF68-4A63-BC7E-DE1BEF0D11F2} - System32\Tasks\{1F9200B8-059F-472F-BCFD-F11410906C77} => C:\Users\Julie\Desktop\ComicRack.exe
Task: {D5AEDA6F-CF13-4595-BA45-8EE6C95BFD95} - System32\Tasks\Uninstaller_SkipUac_Julie => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-01-12] (IObit)
Task: {D6095DF2-A69D-45D3-BA09-575F2C30C6D8} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {D6A47C89-B6D1-49EF-958D-4DEE22B5CA0C} - System32\Tasks\{31800488-493B-4A09-BDAE-0AB8E3FD3532} => pcalua.exe -a "C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyi[1].exe" -d C:\Users\Julie\Desktop
Task: {D92F3FB9-3F08-40DF-BAEF-0173782984F4} - System32\Tasks\{30E34557-8748-F2FC-7374-DDFD321F2182} => C:\ProgramData\{4A727D2B-FDD9-CA80-9104-340DBB3929E7}\0561F597-B2CA-423C-DDB5-5AF66AA41815.exe <==== ATTENTION
Task: {D9C10825-C4CF-4C7A-A94D-F1BF022A11F1} - System32\Tasks\{0BBF794A-BC14-CEE1-C0D8-13E64010A609} => C:\ProgramData\{4722B85A-F089-0FF1-CEE7-933BCF117AB8}\E0C4A050-576F-17FB-85FE-3E2431739DF8.exe <==== ATTENTION
Task: {DC80B6F6-CCF9-40E1-94A8-73CB8D0BE0E0} - System32\Tasks\{FE25CCC7-71A5-4721-92B8-3998CD7A9324} => pcalua.exe -a "C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6A1561ZG\trilogyii[1].exe" -d C:\Users\Julie\Desktop
Task: {DCA94F61-1916-4C71-9763-049B7B3587C2} - System32\Tasks\{30236CF7-8788-DB5C-1FA6-92583FF92472} => C:\ProgramData\{CD565826-7AFD-EF8D-A81A-3C513C5BBB63}\1F9147F3-A83A-F058-D8AF-54022B1FAEFD.exe <==== ATTENTION
Task: {DDD7897D-F61E-4F8C-811A-FF8A4467CDB2} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {EEEEBCCD-38A6-4727-A0C5-E7A9F2C248D3} - System32\Tasks\{9868813B-2FC3-3690-3EB3-AC4462C442EB} => C:\ProgramData\{ED15032E-5ABE-B485-4652-B06A8F4BAF03}\13623FD5-A4C9-887E-65D0-4B71BE40CAC3.exe <==== ATTENTION
Task: {EF5D8D53-F871-450C-8047-42CC0920F5A2} - System32\Tasks\{E702521E-FD6F-4F91-B963-A4971D6AD3AD} => pcalua.exe -a C:\Users\Julie\Desktop\jxpiinstall.exe -d C:\Users\Julie\Desktop
Task: {F300A44E-5098-482E-AC29-3F1208BD66FE} - System32\Tasks\{CF41AB61-78EA-1CCA-564C-BFD5F7C2F835} => C:\ProgramData\{AE034305-19A8-F4AE-5824-841872DC3231}\9AA307D1-2D08-B07A-C9EE-A7546E1ACE57.exe <==== ATTENTION
Task: {F6F69977-CEE6-41E9-A226-EF08B76A3575} - System32\Tasks\{416B323D-F6C0-8596-55E5-0AE35E3F5048} => C:\ProgramData\{1E654AB9-A9CE-FD12-9E2E-5CCE215834E3}\50648294-E7CF-353F-8237-B0E48E9ED55A.exe <==== ATTENTION
Task: {F74578F6-01AD-460C-BBCD-2628CED97712} - System32\Tasks\{50269BB5-E78D-2C1E-2EDF-3FA12C35228D} => C:\ProgramData\{1FEC7159-A847-C6F2-07DE-37A4C425806E}\717288AE-C6D9-3F05-D6E8-7A20DE76DEF5.exe <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
C:\Program Files (x86)\IObit\IObit Malware Fighter
C:\Program Files (x86)\IObit\Advanced SystemCare
C:\Program Files (x86)\QuickTime
C:\Windows\system32\CompatTelRunner.exe
C:\Program Files\Common Files\AV\Spybot - Search and Destroy
FirewallRules: [TCP Query User{2A46123B-37C7-4667-B2C4-F927D8472EC9}E:\torrent\utorrentportable\app\utorrent\utorrent.exe] => E:\torrent\utorrentportable\app\utorrent\utorrent.exe
FirewallRules: [UDP Query User{EA25E867-5FD9-4B93-AF27-26A773DF0FBB}E:\torrent\utorrentportable\app\utorrent\utorrent.exe] => E:\torrent\utorrentportable\app\utorrent\utorrent.exe
FirewallRules: [{593E3D76-5B56-4A8F-8D29-7114A53DDE3B}] => E:\Torrent\uTorrentPortable\App\uTorrent\uTorrent.exe
FirewallRules: [{3D3FB187-A296-4584-AA76-C1019CBEEAF6}] => E:\Torrent\uTorrentPortable\App\uTorrent\uTorrent.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
C:\Program Files (x86)\Itibiti Soft Phone
C:\ProgramData\Spybot - Search & Destroy 2
C:\ProgramData\McAfee
C:\Windows\System32\config\systemprofile\AppData\Roaming\McAfee
C:\Windows\Logs\Gwx
C:\Windows\System32\winevt\Logs\Microsoft-Windows-GWX-Ins%4Operational.evtx
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent
C:\Users\Julie\AppData\Local\GWX
C:\Windows\System32\GWX
C:\Windows\SysWOW64\GWX
C:\WINDOWS\system32\Drivers\etc\hosts
RemoveProxy:
Hosts:
cmd: sc stop DiagTrack
cmd: sc delete DiagTrack
cmd: sc stop dmwappushservice
cmd: sc delete dmwappushservice
cmd: ipconfig /flushdns
reboot:
end
*****************

Restore point was successfully created.
Processes closed successfully.
"C:\ProgramData\1321760f2e0e72bfe9747dfdbd0949e1" => not found.
"C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyiii[1].exe" => not found.
"C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WTN8RZW6\trilogyi[1].exe" => not found.
"C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6A1561ZG\trilogyii[1].exe" => not found.
"C:\PROGRA~3\5425cc40\5db51df1.dll" => not found.
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer => value removed successfully
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\\NameServer => value removed successfully
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{205253D9-B0F2-46BE-B8C1-00D0A94B7D06}\\DhcpNameServer => value removed successfully
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{22622142-FCAB-4270-AD57-A77EF2BCC417}\\NameServer => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\Software\Microsoft\Windows\CurrentVersion\Run\\SpybotPostWindows10UpgradeReInstall => value removed successfully
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NolowDiskSpaceChecks => value removed successfully
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3e06af2b-2116-11e6-888f-88ae1d611511} => key removed successfully
HKCR\CLSID\{3e06af2b-2116-11e6-888f-88ae1d611511} => key not found.
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3e06af34-2116-11e6-888f-88ae1d611511} => key removed successfully
HKCR\CLSID\{3e06af34-2116-11e6-888f-88ae1d611511} => key not found.
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4e7d26e2-7040-11e4-b129-88ae1d611511} => key removed successfully
HKCR\CLSID\{4e7d26e2-7040-11e4-b129-88ae1d611511} => key not found.
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b2522f8a-0e7c-11e2-b8f5-88ae1d04156e} => key removed successfully
HKCR\CLSID\{b2522f8a-0e7c-11e2-b8f5-88ae1d04156e} => key not found.
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache => value removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => key removed successfully
HKCR\Wow6432Node\CLSID\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => key not found.
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} => key removed successfully
HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7} => key removed successfully
HKCR\Wow6432Node\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\belarc => key not found.
HKCR\Wow6432Node\CLSID\{6318E0AB-2E93-11D1-B8ED-00608CC9A71F} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\http => key not found.
HKCR\Wow6432Node\CLSID\{E1D2BF42-A96B-11D1-9C6B-0000F875AC61} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\http => key not found.
HKCR\Wow6432Node\CLSID\{E1D2BF40-A96B-11D1-9C6B-0000F875AC61} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\https => key not found.
HKCR\Wow6432Node\CLSID\{E1D2BF42-A96B-11D1-9C6B-0000F875AC61} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\https => key not found.
HKCR\Wow6432Node\CLSID\{E1D2BF40-A96B-11D1-9C6B-0000F875AC61} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\ipp => key not found.
HKCR\Wow6432Node\CLSID\{E1D2BF42-A96B-11D1-9C6B-0000F875AC61} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\msdaipp => key not found.
HKCR\Wow6432Node\CLSID\{E1D2BF42-A96B-11D1-9C6B-0000F875AC61} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\msdaipp => key not found.
HKCR\Wow6432Node\CLSID\{E1D2BF40-A96B-11D1-9C6B-0000F875AC61} => key not found.
Firefox SelectedSearchEngine removed successfully
C:\Users\Julie\AppData\Roaming\Philips-Songbird\Profiles\9p1ya3nl.default\searchplugins\7digital.xml => moved successfully
Firefox "homepage" removed successfully
C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\74xmzvwr.default-1484472233330\Extensions\tineye@ideeinc.com.xpi => moved successfully
C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\74xmzvwr.default-1484472233330\Extensions\tineye@ideeinc.com.xpi => path removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3 => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll => moved successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9 => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0 => key removed successfully
C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll => moved successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => key removed successfully
HKLM\System\CurrentControlSet\Services\cmcore => key removed successfully
cmcore => service removed successfully
c:\program files (x86)\cmcm => moved successfully
C:\Program Files (x86)\Google => moved successfully
HKLM\System\CurrentControlSet\Services\LiveUpdateSvc => key removed successfully
LiveUpdateSvc => service removed successfully
C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe => moved successfully
SDScannerService => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\SDScannerService => key removed successfully
SDScannerService => service removed successfully
SDUpdateService => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\SDUpdateService => key removed successfully
SDUpdateService => service removed successfully
SDWSCService => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\SDWSCService => key removed successfully
SDWSCService => service removed successfully
C:\Program Files (x86)\Spybot - Search & Destroy 2 => moved successfully
HKLM\System\CurrentControlSet\Services\WinDefend => key removed successfully
WinDefend => service removed successfully
ksapi64 => Unable to stop service.
HKLM\System\CurrentControlSet\Services\ksapi64 => key removed successfully
ksapi64 => service removed successfully
C:\Windows\system32\drivers\ksapi64.sys => moved successfully
"C:\Users\Julie\Desktop\jxpiinstall.exe" => not found.
C:\Windows\System32\drivers\VirtualAudio1.sys => moved successfully
C:\Windows\System32\drivers\VirtualAudio2.sys => moved successfully
C:\Windows\System32\drivers\VirtualAudio3.sys => moved successfully
C:\Windows\System32\drivers\VirtualAudio4.sys => moved successfully
C:\Windows\System32\drivers\VirtualAudio5.sys => moved successfully
WsAudio_Device(1) => Unable to stop service.
HKLM\System\CurrentControlSet\Services\WsAudio_Device(1) => key removed successfully
WsAudio_Device(1) => service removed successfully
WsAudio_Device(2) => Unable to stop service.
HKLM\System\CurrentControlSet\Services\WsAudio_Device(2) => key removed successfully
WsAudio_Device(2) => service removed successfully
WsAudio_Device(3) => Unable to stop service.
HKLM\System\CurrentControlSet\Services\WsAudio_Device(3) => key removed successfully
WsAudio_Device(3) => service removed successfully
WsAudio_Device(4) => Unable to stop service.
HKLM\System\CurrentControlSet\Services\WsAudio_Device(4) => key removed successfully
WsAudio_Device(4) => service removed successfully
WsAudio_Device(5) => Unable to stop service.
HKLM\System\CurrentControlSet\Services\WsAudio_Device(5) => key removed successfully
WsAudio_Device(5) => service removed successfully
"C:\Windows\System32\Tasks\{C24EF494-75E5-433F-5EB9-17B51C930DD9}" => not found.
"C:\Windows\System32\Tasks\{172572AE-A08E-C505-AE3D-3975821EBDE4}" => not found.
"C:\Windows\System32\Tasks\{9868813B-2FC3-3690-3EB3-AC4462C442EB}" => not found.
"C:\Windows\System32\Tasks\{0CB78BFA-BB1C-3C51-189C-9A11D1CFBB97}" => not found.
"C:\Windows\System32\Tasks\{C4D5029A-737E-B531-DC66-BA02773894CD}" => not found.
"C:\Windows\System32\Tasks\{300F7ED6-87A4-C97D-8F74-EFFFB0BC246E}" => not found.
"C:\Windows\System32\Tasks\{35F1E434-825A-539F-5DCD-321613ADE1CF}" => not found.
"C:\Windows\System32\Tasks\{0E8559D8-B92E-EE73-21CD-FA7E221F8791}" => not found.
"C:\Windows\System32\Tasks\{3898ABAC-8F33-1C07-F1AB-FB09EED30C11}" => not found.
"C:\Windows\System32\Tasks\{30E34557-8748-F2FC-7374-DDFD321F2182}" => not found.
"C:\Windows\System32\Tasks\{CF41AB61-78EA-1CCA-564C-BFD5F7C2F835}" => not found.
"C:\Windows\System32\Tasks\{416B323D-F6C0-8596-55E5-0AE35E3F5048}" => not found.
"C:\Windows\System32\Tasks\{D1EC1045-6647-A7EE-7743-E7D3743FD033}" => not found.
"C:\Windows\System32\Tasks\{48BF5808-FF14-EFA3-1007-FA0C2F2A116D}" => not found.
"C:\Windows\System32\Tasks\{30236CF7-8788-DB5C-1FA6-92583FF92472}" => not found.
"C:\Windows\System32\Tasks\{291BAC74-9EB0-1BDF-6611-D279515D79CD}" => not found.
"C:\Windows\System32\Tasks\{1B76A525-ACDD-128E-79C5-9483A1B43ADB}" => not found.
"C:\Windows\System32\Tasks\{074B5343-B0E0-E4E8-2C72-49E2C6B999F2}" => not found.
"C:\Windows\System32\Tasks\{0BBF794A-BC14-CEE1-C0D8-13E64010A609}" => not found.
"C:\Windows\System32\Tasks\{041CCB44-B3B7-7CEF-9220-209D6673C907}" => not found.
"C:\Windows\System32\Tasks\{B3E4284D-044F-9FE6-A413-2C6822CA3344}" => not found.
"C:\Windows\System32\Tasks\{3163F9A6-86C8-4E0D-DDA7-94E92CA7A2CD}" => not found.
"C:\Windows\System32\Tasks\{7145781B-C6EE-CFB0-AA8F-5B925AC73E0E}" => not found.
C:\Windows\System32\Tasks\{50269BB5-E78D-2C1E-2EDF-3FA12C35228D} => moved successfully
"C:\Windows\System32\Tasks\{A5A454A9-120F-E302-5173-3B1AA673BA9C}" => not found.
"C:\Windows\System32\Tasks\{778FE9D4-C024-5E7F-E604-12B365730275}" => not found.
"C:\Windows\System32\Tasks\{DD89A159-6A22-16F2-3192-4B748C89E066}" => not found.
"C:\Windows\System32\Tasks\{9B26CA5B-2C8D-7DF0-8B7E-A6C58A547D6B}" => not found.
"C:\Windows\System32\Tasks\{9B23798D-2C88-CE26-7062-958EAAE4A8F7}" => not found.
"C:\Windows\System32\Tasks\{C166A24E-76CD-15E5-42A8-814FD7673AD0}" => not found.
"C:\Windows\System32\Tasks\{8162E81A-36C9-5FB1-187B-AFB590F28574}" => not found.
"C:\Windows\System32\Tasks\{B090F4BA-F7EE-D581-AB53-A0968CD5592C}" => not found.
C:\Windows\System32\Tasks\Uninstaller_SkipUac_Julie => moved successfully
C:\Program Files\COMODO => moved successfully
C:\ProgramData\COMODO => moved successfully
C:\Program Files\1321760f2e0e72bfe9747dfdbd0949e1 => moved successfully
C:\Windows\System32\Tasks\Apple => moved successfully
C:\Program Files (x86)\Apple Software Update => moved successfully
C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-658284135-3662055118-2884648652-1000UA.job => moved successfully
C:\Windows\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-658284135-3662055118-2884648652-1000Core.job => moved successfully
C:\Windows\SysWOW64\WDPABKP.dat => moved successfully
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => moved successfully
C:\ProgramData\ProductData => moved successfully
C:\Users\Julie\AppData\Roaming\freepdftowordexceljpgtiffhtmlconverterSystem.dat => moved successfully
C:\Users\Julie\AppData\Roaming\Installer.dat => moved successfully
C:\Users\Julie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\Julie\AppData\Local\MyWinLockerInstaller.txt-20111117.log => moved successfully
C:\Users\Julie\AppData\Local\Resmon.ResmonCfg => moved successfully
C:\Users\Julie\AppData\Local\run1.txt => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\Users\Julie\AppData\Local\Temp\2250760.t.exe" => not found.
"C:\Users\Julie\AppData\Local\Temp\2995168.t.exe" => not found.
"C:\Users\Julie\AppData\Local\Temp\34775960.t.exe" => not found.
"C:\Users\Julie\AppData\Local\Temp\60813995.t.exe" => not found.
"C:\Windows\SysWOW64\NTIOFM4.dll" => not found.
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}\\SystemComponent => value removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08E245AF-BD4D-4DAB-A39E-D2B9D54585EB} => key not found.
C:\Windows\System32\Tasks\{7145781B-C6EE-CFB0-AA8F-5B925AC73E0E} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7145781B-C6EE-CFB0-AA8F-5B925AC73E0E} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{19DC2523-25B0-46ED-8169-4D58F571FD26} => key not found.
C:\Windows\System32\Tasks\{0E8559D8-B92E-EE73-21CD-FA7E221F8791} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0E8559D8-B92E-EE73-21CD-FA7E221F8791} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2766BEB7-1172-454A-BAA5-1A24F902CF0B} => key not found.
C:\Windows\System32\Tasks\{D1EC1045-6647-A7EE-7743-E7D3743FD033} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D1EC1045-6647-A7EE-7743-E7D3743FD033} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2B8919A8-402D-4C6A-BEB2-1CB7638FA174} => key not found.
C:\Windows\System32\Tasks\{A5A454A9-120F-E302-5173-3B1AA673BA9C} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A5A454A9-120F-E302-5173-3B1AA673BA9C} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2D86107A-6B7A-48C4-93A3-2EEB8DC87C81} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D86107A-6B7A-48C4-93A3-2EEB8DC87C81} => key removed successfully
C:\Windows\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D9D85A4-B627-4423-B8C8-938FC7B1A7E8} => key not found.
C:\Windows\System32\Tasks\{48BF5808-FF14-EFA3-1007-FA0C2F2A116D} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{48BF5808-FF14-EFA3-1007-FA0C2F2A116D} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{32A4C248-E010-4F1A-878C-A9CCC0E4084B} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32A4C248-E010-4F1A-878C-A9CCC0E4084B} => key removed successfully
C:\Windows\System32\Tasks\{2FAEEFE5-2A64-4AE3-A2B3-671A1605F446} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2FAEEFE5-2A64-4AE3-A2B3-671A1605F446} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{33876DCC-95C2-42EF-8D8F-83473BE3158E} => key not found.
C:\Windows\System32\Tasks\{9B26CA5B-2C8D-7DF0-8B7E-A6C58A547D6B} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9B26CA5B-2C8D-7DF0-8B7E-A6C58A547D6B} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34ABDDFA-8435-4817-AA0C-6DC6F5A061B0} => key not found.
C:\Windows\System32\Tasks\{3898ABAC-8F33-1C07-F1AB-FB09EED30C11} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3898ABAC-8F33-1C07-F1AB-FB09EED30C11} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{38AB0D67-5DBA-479D-8E1F-8D0EE181D298} => key not found.
C:\Windows\System32\Tasks\{041CCB44-B3B7-7CEF-9220-209D6673C907} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{041CCB44-B3B7-7CEF-9220-209D6673C907} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3984DBA2-55D7-471C-8A1C-DF08A3D93961} => key not found.
C:\Windows\System32\Tasks\{074B5343-B0E0-E4E8-2C72-49E2C6B999F2} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{074B5343-B0E0-E4E8-2C72-49E2C6B999F2} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3A9C296F-8903-446C-9712-F7E0865D9769} => key not found.
C:\Windows\System32\Tasks\{C24EF494-75E5-433F-5EB9-17B51C930DD9} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C24EF494-75E5-433F-5EB9-17B51C930DD9} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C482EBD-2522-4B07-877C-60E05659A00D} => key not found.
C:\Windows\System32\Tasks\{1B76A525-ACDD-128E-79C5-9483A1B43ADB} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1B76A525-ACDD-128E-79C5-9483A1B43ADB} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{41C35E59-9B69-4999-BD3A-34EFDE3AB5A2} => key not found.
C:\Windows\System32\Tasks\{9B23798D-2C88-CE26-7062-958EAAE4A8F7} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9B23798D-2C88-CE26-7062-958EAAE4A8F7} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4AD93102-274F-4B28-9851-E30509B8DCF5} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4AD93102-274F-4B28-9851-E30509B8DCF5} => key removed successfully
C:\Windows\System32\Tasks\Adobe Flash Player Updater => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4CA76C82-9A07-469B-8FEB-EDDF35CDF35C} => key not found.
C:\Windows\System32\Tasks\{DD89A159-6A22-16F2-3192-4B748C89E066} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DD89A159-6A22-16F2-3192-4B748C89E066} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E0FD37B-9AF1-4D31-B113-79D7660063FD} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E0FD37B-9AF1-4D31-B113-79D7660063FD} => key removed successfully
C:\Windows\System32\Tasks\{DCC88D28-B8B3-4ECF-BEE7-F4B730DD4AA2} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DCC88D28-B8B3-4ECF-BEE7-F4B730DD4AA2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{51A17922-038A-4AC0-9EBE-917998B0CBEF} => key not found.
C:\Windows\System32\Tasks\{35F1E434-825A-539F-5DCD-321613ADE1CF} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{35F1E434-825A-539F-5DCD-321613ADE1CF} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5AFC101F-A17C-4D5A-B67F-C2D93972FF9D} => key not found.
C:\Windows\System32\Tasks\{291BAC74-9EB0-1BDF-6611-D279515D79CD} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{291BAC74-9EB0-1BDF-6611-D279515D79CD} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6CC54F71-FB5B-4ED5-BA8E-CC62A5A85EA1} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6CC54F71-FB5B-4ED5-BA8E-CC62A5A85EA1} => key removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx2-JUBILATIONLEE => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx2-JUBILATIONLEE => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E15EE09-EB80-427F-9BFE-445375055C4D} => key not found.
C:\Windows\System32\Tasks\{C4D5029A-737E-B531-DC66-BA02773894CD} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C4D5029A-737E-B531-DC66-BA02773894CD} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{721DA855-534B-47EB-8DE8-291F13781BB1} => key not found.
C:\Windows\System32\Tasks\{0CB78BFA-BB1C-3C51-189C-9A11D1CFBB97} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0CB78BFA-BB1C-3C51-189C-9A11D1CFBB97} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7E3D4FF0-F7E4-4EC0-8A52-F69C09A33BF9} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E3D4FF0-F7E4-4EC0-8A52-F69C09A33BF9} => key removed successfully
C:\Windows\System32\Tasks\{01193487-7CD9-4057-8AB7-2AC6B968CA47} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{01193487-7CD9-4057-8AB7-2AC6B968CA47} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7EC71250-12B1-4EEA-B97F-B3C4A0B349FD} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7EC71250-12B1-4EEA-B97F-B3C4A0B349FD} => key removed successfully
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{89EB33C7-CEF7-4F91-B111-7071AEFF8864} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89EB33C7-CEF7-4F91-B111-7071AEFF8864} => key removed successfully
C:\Windows\System32\Tasks\{F1DF62BF-AEBC-4909-A0BF-0ECBEB8A082E} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F1DF62BF-AEBC-4909-A0BF-0ECBEB8A082E} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{91ACEC36-D5BC-4CDF-B394-3A438C7B997E} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{91ACEC36-D5BC-4CDF-B394-3A438C7B997E} => key removed successfully
C:\Windows\System32\Tasks\{215343FD-8BCE-42DC-B5BA-8A39D0590B76} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{215343FD-8BCE-42DC-B5BA-8A39D0590B76} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{922D83B7-5B22-4CE6-8AB3-35EE5C1F049C} => key not found.
C:\Windows\System32\Tasks\{778FE9D4-C024-5E7F-E604-12B365730275} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{778FE9D4-C024-5E7F-E604-12B365730275} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97CBAEEE-0412-4B4E-B2FA-CAD5DBFB17EE} => key not found.
C:\Windows\System32\Tasks\{3163F9A6-86C8-4E0D-DDA7-94E92CA7A2CD} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3163F9A6-86C8-4E0D-DDA7-94E92CA7A2CD} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9EB8D30E-EDCA-4391-B8EA-39702DBFDC70} => key not found.
C:\Windows\System32\Tasks\{172572AE-A08E-C505-AE3D-3975821EBDE4} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{172572AE-A08E-C505-AE3D-3975821EBDE4} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9F0542DC-4CAC-46D1-B3AE-B46142102E05} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9F0542DC-4CAC-46D1-B3AE-B46142102E05} => key removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-JUBILATIONLEE => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-JUBILATIONLEE => key removed successfully
"C:\PROGRA~3\5425cc40\5db51df1.dll" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2646E7F-E4FB-484E-8D56-0CBAD732D987} => key not found.
C:\Windows\System32\Tasks\{B090F4BA-F7EE-D581-AB53-A0968CD5592C} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B090F4BA-F7EE-D581-AB53-A0968CD5592C} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A92CEDC5-36EF-4F99-8375-1AF843A74FDB} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A92CEDC5-36EF-4F99-8375-1AF843A74FDB} => key removed successfully
C:\Windows\System32\Tasks\{7C3153F6-535A-4FF2-9620-8FD97AC11C04} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7C3153F6-535A-4FF2-9620-8FD97AC11C04} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AB4ED7EB-044A-44A8-9FEF-926379475267} => key not found.
C:\Windows\System32\Tasks\{8162E81A-36C9-5FB1-187B-AFB590F28574} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8162E81A-36C9-5FB1-187B-AFB590F28574} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AD45ED20-9FD9-4976-A48E-C0BF778CAE46} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD45ED20-9FD9-4976-A48E-C0BF778CAE46} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B403C2F3-6D3C-4A60-AEDF-1A86DA478FEC} => key not found.
C:\Windows\System32\Tasks\{B3E4284D-044F-9FE6-A413-2C6822CA3344} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B3E4284D-044F-9FE6-A413-2C6822CA3344} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BC1423F5-43EB-4C31-BCC2-61211A1292FB} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC1423F5-43EB-4C31-BCC2-61211A1292FB} => key removed successfully
C:\Windows\System32\Tasks\{A9264E4C-6252-4221-A1B6-81EEDCE3F0D8} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A9264E4C-6252-4221-A1B6-81EEDCE3F0D8} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BD3FCCA8-20D4-4E46-AF4D-240965DA8563} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BD3FCCA8-20D4-4E46-AF4D-240965DA8563} => key removed successfully
C:\Windows\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Scan the system => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BFE6C894-ED20-4674-8B24-19AF8F85BC08} => key not found.
C:\Windows\System32\Tasks\{C166A24E-76CD-15E5-42A8-814FD7673AD0} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C166A24E-76CD-15E5-42A8-814FD7673AD0} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C32F9E53-FC8C-49C5-846B-03F17EC02863} => key not found.
C:\Windows\System32\Tasks\{300F7ED6-87A4-C97D-8F74-EFFFB0BC246E} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{300F7ED6-87A4-C97D-8F74-EFFFB0BC246E} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C3BA7914-1BD9-456D-ABCD-BE5AD4D2BE9F} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C3BA7914-1BD9-456D-ABCD-BE5AD4D2BE9F} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CFED50A2-EF68-4A63-BC7E-DE1BEF0D11F2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CFED50A2-EF68-4A63-BC7E-DE1BEF0D11F2} => key removed successfully
C:\Windows\System32\Tasks\{1F9200B8-059F-472F-BCFD-F11410906C77} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1F9200B8-059F-472F-BCFD-F11410906C77} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5AEDA6F-CF13-4595-BA45-8EE6C95BFD95} => key not found.
C:\Windows\System32\Tasks\Uninstaller_SkipUac_Julie => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Julie => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D6095DF2-A69D-45D3-BA09-575F2C30C6D8} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D6095DF2-A69D-45D3-BA09-575F2C30C6D8} => key removed successfully
C:\Windows\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Check for updates => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D6A47C89-B6D1-49EF-958D-4DEE22B5CA0C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D6A47C89-B6D1-49EF-958D-4DEE22B5CA0C} => key removed successfully
C:\Windows\System32\Tasks\{31800488-493B-4A09-BDAE-0AB8E3FD3532} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{31800488-493B-4A09-BDAE-0AB8E3FD3532} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D92F3FB9-3F08-40DF-BAEF-0173782984F4} => key not found.
C:\Windows\System32\Tasks\{30E34557-8748-F2FC-7374-DDFD321F2182} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{30E34557-8748-F2FC-7374-DDFD321F2182} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D9C10825-C4CF-4C7A-A94D-F1BF022A11F1} => key not found.
C:\Windows\System32\Tasks\{0BBF794A-BC14-CEE1-C0D8-13E64010A609} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0BBF794A-BC14-CEE1-C0D8-13E64010A609} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DC80B6F6-CCF9-40E1-94A8-73CB8D0BE0E0} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC80B6F6-CCF9-40E1-94A8-73CB8D0BE0E0} => key removed successfully
C:\Windows\System32\Tasks\{FE25CCC7-71A5-4721-92B8-3998CD7A9324} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FE25CCC7-71A5-4721-92B8-3998CD7A9324} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DCA94F61-1916-4C71-9763-049B7B3587C2} => key not found.
C:\Windows\System32\Tasks\{30236CF7-8788-DB5C-1FA6-92583FF92472} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{30236CF7-8788-DB5C-1FA6-92583FF92472} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DDD7897D-F61E-4F8C-811A-FF8A4467CDB2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDD7897D-F61E-4F8C-811A-FF8A4467CDB2} => key removed successfully
C:\Windows\System32\Tasks\Apple\AppleSoftwareUpdate => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Apple\AppleSoftwareUpdate => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EEEEBCCD-38A6-4727-A0C5-E7A9F2C248D3} => key not found.
C:\Windows\System32\Tasks\{9868813B-2FC3-3690-3EB3-AC4462C442EB} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9868813B-2FC3-3690-3EB3-AC4462C442EB} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EF5D8D53-F871-450C-8047-42CC0920F5A2} => key not found.
C:\Windows\System32\Tasks\{E702521E-FD6F-4F91-B963-A4971D6AD3AD} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E702521E-FD6F-4F91-B963-A4971D6AD3AD} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F300A44E-5098-482E-AC29-3F1208BD66FE} => key not found.
C:\Windows\System32\Tasks\{CF41AB61-78EA-1CCA-564C-BFD5F7C2F835} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CF41AB61-78EA-1CCA-564C-BFD5F7C2F835} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6F69977-CEE6-41E9-A226-EF08B76A3575} => key not found.
C:\Windows\System32\Tasks\{416B323D-F6C0-8596-55E5-0AE35E3F5048} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{416B323D-F6C0-8596-55E5-0AE35E3F5048} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F74578F6-01AD-460C-BBCD-2628CED97712} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F74578F6-01AD-460C-BBCD-2628CED97712} => key removed successfully
C:\Windows\System32\Tasks\{50269BB5-E78D-2C1E-2EDF-3FA12C35228D} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{50269BB5-E78D-2C1E-2EDF-3FA12C35228D} => key removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => key removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\MCODS => key removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => key removed successfully
C:\Program Files (x86)\IObit\IObit Malware Fighter => moved successfully
"C:\Program Files (x86)\IObit\Advanced SystemCare" => not found.
"C:\Program Files (x86)\QuickTime" => not found.
C:\Windows\system32\CompatTelRunner.exe => moved successfully
C:\Program Files\Common Files\AV\Spybot - Search and Destroy => moved successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2A46123B-37C7-4667-B2C4-F927D8472EC9}E:\torrent\utorrentportable\app\utorrent\utorrent.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EA25E867-5FD9-4B93-AF27-26A773DF0FBB}E:\torrent\utorrentportable\app\utorrent\utorrent.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{593E3D76-5B56-4A8F-8D29-7114A53DDE3B} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3D3FB187-A296-4584-AA76-C1019CBEEAF6} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe => value removed successfully
"C:\Program Files (x86)\Itibiti Soft Phone" => not found.
"C:\ProgramData\Spybot - Search & Destroy 2" => not found.
C:\ProgramData\McAfee => moved successfully
C:\Windows\System32\config\systemprofile\AppData\Roaming\McAfee => moved successfully
"C:\Windows\Logs\Gwx" => not found.
C:\Windows\System32\winevt\Logs\Microsoft-Windows-GWX-Ins%4Operational.evtx => moved successfully
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => not found.
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => not found.
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => not found.
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => not found.
C:\Users\Julie\AppData\Local\GWX => moved successfully
"C:\Windows\System32\GWX" => not found.
"C:\Windows\SysWOW64\GWX" => not found.
C:\WINDOWS\system32\Drivers\etc\hosts => moved successfully

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-658284135-3662055118-2884648652-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


========= End of RemoveProxy: =========

Hosts restored successfully.

========= sc stop DiagTrack =========


SERVICE_NAME: DiagTrack
        TYPE               : 10  WIN32_OWN_PROCESS  
        STATE              : 3  STOP_PENDING
                                (STOPPABLE, NOT_PAUSABLE, ACCEPTS_PRESHUTDOWN)
        WIN32_EXIT_CODE    : 0  (0x0)
        SERVICE_EXIT_CODE  : 0  (0x0)
        CHECKPOINT         : 0x2
        WAIT_HINT          : 0x0

========= End of CMD: =========


========= sc delete DiagTrack =========

[SC] DeleteService SUCCESS

========= End of CMD: =========


========= sc stop dmwappushservice =========

[SC] OpenService FAILED 1060:

The specified service does not exist as an installed service.


========= End of CMD: =========


========= sc delete dmwappushservice =========

[SC] OpenService FAILED 1060:

The specified service does not exist as an installed service.


========= End of CMD: =========


========= ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 5819309 B
Java, Flash, Steam htmlcache => 948 B
Windows/system/drivers => 104506 B
Edge => 0 B
Chrome => 0 B
Firefox => 377160911 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 692 B
LocalService => 0 B
NetworkService => 40990 B
Julie => 29690586 B
Mcx1-JUBILATIONLEE => 0 B
Mcx2-JUBILATIONLEE => 0 B

RecycleBin => 0 B
EmptyTemp: => 401.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:11:05 ====


Edited by FuchsiaIce, 27 January 2017 - 06:22 PM.

Fuchsia Ice

#5 Blindbatkid

Blindbatkid

  • Banned
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 27 January 2017 - 08:27 PM

Please download MiniToolBox and save it to your desktop. Run the program by right clicking on it and selecting Run as administrator. When the program opens select the following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP Configuration
List Winsock Entries
List last 10 Event Viewer Errors
List Installed Programs
List Devices (Only Problems)
List Users, Partitions and Memory size


Please post the log in your next reply clear.png



#6 FuchsiaIce

FuchsiaIce
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:New Orleans, LA
  • Local time:03:51 PM

Posted 29 January 2017 - 09:35 PM

Here is the MiniToolBox log:

 

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Julie (administrator) on 29-01-2017 at 20:32:01
Running from "C:\Users\Julie\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: ACRPRDCT Manufacturer: Acer
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)
Broadcom 802.11n Network Adapter = Wireless Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : JubilationLee
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : attlocal.net

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 78-E4-00-F1-8E-49
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : 78-E4-00-F1-8E-49
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : attlocal.net
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : 88-AE-1D-61-15-11
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, January 27, 2017 4:49:59 PM
   Lease Expires . . . . . . . . . . : Monday, January 30, 2017 5:04:59 PM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
Server:  homeportal
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4002:806::200e
      74.125.196.139
      74.125.196.138
      74.125.196.113
      74.125.196.100
      74.125.196.101
      74.125.196.102


Pinging google.com [216.58.218.14] with 32 bytes of data:
Reply from 216.58.218.14: bytes=32 time=30ms TTL=54
Reply from 216.58.218.14: bytes=32 time=31ms TTL=54

Ping statistics for 216.58.218.14:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 30ms, Maximum = 31ms, Average = 30ms
Server:  homeportal
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
      2001:4998:c:a06::2:4008
      2001:4998:44:204::a7
      98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=89ms TTL=45
Reply from 206.190.36.45: bytes=32 time=89ms TTL=45

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 89ms, Maximum = 89ms, Average = 89ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...78 e4 00 f1 8e 49 ......Microsoft Virtual WiFi Miniport Adapter
 14...78 e4 00 f1 8e 49 ......Broadcom 802.11n Network Adapter
 10...88 ae 1d 61 15 11 ......Broadcom NetLink ™ Gigabit Ethernet
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.65     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.65    266
     192.168.1.65  255.255.255.255         On-link      192.168.1.65    266
    192.168.1.255  255.255.255.255         On-link      192.168.1.65    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.65    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.65    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  1    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/29/2017 03:05:53 AM) (Source: Application Error) (User: )
Description: Faulting application name: wmprph.exe, version: 12.0.7600.16385, time stamp: 0x4a5bd018
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000000000000000
Faulting process id: 0x1180
Faulting application start time: 0xwmprph.exe0
Faulting application path: wmprph.exe1
Faulting module path: wmprph.exe2
Report Id: wmprph.exe3

Error: (01/27/2017 03:56:19 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.23537, time stamp: 0x57c44efe
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0x40000015
Fault offset: 0x000000000002a84e
Faulting process id: 0xdd4
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (01/27/2017 03:55:19 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.23537, time stamp: 0x57c44efe
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0x40000015
Fault offset: 0x000000000002a84e
Faulting process id: 0x908
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (01/27/2017 03:24:57 PM) (Source: Application Hang) (User: )
Description: The program osk.exe version 6.1.7601.18512 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1234

Start Time: 01d278e3b3152915

Termination Time: 0

Application Path: C:\Windows\System32\osk.exe

Report Id: ff90e7cd-e4d6-11e6-b64e-88ae1d611511

Error: (01/27/2017 03:05:19 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {3509e77f-048f-4790-9c65-c72912a90e1c}

Error: (01/22/2017 01:26:17 AM) (Source: Application Error) (User: )
Description: Faulting application name: wmprph.exe, version: 12.0.7600.16385, time stamp: 0x4a5bd018
Faulting module name: ntdll.dll, version: 6.1.7601.23572, time stamp: 0x57fd0651
Exception code: 0xc0000005
Fault offset: 0x0000000000048f24
Faulting process id: 0xcfc
Faulting application start time: 0xwmprph.exe0
Faulting application path: wmprph.exe1
Faulting module path: wmprph.exe2
Report Id: wmprph.exe3

Error: (01/20/2017 04:04:07 AM) (Source: Application Error) (User: )
Description: Faulting application name: wmprph.exe, version: 12.0.7600.16385, time stamp: 0x4a5bd018
Faulting module name: ntdll.dll, version: 6.1.7601.23572, time stamp: 0x57fd0651
Exception code: 0xc0000005
Fault offset: 0x0000000000048f24
Faulting process id: 0x9f8
Faulting application start time: 0xwmprph.exe0
Faulting application path: wmprph.exe1
Faulting module path: wmprph.exe2
Report Id: wmprph.exe3

Error: (01/16/2017 03:35:12 AM) (Source: Application Error) (User: )
Description: Faulting application name: CompatTelRunner.exe, version: 10.0.14913.1002, time stamp: 0x57d1070d
Faulting module name: devinv.dll, version: 10.0.14913.1002, time stamp: 0x57d10950
Exception code: 0xc0000005
Fault offset: 0x0000000000023c00
Faulting process id: 0x16e4
Faulting application start time: 0xCompatTelRunner.exe0
Faulting application path: CompatTelRunner.exe1
Faulting module path: CompatTelRunner.exe2
Report Id: CompatTelRunner.exe3

Error: (01/10/2017 08:35:20 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.23537, time stamp: 0x57c44efe
Faulting module name: ntdll.dll, version: 6.1.7601.23572, time stamp: 0x57fd0651
Exception code: 0xc0000374
Fault offset: 0x00000000000bf3e2
Faulting process id: 0xa9c
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (12/31/2016 06:33:02 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3"1".
Dependent Assembly Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (01/27/2017 04:39:14 PM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (01/27/2017 04:36:14 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (01/27/2017 04:31:13 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (01/27/2017 04:12:34 PM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (01/27/2017 04:09:29 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (01/27/2017 03:48:05 PM) (Source: DCOM) (User: )
Description: C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\10\INTEL3~1\IDriver.exe -Embedding740{9C0BA3C1-2B67-45EB-BF69-BED9658D28D2}

Error: (01/27/2017 03:46:28 PM) (Source: Service Control Manager) (User: )
Description: The NTI IScheduleSvc service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/27/2017 03:31:41 PM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (01/27/2017 03:29:26 PM) (Source: Service Control Manager) (User: )
Description: The WD Backup service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.


Error: (01/27/2017 03:29:26 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the WD Backup service to connect.


Microsoft Office Sessions:
=========================
Error: (01/29/2017 03:05:53 AM) (Source: Application Error)(User: )
Description: wmprph.exe12.0.7600.163854a5bd018unknown0.0.0.000000000c00000050000000000000000118001d27935c2d7b2a1C:\Program Files\Windows Media Player\wmprph.exeunknown226094ea-e602-11e6-8813-88ae1d611511

Error: (01/27/2017 03:56:19 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.2353757c44efemsvcrt.dll7.0.7601.177444eeb033f40000015000000000002a84edd401d278e8115e5ba3C:\Windows\Explorer.EXEC:\Windows\system32\msvcrt.dll6ecbabb2-e4db-11e6-ba0e-88ae1d611511

Error: (01/27/2017 03:55:19 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.2353757c44efemsvcrt.dll7.0.7601.177444eeb033f40000015000000000002a84e90801d278e458005b0eC:\Windows\Explorer.EXEC:\Windows\system32\msvcrt.dll4aec64eb-e4db-11e6-ba0e-88ae1d611511

Error: (01/27/2017 03:24:57 PM) (Source: Application Hang)(User: )
Description: osk.exe6.1.7601.18512123401d278e3b31529150C:\Windows\System32\osk.exeff90e7cd-e4d6-11e6-b64e-88ae1d611511

Error: (01/27/2017 03:05:19 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {3509e77f-048f-4790-9c65-c72912a90e1c}

Error: (01/22/2017 01:26:17 AM) (Source: Application Error)(User: )
Description: wmprph.exe12.0.7600.163854a5bd018ntdll.dll6.1.7601.2357257fd0651c00000050000000000048f24cfc01d27480cc3b1603C:\Program Files\Windows Media Player\wmprph.exeC:\Windows\SYSTEM32\ntdll.dll0f6d9244-e074-11e6-8327-88ae1d611511

Error: (01/20/2017 04:04:07 AM) (Source: Application Error)(User: )
Description: wmprph.exe12.0.7600.163854a5bd018ntdll.dll6.1.7601.2357257fd0651c00000050000000000048f249f801d27304805057a7C:\Program Files\Windows Media Player\wmprph.exeC:\Windows\SYSTEM32\ntdll.dllc732c878-def7-11e6-8ac9-88ae1d611511

Error: (01/16/2017 03:35:12 AM) (Source: Application Error)(User: )
Description: CompatTelRunner.exe10.0.14913.100257d1070ddevinv.dll10.0.14913.100257d10950c00000050000000000023c0016e401d26fd7e3e92e7aC:\Windows\system32\CompatTelRunner.exeC:\Windows\system32\devinv.dll13d8c7b2-dbcf-11e6-8ac9-88ae1d611511

Error: (01/10/2017 08:35:20 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.2353757c44efentdll.dll6.1.7601.2357257fd0651c000037400000000000bf3e2a9c01d26bb2a3f0e85eC:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll97e26ea2-d7a6-11e6-97ef-88ae1d611511

Error: (12/31/2016 06:33:02 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Networking.RtcDll,language="&#x2a;",processorArchitecture="X86",publicKeyToken="6595b64144ccf1df",type="win32",version="5.2.1002.3"C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe


CodeIntegrity Errors:
===================================
  Date: 2014-11-16 19:16:29.492
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:16:29.414
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:15:42.436
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:15:42.358
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:13:42.062
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:13:41.906
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:08:16.781
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:08:16.719
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:06:28.166
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-16 19:06:28.103
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

1.3M WebCam (HKLM-x32\...\{FC9B811E-39BC-4813-9E29-B83CCF700010}) (Version: 2.103.13.11 - ALi)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.023.20056 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Flash Player 24 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 (HKLM-x32\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
AIM 7 (HKLM-x32\...\AIM_7) (Version:  - )
AllDup 3.4.24 (HKLM-x32\...\AllDup_is1) (Version: 3.4.24 - Michael Thummerer Software Design)
AMD Catalyst Install Manager (HKLM\...\{15667DA1-6D17-DD0F-66D7-4221FD246DA8}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
Any Audio Converter 5.9.2 (HKLM-x32\...\Any Audio Converter_is1) (Version:  - Any-Audio-Converter.com)
Any Video Converter 5.7.5 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (32-bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Belarc Advisor 8.2 (HKLM-x32\...\Belarc Advisor) (Version: 8.2.6.0 - Belarc Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Box Sync (64 bit) (HKLM\...\{B6E694C7-23C3-4A84-B2F6-BDBFAF5C85A4}) (Version: 3.4.20.0 - Box, Inc)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
ComicRack v0.9.134 (HKLM\...\ComicRack) (Version: v0.9.134 - cYo Soft)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3216.50 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Data Lifeguard Diagnostic for Windows 1.24 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version:  - Western Digital Corporation)
DirectVobSub 2.41.7036 (HKLM-x32\...\vsfilter_is1) (Version: 2.41.7036 - MPC-HC Team)
Dropbox (HKCU\...\Dropbox) (Version: 18.4.32 - Dropbox, Inc.)
Epson CreativeZone (HKLM-x32\...\{E6C82F8F-2031-4825-8CC3-98C5960875C1}) (Version:  - )
Epson Easy Photo Print 2 (HKLM-x32\...\{39F58DDB-B2B8-4B86-AF20-4706A80EB30D}) (Version: 2.2.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{03B8AA32-F23C-4178-B8E6-09ECD07EAA47}) (Version: 2.40.0001 - SEIKO EPSON CORPORATION)
EPSON NX420 Series Printer Uninstall (HKLM\...\EPSON NX420 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4i - SEIKO EPSON CORPORATION)
EpsonNet Setup 3.2 (HKLM-x32\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.2a - SEIKO EPSON CORPORATION)
Eye Candy 4000 (HKLM-x32\...\Eye Candy 4000) (Version:  - )
ffdshow [rev 2527] [2008-12-19] (HKLM-x32\...\ffdshow_is1) (Version: 1.0 - )
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 1.3.99.311 - Foxit Corporation)
gbText (HKLM-x32\...\gbText) (Version:  - )
GetFoldersize 3.0.0 (HKLM-x32\...\GetFoldersize_is1) (Version: 3.0.0 - Michael Thummerer Software Design)
G-Force (HKLM-x32\...\G-Force) (Version: 4.1.3 - SoundSpectrum)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.32.7 - Google Inc.)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.17.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.69.5 - HTC)
HydraVision (HKLM-x32\...\{7779F680-1E60-A6FD-5C47-5D427EA07806}) (Version: 4.2.234.0 - Advanced Micro Devices, Inc.) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.1.126 - IObit)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 7.0.0 (Standard) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.0.0 - )
Launch Manager (HKLM-x32\...\LManager) (Version: 4.0.7 - Acer Inc.)
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Word 2000 (HKLM-x32\...\{00170409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Modio (HKLM-x32\...\{3DA224A5-666B-4941-8998-2F19C6D126A5}_is1) (Version:  - GameTuts)
Modio Plugin (HKLM-x32\...\{42386339-30AC-45F4-8D06-995047C18A13}_is1) (Version:  - GameTuts)
Mozilla Firefox 51.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 en-US)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
MPC-HC 1.7.10 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.10 - MPC-HC Team)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (HKLM-x32\...\{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}) (Version: 3.1.206.0 - Egis Technology Inc.) Hidden
Next Generation Visualisations (HKLM-x32\...\{2E376AD9-5C49-4F7D-A0BA-6A44E8FA5A3B}) (Version: 1.0.0 -  Microsoft)
NTI Backup Now 5 (HKLM-x32\...\{B5577A8D-500A-4972-ADC4-E813C94FC510}) (Version: 5.5.0.116 - NewTech Infosystems, Inc.) Hidden
NTI Backup Now 5.5 (HKLM-x32\...\InstallShield_{B5577A8D-500A-4972-ADC4-E813C94FC510}) (Version: 5.5.0.116 - NewTech Infosystems, Inc.)
NTI Media Maker 8 (HKLM-x32\...\{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6630 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM-x32\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6630 - NewTech Infosystems)
NTI Open File Manager (HKLM-x32\...\NTI Open File Manager) (Version:  - NewTech Infosystems, Inc.)
Paint Shop Pro 7 Try And Buy (HKLM-x32\...\{D6DE02C7-1F47-11D4-9515-00105AE4B89A}) (Version: 7.0.4.0000 - Jasc Software Inc)
PFPortChecker 1.0.39 (HKLM-x32\...\PFPortChecker) (Version: 1.0.39 - Portforward.com)
Philips Media Converter (HKLM-x32\...\{158E1414-F085-4292-B6C7-A04281BEA031}) (Version: 1.02 - Philips)
Philips Media Converter (HKLM-x32\...\{6801ABDC-5A3C-4B4A-AE26-077CBA3FB704}) (Version: 1.02 - Philips) Hidden
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version:  - )
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6650 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30113 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Sansa Updater (HKCU\...\Sansa Updater) (Version: 1.301 - SanDisk Corporation)
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 1.0.29.90.g200ff544 - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)
System Requirements Lab for Intel (HKLM-x32\...\{C5DA59CF-2BB8-48D5-8E5B-17F2E0F0FEE4}) (Version: 4.5.5.0 - Husdawg, LLC)
UHS Reader (Version 4.6) (HKLM-x32\...\UHS Reader (Version 4.6)) (Version: 4.60 - Universal Hint System)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version:  - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WD Drive Utilities (HKLM-x32\...\{72E40002-8CEC-47C1-A099-83AC8E173BF0}) (Version: 1.0.3.3 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{1B08B793-BB08-4643-9914-5E090743B174}) (Version: 2.1.0.11 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{83270912-15C7-4336-822E-E8F1B1BBCA60}) (Version: 1.0.3.3 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{EC54143B-24CC-47D2-AB39-0F5701988BA4}) (Version: 2.1.0.11 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{b562e350-d8f0-4ff8-aa59-2c5fb99952e2}) (Version: 2.1.0.11 - Western Digital Technologies, Inc.)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.01.3002 - Acer Incorporated)
Wi-Fi Inspector  (HKLM-x32\...\{82CCF394-4A62-4CAC-9047-DC3CC9EF961D}) (Version: 1.0.0 - Xirrus)
WildTangent Games App (Acer Games) (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.0.5.31 - WildTangent)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/11/2009 2.0.0010.00002) (HKLM\...\B81055EA372C9E3EA5000B4BD9585D992D51F1DE) (Version: 08/11/2009 2.0.0010.00002 - Google, Inc.)
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM  (01/19/2011 1.0.0009.0) (HKLM\...\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20) (Version: 01/19/2011 1.0.0009.0 - Western Digital Technologies)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
WinZip 16.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CD}) (Version: 16.0.9715 - WinZip Computing, S.L. )

========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 2810.9 MB
Available physical RAM: 1585.57 MB
Total Virtual: 5619.98 MB
Available Virtual: 3862.91 MB

========================= Partitions: =====================================

1 Drive c: (JubilationLee1) (Fixed) (Total:218.78 GB) (Free:52.33 GB) NTFS
3 Drive f: (Pixie) (Fixed) (Total:931.48 GB) (Free:267.57 GB) NTFS

========================= Users: ========================================

User accounts for \\JUBILATIONLEE

Administrator            Guest                    Julie                    
Mcx1-JUBILATIONLEE       Mcx2-JUBILATIONLEE       


**** End of log ****


Fuchsia Ice

#7 Blindbatkid

Blindbatkid

  • Banned
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 29 January 2017 - 09:56 PM

Update your old programs.

Use the free and effective Patch My PC

Uninstall useless programs or programs that you are not using.
Geek Uninstaller is great for doing this.


Start Up Configuration.
 

  1. Download Whats In StartUp -- By Nirsoft.
  2. If you are unsure what version to get, then Check Here.
  3. Unzip the program to your desktop.
  4. Right click and run as admin.
  5. To disable an item right click on it and select Disable Selected Item.
  6. Then disable all of your startups except the following.

  •  
  • Your antivirus.
  • Third Party Firewall.
  • Gaming Mouse.
  • Wireless Keyboards.
  • Any back up software such as carbonite.

  1. Disable the scheduled task on your machine as well.
  2. Download Scheduled Task Viewer.
  3. Unzip to your desktop. -- Run as admin.
  4. Go to options and make sure they are set like the pic below.
  5. Then disable all task, unless they are related to Windows Defender or your antivirus.

p8y2jZh.png



Temp File Cleaner.



  • Note: This program may very well reboot your machine. Save any work prior to running.
  • Clean up your temp files with TFC.exe
  • Save it to your desktop.
  • Right click run as admin.
  • Please post all requested logs and tell me how things are running.


#8 FuchsiaIce

FuchsiaIce
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:New Orleans, LA
  • Local time:03:51 PM

Posted 06 February 2017 - 11:32 PM

Sorry it took me so long to get back to this thread, was away longer than I'd planned.

 

Still no wireless connection and the only log generated was for the Patch My PC, which I will include at the end of this post.  Question, now that I've done the above and disabled all startups (I really didn't have that many things that start with my Windows, I try to keep that clean) and Scheduled Tasks how do I get those back and do I need to?  Also, just out of curiosity I opened msconfig and looked at my startups after running the What's in My Startup and rebooting.  All things are still checked as enabled there but now the Manufacturer column reads Unknown for them where it didn't before.

 

Here is the Patch My PC log:

 

Patch My PC 3.0.4.1 | Definitions: 06-February-2017 | Started 2/6/2017 7:38:41 PM
Operating System: Microsoft Windows 7 Home Premium  x64

Verifying Java 8 x86 Uninstall Download URL And Size
Successfully Verified Java 8 x86 Uninstall Download URL And Size
Downloading Java 8 x86 Uninstall (0 MB)
Java 8 x86 Uninstall Downloaded Successfully
Installing Java 8 x86 Uninstall Please Wait
Install Complete Exit Code 0


This update requires Firefox To be closed. Please close Firefox And update process will begin.

Verifying Java 8 x86 Download URL And Size
Successfully Verified Java 8 x86 Download URL And Size
Downloading Java 8 x86 (53.81 MB)
Java 8 x86 Downloaded Successfully
Installing Java 8 x86 Please Wait
Install Complete Exit Code 0

Verifying iTunes x64 Download URL And Size
Successfully Verified iTunes x64 Download URL And Size
Downloading iTunes x64 (161.39 MB)
iTunes x64 Downloaded Successfully
Installing iTunes x64 Please Wait
Install Complete Exit Code 0

Verifying CCleaner Download URL And Size
Successfully Verified CCleaner Download URL And Size
Downloading CCleaner (8.41 MB)
CCleaner Downloaded Successfully
Installing CCleaner Please Wait
Install Complete Exit Code 0

Verifying WinRAR x64 Download URL And Size
Successfully Verified WinRAR x64 Download URL And Size
Downloading WinRAR x64 (2.08 MB)
WinRAR x64 Downloaded Successfully
Installing WinRAR x64 Please Wait
Install Complete Exit Code 0

Verifying Skype Download URL And Size
Successfully Verified Skype Download URL And Size
Downloading Skype (41.94 MB)
Skype Downloaded Successfully
Installing Skype Please Wait
Install Complete Exit Code 0


PATCH MY PC UPDATE COMPLETE 2/6/2017 7:55:35 PM


Fuchsia Ice

#9 Blindbatkid

Blindbatkid

  • Banned
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 07 February 2017 - 12:34 AM

Full Virus Scan AVZ

Download AVZ Create a new folder on your desktop and unzip it inside of the new folder.
Right click on AVZ Run as Admin.
Update the program by pressing the rrYeoht.png button.
Make sure all settings are the same in the pic below.

j0QfHnG.png

Next:
Under File Types Make sure the settings are the same as below.

9EC93k9.png

Next:
Under Search Parameters Make sure the settings are the same as below.

3SIF8I1.png

Now click the Start Button.

OLGG3jW.png

When the scan is complete then click on Save Log.

wnWcsaI.png

Save the log to the desktop -- Copy it and paste it here in your next reply.

 

Also, run a scan with Zemana Antimalware


Edited by Blindbatkid, 07 February 2017 - 03:30 AM.


#10 FuchsiaIce

FuchsiaIce
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:New Orleans, LA
  • Local time:03:51 PM

Posted 08 February 2017 - 07:20 PM

I just want to thank you again for all the time and effort you have put into helping me.  :-)

 

Here is the AVZ log:

 

AVZ Antiviral Toolkit log; AVZ version is 4.46
Scanning started at 07.02.2017 19:51:00
Database loaded: signatures - 297569, NN profile(s) - 2, malware removal microprograms - 56, signature database released 08.02.2017 04:00
Heuristic microprograms loaded: 409
PVS microprograms loaded: 10
Digital signatures of system files loaded: 854646
Heuristic analyzer mode: Maximum heuristics mode
Malware removal mode: enabled
Windows version is: 6.1.7601, Service Pack 1 "Windows 7 Home Premium", install date 11.01.2011 15:24:10 ; AVZ is run with administrator rights (+)
System Restore: enabled
1. Searching for Rootkits and other software intercepting API functions
1.1 Searching for user-mode API hooks
 Analysis: kernel32.dll, export table found in section .text
 Analysis: ntdll.dll, export table found in section .text
 Analysis: user32.dll, export table found in section .text
 Analysis: advapi32.dll, export table found in section .text
 Analysis: ws2_32.dll, export table found in section .text
 Analysis: wininet.dll, export table found in section .text
 Analysis: rasapi32.dll, export table found in section .text
 Analysis: urlmon.dll, export table found in section .text
 Analysis: netapi32.dll, export table found in section .text
1.4 Searching for masking processes and drivers
 Checking not performed: extended monitoring driver (AVZPM) is not installed
2. Scanning RAM
 Number of processes found: 18
Extended process analysis: 1876 C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
[ES]:Program code includes networking-related functionality
[ES]:Listens on TCP ports !
[ES]:Application has no visible windows
Extended process analysis: 2172 C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
[ES]:Program code includes networking-related functionality
[ES]:Listens on TCP ports !
[ES]:Application has no visible windows
Extended process analysis: 2236 C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
[ES]:Program code includes networking-related functionality
[ES]:Application has no visible windows
[ES]:Loads RASAPI DLL - may use dialing ?
 Number of modules loaded: 324
Scanning RAM - complete
3. Scanning disks
Direct reading: C:\ProgramData\HTC\HTC MediaHub\_mediaclient_temp.tmp
4. Checking  Winsock Layered Service Provider (SPI/LSP)
 LSP settings checked. No errors detected
5. Searching for keyboard/mouse/windows events hooks (Keyloggers, Trojan DLLs)
6. Searching for opened TCP/UDP ports used by malicious software
 In the database 317 port descriptions
 Opened at this PC: 38 TCP ports and 30 UDP ports
 Checking - complete; no suspicious ports detected
7. Heuristic system check
Found a call command line interpreter in startup [DR=3] HKLM\Software\Microsoft\Windows\CurrentVersion\Run\AMD AVT = [:Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml]
Checking - complete
8. Searching for vulnerabilities
>> Services: potentially dangerous service allowed: TermService (Remote Desktop Services)
>> Services: potentially dangerous service allowed: SSDPSRV (SSDP Discovery)
>> Services: potentially dangerous service allowed: Schedule (Task Scheduler)
> Services: please bear in mind that the set of services depends on the use of the PC (home PC, office PC connected to corporate network, etc)!
>> Security: disk drives' autorun is enabled
>> Security: administrative shares (C$, D$ ...) are enabled
>> Security: anonymous user access is enabled
>> Security: sending Remote Assistant queries is enabled
Checking - complete
9. Troubleshooting wizard
 >>  Abnormal REG files association
[malware removal microprogram]> registry key created HKEY_CLASSES_ROOT\.reg
[malware removal microprogram]> parameter changed  of key HKEY_CLASSES_ROOT\.reg
[malware removal microprogram]> registry key created HKEY_CLASSES_ROOT\regfile\shell\open\command
[malware removal microprogram]> parameter changed  of key HKEY_CLASSES_ROOT\regfile\shell\open\command
[malware removal microprogram]> parameter changed  of key HKEY_CLASSES_ROOT\regfile\shell\edit\command
 >>>  Abnormal REG files association - fixed
 >>  Process termination timeout is out of admissible values
[malware removal microprogram]> parameter changed WaitToKillAppTimeout of key HKEY_CURRENT_USER\Control Panel\Desktop
 >>>  Process termination timeout is out of admissible values - fixed
 >>  HDD autorun is allowed
[malware removal microprogram]> parameter changed NoDriveTypeAutoRun of key HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
 >>>  HDD autorun is allowed - fixed
 >>  Network drives autorun is allowed
[malware removal microprogram]> parameter changed NoDriveTypeAutoRun of key HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
 >>>  Network drives autorun is allowed - fixed
 >>  Removable media autorun is allowed
[malware removal microprogram]> parameter changed NoDriveTypeAutoRun of key HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
 >>>  Removable media autorun is allowed - fixed
Checking - complete
Files scanned: 142016, extracted from archives: 79627, malicious software found 0, suspicions - 0
Scanning finished at 07.02.2017 21:15:16
Time of scanning: 01:24:18
If you have a suspicion on presence of viruses or questions on the suspected objects,
you can address http://forum.kaspersky.com/index.php?showforum=19
For automatic scanning of files from the AVZ quarantine you can use the service http://virusdetector.ru/

 

And the Zemana log:

 

Zemana AntiMalware 2.72.2.101 (Installed)

-------------------------------------------------------
Scan Result            : Completed
Scan Date              : 2017/2/7
Operating System       : Windows 7 64-bit
Processor              : 1X AMD V120 Processor
BIOS Mode              : Legacy
CUID                   : 12C3374A23FE9FA5EA534C
Scan Type              : System Scan
Duration               : 23m 47s
Scanned Objects        : 116948
Detected Objects       : 3
Excluded Objects       : 0
Read Level             : SCSI
Auto Upload            : Enabled
Detect All Extensions  : Disabled
Scan Documents         : Disabled
Domain Info            : WORKGROUP,0,2

Detected Objects
-------------------------------------------------------

couponprinter_x64.ocx
Status             : Scanned
Object             : %systemroot%\couponprinter_x64.ocx
MD5                : 019137D1A850CA0C74F566CC0C36D44E
Publisher          : Coupons, Inc.
Size               : 659440
Version            : 5.0.2.3
Detection          : Adware:Win32/Coupons!Ep
Cleaning Action    : Quarantine
Related Objects    :
                File - %systemroot%\couponprinter_x64.ocx
                Registry Entry - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1A53AD8B-D0B9-4E7F-88E4-50C07A65F2DC}\@ = C:\Windows\COUPON~2.OCX
                Registry Entry - HKLM\SOFTWARE\Classes\CLSID\{1A53AD8B-D0B9-4E7F-88E4-50C07A65F2DC}\InprocServer32\@ = C:\Windows\COUPON~2.OCX
                Registry Entry - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A53AD8B-D0B9-4E7F-88E4-50C07A65F2DC}\@ = C:\Windows\COUPON~2.OCX

interstatnogui_357
Status             : Scanned
Object             : NE->c:\users\julie\appdata\local\crashrpt\unsentcrashreports\interstatnogui_357
MD5                : -
Publisher          : -
Size               : -
Version            : -
Detection          : Adware:Win32/InterStat.D!Neng
Cleaning Action    : Quarantine
Related Objects    :
                (null) - (null)

logs
Status             : Scanned
Object             : NE->c:\users\julie\appdata\local\crashrpt\unsentcrashreports\interstatnogui_357\logs
MD5                : -
Publisher          : -
Size               : -
Version            : -
Detection          : Adware:Win32/InterStat.D!Neng
Cleaning Action    : Quarantine
Related Objects    :
                (null) - (null)


Cleaning Result
-------------------------------------------------------
Cleaned               : 3
Reported as safe      : 0
Failed                : 0


Fuchsia Ice

#11 Blindbatkid

Blindbatkid

  • Banned
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 09 February 2017 - 07:23 PM

What issues remain?



#12 FuchsiaIce

FuchsiaIce
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:New Orleans, LA
  • Local time:03:51 PM

Posted 10 February 2017 - 01:17 AM

Still no wireless connection and in the msconfig startup all the startup items are still checked and still have "unknown" listed as the manufacturer.  I am flummoxed.


Fuchsia Ice




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users