Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

downloads wont install


  • Please log in to reply
50 replies to this topic

#1 LOVEMYPC

LOVEMYPC

  • Members
  • 649 posts
  • OFFLINE
  •  
  • Local time:06:34 PM

Posted 15 April 2015 - 05:51 AM

HI,I have been trying to load SECUNIA PSI,but after i download program and try to bring it up all i get is that it is saying that it is loading but will not complete same

i also used the REVO UNISTALLER to remove previuos installation of PSI and re-installed PSI to see if it was coruppted it just goes to the popup says it is loading

what could be a possible cause,thank's


Edited by hamluis, 15 April 2015 - 06:48 AM.
Moved from Gen Security to AV/AM Software - Hamluis.


BC AdBot (Login to Remove)

 


m

#2 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,190 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Quebec, Canada
  • Local time:08:34 PM

Posted 15 April 2015 - 06:45 AM

Hi LOVEMYPC :)

Which version of SecuniaPSI are you using, the latest (v3.x)? Also, which version of Windows do you have? XP, Vista, 7, 8/8.1, 10?

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#3 Nikhil_CV

Nikhil_CV

    Vestibulum Bleep


  • Members
  • 1,145 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:err: Destination unreachable! bash!
  • Local time:07:04 AM

Posted 15 April 2015 - 07:18 AM

Is your internet speed adequate? I've seen it takes about 20min to provide final results on a slow network....

Else check your firewall, if Secunia PSI is allowed to use network resources... (you may disable your firewall temporarily and check)


Regards : CV                                                                                                    There is no ONE TOUCH key to security!
                                                                                                                                       Be alert and vigilant....!
                                                                                                                                  Always have a Backup Plan!!! Because human idiotism doesn't have a cure! Stop highlighting!
                                                     Questions are to be asked, it helps you, me and others.  Knowledge is power, only when its shared to others.            :radioactive: signature contents © cv and Someone....... :wink:

#4 LOVEMYPC

LOVEMYPC
  • Topic Starter

  • Members
  • 649 posts
  • OFFLINE
  •  
  • Local time:06:34 PM

Posted 15 April 2015 - 12:32 PM

HI,I checked my internet speed and it is 92.5 mbps on COMCAST 100mbps download speed,OS WIN 7 64BIT,PSI 3.0 is trying to download now been running for 10minutes,shut off WIN 7 firewall.



#5 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,190 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Quebec, Canada
  • Local time:08:34 PM

Posted 15 April 2015 - 12:34 PM

Alright, let's try to get more information on your system and setup.

3Al62Pm.pngMiniToolBox
  • Download MiniToolBox and move the executable file to your Desktop;
  • Execute MiniToolBox and check the following options:
    • Flush DNS;
    • Report IE Proxy Settings;
    • Reset IE Proxy Settings;
    • Report FF Proxy Settings;
    • Reset FF Proxy Settings;
    • List content of Hosts;
    • List IP Configuration;
    • List Last 10 Event Viewer Errors;
    • List Installed Programs;
    • List Devices - Only Problems;
    • List Users, Partitions and Memory size;
      B8oLpa3.png
  • Once this is done, click on Go and wait for the scan to complete;
  • Once the scan is complete, a log will open. Please copy/paste the content of the output log in your next reply;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#6 LOVEMYPC

LOVEMYPC
  • Topic Starter

  • Members
  • 649 posts
  • OFFLINE
  •  
  • Local time:06:34 PM

Posted 15 April 2015 - 01:40 PM

HI,AURA, I have tried to run mini-tool box,but all i get is notice that it was downloaded and i  can not get it to my desktop and i have used it before the icon for PSI in the lower tray IS GRAYED OUT and when i check status of download it is still downloading i even turned WIN 7 firewalll off.



#7 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,190 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Quebec, Canada
  • Local time:08:34 PM

Posted 15 April 2015 - 01:46 PM

Are you able to boot in Safe Mode with Networking and see if you can download and execute MiniToolBox from there? Follow the instructions in the link below in order to boot in that mode.

http://www.bleepingcomputer.com/tutorials/how-to-start-windows-in-safe-mode/#windows7

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#8 LOVEMYPC

LOVEMYPC
  • Topic Starter

  • Members
  • 649 posts
  • OFFLINE
  •  
  • Local time:06:34 PM

Posted 15 April 2015 - 08:19 PM

Ihad to go to a previuos download to get MINI-TOOL BOX to do scan.

MiniToolBox by Farbar  Version: 23-01-2014
Ran by borisbadenoff (administrator) on 15-04-2015 at 18:13:07
Running from "C:\"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is enabled.
ProxyServer: www.comcast.net:80

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : boriskarloff
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
   Physical Address. . . . . . . . . : 00-1A-A0-3E-AB-61
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::981f:c233:d6cc:eb03%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.0.0.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : April 15, 2015 4:42:11 PM
   Lease Expires . . . . . . . . . . : April 22, 2015 4:42:11 PM
   Default Gateway . . . . . . . . . : 10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 234887840
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-BA-88-FB-00-1A-A0-3E-AB-61
   DNS Servers . . . . . . . . . . . : 75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 10:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{579E51A4-8573-46F7-9EBF-70868CF09542}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    google.com
Addresses:  2607:f8b0:400a:807::200e
      216.58.216.174


Pinging google.com [216.58.216.174] with 32 bytes of data:
Reply from 216.58.216.174: bytes=32 time=14ms TTL=55
Reply from 216.58.216.174: bytes=32 time=15ms TTL=55

Ping statistics for 216.58.216.174:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 14ms, Maximum = 15ms, Average = 14ms
Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=93ms TTL=49
Reply from 98.139.183.24: bytes=32 time=90ms TTL=49

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 90ms, Maximum = 93ms, Average = 91ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...00 1a a0 3e ab 61 ......Broadcom 440x 10/100 Integrated Controller
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1         10.0.0.3     20
         10.0.0.0    255.255.255.0         On-link          10.0.0.3    276
         10.0.0.3  255.255.255.255         On-link          10.0.0.3    276
       10.0.0.255  255.255.255.255         On-link          10.0.0.3    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link          10.0.0.3    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link          10.0.0.3    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    276 fe80::/64                On-link
 10    276 fe80::981f:c233:d6cc:eb03/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/15/2015 06:07:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.

Error: (04/15/2015 06:06:54 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.

Error: (04/15/2015 04:43:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2015 04:36:31 PM) (Source: Application Error) (User: )
Description: Faulting application name: WDBackupEngine.exe, version: 2.0.0.15, time stamp: 0x547e4bc4
Faulting module name: ntdll.dll, version: 6.1.7601.18798, time stamp: 0x5507b3e0
Exception code: 0xc00000fd
Fault offset: 0x000333c5
Faulting process id: 0xc8c
Faulting application start time: 0xWDBackupEngine.exe0
Faulting application path: WDBackupEngine.exe1
Faulting module path: WDBackupEngine.exe2
Report Id: WDBackupEngine.exe3

Error: (04/15/2015 04:32:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2015 00:13:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2015 11:16:12 AM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7601.17514, time stamp: 0x4ce7a144
Faulting module name: ole32.dll, version: 6.1.7601.17514, time stamp: 0x4ce7c92c
Exception code: 0xc0000005
Fault offset: 0x0000000000029fa9
Faulting process id: 0xc08
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3

Error: (04/15/2015 05:43:32 AM) (Source: Application Error) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Exception code: 0xc0000005
Fault offset: 0x0004c19c
Faulting process id: 0x988
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3

Error: (04/15/2015 05:34:44 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2015 03:39:03 AM) (Source: Application Error) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0xec0
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3


System errors:
=============
Error: (04/15/2015 04:56:32 PM) (Source: DCOM) (User: )
Description: 1068WDBackup{59484148-65C9-4467-A092-3F8380023772}

Error: (04/15/2015 04:56:32 PM) (Source: DCOM) (User: )
Description: 1068WDBackup{81213AB4-5937-4340-88CD-66B4BC80DF73}

Error: (04/15/2015 04:53:19 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/15/2015 04:53:19 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/15/2015 04:53:19 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/15/2015 04:53:19 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/15/2015 04:53:19 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/15/2015 04:53:19 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/15/2015 04:51:29 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/15/2015 04:51:29 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (04/15/2015 06:07:07 PM) (Source: SideBySide)(User: )
Description: C:\EmsisoftAntiMalwareSetup.exeC:\EmsisoftAntiMalwareSetup.exe0

Error: (04/15/2015 06:06:54 PM) (Source: SideBySide)(User: )
Description: C:\EmsisoftAntiMalwareSetup.exeC:\EmsisoftAntiMalwareSetup.exe0

Error: (04/15/2015 04:43:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2015 04:36:31 PM) (Source: Application Error)(User: )
Description: WDBackupEngine.exe2.0.0.15547e4bc4ntdll.dll6.1.7601.187985507b3e0c00000fd000333c5c8c01d077d4689a9670C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exeC:\Windows\SysWOW64\ntdll.dll3e5a2140-e3c8-11e4-9ed5-001aa03eab61

Error: (04/15/2015 04:32:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2015 00:13:46 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2015 11:16:12 AM) (Source: Application Error)(User: )
Description: explorer.exe6.1.7601.175144ce7a144ole32.dll6.1.7601.175144ce7c92cc00000050000000000029fa9c0801d0779e11e346f0C:\Windows\explorer.exeC:\Windows\system32\ole32.dll7ebbb3c0-e39b-11e4-b9bc-001aa03eab61

Error: (04/15/2015 05:43:32 AM) (Source: Application Error)(User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82c00000050004c19c98801d077787a178130C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe05cc7f90-e36d-11e4-b9bc-001aa03eab61

Error: (04/15/2015 05:34:44 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2015 03:39:03 AM) (Source: Application Error)(User: )
Description: PSIA.exe3.0.0.1000454784a82unknown0.0.0.000000000c000000500000000ec001d0776790bcbf10C:\Program Files (x86)\Secunia\PSI\PSIA.exeunknowna1e3f5f0-e35b-11e4-826f-001aa03eab61


CodeIntegrity Errors:
===================================
  Date: 2014-04-30 13:21:00.692
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.0.6000.16386_none_6d564c64c358b59e\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:21:00.552
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.0.6000.16386_none_6d564c64c358b59e\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:21:00.411
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.0.6000.16386_none_6d564c64c358b59e\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:56.745
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:56.605
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:56.464
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:30.116
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-bcrypt-dll_31bf3856ad364e35_6.0.6000.16386_none_ec55d170f27a97bb\bcrypt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:29.976
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-bcrypt-dll_31bf3856ad364e35_6.0.6000.16386_none_ec55d170f27a97bb\bcrypt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:29.835
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-bcrypt-dll_31bf3856ad364e35_6.0.6000.16386_none_ec55d170f27a97bb\bcrypt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:19:35.875
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\Backup\x86_microsoft-windows-bcrypt-dll_31bf3856ad364e35_6.0.6000.16386_none_ec55d170f27a97bb_bcrypt.dll_e2f091ac because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

7-Zip 9.20
Acronis True Image 2015 (Version: 18.0.6055)
Adobe Flash Player 17 NPAPI (Version: 17.0.0.169)
Adobe Reader XI (11.0.10) (Version: 11.0.10)
Adobe Refresh Manager (Version: 1.8.0)
Apple Application Support (Version: 2.3.6)
Apple Software Update (Version: 2.1.3.127)
Audacity 2.0.5 (Version: 2.0.5)
Auslogics BoostSpeed 7 (Version: 7.4.0.0)
Auslogics DiskDefrag (Version: 4.5.4.0)
Auslogics Duplicate File Finder (Version: 4.1.0.0)
Avast Free Antivirus (Version: 10.2.2215)
Belarc Advisor 8.4 (Version: 8.4.0.0)
Canon Easy-WebPrint EX (Version: 1.5.0.0)
Canon IJ Scan Utility
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (Version: 4.0.0)
Canon MG2500 series MP Drivers (Version: 1.02)
Canon MG2500 series On-screen Manual (Version: 7.6.1)
Canon MG2500 series User Registration
Canon My Image Garden (Version: 3.0.1)
Canon My Image Garden Design Files (Version: 3.0.0)
Canon My Printer (Version: 3.2.1)
Canon Quick Menu (Version: 2.4.1)
ClipGrab 3.4.7
ClipMagic 4.1 (Version: 4.1)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Defraggler (Version: 2.17)
Dell Resource CD (Version: 1.00.0000)
Dell System Detect - 1  (Version: 5.14.0.9)
Digital Line Detect (Version: 1.20)
EaseUS Partition Master 10.0
EaseUS Todo Backup Free 7.0  (Version: 7.0)
EaseUS Todo PCTrans 8.0
Google Chrome (Version: 41.0.2272.118)
Google Earth (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.25.11)
Google Update Helper (Version: 1.3.26.9)
HitmanPro 3.7 (Version: 3.7.9.234)
HWiNFO64 Version 4.38 (Version: 4.38)
IDT Audio (Version: 5.10.0000.0)
ImgBurn (Version: 2.5.8.0)
IrfanView (remove only) (Version: 4.38)
Java 7 Update 79 (Version: 7.0.790)
Java SE Development Kit 7 Update 79 (Version: 1.7.0.790)
Kingsoft Office 2013 (9.1.0.4550) (Version: 9.1.0.4550)
Macrium Reflect Free Edition (Version: 5.3)
Macrium Reflect Free Edition (Version: 5.3.7220)
Malwarebytes Anti-Malware version 2.1.4.1018 (Version: 2.1.4.1018)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft ASP.NET MVC 4 Runtime (Version: 4.0.40804.0)
Microsoft Mouse and Keyboard Center (Version: 2.3.188.0)
Microsoft Silverlight (Version: 5.1.31211.0)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Modem Diagnostic Tool (Version: 1.0.17.2)
Mozilla Firefox 37.0.1 (x86 en-US) (Version: 37.0.1)
Mozilla Maintenance Service (Version: 37.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA 3D Vision Controller Driver 347.09 (Version: 347.09)
NVIDIA 3D Vision Driver 347.88 (Version: 347.88)
NVIDIA Control Panel 347.88 (Version: 347.88)
NVIDIA GeForce Experience 2.4.1.21 (Version: 2.4.1.21)
NVIDIA GeForce Experience Service (Version: 2.4.1.21)
NVIDIA Graphics Driver 347.88 (Version: 347.88)
NVIDIA HD Audio Driver 1.3.33.0 (Version: 1.3.33.0)
NVIDIA Install Application (Version: 2.1002.175.1449)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Network Service (Version: 2.3)
NVIDIA PhysX (Version: 9.14.0702)
NVIDIA PhysX System Software 9.14.0702 (Version: 9.14.0702)
NVIDIA ShadowPlay 2.4.1.21 (Version: 2.4.1.21)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6514)
NVIDIA Update 2.4.1.21 (Version: 2.4.1.21)
NVIDIA Update Core (Version: 2.4.1.21)
NVIDIA Virtual Audio 1.2.27 (Version: 1.2.27)
PerformanceTest v7.0 (64-bit) (Version: 7.0)
Platform (Version: 1.40)
PokerStars.net
QuickTime 7 (Version: 7.76.80.95)
Revo Uninstaller 1.95 (Version: 1.95)
Roadkil's Raw Copy Version 1.2
Roadkil's Unstoppable Copier Version 5.2
Secunia PSI (3.0.0.10004) (Version: 3.0.0.10004)
SHIELD Streaming (Version: 4.1.1000)
SHIELD Wireless Controller Driver (Version: 2.4.1.21)
SigmaTel Audio (Version: 5.10.5003.0)
Speccy (Version: 1.26)
SpywareBlaster 5.0 (Version: 5.0.0)
SUPERAntiSpyware (Version: 6.0.1170)
swMSM (Version: 12.0.0.1)
System Requirements Lab Detection (Version: 2.1.1.0)
VIA Platform Device Manager (Version: 1.40)
Visual BCD (Version: 0.9.3.1)
VLC media player (Version: 2.2.0)
WD Quick View (Version: 2.4.6.3)
WD SmartWare (Version: 2.4.6.3)
WD SmartWare Installer (Version: 2.4.6.3)
WPS Office (9.1.0.4932) (Version: 9.1.0.4932)

========================= Devices: ================================

Name: Acronis Snapshots Manager
Description: Acronis Snapshots Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: snapman
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: avast! Revert
Description: avast! Revert
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswRvrt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: avast! VM Monitor
Description: avast! VM Monitor
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswVmm
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


========================= Memory info: ===================================

Percentage of memory in use: 23%
Total physical RAM: 4094.49 MB
Available physical RAM: 3136.99 MB
Total Pagefile: 8187.18 MB
Available Pagefile: 7302.68 MB
Total Virtual: 4095.88 MB
Available Virtual: 3984.02 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:770.28 GB) (Free:407.23 GB) NTFS
3 Drive g: (New Volume) (Fixed) (Total:161.13 GB) (Free:160.84 GB) NTFS
4 Drive h: (New Volume) (Removable) (Total:7.45 GB) (Free:7.18 GB) NTFS
5 Drive i: (New Volume) (Fixed) (Total:305.57 GB) (Free:77.29 GB) NTFS
6 Drive j: (New Volume) (Fixed) (Total:160.16 GB) (Free:139.25 GB) NTFS

========================= Users: ========================================

User accounts for \\BORISKARLOFF

Administrator            borisbadenoff            Guest                   


**** End of log ****
 



#9 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,190 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Quebec, Canada
  • Local time:08:34 PM

Posted 15 April 2015 - 08:24 PM

warning.gifPC Booster/Tune-Up Program Warning!
"PC Booster/Tune Up" programs are part of the worst programs you can install on a system. When it comes to messing up your system (Windows), these are as worst as malware. They are completely worthless and useless to use. The worst is that they'll often take action on your system without you knowing, nor authorizing it, which could lead to your system being altered in a way you don't want it to be or even worst, a "broke" system. Every feature they provide, you can either do it natively under Windows, do it via another standalone executable (which is way easier and safer to use) or they aren't providing something you need. Here's a few examples:
  • Cleaning temporary files: TFC (standalone executable), CCleaner (installed), Cleanmgr.exe (in-built);
  • Managing start-up entries: Autoruns (standalone executable), CCleaner (installed), Task Manager and Registry (in-built);
  • Driver Updater: Not needed, all you need is to go on your manufacturer website so you'll be sure to get the right, official, working drivers for your computer or hardware;
  • Registry Cleaner/Defragger: Completely useless and also dangerous;
  • Disk Defragging: Disk Defrag (in-built), O&O Disk Defrag (installed), Defraggler (installed);
  • Powerful uninstaller: Not needed, only needed when you have to make sure a program is completely uninstalled. Revo Uninstaller have a portable version you can use;
  • "Enhanced" Task Manager: Procexp (standalone executable), Process Hacker (portable or installed);
  • "Active security": Any Antivirus and Antimalware can beat that, easily. These programs aren't made to replace Antivirus or Antimalware products and shouldn't be seen as such;
  • Repair Hard Drive issues: Simple chkdsk /r command under Windows (in-built);
Having such program installing on your system will just bloat it down and you have more chances to have issues by using them than without. These products are advertised as a program that can solve all your issues, remove every malware, speed up your computer performance over 100%, etc. The truth is that there's not a single program that can do that. First of all, these programs aren't made to remove virus and malware, leave this in the hands of Antivirus and Antimalware, period. Secondly, there's so many kind of issues under Windows that there's not a single program that can address them all. If you think that BSOD (Blue Screen of Death) issues can be solved by opening a program and clicking on a "Fix" button, then I'm sorry to tell you but, you're wrong. Also, you cannot boost the performance of a hardware over it's hardware capabilities. Of course you can overclock some components, like your CPU, RAM and GPU, but these aren't done via these programs, but via your BIOS interface. I could recommend you a program for every feature these programs advertise, and also tell you exactly in detail why most of them are completely useless, such as Registry cleaner (dangerous to use), and driver updater (dangerous to use, and also completely useless, it'll not improve your system performance). In the end, buying such programs is the exact same as being scammed (because this is what it is, a pure scam) and using one of these programs will result you in having a system less performant than prior to using it.

Relevant articles if you want to read more about PC Boosters/Optimizers and why they are useless:Please uninstall the following programs:
  • Auslogics BoostSpeed 7;
  • Java 7 Update 79 - Outdated;
  • Java SE Development Kit 7 Update 79 - Outdated;
If you encounter any issues while uninstalling a program, let me know. Also, please uninstall avast! and reinstall it, since it's missing a lot of drivers in the Device Manager. The installation is damaged. Also, did you try to install Emsisoft Anti-Malware lately?

Edit: Also, any reasons why you are running everything straight from the C: drive?

Edited by Aura., 16 April 2015 - 06:50 AM.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#10 LOVEMYPC

LOVEMYPC
  • Topic Starter

  • Members
  • 649 posts
  • OFFLINE
  •  
  • Local time:06:34 PM

Posted 16 April 2015 - 08:18 PM

HI,I thought everything was run from the C:drive.

Is Emsisoft Anti-MALWARE better than other Malware programs,JAVA is updated.

Here is another Mini-Tool-Box scan.

One thing i have ran into is i can not download the MINI-TOOL-BOX at all so i have to go into C:drive and find the one i have there and then when i run scan it totally disappears and there is nothing on the desktop it goes to notepad.

MiniToolBox by Farbar  Version: 23-01-2014
Ran by borisbadenoff (administrator) on 16-04-2015 at 18:02:38
Running from "C:\"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : boriskarloff
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
   Physical Address. . . . . . . . . : 00-1A-A0-3E-AB-61
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::981f:c233:d6cc:eb03%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.0.0.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : April 16, 2015 2:23:17 AM
   Lease Expires . . . . . . . . . . : April 23, 2015 2:23:16 AM
   Default Gateway . . . . . . . . . : 10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 234887840
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-BA-88-FB-00-1A-A0-3E-AB-61
   DNS Servers . . . . . . . . . . . : 75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 10:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:187a:32d5:9d12:2033(Preferred)
   Link-local IPv6 Address . . . . . : fe80::187a:32d5:9d12:2033%12(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{579E51A4-8573-46F7-9EBF-70868CF09542}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    google.com
Addresses:  2607:f8b0:400a:806::200e
      216.58.216.142


Pinging google.com [173.194.33.160] with 32 bytes of data:
Reply from 173.194.33.160: bytes=32 time=16ms TTL=55
Reply from 173.194.33.160: bytes=32 time=15ms TTL=55

Ping statistics for 173.194.33.160:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 15ms, Maximum = 16ms, Average = 15ms
Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=80ms TTL=51
Reply from 98.138.253.109: bytes=32 time=80ms TTL=51

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 80ms, Maximum = 80ms, Average = 80ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...00 1a a0 3e ab 61 ......Broadcom 440x 10/100 Integrated Controller
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1         10.0.0.3     20
         10.0.0.0    255.255.255.0         On-link          10.0.0.3    276
         10.0.0.3  255.255.255.255         On-link          10.0.0.3    276
       10.0.0.255  255.255.255.255         On-link          10.0.0.3    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link          10.0.0.3    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link          10.0.0.3    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 12     58 2001::/32                On-link
 12    306 2001:0:9d38:6ab8:187a:32d5:9d12:2033/128
                                    On-link
 10    276 fe80::/64                On-link
 12    306 fe80::/64                On-link
 12    306 fe80::187a:32d5:9d12:2033/128
                                    On-link
 10    276 fe80::981f:c233:d6cc:eb03/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/16/2015 06:00:24 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.

Error: (04/16/2015 05:59:41 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.

Error: (04/16/2015 05:53:34 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.

Error: (04/16/2015 05:49:39 PM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7601.17514, time stamp: 0x4ce7a144
Faulting module name: ntdll.dll, version: 6.1.7601.18798, time stamp: 0x5507b864
Exception code: 0xc0000374
Fault offset: 0x00000000000bf922
Faulting process id: 0x16d0
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3

Error: (04/16/2015 05:43:57 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.

Error: (04/16/2015 04:53:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (04/16/2015 02:23:41 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2015 00:59:15 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2015 00:49:03 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2015 00:22:38 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (04/16/2015 02:23:13 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 1:32:05 AM on ?4/?16/?2015 was unexpected.

Error: (04/16/2015 00:59:17 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (04/16/2015 00:59:16 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (04/16/2015 00:58:21 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:57:28 AM on ?4/?16/?2015 was unexpected.

Error: (04/16/2015 00:48:35 AM) (Source: BugCheck) (User: )
Description: 0x00000101 (0x0000000000000061, 0x0000000000000000, 0xfffff880009e8180, 0x0000000000000001)C:\Windows\MEMORY.DMP041615-21949-01

Error: (04/16/2015 00:48:34 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:46:49 AM on ?4/?16/?2015 was unexpected.

Error: (04/16/2015 00:22:39 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (04/16/2015 00:22:39 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (04/16/2015 00:22:03 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:21:02 AM on ?4/?16/?2015 was unexpected.

Error: (04/16/2015 00:02:19 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:00:54 AM on ?4/?16/?2015 was unexpected.


Microsoft Office Sessions:
=========================
Error: (04/16/2015 06:00:24 PM) (Source: SideBySide)(User: )
Description: C:\spybot-2.3.exeC:\spybot-2.3.exe0

Error: (04/16/2015 05:59:41 PM) (Source: SideBySide)(User: )
Description: C:\EmsisoftAntiMalwareSetup.exeC:\EmsisoftAntiMalwareSetup.exe0

Error: (04/16/2015 05:53:34 PM) (Source: SideBySide)(User: )
Description: C:\EmsisoftAntiMalwareSetup.exeC:\EmsisoftAntiMalwareSetup.exe0

Error: (04/16/2015 05:49:39 PM) (Source: Application Error)(User: )
Description: explorer.exe6.1.7601.175144ce7a144ntdll.dll6.1.7601.187985507b864c000037400000000000bf92216d001d078a14ea9a5a8C:\Windows\explorer.exeC:\Windows\SYSTEM32\ntdll.dlla0133678-e49b-11e4-83ac-001aa03eab61

Error: (04/16/2015 05:43:57 PM) (Source: SideBySide)(User: )
Description: C:\EmsisoftAntiMalwareSetup.exeC:\EmsisoftAntiMalwareSetup.exe0

Error: (04/16/2015 04:53:28 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\$Recycle.Bin\S-1-5-21-1051828039-3862541-1496852238-1000\$REZ9UA0.exe

Error: (04/16/2015 02:23:41 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2015 00:59:15 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2015 00:49:03 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2015 00:22:38 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2014-04-30 13:21:00.692
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.0.6000.16386_none_6d564c64c358b59e\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:21:00.552
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.0.6000.16386_none_6d564c64c358b59e\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:21:00.411
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.0.6000.16386_none_6d564c64c358b59e\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:56.745
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:56.605
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:56.464
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:30.116
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-bcrypt-dll_31bf3856ad364e35_6.0.6000.16386_none_ec55d170f27a97bb\bcrypt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:29.976
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-bcrypt-dll_31bf3856ad364e35_6.0.6000.16386_none_ec55d170f27a97bb\bcrypt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:20:29.835
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-bcrypt-dll_31bf3856ad364e35_6.0.6000.16386_none_ec55d170f27a97bb\bcrypt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-04-30 13:19:35.875
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\Backup\x86_microsoft-windows-bcrypt-dll_31bf3856ad364e35_6.0.6000.16386_none_ec55d170f27a97bb_bcrypt.dll_e2f091ac because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

7-Zip 9.20
Acronis True Image 2015 (Version: 18.0.6055)
Adobe Flash Player 17 NPAPI (Version: 17.0.0.169)
Adobe Reader XI (11.0.10) (Version: 11.0.10)
Adobe Refresh Manager (Version: 1.8.0)
Apple Application Support (Version: 2.3.6)
Apple Software Update (Version: 2.1.3.127)
Audacity 2.0.5 (Version: 2.0.5)
Auslogics DiskDefrag (Version: 4.5.4.0)
Avast Free Antivirus (Version: 10.2.2215)
Belarc Advisor 8.4 (Version: 8.4.0.0)
Canon Easy-WebPrint EX (Version: 1.5.0.0)
Canon IJ Scan Utility
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (Version: 4.0.0)
Canon MG2500 series MP Drivers (Version: 1.02)
Canon MG2500 series On-screen Manual (Version: 7.6.1)
Canon MG2500 series User Registration
Canon My Image Garden (Version: 3.0.1)
Canon My Image Garden Design Files (Version: 3.0.0)
Canon My Printer (Version: 3.2.1)
Canon Quick Menu (Version: 2.4.1)
ClipGrab 3.4.7
ClipMagic 4.1 (Version: 4.1)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Defraggler (Version: 2.17)
Dell Resource CD (Version: 1.00.0000)
Dell System Detect - 1  (Version: 5.14.0.9)
Digital Line Detect (Version: 1.20)
Dropbox (Version: 2.6.24)
EaseUS Partition Master 10.0
EaseUS Todo Backup Free 7.0  (Version: 7.0)
EaseUS Todo PCTrans 8.0
Google Chrome (Version: 42.0.2311.90)
Google Earth (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.25.11)
Google Update Helper (Version: 1.3.26.9)
HitmanPro 3.7 (Version: 3.7.9.240)
HWiNFO64 Version 4.38 (Version: 4.38)
IDT Audio (Version: 5.10.0000.0)
ImgBurn (Version: 2.5.8.0)
IrfanView (remove only) (Version: 4.38)
Java 8 Update 45 (Version: 8.0.450)
Java Auto Updater (Version: 2.8.45.14)
Kingsoft Office 2013 (9.1.0.4550) (Version: 9.1.0.4550)
Macrium Reflect Free Edition (Version: 5.3)
Macrium Reflect Free Edition (Version: 5.3.7220)
Malwarebytes Anti-Malware version 2.1.4.1018 (Version: 2.1.4.1018)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft ASP.NET MVC 4 Runtime (Version: 4.0.40804.0)
Microsoft Mouse and Keyboard Center (Version: 2.3.188.0)
Microsoft Silverlight (Version: 5.1.31211.0)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Modem Diagnostic Tool (Version: 1.0.17.2)
Mozilla Firefox 37.0.1 (x86 en-US) (Version: 37.0.1)
Mozilla Maintenance Service (Version: 37.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA 3D Vision Controller Driver 347.09 (Version: 347.09)
NVIDIA 3D Vision Driver 347.88 (Version: 347.88)
NVIDIA Control Panel 347.88 (Version: 347.88)
NVIDIA GeForce Experience 2.4.1.21 (Version: 2.4.1.21)
NVIDIA GeForce Experience Service (Version: 2.4.1.21)
NVIDIA Graphics Driver 347.88 (Version: 347.88)
NVIDIA HD Audio Driver 1.3.33.0 (Version: 1.3.33.0)
NVIDIA Install Application (Version: 2.1002.175.1449)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Network Service (Version: 2.3)
NVIDIA PhysX (Version: 9.14.0702)
NVIDIA PhysX System Software 9.14.0702 (Version: 9.14.0702)
NVIDIA ShadowPlay 2.4.1.21 (Version: 2.4.1.21)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6514)
NVIDIA Update 2.4.1.21 (Version: 2.4.1.21)
NVIDIA Update Core (Version: 2.4.1.21)
NVIDIA Virtual Audio 1.2.27 (Version: 1.2.27)
Platform (Version: 1.40)
PokerStars.net
QuickTime 7 (Version: 7.76.80.95)
Revo Uninstaller 1.95 (Version: 1.95)
Roadkil's Raw Copy Version 1.2
Roadkil's Unstoppable Copier Version 5.2
Secunia PSI (3.0.0.10004) (Version: 3.0.0.10004)
SHIELD Streaming (Version: 4.1.1000)
SHIELD Wireless Controller Driver (Version: 2.4.1.21)
SigmaTel Audio (Version: 5.10.5003.0)
Speccy (Version: 1.26)
SpywareBlaster 5.0 (Version: 5.0.0)
SUPERAntiSpyware (Version: 6.0.1170)
swMSM (Version: 12.0.0.1)
System Requirements Lab Detection (Version: 2.1.1.0)
VIA Platform Device Manager (Version: 1.40)
Visual BCD (Version: 0.9.3.1)
VLC media player (Version: 2.2.0)
WD Quick View (Version: 2.4.6.3)
WD SmartWare (Version: 2.4.6.3)
WD SmartWare Installer (Version: 2.4.6.3)
WPS Office (9.1.0.4932) (Version: 9.1.0.4932)

========================= Devices: ================================

Name: IDT High Definition Audio CODEC
Description: IDT High Definition Audio CODEC
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: IDT
Service: STHDA
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


========================= Memory info: ===================================

Percentage of memory in use: 49%
Total physical RAM: 4094.49 MB
Available physical RAM: 2077.13 MB
Total Pagefile: 8187.18 MB
Available Pagefile: 5395.02 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.11 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:770.28 GB) (Free:388.16 GB) NTFS
3 Drive g: (New Volume) (Fixed) (Total:161.13 GB) (Free:160.84 GB) NTFS
4 Drive h: (New Volume) (Removable) (Total:7.45 GB) (Free:7.18 GB) NTFS
5 Drive i: (New Volume) (Fixed) (Total:305.57 GB) (Free:77.28 GB) NTFS
6 Drive j: (New Volume) (Fixed) (Total:160.16 GB) (Free:139.25 GB) NTFS

========================= Users: ========================================

User accounts for \\BORISKARLOFF

Administrator            borisbadenoff            Guest                   


**** End of log ****
 



#11 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,190 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Quebec, Canada
  • Local time:08:34 PM

Posted 16 April 2015 - 08:21 PM

Emsisoft Anti-Malware is one of the best Antimalware on the market right now, along with Malwarebytes Anti-Malware. These are my two most recommended products and "must have" on a system (one or the other, or both if you wish). And it's better if you run the tools I'm asking you to run from the Desktop, same as everything else. Running programs from the C: will often cause issues since you (or the program) might not have certain permissions. If you want to make sure that all the programs run correctly, run them from the Desktop, safest place to do so :)

Are you currently experiencing BSODs (Blue Screen of Death)? Also, follow the instructions below please.

sUc2qjf.pngAutoruns - Start-up Entries
Follow the instructions below to give me an Autoruns log containing your start-up entries:
  • Download Autoruns.zip from the Sysinternals Suite webpage;
  • Extract the content of the Autoruns.zip folder where you want, then go in the folder, right-click on Autoruns.exe and select Run as Administrator;
  • Accept the EULA on opening, then wait for all the entries to load;
  • Click on File then Save and save the file to a location easily accessible as a .arn (Autoruns) file;
  • Go on ge.tt and upload the Autoruns file you saved;
  • Once done, post the download URL of your uploaded file in your next reply;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#12 LOVEMYPC

LOVEMYPC
  • Topic Starter

  • Members
  • 649 posts
  • OFFLINE
  •  
  • Local time:06:34 PM

Posted 17 April 2015 - 03:13 PM

HI,Aura,I have the autoruns done,but i have not done what you asked i.e. upload the Autoruns file,also have never done a URL download.

I ran the Emisisoft program and it took all nite ,what i have learned about PC'S is hit and miss.



#13 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,190 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Quebec, Canada
  • Local time:08:34 PM

Posted 17 April 2015 - 04:04 PM

Here, follow the instructions to upload the Autoruns file on ge.tt and post the download URL here.

z0PRnje.pngUpload a file on ge.tt
  • Click HERE to open the ge.tt website in your default browser;
  • Click on the Upload files button;
    g8iJwyI.png
  • Select the file you want to upload, and click on Open;
  • Once the file is updated, you'll be redirected to its download page. Copy and paste the URL address of that page in your next reply;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#14 LOVEMYPC

LOVEMYPC
  • Topic Starter

  • Members
  • 649 posts
  • OFFLINE
  •  
  • Local time:06:34 PM

Posted 17 April 2015 - 07:43 PM

Why do i get a invalid email address message when i try to send a URL i know there is something i am doing that is simple & stupid,i have the autoruns in lower tray and can pull it up when needed.



#15 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,190 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Quebec, Canada
  • Local time:08:34 PM

Posted 17 April 2015 - 07:45 PM

Simply copy and paste it here. If it doesn't work, put it between code tags.

URL HERE

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users