Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Problem at computer start up and windows log on


  • Please log in to reply
10 replies to this topic

#1 KristinaJen

KristinaJen

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:02:10 AM

Posted 28 July 2013 - 09:01 PM

I am running Windows Vista Home Premium, service pack two. I am having three issues that I am pretty sure are somehow related. They all started at the same time but I do not remember installing or updating anything around that time.

 

1. The first one that comes up is “Failed to connect to a windows service: Windows could not connect to the System Event Notification Service. This problem prevents limited users from logging on to the system. As an administrator user, you can review the System Event Log for details about why the service didn't respond.”

 

2. I am having a problem with a very slow start up and log in.  Randomly, maybe about 25% of the time, it will log in to a black screen and I will have to restart the computer.  

 

3. The theme changes to classic when I start the computer. When I go to services it is started and set for automatic. When I hit restart, it changes to the aero theme like it should be. It is getting pretty annoying.

 

Not sure if it is related or not but when I tried to do a system restore, there were no restore points for me to use. Since then I have created one but it is gone again.

 

So far I have run the Rkill program followed by the Anti-Malware and SuperAntiSpyware. Both programs are updated regularly. On the 26th Anti-Malware found two trojin.downloaders and quarantined them. Anti-Malware scans have come back clean since that scan. SuperAntiSpyware always comes back with adware.tracking cookie, always a different number of them. I usually just delete them. Microsoft security essentials have been coming back clean too.

I have reset the winsock settings but that did not help.   

 

I am really hoping that I can find an answer since I cannot seem to figure this one out.I have searched the forums but I could not fid anything that fixed it.

Thanks

 

 



BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:10 PM

Posted 28 July 2013 - 11:12 PM

Hello KristinaJen and Welcome -

Please run these few scans so that we can look for anyproblems ......

 

Download Security Check by Screen317 from HERE
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If a security program requests permission to access the Internet, allow it to do so.

 

 

Please post your log of Malwarebytes' Anti-Malware that showed the infections
Open the program > Logs at the top > Select from the dated logs (26th) to find the one with listed infections - Please post that back here -

 

Also Update your Malwarebytes' Anti-Malware and run a new quick scan, and post that new log with it -

 

 

Please download MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open
Now : Checkmark the following boxes:
•Flush DNS
•Report IE Proxy Settings
•Reset IE Proxy Settings
•Report FF Proxy Settings
•Reset FF Proxy Settings
•List content of Hosts
•List IP configuration
•List last 10 Event Viewer log
•List Installed Programs
•List Users, Partitions and Memory size.
•List Minidump Files
 Click Go and copy / paste the result (Result.txt).

 

 

Download SUPERAntiSpyware Free (aka SAS)
* Double-click SAS -setup.exe and follow the prompts to install the program.
* At the end, be sure to Check for Updates to be sure it is current
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to reboot the computer after you post the log.

 

 

In your reply, Please post - 

Security Check Log
Old
(infected) Malwarebytes' Anti-Malware Log (26th)
New Malwarebytes' Anti-Malware Log
MiniToolBox log
SUPERAntiSpyware Log

 

We can review these and then take other steps as required

Please tell us how things are running in regard to your problems -

 

 

Thank You -



#3 KristinaJen

KristinaJen
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:02:10 AM

Posted 28 July 2013 - 11:56 PM

Thank you so much for your help.  Here are the results of the scans.  I read through them but I am not sure what they mean.   I see that it wants me to use sxstrace.exe but I don't know what it is or how to use it.

 

Edited to add~ I do not use firefox anymore, that is why it is outdated.

Security Check Log

Results of screen317's Security Check version 0.99.71  
 Windows Vista Service Pack 2 x86 (UAC is enabled)  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Microsoft Security Essentials   
avast! Antivirus                
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 SUPERAntiSpyware     
 Malwarebytes Anti-Malware version 1.75.0.1300  
 CCleaner     
 Wise Registry Cleaner 5.9.4  
 Java 7 Update 25  
 Adobe Flash Player 11.8.800.94  
 Adobe Reader 10.1.7 Adobe Reader out of Date!
 Mozilla Firefox 21.0 Firefox out of Date!
 Google Chrome 28.0.1500.71  
 Google Chrome 28.0.1500.72  
````````Process Check: objlist.exe by Laurent````````
 Microsoft Security Essentials MSMpEng.exe 
 Microsoft Security Essentials msseces.exe 
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Malwarebytes' Anti-Malware mbamscheduler.exe   
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0 % 
````````````````````End of Log``````````````````````
 

 

Old (infectedMalwarebytes' Anti-Malware Log (26th)

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.07.27.01
 
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Christina :: CHRISTINA-PC [administrator]
 
7/26/2013 11:45:43 PM
mbam-log-2013-07-26 (23-45-43).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 293135
Time elapsed: 14 minute(s), 45 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> Quarantined and deleted successfully.
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
 

 

New Malwarebytes' Anti-Malware Log

This was updated and ran right before the original post

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.07.28.07
 
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Christina :: CHRISTINA-PC [administrator]
 
7/28/2013 9:32:21 PM
mbam-log-2013-07-28 (21-32-21).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 293007
Time elapsed: 16 minute(s), 56 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)

 

MiniToolBox log

 

MiniToolBox by Farbar  Version: 13-07-2013

Ran by Christina (administrator) on 29-07-2013 at 00:24:24
Running from "C:\Users\Christina\Downloads"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
::1             localhost
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Atheros AR5B91 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8131 PCI-E Gigabit Ethernet Controller = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global defaultcurhoplimit=128 icmpredirects=enabled
add address name="Local Area Connection" address=192.168.0.1
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Christina-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gateway.2wire.net
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Atheros AR5B91 Wireless Network Adapter
   Physical Address. . . . . . . . . : 00-17-C4-7C-BF-DD
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::50d3:d215:b475:e399%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.71(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, July 28, 2013 7:39:55 PM
   Lease Expires . . . . . . . . . . : Monday, July 29, 2013 7:39:54 PM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 218109892
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-FD-24-58-00-1F-16-BC-44-21
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Atheros AR8131 PCI-E Gigabit Ethernet Controller
   Physical Address. . . . . . . . . : 00-1F-16-BC-44-21
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 6:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.{10FAFB6D-C08D-4BF5-AC21-787996885DD4}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 7:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 12:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:883:397a:3f57:feb8(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::883:397a:3f57:feb8%13(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter Local Area Connection* 13:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 16:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.gateway.2wire.net
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 17:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  home
Address:  192.168.1.254
 
Name:    google.com
Addresses:  2607:f8b0:4009:804::1003
 74.125.225.130
 74.125.225.128
 74.125.225.135
 74.125.225.142
 74.125.225.129
 74.125.225.132
 74.125.225.136
 74.125.225.134
 74.125.225.131
 74.125.225.137
 74.125.225.133
 
 
 
Pinging google.com [74.125.225.36] with 32 bytes of data:
 
Reply from 74.125.225.36: bytes=32 time=67ms TTL=55
 
Reply from 74.125.225.36: bytes=32 time=64ms TTL=55
 
 
 
Ping statistics for 74.125.225.36:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 64ms, Maximum = 67ms, Average = 65ms
 
Server:  home
Address:  192.168.1.254
 
Name:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
 
Reply from 98.139.183.24: bytes=32 time=155ms TTL=49
 
Reply from 98.139.183.24: bytes=32 time=140ms TTL=49
 
 
 
Ping statistics for 98.139.183.24:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 140ms, Maximum = 155ms, Average = 147ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
 12 ...00 17 c4 7c bf dd ...... Atheros AR5B91 Wireless Network Adapter
 10 ...00 1f 16 bc 44 21 ...... Atheros AR8131 PCI-E Gigabit Ethernet Controller
  1 ........................... Software Loopback Interface 1
 17 ...00 00 00 00 00 00 00 e0  isatap.{10FAFB6D-C08D-4BF5-AC21-787996885DD4}
 14 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #2
 11 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 13 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 15 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 18 ...00 00 00 00 00 00 00 e0  isatap.gateway.2wire.net
 26 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #6
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.71     30
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.71    286
     192.168.1.71  255.255.255.255         On-link      192.168.1.71    286
    192.168.1.255  255.255.255.255         On-link      192.168.1.71    286
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.71    286
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.71    286
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     18 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     18 2001::/32                On-link
 13    266 2001:0:5ef5:79fd:883:397a:3f57:feb8/128
                                    On-link
 12    286 fe80::/64                On-link
 13    266 fe80::/64                On-link
 13    266 fe80::883:397a:3f57:feb8/128
                                    On-link
 12    286 fe80::50d3:d215:b475:e399/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    266 ff00::/8                 On-link
 12    286 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/28/2013 07:41:08 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/28/2013 05:43:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (07/28/2013 05:42:55 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (07/28/2013 05:42:55 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (07/28/2013 05:42:55 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (07/28/2013 05:42:54 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (07/28/2013 05:40:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/28/2013 05:08:23 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/28/2013 04:58:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/28/2013 04:58:24 PM) (Source: Application Error) (User: )
Description: Faulting application rndlresolversvc.exe, version 0.0.0.0, time stamp 0x513718bd, faulting module rndlresolversvc.exe, version 0.0.0.0, time stamp 0x513718bd, exception code 0xc0000005, fault offset 0x00003035,
process id 0x900, application start time 0xrndlresolversvc.exe0.
 
 
System errors:
=============
Error: (07/28/2013 08:26:04 PM) (Source: PlugPlayManager) (User: )
Description: The device 'TSSTcorp CDDVDW TS-U633A' (IDE\CdRomTSSTcorp_CDDVDW_TS-U633A________________AC01____\4&232d92cc&0&0.1.0) disappeared from the system without first being prepared for removal.
 
Error: (07/28/2013 07:41:25 PM) (Source: Service Control Manager) (User: )
Description: Superfetch%%1
 
Error: (07/28/2013 07:41:14 PM) (Source: Service Control Manager) (User: )
Description: is3srv
szkg5
szkgfs
 
Error: (07/28/2013 07:41:09 PM) (Source: Service Control Manager) (User: )
Description: Protexis Licensing V2%%2
 
Error: (07/28/2013 07:40:57 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (07/28/2013 07:23:17 PM) (Source: Service Control Manager) (User: )
Description: is3srv
szkg5
szkgfs
 
Error: (07/28/2013 07:23:13 PM) (Source: Service Control Manager) (User: )
Description: Protexis Licensing V2%%2
 
Error: (07/28/2013 07:23:03 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (07/28/2013 07:22:15 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{89613F40-12D2-4B76-9540-FCE140916FD2} because another computer on the network has the same name.  The server could not start.
 
Error: (07/28/2013 07:22:00 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.9 for the Network Card with network address 0017C47CBFDD has been denied by the DHCP server 192.168.1.254 (The DHCP Server sent a DHCPNACK message).
 
 
Microsoft Office Sessions:
=========================
Error: (07/28/2013 07:41:08 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/28/2013 05:43:04 PM) (Source: SideBySide)(User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{EA1FAE0F-2354-4E32-B423-ABAE8E358F91}\recordingmanager.exe
 
Error: (07/28/2013 05:42:55 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksWP.exe
 
Error: (07/28/2013 05:42:55 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksss.exe
 
Error: (07/28/2013 05:42:55 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksdb.exe
 
Error: (07/28/2013 05:42:54 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksCal.exe
 
Error: (07/28/2013 05:40:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/28/2013 05:08:23 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/28/2013 04:58:53 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/28/2013 04:58:24 PM) (Source: Application Error)(User: )
Description: rndlresolversvc.exe0.0.0.0513718bdrndlresolversvc.exe0.0.0.0513718bdc00000050000303590001ce8bd5272b9886
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-07-28 14:34:46.923
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-28 14:34:46.408
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-28 14:34:45.878
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-28 14:34:45.378
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-28 14:34:33.105
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-28 14:34:32.637
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-28 14:34:31.779
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-28 14:34:31.124
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-28 14:34:16.241
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-28 14:34:15.778
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
32 Bit HP CIO Components Installer (Version: 1.0.0)
AceMoney Lite
Acer Assist
Acer Backup Manager (Version: 1.0.0.53)
Acer Crystal Eye Webcam (Version: 5.2.3.1)
Acer eRecovery Management (Version: 4.00.3005)
Acer GridVista (Version: 2.75.825)
Acer PowerSmart Manager (Version: 4.02.3002)
Acer Registration
Acer ScreenSaver
Acer VCM (Version: 4.00.3006)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 3.7.0.2090)
Adobe Community Help (Version: 3.4.980)
Adobe Download Assistant (Version: 1.0.6)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (Version: 11.8.800.94)
Adobe PhotoDeluxe 2.0
Adobe Reader X (10.1.7) (Version: 10.1.7)
Adobe Shockwave Player 12.0 (Version: 12.0.3.133)
Adobe Type Manager 4.0
AIO_Scan (Version: 90.0.222.000)
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.10)
att.net Internet Mail
avast! Free Antivirus (Version: 8.0.1489.0)
Avery Wizard 4.0 (Version: 4.0.103)
Backup Manager Basic (Version: 1.0.0.53)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 90.0.146.000)
Carbonite Online Backup Setup (Version: 3.7.0)
CCleaner (Version: 4.02)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DJ_AIO_Software_min (Version: 90.0.222.000)
Dragon NaturallySpeaking 11 (Version: 11.0.200)
Feedback Tool (Version: 1.2.0)
Garmin Communicator Plugin (Version: 4.0.3)
Garmin USB Drivers (Version: 2.3.0.0)
Garmin WebUpdater (Version: 2.4.2)
Google Chrome (Version: 28.0.1500.72)
Google Update Helper (Version: 1.3.21.153)
HP Deskjet 3050 J610 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 3050 J610 series Help (Version: 140.0.63.63)
HP Deskjet 3050 J610 series Product Improvement Study (Version: 22.50.231.0)
HP Deskjet All-In-One Software 9.0 (Version: 9.0)
HP Update (Version: 5.002.006.003)
ICA (Version: 1.6.1.224)
iCloud (Version: 2.1.1.3)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2869)
Intel® Matrix Storage Manager
Internet Explorer (Enable DEP)
IPM_PSP_CL (Version: 1.00.0000)
IPM_PSP_COM (Version: 1.00.0000)
iTunes (Version: 11.0.2.26)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Junk Mail filter update (Version: 15.4.3502.0922)
Launch Manager (Version: 2.0.03)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Security Client (Version: 4.3.0215.0)
Microsoft Security Essentials (Version: 4.3.215.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Windows Media Video 9 VCM
Microsoft Works (Version: 9.7.0621)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 21.0 (x86 en-US) (Version: 21.0)
Mozilla Maintenance Service (Version: 21.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyWinLocker (Version: 3.1.36.0)
NTI Backup Now 5 (Version: 5.1.2.616)
NTI Backup Now Standard (Version: 5.1.2.616)
NTI Media Maker 8 (Version: 8.0.2.6509)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Optical Drive Power Management (Version: 1.00.3002)
Orion (Version: 2.5.0)
Pixillion Image Converter
Plus! Image (Version: 1.0.1.102)
PowerDVD (Version: 7.0.4002.0)
PSPPContent (Version: 1.00.0000)
PSPPRO_DCRAW (Version: 13.0.0)
QuickTime (Version: 7.73.80.64)
RealDownloader (Version: 1.3.1)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.0)
Realtek High Definition Audio Driver (Version: 6.0.1.5830)
Realtek USB 2.0 Card Reader (Version: 6.0.6000.20113)
RealUpgrade 1.1 (Version: 1.1.0)
Scan (Version: 9.0.0.0)
Segoe UI (Version: 15.4.2271.0615)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
SUPERAntiSpyware (Version: 5.6.1020)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 12.2.2.0)
System Requirements Lab for Intel (Version: 4.5.15.0)
Toolbox (Version: 90.0.146.000)
UnloadSupport (Version: 9.0.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB2836940) (Version: 1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Visual C++ 9.0 Runtime for Dragon NaturallySpeaking (Version: 11.0.0)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Wise Registry Cleaner 5.9.4 (Version: 5.9.4)
Yahoo! Messenger
Yahoo! Software Update
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****
 

 

SUPERAntiSpyware Log

This was also updated and ran right before the original post

 

SUPERAntiSpyware Scan Log

 
Generated 07/28/2013 at 09:27 PM
 
Application Version : 5.6.1020
 
Core Rules Database Version : 10644
Trace Rules Database Version: 8456
 
Scan type       : Quick Scan
Total Scan Time : 00:34:23
 
Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 2 (Build 6.00.6002)
UAC On - Limited User (Administrator User)
 
Memory items scanned      : 765
Memory threats detected   : 0
Registry items scanned    : 30633
Registry threats detected : 0
File items scanned        : 10771
File threats detected     : 25
 
Adware.Tracking Cookie
.atdmt.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.c1.atdmt.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.doubleclick.net [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
track.prd.inpwrd.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.kontera.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.doubleclick.net [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.microsoftsto.112.2o7.net [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.atdmt.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.casalemedia.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.casalemedia.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.casalemedia.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.casalemedia.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.casalemedia.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.casalemedia.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.adtechus.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.adtechus.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
ad.yieldmanager.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
ad.yieldmanager.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
ad.yieldmanager.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
ad.yieldmanager.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
ad.yieldmanager.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.invitemedia.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.invitemedia.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.questionmarket.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]
.questionmarket.com [ C:\USERS\CHRISTINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]

Edited by KristinaJen, 28 July 2013 - 11:58 PM.


#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:10 PM

Posted 29 July 2013 - 03:30 AM

Hi -

A quick review and some results that you should look at. If you have questions, please ask them -

 

Please note that you have 2 Antivirus programs - Please uninstall one of them -
Microsoft Security Essentials  
avast! Antivirus

Please choose which one you wish to remove > Directions ..........
http://go.microsoft.com/?linkid=9748340 < The Microsoft Security Essentials Removal Tool can be used to remove all traces of Microsoft Security Essentials from your computer in the event that you are unable to remove it normally via the Windows control panel Programs and Features area.

 

How to uninstall Avast software using aswClear:

 

Wise Registry Cleaner 5.9.4 (Version: 5.9.4) < You do not need this program (please remove it)

 

Edited to add~ I do not use firefox anymore, that is why it is outdated. - Please delete or update it.

To Uninstall Firefox, here are the directions ...........
On Windows 7/Vista, go to "Programs -> Programs and Features", select Mozilla Firefox <version> and click click Uninstall.
Read other details from HERE - See Vista or Windows 7 details.
If you have problems, use Revo Uninstaller (directions below)
¦ Please download and install Revo Uninstaller Free
¦ Double click Revo Uninstaller to run it.
¦ From the list of programs double click on The Program to remove
¦ When prompted if you want to uninstall click Yes.
¦ Be sure the Moderate option is selected then click Next.
¦ The program will run, If prompted again click Yes
¦ When the built-in uninstaller is finished click on Next.
Please read this to complete the removal
¦ Once the program has searched for leftovers click Next.
¦ Check/tick the bolded items only on the list then click Delete
¦ When prompted click on Yes and then on next.
¦ Put a check on any folders that are found and select delete
¦ When prompted select yes then on next
¦ Once done click Finish.

 

 

Error: (07/28/2013 07:41:09 PM) (Source: Service Control Manager) (User: )
Description: Protexis Licensing V2%%2
Protexis may be disabled, if you use it - We will start with this option .........
1.  Hold down both the Windows and the 'R' keys
2.  Now type: services.msc in the run box and hit the Enter key
3.  Scroll down to Protexis licensing V2 in the services list
4.  Double click on Protexis Licensing V2 to open up the properties box
5.  Make sure that Protexis Licensing V2 is started and the Statup type is set to Automatic
6.  Click on Apply and OK

 

 

Now run sfc /scannow -
Go - Start > Programs > Accessories and Find Command Prompt > You Must Right click on it and select Run as Administrator > Type sfc /scannow Note the space between c and / as it Must be there.
Press Enter - The program will take (on average) 15 to 20 minutes to run. Do not reboot or stop the computer while it runs, and if this is a Laptop, be sure it is plugged into a power source, Not just Battery -

 

 

Thanks -


Edited by noknojon, 29 July 2013 - 03:33 AM.


#5 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:10 PM

Posted 29 July 2013 - 07:46 AM

From > HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> Quarantined and deleted successfully.
{CA4520F3-AE13-4FB1-A513-58E23991C86D} Researched at SystemLookup files and McAfee history.
This entry is classified as malware, spyware, adware, or other potentially unwanted software.
It was picked up with another program that was downloaded from ?? somewhere ??

 

Please update us on how things are running at the moment -

 

Thanks -



#6 KristinaJen

KristinaJen
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:02:10 AM

Posted 29 July 2013 - 03:02 PM

Error: (07/28/2013 07:41:09 PM) (Source: Service Control Manager) (User: )

 

Description: Protexis Licensing V2%%2
Protexis may be disabled, if you use it - We will start with this option .........
1.  Hold down both the Windows and the 'R' keys
2.  Now type: services.msc in the run box and hit the Enter key
3.  Scroll down to Protexis licensing V2 in the services list
4.  Double click on Protexis Licensing V2 to open up the properties box
5.  Make sure that Protexis Licensing V2 is started and the Statup type is set to Automatic
6.  Click on Apply and OK

 

 

I am getting

 

Windows could not start the Protexis Licensing V2 service on local computer 

 

Error 2: The system could not find the file specified.

 

 



#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:10 PM

Posted 29 July 2013 - 05:56 PM

RE: Error 2: The system could not find the file specified.

 

Re-open the services windows, right-click on the Protexis services and choose "Properties". Under the General tab, make note of the filepath in the "Path to executable" box. Then open Windows Explorer > My Computer, browse to that path and make sure the "PsiService_2.exe" file is actually there.

 

Would your problems date back to about the time that this program was installed ??

 

Thanks -



#8 KristinaJen

KristinaJen
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:02:10 AM

Posted 29 July 2013 - 10:18 PM

RE: Error 2: The system could not find the file specified.

 

Re-open the services windows, right-click on the Protexis services and choose "Properties". Under the General tab, make note of the filepath in the "Path to executable" box. Then open Windows Explorer > My Computer, browse to that path and make sure the "PsiService_2.exe" file is actually there.

 

Would your problems date back to about the time that this program was installed ??

 

Thanks -

No, that is part of a Corel program that I do not even have anymore.  I went and deleted it from the computer. 

 

I followed everything you posted and so far so good!  Hopefully it stays this way.

 

Thank you for all your help. 



#9 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:10 PM

Posted 29 July 2013 - 10:32 PM

Hi

I followed everything you posted and so far so good! < < Do you feel that things are a bit better.

 

I will still watch this topic for any updates from you for a few days, so please post back if nothing improves.

 

Thank You -



#10 KristinaJen

KristinaJen
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:02:10 AM

Posted 30 July 2013 - 11:47 AM

So far it is much better. Started up pretty quick today. It may take a few days to know if it is gone for good.. 

 

Thanks again. 



#11 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:10 PM

Posted 30 July 2013 - 05:49 PM

Good -

Please keep me updated over the next few days if you have problems -

 

Regards -






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users