Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

SAPE.Downware.185 has been detected


  • Please log in to reply
22 replies to this topic

#1 GaryS1953

GaryS1953

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 01 November 2014 - 12:37 PM

Hi,

 

My AV is Norton Internet Security and on reboot Norton is finding "SAPE.Downware.185 has been detected".  I've done Google searches and have not been able to find anything on this exact variant of SAPE.  When I tried to have Norton Quarantine and delete the 4 instances that showed up, Norton froze.  I've tried Malwarebytes and Superantispyware, but neither finds or removes this.  Does anyone know what this is and how to get rid of it?  Thanks!!

 

Windows  7 Pro

Internet Explorer 10 (can't use 11 for compatibility reasons)

 

Thanks!


Edited by hamluis, 01 November 2014 - 01:15 PM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


m

#2 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 5,588 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 01 November 2014 - 04:23 PM

G'day Gary, please run these for me.

 

Download Security Check by Screen317 from HERE
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If a security program requests permission to access the Internet, allow it to do so.

 

 

Download MiniToolBox, save it to your desktop and run it.
    Checkmark the following checkboxes:
    Flush DNS
    Report IE Proxy Settings
    Reset IE Proxy Settings
    Report FF Proxy Settings
    Reset FF Proxy Settings
    List content of Hosts
    List IP configuration
    List Winsock Entries
    List last 10 Event Viewer log
    List Installed Programs
    List Users, Partitions and Memory size.
    Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

 

 

Download Malwarebytes Anti-Rootkit to your desktop.

    Extract the ZIP archive and double-click "mbar.exe" to start the tool.
    Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
    Click in the introduction screen "next" to continue.
    Click in the following screen "Update" to obtain the latest malware definitions.
    Once the update is complete select "Next" and click "Scan".
    When the scan is finished and no malware has been found select "Exit".
    If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
    Open the MBAR folder and paste the content of the following files in your next reply:
    "mbar-log-{date} (xx-xx-xx).txt"
    "system-log.txt"


Condobloke

Outback Australian  

 

fed up with Windows antics...??

 

LINUX IS THE ANSWER

 

I USE LINUX MINT 18.3  EXCLUSIVELY.

 Failure is not an option. It comes bundled with your Microsoft product.

 

Success is not Final, Failure is not Fatal,

 

It is the Courage to Continue that Counts.

W.C. 4th June 1940

 

 

 


#3 GaryS1953

GaryS1953
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 03 November 2014 - 12:21 PM

Hi- Thanks for your help. Below is the contents of the Screen 317 Security Check. Unfortunately I was not able to download the Minitoolbox. My Sonicwall gateway antivirus blocking me from downloading it. I've not been able to figure out how to allow it. Is there any other way I can get this program?

Results of screen317's Security Check version 0.99.89
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 10 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Norton Internet Security Online
Trend Micro Client/Server Security Agent Antivirus
Antivirus out of date!
`````````Anti-malware/Other Utilities Check:`````````
Adobe Flash Player 15.0.0.152
Adobe Reader XI
Mozilla Firefox 31.0 Firefox out of Date!
Google Chrome 38.0.2125.104
Google Chrome 38.0.2125.111
````````Process Check: objlist.exe by Laurent````````
Norton ccSvcHst.exe
Trend Micro OfficeScan Client pccntmon.exe
Kaspersky Lab Kaspersky Security Scan 2.0 kss.exe
Trend Micro Client Server Security Agent ntrtscan.exe
Trend Micro Client Server Security Agent HostedAgent svcGenericHost.exe
Trend Micro Client Server Security Agent HostedAgent HostedAgent.exe
Trend Micro Client Server Security Agent tmlisten.exe
Trend Micro Client Server Security Agent TmProxy.exe
Trend Micro Client Server Security Agent TmPfw.exe
Trend Micro Client Server Security Agent CNTAoSMgr.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````


Also, I have not yet run MB antirootkit, but I had already run it and will run it again. Just thought maybe I should the minitoolbox first.

Thanks!

#4 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 5,588 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 03 November 2014 - 03:06 PM

I note that you have more than one Anti Virus.

 

Disable them, and then try MiniToolBox


Condobloke

Outback Australian  

 

fed up with Windows antics...??

 

LINUX IS THE ANSWER

 

I USE LINUX MINT 18.3  EXCLUSIVELY.

 Failure is not an option. It comes bundled with your Microsoft product.

 

Success is not Final, Failure is not Fatal,

 

It is the Courage to Continue that Counts.

W.C. 4th June 1940

 

 

 


#5 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 5,588 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 03 November 2014 - 03:20 PM

I will be away for an hour......read the following please.

 

 

Credit quietman7

 

IMPORTANT NOTE: Using more than one anti-virus program is not advisable. Why? The primary concern with doing so is due to Windows resource management and significant conflicts that can arise especially when they are running in real-time protection mode simultaneously. Even if one of them is disabled for use as a stand-alone on demand scanner, it can affect the other and cause conflicts. Anti-virus software components insert themselves deep into the operating systems core where they install kernel mode drivers that load at boot-up regardless of whether real-time protection is enabled or not. Thus, using multiple anti-virus solutions can result in kernel mode conflicts causing system instability, catastrophic crashes, slow performance and waste vital system resources. When actively running in the background while connected to the Internet, each anti-virus may try to update their definition databases at the same time. As the programs compete for resources required to download the necessary files this often can result in sluggish system performance or unresponsive behavior.

When scanning engines are initiated, each anti-virus may interpret the activity of the other as suspicious behavior and there is a greater chance of them alerting you to a "false positive". If one finds a virus or a suspicious file and then the other also finds the same, both programs will be competing over exclusive rights on dealing with that threat. Each anti-virus may attempt to remove the offending file and quarantine it at the same time resulting in a resource management issue as to which program gets permission to act first. If one anit-virus finds and quarantines the file before the other one does, then you may encounter the problem of both wanting to scan each other's zipped or archived files and each reporting the other's quarantined contents. This can lead to a repetitive cycle of endless alerts that continually warn you that a threat has been found after it has already been neutralized.

Anti-virus scanners use virus definitions to check for malware and these can include a fragment of the virus code which may be recognized by other anti-virus programs as the virus itself. Because of this, many anti-virus vendors encrypt their definitions so that they do not trigger a false alarm when scanned by other security programs. Other vendors do not encrypt their definitions and they can trigger false alarms when detected by the resident anti-virus. Further, dual installation is not always possible because most of the newer anti-virus programs will detect the presence of another and may insist that it be removed prior to installation. If the installation does complete with another anti-virus already installed, you may encounter issues like system freezing, unresponsiveness or similar symptoms as described above while trying to use it. In some cases, one of the anti-virus programs may even get disabled by the other.

To avoid these problems, use only one anti-virus solution. Deciding which one to remove is your choice. Be aware that you may lose your subscription to that anti-virus program's virus definitions once you uninstall that software.

Microsoft and major Anti-virus vendors recommend that you install and run only one anti-virus program at a time

You don’t need to install more than one antivirus program. In fact, running more than one antivirus program at the same time can cause conflicts and errors that make your antivirus protection less effective or not effective at all.

Should I use more than one antivirus program?

* Symantec's statement
* AVG's statement
* Bitdefender's statement
* Microsoft Security Essentials statement <- click Details


Edited by quietman7, 18 July 2014 - 10:33 AM.

Microsoft MVP - Consumer Security 2007-2014 MVP.gif


Condobloke

Outback Australian  

 

fed up with Windows antics...??

 

LINUX IS THE ANSWER

 

I USE LINUX MINT 18.3  EXCLUSIVELY.

 Failure is not an option. It comes bundled with your Microsoft product.

 

Success is not Final, Failure is not Fatal,

 

It is the Courage to Continue that Counts.

W.C. 4th June 1940

 

 

 


#6 GaryS1953

GaryS1953
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 03 November 2014 - 04:43 PM

Hi- AFIK I only have one active AV, Norton.  Trend is not active.  I disabled Norton and found how to disable the gateway AV and managed to download and run Minitoolbox.  Here is the result:

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by GaryS (administrator) on 03-11-2014 at 15:43:47
Running from "C:\Users\GaryS\Desktop"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Intel® 82579LM Gigabit Network Connection = Local Area Connection (Connected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=10.13.238.254 publish=Yes
add address name="Local Area Connection" address=10.13.238.4 mask=255.255.255.0

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : GaryS-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® 82579LM Gigabit Network Connection
   Physical Address. . . . . . . . . : B8-CA-3A-92-84-42
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::e5dd:17b1:a873:52a5%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.13.238.4(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 10.13.238.254
   DHCPv6 IAID . . . . . . . . . . . : 246991418
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-5C-65-1E-B8-CA-3A-92-84-42
   DNS Servers . . . . . . . . . . . : 68.87.77.130
                                       4.2.2.2
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{58A93FAD-AFD4-48A4-96FE-CAFD184C4328}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:10ca:1af9:f5f2:11fb(Preferred)
   Link-local IPv6 Address . . . . . : fe80::10ca:1af9:f5f2:11fb%14(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  nrcns.westlandrdc.mi.michigan.comcast.net
Address:  68.87.77.130

Name:    google.com
Addresses:  2607:f8b0:4009:806::100e
   74.125.225.2
   74.125.225.8
   74.125.225.1
   74.125.225.6
   74.125.225.14
   74.125.225.9
   74.125.225.5
   74.125.225.3
   74.125.225.0
   74.125.225.4
   74.125.225.7

Pinging google.com [74.125.225.4] with 32 bytes of data:
Reply from 74.125.225.4: bytes=32 time=20ms TTL=56
Reply from 74.125.225.4: bytes=32 time=76ms TTL=56

Ping statistics for 74.125.225.4:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 20ms, Maximum = 76ms, Average = 48ms
Server:  nrcns.westlandrdc.mi.michigan.comcast.net
Address:  68.87.77.130

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=72ms TTL=51
Reply from 206.190.36.45: bytes=32 time=73ms TTL=51

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 72ms, Maximum = 73ms, Average = 72ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...b8 ca 3a 92 84 42 ......Intel® 82579LM Gigabit Network Connection
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    10.13.238.254      10.13.238.4    276
      10.13.238.0    255.255.255.0         On-link       10.13.238.4    276
      10.13.238.4  255.255.255.255         On-link       10.13.238.4    276
    10.13.238.255  255.255.255.255         On-link       10.13.238.4    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       10.13.238.4    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       10.13.238.4    276
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0    10.13.238.254  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 14     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 14     58 2001::/32                On-link
 14    306 2001:0:9d38:90d7:10ca:1af9:f5f2:11fb/128
                                    On-link
 11    276 fe80::/64                On-link
 14    306 fe80::/64                On-link
 14    306 fe80::10ca:1af9:f5f2:11fb/128
                                    On-link
 11    276 fe80::e5dd:17b1:a873:52a5/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    306 ff00::/8                 On-link
 11    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/03/2014 03:03:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 03:00:42 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x80070013, The media is write protected.
.

Error: (11/03/2014 03:00:42 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected.
]

Error: (11/03/2014 03:00:41 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x80070013, The media is write protected.
.

Error: (11/03/2014 03:00:41 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected.
]

Error: (11/01/2014 11:16:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1".Error in manifest or policy file "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2" on line UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (11/01/2014 00:58:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/01/2014 00:54:49 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x80070013, The media is write protected.
.

Error: (11/01/2014 00:54:49 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected.
]

Error: (11/01/2014 11:51:43 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (11/03/2014 03:41:35 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (11/03/2014 03:29:23 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (11/03/2014 03:22:35 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (11/03/2014 03:12:07 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (11/03/2014 03:01:59 PM) (Source: Service Control Manager) (User: )
Description: The WvPCR service depends on the TPM Base Services service which failed to start because of the following error:
%%0

Error: (11/03/2014 03:01:59 PM) (Source: Service Control Manager) (User: )
Description: The SI TSS v1.2.1.41 TCS service depends on the TPM Base Services service which failed to start because of the following error:
%%0

Error: (11/03/2014 02:15:15 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (11/03/2014 01:08:56 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Error: (11/03/2014 08:36:24 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer ELAINE-COMPUTER
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{58A93FAD-AFD4-48A4-96FE-CAFD184C4328}.
The master browser is stopping or an election is being forced.

Error: (11/03/2014 07:14:13 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume OS.

Microsoft Office Sessions:
=========================
Error: (11/03/2014 03:03:34 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 03:00:42 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070013, The media is write protected.

Error: (11/03/2014 03:00:42 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070013, The media is write protected.

Error: (11/03/2014 03:00:41 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070013, The media is write protected.

Error: (11/03/2014 03:00:41 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070013, The media is write protected.

Error: (11/01/2014 11:16:29 PM) (Source: SideBySide)(User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"c:\program files\microsoft office 15\root\office15\lync.exe.Manifestc:\program files\microsoft office 15\root\office15\UccApi.DLL1

Error: (11/01/2014 00:58:50 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/01/2014 00:54:49 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070013, The media is write protected.

Error: (11/01/2014 00:54:49 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070013, The media is write protected.

Error: (11/01/2014 11:51:43 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

CodeIntegrity Errors:
===================================
  Date: 2014-10-15 12:07:34.967
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-10-15 12:07:34.947
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-06-27 09:10:43.310
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-06-27 09:10:43.242
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-06-27 09:10:43.129
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-06-27 09:10:43.074
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

=========================== Installed Programs ============================
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
AMD Accelerated Video Transcoding (Version: 12.10.100.30115 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1124.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{257CF3C8-DB9E-6C1A-FE68-B0840E53D098}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
BackUp Maker v6.4 (HKLM-x32\...\BackUp Maker_is1) (Version:  - ASCOMP Software GmbH)
Carbonite (HKLM-x32\...\Carbonite Backup) (Version: 5.5.5 build 4151  (Jun-27-2014) - Carbonite)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2013.0115.1551.28388 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0115.1551.28388 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0115.1551.28388 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0115.1551.28388 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Desktop (x32 Version: 2013.0115.1551.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0115.1550.28388 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0115.1551.28388 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
Chrome GM AutoBook (HKLM-x32\...\GM AutoBook) (Version:  - )
Cisco WebEx Meetings (HKLM-x32\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Citrix Online Launcher (HKLM-x32\...\{F17C3DC2-2ACA-4B0E-BDBF-ACE61B14E7CD}) (Version: 1.0.183 - Citrix)
Cubby (HKCU\...\Cubby) (Version: 1.0.0.12648 - LogMeIn, Inc.)
Custom (Version: 01.00.00.002 - Wave Systems Corp.) Hidden
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version:  3.0 - CutePDF.com)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Client System Update (HKLM-x32\...\{04566294-A6B6-4462-9721-031073EB3694}) (Version: 1.3.0 - Dell Inc.)
Dell Data Protection | Access (HKLM\...\{ABBA2EA4-740E-4052-902B-9CA70B081E3F}) (Version: 2.3.00003.072 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
DellAccess (Version: 01.03.00.078 - Wave Systems Corp.) Hidden
EMBASSY Client Core (Version: 01.03.00.123 - Wave Systems Corp.) Hidden
ERA Software Manager (HKLM-x32\...\SMGINSTL) (Version:  - )
ERAS Connector (Version: 02.09.05.0335 - Wave Systems Corp) Hidden
FBackup 5 (x32 Version: 5.0.230 - Softland) Hidden
FBackup 5.0 (HKLM-x32\...\{cf064ef5-8c15-42a8-aabf-1f4821c38bbb}) (Version: 5.0.230.0 - Softland)
Gemalto (Version: 01.64.01.0010 - Wave Systems Corp) Hidden
GemPcCCID (Version: 2.0.1 - Gemalto) Hidden
GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GoToMeeting 6.4.5.1865 (HKCU\...\GoToMeeting) (Version: 6.4.5.1865 - CitrixOnline)
HL-2270DW (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.0.7.0 - Brother Industries, Ltd.)
iBackupBot 5.1.0.3 (HKLM-x32\...\iBackupBot) (Version: 5.1.0.3 - VOWSoft, Ltd.)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® Network Connections 17.2.154.0 (HKLM\...\PROSetDX) (Version: 17.2.154.0 - Intel)
Intel® Network Connections 17.2.154.0 (Version: 17.2.154.0 - Intel) Hidden
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.2.0.1006 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden
join.me (HKCU\...\JoinMe) (Version: 1.14.0.132 - LogMeIn, Inc.)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Kaspersky Security Scan (HKLM-x32\...\InstallWIX_{D1282694-0693-41A8-ABC1-6D1FFC1F65C4}) (Version: 12.0.1.881 - Kaspersky Lab)
Kaspersky Security Scan (x32 Version: 12.0.1.881 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4659.1001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NCCICredit (HKLM-x32\...\NCCICredit) (Version:  - )
Norton Internet Security (HKLM-x32\...\NIS) (Version: 20.5.0.28 - Symantec Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
PBA Driver-x64 (Version: 1.0.1.8 - Dell Inc.) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Pos Pro (HKLM-x32\...\Photo Pos Pro) (Version: 1.87 - PowerOfSoftware Ltd.)
Photopos Toolbar (Remove Toolbar Only) (HKLM-x32\...\PhotoposComTbr) (Version:  - Power Of Software)
Preboot Manager (Version: 03.05.00.043 - Wave Systems Corp.) Hidden
Private Information Manager (Version: 07.03.00.032 - Wave Systems Corp.) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5985 - Realtek Semiconductor Corp.)
SI TSS (Version: 2.1.41 - Security Innovation) Hidden
SPBA (WBF) 5.9 (Version: 5.9.7.7232 - Authentec Inc.) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.6.1042 - SUPERAntiSpyware.com)
toolkit32for64bit (x32 Version: 7.70.13.0001 - Wave Systems Corp) Hidden
Trend Micro Client/Server Security Agent (HKLM-x32\...\{BED0B8A2-2986-49F8-90D6-FA008D37A3D2}) (Version: 3.5.1163 - Trend Micro)
Trusted Drive Manager (Version: 5.0.2.24 - Wave Systems Corp.) Hidden
Wave Crypto Runtime 2.0.9.0 x64 (Version: 02.00.09.0000 - Wave Systems Corp) Hidden
Wave Crypto Runtime 2.0.9.0 x86 (x32 Version: 02.00.09.0000 - Wave Systems Corp) Hidden
Wave Infrastructure Installer (Version: 07.70.13.0001 - Wave Systems Corp) Hidden
Wave Support Software Installer (Version: 05.15.00.024 - Wave Systems Corp) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
XXClone  ver 2.04.0 (HKLM\...\XXClone) (Version: 2.04.0 - Pixelab)

========================= Memory info: ===================================

Percentage of memory in use: 51%
Total physical RAM: 4050.44 MB
Available physical RAM: 1949.68 MB
Total Pagefile: 8099.06 MB
Available Pagefile: 5268.41 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.46 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:464.98 GB) (Free:387.63 GB) NTFS
3 Drive e: (My Passport) (Fixed) (Total:931.48 GB) (Free:569.82 GB) NTFS

========================= Users: ========================================

User accounts for \\GARYS-PC

Administrator            GaryS                    Guest                   

**** End of log ****



#7 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 5,588 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 03 November 2014 - 05:15 PM

Quote.... I disabled Norton and found how to disable the gateway AV ".....the gateway AV is part of Norton...???

 

I would uninstall Trend.  Instructions HERE   

 

Malwarebytes Anti rootkit results...?

 

 

Then ....

 

Please download AdwCleaner by Xplode and save to your Desktop.
 * Double-click on AdwCleaner.exe to run the tool.
 * Vista / Windows 7 / 8 users right-click and select Run As Administrator.
 * Click on the Scan button (only once)
 * AdwCleaner will begin...be patient as the scan may take some time to complete.
 * After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
* Check the removals and see if you are OK with the list.

* Now
 * Click on the Clean button (only once)
 * Press OK when asked to close all programs and follow the onscreen prompts.
 * Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
 * After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
 * Copy and Paste the contents of that logfile in your next reply.

* A copy of all logfiles are also saved in the C:\AdwCleaner folder which was created when running the tool.

 

 

Please download Junkware Removal Toolby Thisisu

Open your browser and go to Downloads, then click on the Junkware Removal Tool to install it.

Click on Run to initiate the installation.

To avoid potential conflicts, Temporarily Disable your Antivirus

You may want to be offline when you do this.

Run the tool by double-clicking it.

If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select Run as Administrator.

The tool will open and start scanning your system.

Please be patient as this can take a while to complete depending on your system's specifications.

On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Copy and Paste this in your next post..


Condobloke

Outback Australian  

 

fed up with Windows antics...??

 

LINUX IS THE ANSWER

 

I USE LINUX MINT 18.3  EXCLUSIVELY.

 Failure is not an option. It comes bundled with your Microsoft product.

 

Success is not Final, Failure is not Fatal,

 

It is the Courage to Continue that Counts.

W.C. 4th June 1940

 

 

 


#8 GaryS1953

GaryS1953
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 03 November 2014 - 06:30 PM

Gateway antivirus is part of Sonicwall.  I uninstalled Trend.  Malwarebytes Anti rootkit results...? (No Malware found, no report generated)

 

# AdwCleaner v3.311 - Report created 03/11/2014 at 18:11:15
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : GaryS - GARYS-PC
# Running from : C:\Users\GaryS\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Users\GaryS\AppData\Local\Google\Chrome\User Data\Default\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\Softonic

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.17116

-\\ Mozilla Firefox v31.0 (x86 en-US)

[ File : C:\Users\GaryS\AppData\Roaming\Mozilla\Firefox\Profiles\i9guf4ve.default\prefs.js ]

-\\ Google Chrome v38.0.2125.111

[ File : C:\Users\GaryS\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3324790&octid=EB_ORIGINAL_CTID&ISID=M918F5A9F-701F-4AC2-80ED-DECAFB388C77&SearchSource=58&CUI=&UM=5&UP=SP5AC6CF43-6F39-4FD7-9E5A-ACA75ED470AD&q={searchTerms}&SSPV=
Deleted [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3324790&octid=EB_ORIGINAL_CTID&ISID=M918F5A9F-701F-4AC2-80ED-DECAFB388C77&SearchSource=58&CUI=&UM=5&UP=SP5AC6CF43-6F39-4FD7-9E5A-ACA75ED470AD&q={searchTerms}&SSPV=

*************************

AdwCleaner[R0].txt - [1907 octets] - [03/11/2014 18:08:20]
AdwCleaner[S0].txt - [1765 octets] - [03/11/2014 18:11:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1825 octets] ##########

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.5 (10.31.2014:1)
OS: Windows 7 Professional x64
Ran by GaryS on Mon 11/03/2014 at 18:21:09.33
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 11/03/2014 at 18:23:32.83
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

There is one more thing I forgot to mention in my original post which has me concerned.  I've been unable to log into Windows 7 Safe Mode.  That is the pc goes throught the motions, showing the black large test DOS bootup screens, then ultimately the regular Windows logo appears and Windows launches in standard mode.



#9 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 5,588 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 03 November 2014 - 06:51 PM

Quote..." Gateway antivirus is part of Sonicwall " ......do you mean Dell Data Protection ?....or is it one of THESE  ....?

 

I am only trying to establish if you have a 2nd AV competing with Norton, or if there is an additional Firewall present...

 

If there is an additional firewall there it is not showing in Security Check, and windows firewall is showing as Enabled.....

 

Therefore...confusion reigns !


Condobloke

Outback Australian  

 

fed up with Windows antics...??

 

LINUX IS THE ANSWER

 

I USE LINUX MINT 18.3  EXCLUSIVELY.

 Failure is not an option. It comes bundled with your Microsoft product.

 

Success is not Final, Failure is not Fatal,

 

It is the Courage to Continue that Counts.

W.C. 4th June 1940

 

 

 


#10 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 5,588 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 03 November 2014 - 06:57 PM

I note that you have CCleaner installed...

 

Open it and select Tools......then Uninstall.....then in the bottom right hand corner of the page it will have a "Save to Text File" box.......click on that and save it to your desktop.

 

Copy and Paste the log to your next reply.


Condobloke

Outback Australian  

 

fed up with Windows antics...??

 

LINUX IS THE ANSWER

 

I USE LINUX MINT 18.3  EXCLUSIVELY.

 Failure is not an option. It comes bundled with your Microsoft product.

 

Success is not Final, Failure is not Fatal,

 

It is the Courage to Continue that Counts.

W.C. 4th June 1940

 

 

 


#11 GaryS1953

GaryS1953
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 03 November 2014 - 07:14 PM

Yes, Dell Sonicwall Gateway antivirus. Not installed on the machine but rather in the appliance. This is the unit:Comprehensive security.

The Dell SonicWALL TZ Series advances UTM protection by combining intrusion prevention, gateway anti-virus, anti-spyware, content/url filtering, enforced client anti-virus, and anti-spam services. Additionally, the Dell SonicWALL application intelligence and control feature in the TZ 215 ensures that bandwidth is available for business-critical applications while throttling or blocking unproductive applications. The TZ 215 also offers advanced application traffic analytics and reporting for deep insight into bandwidth utilization and security threats.

#12 GaryS1953

GaryS1953
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 03 November 2014 - 07:17 PM

Here is the CCleaner log

Adobe Flash Player 15 ActiveX Adobe Systems Incorporated 9/24/2014 6.00 MB 15.0.0.167
Adobe Flash Player 15 Plugin Adobe Systems Incorporated 9/12/2014 6.00 MB 15.0.0.152
Adobe Reader XI (11.0.09) Adobe Systems Incorporated 9/18/2014 183 MB 11.0.09
Akamai NetSession Interface Akamai Technologies, Inc 9/25/2013
AMD Catalyst Install Manager Advanced Micro Devices, Inc. 11/15/2013 26.3 MB 8.0.911.0
Apple Software Update Apple Inc. 10/1/2013 2.38 MB 2.1.3.127
BackUp Maker v6.4 ASCOMP Software GmbH 11/6/2013 14.1 MB
Carbonite Carbonite 8/29/2014 5.5.5 build 4151 (Jun-27-2014)
CCleaner Piriform 4/24/2014 4.13
Chrome GM AutoBook 10/1/2013
Cisco WebEx Meetings Cisco WebEx LLC 3/27/2014
Citrix Online Launcher Citrix 6/11/2014 286 KB 1.0.183
Cubby LogMeIn, Inc. 9/29/2014 6.00 MB 1.0.0.12648
CutePDF Writer 3.0 CutePDF.com 10/18/2013 3.0
Dell Client System Update Dell Inc. 6/26/2013 33.7 MB 1.3.0
Dell Data Protection | Access Dell Inc. 6/26/2013 2.3.00003.072
Dell Digital Delivery Dell Products, LP 6/25/2014 2.57 MB 2.9.901.0
ERA Software Manager 9/26/2013
FBackup 5.0 Softland 11/6/2013 121 MB 5.0.230.0
Gemalto 6/26/2013
GIMP 2.8.6 The GIMP Team 11/11/2013 265 MB 2.8.6
Google Chrome Google Inc. 9/27/2013 38.0.2125.111
GoToMeeting 6.4.5.1865 CitrixOnline 10/25/2014 6.4.5.1865
HL-2270DW Brother Industries, Ltd. 8/8/2014 1.0.7.0
iBackupBot 5.1.0.3 VOWSoft, Ltd. 6/7/2014 5.1.0.3
Intel® Control Center Intel Corporation 10/15/2013 1.2.1.1011
Intel® Management Engine Components Intel Corporation 4/15/2014 9.5.15.1730
Intel® Network Connections 17.2.154.0 Intel 6/26/2013 15.3 MB 17.2.154.0
Intel® Rapid Storage Technology Intel Corporation 6/26/2013 11.2.0.1006
Intel® USB 3.0 eXtensible Host Controller Driver Intel Corporation 11/15/2013 1.0.8.251
join.me LogMeIn, Inc. 3/12/2014 1.14.0.132
Kaspersky Security Scan Kaspersky Lab 10/15/2014 12.0.1.881
Malwarebytes Anti-Malware version 2.0.3.1025 Malwarebytes Corporation 10/17/2014 56.6 MB 2.0.3.1025
Microsoft .NET Framework 4.5.1 Microsoft Corporation 2/25/2014 38.8 MB 4.5.50938
Microsoft Office Professional Plus 2013 - en-us Microsoft Corporation 10/30/2014 15.0.4659.1001
Microsoft Silverlight Microsoft Corporation 7/24/2014 100 MB 5.1.30514.0
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 6/26/2013 1.69 MB 3.1.0000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 6/26/2013 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 11/6/2013 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 6/26/2013 596 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 11/6/2013 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 4/15/2014 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 4/15/2014 11.1 MB 10.0.40219
Mozilla Firefox 31.0 (x86 en-US) Mozilla 10/25/2014 70.2 MB 31.0
Mozilla Maintenance Service Mozilla 6/27/2014 341 KB 30.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 9/26/2013 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 9/26/2013 1.33 MB 4.20.9876.0
NCCICredit 6/11/2014
Norton Internet Security Symantec Corporation 11/12/2013 20.5.0.28
Photo Pos Pro PowerOfSoftware Ltd. 11/11/2013 1.87
Photopos Toolbar (Remove Toolbar Only) Power Of Software 11/11/2013
QuickTime 7 Apple Inc. 3/14/2014 70.2 MB 7.75.80.95
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 11/15/2013 6.0.1.5985
SUPERAntiSpyware SUPERAntiSpyware.com 11/1/2014 65.5 MB 5.6.1042
Windows Live Essentials Microsoft Corporation 6/26/2013 16.4.3505.0912
XXClone ver 2.04.0 Pixelab 11/5/2013 2.04.0

#13 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 5,588 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 03 November 2014 - 07:37 PM

The log from mbam anti rootkit .... look in the Malwarebytes Anti-Rootkit folder for the mbar-logs and the system-log. They are both TXT files and store details about each scan as well as each time the program was used.

 

 

 

Run Rkill for me....followed immediately by Mbam.....you have mbam already installed.....be sure to update it (malwarebytes)

 

Please download and run RKill by Grinler.
 A black DOS box will appear for a short time and then disappear.
 This is normal and indicates the tool ran successfully.
 At most the tool will usually run for about 2 minutes
 Please Copy / Paste the small log back here.

 
    RKill.exe:    http://www.bleepingcomputer.com/download/rkill/dl/10/

       iExplore.exe (renamed rKill.exe):     http://www.bleepingcomputer.com/download/rkill/dl/11/

Rkill.com   RKill Download Link Download Now Rkill.com


Important: Do not reboot your computer until you complete the next step.

 

 

 

Run MBAM here...update first.

 

Post both logs in your next reply.


Condobloke

Outback Australian  

 

fed up with Windows antics...??

 

LINUX IS THE ANSWER

 

I USE LINUX MINT 18.3  EXCLUSIVELY.

 Failure is not an option. It comes bundled with your Microsoft product.

 

Success is not Final, Failure is not Fatal,

 

It is the Courage to Continue that Counts.

W.C. 4th June 1940

 

 

 


#14 GaryS1953

GaryS1953
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 04 November 2014 - 10:00 AM

Good Morning:  Here are the log  results you asked for:

 

Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org

Database version: v2014.10.15.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.17116
GaryS :: GARYS-PC [administrator]

10/15/2014 4:44:34 PM
mbar-log-2014-10-15 (16-44-34).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 328700
Time elapsed: 14 minute(s), 40 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

 

Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org

Database version: v2014.11.03.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.17116
GaryS :: GARYS-PC [administrator]

11/3/2014 5:02:09 PM
mbar-log-2014-11-03 (17-02-09).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 333001
Time elapsed: 12 minute(s), 2 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

 

Rkill 2.6.8 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/04/2014 08:54:28 AM in x64 mode.
Windows Version: Windows 7 Professional Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 11/04/2014 08:55:23 AM
Execution time: 0 hours(s), 0 minute(s), and 55 seconds(s)

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 11/4/2014
Scan Time: 8:56:48 AM
Logfile: mb.txt
Administrator: Yes

Version: 2.00.3.1025
Malware Database: v2014.11.04.03
Rootkit Database: v2014.11.01.02
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: GaryS

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 330139
Time Elapsed: 13 min, 21 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)



#15 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 5,588 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 04 November 2014 - 02:21 PM

Be Aware....this scan is Not quick....it can easily absorb 3+ hours

 

 

Please download ESET Online Scan and save the file to your Desktop.
    Temporarily disable your anti-virus software. For instructions, please refer to the following link.
    Double-click esetsmartinstaller_enu.exe to run the program.
    Agree to the EULA by placing a checkmark next to Yes, I accept the Terms of Use. Then click Start
    Agree to the Terms of Use once more and click Start. Allow components to download.
    Place a checkmark next to Enable detection of potentially unwanted applications.
    Click Hide advanced settings. Place a checkmark next to:
        Scan archives
        Scan for potentially unsafe applications
        Enable Anti-Stealth technology

    Ensure Remove found threats is CHECKED
    Click Start.
    Wait for the scan to finish. Please be patient as this can take some time.
    Upon completion, click List of found threats.... If no threats were found, skip the next two bullet points.
    Click Export to text file... and save the file to your Desktop, naming it something unique such as MyEsetScan.
    Push the Back button.
    Place a checkmark next to Uninstall Application on Close and click Finish.
   Re-enable your anti-virus software.
    Copy the contents of the log and paste in your next reply.


Condobloke

Outback Australian  

 

fed up with Windows antics...??

 

LINUX IS THE ANSWER

 

I USE LINUX MINT 18.3  EXCLUSIVELY.

 Failure is not an option. It comes bundled with your Microsoft product.

 

Success is not Final, Failure is not Fatal,

 

It is the Courage to Continue that Counts.

W.C. 4th June 1940

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users