Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible Hacking, Trojan, and Spyware (Using Tunnel Adapter isatap. & iSCSI?)


  • Please log in to reply
9 replies to this topic

#1 Hishima

Hishima

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:39 PM

Posted 09 August 2017 - 02:16 PM

Hello everybody,

 

Recently I have notice a sudden change in a computer I've brought about a year ago.  At first I did not take any notice but through time I've realized that somebody is using either hacking or spyware to see what work I have been doing over the computer. The symptoms that I've been seeing is a sudden decrease in Internet speeds and subtle changes around my computer that I have not made before. Other symptoms I've also seen is the flickering of the command prompt and the opening of links that I have opened without me using the mouse pad. The reason why I suspect that somebody is either hacking or using spyware is because I have bought two computers over the last year and have seen symptoms in both of these computers.

 

In comparing the two computers I have seen two main things:

1.) Tunnel Adapter isatap.

2.) iSCSI

 

In researching these two things I've come to realize that tunnel adapter isatap. usually deals with the router and internet connections so I have suspected that they are piggy backing through my IP address.

 

The other is the iSCSI Virtual Drive which I believe may be similar to a Virtual HDD to observe what may happen if a program is install and how it would affect the operating system. So it may be possible to run background tasks without me knowing what's going on.

 

If you can please help me everyone. I do not want to buy another computer because I have bought two expensive computers and the same  I want to figure out how to keep these intruders from piggy backing of my internet and operating system.

 

The programs I currently have is:

1.) MiniToolbox

2.)rkill

3.)FSS

4.)tdsskiller

5.)AdwCleaner

 

 

I will list the results of what the MiniToolbox and rkill. If there is any advice to help solve this problem. Please contact me through this forum. Thank you for your help.


Edited by hamluis, 09 August 2017 - 03:10 PM.
Moved from MRL to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 Hishima

Hishima
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:39 PM

Posted 09 August 2017 - 02:22 PM

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Ismael (administrator) on 09-08-2017 at 15:18:30
Running from "C:\Users\Ismael\Desktop\Maintain"
Microsoft Windows 10 Home  (X64)
Model: Inspiron 5577 Manufacturer: Dell Inc.
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
========================= IP Configuration: ================================

Intel® Dual Band Wireless-AC 3165 = Wi-Fi (Connected)
Realtek PCIe GBE Family Controller = Ethernet (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : DESKTOP-3JV6PII
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : F4-8E-38-F1-1A-34
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Local Area Connection* 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 3C-F8-62-BA-D9-99
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter #2
   Physical Address. . . . . . . . . : 3E-F8-62-BA-D9-98
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Dual Band Wireless-AC 3165
   Physical Address. . . . . . . . . : C6-B1-4F-70-E9-E2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::e599:cb2:4707:7780%3(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, August 9, 2017 2:06:03 PM
   Lease Expires . . . . . . . . . . : Wednesday, August 9, 2017 5:06:02 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 63353167
   DHCPv6 Client DUID. . . . . . . . : 00-03-00-01-C6-B1-4F-70-E9-E2
   DNS Servers . . . . . . . . . . . : 164.124.101.2
                                       203.248.252.2
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{9C612A6E-622B-424F-98EF-577182D5A0FD}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::3855:fbff:8b00:a551%9(Preferred)
   Default Gateway . . . . . . . . . :
   DHCPv6 IAID . . . . . . . . . . . : 436207616
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-20-6E-3F-3B-F4-8E-38-F1-1A-34
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{0ADC363B-BC10-40E9-8C99-479E9DCC5DDC}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  ns.dacom.co.kr
Address:  164.124.101.2

Name:    google.com
Addresses:  2404:6800:4005:800::200e
      172.217.24.206


Pinging google.com [216.58.199.14] with 32 bytes of data:
Reply from 216.58.199.14: bytes=32 time=56ms TTL=49
Reply from 216.58.199.14: bytes=32 time=66ms TTL=49

Ping statistics for 216.58.199.14:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 56ms, Maximum = 66ms, Average = 61ms
Server:  ns.dacom.co.kr
Address:  164.124.101.2

Name:    yahoo.com
Addresses:  2001:4998:c:a06::2:4008
      2001:4998:58:c02::a9
      2001:4998:44:204::a7
      206.190.36.45
      98.139.180.149
      98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=194ms TTL=48
Reply from 98.138.253.109: bytes=32 time=197ms TTL=48

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 194ms, Maximum = 197ms, Average = 195ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 19...f4 8e 38 f1 1a 34 ......Realtek PCIe GBE Family Controller
 18...3c f8 62 ba d9 99 ......Microsoft Wi-Fi Direct Virtual Adapter
 12...3e f8 62 ba d9 98 ......Microsoft Wi-Fi Direct Virtual Adapter #2
  3...c6 b1 4f 70 e9 e2 ......Intel® Dual Band Wireless-AC 3165
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
  9...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 52...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.3     50
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
      192.168.0.0    255.255.255.0         On-link       192.168.0.3    306
      192.168.0.3  255.255.255.255         On-link       192.168.0.3    306
    192.168.0.255  255.255.255.255         On-link       192.168.0.3    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link       192.168.0.3    306
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link       192.168.0.3    306
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
  3    306 fe80::/64                On-link
  9    331 fe80::/64                On-link
  9    331 fe80::3855:fbff:8b00:a551/128
                                    On-link
  3    306 fe80::e599:cb2:4707:7780/128
                                    On-link
  1    331 ff00::/8                 On-link
  9    331 ff00::/8                 On-link
  3    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/09/2017 02:53:41 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.


Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (08/09/2017 02:53:31 PM) (Source: DellUpService.exe) (User: )
Description: [10] ERROR- Will skip not supported update! DLL:2.0.2.1818, Manifest:3.0.0.2840 #StackInfo#

Error: (08/09/2017 02:53:31 PM) (Source: DellUpService.exe) (User: )
Description: [10] FATAL- ParseBackendLocaleList failed! #StackInfo#

Error: (08/09/2017 02:53:31 PM) (Source: DellUpService.exe) (User: )
Description: [10] FATAL- LocaleNodeConfig.Parse failed. Exception:System.Globalization.CultureNotFoundException: Culture is not supported.
Parameter name: name
zh-c is an invalid culture identifier.
   at System.Globalization.CultureInfo..ctor(String name, Boolean useUserOverride)
   at xmlhelper.Common.LocaleInfoWrapper.Parse(XmlNode partitionRootNode, String targetNodeName, List`1& supportedCultureLists, Boolean& IsSupportAllLocale) #StackInfo#

Error: (08/09/2017 02:16:04 PM) (Source: DellSupportAssistRemedationService.exe) (User: )
Description: [22] ERROR- Exception on processing Diags log: Path: C:\ProgramData\Dell\SARemediation\esp\EFI\Dell\logs\diags_current.xml #StackInfo#

Error: (08/09/2017 02:01:35 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 1065878 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/09/2017 01:44:05 PM) (Source: CertEnroll) (User: NT AUTHORITY)
Description: WORKGROUP\DESKTOP-3JV6PII$https://INTC-KeyId-5e73c89aa3e902b272b9f0741f7d8730e3ec724a.microsoftaik.azure.net/templates/Aik/scepGetCACaps
GET(62ms)GetCACapsThe server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (08/09/2017 01:44:00 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 10412 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/09/2017 01:44:00 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 10405 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/09/2017 01:44:00 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 10398 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]


System errors:
=============
Error: (08/09/2017 02:42:18 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/09/2017 01:44:57 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Intel® Online Connect Helper service.

Error: (08/09/2017 01:44:27 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}{F72671A9-012C-4725-9D2F-2A4D32D65169}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/09/2017 01:43:35 PM) (Source: HTTP) (User: )
Description: Basic

Error: (08/09/2017 01:43:35 PM) (Source: HTTP) (User: )
Description: Negotiate

Error: (08/09/2017 01:43:35 PM) (Source: HTTP) (User: )
Description: NTLM

Error: (08/09/2017 01:43:35 PM) (Source: HTTP) (User: )
Description: WDigest

Error: (08/09/2017 01:43:32 PM) (Source: DCOM) (User: DESKTOP-3JV6PII)
Description: microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca

Error: (08/09/2017 01:43:32 PM) (Source: DCOM) (User: DESKTOP-3JV6PII)
Description: CortanaUI.AppXjxtspbn4351hrtx8tc95e89kaz3h2f1f.mca

Error: (08/09/2017 01:43:31 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {FDA74D11-C4A6-4577-9F73-D7CA8586E10D}


Microsoft Office Sessions:
=========================
Error: (08/09/2017 02:53:41 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (08/09/2017 02:53:31 PM) (Source: DellUpService.exe)(User: )
Description: [10] ERROR- Will skip not supported update! DLL:2.0.2.1818, Manifest:3.0.0.2840 #StackInfo#

Error: (08/09/2017 02:53:31 PM) (Source: DellUpService.exe)(User: )
Description: [10] FATAL- ParseBackendLocaleList failed! #StackInfo#

Error: (08/09/2017 02:53:31 PM) (Source: DellUpService.exe)(User: )
Description: [10] FATAL- LocaleNodeConfig.Parse failed. Exception:System.Globalization.CultureNotFoundException: Culture is not supported.
Parameter name: name
zh-c is an invalid culture identifier.
   at System.Globalization.CultureInfo..ctor(String name, Boolean useUserOverride)
   at xmlhelper.Common.LocaleInfoWrapper.Parse(XmlNode partitionRootNode, String targetNodeName, List`1& supportedCultureLists, Boolean& IsSupportAllLocale) #StackInfo#

Error: (08/09/2017 02:16:04 PM) (Source: DellSupportAssistRemedationService.exe)(User: )
Description: [22] ERROR- Exception on processing Diags log: Path: C:\ProgramData\Dell\SARemediation\esp\EFI\Dell\logs\diags_current.xml #StackInfo#

Error: (08/09/2017 02:01:35 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 1065878 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/09/2017 01:44:05 PM) (Source: CertEnroll)(User: NT AUTHORITY)
Description: WORKGROUP\DESKTOP-3JV6PII$https://INTC-KeyId-5e73c89aa3e902b272b9f0741f7d8730e3ec724a.microsoftaik.azure.net/templates/Aik/scepGetCACaps
GET(62ms)GetCACapsThe server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (08/09/2017 01:44:00 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 10412 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/09/2017 01:44:00 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 10405 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/09/2017 01:44:00 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 10398 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]


=========================== Installed Programs ============================

CCleaner (HKLM\...\CCleaner) (Version: 5.32 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0275 - Disc Soft Ltd)
Dell Customer Connect (HKLM-x32\...\{35BEC446-269E-42E4-8EED-191A38CCFF3D}) (Version: 1.4.10.0 - Dell Inc.)
Dell Data Vault (HKLM\...\{2E55EEFD-2162-4A7D-9158-EDB0305603A6}) (Version: 4.4.0.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{99B7C4B5-DC14-441D-A5B6-7340F682BC81}) (Version: 3.1.1117.0 - Dell Products, LP)
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)
Dell Help & Support (HKLM\...\{E8669F4E-F2BE-48A9-B5A5-0BC12CA4CB4F}) (Version: 2.4.18.0 - Dell Inc.) Hidden
Dell Help & Support (HKLM-x32\...\InstallShield_{E8669F4E-F2BE-48A9-B5A5-0BC12CA4CB4F}) (Version: 2.4.18.0 - Dell Inc.)
Dell Product Registration (HKLM-x32\...\InstallShield_{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.61 - Dell)
Dell SupportAssist Remediation (HKLM\...\{2568546E-EAF1-49C2-BC7D-FD8B45965F89}) (Version: 2.0.2.1818 - Dell Inc.) Hidden
Dell SupportAssist Remediation (HKLM-x32\...\{56e3476e-a4e0-418b-926c-8be09f6c37ce}) (Version: 2.0.2.1818 - Dell Inc.)
Dell SupportAssistAgent (HKLM-x32\...\{CD2DF2B3-01E7-47FF-AF9C-725FC5FF6409}) (Version: 1.3.2.3 - Dell)
Dell Update - SupportAssist Update Plugin (HKLM\...\{D5A4BC07-13BB-4D8B-A9DA-77AC5D953A19}) (Version: 2.0.2.1818 - Dell Inc.)
Dell Update (HKLM-x32\...\{F91263FA-BE4D-439D-9C0A-2E7204E0E9E3}) (Version: 1.9.20.0 - Dell Inc.)
Deluge 1.3.15 (HKLM-x32\...\Deluge) (Version:  - )
Dropbox 20 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
DSC/AA Factory Installer (HKLM\...\{F7A70D00-F283-45C8-B163-49EC365D7E27}) (Version: 1.3.6855.61 - PC-Doctor, Inc.) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11002.3418 - Intel Corporation)
Intel® HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.1.318 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1036 - Intel Corporation)
Intel® Online Connect Software Asset Manager (HKLM-x32\...\{AE956AB9-CD98-4F1E-8B9E-C3C66E290D64}) (Version: 3.4.2072 - Intel Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4574 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.7.1042 - Intel Corporation)
Intel® Wireless Bluetooth® (HKLM-x32\...\{C2E85BBA-6F67-413B-AD39-3E12CEC8EE97}) (Version: 19.30.1649.0953 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{041d205e-2cff-4b85-9320-cbe31995c3ac}) (Version: 19.30.0 - Intel Corporation)
KB4023057 (HKLM\...\{27C6D60B-CAD4-4C70-A1F2-299C731EA8F7}) (Version: 2.0.0.0 - Microsoft Corporation)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9045.0 - Waves Audio Ltd.) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 14.0.9029 - McAfee, Inc.)
Microsoft Office Home and Student 2016 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 16.0.6965.2079 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 55.0 (x64 en-US) (HKLM\...\Mozilla Firefox 55.0 (x64 en-US)) (Version: 55.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0 - Mozilla)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Graphics Driver 376.56 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.56 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.6965.2079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.6965.2079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.6965.2079 - Microsoft Corporation) Hidden
Product Registration (HKLM\...\{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.6.0 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 10.12.1007.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8051 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
True Color (HKLM\...\{843D1B75-7A4E-4C8C-8348-BDF6C6EC3333}) (Version: 1.0.1.1 - Entertainment Experience LLC) Hidden
True Color (HKLM-x32\...\{c38d939e-31d4-44fa-a07a-d28915046b7d}) (Version: 7.9.0.0 - Entertainment Experience)
True Color XML Tables (HKLM\...\{EAE8B515-AC0E-46A8-AA41-CAD18E4094CD}) (Version: 7.10.0.0 - Entertainment Experience LLC) Hidden
TrueColorXMLTables (HKLM-x32\...\{bf377b78-c440-4ce9-a962-2fde04e6d4cd}) (Version: 7.10.0.0 - Entertainment Experience)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 8053.96 MB
Available physical RAM: 4447.45 MB
Total Virtual: 9973.96 MB
Available Virtual: 6285.8 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:105.88 GB) (Free:73.25 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:931.18 GB) NTFS

========================= Users: ========================================

User accounts for \\DESKTOP-3JV6PII

Administrator            DefaultAccount           defaultuser0             
Guest                    Ismael                   


**** End of log ****
 



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,762 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:39 PM

Posted 10 August 2017 - 10:05 AM

Post all the log results please.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Hishima

Hishima
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:39 PM

Posted 11 August 2017 - 02:28 AM

Sorry about this. Hopefully this is the full report on MiniToolBox.


MiniToolBox by Farbar  Version: 17-06-2016
Ran by Ismael (administrator) on 11-08-2017 at 16:23:58
Running from "C:\Users\Ismael\Desktop\Maintenance"
Microsoft Windows 10 Home  (X64)
Model: Inspiron 5577 Manufacturer: Dell Inc.
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Ethernet (Connected)
Intel® Dual Band Wireless-AC 3165 = Wi-Fi (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : DESKTOP-3JV6PII
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wi-Fi:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Dual Band Wireless-AC 3165
   Physical Address. . . . . . . . . : A6-15-63-8B-CF-DE
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 3C-F8-62-BA-D9-99
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : F4-8E-38-F1-1A-34
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1ba:c042:4609:197c%16(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.4(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, August 11, 2017 4:22:31 PM
   Lease Expires . . . . . . . . . . : Friday, August 11, 2017 6:22:30 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 99913272
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-20-6E-3F-3B-F4-8E-38-F1-1A-34
   DNS Servers . . . . . . . . . . . : 164.124.101.2
                                       203.248.252.2
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 2:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:1cc0:cff:8b00:a551(Preferred)
   Link-local IPv6 Address . . . . . : fe80::1cc0:cff:8b00:a551%9(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 150994944
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-20-6E-3F-3B-F4-8E-38-F1-1A-34
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{F74A660C-85B8-460C-B99E-CD4595CD1E55}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  ns.lgtelecom.com
Address:  164.124.101.2

Name:    google.com
Addresses:  2404:6800:4005:806::200e
      216.58.221.142


Pinging google.com [216.58.221.142] with 32 bytes of data:
Reply from 216.58.221.142: bytes=32 time=197ms TTL=50
Reply from 216.58.221.142: bytes=32 time=192ms TTL=50

Ping statistics for 216.58.221.142:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 192ms, Maximum = 197ms, Average = 194ms
Server:  ns.lgdacom.net
Address:  164.124.101.2

Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
      2001:4998:c:a06::2:4008
      2001:4998:44:204::a7
      98.138.253.109
      206.190.36.45
      98.139.180.149


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=506ms TTL=48
Reply from 206.190.36.45: bytes=32 time=364ms TTL=48

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 364ms, Maximum = 506ms, Average = 435ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  4...a6 15 63 8b cf de ......Intel® Dual Band Wireless-AC 3165
  3...3c f8 62 ba d9 99 ......Microsoft Wi-Fi Direct Virtual Adapter
 16...f4 8e 38 f1 1a 34 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
  9...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
  5...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.4     35
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
      192.168.0.0    255.255.255.0         On-link       192.168.0.4    291
      192.168.0.4  255.255.255.255         On-link       192.168.0.4    291
    192.168.0.255  255.255.255.255         On-link       192.168.0.4    291
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link       192.168.0.4    291
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link       192.168.0.4    291
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  9    331 ::/0                     On-link
  1    331 ::1/128                  On-link
  9    331 2001::/32                On-link
  9    331 2001:0:9d38:6abd:1cc0:cff:8b00:a551/128
                                    On-link
 16    291 fe80::/64                On-link
  9    331 fe80::/64                On-link
 16    291 fe80::1ba:c042:4609:197c/128
                                    On-link
  9    331 fe80::1cc0:cff:8b00:a551/128
                                    On-link
  1    331 ff00::/8                 On-link
 16    291 ff00::/8                 On-link
  9    331 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [55808] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [24064] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [51712] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [80896] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [62976] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/11/2017 04:22:47 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 45589 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:19 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 16972 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:19 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 16967 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:19 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 16956 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:18 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 16912 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:17 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 15455 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\..\Sources\Policies\PolicyLib\PolicyBase.cpp @ line 1002
Executing Function:  PolicyBase::takeControlOfOsc
Message:  Active Policy: Failed to acquire OSC: Failure during execution of _OSC:
DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 472
Executing Function:  EsifServices::primitiveExecuteSet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  SET_OPERATING_SYSTEM_CAPABILITIES [93]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]


Policy:  Active Policy [0]

Error: (08/11/2017 03:58:30 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"1".Error in manifest or policy file "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"2" on line UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (08/11/2017 03:37:24 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 57981149 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 03:31:32 PM) (Source: DPTF) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 57629922 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 10:47:52 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"1".Error in manifest or policy file "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"2" on line UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (08/11/2017 04:23:42 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Intel® Online Connect Helper service.

Error: (08/11/2017 04:23:12 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}{F72671A9-012C-4725-9D2F-2A4D32D65169}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/11/2017 04:22:16 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 4:16:27 PM on ‎8/‎11/‎2017 was unexpected.

Error: (08/11/2017 04:07:06 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/11/2017 04:03:14 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/11/2017 03:31:48 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}{F72671A9-012C-4725-9D2F-2A4D32D65169}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/11/2017 11:06:51 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/11/2017 10:54:53 AM) (Source: Service Control Manager) (User: )
Description: The Interactive Services Detection service terminated with the following error:
%%1 = Incorrect function.


Error: (08/11/2017 10:54:51 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: 1053mcpltsvcUnavailable{20966775-18A4-4299-B8E3-772C336B52A7}

Error: (08/11/2017 10:54:51 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Platform Services service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.



Microsoft Office Sessions:
=========================
Error: (08/11/2017 04:22:47 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 45589 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:19 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 16972 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:19 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 16967 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:19 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 16956 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:18 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 16912 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 04:22:17 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 15455 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\..\Sources\Policies\PolicyLib\PolicyBase.cpp @ line 1002
Executing Function:  PolicyBase::takeControlOfOsc
Message:  Active Policy: Failed to acquire OSC: Failure during execution of _OSC:
DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 472
Executing Function:  EsifServices::primitiveExecuteSet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  SET_OPERATING_SYSTEM_CAPABILITIES [93]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]


Policy:  Active Policy [0]

Error: (08/11/2017 03:58:30 PM) (Source: SideBySide)(User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0"C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.ManifestC:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL1

Error: (08/11/2017 03:37:24 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 57981149 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 03:31:32 PM) (Source: DPTF)(User: )
Description: Intel® Dynamic Platform and Thermal FrameworkESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 57629922 ms

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\WorkItem.cpp @ line 142
Executing Function:  WorkItem::writeWorkItemErrorMessagePolicy
Message:  Unhandled exception caught during execution of work item
Framework Event:  PolicyActiveRelationshipTableChanged [44]
Policy:  Active Policy [0]
Exception Function:  Policy::executePolicyActiveRelationshipTableChanged
Exception Text:  

DPTF Build Version:  8.2.11002.3418
DPTF Build Date:  Nov 18 2016 15:16:47
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 456
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (08/11/2017 10:47:52 AM) (Source: SideBySide)(User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0"C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.ManifestC:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL1


CodeIntegrity Errors:
===================================
  Date: 2017-08-11 10:50:10.469
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvdm.inf_amd64_17fcac180e18187d\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.


=========================== Installed Programs ============================

Adobe Photoshop CC 2015 (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF01}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
CCleaner (HKLM\...\CCleaner) (Version: 5.32 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0275 - Disc Soft Ltd)
Dell Customer Connect (HKLM-x32\...\{35BEC446-269E-42E4-8EED-191A38CCFF3D}) (Version: 1.4.10.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{99B7C4B5-DC14-441D-A5B6-7340F682BC81}) (Version: 3.1.1117.0 - Dell Products, LP)
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)
Dell Help & Support (HKLM\...\{E8669F4E-F2BE-48A9-B5A5-0BC12CA4CB4F}) (Version: 2.4.18.0 - Dell Inc.) Hidden
Dell Help & Support (HKLM-x32\...\InstallShield_{E8669F4E-F2BE-48A9-B5A5-0BC12CA4CB4F}) (Version: 2.4.18.0 - Dell Inc.)
Dell Product Registration (HKLM-x32\...\InstallShield_{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.61 - Dell)
Dell SupportAssist Remediation (HKLM\...\{2568546E-EAF1-49C2-BC7D-FD8B45965F89}) (Version: 2.0.2.1818 - Dell Inc.) Hidden
Dell SupportAssist Remediation (HKLM-x32\...\{56e3476e-a4e0-418b-926c-8be09f6c37ce}) (Version: 2.0.2.1818 - Dell Inc.)
Dell SupportAssistAgent (HKLM\...\{E1AA62F7-B32A-4090-814E-83BC7C3DF1FB}) (Version: 2.0.2.21 - Dell)
Dell Update - SupportAssist Update Plugin (HKLM\...\{EEA45885-F3E3-4E7D-8435-E9C21D36C141}) (Version: 3.0.0.2840 - Dell Inc.)
Dell Update (HKLM-x32\...\{F91263FA-BE4D-439D-9C0A-2E7204E0E9E3}) (Version: 1.9.20.0 - Dell Inc.)
Deluge 1.3.15 (HKLM-x32\...\Deluge) (Version:  - )
Dropbox 20 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
DSC/AA Factory Installer (HKLM\...\{F7A70D00-F283-45C8-B163-49EC365D7E27}) (Version: 1.3.6855.61 - PC-Doctor, Inc.) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11002.3418 - Intel Corporation)
Intel® HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.1.318 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1036 - Intel Corporation)
Intel® Online Connect Software Asset Manager (HKLM-x32\...\{AE956AB9-CD98-4F1E-8B9E-C3C66E290D64}) (Version: 3.4.2072 - Intel Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4574 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.7.1042 - Intel Corporation)
Intel® Wireless Bluetooth® (HKLM-x32\...\{C2E85BBA-6F67-413B-AD39-3E12CEC8EE97}) (Version: 19.30.1649.0953 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{041d205e-2cff-4b85-9320-cbe31995c3ac}) (Version: 19.30.0 - Intel Corporation)
KB4023057 (HKLM\...\{27C6D60B-CAD4-4C70-A1F2-299C731EA8F7}) (Version: 2.0.0.0 - Microsoft Corporation)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9045.0 - Waves Audio Ltd.) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 15.0.179 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.149 - McAfee, Inc.)
Microsoft Office Home and Student 2016 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 16.0.8229.2103 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.8229.2103 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Project Professional 2016 - en-us (HKLM\...\ProjectProRetail - en-us) (Version: 16.0.8229.2103 - Microsoft Corporation)
Microsoft Visio Professional 2016 - en-us (HKLM\...\VisioProRetail - en-us) (Version: 16.0.8229.2103 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 55.0 (x64 en-US) (HKLM\...\Mozilla Firefox 55.0 (x64 en-US)) (Version: 55.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0 - Mozilla)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Graphics Driver 376.56 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.56 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8229.2103 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8229.2103 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8229.2103 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.8201.2075 - Microsoft Corporation) Hidden
Product Registration (HKLM\...\{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.6.0 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 10.12.1007.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8051 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
True Color (HKLM\...\{843D1B75-7A4E-4C8C-8348-BDF6C6EC3333}) (Version: 1.0.1.1 - Entertainment Experience LLC) Hidden
True Color (HKLM-x32\...\{c38d939e-31d4-44fa-a07a-d28915046b7d}) (Version: 7.9.0.0 - Entertainment Experience)
True Color XML Tables (HKLM\...\{EAE8B515-AC0E-46A8-AA41-CAD18E4094CD}) (Version: 7.10.0.0 - Entertainment Experience LLC) Hidden
TrueColorXMLTables (HKLM-x32\...\{bf377b78-c440-4ce9-a962-2fde04e6d4cd}) (Version: 7.10.0.0 - Entertainment Experience)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 29%
Total physical RAM: 8053.96 MB
Available physical RAM: 5668.71 MB
Total Virtual: 9973.96 MB
Available Virtual: 7627.09 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:105.88 GB) (Free:60.68 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:931.18 GB) NTFS

========================= Users: ========================================

User accounts for \\DESKTOP-3JV6PII

Administrator            DefaultAccount           defaultuser0             
Guest                    Ismael                   

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

09-08-2017 18:53:39 Dell Update: Dell Help & Support

**** End of log ****
 



#5 Hishima

Hishima
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:39 PM

Posted 11 August 2017 - 02:30 AM

And this one for Rkill.

 

 

http://www.bleepingcomputer.com/
Copyright 2008-2017 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/11/2017 04:28:57 PM in x64 mode.
Windows Version: Windows 10 Home

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Windows\Temp\webife.exe (PID: 4752) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1 na1r.services.adobe.com
  127.0.0.1 hlrcv.stage.adobe.com
  127.0.0.1 lmlicenses.wip4.adobe.com
  127.0.0.1 lm.licenses.adobe.com
  127.0.0.1 activate.adobe.com
  127.0.0.1 practivate.adobe.com

Program finished at: 08/11/2017 04:29:18 PM
Execution time: 0 hours(s), 0 minute(s), and 21 seconds(s)
 



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,762 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:39 PM

Posted 11 August 2017 - 10:00 AM

And finally I'd like us to scan your machine with ESET OnlineScan:
  • It is recommended to turn off your antivirus program. Click on the E5rfZI9.png button to see which antivirus is currently enabled:
c4VVzVO.png
  • Turn off your antivirus program. See here how to do this.
  • Check the option beside: Enable detection of potentially unwanted applications.
  • Now click on Advanced Settings and make sure that the option Clean threats automatically is NOT checked, and select the following:
Enable detection of potentially unsafe applications
Enable detection of suspicious applications
Scan archives
Enable Anti-Stealth Technology
  • Click on the Change button and select only Operating memory, Autostart locations and drive C:\ to be scanned.
yKulboi.jpg
  • Push the dtoGjAL.png button.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
8L8IBHJ.png
  • When the scan completes a list of found threats will open automatically (if any malicious files are found).
imxEgHt.png
  • Push thecRhRYZ8.png button and save the file to your desktop using a unique name, such as ESETScan.txt. Include the contents of this report in your next reply.
  • Push the 9IjfdXq.png button.
  • Check the box beside RHzfZB1.png to uninstall the application when closed.
  • Push Vc3btaC.png and the close the application clicking the X in upper right corner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Hishima

Hishima
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:39 PM

Posted 12 August 2017 - 08:51 PM

Thank you. I did what you asked and it showed up 3 results.

 

Here are the results.

 

C:\Users\Ismael\Downloads\Downloaded Programs\ccsetup532.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    
C:\Users\Ismael\Downloads\Downloaded Programs\CDisplayExWin64v1.10.29.exe    Win32/FusionCore.I potentially unwanted application    
C:\Users\Ismael\Downloads\Downloaded Programs\Microsoft Office Professional Plus 2016 + Activation Tool [danhuk]\Disc Image\Office_2016_x86_x64_EN_16.0.6769.2040.iso    a variant of Win32/HackTool.KMSAuto.E potentially unsafe application  

 

I recognized all three of these of programs, but I don't think these are the causes of what I'm experiencing. I may be wrong, but I don't believe that this is the cause.



#8 Hishima

Hishima
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:39 PM

Posted 13 August 2017 - 03:08 AM

Also I've been doing some looking in the forums and I realized that several peopel had the same experience as me. I post the link so that if there is anybody who has any countermeasures of this would like to share any information. Thank you.

 

Possible Trojan or Hack??

https://www.bleepingcomputer.com/forums/t/526447/possible-trojan-or-hack/

 

I'm pretty sure I have been hacked

https://www.bleepingcomputer.com/forums/t/626137/im-pretty-sure-i-have-been-hacked/


Edited by Hishima, 13 August 2017 - 03:15 AM.


#9 Hishima

Hishima
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:39 PM

Posted 13 August 2017 - 03:41 AM

I also have a TCPviewer log would anybody want to take a look at it?



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,762 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:39 PM

Posted 13 August 2017 - 08:10 PM

Hello, then the next step is a deeper look start at step 6..

Please follow this Preparation Guide and post in a new topic.
Let me know if all went well..
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users