Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

System Problems


  • Please log in to reply
4 replies to this topic

#1 islandjerr

islandjerr

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 09 June 2014 - 10:09 PM

Mod Edit:  Split from http://www.bleepingcomputer.com/forums/t/494636/service-host-local-system-cpumemory-hog/ - Hamluis.

 

having speed problems and congesting on my hard drive access...  

 

Here are all of the tests that I ran per your protocol:  

 

Can you help me please?

 

Results of screen317's Security Check version 0.99.84 

   x64 (UAC is enabled) 

 Internet Explorer 11 

``````````````Antivirus/Firewall Check:``````````````

 Windows Firewall Enabled! 

PC Tools Spyware Doctor with AntiVirus  

Windows Defender                        

 WMI entry may not exist for antivirus; attempting automatic update.

`````````Anti-malware/Other Utilities Check:`````````

 PC Tools Spyware Doctor with AntiVirus 9.1

 Java 7 Update 60 

 Adobe Flash Player          13.0.0.214 

 Adobe Reader XI 

 Google Chrome 34.0.1847.137 

 Google Chrome 35.0.1916.114 

 Google Chrome plugins... 

````````Process Check: objlist.exe by Laurent````````

`````````````````System Health check`````````````````

 Total Fragmentation on Drive C:  %

````````````````````End of Log``````````````````````

 

 

 

 

 

Farbar Service Scanner Version: 09-06-2014

Ran by jerry (administrator) on 09-06-2014 at 19:16:24

Running from "C:\Users\jerry\Downloads"

Microsoft Windows 8.1  (X64)

Boot Mode: Normal

****************************************************************

 

Internet Services:

============

 

Connection Status:

==============

Localhost is accessible.

LAN connected.

Google IP is accessible.

Google.com is accessible.

Yahoo.com is accessible.

 

 

Windows Firewall:

=============

 

Firewall Disabled Policy:

==================

 

 

System Restore:

============

 

System Restore Disabled Policy:

========================

 

 

Action Center:

============

 

 

Windows Update:

============

wuauserv Service is not running. Checking service configuration:

The start type of wuauserv service is set to Demand. The default start type is Auto.

The ImagePath of wuauserv service is OK.

The ServiceDll of wuauserv service is OK.

 

 

Windows Autoupdate Disabled Policy:

============================

 

 

Windows Defender:

==============

WinDefend Service is not running. Checking service configuration:

The start type of WinDefend service is set to Demand. The default start type is Auto.

The ImagePath of WinDefend: ""%ProgramFiles%\Windows Defender\MsMpEng.exe"".

 

 

Windows Defender Disabled Policy:

==========================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]

"DisableAntiSpyware"=DWORD:1

 

 

Other Services:

==============

 

 

File Check:

========

C:\Windows\System32\nsisvc.dll => MD5 is legit

C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit

C:\Windows\System32\dhcpcore.dll => MD5 is legit

C:\Windows\System32\drivers\afd.sys => MD5 is legit

C:\Windows\System32\drivers\tdx.sys => MD5 is legit

C:\Windows\System32\Drivers\tcpip.sys

[2014-04-23 06:55] - [2014-03-04 07:15] - 2519384 ____A (Microsoft Corporation) FEEFE783D87C9063CDAC6DBDCF95F533

 

C:\Windows\System32\dnsrslvr.dll => MD5 is legit

C:\Windows\System32\mpssvc.dll => MD5 is legit

C:\Windows\System32\bfe.dll => MD5 is legit

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit

C:\Windows\System32\wscsvc.dll

[2014-04-23 08:10] - [2014-02-22 03:52] - 0134144 ____A (Microsoft Corporation) 515583507D3828E827FF6352C9ACCEFA

 

C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit

C:\Windows\System32\wuaueng.dll => MD5 is legit

C:\Windows\System32\qmgr.dll => MD5 is legit

C:\Windows\System32\es.dll => MD5 is legit

C:\Windows\System32\cryptsvc.dll => MD5 is legit

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit

C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit

C:\Windows\System32\ipnathlp.dll => MD5 is legit

C:\Windows\System32\iphlpsvc.dll => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

 

 

**** End of log ****

 

 

 

MiniToolBox by Farbar  Version: 23-01-2014

Ran by jerry (administrator) on 09-06-2014 at 19:33:02

Running from "C:\Users\jerry\Downloads"

Microsoft Windows 8.1  (X64)

Boot Mode: Normal

***************************************************************************

 

========================= IE Proxy Settings: ==============================

 

Proxy is not enabled.

No Proxy Server is set.

========================= Hosts content: =================================

 

 

 

========================= IP Configuration: ================================

 

Intel® Centrino® Wireless-N 2230 = Wi-Fi (Connected)

Realtek PCIe FE Family Controller = Ethernet (Media disconnected)

Anchorfree HSS VPN Adapter = Ethernet 2 (Media disconnected)

Bluetooth Device (Personal Area Network) = Bluetooth Network Connection 2 (Media disconnected)

 

 

# ----------------------------------

# IPv4 Configuration

# ----------------------------------

pushd interface ipv4

 

reset

set global icmpredirects=enabled

set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="wireless_14" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="wireless_13" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="Bluetooth Network Connection 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

 

 

popd

# End of IPv4 configuration

 

 

 

Windows IP Configuration

 

   Host Name . . . . . . . . . . . . : Dell2013

   Primary Dns Suffix  . . . . . . . :

   Node Type . . . . . . . . . . . . : Hybrid

   IP Routing Enabled. . . . . . . . : No

   WINS Proxy Enabled. . . . . . . . : No

 

Ethernet adapter Bluetooth Network Connection 2:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network) #2

   Physical Address. . . . . . . . . : 60-36-DD-D3-CA-15

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Wireless LAN adapter Local Area Connection* 12:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter

   Physical Address. . . . . . . . . : 60-36-DD-D3-CA-12

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Ethernet adapter Ethernet 2:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Anchorfree HSS VPN Adapter

   Physical Address. . . . . . . . . : 00-FF-9E-85-7C-1A

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Wireless LAN adapter Wi-Fi:

 

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 2230

   Physical Address. . . . . . . . . : 60-36-DD-D3-CA-11

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

   Link-local IPv6 Address . . . . . : fe80::c93f:c0af:972f:90e1%4(Preferred)

   IPv4 Address. . . . . . . . . . . : 192.168.0.112(Preferred)

   Subnet Mask . . . . . . . . . . . : 255.255.255.0

   Lease Obtained. . . . . . . . . . : Friday, May 30, 2014 3:12:07 PM

   Lease Expires . . . . . . . . . . : Tuesday, June 10, 2014 3:55:19 PM

   Default Gateway . . . . . . . . . : 192.168.0.1

   DHCP Server . . . . . . . . . . . : 192.168.0.1

   DHCPv6 IAID . . . . . . . . . . . : 325072605

   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-A5-39-E3-B8-CA-3A-C5-04-79

   DNS Servers . . . . . . . . . . . : 192.168.1.1

                                       192.168.0.1

   NetBIOS over Tcpip. . . . . . . . : Enabled

 

Ethernet adapter Ethernet:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller

   Physical Address. . . . . . . . . : B8-CA-3A-C5-04-79

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.{5AD0F9E2-909E-4AE9-9E0A-58EF288C270B}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter Local Area Connection* 19:

 

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:439:29ec:3f57:ff8f(Preferred)

   Link-local IPv6 Address . . . . . : fe80::439:29ec:3f57:ff8f%7(Preferred)

   Default Gateway . . . . . . . . . : ::

   DHCPv6 IAID . . . . . . . . . . . : 234881024

   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-A5-39-E3-B8-CA-3A-C5-04-79

   NetBIOS over Tcpip. . . . . . . . : Disabled

Server:  UnKnown

Address:  192.168.1.1

 

Name:    google.com

Addresses:  2607:f8b0:4008:806::1007

                 201.191.202.223

                 201.191.202.241

                 201.191.202.234

                 201.191.202.230

                 201.191.202.212

                 201.191.202.240

                 201.191.202.245

                 201.191.202.251

                 201.191.202.238

                 201.191.202.229

                 201.191.202.208

                 201.191.202.218

                 201.191.202.249

                 201.191.202.219

                 201.191.202.227

                 201.191.202.216

 

 

Pinging google.com [201.191.202.234] with 32 bytes of data:

Reply from 201.191.202.234: bytes=32 time=370ms TTL=57

Reply from 201.191.202.234: bytes=32 time=384ms TTL=57

 

Ping statistics for 201.191.202.234:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 370ms, Maximum = 384ms, Average = 377ms

Server:  UnKnown

Address:  192.168.1.1

 

Name:    yahoo.com

Addresses:  98.139.183.24

                 98.138.253.109

                 206.190.36.45

 

 

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=505ms TTL=38

Reply from 206.190.36.45: bytes=32 time=519ms TTL=38

 

Ping statistics for 206.190.36.45:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 505ms, Maximum = 519ms, Average = 512ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================

Interface List

 19...60 36 dd d3 ca 15 ......Bluetooth Device (Personal Area Network) #2

  8...60 36 dd d3 ca 12 ......Microsoft Wi-Fi Direct Virtual Adapter

  5...00 ff 9e 85 7c 1a ......Anchorfree HSS VPN Adapter

  4...60 36 dd d3 ca 11 ......Intel® Centrino® Wireless-N 2230

  3...b8 ca 3a c5 04 79 ......Realtek PCIe FE Family Controller

  1...........................Software Loopback Interface 1

 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter

  7...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface

===========================================================================

 

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.112     25

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

      192.168.0.0    255.255.255.0         On-link     192.168.0.112    281

    192.168.0.112  255.255.255.255         On-link     192.168.0.112    281

    192.168.0.255  255.255.255.255         On-link     192.168.0.112    281

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link     192.168.0.112    281

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link     192.168.0.112    281

===========================================================================

Persistent Routes:

  None

 

IPv6 Route Table

===========================================================================

Active Routes:

 If Metric Network Destination      Gateway

  7    306 ::/0                     On-link

  1    306 ::1/128                  On-link

  7    306 2001::/32                On-link

  7    306 2001:0:9d38:6ab8:439:29ec:3f57:ff8f/128

                                    On-link

  4    281 fe80::/64                On-link

  7    306 fe80::/64                On-link

  7    306 fe80::439:29ec:3f57:ff8f/128

                                    On-link

  4    281 fe80::c93f:c0af:972f:90e1/128

                                    On-link

  1    306 ff00::/8                 On-link

  4    281 ff00::/8                 On-link

  7    306 ff00::/8                 On-link

===========================================================================

Persistent Routes:

  None

========================= Winsock entries =====================================

 

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)

Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)

Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)

Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)

Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)

Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

Catalog5 08 C:\WINDOWS\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)

Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)

x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)

x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)

x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)

x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)

x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)

x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)

x64-Catalog5 08 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (06/09/2014 06:56:57 PM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.

A component version required by the application conflicts with another component version already active.

Conflicting components are:.

Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.

 

Error: (06/09/2014 06:37:06 PM) (Source: Microsoft-Windows-LocationProvider) (User: NT AUTHORITY)

Description: There was an error with the Windows Location Provider database

 

Error: (06/09/2014 04:29:20 PM) (Source: QuickBooks) (User: )

Description: An unexpected error has occured in "QuickBooks Pro 2014":

DBConnPool::HandleConnectionError errorCode:-6069, dbCode:-103 from file:'.\.\src\connpool.cpp' at line 1038 from function:'DBMgr::DBConnPool::init'

 

Error: (06/09/2014 04:29:20 PM) (Source: QuickBooks) (User: )

Description: An unexpected error has occured in "QuickBooks Pro 2014":

Connection String:CON=QBConnectionPool-Probe-QB_data_engine_24; ;DBF=C:\ProgramData\Intuit\QuickBooks 2012\pids2012.QBW;ENG=QB_data_engine_24;DBN=911f8bb3f56c4ae38f2573d5c7a7e53e

 

Error: (06/09/2014 04:29:20 PM) (Source: QuickBooks) (User: )

Description: An unexpected error has occured in "QuickBooks Pro 2014":

Connection Error:Invalid user ID or password

 

Error: (06/09/2014 04:00:53 PM) (Source: Application Hang) (User: )

Description: The program LiveComm.exe version 17.5.9600.20498 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

 

Process ID: 3128

 

Start Time: 01cf84252da1f990

 

Termination Time: 4294967295

 

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe

 

Report Id: 22cf605f-f019-11e3-bee2-6036ddd3ca15

 

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe

 

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

 

Error: (06/09/2014 06:33:26 AM) (Source: Application Hang) (User: )

Description: The program LiveComm.exe version 17.5.9600.20498 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

 

Process ID: 101c

 

Start Time: 01cf83d58fb7c71c

 

Termination Time: 4294967295

 

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe

 

Report Id: d9dde0a9-efc9-11e3-bee2-6036ddd3ca15

 

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe

 

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

 

Error: (06/09/2014 00:50:20 AM) (Source: Application Hang) (User: )

Description: The program LiveComm.exe version 17.5.9600.20498 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

 

Process ID: 2a18

 

Start Time: 01cf83a68888df97

 

Termination Time: 4294967295

 

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe

 

Report Id: ef5231fb-ef99-11e3-bee2-6036ddd3ca15

 

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe

 

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

 

Error: (06/09/2014 00:00:07 AM) (Source: Application Hang) (User: )

Description: The program LiveComm.exe version 17.5.9600.20498 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

 

Process ID: 137c

 

Start Time: 01cf839f11416028

 

Termination Time: 4294967295

 

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe

 

Report Id: eb74df1d-ef92-11e3-bee2-6036ddd3ca15

 

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe

 

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

 

Error: (06/08/2014 11:31:03 PM) (Source: Application Hang) (User: )

Description: The program LiveComm.exe version 17.5.9600.20498 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

 

Process ID: 28a8

 

Start Time: 01cf839ae05d669a

 

Termination Time: 4294967295

 

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe

 

Report Id: d863ba45-ef8e-11e3-bee2-6036ddd3ca15

 

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe

 

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

 

 

System errors:

=============

Error: (06/09/2014 04:39:30 PM) (Source: Schannel) (User: NT AUTHORITY)

Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 252.

 

Error: (06/09/2014 04:26:54 PM) (Source: Schannel) (User: NT AUTHORITY)

Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 252.

 

Error: (06/09/2014 04:26:52 PM) (Source: Schannel) (User: NT AUTHORITY)

Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 252.

 

Error: (06/09/2014 04:26:50 PM) (Source: Schannel) (User: NT AUTHORITY)

Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 252.

 

Error: (06/09/2014 04:26:47 PM) (Source: Schannel) (User: NT AUTHORITY)

Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 252.

 

Error: (06/09/2014 04:26:44 PM) (Source: Schannel) (User: NT AUTHORITY)

Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 252.

 

Error: (06/09/2014 04:26:42 PM) (Source: Schannel) (User: NT AUTHORITY)

Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 252.

 

Error: (06/09/2014 02:50:37 PM) (Source: PCTCore) (User: )

Description: The item store is corrupted: @5666.

 

Error: (06/09/2014 02:05:56 PM) (Source: PCTCore) (User: )

Description: The item store is corrupted: @5666.

 

Error: (06/09/2014 09:48:44 AM) (Source: DCOM) (User: DELL2013)

Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}

 

 

Microsoft Office Sessions:

=========================

 

CodeIntegrity Errors:

===================================

  Date: 2014-01-07 06:59:00.984

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

  Date: 2014-01-07 00:42:07.707

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

  Date: 2014-01-06 05:55:36.559

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

  Date: 2014-01-05 03:11:31.669

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

  Date: 2014-01-04 05:44:17.546

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

  Date: 2014-01-02 05:04:09.506

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

  Date: 2014-01-01 04:48:42.342

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

  Date: 2013-12-31 05:31:00.721

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

  Date: 2013-12-30 05:47:32.853

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

  Date: 2013-12-29 03:11:22.282

  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume5\Program Files\WindowsApps\DellInc.DellGettingStartedwithWindows8_1.0.0.35_neutral__htrsf667h5kn2\GalaSoft.MvvmLight.Win8.dll that did not meet the Store signing level requirements.

 

 

=========================== Installed Programs ============================

 

2007 Microsoft Office Suite Service Pack 3 (SP3)

Adobe Flash Player 13 Plugin (Version: 13.0.0.214)

Adobe Reader XI (11.0.07) (Version: 11.0.07)

Adobe Shockwave Player 12.1 (Version: 12.1.1.151)

Amazon 1Button App (Version: 1.0.3)

Amazon Cloud Player (Version: 2.4.0.26)

Amazon Kindle

AMD Accelerated Video Transcoding (Version: 12.5.100.21025)

AMD APP SDK Runtime (Version: 10.0.1016.4)

AMD Catalyst Install Manager (Version: 8.0.891.0)

Apple Application Support (Version: 3.0.3)

Apple Mobile Device Support (Version: 7.1.1.3)

Apple Software Update (Version: 2.1.3.127)

AVG Security Toolbar (Version: 18.1.0.443)

Bonjour (Version: 3.0.0.10)

Browser Guard 4.0 (Version: 4.0.0.1884)

Catalyst Control Center - Branding (Version: 1.00.0000)

Catalyst Control Center (Version: 2012.1025.346.4844)

Catalyst Control Center InstallProxy (Version: 2012.1025.346.4844)

Catalyst Control Center Localization All (Version: 2012.1025.346.4844)

Catalyst Control Center Profiles Mobile (Version: 2012.1025.346.4844)

CCC Help Chinese Standard (Version: 2012.1025.0345.4844)

CCC Help Chinese Traditional (Version: 2012.1025.0345.4844)

CCC Help Danish (Version: 2012.1025.0345.4844)

CCC Help Dutch (Version: 2012.1025.0345.4844)

CCC Help English (Version: 2012.1025.0345.4844)

CCC Help Finnish (Version: 2012.1025.0345.4844)

CCC Help French (Version: 2012.1025.0345.4844)

CCC Help German (Version: 2012.1025.0345.4844)

CCC Help Italian (Version: 2012.1025.0345.4844)

CCC Help Japanese (Version: 2012.1025.0345.4844)

CCC Help Korean (Version: 2012.1025.0345.4844)

CCC Help Norwegian (Version: 2012.1025.0345.4844)

CCC Help Portuguese (Version: 2012.1025.0345.4844)

CCC Help Russian (Version: 2012.1025.0345.4844)

CCC Help Spanish (Version: 2012.1025.0345.4844)

CCC Help Swedish (Version: 2012.1025.0345.4844)

ccc-utility64 (Version: 2012.1025.346.4844)

Centershift STORE (Sandbox) (Version: 4.1.30326.1336)

Centershift STORE (Version: 4.1.20731.1532)

Cisco Connect (Version: 1.4.11299.0)

Citrix Online Launcher (Version: 1.0.168)

Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)

Coupon Printer for Windows (Version: 5.0.0.7)

CutePDF Writer 3.0 (Version:  3.0)

CyberLink LabelPrint 2.5 (Version: 2.5.5415a)

CyberLink Media Suite 10 (Version: 10.0.1.1913)

CyberLink Media Suite Essentials (Version: 10.0)

CyberLink Power2Go 8 (Version: 8.0.0.1904)

CyberLink PowerDirector 10 (Version: 10.0.1.1904)

CyberLink PowerDVD 10 (Version: 10.0.4318.52)

D3DX10 (Version: 15.4.2368.0902)

Dell Backup and Recovery - Support Software (Version: 1.0.0.5)

Dell Backup and Recovery (Version: 1.0.0.5)

Dell Touchpad (Version: 16.2.12.17)

Firebird 2.5.0.26074 (Win32) (Version: 2.5.0.26074)

Free Games 111 (Version: 3.0.0.0)

Garmin Communicator Plugin (Version: 4.0.4)

Garmin Communicator Plugin x64 (Version: 4.0.4)

Garmin USB Drivers (Version: 2.3.1.0)

Google Chrome (Version: 35.0.1916.114)

Google Drive (Version: 1.15.6556.8063)

Google Earth (Version: 7.1.2.2041)

Google Talk Plugin (Version: 5.4.2.18903)

Google Update Helper (Version: 1.3.24.7)

GoToMeeting 6.3.0.1415 (Version: 6.3.0.1415)

Graboid Video (Version: 5.2.0.0)

Graboid Video 4.1 (Version: 4.1)

Hotspot Shield 3.09 (Version: 3.09)

iCloud (Version: 3.1.0.40)

iMesh (Version: 12.5.0.134600)

Intel® Control Center (Version: 1.2.1.1008)

Intel® Management Engine Components (Version: 8.1.0.1252)

Intel® PRO/Wireless Driver (Version: 16.01.5000.0577)

Intel® Processor Graphics (Version: 10.18.10.3316)

Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 16.1.1.0084)

Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 3.1.1309.0390)

Intel® Rapid Storage Technology (Version: 11.5.0.1207)

Intel® Turbo Boost Technology Monitor 2.6 (Version: 2.6.2.0)

Intel® WiDi (Version: 3.5.40.0)

Intel® PROSet/Wireless Software (Version: 16.1.5)

Intel® PROSet/Wireless WiFi Software (Version: 16.01.5000.0269)

Intel® Trusted Connect Service Client (Version: 1.24.388.1)

iSEEK AnswerWorks English Runtime (Version: 010.000.0101)

iTunes (Version: 11.2.0.115)

Java 7 Update 51 (64-bit) (Version: 7.0.510)

Java 7 Update 60 (Version: 7.0.600)

Java Auto Updater (Version: 2.1.60.19)

jZip (Version: 2.0.0.132900)

magicJack (Version: 2.0.6073.4413)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft Office (Version: 14.0.6120.5004)

Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)

Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)

Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)

Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)

Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)

Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Silverlight (Version: 5.1.30214.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

Microsoft SQL Server 2008 Setup Support Files  (Version: 10.1.2731.0)

Microsoft SQL Server 2012 Native Client  (Version: 11.0.2100.60)

Microsoft SQL Server 2012 Setup (English) (Version: 11.1.3128.0)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual Studio 2005 Tools for Office Runtime

Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50325)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50330)

Motorola Phone Tools (Version: 4.0.4b 12-01-2005)

Movie Maker (Version: 16.4.3505.0912)

MSI to redistribute MS VS2005 CRT libraries (Version: 8.0.50727.42)

MSVCRT (Version: 15.4.2862.0708)

MSVCRT110 (Version: 16.4.1108.0727)

MSVCRT110_amd64 (Version: 16.4.1109.0912)

MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)

My Dell (Version: 3.4.6422.14)

PC Tools Spyware Doctor with AntiVirus 9.1 (Version: 9.1)

Photo Gallery (Version: 16.4.3505.0912)

Pidgin (Version: 2.10.9)

PowerXpressHybrid (Version: 1.00.0000)

Pure Networks Platform (Version: 11.2.09195.1)

PX Profile Update (Version: 1.00.1.)

QuickBooks (Version: 24.0.4005.2403)

QuickBooks Pro 2014 (Version: 24.0.4001.2403)

QuickBooks Runtime Redistributable (Version: 1.00.0000)

Quicken 2013 (Version: 22.1.12.7)

Quicken 2014 (Version: 23.1.7.6)

Quickset64 (Version: 10.15.012)

QuickTime 7 (Version: 7.75.80.95)

QuikStor Express Installation version 4.1.2.77 (Version: 4.1.2.77)

Realtek High Definition Audio Driver (Version: 6.0.1.6741)

Realtek USB 2.0 Card Reader (Version: 6.1.8400.39030)

Shared C Run-time for x64 (Version: 10.0.0)

SiteLink (Version: 4.1.19)

Sony Mobile Update Engine (Version: 2.14.5.201403281437)

Sony PC Companion 2.10.206 (Version: 2.10.206)

Spotify (Version: 0.9.10.14.g578d350b)

swMSM (Version: 12.0.0.1)

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 Help (KB963665)

Visual Studio Tools for the Office system 3.0 Runtime

Visual Studio Tools for the Office system 3.0 Runtime (Version: 9.0.30729)

Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (Version: 1)

VLC media player 1.0.1 (Version: 1.0.1)

Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0)

Windows Live Communications Platform (Version: 16.4.3505.0912)

Windows Live Essentials (Version: 16.4.3505.0912)

Windows Live Installer (Version: 16.4.3505.0912)

Windows Live Photo Common (Version: 16.4.3505.0912)

Windows Live PIMT Platform (Version: 16.4.3505.0912)

Windows Live SOXE (Version: 16.4.3505.0912)

Windows Live SOXE Definitions (Version: 16.4.3505.0912)

Windows Live UX Platform (Version: 16.4.3505.0912)

Windows Live UX Platform Language Pack (Version: 16.4.3505.0912)

WinZip 18.0 (Version: 18.0.10661)

 

========================= Devices: ================================

 

 

========================= Memory info: ===================================

 

Percentage of memory in use: 57%

Total physical RAM: 8065.27 MB

Available physical RAM: 3458.18 MB

Total Pagefile: 11585.27 MB

Available Pagefile: 4798.71 MB

Total Virtual: 4095.88 MB

Available Virtual: 3973.84 MB

 

========================= Partitions: =====================================

 

1 Drive c: (OS) (Fixed) (Total:921.13 GB) (Free:338.75 GB) NTFS

3 Drive e: () (Removable) (Total:30.22 GB) (Free:13.59 GB) FAT32

 

========================= Users: ========================================

 

User accounts for \\DELL2013

 

Administrator            fbwuser                  Guest                   

jerry                   

 

 

**** End of log ****

Malwarebytes Anti-Malware

www.malwarebytes.org

 

 

Update, 6/9/2014 7:48:05 PM, SYSTEM, DELL2013, Manual, Rootkit Database, 2014.2.20.1, 2014.6.2.1,

Protection, 6/9/2014 7:48:34 PM, SYSTEM, DELL2013, Protection, Malware Protection, Starting,

Protection, 6/9/2014 7:48:34 PM, SYSTEM, DELL2013, Protection, Malware Protection, Started,

Protection, 6/9/2014 7:48:34 PM, SYSTEM, DELL2013, Protection, Malicious Website Protection, Starting,

Protection, 6/9/2014 7:48:35 PM, SYSTEM, DELL2013, Protection, Malicious Website Protection, Started,

Update, 6/9/2014 7:48:49 PM, SYSTEM, DELL2013, Manual, Rootkit Database, 2014.2.20.1, 2014.6.2.1,

Update, 6/9/2014 7:49:28 PM, SYSTEM, DELL2013, Manual, Malware Database, 2014.3.4.9, 2014.6.9.11,

Protection, 6/9/2014 7:49:30 PM, SYSTEM, DELL2013, Protection, Refresh, Starting,

Protection, 6/9/2014 7:49:30 PM, SYSTEM, DELL2013, Protection, Malicious Website Protection, Stopping,

Protection, 6/9/2014 7:49:31 PM, SYSTEM, DELL2013, Protection, Malicious Website Protection, Stopped,

Protection, 6/9/2014 7:49:34 PM, SYSTEM, DELL2013, Protection, Refresh, Success,

Protection, 6/9/2014 7:49:34 PM, SYSTEM, DELL2013, Protection, Malicious Website Protection, Starting,

Protection, 6/9/2014 7:49:34 PM, SYSTEM, DELL2013, Protection, Malicious Website Protection, Started,

 

(end)

MBAR….  No malware found.

 

Rkill 2.6.6 by Lawrence Abrams (Grinler)

http://www.bleepingcomputer.com/

Copyright 2008-2014 BleepingComputer.com

More Information about Rkill can be found at this link:

 http://www.bleepingcomputer.com/forums/topic308364.html

 

Program started at: 06/09/2014 09:02:36 PM in x64 mode.

Windows Version: Windows 8.1

 

Checking for Windows services to stop:

 

 * No malware services found to stop.

 

Checking for processes to terminate:

 

 * C:\Users\jerry\AppData\Roaming\Graboid Inc\Graboid Video\5.2.0.0\Graboid.exe (PID: 7052) [UP-HEUR]

 * C:\Users\jerry\Downloads\SecurityCheck.exe (PID: 13032) [UP-HEUR]

 

2 proccesses terminated!

 

Checking Registry for malware related settings:

 

 * No issues found in the Registry.

 

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

 

Performing miscellaneous checks:

 

 * Windows Defender Disabled

 

   [HKLM\SOFTWARE\Microsoft\Windows Defender]

   "DisableAntiSpyware" = dword:00000001

 

Checking Windows Service Integrity:

 

 * MsKeyboardFilter [Missing Service]

 * CSC [Missing Service]

 * E1G60 [Missing Service]

 * HdAudAddService [Missing Service]

 * kbldfltr [Missing Service]

 * storvsp [Missing Service]

 * Vid [Missing Service]

 * vmbusr [Missing Service]

 * vpcivsp [Missing Service]

 

Searching for Missing Digital Signatures:

 

 * No issues found.

 

Checking HOSTS File:

 

 * No issues found.

 

Program finished at: 06/09/2014 09:04:26 PM

Execution time: 0 hours(s), 1 minute(s), and 50 seconds(s)


Edited by hamluis, 10 June 2014 - 11:15 AM.
PM sent new OP - Hamluis.


BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:58 PM

Posted 10 June 2014 - 11:44 AM

Welcome aboard p22002758.gif

 

In case of MBAM you posted protection log instead of scan log.

Please redo.

 

Also, give me more details about your issues.


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#3 islandjerr

islandjerr
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 10 June 2014 - 02:14 PM

The disk, with little running in programs, frequently registers 100% usage causing movies to stop playing from disk.  Also,  It just makes the whole computer slow.. The keyboard hesitates frequently.   I ran diskbench and transferred a large file and the speed was 6.871 MB/s..  As a non-tech, this is neither good or bad to me..  I am concerned that my drive is failing as I never had this problem until about 3 weeks ago.. 

 

In the case of MBAM, it quarantined the results...   Not sure exactly how I accomplished that..  

 

Appreciate your help.. 



#4 islandjerr

islandjerr
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 10 June 2014 - 02:34 PM

Using the task manager, the disk shows 100% with a cumulative 2 MB/s frequently.. However, with a large usage application it will show 100% with 15 cumulative MB/s..  I have no idea why this is, but is it symptomatic of the problem?



#5 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:58 PM

Posted 10 June 2014 - 05:49 PM

I'd like to see that MBAM log.

 

If you're concerned about your hard drive...

 

Run hard drive diagnostics: http://www.bleepingcomputer.com/forums/topic28744.html/page__view__findpost__p__160520
Make sure, you select tool, which is appropriate for the brand of your hard drive.
Depending on the program, it'll create bootable floppy, or bootable CD.
If downloaded file is of .iso type, use ImgBurn: http://www.imgburn.com/ to burn .iso file to a CD (select "Write image file to disc" option), and make the CD bootable.
For Toshiba hard drives, see here: http://storage.toshiba.com/storage-services-support/warranty-support/software-utilities#diagnostic

Note : If you do not know how to set your computer to boot from CD follow the steps here


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users