Jump to content

adam2013

Members
  • Posts

    21
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Sorry for the poor editing!! I followed several Microsoft Solution suggestions (and some other things) to repair the IE10 download problem without success. Finding a solution feels as though I'm looking for a needle in a haystack and an exercise in frustration. I was able to reinstall several software updates in the hope that would correct the problem, but there was no change to IE downloads. Since the environment of a computer is sensitive, I'm afraid to continue trying "this and that" to resolve the issue. But I also understand computer problems will not "go away" and will likely surface somewhere else. While I am open to further suggestions, I understand the problem may remain until I can identify a definite error code. Thank you for all your help!
  2. I followed several Microsoft Solution suggestions (and some other things) to repair the IE10 download problem without success. Finding a solution feels as though I'm looking for a needle in a haystack and an exercise in frustration. I was able to reinstall several software updates in the hope the missing that would correct the problem, but there was no change to IE downloads. Since the environment of a computer is sensitive, I'm afraid to continue trying "this and that" to resolve the issue. But I also understand computer problems will not "go away" and are likely to surface somewhere else. While I am open to further suggestions, I understand the problem may remain until I can identify a definite error code. Thank you for all your help!
  3. No time to work on this the last couple of days. FF will allow downloads; so, yes , I'll follow your suggstions from there and post back. Forgot to menion the BSOD crashes seem to be gone!! Thank you.
  4. OK, I'll give these suggestions a try. I attempted to use Microsoft's FIXIT already, but it won't run in IE (same download problem), Will post back ASAP. Thank you.
  5. Bootup and system running much faster! However, IE10 continues to refuse downloads (attached print screen with error message). I opened Firefox to test and downloads are OK. The problem is IE10 for whatever reason and, since AOL and FF are working, we may have to leave this as is ... unless you have further suggestions. Thank you!!
  6. FRST.txt ... 32-bit Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-07-2013 01 Ran by SYSTEM on 09-07-2013 12:08:05 Running from E:\FARBAR\32-Bit Windows 7 Professional Service Pack 1 (X86) OS Language: English(US) Internet Explorer Version 10 Boot Mode: Recovery The current controlset is ControlSet004 ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log. ==================== Registry (Whitelisted) ================== HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming [1851192 2012-11-04] (Logitech, Inc.) HKLM\...\Run: [bCSSync] - "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices [91520 2010-03-13] (Microsoft Corporation) HKLM\...\Run: [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2012-12-18] (Adobe Systems Incorporated) HKLM\...\Run: [igfxtray] - C:\Windows\system32\igfxtray.exe [94208 2006-06-06] (Intel Corporation) HKLM\...\Run: [igfxhkcmd] - C:\Windows\system32\hkcmd.exe [77824 2006-06-06] (Intel Corporation) HKLM\...\Run: [igfxpers] - C:\Windows\system32\igfxpers.exe [118784 2006-06-06] (Intel Corporation) HKLM\...\Run: [lxbmmon.exe] - "C:\Program Files\Lexmark 4200 Series\lxbmmon.exe" [230056 2009-04-27] (Lexmark International, Inc.) HKLM\...\Run: [HostManager] - C:\Program Files\Common Files\AOL\1361143109\ee\AOLSoftware.exe [41800 2010-03-07] (AOL Inc.) HKLM\...\Run: [APSDaemon] - "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-04-21] (Apple Inc.) HKLM\...\Run: [ConnectionCenter] - "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup [309184 2012-03-28] (Citrix Systems, Inc.) HKLM\...\Run: [Persistence] - C:\Windows\system32\igfxpers.exe [118784 2006-06-06] (Intel Corporation) HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [77824 2006-06-06] (Intel Corporation) HKLM\...\Run: [sunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation) HKLM\...\Run: [mcui_exe] - "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey [1278064 2013-03-13] (McAfee, Inc.) HKLM\...\Run: [bingDesktop] - C:\Program Files\Microsoft\BingDesktop\BingDesktop.exe /fromkey [2249352 2013-06-27] (Microsoft Corp.) HKLM\...\Run: [QuickTime Task] - "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2013-05-01] (Apple Inc.) HKLM\...\Run: [iTunesHelper] - "C:\Program Files\iTunes\iTunesHelper.exe" [152392 2013-05-31] (Apple Inc.) HKLM\...\Winlogon: [userinit] C:\Windows\system32\userinit.exe, [x] Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [X] HKU\Default\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [ 2009-07-13] (Microsoft Corporation) HKU\Default User\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [ 2009-07-13] (Microsoft Corporation) HKU\Tausha\...\Run: [AOL Fast Start] - "C:\Program Files\AOL Desktop 9.7\AOL.EXE" -b [ 2012-10-15] (AOL Inc.) Startup: C:\ProgramData\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\2.1.121\SSScheduler.exe (McAfee, Inc.) Startup: C:\Users\Tausha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> (No File) Startup: C:\Users\Tausha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation) ========================== Services (Whitelisted) ================= S3 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [46640 2006-10-23] (AOL LLC) S2 BingDesktopUpdate; C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-27] (Microsoft Corp.) S2 lxbm_device; C:\Windows\system32\lxbmcoms.exe [537520 2007-01-30] ( ) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\2.1.121\McCHSvc.exe [227232 2010-09-02] (McAfee, Inc.) S2 McMPFSvc; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.) S2 mcmscsvc; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.) S2 McNaiAnn; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.) S2 McNASvc; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.) S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [279488 2013-02-25] (McAfee, Inc.) S2 McProxy; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.) S2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [203840 2013-02-19] (McAfee, Inc.) S2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [169320 2013-02-19] (McAfee, Inc.) S2 mfevtp; C:\Windows\system32\mfevtps.exe [172416 2013-02-19] (McAfee, Inc.) S2 vToolbarUpdater15.3.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe [x] ==================== Drivers (Whitelisted) ==================== S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1500160 2010-01-05] (Atheros Communications, Inc.) S1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-07-02] (AVG Technologies) S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [60920 2013-02-19] (McAfee, Inc.) S3 cpudrv; C:\Program Files\SystemRequirementsLab\cpudrv.sys [11336 2011-06-02] () S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [146872 2012-04-20] (McAfee, Inc.) S3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [1168860 2006-06-06] (Intel Corporation) S3 LMouFilt; C:\Windows\System32\DRIVERS\LMouFilt.Sys [39608 2012-09-18] (Logitech, Inc.) S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [133416 2013-02-19] (McAfee, Inc.) S3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [235264 2013-02-19] (McAfee, Inc.) S3 mfebopk; C:\Windows\System32\drivers\mfebopk.sys [65928 2013-02-19] (McAfee, Inc.) S3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [363080 2013-02-19] (McAfee, Inc.) S0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [565888 2013-02-19] (McAfee, Inc.) S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [92632 2013-02-19] (McAfee, Inc.) S0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [210608 2013-02-19] (McAfee, Inc.) S3 NETw2v32; C:\Windows\System32\DRIVERS\NETw2v32.sys [2599936 2007-08-12] (Intel® Corporation) S3 STAC97; C:\Windows\System32\drivers\STAC97.sys [273168 2005-03-10] (SigmaTel, Inc.) S3 VIAudio; C:\Windows\System32\drivers\vinyl97.sys [207488 2007-06-27] (VIA Technologies, Inc.) S3 VSTHWICH; C:\Windows\System32\DRIVERS\VSTICH3.SYS [242176 2009-07-13] (Conexant Systems, Inc.) S3 wanatw; C:\Windows\System32\DRIVERS\wanatw4.sys [33588 2006-11-29] (America Online, Inc.) S3 catchme; \??\C:\Users\Tausha\AppData\Local\Temp\catchme.sys [x] S4 mbamswissarmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys [x] S3 mfeavfk01; No ImagePath ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-09 10:35 - 2013-07-09 10:35 - 00000000 ____D C:\FRST 2013-07-09 10:32 - 2013-07-09 10:32 - 01776221 ____A (Farbar) C:\Users\Tausha\Downloads\FRST64.exe 2013-07-09 10:12 - 2013-07-09 10:12 - 00001115 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-07-09 10:10 - 2013-07-09 10:10 - 00280136 ____A (Mozilla) C:\Users\Tausha\Downloads\Firefox Setup Stub 22.0.exe 2013-07-09 09:33 - 2013-07-09 10:01 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-07-09 09:32 - 2013-07-09 10:01 - 00000000 ____D C:\Users\Tausha\Desktop\mbar 2013-07-08 12:11 - 2013-07-08 12:11 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup (4).exe 2013-07-08 12:09 - 2013-07-08 12:10 - 00650027 ____A C:\Users\Tausha\Downloads\AdwCleaner.exe 2013-07-08 12:03 - 2013-07-08 12:03 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup (3).exe 2013-07-07 23:09 - 2013-07-07 23:09 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup (2).exe 2013-07-07 22:04 - 2013-07-07 22:04 - 00014785 ____A C:\ComboFix.txt 2013-07-07 21:27 - 2013-07-07 22:04 - 00000000 ____D C:\Qoobox 2013-07-07 21:27 - 2011-06-25 22:45 - 00256000 ____A C:\Windows\PEV.exe 2013-07-07 21:27 - 2010-11-07 09:20 - 00208896 ____A C:\Windows\MBR.exe 2013-07-07 21:27 - 2009-04-19 20:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe 2013-07-07 21:27 - 2000-08-30 16:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe 2013-07-07 21:27 - 2000-08-30 16:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe 2013-07-07 21:27 - 2000-08-30 16:00 - 00098816 ____A C:\Windows\sed.exe 2013-07-07 21:27 - 2000-08-30 16:00 - 00080412 ____A C:\Windows\grep.exe 2013-07-07 21:27 - 2000-08-30 16:00 - 00068096 ____A C:\Windows\zip.exe 2013-07-07 21:13 - 2013-07-07 20:39 - 05087001 ____R (Swearware) C:\Users\Tausha\Desktop\ComboFix.exe 2013-07-06 18:24 - 2013-07-06 18:24 - 00010920 ____A C:\aolconnfix.exe 2013-07-06 17:54 - 2013-07-06 17:54 - 00001076 ____A C:\Users\Public\Desktop\Express Scribe.lnk 2013-07-06 17:54 - 2013-07-06 17:54 - 00000000 ____D C:\Users\Tausha\AppData\Roaming\NCH Software 2013-07-06 17:54 - 2013-07-06 17:54 - 00000000 ____D C:\ProgramData\NCH Software 2013-07-06 17:54 - 2013-07-06 17:54 - 00000000 ____D C:\Program Files\NCH Software 2013-07-06 17:45 - 2013-07-06 17:45 - 00083128 ____A C:\Users\Tausha\AppData\Roaming\Scribe.dmp 2013-07-06 12:07 - 2013-07-06 12:08 - 00049913 ____A C:\Users\Tausha\Desktop\Result.txt 2013-07-06 12:01 - 2013-07-06 11:01 - 00890988 ____A C:\Users\Tausha\Desktop\SecurityCheck.exe 2013-07-06 12:01 - 2013-07-06 10:58 - 00760775 ____A (Farbar) C:\Users\Tausha\Desktop\MiniToolBox.exe 2013-07-05 09:57 - 2013-07-05 09:58 - 00004222 ____A C:\AdwCleaner[s1].txt 2013-07-05 09:12 - 2013-07-05 09:12 - 00000000 ____D C:\Windows\ERUNT 2013-07-05 09:11 - 2013-07-05 09:21 - 00000000 ____D C:\JRT 2013-07-05 07:06 - 2013-07-05 07:07 - 00139248 ____A C:\Windows\Minidump\070513-91531-01.dmp 2013-07-05 06:22 - 2013-07-05 06:22 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-07-05 05:31 - 2013-07-07 22:00 - 00000000 ____D C:\Windows\ERDNT 2013-07-04 14:57 - 2013-07-04 15:11 - 00000000 ____D C:\Users\Tausha\Documents\WTJuly1-72013 2013-07-04 14:57 - 2013-07-04 14:57 - 00334076 ____A C:\Users\Tausha\Documents\WTJuly1-72013.zip 2013-07-04 14:15 - 2013-07-04 15:11 - 00000000 ____D C:\Users\Tausha\Documents\WTApril8-142013 2013-07-04 14:15 - 2013-07-04 14:15 - 00230841 ____A C:\Users\Tausha\Documents\WTApril8-142013.zip 2013-07-04 14:12 - 2013-07-04 14:12 - 00416740 ____A C:\Users\Tausha\Documents\WTDecember17-23.zip 2013-07-03 16:16 - 2013-07-03 16:16 - 00139248 ____A C:\Windows\Minidump\070313-36359-01.dmp 2013-07-03 09:38 - 2013-07-03 09:38 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup (1).exe 2013-07-02 15:17 - 2013-07-02 15:17 - 00000000 ____D C:\Users\Tausha\AppData\Local\AVG SafeGuard toolbar 2013-07-02 15:07 - 2013-07-02 15:05 - 00037664 ____A (AVG Technologies) C:\Windows\System32\Drivers\avgtpx86.sys 2013-07-02 15:06 - 2013-07-02 15:08 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar 2013-07-02 15:06 - 2013-07-02 15:06 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar 2013-07-02 14:32 - 2013-07-06 18:23 - 00000000 ____D C:\Users\Tausha\Documents\CurrentLEtemplate 2013-07-02 14:32 - 2013-07-02 14:32 - 04460004 ____A C:\Users\Tausha\Documents\CurrentLEtemplate.zip 2013-07-02 14:11 - 2013-07-02 14:34 - 00000000 ____D C:\Users\Tausha\Documents\stutters_partialspokenwords 2013-07-02 14:11 - 2013-07-02 14:11 - 01471626 ____A C:\Users\Tausha\Documents\stutters_partialspokenwords.zip 2013-07-02 10:05 - 2013-07-02 12:41 - 00000000 ____D C:\Users\Tausha\Documents\quote 2013-07-02 10:04 - 2013-07-02 10:05 - 04763923 ____A C:\Users\Tausha\Documents\quote.zip 2013-07-01 12:35 - 2013-07-01 12:35 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup.exe 2013-06-27 08:45 - 2013-06-27 08:52 - 00000000 ____D C:\Users\Tausha\Documents\LE-Independent-contractor-agmt 2013-06-27 08:45 - 2013-06-27 08:45 - 00134124 ____A C:\Users\Tausha\Documents\LE-Independent-contractor-agmt.zip 2013-06-26 20:57 - 2013-06-26 20:57 - 00139248 ____A C:\Windows\Minidump\062613-31984-01.dmp 2013-06-26 20:56 - 2013-07-05 07:06 - 234213360 ____A C:\Windows\MEMORY.DMP 2013-06-25 19:19 - 2013-06-25 19:28 - 00000000 ____D C:\Users\Tausha\Documents\CBS-SM-June24-302013 2013-06-25 15:58 - 2013-05-05 21:06 - 03968872 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe 2013-06-25 15:58 - 2013-05-05 21:06 - 03913576 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe 2013-06-25 15:58 - 2013-03-18 20:48 - 00038912 ____A (Microsoft Corporation) C:\Windows\System32\csrsrv.dll 2013-06-25 15:58 - 2013-03-18 18:49 - 00069632 ____A (Microsoft Corporation) C:\Windows\System32\smss.exe 2013-06-24 11:33 - 2013-07-09 09:00 - 00004726 ____A C:\Windows\setupact.log 2013-06-24 11:33 - 2013-06-24 11:33 - 00000000 ____A C:\Windows\setuperr.log 2013-06-23 19:05 - 2013-06-27 11:45 - 00000000 ____D C:\Users\Tausha\Documents\AuthorizationtoConductaBackgroundInvestigation 2013-06-23 19:05 - 2013-06-23 19:05 - 00339111 ____A C:\Users\Tausha\Documents\AuthorizationtoConductaBackgroundInvestigation.zip 2013-06-20 16:02 - 2013-06-20 16:02 - 00001053 ____A C:\Users\Tausha\Desktop\Dropbox.lnk 2013-06-20 15:12 - 2013-06-20 15:12 - 00000129 ____A C:\Windows\System32\MRT.INI 2013-06-20 15:12 - 2013-06-08 03:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-06-20 15:12 - 2013-06-08 03:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-06-20 15:12 - 2013-06-08 03:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-06-20 15:12 - 2013-06-08 03:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-06-20 15:12 - 2013-06-08 03:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-06-20 15:12 - 2013-06-08 03:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-06-20 15:04 - 2013-05-16 17:26 - 00042496 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-06-20 15:04 - 2013-05-16 17:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-06-20 15:04 - 2013-05-16 17:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-06-20 15:04 - 2013-05-16 17:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-06-20 15:04 - 2013-05-16 17:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-06-20 15:04 - 2013-05-16 17:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-06-20 15:04 - 2013-05-16 17:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-06-20 15:04 - 2013-05-16 17:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-06-20 15:04 - 2013-05-16 17:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-06-20 15:04 - 2013-05-14 00:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-06-20 14:46 - 2013-06-28 11:30 - 00000000 ____D C:\Program Files\McAfee Security Scan 2013-06-20 14:46 - 2013-06-20 14:46 - 00000000 ____D C:\ProgramData\McAfee Security Scan 2013-06-20 14:45 - 2013-06-12 20:48 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll 2013-06-20 14:45 - 2013-06-12 20:43 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe 2013-06-20 14:45 - 2013-06-12 20:43 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe 2013-06-20 14:45 - 2013-06-12 20:43 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe 2013-06-20 14:42 - 2013-06-20 14:45 - 00004790 ____A C:\Windows\System32\jupdate-1.7.0_25-b16.log 2013-06-20 10:55 - 2013-05-07 21:38 - 01293672 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys 2013-06-20 10:54 - 2013-05-12 20:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll 2013-06-20 10:54 - 2013-05-12 20:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll 2013-06-20 10:54 - 2013-05-12 20:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll 2013-06-20 10:54 - 2013-05-12 19:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe 2013-06-20 10:54 - 2013-05-12 19:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll 2013-06-20 10:53 - 2013-04-25 15:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll 2013-06-20 10:53 - 2013-04-16 23:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll 2013-06-20 10:52 - 2013-05-09 19:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll 2013-06-20 10:51 - 2013-04-25 20:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll 2013-06-18 14:45 - 2013-07-09 09:02 - 00000000 ___RD C:\Users\Tausha\Dropbox 2013-06-18 14:32 - 2013-07-09 09:02 - 00000000 ____D C:\Users\Tausha\AppData\Roaming\Dropbox 2013-06-18 13:10 - 2013-07-06 18:24 - 00001039 ____A C:\aolconnfix.txt 2013-06-17 13:03 - 2013-06-24 11:32 - 00007609 ____A C:\Users\Tausha\AppData\Local\Resmon.ResmonCfg 2013-06-17 09:13 - 2013-06-17 09:13 - 00000000 ____D C:\found.000 2013-06-13 13:11 - 2013-06-27 09:01 - 00000000 ____D C:\Users\Tausha\Documents\ProspectiveIndependentContractorQuestionnaire 2013-06-13 13:11 - 2013-06-13 13:11 - 00018390 ____A C:\Users\Tausha\Documents\ProspectiveIndependentContractorQuestionnaire.zip 2013-06-10 12:59 - 2013-06-10 12:59 - 04378864 ____A (Piriform Ltd) C:\Users\Tausha\Downloads\ccsetup402.exe ==================== One Month Modified Files and Folders ======= 2013-07-09 10:58 - 2013-02-14 17:45 - 01880325 ____A C:\Windows\WindowsUpdate.log 2013-07-09 10:35 - 2013-07-09 10:35 - 00000000 ____D C:\FRST 2013-07-09 10:32 - 2013-07-09 10:32 - 01776221 ____A (Farbar) C:\Users\Tausha\Downloads\FRST64.exe 2013-07-09 10:17 - 2013-02-15 08:49 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-09 10:12 - 2013-07-09 10:12 - 00001115 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-07-09 10:12 - 2013-02-14 22:37 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-07-09 10:12 - 2013-02-14 22:31 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-07-09 10:10 - 2013-07-09 10:10 - 00280136 ____A (Mozilla) C:\Users\Tausha\Downloads\Firefox Setup Stub 22.0.exe 2013-07-09 10:01 - 2013-07-09 09:33 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-07-09 10:01 - 2013-07-09 09:32 - 00000000 ____D C:\Users\Tausha\Desktop\mbar 2013-07-09 09:08 - 2009-07-13 20:34 - 00021504 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-09 09:08 - 2009-07-13 20:34 - 00021504 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-09 09:05 - 2013-05-14 10:13 - 00001838 ____A C:\Users\Public\Desktop\McAfee Security Center.lnk 2013-07-09 09:02 - 2013-06-18 14:45 - 00000000 ___RD C:\Users\Tausha\Dropbox 2013-07-09 09:02 - 2013-06-18 14:32 - 00000000 ____D C:\Users\Tausha\AppData\Roaming\Dropbox 2013-07-09 09:01 - 2013-03-09 18:50 - 00007205 ____A C:\lxbm.log 2013-07-09 09:00 - 2013-06-24 11:33 - 00004726 ____A C:\Windows\setupact.log 2013-07-09 09:00 - 2009-07-13 20:53 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-07-08 12:11 - 2013-07-08 12:11 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup (4).exe 2013-07-08 12:10 - 2013-07-08 12:09 - 00650027 ____A C:\Users\Tausha\Downloads\AdwCleaner.exe 2013-07-08 12:03 - 2013-07-08 12:03 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup (3).exe 2013-07-08 07:02 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\Microsoft.NET 2013-07-07 23:22 - 2013-05-14 09:46 - 00019436 ____A C:\Windows\PFRO.log 2013-07-07 23:09 - 2013-07-07 23:09 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup (2).exe 2013-07-07 22:04 - 2013-07-07 22:04 - 00014785 ____A C:\ComboFix.txt 2013-07-07 22:04 - 2013-07-07 21:27 - 00000000 ____D C:\Qoobox 2013-07-07 22:04 - 2009-07-13 18:37 - 00000000 ___RD C:\users\Public 2013-07-07 22:00 - 2013-07-05 05:31 - 00000000 ____D C:\Windows\ERDNT 2013-07-07 21:58 - 2009-07-13 18:04 - 00000215 ____A C:\Windows\system.ini 2013-07-07 20:39 - 2013-07-07 21:13 - 05087001 ____R (Swearware) C:\Users\Tausha\Desktop\ComboFix.exe 2013-07-07 20:00 - 2010-11-20 13:01 - 00777138 ____A C:\Windows\System32\PerfStringBackup.INI 2013-07-07 15:16 - 2013-02-16 18:35 - 00000581 ____A C:\Windows\Lexstat.ini 2013-07-06 18:24 - 2013-07-06 18:24 - 00010920 ____A C:\aolconnfix.exe 2013-07-06 18:24 - 2013-06-18 13:10 - 00001039 ____A C:\aolconnfix.txt 2013-07-06 18:23 - 2013-07-02 14:32 - 00000000 ____D C:\Users\Tausha\Documents\CurrentLEtemplate 2013-07-06 17:54 - 2013-07-06 17:54 - 00001076 ____A C:\Users\Public\Desktop\Express Scribe.lnk 2013-07-06 17:54 - 2013-07-06 17:54 - 00000000 ____D C:\Users\Tausha\AppData\Roaming\NCH Software 2013-07-06 17:54 - 2013-07-06 17:54 - 00000000 ____D C:\ProgramData\NCH Software 2013-07-06 17:54 - 2013-07-06 17:54 - 00000000 ____D C:\Program Files\NCH Software 2013-07-06 17:45 - 2013-07-06 17:45 - 00083128 ____A C:\Users\Tausha\AppData\Roaming\Scribe.dmp 2013-07-06 12:08 - 2013-07-06 12:07 - 00049913 ____A C:\Users\Tausha\Desktop\Result.txt 2013-07-06 11:01 - 2013-07-06 12:01 - 00890988 ____A C:\Users\Tausha\Desktop\SecurityCheck.exe 2013-07-06 10:58 - 2013-07-06 12:01 - 00760775 ____A (Farbar) C:\Users\Tausha\Desktop\MiniToolBox.exe 2013-07-05 09:58 - 2013-07-05 09:57 - 00004222 ____A C:\AdwCleaner[s1].txt 2013-07-05 09:21 - 2013-07-05 09:11 - 00000000 ____D C:\JRT 2013-07-05 09:12 - 2013-07-05 09:12 - 00000000 ____D C:\Windows\ERUNT 2013-07-05 07:50 - 2009-07-13 20:53 - 00032642 ____A C:\Windows\Tasks\SCHEDLGU.TXT 2013-07-05 07:07 - 2013-07-05 07:06 - 00139248 ____A C:\Windows\Minidump\070513-91531-01.dmp 2013-07-05 07:06 - 2013-06-26 20:56 - 234213360 ____A C:\Windows\MEMORY.DMP 2013-07-05 07:06 - 2013-04-14 10:31 - 00000000 ____D C:\Windows\Minidump 2013-07-05 06:51 - 2013-03-17 11:58 - 00000000 ____D C:\Users\Tausha\AppData\Local\Netscape 2013-07-05 06:22 - 2013-07-05 06:22 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-07-04 15:11 - 2013-07-04 14:57 - 00000000 ____D C:\Users\Tausha\Documents\WTJuly1-72013 2013-07-04 15:11 - 2013-07-04 14:15 - 00000000 ____D C:\Users\Tausha\Documents\WTApril8-142013 2013-07-04 14:57 - 2013-07-04 14:57 - 00334076 ____A C:\Users\Tausha\Documents\WTJuly1-72013.zip 2013-07-04 14:15 - 2013-07-04 14:15 - 00230841 ____A C:\Users\Tausha\Documents\WTApril8-142013.zip 2013-07-04 14:12 - 2013-07-04 14:12 - 00416740 ____A C:\Users\Tausha\Documents\WTDecember17-23.zip 2013-07-03 16:16 - 2013-07-03 16:16 - 00139248 ____A C:\Windows\Minidump\070313-36359-01.dmp 2013-07-03 09:38 - 2013-07-03 09:38 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup (1).exe 2013-07-02 16:33 - 2013-03-06 10:54 - 00000000 ____D C:\Users\Tausha\Documents\Kurlan-DoNotAbstractList 2013-07-02 15:17 - 2013-07-02 15:17 - 00000000 ____D C:\Users\Tausha\AppData\Local\AVG SafeGuard toolbar 2013-07-02 15:08 - 2013-07-02 15:06 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar 2013-07-02 15:06 - 2013-07-02 15:06 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar 2013-07-02 15:05 - 2013-07-02 15:07 - 00037664 ____A (AVG Technologies) C:\Windows\System32\Drivers\avgtpx86.sys 2013-07-02 14:34 - 2013-07-02 14:11 - 00000000 ____D C:\Users\Tausha\Documents\stutters_partialspokenwords 2013-07-02 14:32 - 2013-07-02 14:32 - 04460004 ____A C:\Users\Tausha\Documents\CurrentLEtemplate.zip 2013-07-02 14:11 - 2013-07-02 14:11 - 01471626 ____A C:\Users\Tausha\Documents\stutters_partialspokenwords.zip 2013-07-02 12:41 - 2013-07-02 10:05 - 00000000 ____D C:\Users\Tausha\Documents\quote 2013-07-02 10:05 - 2013-07-02 10:04 - 04763923 ____A C:\Users\Tausha\Documents\quote.zip 2013-07-01 12:35 - 2013-07-01 12:35 - 00791393 ____A (Lars Hederer ) C:\Users\Tausha\Downloads\erunt-setup.exe 2013-06-28 11:30 - 2013-06-20 14:46 - 00000000 ____D C:\Program Files\McAfee Security Scan 2013-06-27 11:45 - 2013-06-23 19:05 - 00000000 ____D C:\Users\Tausha\Documents\AuthorizationtoConductaBackgroundInvestigation 2013-06-27 11:45 - 2013-02-21 12:45 - 00000000 ____D C:\Users\Tausha\Documents\ConfidentialityStatementNonWorkforce 2013-06-27 09:08 - 2013-05-08 18:15 - 00000000 ____D C:\Users\Tausha\Documents\LA_200701516595 2013-06-27 09:01 - 2013-06-13 13:11 - 00000000 ____D C:\Users\Tausha\Documents\ProspectiveIndependentContractorQuestionnaire 2013-06-27 08:52 - 2013-06-27 08:45 - 00000000 ____D C:\Users\Tausha\Documents\LE-Independent-contractor-agmt 2013-06-27 08:45 - 2013-06-27 08:45 - 00134124 ____A C:\Users\Tausha\Documents\LE-Independent-contractor-agmt.zip 2013-06-26 20:57 - 2013-06-26 20:57 - 00139248 ____A C:\Windows\Minidump\062613-31984-01.dmp 2013-06-25 19:28 - 2013-06-25 19:19 - 00000000 ____D C:\Users\Tausha\Documents\CBS-SM-June24-302013 2013-06-24 11:33 - 2013-06-24 11:33 - 00000000 ____A C:\Windows\setuperr.log 2013-06-24 11:32 - 2013-06-17 13:03 - 00007609 ____A C:\Users\Tausha\AppData\Local\Resmon.ResmonCfg 2013-06-24 10:23 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\System32\NDF 2013-06-23 19:05 - 2013-06-23 19:05 - 00339111 ____A C:\Users\Tausha\Documents\AuthorizationtoConductaBackgroundInvestigation.zip 2013-06-21 17:04 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\rescache 2013-06-20 16:06 - 2013-02-14 22:56 - 00000000 ____D C:\Users\Tausha\AppData\Roaming\Apple Computer 2013-06-20 16:02 - 2013-06-20 16:02 - 00001053 ____A C:\Users\Tausha\Desktop\Dropbox.lnk 2013-06-20 15:12 - 2013-06-20 15:12 - 00000129 ____A C:\Windows\System32\MRT.INI 2013-06-20 15:06 - 2013-02-15 08:10 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-06-20 14:46 - 2013-06-20 14:46 - 00000000 ____D C:\ProgramData\McAfee Security Scan 2013-06-20 14:45 - 2013-06-20 14:42 - 00004790 ____A C:\Windows\System32\jupdate-1.7.0_25-b16.log 2013-06-20 14:45 - 2013-02-14 22:28 - 00000000 ____D C:\Program Files\Java 2013-06-20 10:12 - 2013-02-14 18:23 - 00000000 ____D C:\users\Tausha 2013-06-20 10:10 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\System32\wfp 2013-06-20 10:08 - 2009-07-13 20:52 - 00000000 ____D C:\Program Files\Windows Sidebar 2013-06-20 10:08 - 2009-07-13 20:52 - 00000000 ____D C:\Program Files\Windows Portable Devices 2013-06-20 10:08 - 2009-07-13 20:52 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2013-06-20 10:08 - 2009-07-13 20:52 - 00000000 ____D C:\Program Files\Windows Defender 2013-06-20 10:08 - 2009-07-13 20:52 - 00000000 ____D C:\Program Files\DVD Maker 2013-06-20 10:08 - 2009-07-13 18:37 - 00000000 __RSD C:\Windows\Media 2013-06-20 10:08 - 2009-07-13 18:37 - 00000000 __RHD C:\Users\Public\Libraries 2013-06-20 10:08 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\System32\DriverStore 2013-06-20 10:08 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\system 2013-06-20 10:08 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\IME 2013-06-20 10:08 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\Cursors 2013-06-20 10:08 - 2009-07-13 18:37 - 00000000 ____D C:\Program Files\Common Files\System 2013-06-20 10:07 - 2013-06-06 20:06 - 00000000 ____D C:\Program Files\iTunes 2013-06-20 10:07 - 2013-05-30 15:34 - 00000000 ____D C:\Program Files\QuickTime 2013-06-20 10:07 - 2013-04-02 10:49 - 00000000 ____D C:\Program Files\Windows Phone 2013-06-20 10:07 - 2013-03-05 10:52 - 00000000 ____D C:\Users\Tausha\AppData\Roaming\ICAClient 2013-06-20 10:07 - 2013-02-17 15:18 - 00000000 ____D C:\Program Files\Common Files\AOL 2013-06-20 10:07 - 2013-02-16 18:33 - 00000000 ____D C:\Program Files\Lexmark 4200 Series 2013-06-20 10:07 - 2013-02-15 16:19 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-06-20 10:07 - 2013-02-15 12:19 - 00000000 ____D C:\Program Files\SystemRequirementsLab 2013-06-20 10:07 - 2013-02-14 22:50 - 00000000 ____D C:\Program Files\Bonjour 2013-06-20 10:07 - 2013-02-14 22:26 - 00000000 ____D C:\Program Files\CDBurnerXP 2013-06-20 10:07 - 2013-02-14 22:24 - 00000000 ____D C:\ProgramData\McAfee 2013-06-20 10:07 - 2013-02-14 22:22 - 00000000 ____D C:\Program Files\CCleaner 2013-06-20 10:07 - 2013-02-14 22:18 - 00000000 ____D C:\Program Files\DVDFab 8 Qt 2013-06-20 10:07 - 2009-07-13 20:52 - 00000000 ____D C:\Windows\System32\restore 2013-06-20 10:07 - 2009-07-13 18:37 - 00000000 ___HD C:\Windows\System32\GroupPolicy 2013-06-20 10:07 - 2009-07-13 18:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2013-06-20 10:06 - 2013-02-17 15:18 - 00000000 ____D C:\Program Files\AOL Desktop 9.7 2013-06-20 10:06 - 2013-02-14 22:50 - 00000000 ____D C:\Program Files\Apple Software Update 2013-06-20 10:03 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\registration 2013-06-20 09:53 - 2013-02-14 21:21 - 00000000 ___RD C:\MSOCache 2013-06-17 09:13 - 2013-06-17 09:13 - 00000000 ____D C:\found.000 2013-06-13 13:11 - 2013-06-13 13:11 - 00018390 ____A C:\Users\Tausha\Documents\ProspectiveIndependentContractorQuestionnaire.zip 2013-06-12 20:48 - 2013-06-20 14:45 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll 2013-06-12 20:48 - 2013-02-14 22:29 - 00867240 ____A (Oracle Corporation) C:\Windows\System32\npdeployJava1.dll 2013-06-12 20:48 - 2013-02-14 22:09 - 00789416 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll 2013-06-12 20:43 - 2013-06-20 14:45 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe 2013-06-12 20:43 - 2013-06-20 14:45 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe 2013-06-12 20:43 - 2013-06-20 14:45 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe 2013-06-12 13:17 - 2013-02-15 08:49 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe 2013-06-12 13:17 - 2013-02-15 08:49 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl 2013-06-10 12:59 - 2013-06-10 12:59 - 04378864 ____A (Piriform Ltd) C:\Users\Tausha\Downloads\ccsetup402.exe ==================== Known DLLs (Whitelisted) ============ ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= Restore point made on: 2013-07-02 11:54:25 Restore point made on: 2013-07-02 15:11:59 Restore point made on: 2013-07-02 20:54:58 Restore point made on: 2013-07-03 09:11:03 Restore point made on: 2013-07-03 19:34:55 Restore point made on: 2013-07-04 16:01:55 Restore point made on: 2013-07-05 05:52:28 Restore point made on: 2013-07-05 07:02:19 Restore point made on: 2013-07-05 08:30:32 Restore point made on: 2013-07-05 16:58:34 Restore point made on: 2013-07-07 19:51:48 ==================== Memory info =========================== Percentage of memory in use: 19% Total physical RAM: 2039.44 MB Available physical RAM: 1638.88 MB Total Pagefile: 2039.44 MB Available Pagefile: 1644.54 MB Total Virtual: 2047.88 MB Available Virtual: 1940.92 MB ==================== Drives ================================ Drive c: (New Volume) (Fixed) (Total:74.53 GB) (Free:38.94 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive e: (UDISK 20X) (Removable) (Total:0.47 GB) (Free:0.44 GB) FAT Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 75 GB) (Disk ID: EDE72478) Partition 1: (Active) - (Size=75 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 481 MB) (Disk ID: DC8808A5) Partition 1: (Active) - (Size=481 MB) - (Type=06) LastRegBack: 2013-07-07 15:49 ==================== End Of Log ============================ Thank you
  7. Here's the MBAR system log: --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.06.0.1004 © Malwarebytes Corporation 2011-2012 OS version: 6.1.7601 Windows 7 Service Pack 1 x86 Account is Administrative Internet Explorer version: 10.0.9200.16618 File system is: FAT Disk drives: C:\ DRIVE_FIXED CPU speed: 1.596000 GHz Memory total: 2138509312, free: 1020071936 Downloaded database version: v2013.07.05.02 Initializing... ------------ Kernel report ------------ 07/05/2013 07:25:27 ------------ Loaded modules ----------- \SystemRoot\system32\ntkrnlpa.exe \SystemRoot\system32\halmacpi.dll \SystemRoot\system32\kdcom.dll \SystemRoot\system32\mcupdate_GenuineIntel.dll \SystemRoot\system32\PSHED.dll \SystemRoot\system32\BOOTVID.dll \SystemRoot\system32\CLFS.SYS \SystemRoot\system32\CI.dll \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\system32\drivers\ACPI.sys \SystemRoot\system32\drivers\WMILIB.SYS \SystemRoot\system32\drivers\msisadrv.sys \SystemRoot\system32\drivers\pci.sys \SystemRoot\system32\drivers\vdrvroot.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\system32\DRIVERS\compbatt.sys \SystemRoot\system32\DRIVERS\BATTC.SYS \SystemRoot\system32\drivers\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\system32\drivers\intelide.sys \SystemRoot\system32\drivers\PCIIDEX.SYS \SystemRoot\system32\DRIVERS\pcmcia.sys \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\system32\drivers\atapi.sys \SystemRoot\system32\drivers\ataport.SYS \SystemRoot\system32\drivers\amdxata.sys \SystemRoot\system32\drivers\fltmgr.sys \SystemRoot\system32\drivers\fileinfo.sys \SystemRoot\system32\drivers\mfehidk.sys \SystemRoot\System32\Drivers\Ntfs.sys \SystemRoot\System32\Drivers\msrpc.sys \SystemRoot\System32\Drivers\ksecdd.sys \SystemRoot\System32\Drivers\cng.sys \SystemRoot\System32\drivers\pcw.sys \SystemRoot\System32\Drivers\Fs_Rec.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\Drivers\ksecpkg.sys \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\system32\drivers\mfewfpk.sys \SystemRoot\system32\drivers\vmstorfl.sys \SystemRoot\system32\drivers\volsnap.sys \SystemRoot\System32\Drivers\spldr.sys \SystemRoot\System32\drivers\rdyboost.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\System32\drivers\hwpolicy.sys \SystemRoot\System32\DRIVERS\fvevol.sys \SystemRoot\system32\drivers\disk.sys \SystemRoot\system32\drivers\CLASSPNP.SYS \SystemRoot\system32\DRIVERS\cdrom.sys \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \??\C:\Windows\system32\drivers\avgtpx86.sys \SystemRoot\System32\drivers\vga.sys \SystemRoot\System32\drivers\VIDEOPRT.SYS \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\System32\DRIVERS\RDPCDD.sys \SystemRoot\system32\drivers\rdpencdd.sys \SystemRoot\system32\drivers\rdprefmp.sys \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\drivers\afd.sys \SystemRoot\system32\DRIVERS\wfplwf.sys \SystemRoot\system32\DRIVERS\pacer.sys \SystemRoot\system32\DRIVERS\vwififlt.sys \SystemRoot\system32\DRIVERS\netbios.sys \SystemRoot\system32\DRIVERS\wanarp.sys \SystemRoot\system32\DRIVERS\termdd.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\system32\DRIVERS\mssmbios.sys \SystemRoot\System32\drivers\discache.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\system32\DRIVERS\ctxusbm.sys \SystemRoot\system32\drivers\csc.sys \SystemRoot\system32\DRIVERS\blbdrive.sys \SystemRoot\system32\DRIVERS\tunnel.sys \SystemRoot\system32\DRIVERS\intelppm.sys \SystemRoot\system32\DRIVERS\CmBatt.sys \SystemRoot\system32\DRIVERS\ialmnt5.sys \SystemRoot\system32\DRIVERS\usbuhci.sys \SystemRoot\system32\DRIVERS\USBPORT.SYS \SystemRoot\system32\DRIVERS\usbehci.sys \SystemRoot\system32\DRIVERS\bcm4sbxp.sys \SystemRoot\system32\DRIVERS\1394ohci.sys \SystemRoot\system32\DRIVERS\sdbus.sys \SystemRoot\system32\DRIVERS\NETw2v32.sys \SystemRoot\system32\drivers\STAC97.sys \SystemRoot\system32\drivers\portcls.sys \SystemRoot\system32\drivers\drmk.sys \SystemRoot\system32\drivers\ks.sys \SystemRoot\system32\DRIVERS\VSTICH3.SYS \SystemRoot\system32\DRIVERS\VSTDPV3.SYS \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS \SystemRoot\system32\drivers\modem.sys \SystemRoot\system32\DRIVERS\i8042prt.sys \SystemRoot\system32\DRIVERS\mouclass.sys \SystemRoot\system32\DRIVERS\kbdclass.sys \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys \SystemRoot\system32\DRIVERS\CompositeBus.sys \SystemRoot\system32\DRIVERS\AgileVpn.sys \SystemRoot\system32\DRIVERS\rasl2tp.sys \SystemRoot\system32\DRIVERS\ndistapi.sys \SystemRoot\system32\DRIVERS\ndiswan.sys \SystemRoot\system32\DRIVERS\raspppoe.sys \SystemRoot\system32\DRIVERS\raspptp.sys \SystemRoot\system32\DRIVERS\rassstp.sys \SystemRoot\system32\DRIVERS\wanatw4.sys \SystemRoot\system32\DRIVERS\rdpbus.sys \SystemRoot\system32\DRIVERS\swenum.sys \SystemRoot\system32\DRIVERS\umbus.sys \SystemRoot\system32\DRIVERS\monitor.sys \SystemRoot\system32\DRIVERS\usbhub.sys \SystemRoot\System32\Drivers\NDProxy.SYS \SystemRoot\system32\drivers\mfeavfk.sys \SystemRoot\system32\drivers\mfefirek.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\drivers\Dxapi.sys \SystemRoot\System32\drivers\dxg.sys \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\System32\Drivers\dump_dumpata.sys \SystemRoot\System32\Drivers\dump_atapi.sys \SystemRoot\System32\Drivers\dump_dumpfve.sys \SystemRoot\system32\DRIVERS\usbccgp.sys \SystemRoot\system32\DRIVERS\USBD.SYS \SystemRoot\system32\DRIVERS\usbscan.sys \SystemRoot\system32\DRIVERS\usbprint.sys \SystemRoot\system32\DRIVERS\hidusb.sys \SystemRoot\system32\DRIVERS\HIDCLASS.SYS \SystemRoot\system32\DRIVERS\HIDPARSE.SYS \SystemRoot\system32\DRIVERS\kbdhid.sys \SystemRoot\System32\TSDDD.dll \SystemRoot\System32\ialmdnt5.dll \SystemRoot\System32\ialmrnt5.dll \SystemRoot\System32\ialmdev5.DLL \SystemRoot\System32\ialmdd5.DLL \SystemRoot\system32\drivers\luafv.sys \SystemRoot\system32\DRIVERS\lltdio.sys \SystemRoot\system32\DRIVERS\nwifi.sys \SystemRoot\system32\DRIVERS\ndisuio.sys \SystemRoot\system32\DRIVERS\rspndr.sys \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb10.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\system32\drivers\peauth.sys \SystemRoot\System32\Drivers\secdrv.SYS \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\System32\DRIVERS\srv2.sys \SystemRoot\System32\DRIVERS\srv.sys \SystemRoot\system32\drivers\mfeapfk.sys \SystemRoot\system32\drivers\cfwids.sys \SystemRoot\system32\DRIVERS\USBSTOR.SYS \SystemRoot\System32\Drivers\fastfat.SYS \SystemRoot\system32\drivers\WudfPf.sys \SystemRoot\system32\DRIVERS\WUDFRd.sys \??\C:\Windows\system32\drivers\mbamchameleon.sys \??\C:\Windows\system32\drivers\mbamswissarmy.sys \Windows\System32\ntdll.dll \Windows\System32\smss.exe \Windows\System32\apisetschema.dll \Windows\System32\autochk.exe \Windows\System32\shlwapi.dll \Windows\System32\lpk.dll \Windows\System32\kernel32.dll \Windows\System32\advapi32.dll \Windows\System32\msvcrt.dll \Windows\System32\oleaut32.dll \Windows\System32\Wldap32.dll \Windows\System32\rpcrt4.dll \Windows\System32\imagehlp.dll \Windows\System32\ole32.dll \Windows\System32\urlmon.dll \Windows\System32\shell32.dll \Windows\System32\msctf.dll \Windows\System32\imm32.dll \Windows\System32\setupapi.dll \Windows\System32\comdlg32.dll \Windows\System32\gdi32.dll \Windows\System32\usp10.dll \Windows\System32\difxapi.dll \Windows\System32\ws2_32.dll \Windows\System32\normaliz.dll \Windows\System32\sechost.dll \Windows\System32\clbcatq.dll \Windows\System32\user32.dll \Windows\System32\iertutil.dll \Windows\System32\wininet.dll \Windows\System32\psapi.dll \Windows\System32\nsi.dll \Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll \Windows\System32\cfgmgr32.dll \Windows\System32\comctl32.dll \Windows\System32\devobj.dll \Windows\System32\KernelBase.dll \Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll \Windows\System32\crypt32.dll \Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll \Windows\System32\wintrust.dll \Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll \Windows\System32\msasn1.dll ----------- End ----------- Done! <<<1>>> Upper Device Name: \Device\Harddisk1\DR1 Upper Device Object: 0xffffffff85c5f4d0 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\0000007b\ Lower Device Object: 0xffffffff87dfd250 Lower Device Driver Name: \Driver\USBSTOR\ <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xffffffff86819030 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\ Lower Device Object: 0xffffffff85a6a030 Lower Device Driver Name: \00000661\ IRP handler 0 of \Driver\atapi points to an unknown module Unhooking enabled. <<<1>>> Upper Device Name: \Device\Harddisk1\DR1 Upper Device Object: 0xffffffff85c5f4d0 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\0000007b\ Lower Device Object: 0xffffffff87dfd250 Lower Device Driver Name: \Driver\USBSTOR\ Driver name found: USBSTOR Initialization returned 0x0 Load Function returned 0x0 <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xffffffff86819030 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\ Lower Device Object: 0xffffffff85a6a030 Lower Device Driver Name: \00000661\ Driver name found: atapi Initialization returned 0x0 Port sub-driver loaded: \??\C:\Windows\System32\drivers\ataport.sys (0x0) Load Function returned 0x0 <<<2>>> Device number: 0, partition: 1 Physical Sector Size: 512 Drive: 0, DevicePointer: 0xffffffff86819030, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff868196c0, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff86819030, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ DevicePointer: 0xffffffff85a6a030, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \00000661\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ Upper DeviceData: 0xffffffffb2e557f8, 0xffffffff86819030, 0xffffffff87fa1510 Lower DeviceData: 0xffffffffbea434e8, 0xffffffff85a6a030, 0xffffffff879b0f08 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning drivers directory: C:\Windows\system32\drivers... <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Done! Drive 0 Scanning MBR on drive 0... MBR buffers are not equal MBR is forged! [0c09dbfb6e001608950df0db533ee0d1] Inspecting partition table: MBR Signature: 55AA Disk Signature: EDE72478 Partition information: Partition 0 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 2048 Numsec = 156297216 Partition file system is NTFS Partition is bootable Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Replacement MBR for a drive 0 found MBR infection found on drive 0 Disk Size: 80026361856 bytes Sector size: 512 bytes Scanning physical sectors of unpartitioned space on drive 0 (1-2047-156281488-156301488)... Sectors 156301248 - 156301487 --> [Forged physical sectors] Done! Physical Sector Size: 512 Drive: 1, DevicePointer: 0xffffffff85c5f4d0, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff87cac950, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff85c5f4d0, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ DevicePointer: 0xffffffff87dfd250, DeviceName: \Device\0000007b\, DriverName: \Driver\USBSTOR\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ Upper DeviceData: 0xffffffffb2f50048, 0xffffffff85c5f4d0, 0xffffffff85e81ac8 Lower DeviceData: 0xffffffffb7545388, 0xffffffff87dfd250, 0xffffffff85cd45c8 Drive 1 Scanning MBR on drive 1... Inspecting partition table: MBR Signature: 55AA Disk Signature: DC8808A5 Partition information: Partition 0 type is Other (0x6) Partition is ACTIVE. Partition starts at LBA: 32 Numsec = 985056 Partition file system is FAT Partition is not bootable Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 504365056 bytes Sector size: 512 bytes Done! Infected: c:\users\tausha\local settings\netscape\xkoldmmx.dll --> [Trojan.Tracur.srdGen] Scan finished Creating System Restore point... Cleaning up... <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Removal scheduling successful. System shutdown needed. System shutdown occurred ======================================= --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.06.0.1004 © Malwarebytes Corporation 2011-2012 OS version: 6.1.7601 Windows 7 Service Pack 1 x86 Account is Administrative Internet Explorer version: 10.0.9200.16618 File system is: FAT Disk drives: C:\ DRIVE_FIXED CPU speed: 1.250000 GHz Memory total: 2138509312, free: 1071669248 Initializing... ------------ Kernel report ------------ 07/05/2013 09:02:11 ------------ Loaded modules ----------- \SystemRoot\system32\ntkrnlpa.exe \SystemRoot\system32\halmacpi.dll \SystemRoot\system32\kdcom.dll \SystemRoot\system32\mcupdate_GenuineIntel.dll \SystemRoot\system32\PSHED.dll \SystemRoot\system32\BOOTVID.dll \SystemRoot\system32\CLFS.SYS \SystemRoot\system32\CI.dll \SystemRoot\System32\drivers\imofugc.sys \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\system32\drivers\ACPI.sys \SystemRoot\system32\drivers\WMILIB.SYS \SystemRoot\system32\drivers\msisadrv.sys \SystemRoot\system32\drivers\pci.sys \SystemRoot\system32\drivers\vdrvroot.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\system32\DRIVERS\compbatt.sys \SystemRoot\system32\DRIVERS\BATTC.SYS \SystemRoot\system32\drivers\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\system32\drivers\intelide.sys \SystemRoot\system32\drivers\PCIIDEX.SYS \SystemRoot\system32\DRIVERS\pcmcia.sys \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\system32\drivers\atapi.sys \SystemRoot\system32\drivers\ataport.SYS \SystemRoot\system32\drivers\amdxata.sys \SystemRoot\system32\drivers\fltmgr.sys \SystemRoot\system32\drivers\fileinfo.sys \SystemRoot\system32\drivers\mfehidk.sys \SystemRoot\System32\Drivers\Ntfs.sys \SystemRoot\System32\Drivers\msrpc.sys \SystemRoot\System32\Drivers\ksecdd.sys \SystemRoot\System32\Drivers\cng.sys \SystemRoot\System32\drivers\pcw.sys \SystemRoot\System32\Drivers\Fs_Rec.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\Drivers\ksecpkg.sys \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\system32\drivers\mfewfpk.sys \SystemRoot\system32\drivers\vmstorfl.sys \SystemRoot\system32\drivers\volsnap.sys \SystemRoot\System32\Drivers\spldr.sys \SystemRoot\System32\drivers\rdyboost.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\System32\drivers\hwpolicy.sys \SystemRoot\System32\DRIVERS\fvevol.sys \SystemRoot\system32\drivers\disk.sys \SystemRoot\system32\drivers\CLASSPNP.SYS \SystemRoot\system32\DRIVERS\cdrom.sys \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \??\C:\Windows\system32\drivers\avgtpx86.sys \SystemRoot\System32\drivers\vga.sys \SystemRoot\System32\drivers\VIDEOPRT.SYS \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\System32\DRIVERS\RDPCDD.sys \SystemRoot\system32\drivers\rdpencdd.sys \SystemRoot\system32\drivers\rdprefmp.sys \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\drivers\afd.sys \SystemRoot\system32\DRIVERS\wfplwf.sys \SystemRoot\system32\DRIVERS\pacer.sys \SystemRoot\system32\DRIVERS\vwififlt.sys \SystemRoot\system32\DRIVERS\netbios.sys \SystemRoot\system32\DRIVERS\wanarp.sys \SystemRoot\system32\DRIVERS\termdd.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\system32\DRIVERS\mssmbios.sys \SystemRoot\System32\drivers\discache.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\system32\DRIVERS\ctxusbm.sys \SystemRoot\system32\drivers\csc.sys \SystemRoot\system32\DRIVERS\blbdrive.sys \SystemRoot\system32\DRIVERS\tunnel.sys \SystemRoot\system32\DRIVERS\intelppm.sys \SystemRoot\system32\DRIVERS\CmBatt.sys \SystemRoot\system32\DRIVERS\ialmnt5.sys \SystemRoot\system32\DRIVERS\usbuhci.sys \SystemRoot\system32\DRIVERS\USBPORT.SYS \SystemRoot\system32\DRIVERS\usbehci.sys \SystemRoot\system32\DRIVERS\bcm4sbxp.sys \SystemRoot\system32\DRIVERS\1394ohci.sys \SystemRoot\system32\DRIVERS\sdbus.sys \SystemRoot\system32\DRIVERS\NETw2v32.sys \SystemRoot\system32\drivers\STAC97.sys \SystemRoot\system32\drivers\portcls.sys \SystemRoot\system32\drivers\drmk.sys \SystemRoot\system32\drivers\ks.sys \SystemRoot\system32\DRIVERS\VSTICH3.SYS \SystemRoot\system32\DRIVERS\VSTDPV3.SYS \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS \SystemRoot\system32\drivers\modem.sys \SystemRoot\system32\DRIVERS\i8042prt.sys \SystemRoot\system32\DRIVERS\mouclass.sys \SystemRoot\system32\DRIVERS\kbdclass.sys \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys \SystemRoot\system32\DRIVERS\CompositeBus.sys \SystemRoot\system32\DRIVERS\AgileVpn.sys \SystemRoot\system32\DRIVERS\rasl2tp.sys \SystemRoot\system32\DRIVERS\ndistapi.sys \SystemRoot\system32\DRIVERS\ndiswan.sys \SystemRoot\system32\DRIVERS\raspppoe.sys \SystemRoot\system32\DRIVERS\raspptp.sys \SystemRoot\system32\DRIVERS\rassstp.sys \SystemRoot\system32\DRIVERS\wanatw4.sys \SystemRoot\system32\DRIVERS\rdpbus.sys \SystemRoot\system32\DRIVERS\swenum.sys \SystemRoot\system32\DRIVERS\umbus.sys \SystemRoot\system32\DRIVERS\monitor.sys \SystemRoot\system32\DRIVERS\usbhub.sys \SystemRoot\System32\Drivers\NDProxy.SYS \SystemRoot\system32\drivers\mfeavfk.sys \SystemRoot\system32\drivers\mfefirek.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\drivers\Dxapi.sys \SystemRoot\System32\drivers\dxg.sys \SystemRoot\System32\TSDDD.dll \SystemRoot\System32\ialmdnt5.dll \SystemRoot\System32\ialmrnt5.dll \SystemRoot\System32\ialmdev5.DLL \SystemRoot\System32\ialmdd5.DLL \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\System32\Drivers\dump_dumpata.sys \SystemRoot\System32\Drivers\dump_atapi.sys \SystemRoot\System32\Drivers\dump_dumpfve.sys \SystemRoot\system32\DRIVERS\usbccgp.sys \SystemRoot\system32\DRIVERS\USBD.SYS \SystemRoot\system32\DRIVERS\usbscan.sys \SystemRoot\system32\DRIVERS\usbprint.sys \SystemRoot\system32\DRIVERS\hidusb.sys \SystemRoot\system32\DRIVERS\HIDCLASS.SYS \SystemRoot\system32\DRIVERS\HIDPARSE.SYS \SystemRoot\system32\DRIVERS\USBSTOR.SYS \SystemRoot\system32\DRIVERS\kbdhid.sys \SystemRoot\system32\drivers\luafv.sys \SystemRoot\system32\DRIVERS\lltdio.sys \SystemRoot\system32\DRIVERS\nwifi.sys \SystemRoot\system32\DRIVERS\ndisuio.sys \SystemRoot\system32\DRIVERS\rspndr.sys \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\System32\Drivers\fastfat.SYS \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb10.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\system32\drivers\peauth.sys \SystemRoot\System32\Drivers\secdrv.SYS \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\System32\DRIVERS\srv2.sys \SystemRoot\System32\DRIVERS\srv.sys \SystemRoot\system32\drivers\mfeapfk.sys \SystemRoot\system32\drivers\WudfPf.sys \SystemRoot\system32\DRIVERS\WUDFRd.sys \SystemRoot\system32\drivers\cfwids.sys \??\C:\Windows\system32\drivers\mbamchameleon.sys \??\C:\Windows\system32\drivers\mbamswissarmy.sys \Windows\System32\ntdll.dll \Windows\System32\smss.exe \Windows\System32\apisetschema.dll \Windows\System32\autochk.exe \Windows\System32\imm32.dll \Windows\System32\nsi.dll \Windows\System32\lpk.dll \Windows\System32\shlwapi.dll \Windows\System32\imagehlp.dll \Windows\System32\user32.dll \Windows\System32\msctf.dll \Windows\System32\advapi32.dll \Windows\System32\oleaut32.dll \Windows\System32\ws2_32.dll \Windows\System32\wininet.dll \Windows\System32\usp10.dll \Windows\System32\comdlg32.dll \Windows\System32\gdi32.dll \Windows\System32\Wldap32.dll \Windows\System32\clbcatq.dll \Windows\System32\msvcrt.dll \Windows\System32\kernel32.dll \Windows\System32\normaliz.dll \Windows\System32\sechost.dll \Windows\System32\ole32.dll \Windows\System32\shell32.dll \Windows\System32\psapi.dll \Windows\System32\urlmon.dll \Windows\System32\setupapi.dll \Windows\System32\rpcrt4.dll \Windows\System32\iertutil.dll \Windows\System32\difxapi.dll \Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll \Windows\System32\comctl32.dll \Windows\System32\devobj.dll \Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll \Windows\System32\wintrust.dll \Windows\System32\cfgmgr32.dll \Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll \Windows\System32\crypt32.dll \Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll \Windows\System32\KernelBase.dll \Windows\System32\msasn1.dll ----------- End ----------- Done! <<<1>>> Upper Device Name: \Device\Harddisk1\DR1 Upper Device Object: 0xffffffff82bee458 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\00000073\ Lower Device Object: 0xffffffff82be32e8 Lower Device Driver Name: \Driver\USBSTOR\ <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xffffffff86817ac8 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\ Lower Device Object: 0xffffffff85a46610 Lower Device Driver Name: \00001237\ IRP handler 0 of \Driver\atapi points to an unknown module Unhooking enabled. <<<1>>> Upper Device Name: \Device\Harddisk1\DR1 Upper Device Object: 0xffffffff82bee458 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\00000073\ Lower Device Object: 0xffffffff82be32e8 Lower Device Driver Name: \Driver\USBSTOR\ Driver name found: USBSTOR Initialization returned 0x0 Load Function returned 0x0 <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xffffffff86817ac8 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\ Lower Device Object: 0xffffffff85a46610 Lower Device Driver Name: \00001237\ Driver name found: atapi Initialization returned 0x0 Port sub-driver loaded: \??\C:\Windows\System32\drivers\ataport.sys (0x0) Load Function returned 0x0 <<<2>>> Device number: 0, partition: 1 Physical Sector Size: 512 Drive: 0, DevicePointer: 0xffffffff86817ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff86818020, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff86817ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ DevicePointer: 0xffffffff85a46610, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \00001237\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ Upper DeviceData: 0xffffffffbd857200, 0xffffffff86817ac8, 0xffffffff8601f7c0 Lower DeviceData: 0xffffffff8feac188, 0xffffffff85a46610, 0xffffffff85e38b30 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning drivers directory: C:\Windows\system32\drivers... <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Done! Drive 0 Scanning MBR on drive 0... MBR buffers are not equal MBR is forged! [0c09dbfb6e001608950df0db533ee0d1] Inspecting partition table: MBR Signature: 55AA Disk Signature: EDE72478 Partition information: Partition 0 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 2048 Numsec = 156297216 Partition file system is NTFS Partition is bootable Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Replacement MBR for a drive 0 found MBR infection found on drive 0 Disk Size: 80026361856 bytes Sector size: 512 bytes Scanning physical sectors of unpartitioned space on drive 0 (1-2047-156281488-156301488)... Sectors 156301248 - 156301487 --> [Forged physical sectors] Done! Physical Sector Size: 512 Drive: 1, DevicePointer: 0xffffffff82bee458, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff82becd10, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff82bee458, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ DevicePointer: 0xffffffff82be32e8, DeviceName: \Device\00000073\, DriverName: \Driver\USBSTOR\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ Upper DeviceData: 0xffffffffb3ad0278, 0xffffffff82bee458, 0xffffffff860c6ac8 Lower DeviceData: 0xffffffffbd8ec3e8, 0xffffffff82be32e8, 0xffffffff85cee988 Drive 1 Scanning MBR on drive 1... Inspecting partition table: MBR Signature: 55AA Disk Signature: DC8808A5 Partition information: Partition 0 type is Other (0x6) Partition is ACTIVE. Partition starts at LBA: 32 Numsec = 985056 Partition file system is FAT Partition is not bootable Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 504365056 bytes Sector size: 512 bytes Done! Scan finished Creating System Restore point... Cleaning up... <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Removal scheduling successful. System shutdown needed. System shutdown occurred ======================================= --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.06.0.1004 © Malwarebytes Corporation 2011-2012 OS version: 6.1.7601 Windows 7 Service Pack 1 x86 Account is Administrative Internet Explorer version: 10.0.9200.16618 File system is: FAT Disk drives: C:\ DRIVE_FIXED CPU speed: 1.250000 GHz Memory total: 2138509312, free: 1057099776 Initializing... ------------ Kernel report ------------ 07/05/2013 09:41:34 ------------ Loaded modules ----------- \SystemRoot\system32\ntkrnlpa.exe \SystemRoot\system32\halmacpi.dll \SystemRoot\system32\kdcom.dll \SystemRoot\system32\mcupdate_GenuineIntel.dll \SystemRoot\system32\PSHED.dll \SystemRoot\system32\BOOTVID.dll \SystemRoot\system32\CLFS.SYS \SystemRoot\system32\CI.dll \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\system32\drivers\ACPI.sys \SystemRoot\system32\drivers\WMILIB.SYS \SystemRoot\system32\drivers\msisadrv.sys \SystemRoot\system32\drivers\pci.sys \SystemRoot\system32\drivers\vdrvroot.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\system32\DRIVERS\compbatt.sys \SystemRoot\system32\DRIVERS\BATTC.SYS \SystemRoot\system32\drivers\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\system32\drivers\intelide.sys \SystemRoot\system32\drivers\PCIIDEX.SYS \SystemRoot\system32\DRIVERS\pcmcia.sys \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\system32\drivers\atapi.sys \SystemRoot\system32\drivers\ataport.SYS \SystemRoot\system32\drivers\amdxata.sys \SystemRoot\system32\drivers\fltmgr.sys \SystemRoot\system32\drivers\fileinfo.sys \SystemRoot\system32\drivers\mfehidk.sys \SystemRoot\System32\Drivers\Ntfs.sys \SystemRoot\System32\Drivers\msrpc.sys \SystemRoot\System32\Drivers\ksecdd.sys \SystemRoot\System32\Drivers\cng.sys \SystemRoot\System32\drivers\pcw.sys \SystemRoot\System32\Drivers\Fs_Rec.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\Drivers\ksecpkg.sys \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\system32\drivers\mfewfpk.sys \SystemRoot\system32\drivers\vmstorfl.sys \SystemRoot\system32\drivers\volsnap.sys \SystemRoot\System32\Drivers\spldr.sys \SystemRoot\System32\drivers\rdyboost.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\System32\drivers\hwpolicy.sys \SystemRoot\System32\DRIVERS\fvevol.sys \SystemRoot\system32\drivers\disk.sys \SystemRoot\system32\drivers\CLASSPNP.SYS \SystemRoot\system32\DRIVERS\cdrom.sys \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \??\C:\Windows\system32\drivers\avgtpx86.sys \SystemRoot\System32\drivers\vga.sys \SystemRoot\System32\drivers\VIDEOPRT.SYS \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\System32\DRIVERS\RDPCDD.sys \SystemRoot\system32\drivers\rdpencdd.sys \SystemRoot\system32\drivers\rdprefmp.sys \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\drivers\afd.sys \SystemRoot\system32\DRIVERS\wfplwf.sys \SystemRoot\system32\DRIVERS\pacer.sys \SystemRoot\system32\DRIVERS\vwififlt.sys \SystemRoot\system32\DRIVERS\netbios.sys \SystemRoot\system32\DRIVERS\wanarp.sys \SystemRoot\system32\DRIVERS\termdd.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\system32\DRIVERS\mssmbios.sys \SystemRoot\System32\drivers\discache.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\system32\DRIVERS\ctxusbm.sys \SystemRoot\system32\drivers\csc.sys \SystemRoot\system32\DRIVERS\blbdrive.sys \SystemRoot\system32\DRIVERS\tunnel.sys \SystemRoot\system32\DRIVERS\intelppm.sys \SystemRoot\system32\DRIVERS\CmBatt.sys \SystemRoot\system32\DRIVERS\ialmnt5.sys \SystemRoot\system32\DRIVERS\usbuhci.sys \SystemRoot\system32\DRIVERS\USBPORT.SYS \SystemRoot\system32\DRIVERS\usbehci.sys \SystemRoot\system32\DRIVERS\bcm4sbxp.sys \SystemRoot\system32\DRIVERS\1394ohci.sys \SystemRoot\system32\DRIVERS\sdbus.sys \SystemRoot\system32\DRIVERS\NETw2v32.sys \SystemRoot\system32\drivers\STAC97.sys \SystemRoot\system32\drivers\portcls.sys \SystemRoot\system32\drivers\drmk.sys \SystemRoot\system32\drivers\ks.sys \SystemRoot\system32\DRIVERS\VSTICH3.SYS \SystemRoot\system32\DRIVERS\VSTDPV3.SYS \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS \SystemRoot\system32\drivers\modem.sys \SystemRoot\system32\DRIVERS\i8042prt.sys \SystemRoot\system32\DRIVERS\mouclass.sys \SystemRoot\system32\DRIVERS\kbdclass.sys \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys \SystemRoot\system32\DRIVERS\CompositeBus.sys \SystemRoot\system32\DRIVERS\AgileVpn.sys \SystemRoot\system32\DRIVERS\rasl2tp.sys \SystemRoot\system32\DRIVERS\ndistapi.sys \SystemRoot\system32\DRIVERS\ndiswan.sys \SystemRoot\system32\DRIVERS\raspppoe.sys \SystemRoot\system32\DRIVERS\raspptp.sys \SystemRoot\system32\DRIVERS\rassstp.sys \SystemRoot\system32\DRIVERS\wanatw4.sys \SystemRoot\system32\DRIVERS\rdpbus.sys \SystemRoot\system32\DRIVERS\swenum.sys \SystemRoot\system32\DRIVERS\umbus.sys \SystemRoot\system32\DRIVERS\monitor.sys \SystemRoot\system32\DRIVERS\usbhub.sys \SystemRoot\System32\Drivers\NDProxy.SYS \SystemRoot\system32\drivers\mfeavfk.sys \SystemRoot\system32\drivers\mfefirek.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\drivers\Dxapi.sys \SystemRoot\System32\drivers\dxg.sys \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\System32\Drivers\dump_dumpata.sys \SystemRoot\System32\Drivers\dump_atapi.sys \SystemRoot\System32\Drivers\dump_dumpfve.sys \SystemRoot\system32\DRIVERS\usbccgp.sys \SystemRoot\system32\DRIVERS\USBD.SYS \SystemRoot\system32\DRIVERS\USBSTOR.SYS \SystemRoot\system32\DRIVERS\usbscan.sys \SystemRoot\system32\DRIVERS\usbprint.sys \SystemRoot\system32\DRIVERS\hidusb.sys \SystemRoot\system32\DRIVERS\HIDCLASS.SYS \SystemRoot\system32\DRIVERS\HIDPARSE.SYS \SystemRoot\system32\DRIVERS\kbdhid.sys \SystemRoot\System32\TSDDD.dll \SystemRoot\System32\ialmdnt5.dll \SystemRoot\System32\ialmrnt5.dll \SystemRoot\System32\ialmdev5.DLL \SystemRoot\System32\ialmdd5.DLL \SystemRoot\system32\drivers\luafv.sys \SystemRoot\system32\DRIVERS\lltdio.sys \SystemRoot\system32\DRIVERS\nwifi.sys \SystemRoot\system32\DRIVERS\ndisuio.sys \SystemRoot\system32\DRIVERS\rspndr.sys \SystemRoot\System32\Drivers\fastfat.SYS \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb10.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\system32\drivers\peauth.sys \SystemRoot\System32\Drivers\secdrv.SYS \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\System32\DRIVERS\srv2.sys \SystemRoot\System32\DRIVERS\srv.sys \SystemRoot\system32\drivers\mfeapfk.sys \SystemRoot\system32\drivers\cfwids.sys \SystemRoot\system32\drivers\WudfPf.sys \SystemRoot\system32\DRIVERS\WUDFRd.sys \SystemRoot\system32\drivers\spsys.sys \??\C:\Windows\system32\drivers\mbamchameleon.sys \??\C:\Windows\system32\drivers\mbamswissarmy.sys \Windows\System32\ntdll.dll \Windows\System32\smss.exe \Windows\System32\apisetschema.dll \Windows\System32\autochk.exe \Windows\System32\shell32.dll \Windows\System32\ole32.dll \Windows\System32\clbcatq.dll \Windows\System32\comdlg32.dll \Windows\System32\lpk.dll \Windows\System32\usp10.dll \Windows\System32\iertutil.dll \Windows\System32\msvcrt.dll \Windows\System32\imagehlp.dll \Windows\System32\rpcrt4.dll \Windows\System32\ws2_32.dll \Windows\System32\wininet.dll \Windows\System32\advapi32.dll \Windows\System32\user32.dll \Windows\System32\oleaut32.dll \Windows\System32\urlmon.dll \Windows\System32\imm32.dll \Windows\System32\difxapi.dll \Windows\System32\setupapi.dll \Windows\System32\shlwapi.dll \Windows\System32\nsi.dll \Windows\System32\gdi32.dll \Windows\System32\Wldap32.dll \Windows\System32\psapi.dll \Windows\System32\msctf.dll \Windows\System32\normaliz.dll \Windows\System32\sechost.dll \Windows\System32\kernel32.dll \Windows\System32\KernelBase.dll \Windows\System32\devobj.dll \Windows\System32\crypt32.dll \Windows\System32\cfgmgr32.dll \Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll \Windows\System32\comctl32.dll \Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll \Windows\System32\wintrust.dll \Windows\System32\msasn1.dll ----------- End ----------- Done! <<<1>>> Upper Device Name: \Device\Harddisk1\DR1 Upper Device Object: 0xffffffff86b32ac8 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\00000071\ Lower Device Object: 0xffffffff86b2e5c0 Lower Device Driver Name: \Driver\USBSTOR\ <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xffffffff86415ac8 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\ Lower Device Object: 0xffffffff856a4610 Lower Device Driver Name: \Driver\atapi\ <<<2>>> Device number: 0, partition: 1 Physical Sector Size: 512 Drive: 0, DevicePointer: 0xffffffff86415ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff864157a8, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff86415ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ DevicePointer: 0xffffffff856a4610, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ Upper DeviceData: 0x0, 0x0, 0x0 Lower DeviceData: 0x0, 0x0, 0x0 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning drivers directory: C:\Windows\system32\drivers... <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Done! Drive 0 Scanning MBR on drive 0... Inspecting partition table: MBR Signature: 55AA Disk Signature: EDE72478 Partition information: Partition 0 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 2048 Numsec = 156297216 Partition file system is NTFS Partition is bootable Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 80026361856 bytes Sector size: 512 bytes Scanning physical sectors of unpartitioned space on drive 0 (1-2047-156281488-156301488)... Done! Physical Sector Size: 512 Drive: 1, DevicePointer: 0xffffffff86b32ac8, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff86b2e938, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff86b32ac8, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ DevicePointer: 0xffffffff86b2e5c0, DeviceName: \Device\00000071\, DriverName: \Driver\USBSTOR\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ Upper DeviceData: 0x0, 0x0, 0x0 Lower DeviceData: 0x0, 0x0, 0x0 Drive 1 Scanning MBR on drive 1... Inspecting partition table: MBR Signature: 55AA Disk Signature: DC8808A5 Partition information: Partition 0 type is Other (0x6) Partition is ACTIVE. Partition starts at LBA: 32 Numsec = 985056 Partition file system is FAT Partition is not bootable Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 504365056 bytes Sector size: 512 bytes Done! Scan finished ======================================= Removal queue found; removal started Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_0_2048_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_1_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_1_0_32_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_1_r.mbam... Removal finished --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.06.0.1004 © Malwarebytes Corporation 2011-2012 OS version: 6.1.7601 Windows 7 Service Pack 1 x86 Account is Administrative Internet Explorer version: 10.0.9200.16618 File system is: NTFS Disk drives: C:\ DRIVE_FIXED CPU speed: 0.798000 GHz Memory total: 2138509312, free: 1439338496 Downloaded database version: v2013.07.09.06 Initializing... ------------ Kernel report ------------ 07/09/2013 10:33:23 ------------ Loaded modules ----------- \SystemRoot\system32\ntkrnlpa.exe \SystemRoot\system32\halmacpi.dll \SystemRoot\system32\kdcom.dll \SystemRoot\system32\mcupdate_GenuineIntel.dll \SystemRoot\system32\PSHED.dll \SystemRoot\system32\BOOTVID.dll \SystemRoot\system32\CLFS.SYS \SystemRoot\system32\CI.dll \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\system32\drivers\ACPI.sys \SystemRoot\system32\drivers\WMILIB.SYS \SystemRoot\system32\drivers\msisadrv.sys \SystemRoot\system32\drivers\pci.sys \SystemRoot\system32\drivers\vdrvroot.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\system32\DRIVERS\compbatt.sys \SystemRoot\system32\DRIVERS\BATTC.SYS \SystemRoot\system32\drivers\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\system32\drivers\intelide.sys \SystemRoot\system32\drivers\PCIIDEX.SYS \SystemRoot\system32\DRIVERS\pcmcia.sys \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\system32\drivers\atapi.sys \SystemRoot\system32\drivers\ataport.SYS \SystemRoot\system32\drivers\amdxata.sys \SystemRoot\system32\drivers\fltmgr.sys \SystemRoot\system32\drivers\fileinfo.sys \SystemRoot\system32\drivers\mfehidk.sys \SystemRoot\System32\Drivers\Ntfs.sys \SystemRoot\System32\Drivers\msrpc.sys \SystemRoot\System32\Drivers\ksecdd.sys \SystemRoot\System32\Drivers\cng.sys \SystemRoot\System32\drivers\pcw.sys \SystemRoot\System32\Drivers\Fs_Rec.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\Drivers\ksecpkg.sys \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\system32\drivers\mfewfpk.sys \SystemRoot\system32\drivers\vmstorfl.sys \SystemRoot\system32\drivers\volsnap.sys \SystemRoot\System32\Drivers\spldr.sys \SystemRoot\System32\drivers\rdyboost.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\System32\drivers\hwpolicy.sys \SystemRoot\System32\DRIVERS\fvevol.sys \SystemRoot\system32\drivers\disk.sys \SystemRoot\system32\drivers\CLASSPNP.SYS \SystemRoot\system32\DRIVERS\cdrom.sys \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \??\C:\Windows\system32\drivers\avgtpx86.sys \SystemRoot\System32\drivers\vga.sys \SystemRoot\System32\drivers\VIDEOPRT.SYS \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\System32\DRIVERS\RDPCDD.sys \SystemRoot\system32\drivers\rdpencdd.sys \SystemRoot\system32\drivers\rdprefmp.sys \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\drivers\afd.sys \SystemRoot\system32\drivers\ws2ifsl.sys \SystemRoot\system32\DRIVERS\wfplwf.sys \SystemRoot\system32\DRIVERS\pacer.sys \SystemRoot\system32\DRIVERS\vwififlt.sys \SystemRoot\system32\DRIVERS\netbios.sys \SystemRoot\system32\DRIVERS\wanarp.sys \SystemRoot\system32\DRIVERS\termdd.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\system32\DRIVERS\mssmbios.sys \SystemRoot\System32\drivers\discache.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\system32\DRIVERS\ctxusbm.sys \SystemRoot\system32\drivers\csc.sys \SystemRoot\system32\DRIVERS\blbdrive.sys \SystemRoot\system32\DRIVERS\tunnel.sys \SystemRoot\system32\DRIVERS\intelppm.sys \SystemRoot\system32\DRIVERS\CmBatt.sys \SystemRoot\system32\DRIVERS\ialmnt5.sys \SystemRoot\system32\DRIVERS\usbuhci.sys \SystemRoot\system32\DRIVERS\USBPORT.SYS \SystemRoot\system32\DRIVERS\usbehci.sys \SystemRoot\system32\DRIVERS\bcm4sbxp.sys \SystemRoot\system32\DRIVERS\1394ohci.sys \SystemRoot\system32\DRIVERS\sdbus.sys \SystemRoot\system32\DRIVERS\NETw2v32.sys \SystemRoot\system32\drivers\STAC97.sys \SystemRoot\system32\drivers\portcls.sys \SystemRoot\system32\drivers\drmk.sys \SystemRoot\system32\drivers\ks.sys \SystemRoot\system32\DRIVERS\VSTICH3.SYS \SystemRoot\system32\DRIVERS\VSTDPV3.SYS \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS \SystemRoot\system32\drivers\modem.sys \SystemRoot\system32\DRIVERS\i8042prt.sys \SystemRoot\system32\DRIVERS\mouclass.sys \SystemRoot\system32\DRIVERS\kbdclass.sys \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys \SystemRoot\system32\DRIVERS\CompositeBus.sys \SystemRoot\system32\DRIVERS\AgileVpn.sys \SystemRoot\system32\DRIVERS\rasl2tp.sys \SystemRoot\system32\DRIVERS\ndistapi.sys \SystemRoot\system32\DRIVERS\ndiswan.sys \SystemRoot\system32\DRIVERS\raspppoe.sys \SystemRoot\system32\DRIVERS\raspptp.sys \SystemRoot\system32\DRIVERS\rassstp.sys \SystemRoot\system32\DRIVERS\wanatw4.sys \SystemRoot\system32\DRIVERS\rdpbus.sys \SystemRoot\system32\DRIVERS\swenum.sys \SystemRoot\system32\DRIVERS\umbus.sys \SystemRoot\system32\DRIVERS\monitor.sys \SystemRoot\system32\DRIVERS\usbhub.sys \SystemRoot\System32\Drivers\NDProxy.SYS \SystemRoot\system32\drivers\mfeavfk.sys \SystemRoot\system32\drivers\mfefirek.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\drivers\Dxapi.sys \SystemRoot\System32\drivers\dxg.sys \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\System32\Drivers\dump_dumpata.sys \SystemRoot\System32\Drivers\dump_atapi.sys \SystemRoot\System32\Drivers\dump_dumpfve.sys \SystemRoot\system32\DRIVERS\usbccgp.sys \SystemRoot\system32\DRIVERS\USBD.SYS \SystemRoot\system32\DRIVERS\usbscan.sys \SystemRoot\system32\DRIVERS\usbprint.sys \SystemRoot\system32\DRIVERS\hidusb.sys \SystemRoot\system32\DRIVERS\HIDCLASS.SYS \SystemRoot\system32\DRIVERS\HIDPARSE.SYS \SystemRoot\system32\DRIVERS\kbdhid.sys \SystemRoot\System32\TSDDD.dll \SystemRoot\System32\ialmdnt5.dll \SystemRoot\System32\ialmrnt5.dll \SystemRoot\System32\ialmdev5.DLL \SystemRoot\System32\ialmdd5.DLL \SystemRoot\system32\drivers\luafv.sys \SystemRoot\system32\DRIVERS\lltdio.sys \SystemRoot\system32\DRIVERS\nwifi.sys \SystemRoot\system32\DRIVERS\ndisuio.sys \SystemRoot\system32\DRIVERS\rspndr.sys \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb10.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\system32\drivers\peauth.sys \SystemRoot\System32\Drivers\secdrv.SYS \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\System32\DRIVERS\srv2.sys \SystemRoot\System32\DRIVERS\srv.sys \SystemRoot\system32\drivers\mfeapfk.sys \SystemRoot\system32\drivers\cfwids.sys \SystemRoot\system32\DRIVERS\USBSTOR.SYS \SystemRoot\System32\Drivers\fastfat.SYS \SystemRoot\system32\drivers\WudfPf.sys \SystemRoot\system32\DRIVERS\WUDFRd.sys \??\C:\Windows\system32\drivers\mbamchameleon.sys \??\C:\Windows\system32\drivers\mbamswissarmy.sys \Windows\System32\ntdll.dll \Windows\System32\smss.exe \Windows\System32\apisetschema.dll \Windows\System32\autochk.exe \Windows\System32\Wldap32.dll \Windows\System32\msvcrt.dll \Windows\System32\iertutil.dll \Windows\System32\psapi.dll \Windows\System32\ole32.dll \Windows\System32\shlwapi.dll \Windows\System32\shell32.dll \Windows\System32\normaliz.dll \Windows\System32\rpcrt4.dll \Windows\System32\difxapi.dll \Windows\System32\comdlg32.dll \Windows\System32\oleaut32.dll \Windows\System32\ws2_32.dll \Windows\System32\wininet.dll \Windows\System32\urlmon.dll \Windows\System32\advapi32.dll \Windows\System32\lpk.dll \Windows\System32\imm32.dll \Windows\System32\usp10.dll \Windows\System32\clbcatq.dll \Windows\System32\setupapi.dll \Windows\System32\sechost.dll \Windows\System32\nsi.dll \Windows\System32\msctf.dll \Windows\System32\gdi32.dll \Windows\System32\user32.dll \Windows\System32\kernel32.dll \Windows\System32\imagehlp.dll \Windows\System32\crypt32.dll \Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll \Windows\System32\comctl32.dll \Windows\System32\devobj.dll \Windows\System32\cfgmgr32.dll \Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll \Windows\System32\KernelBase.dll \Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll \Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll \Windows\System32\wintrust.dll \Windows\System32\msasn1.dll ----------- End ----------- Done! <<<1>>> Upper Device Name: \Device\Harddisk1\DR1 Upper Device Object: 0xffffffff85b56030 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\0000007d\ Lower Device Object: 0xffffffff85b7d998 Lower Device Driver Name: \Driver\USBSTOR\ <<<1>>> Upper Device Name: \Device\Harddisk0\DR0 Upper Device Object: 0xffffffff86417030 Upper Device Driver Name: \Driver\Disk\ Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\ Lower Device Object: 0xffffffff856a0610 Lower Device Driver Name: \Driver\atapi\ <<<2>>> Device number: 0, partition: 1 Physical Sector Size: 512 Drive: 0, DevicePointer: 0xffffffff86417030, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff86417868, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff86417030, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ DevicePointer: 0xffffffff856a0610, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\ Upper DeviceData: 0x0, 0x0, 0x0 Lower DeviceData: 0x0, 0x0, 0x0 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning drivers directory: C:\Windows\system32\drivers... <<<2>>> Device number: 0, partition: 1 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Done! Drive 0 Scanning MBR on drive 0... Inspecting partition table: MBR Signature: 55AA Disk Signature: EDE72478 Partition information: Partition 0 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 2048 Numsec = 156297216 Partition file system is NTFS Partition is bootable Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 80026361856 bytes Sector size: 512 bytes Scanning physical sectors of unpartitioned space on drive 0 (1-2047-156281488-156301488)... Done! Physical Sector Size: 512 Drive: 1, DevicePointer: 0xffffffff85b56030, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ --------- Disk Stack ------ DevicePointer: 0xffffffff85b7dd10, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffffff85b56030, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ DevicePointer: 0xffffffff85b7d998, DeviceName: \Device\0000007d\, DriverName: \Driver\USBSTOR\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\ Upper DeviceData: 0x0, 0x0, 0x0 Lower DeviceData: 0x0, 0x0, 0x0 Drive 1 Scanning MBR on drive 1... Inspecting partition table: MBR Signature: 55AA Disk Signature: DC8808A5 Partition information: Partition 0 type is Other (0x6) Partition is ACTIVE. Partition starts at LBA: 32 Numsec = 985056 Partition file system is FAT Partition is not bootable Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Disk Size: 504365056 bytes Sector size: 512 bytes Done! Scan finished ======================================= Removal queue found; removal started Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_0_2048_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_1_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_1_0_32_i.mbam... Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_1_r.mbam... Removal finished
  8. This computer does not belong to me; so, before attempting the Google Open DNS solution, I discussed the download problem with the owner. She uses AOL exclusively and has no problems downloading programs. I tested a malwarebytes download link through the AOL browser, and it downloaded to this computer. Therefore, it appears something is wrong with IE10 version 10.0.9200.16618. Further, I found there are several important Windows 7 updates that failed to install, including a security fix KB2859903 for IE10 SP1. Microsoft Support site indicates one reason for failed Windows 7 updates is malware. The Windows 7 installation failures started to happen after 06.13.13 through 07.05.13, but three successful updates to Microsoft.NET Framework installed on 07.07.13. I'm at an impasse. I thought I could "repair" IE10 from Control Panel/Add-Remove Programs but there is no IE icon for the program. If IE is bundled with Windows 7,I don't know how to get to it. I would appreciate your further thoughts/suggestions. Thank you for your patience.
  9. Forgot to add RESET button requires restart after which I attempted the download. Thanks.
  10. Disabled McAfee virus scan and firewall. Reset Internet Options from Advanced Tab. Tried to download ERUNT from Link01 ... program could not be downloaded. Thank you.
  11. This computer continues to refuse downloads. Check disk run successfully. States 'the disk is clean'. ComboFix complete. Log C:\combofix.txt attached. Thank you. ComboFix.txt
  12. Still unable to download applications on this computer. Blue screen crash occurred yesterday while running ESET Cleaner. MiniToolBox Result: MiniToolBox by Farbar Version: 16-06-2013 Ran by Tausha (administrator) on 06-07-2013 at 13:07:06 Running from "C:\Users\Tausha\Desktop" Windows 7 Professional Service Pack 1 (X86) Boot Mode: Normal *************************************************************************** ========================= Flush DNS: =================================== Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "network.proxy.type", 0 "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= ========================= IP Configuration: ================================ Intel® PRO/Wireless 2200BG Network Connection = Wireless Network Connection 2 (Connected) Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Media disconnected) # ---------------------------------- # IPv4 Configuration # ---------------------------------- pushd interface ipv4 reset set global icmpredirects=enabled popd # End of IPv4 configuration Windows IP Configuration Host Name . . . . . . . . . . . . : Tausha-PC Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : socal.rr.com Wireless LAN adapter Wireless Network Connection 2: Connection-specific DNS Suffix . : socal.rr.com Description . . . . . . . . . . . : Intel® PRO/Wireless 2200BG Network Connection Physical Address. . . . . . . . . : 00-12-F0-74-6F-6D DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::e9f0:19c6:1dc5:24dc%13(Preferred) IPv4 Address. . . . . . . . . . . : 192.168.0.6(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Lease Obtained. . . . . . . . . . : Saturday, July 06, 2013 12:45:13 PM Lease Expires . . . . . . . . . . : Saturday, July 06, 2013 1:45:13 PM Default Gateway . . . . . . . . . : 192.168.0.1 DHCP Server . . . . . . . . . . . : 192.168.0.1 DHCPv6 IAID . . . . . . . . . . . : 419435248 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-AF-4B-91-00-12-3F-D0-44-71 DNS Servers . . . . . . . . . . . : 209.18.47.61 209.18.47.62 NetBIOS over Tcpip. . . . . . . . : Enabled Ethernet adapter Local Area Connection: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : socal.rr.com Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller Physical Address. . . . . . . . . : 00-12-3F-D0-44-71 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Tunnel adapter isatap.socal.rr.com: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft ISATAP Adapter Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter Local Area Connection* 13: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:8e1:3cf1:b3a6:71cd(Preferred) Link-local IPv6 Address . . . . . : fe80::8e1:3cf1:b3a6:71cd%18(Preferred) Default Gateway . . . . . . . . . : :: NetBIOS over Tcpip. . . . . . . . : Disabled Tunnel adapter Reusable ISATAP Interface {D76E568B-62ED-4069-8D66-327BDF195347}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : socal.rr.com Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2 Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Server: dns-cac-lb-01.rr.com Address: 209.18.47.61 Name: google.com Addresses: 2607:f8b0:4010:801::1003 74.125.239.132 74.125.239.133 74.125.239.134 74.125.239.135 74.125.239.136 74.125.239.137 74.125.239.142 74.125.239.128 74.125.239.129 74.125.239.130 74.125.239.131 Pinging google.com [74.125.239.96] with 32 bytes of data: Reply from 74.125.239.96: bytes=32 time=641ms TTL=53 Reply from 74.125.239.96: bytes=32 time=22ms TTL=53 Ping statistics for 74.125.239.96: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 22ms, Maximum = 641ms, Average = 331ms Server: dns-cac-lb-01.rr.com Address: 209.18.47.61 Name: yahoo.com Addresses: 98.138.253.109 98.139.183.24 206.190.36.45 Pinging yahoo.com [98.138.253.109] with 32 bytes of data: Reply from 98.138.253.109: bytes=32 time=218ms TTL=46 Reply from 98.138.253.109: bytes=32 time=155ms TTL=46 Ping statistics for 98.138.253.109: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 155ms, Maximum = 218ms, Average = 186ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms =========================================================================== Interface List 13...00 12 f0 74 6f 6d ......Intel® PRO/Wireless 2200BG Network Connection 11...00 12 3f d0 44 71 ......Broadcom 440x 10/100 Integrated Controller 1...........................Software Loopback Interface 1 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2 =========================================================================== IPv4 Route Table =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.6 25 127.0.0.0 255.0.0.0 On-link 127.0.0.1 306 127.0.0.1 255.255.255.255 On-link 127.0.0.1 306 127.255.255.255 255.255.255.255 On-link 127.0.0.1 306 192.168.0.0 255.255.255.0 On-link 192.168.0.6 281 192.168.0.6 255.255.255.255 On-link 192.168.0.6 281 192.168.0.255 255.255.255.255 On-link 192.168.0.6 281 224.0.0.0 240.0.0.0 On-link 127.0.0.1 306 224.0.0.0 240.0.0.0 On-link 192.168.0.6 281 255.255.255.255 255.255.255.255 On-link 127.0.0.1 306 255.255.255.255 255.255.255.255 On-link 192.168.0.6 281 =========================================================================== Persistent Routes: None IPv6 Route Table =========================================================================== Active Routes: If Metric Network Destination Gateway 18 58 ::/0 On-link 1 306 ::1/128 On-link 18 58 2001::/32 On-link 18 306 2001:0:4137:9e76:8e1:3cf1:b3a6:71cd/128 On-link 13 281 fe80::/64 On-link 18 306 fe80::/64 On-link 18 306 fe80::8e1:3cf1:b3a6:71cd/128 On-link 13 281 fe80::e9f0:19c6:1dc5:24dc/128 On-link 1 306 ff00::/8 On-link 18 306 ff00::/8 On-link 13 281 ff00::/8 On-link =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation) Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation) Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation) Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation) Catalog5 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog5 06 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation) Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== System errors: ============= Error: (07/06/2013 00:46:08 PM) (Source: WMPNetworkSvc) (User: ) Description: WMPNetworkSvc0x80004005 Error: (07/06/2013 00:45:18 PM) (Source: Service Control Manager) (User: ) Description: The vToolbarUpdater15.3.0 service failed to start due to the following error: %%2 Error: (07/06/2013 11:18:51 AM) (Source: Service Control Manager) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SysMain service. Error: (07/06/2013 10:33:45 AM) (Source: Service Control Manager) (User: ) Description: The vToolbarUpdater15.3.0 service failed to start due to the following error: %%2 Error: (07/05/2013 06:37:09 PM) (Source: Service Control Manager) (User: ) Description: The vToolbarUpdater15.3.0 service failed to start due to the following error: %%2 Error: (07/05/2013 02:19:40 PM) (Source: Service Control Manager) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service. Error: (07/05/2013 01:13:07 PM) (Source: Service Control Manager) (User: ) Description: The vToolbarUpdater15.3.0 service failed to start due to the following error: %%2 Error: (07/05/2013 01:12:24 PM) (Source: EventLog) (User: ) Description: The previous system shutdown at 1:10:41 PM on ?7/?5/?2013 was unexpected. Error: (07/05/2013 11:02:31 AM) (Source: WMPNetworkSvc) (User: ) Description: WMPNetworkSvc0x80004005 Error: (07/05/2013 11:01:23 AM) (Source: Service Control Manager) (User: ) Description: The vToolbarUpdater15.3.0 service failed to start due to the following error: %%2 Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2013-07-05 09:31:02.501 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll because the set of per-page image hashes could not be found on the system. Date: 2013-07-05 09:21:41.950 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll because the set of per-page image hashes could not be found on the system. Date: 2013-07-05 08:59:51.219 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll because the set of per-page image hashes could not be found on the system. Date: 2013-07-05 08:50:42.006 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system. Date: 2013-07-05 08:50:41.991 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system. Date: 2013-07-05 08:50:41.991 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system. Date: 2013-07-05 08:50:41.600 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system. Date: 2013-07-05 08:15:41.128 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll because the set of per-page image hashes could not be found on the system. Date: 2013-07-05 08:07:01.312 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll because the set of per-page image hashes could not be found on the system. Date: 2013-07-05 08:02:39.290 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll because the set of per-page image hashes could not be found on the system. =========================== Installed Programs ============================ Adobe Flash Player 11 ActiveX (Version: 11.7.700.224) Adobe Flash Player 11 Plugin (Version: 11.7.700.224) Adobe Reader XI (11.0.03) (Version: 11.0.03) AOL Uninstaller (Choose which Products to Remove) Apple Application Support (Version: 2.3.4) Apple Mobile Device Support (Version: 6.1.0.13) Apple Software Update (Version: 2.1.3.127) ATI Catalyst Install Manager (Version: 3.0.715.0) Auslogics Disk Defrag (Version: version 3.3) AVG SafeGuard toolbar (Version: 15.3.0.11) Bing Desktop (Version: 1.3.174.0) Bonjour (Version: 3.0.0.10) CCleaner (Version: 3.17) CDBurnerXP (Version: 4.3.9.2762) Citrix online plug-in - web (Version: 12.3.0.8) Citrix online plug-in (DV) (Version: 12.3.0.8) Citrix online plug-in (HDX) (Version: 12.3.0.8) Citrix online plug-in (USB) (Version: 12.3.0.8) Citrix online plug-in (Web) (Version: 12.3.0.8) Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition Dropbox (Version: 2.2.3) DVDFab 8.1.7.3 (01/04/2012) Qt eReg (Version: 1.20.138.34) ERUNT 1.1j ESET Online Scanner v3 Express Scribe (Version: 5.57) Foxit Reader 5.0 (Version: 5.0.1.523) iCloud (Version: 2.1.2.8) Intel® Graphics Media Accelerator Driver for Mobile (Version: 6.14.10.4609) iTunes (Version: 11.0.4.4) Java 7 Update 25 (Version: 7.0.250) Java Auto Updater (Version: 2.1.9.5) Lexmark 4200 Series Logitech SetPoint 6.51 (Version: 6.51.8) McAfee Security Scan Plus (Version: 2.1.121.2) McAfee SecurityCenter (Version: 11.6.511) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Extended (Version: 4.0.30319) Microsoft Digital Image Library 9 - Blocker (Version: 9.00.0000) Microsoft Encarta Encyclopedia Standard 2003 (Version: 2003) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office Access database engine 2007 (English) (Version: 12.0.6612.1000) Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000) Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000) Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000) Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Photo Premium 10 (Version: 10.0.0706) Microsoft Picture It! Library 10 (Version: 10.0.0706) Microsoft Silverlight (Version: 5.1.20125.0) Microsoft Streets & Trips 2010 (Version: 17.0.19.2900) Microsoft VC9 runtime libraries (Version: 1.0.0) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable Package (Version: 1.0.0) Mozilla Firefox 18.0.2 (x86 en-US) (Version: 18.0.2) Mozilla Maintenance Service (Version: 18.0.2) MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0) QuickTime (Version: 7.74.80.86) Shared C Run-time for x86 (Version: 10.0.0) System Requirements Lab for Intel (Version: 4.5.13.0) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1) Update for Microsoft Office 2010 (KB2553065) Update for Microsoft Office 2010 (KB2553092) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition Update for Microsoft Office 2010 (KB2566458) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition Watchtower Library 2012 - English (Version: 14.0) Windows Phone (Version: 0.9.3723.2) WinRAR archiver ========================= Devices: ================================ Name: PEAUTH Description: PEAUTH Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: PEAUTH Name: Volume Manager Description: Volume Manager Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: volmgr Name: HID-compliant device Description: HID-compliant device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: Mount Point Manager Description: Mount Point Manager Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mountmgr Name: System board Description: System board Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: Mobile Intel® 915GM/PM/GMS/910GML Express Processor to DRAM Controller - 2590 Description: Mobile Intel® 915GM/PM/GMS/910GML Express Processor to DRAM Controller - 2590 Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Name: Intel® 82801FB/FBM USB2 Enhanced Host Controller - 265C Description: Intel® 82801FB/FBM USB2 Enhanced Host Controller - 265C Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel Service: usbehci Name: USB Composite Device Description: USB Composite Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbccgp Name: Remote Access IPv6 ARP Driver Description: Remote Access IPv6 ARP Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Wanarpv6 Name: Microsoft ISATAP Adapter #2 Description: Microsoft ISATAP Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Name: QoS Packet Scheduler Description: QoS Packet Scheduler Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Psched Name: Numeric data processor Description: Numeric data processor Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: Windows Firewall Authorization Driver Description: Windows Firewall Authorization Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mpsdrv Name: TSSTcorp CDRW/DVD TSL462C ATA Device Description: CD-ROM Drive Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard CD-ROM drives) Service: cdrom Name: Microsoft ISATAP Adapter #3 Description: Microsoft ISATAP Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Name: Kernel Mode Driver Frameworks service Description: Kernel Mode Driver Frameworks service Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Wdf01000 Name: Microsoft ACPI-Compliant Control Method Battery Description: Microsoft ACPI-Compliant Control Method Battery Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a} Manufacturer: Microsoft Service: CmBatt Name: Lexmark 4200 Series Description: Lexmark 4200 Series Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Manufacturer: Lexmark Service: usbscan Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Name: USB Input Device Description: USB Input Device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: HidUsb Name: ACPI Power Button Description: ACPI Power Button Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: WFP Lightweight Filter Description: WFP Lightweight Filter Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: WfpLwf Name: HID Keyboard Device Description: HID Keyboard Device Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard keyboards) Service: kbdhid Name: RDPCDD Description: RDPCDD Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: RDPCDD Name: Mobile Intel® 915GM/GMS,910GML Express Chipset Family Description: Mobile Intel® 915GM/GMS,910GML Express Chipset Family Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Corporation Service: ialm Name: ACPI x86-based PC Description: ACPI x86-based PC Class Guid: {4d36e966-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard computers) Service: \Driver\ACPI_HAL Name: Intel® 82801FB/FBM SMBus Controller - 266A Description: Intel® 82801FB/FBM SMBus Controller - 266A Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Name: Lexmark 4200 Series Description: Lexmark 4200 Series Class Guid: {4d36e979-e325-11ce-bfc1-08002be10318} Manufacturer: Lexmark Inkjet Drivers Service: Name: ACPI Lid Description: ACPI Lid Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: User Mode Driver Frameworks Platform Driver Description: User Mode Driver Frameworks Platform Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: WudfPf Name: File as Volume Driver Description: File as Volume Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: blbdrive Name: UMBus Enumerator Description: UMBus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: umbus Name: RDP Encoder Mirror Driver Description: RDP Encoder Mirror Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: RDPENCDD Name: USB Printing Support Description: USB Printing Support Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Microsoft Service: usbprint Name: IC25N080ATMR04-0 ATA Device Description: Disk drive Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard disk drives) Service: disk Name: Composite Bus Enumerator Description: Composite Bus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: CompositeBus Name: Microsoft AC Adapter Description: Microsoft AC Adapter Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a} Manufacturer: Microsoft Service: CmBatt Name: Microsoft System Management BIOS Driver Description: Microsoft System Management BIOS Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: mssmbios Name: ACPI Sleep Button Description: ACPI Sleep Button Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: Reflector Display Driver used to gain access to graphics data Description: Reflector Display Driver used to gain access to graphics data Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: RDPREFMP Name: Bitlocker Drive Encryption Filter Driver Description: Bitlocker Drive Encryption Filter Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: fvevol Name: Intel® 82801FBM LPC Interface Controller - 2641 Description: Intel® 82801FBM LPC Interface Controller - 2641 Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: msisadrv Name: Conexant D110 MDC V.92 Modem Description: Conexant D110 MDC V.92 Modem Class Guid: {4d36e96d-e325-11ce-bfc1-08002be10318} Manufacturer: Conexant Service: Modem Name: UMBus Enumerator Description: UMBus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: umbus Name: WAN Miniport (IKEv2) Description: WAN Miniport (IKEv2) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: RasAgileVpn Name: Microsoft Composite Battery Description: Microsoft Composite Battery Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a} Manufacturer: Microsoft Service: Compbatt Name: Generic volume Description: Generic volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volsnap Name: Intel® Pentium® M processor 1.60GHz Description: Intel Processor Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65} Manufacturer: Intel Service: intelppm Name: USB Input Device Description: USB Input Device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: HidUsb Name: PS/2 Compatible Mouse Description: PS/2 Compatible Mouse Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Name: Link-Layer Topology Discovery Responder Description: Link-Layer Topology Discovery Responder Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: rspndr Name: HTTP Description: HTTP Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: HTTP Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: msisadrv Description: msisadrv Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: msisadrv Name: Ancillary Function Driver for Winsock Description: Ancillary Function Driver for Winsock Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: AFD Name: WAN Miniport (L2TP) Description: WAN Miniport (L2TP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: Rasl2tp Name: Hardware Policy Driver Description: Hardware Policy Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: hwpolicy Name: ACPI Thermal Zone Description: ACPI Thermal Zone Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: USB Root Hub Description: USB Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: Security Driver Description: Security Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: secdrv Name: HID-compliant device Description: HID-compliant device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Name: Ricoh R/RL/5C476(II) or Compatible CardBus Controller Description: Ricoh R/RL/5C476(II) or Compatible CardBus Controller Class Guid: {4d36e977-e325-11ce-bfc1-08002be10318} Manufacturer: RICOH Service: pci Name: avgtp Description: avgtp Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: avgtp Name: Intel® 82801FBM Ultra ATA Storage Controllers - 2653 Description: Intel® 82801FBM Ultra ATA Storage Controllers - 2653 Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: intelide Name: SigmaTel C-Major Audio Description: SigmaTel C-Major Audio Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: SigmaTel Service: STAC97 Name: Microsoft ACPI-Compliant System Description: Microsoft ACPI-Compliant System Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: ACPI Name: WAN Miniport (Network Monitor) Description: WAN Miniport (Network Monitor) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Name: Security Processor Loader Driver Description: Security Processor Loader Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: spldr Name: KSecDD Description: KSecDD Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: KSecDD Name: USB Root Hub Description: USB Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: NativeWiFi Filter Description: NativeWiFi Filter Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NativeWifiP Name: UDISK 20X Description: USB DISK 20X Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: Service: WUDFRd Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: Beep Description: Beep Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Beep Name: WAN Miniport (IP) Description: WAN Miniport (IP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Name: KSecPkg Description: KSecPkg Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: KSecPkg Name: USB Root Hub Description: USB Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: Programmable interrupt controller Description: Programmable interrupt controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: NDIS System Driver Description: NDIS System Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NDIS Name: USB Input Device Description: USB Input Device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: HidUsb Name: WAN Miniport (IPv6) Description: WAN Miniport (IPv6) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisWan Name: Ricoh 1394 OHCI Compliant Host Controller Description: Ricoh 1394 OHCI Compliant Host Controller Class Guid: {6bdd1fc1-810f-11d0-bec7-08002be2092f} Manufacturer: Ricoh Service: 1394ohci Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: Link-Layer Topology Discovery Mapper I/O Driver Description: Link-Layer Topology Discovery Mapper I/O Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: lltdio Name: HID-compliant device Description: HID-compliant device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Name: USB Root Hub Description: USB Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: Intel® 82801FB/FBM USB Universal Host Controller - 2658 Description: Intel® 82801FB/FBM USB Universal Host Controller - 2658 Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel Service: usbuhci Name: Mobile Intel® 915GM/GMS,910GML Express Chipset Family Description: Mobile Intel® 915GM/GMS,910GML Express Chipset Family Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Corporation Service: ialm Name: Generic volume Description: Generic volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volsnap Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: NDIS Usermode I/O Protocol Description: NDIS Usermode I/O Protocol Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Ndisuio Name: Generic PnP Monitor Description: Generic PnP Monitor Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard monitor types) Service: monitor Name: USB DISK 20X USB Device Description: Disk drive Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard disk drives) Service: disk Name: System timer Description: System timer Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: WAN Miniport (PPPOE) Description: WAN Miniport (PPPOE) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: RasPppoe Name: USB Root Hub Description: USB Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Name: NDProxy Description: NDProxy Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NDProxy Name: McAfee Inc. cfwids Description: McAfee Inc. cfwids Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: cfwids Name: Direct memory access controller Description: Direct memory access controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: Disk Virtual Machine Bus Acceleration Filter Driver Description: Disk Virtual Machine Bus Acceleration Filter Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: storflt Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: McAfee Inc. mfeapfk Description: McAfee Inc. mfeapfk Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mfeapfk Name: WAN Miniport (PPTP) Description: WAN Miniport (PPTP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: PptpMiniport Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: SDA Standard Compliant SD Host Controller Description: SDA Standard Compliant SD Host Controller Class Guid: {a0a588a4-c46f-4b37-b7ea-c82fe89870c6} Manufacturer: SDA Standard Compliant SD Host Controller Vendor Service: sdbus Name: Common Log (CLFS) Description: Common Log (CLFS) Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: CLFS Name: Intel® 82801FB/FBM USB Universal Host Controller - 2659 Description: Intel® 82801FB/FBM USB Universal Host Controller - 2659 Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel Service: usbuhci Name: Standard PS/2 Keyboard Description: Standard PS/2 Keyboard Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard keyboards) Service: i8042prt Name: Intel® PRO/Wireless 2200BG Network Connection Description: Intel® PRO/Wireless 2200BG Network Connection Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Corporation Service: NETw2v32 Name: TCP/IP Protocol Driver Description: TCP/IP Protocol Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Tcpip Name: WAN Miniport (SSTP) Description: WAN Miniport (SSTP) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: RasSstp Name: CNG Description: CNG Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: CNG Name: NETBT Description: NETBT Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: NetBT Name: System speaker Description: System speaker Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: TCP/IP Registry Compatibility Description: TCP/IP Registry Compatibility Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: tcpipreg Name: Generic PnP Monitor Description: Generic PnP Monitor Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard monitor types) Service: monitor Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: WAN Miniport (ATW) Description: WAN Miniport (ATW) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: America Online, Inc. Service: wanatw Name: McAfee Inc. mfeavfk Description: McAfee Inc. mfeavfk Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mfeavfk Name: USB Mass Storage Device Description: USB Mass Storage Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Compatible USB storage device Service: USBSTOR Name: cpudrv Description: cpudrv Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: cpudrv Name: PCI bus Description: PCI bus Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: pci Name: Remote Desktop Device Redirector Bus Description: Remote Desktop Device Redirector Bus Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: rdpbus Name: NetIO Legacy TDI Support Driver Description: NetIO Legacy TDI Support Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: tdx Name: Broadcom 440x 10/100 Integrated Controller Description: Broadcom 440x 10/100 Integrated Controller Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Broadcom Service: bcm4sbxp Name: Intel® 82801FB/FBM USB Universal Host Controller - 265A Description: Intel® 82801FB/FBM USB Universal Host Controller - 265A Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel Service: usbuhci Name: ATA Channel 0 Description: IDE Channel Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard IDE ATA/ATAPI controllers) Service: atapi Name: McAfee Inc. Description: McAfee Inc. Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mfeavfk01 Name: Offline Files Driver Description: Offline Files Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: CSC Name: NSI proxy service driver. Description: NSI proxy service driver. Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: nsiproxy Name: Terminal Server Keyboard Driver Description: Terminal Server Keyboard Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: TermDD Name: Generic PnP Monitor Description: Generic PnP Monitor Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard monitor types) Service: monitor Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: VgaSave Description: VgaSave Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: VgaSave Name: System CMOS/real time clock Description: System CMOS/real time clock Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: Citrix USB Monitor Driver Description: Citrix USB Monitor Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ctxusbm Name: Terminal Server Mouse Driver Description: Terminal Server Mouse Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: TermDD Name: McAfee Inc. mfefirek Description: McAfee Inc. mfefirek Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mfefirek Name: ATA Channel 1 Description: IDE Channel Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard IDE ATA/ATAPI controllers) Service: atapi Name: Dynamic Volume Manager Description: Dynamic Volume Manager Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: volmgrx Name: System board Description: System board Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: USB Composite Device Description: USB Composite Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbccgp Name: Plug and Play Software Device Enumerator Description: Plug and Play Software Device Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: swenum Name: Intel® 82801 PCI Bridge - 2448 Description: Intel® 82801 PCI Bridge - 2448 Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: pci Name: Null Description: Null Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: Null Name: McAfee Inc. mfehidk Description: McAfee Inc. mfehidk Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mfehidk Name: Intel® 82801FB/FBM USB Universal Host Controller - 265B Description: Intel® 82801FB/FBM USB Universal Host Controller - 265B Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel Service: usbuhci Name: System board Description: System board Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Name: UMBus Root Bus Enumerator Description: UMBus Root Bus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: umbus Name: Storage volumes Description: Storage volumes Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: volsnap Name: System Attribute Cache Description: System Attribute Cache Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: discache Name: System board Description: System board Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: HID-compliant consumer control device Description: HID-compliant consumer control device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: Microsoft Service: Name: Performance Counters for Windows Driver Description: Performance Counters for Windows Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: pcw Name: Microsoft Virtual Drive Enumerator Driver Description: Microsoft Virtual Drive Enumerator Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: vdrvroot Name: McAfee Inc. mfewfpk Description: McAfee Inc. mfewfpk Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mfewfpk Name: Microsoft ISATAP Adapter Description: Microsoft ISATAP Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Name: System board Description: System board Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Name: Virtual WiFi Filter Driver Description: Virtual WiFi Filter Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: vwififlt ========================= Memory info: =================================== Percentage of memory in use: 33% Total physical RAM: 2039.44 MB Available physical RAM: 1350.8 MB Total Pagefile: 5097.44 MB Available Pagefile: 3943.3 MB Total Virtual: 2047.88 MB Available Virtual: 1937.18 MB ========================= Partitions: ===================================== 1 Drive c: (New Volume) (Fixed) (Total:74.53 GB) (Free:38.26 GB) NTFS 3 Drive e: (UDISK 20X) (Removable) (Total:0.47 GB) (Free:0.44 GB) FAT ========================= Users: ======================================== User accounts for \\TAUSHA-PC Administrator Guest Tausha ========================= Minidump Files ================================== No minidump file found **** End of log **** SECURITY CHECK: Results of screen317's Security Check version 0.99.68 Windows 7 Service Pack 1 x86 (UAC is disabled!) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! McAfee Anti-Virus and Anti-Spyware WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` CCleaner Java 7 Update 25 Adobe Flash Player 11.7.700.224 Adobe Reader XI Mozilla Firefox 18.0.2 Firefox out of Date! ````````Process Check: objlist.exe by Laurent```````` `````````````````System Health check````````````````` Total Fragmentation on Drive C: 3% ````````````````````End of Log`````````````````````` Thank you.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.