PDA

View Full Version : no admin in ACL files and registry, backdoor bot issue?



lindavb
2014-08-02, 14:49
I am running a Spybot deep scan after discovering yesterday that I might have been infected with backdoor.Bot.Ed and other variations of backdoor bot. I first noticed uncontrollable scrolling in email and other applications, so I rebooted my PC and then it was fine. However, I have ESET NOD 32 Anti Virus 7, and it repeatedly reported that it had blocked the backdoor bot but the warnings kept recurring after I closed the window. I opened Malwarebyte and it also continuously reported cleaning this threat but the box kept popping up. After it turned up in scans, I located an appdata local temp 0722.dll in my C drive and asked Spybot to search and destroy it, and it's gone now. Since then I have run repeated scans (note, I was unable to get my PC into safe mode) on both NOD and Malwarebyte and they came back clean, as did a simple Spybot scan. However, I am concerned about rootkit malwareand am now running a deep scan on Spybot, and I am getting LOTS of no admin in ACL files and 2 registry keys. I am wondering if these are malicious and whether I should delete them.

The registry keys that report no admin in ACL are Type: Key
Object: Flyout
Location: HKLM\SOFTWARE\WoW6432Node\Microsoft\Windows\CurrentVersion\Applets\SysTray\BattMeter\
Details: No admin in ACL

and Type: Key
Object: Svc
Location: HKLM\SOFTWARE\WoW6432Node\Microsoft\Security Center\
Details: No admin in ACL

an example of the many files flagged in red as no admin in ACL:
Type: File
Object: ~DF0626843B5B85CBE9.TMP
Location: C:\Users\Linda\AppData\Local\Temp\
Details: No admin in ACL

all of these are flagged in red and begin with ~D. I cannot open them.

I also have many, many "unknown ADS" but most of them are jpegs or dropbox items and I don't think these are a threat.

Advice please? Thanks!

lindavb
2014-08-02, 18:22
The scan is finished. It red-flagged more "no admin in ACL" files in program date. When I look at these, most seem pretty old. However there 4 that say they were "changed today. This is one:
Type: File
Object: logfile.nmsrvc_exe_2.txt
Location: C:\ProgramData\Pure Networks\Log\
Details: No admin in ACL

When I open that file, I get the following. Should I be concerned? There are lines saying virus protection and fire walls failed?

Pure Networks log file. Product version [11.2.9195.1].
08/02/14 13:02:52 [11616] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:02:52 [11616] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:02:52 [11616] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:02:52 [11616] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:02:54 [11616] Gateway: Loaded HNAP11 driver.
08/02/14 13:02:54 [11616] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:03:21 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:03:21 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04615161 seconds; will preallocate 399153 bytes next time.
08/02/14 13:04:21 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:04:21 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.08584076 seconds; will preallocate 399153 bytes next time.
08/02/14 13:04:29 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:04:29 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:04:33 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:04:33 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:04:53 [4300] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:04:53 [4300] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:04:53 [4300] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:04:53 [4300] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:04:53 [4300] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:04:54 [4300] Gateway: Loaded HNAP11 driver.
08/02/14 13:04:54 [4300] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:05:21 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:05:21 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04848370 seconds; will preallocate 399153 bytes next time.
08/02/14 13:06:22 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:06:22 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.05827254 seconds; will preallocate 399153 bytes next time.
08/02/14 13:06:30 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:06:30 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:06:33 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:06:33 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:07:18 [256] CertUtil::GetPropertyString() : ::CertGetCertificateContextProperty() for property ID 32768 failed trying to obtain required length with HRESULT hr 0x80092004!
08/02/14 13:07:19 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AV detection.
08/02/14 13:07:19 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:07:19 [3192] NmFirewallManager::Refresh() : Calling OPSWAT for FW detection.
08/02/14 13:07:19 [3192] NmFirewallManager::Refresh() : _RefreshOPSWATFirewalls failed with hr 0x81230230.
08/02/14 13:07:19 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AS detection.
08/02/14 13:07:19 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:07:22 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:07:22 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02617579 seconds; will preallocate 399153 bytes next time.
08/02/14 13:08:22 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:08:22 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.03342063 seconds; will preallocate 399153 bytes next time.
08/02/14 13:08:30 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:08:30 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:08:34 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:08:34 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:08:35 [8892] CWinHttpRequest::_WinHttpStatusCallback(): ::WinHttpReceiveResponse() failed with HRESULT 0x80072ee2.
08/02/14 13:08:35 [10104] NmGatewayFac : SupportsUPnP() returned HRESULT 0x80072ee2. Ignoring -- we won't support UPnP routers here...
08/02/14 13:08:35 [10104] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:08:35 [10104] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:08:35 [10104] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:08:35 [10104] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:08:36 [10104] Gateway: Loaded HNAP11 driver.
08/02/14 13:08:36 [10104] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:09:23 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:09:23 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.11642556 seconds; will preallocate 399153 bytes next time.
08/02/14 13:10:23 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:10:23 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04541140 seconds; will preallocate 399153 bytes next time.
08/02/14 13:10:31 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:10:31 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:10:34 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:10:34 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:10:55 [6804] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:10:55 [6804] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:10:55 [6804] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:10:55 [6804] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:10:55 [6804] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:10:56 [6804] Gateway: Loaded HNAP11 driver.
08/02/14 13:10:56 [6804] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:11:23 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:11:23 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.06306980 seconds; will preallocate 399153 bytes next time.
08/02/14 13:12:24 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:12:24 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.06027760 seconds; will preallocate 399153 bytes next time.
08/02/14 13:12:32 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:12:32 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:12:35 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:12:35 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:12:55 [11528] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:12:55 [11528] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:12:55 [11528] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:12:55 [11528] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:12:55 [11528] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:12:56 [11528] Gateway: Loaded HNAP11 driver.
08/02/14 13:12:56 [11528] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:13:24 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:13:24 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02355627 seconds; will preallocate 399153 bytes next time.
08/02/14 13:14:24 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:14:24 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04753195 seconds; will preallocate 399153 bytes next time.
08/02/14 13:14:32 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:14:32 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:14:36 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:14:36 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:15:25 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:15:25 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02882171 seconds; will preallocate 399153 bytes next time.
08/02/14 13:16:25 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:16:25 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04751362 seconds; will preallocate 399153 bytes next time.
08/02/14 13:16:33 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:16:33 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:16:37 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:16:38 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:16:38 [8260] CWinHttpRequest::_WinHttpStatusCallback(): ::WinHttpReceiveResponse() failed with HRESULT 0x80072ee2.
08/02/14 13:16:38 [9848] NmGatewayFac : SupportsUPnP() returned HRESULT 0x80072ee2. Ignoring -- we won't support UPnP routers here...
08/02/14 13:16:38 [9848] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:16:38 [9848] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:16:38 [9848] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:16:38 [9848] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:16:39 [9848] Gateway: Loaded HNAP11 driver.
08/02/14 13:16:39 [9848] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:17:22 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AV detection.
08/02/14 13:17:22 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:17:22 [3192] NmFirewallManager::Refresh() : Calling OPSWAT for FW detection.
08/02/14 13:17:22 [3192] NmFirewallManager::Refresh() : _RefreshOPSWATFirewalls failed with hr 0x81230230.
08/02/14 13:17:22 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AS detection.
08/02/14 13:17:22 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:17:25 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:17:25 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.05014011 seconds; will preallocate 399153 bytes next time.
08/02/14 13:18:25 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:18:25 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04746192 seconds; will preallocate 399153 bytes next time.
08/02/14 13:18:33 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:18:33 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:18:37 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:18:37 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:19:26 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:19:26 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04795943 seconds; will preallocate 399153 bytes next time.
08/02/14 13:20:26 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:20:26 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.05295650 seconds; will preallocate 399153 bytes next time.
08/02/14 13:20:34 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:20:34 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:20:38 [9272] CWinHttpRequest::_WinHttpStatusCallback(): ::WinHttpReceiveResponse() failed with HRESULT 0x80072ee2.
08/02/14 13:20:38 [10528] NmGatewayFac : SupportsUPnP() returned HRESULT 0x8000ffff. Ignoring -- we won't support UPnP routers here...
08/02/14 13:20:38 [10528] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:20:38 [10528] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:20:38 [10528] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:20:38 [10528] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:20:38 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:20:38 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:20:39 [10528] Gateway: Loaded HNAP11 driver.
08/02/14 13:20:39 [10528] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:21:26 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:21:27 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.19693928 seconds; will preallocate 399153 bytes next time.
08/02/14 13:22:22 [256] CertUtil::GetPropertyString() : ::CertGetCertificateContextProperty() for property ID 32768 failed trying to obtain required length with HRESULT hr 0x80092004!
08/02/14 13:22:27 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:22:27 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.06578868 seconds; will preallocate 399153 bytes next time.
08/02/14 13:22:35 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:22:35 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:22:39 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:22:39 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:22:59 [11212] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:22:59 [11212] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:22:59 [11212] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:22:59 [11212] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:22:59 [11212] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:23:01 [11212] Gateway: Loaded HNAP11 driver.
08/02/14 13:23:01 [11212] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:23:27 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:23:27 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04609955 seconds; will preallocate 399153 bytes next time.
08/02/14 13:24:27 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:24:27 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.03613437 seconds; will preallocate 399153 bytes next time.
08/02/14 13:24:35 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:24:35 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:24:38 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:24:38 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:24:58 [11364] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:24:58 [11364] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:24:59 [11364] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:24:59 [11364] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:24:59 [11364] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:25:00 [11364] Gateway: Loaded HNAP11 driver.
08/02/14 13:25:01 [11364] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:25:28 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:25:28 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.05351157 seconds; will preallocate 399153 bytes next time.
08/02/14 13:26:28 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:26:28 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04773616 seconds; will preallocate 399153 bytes next time.
08/02/14 13:26:36 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:26:36 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:26:39 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:26:39 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:27:25 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AV detection.
08/02/14 13:27:25 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:27:25 [3192] NmFirewallManager::Refresh() : Calling OPSWAT for FW detection.
08/02/14 13:27:25 [3192] NmFirewallManager::Refresh() : _RefreshOPSWATFirewalls failed with hr 0x81230230.
08/02/14 13:27:26 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AS detection.
08/02/14 13:27:26 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:27:28 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:27:28 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02667769 seconds; will preallocate 399153 bytes next time.
08/02/14 13:28:29 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:28:29 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.05759758 seconds; will preallocate 399153 bytes next time.
08/02/14 13:28:36 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:28:36 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:28:39 [12276] CWinHttpRequest::_WinHttpStatusCallback(): ::WinHttpReceiveResponse() failed with HRESULT 0x80072ee2.
08/02/14 13:28:39 [10620] NmGatewayFac : SupportsUPnP() returned HRESULT 0x80072ee2. Ignoring -- we won't support UPnP routers here...
08/02/14 13:28:39 [10620] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:28:39 [10620] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:28:39 [10620] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:28:39 [10620] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:28:40 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:28:40 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:28:40 [10620] Gateway: Loaded HNAP11 driver.
08/02/14 13:28:40 [10620] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:29:29 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:29:29 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.05674005 seconds; will preallocate 399153 bytes next time.
08/02/14 13:30:29 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:30:29 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02321384 seconds; will preallocate 399153 bytes next time.
08/02/14 13:30:37 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:30:37 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:30:40 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:30:40 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:31:00 [428] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:31:00 [428] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:31:01 [428] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:31:01 [428] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:31:01 [428] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:31:02 [428] Gateway: Loaded HNAP11 driver.
08/02/14 13:31:14 [428] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:31:29 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:31:29 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.03866590 seconds; will preallocate 399153 bytes next time.
08/02/14 13:32:30 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:32:30 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.03831578 seconds; will preallocate 399153 bytes next time.
08/02/14 13:32:38 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:32:38 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:32:41 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:32:41 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:33:30 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:33:30 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04526768 seconds; will preallocate 399153 bytes next time.
08/02/14 13:34:30 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:34:30 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02380630 seconds; will preallocate 399153 bytes next time.
08/02/14 13:34:38 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:34:38 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:34:41 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:34:41 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:34:42 [10832] CWinHttpRequest::_WinHttpStatusCallback(): ::WinHttpReceiveResponse() failed with HRESULT 0x80072ee2.
08/02/14 13:34:42 [8472] NmGatewayFac : SupportsUPnP() returned HRESULT 0x80072ee2. Ignoring -- we won't support UPnP routers here...
08/02/14 13:34:42 [8472] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:34:42 [8472] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:34:42 [8472] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:34:42 [8472] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:34:43 [8472] Gateway: Loaded HNAP11 driver.
08/02/14 13:34:43 [8472] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:35:31 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:35:31 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02516098 seconds; will preallocate 399153 bytes next time.
08/02/14 13:36:31 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:36:31 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02917843 seconds; will preallocate 399153 bytes next time.
08/02/14 13:36:39 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:36:39 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:36:42 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:36:42 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:37:02 [11064] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:37:02 [11064] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:37:02 [11064] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:37:02 [11064] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:37:02 [11064] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:37:04 [11064] Gateway: Loaded HNAP11 driver.
08/02/14 13:37:04 [11064] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:37:27 [256] CertUtil::GetPropertyString() : ::CertGetCertificateContextProperty() for property ID 32768 failed trying to obtain required length with HRESULT hr 0x80092004!
08/02/14 13:37:28 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AV detection.
08/02/14 13:37:28 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:37:28 [3192] NmFirewallManager::Refresh() : Calling OPSWAT for FW detection.
08/02/14 13:37:28 [3192] NmFirewallManager::Refresh() : _RefreshOPSWATFirewalls failed with hr 0x81230230.
08/02/14 13:37:28 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AS detection.
08/02/14 13:37:28 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:37:31 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:37:31 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04327949 seconds; will preallocate 399153 bytes next time.
08/02/14 13:38:32 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:38:32 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.05955535 seconds; will preallocate 399153 bytes next time.
08/02/14 13:38:39 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:38:39 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:38:43 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:38:43 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:39:03 [11968] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:39:03 [11968] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:39:03 [11968] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:39:03 [11968] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:39:03 [11968] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:39:04 [11968] Gateway: Loaded HNAP11 driver.
08/02/14 13:39:04 [11968] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:39:32 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:39:32 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04565447 seconds; will preallocate 399153 bytes next time.
08/02/14 13:40:32 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:40:32 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02902298 seconds; will preallocate 399153 bytes next time.
08/02/14 13:40:40 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:40:40 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:40:43 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:40:43 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:41:33 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:41:33 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.05274093 seconds; will preallocate 399153 bytes next time.
08/02/14 13:42:33 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:42:33 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.06462208 seconds; will preallocate 399153 bytes next time.
08/02/14 13:42:41 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:42:41 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:42:44 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:42:44 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:42:45 [8860] CWinHttpRequest::_WinHttpStatusCallback(): ::WinHttpReceiveResponse() failed with HRESULT 0x80072ee2.
08/02/14 13:42:45 [11196] NmGatewayFac : SupportsUPnP() returned HRESULT 0x80072ee2. Ignoring -- we won't support UPnP routers here...
08/02/14 13:42:45 [11196] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:42:45 [11196] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:42:45 [11196] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:42:45 [11196] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:42:46 [11196] Gateway: Loaded HNAP11 driver.
08/02/14 13:42:46 [11196] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:43:33 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:43:33 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.06225186 seconds; will preallocate 399153 bytes next time.
08/02/14 13:44:33 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:44:33 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.06886318 seconds; will preallocate 399153 bytes next time.
08/02/14 13:44:41 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:44:41 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:44:44 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:44:45 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:45:05 [7104] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:45:05 [7104] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:45:05 [7104] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:45:05 [7104] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:45:05 [7104] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:45:06 [7104] Gateway: Loaded HNAP11 driver.
08/02/14 13:45:06 [7104] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:45:34 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:45:34 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.03483652 seconds; will preallocate 399153 bytes next time.
08/02/14 13:46:34 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:46:34 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.03204762 seconds; will preallocate 399153 bytes next time.
08/02/14 13:46:42 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:46:42 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:46:45 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:46:45 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:47:30 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AV detection.
08/02/14 13:47:30 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:47:30 [3192] NmFirewallManager::Refresh() : Calling OPSWAT for FW detection.
08/02/14 13:47:30 [3192] NmFirewallManager::Refresh() : _RefreshOPSWATFirewalls failed with hr 0x81230230.
08/02/14 13:47:31 [3192] NmAntivirusManager::Refresh() : Calling OPSWAT for AS detection.
08/02/14 13:47:31 [3192] NmAntivirusManager::Refresh() : _RefreshOPSWATAntiviruses failed with hr 0x81230230.
08/02/14 13:47:34 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:47:34 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.06174556 seconds; will preallocate 399153 bytes next time.
08/02/14 13:48:35 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:48:35 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04657433 seconds; will preallocate 399153 bytes next time.
08/02/14 13:48:42 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:48:42 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:48:46 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:48:46 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:48:48 [10832] CWinHttpRequest::_WinHttpStatusCallback(): ::WinHttpReceiveResponse() failed with HRESULT 0x80072ee2.
08/02/14 13:48:48 [7240] NmGatewayFac : SupportsUPnP() returned HRESULT 0x80072ee2. Ignoring -- we won't support UPnP routers here...
08/02/14 13:48:48 [7240] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500
08/02/14 13:48:48 [7240] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500', DLL: 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform

\Linksys.dll'.
08/02/14 13:48:48 [7240] HtmlGatewayDriver : Loaded driver for gateway at '192.168.1.1:80', Identifier: 'Linksys EA4500'.
08/02/14 13:48:48 [7240] HTML Gateway Driver: Loaded mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:48:49 [7240] Gateway: Loaded HNAP11 driver.
08/02/14 13:48:49 [7240] HTML Gateway Driver: Unloading mini-driver 'C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\Linksys.dll'.
08/02/14 13:49:35 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:49:35 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.04820104 seconds; will preallocate 399153 bytes next time.
08/02/14 13:50:35 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib...
08/02/14 13:50:35 [256] NmNetworkLib::_SaveLibToFile() : Saving NetworkLib completed in 0.02523723 seconds; will preallocate 399153 bytes next time.
08/02/14 13:50:43 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_1814&DEV_3092&SUBSYS_001515A9&REV_00\4&17B2C249&0&0028' ['802.11n Wireless LAN Card' {25D81EBF-1A16-453A-9E33-

FEE822589865}] with enabled status true.
08/02/14 13:50:43 [256] NmNetwork::_get_DisabledAdapters() : Found adapter 'PCI\VEN_10EC&DEV_8168&SUBSYS_2A8E103C&REV_03\4&501C3E4&0&0038' ['Realtek PCIe GBE Family Controller' {0BDD09BB-7D5D-

4A9D-BE42-C785FAD08CB5}] with enabled status true.
08/02/14 13:50:46 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:50:46 [256] NmComputer::_DecideDefaultAdapterNative() : Setting adapter '{BA58443B-B7E8-4C96-9B7F-B7F291F237F5}' [0xa] as default.
08/02/14 13:51:06 [6212] NmGatewayFac : SupportsUPnP() returned HRESULT 0x800705b4. Ignoring -- we won't support UPnP routers here...
08/02/14 13:51:06 [6212] NmGatewayFac discovery : To identify the router at \\192.168.1.1, using router identifier logged to Gateway-58-6D-8F-F1-6C-71.txt, short version: Linksys EA4500

tashi
2014-08-02, 19:26
Hello lindavb,


However, I am concerned about rootkit malwareand am now running a deep scan on Spybot, and I am getting LOTS of no admin in ACL files and 2 registry keys. I am wondering if these are malicious and whether I should delete them.

The registry keys that report no admin in ACL are Type: Key
Object: Flyout
Location: HKLM\SOFTWARE\WoW6432Node\Microsoft\Windows\CurrentVersion\Applets\SysTray\BattMeter\
Details: No admin in ACL

and Type: Key
Object: Svc
Location: HKLM\SOFTWARE\WoW6432Node\Microsoft\Security Center\
Details: No admin in ACL

an example of the many files flagged in red as no admin in ACL:
Type: File
Object: ~DF0626843B5B85CBE9.TMP
Location: C:\Users\Linda\AppData\Local\Temp\
Details: No admin in ACL

all of these are flagged in red and begin with ~D. I cannot open them.

I also have many, many "unknown ADS" but most of them are jpegs or dropbox items and I don't think these are a threat.

Advice please? Thanks!

Those appear to be alright. In general all items found by the RootAlyzer are not necessarily malicious but shows items it believes to be out of the ordinary and may give a hint for an infection.

Sometimes even legitimate software uses rootkit technologies.

However,

I am running a Spybot deep scan after discovering yesterday that I might have been infected with backdoor.Bot.Ed and other variations of backdoor bot. I first noticed uncontrollable scrolling in email and other applications, so I rebooted my PC and then it was fine. However, I have ESET NOD 32 Anti Virus 7, and it repeatedly reported that it had blocked the backdoor bot but the warnings kept recurring after I closed the window. I opened Malwarebyte and it also continuously reported cleaning this threat but the box kept popping up. After it turned up in scans, I located an appdata local temp 0722.dll in my C drive and asked Spybot to search and destroy it, and it's gone now. Since then I have run repeated scans (note, I was unable to get my PC into safe mode) on both NOD and Malwarebyte and they came back clean, as did a simple Spybot scan.

It might be best for someone to take a look at the system, please see the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22) sticky which includes guidelines and instructions in post #2 on how to provide the logs from Farbar Recovery Scan Tool and aswMBR, which are the logs used in the preliminary analysis.

http://forums.spybot.info/showthread.php?t=288

Then start a new topic in that forum providing the logs so a volunteer analyst can guide you, also provide a link back to this thread please. :)

Best regards.

lindavb
2014-08-04, 01:18
Thank you so much! Since posting, I have scanned again in safe mode with Malwarebytes and it came back clean. I also scanned again with Spybot and received the same log as posted above. However, I am now running NOD in regular mode and it reports there are two threats it has cleaned. It's a custom scan and it takes a very long time, I started it 12 hours ago, but it's not finished and so I don't know what those two threats were. I will check the log when it's done. Tomorrow I will follow your instructions, download the apps and post the logs. Thanks again for your help! Everything seems to be running normally but I want to be sure my PC is clean.

lindavb
2014-08-04, 13:39
ok done, and done. thanks again!

tashi
2014-08-04, 16:49
:2thumb: