Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows security option and Bitdefender keep being turned off


  • Please log in to reply
17 replies to this topic

#1 Sincx

Sincx

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:35 PM

Posted 09 May 2015 - 11:40 AM

Windows 8.1

 

As the title says for some reason my Action Centre keeps informing me that the windows security options ( defender / firewall etc ) and also my Bitdefender package is turned off. This raises some suspition as one can imagine ....

 

What could I do to determine what is causing this ?



BC AdBot (Login to Remove)

 


#2 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,596 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:08:35 AM

Posted 09 May 2015 - 11:43 AM

Hi Sincx :)

It could be a simple issue where Bitdefender installation is corrupted/damaged, but let's take another look at it first.

3Al62Pm.pngMiniToolBox
  • Download MiniToolBox and move the executable file to your Desktop;
  • Execute MiniToolBox and check the following options:
    • List Installed Programs;
    • List Last 10 Event Viewer Errors;
    • List Devices - Only Problems;
    • List Users, Partitions and Memory size;
      wNeKMCX.png
  • Once this is done, click on Go and wait for the scan to complete;
  • Once the scan is complete, a log will open. Please copy/paste the content of the output log in your next reply;
P32ZMcU.pngSecurityCheck
  • Download SecurityCheck and move the executable to your Desktop;
  • Execute SecurityCheck, press on a key and let the scan run;
    KQuxDxN.png
  • Once the scan is complete, a log will open. Please copy/paste the content of the output log in your next reply;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#3 Sincx

Sincx
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:35 PM

Posted 09 May 2015 - 11:48 AM

Hi and thanks for your like...super fast reply !

 

Here is the log from Minibox:

 

MiniToolBox by Farbar  Version: 14-04-2015
Ran by Ries Notenboom (administrator) on 09-05-2015 at 18:45:03
Running from "C:\Users\Ries Notenboom\Desktop"
Microsoft Windows 8.1  (X64)
Model: Z97X-Gaming 5 Manufacturer: Gigabyte Technology Co., Ltd.
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/09/2015 06:31:06 PM) (Source: Application Error) (User: )
Description: Faulting application name: IEXPLORE.EXE, version: 11.0.9600.17416, time stamp: 0x5452eed9
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000409
Fault offset: 0x00000000
Faulting process ID: 0xcd8
Faulting application start time: 0xIEXPLORE.EXE0
Faulting application path: IEXPLORE.EXE1
Faulting module path: IEXPLORE.EXE2
Report ID: IEXPLORE.EXE3
Faulting package full name: IEXPLORE.EXE4
Faulting package-relative application ID: IEXPLORE.EXE5

Error: (05/09/2015 05:57:28 PM) (Source: Perflib) (User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll8

Error: (05/09/2015 03:47:39 PM) (Source: Windows Search Service) (User: )
Description: Notifications for the volume C:\ are not active.

Context: Windows Application

Details:
 The parameter is incorrect.  (HRESULT : 0x80070057) (0x80070057)

Error: (05/08/2015 05:27:56 PM) (Source: Perflib) (User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll8

Error: (05/08/2015 07:34:47 AM) (Source: Windows Search Service) (User: )
Description: Notifications for the volume C:\ are not active.

Context: Windows Application

Details:
 The parameter is incorrect.  (HRESULT : 0x80070057) (0x80070057)

Error: (05/07/2015 01:30:38 PM) (Source: Perflib) (User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll8

Error: (05/07/2015 08:01:35 AM) (Source: Windows Search Service) (User: )
Description: Notifications for the volume C:\ are not active.

Context: Windows Application

Details:
 The parameter is incorrect.  (HRESULT : 0x80070057) (0x80070057)

Error: (05/06/2015 05:52:00 PM) (Source: Windows Search Service) (User: )
Description: Notifications for the volume C:\ are not active.

Context: Windows Application

Details:
 The parameter is incorrect.  (HRESULT : 0x80070057) (0x80070057)

Error: (05/06/2015 11:51:54 AM) (Source: Windows Search Service) (User: )
Description: Notifications for the volume C:\ are not active.

Context: Windows Application

Details:
 The parameter is incorrect.  (HRESULT : 0x80070057) (0x80070057)

Error: (05/06/2015 11:51:52 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

System errors:
=============
Error: (05/09/2015 06:26:09 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Stereoscopic 3D Driver Service service terminated unexpectedly. It has done this 1 time(s).

Error: (05/09/2015 04:09:15 PM) (Source: DCOM) (User: SINPCX)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}SINPCXRies NotenboomS-1-5-21-4046120297-2010178794-3672526475-1001LocalHost (Using LRPC)UnavailableUnavailable

Error: (05/08/2015 02:19:46 PM) (Source: DCOM) (User: SINPCX)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}SINPCXRies NotenboomS-1-5-21-4046120297-2010178794-3672526475-1001LocalHost (Using LRPC)UnavailableUnavailable

Error: (05/08/2015 00:47:51 PM) (Source: DCOM) (User: SINPCX)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}SINPCXRies NotenboomS-1-5-21-4046120297-2010178794-3672526475-1001LocalHost (Using LRPC)UnavailableUnavailable

Error: (05/07/2015 09:10:39 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (05/07/2015 09:00:08 PM) (Source: DCOM) (User: SINPCX)
Description: {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}

Error: (05/07/2015 08:56:09 PM) (Source: DCOM) (User: SINPCX)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}SINPCXRies NotenboomS-1-5-21-4046120297-2010178794-3672526475-1001LocalHost (Using LRPC)UnavailableUnavailable

Error: (05/07/2015 08:25:59 PM) (Source: DCOM) (User: SINPCX)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}SINPCXRies NotenboomS-1-5-21-4046120297-2010178794-3672526475-1001LocalHost (Using LRPC)UnavailableUnavailable

Error: (05/07/2015 08:20:47 PM) (Source: DCOM) (User: SINPCX)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}SINPCXRies NotenboomS-1-5-21-4046120297-2010178794-3672526475-1001LocalHost (Using LRPC)UnavailableUnavailable

Error: (05/07/2015 08:19:24 PM) (Source: DCOM) (User: SINPCX)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}SINPCXRies NotenboomS-1-5-21-4046120297-2010178794-3672526475-1001LocalHost (Using LRPC)UnavailableUnavailable

Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.8.158 - Adobe Systems, Inc.)
APP Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.14.1205 - Gigabyte)
APP Center (x32 Version: 1.14.1205 - Gigabyte) Hidden
Assetto Corsa (HKLM-x32\...\Steam App 244210) (Version:  - Kunos Simulazioni)
Asus audio driver (HKLM-x32\...\{8794260a-a2ca-4dac-8e5a-890bf5fcd7a5}) (Version: 1.0.8 - ASUSTeKcomputer.Inc)
Asus Xonar Phoebus Audio Driver (Version: 1.0.8 - ASUSTeKcomputer.Inc) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.0.0.2 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.20.0.1429 - Bitdefender)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
fotofabriekSoftware 3.8.4 (HKLM-x32\...\fotofabriek_is1) (Version:  - 1STEIN Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Intel® Chipset Device Software (Version: 10.0.20 - Intel Corporation) Hidden
Intel® Chipset Device Software (x32 Version: 10.0.20 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel® Management Engine Components (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Components (Version: 10.0.0.1204 - Intel Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4156 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 13.0.3.1001 - Intel Corporation) Hidden
Intel® Smart Connect Technology (HKLM\...\{BB5FB7EF-403F-4085-B2BC-F2CD2F45D15F}) (Version: 5.0.10.2850 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.35.127.1 - Intel Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Logitech Gaming Software (Version: 8.30.28 - Logitech Inc.) Hidden
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Dutch) 2007 (x32 Version: 12.0.4518.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Dutch) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Dutch) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
NVIDIA 3D Vision Controller Driver 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)
NVIDIA Control Panel 350.12 (Version: 350.12 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation)
NVIDIA GeForce Experience Service (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.175.1449 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Miracast Virtual Audio 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 350.12 - NVIDIA Corporation)
NVIDIA Network Service (Version: 2.3 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
NVIDIA ShadowPlay 2.4.3.22 (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 2.4.3.22 (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.27 (Version: 1.2.27 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.5.10.780 - Electronic Arts, Inc.)
Popcorn Time (HKCU\...\Popcorn Time) (Version:  - Popcorn Official)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{FE5DFB80-6937-4154-A2C7-EF845C1301F8}) (Version: 1.0.30.1259 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Start Menu 8 (HKLM-x32\...\IObit_StartMenu8_is1) (Version: 2.1.0 - IObit)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1186 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{02206DCC-0CAF-46BB-8EDC-6C281AA21EFA}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition (HKLM-x32\...\{90120000-006E-0413-0000-0000000FF1CE}_ENTERPRISE_{02206DCC-0CAF-46BB-8EDC-6C281AA21EFA}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2920794) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BB006B39-9FD7-4DD5-942E-CDF1BBD718DB}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0413-0000-0000000FF1CE}_ENTERPRISE_{F8564AF8-30AE-4427-ACF3-69714E1BB656}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2965207) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{8A41C250-4D2E-4D77-84E3-5854162C4D44}) (Version:  - Microsoft)
Update voor Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0413-0000-0000000FF1CE}_ENTERPRISE_{5CF7002F-6F49-4482-9564-5614FBE560FA}) (Version:  - Microsoft)
Update voor Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0413-0000-0000000FF1CE}_ENTERPRISE_{15D84E79-1ED7-42C5-B2FD-745C3FBDDDC5}) (Version:  - Microsoft)
Update voor Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0413-0000-0000000FF1CE}_ENTERPRISE_{A66AE6A1-8D8C-4102-BC18-38CBDE40F809}) (Version:  - Microsoft)
Xonar Phoebus (Version: 1.0.8 - ASUSTeKcomputer.Inc) Hidden

========================= Devices: ================================

Name: Unknown USB Device (Device Descriptor Request Failed)
Description: Unknown USB Device (Device Descriptor Request Failed)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service:
Device ID: USB\VID_0000&PID_0002\5&E658374&0&12
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

========================= Memory info: ===================================

Percentage of memory in use: 26%
Total physical RAM: 8060.41 MB
Available physical RAM: 5940.9 MB
Total Pagefile: 13948.41 MB
Available Pagefile: 11569.01 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.39 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.45 GB) (Free:68.44 GB) NTFS
2 Drive d: (Games) (Fixed) (Total:447 GB) (Free:291.88 GB) NTFS
3 Drive e: (Music) (Fixed) (Total:97.65 GB) (Free:40.32 GB) NTFS
4 Drive f: (Movies - Download - Backup) (Fixed) (Total:3725.9 GB) (Free:2120.62 GB) NTFS
5 Drive g: (Personal Files - Images - Admin) (Fixed) (Total:600.97 GB) (Free:272.88 GB) NTFS

========================= Users: ========================================

User accounts for \\SINPCX

Administrator            Guest                    Ries Notenboom          

**** End of log ****

 

 

And the log from Security check, do note ...I enable all security measures earlier so not sure this is the log you are looking for ?

 

 

 Results of screen317's Security Check version 1.001 
   x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled! 
Bitdefender Antivirus  
Windows Defender       
 Antivirus out of date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Google Chrome (42.0.2311.135)
 Google Chrome (42.0.2311.90)
````````Process Check: objlist.exe by Laurent```````` 
 Windows Defender MSMpEng.exe
 Bitdefender Bitdefender 2015 vsserv.exe 
 Bitdefender Bitdefender 2015 updatesrv.exe 
 Bitdefender Bitdefender 2015 bdagent.exe 
 Bitdefender Bitdefender 2015 bdwtxag.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````
 Results of screen317's Security Check version 1.001 
   x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled! 
Bitdefender Antivirus  
Windows Defender       
 Antivirus out of date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Google Chrome (42.0.2311.135)
 Google Chrome (42.0.2311.90)
````````Process Check: objlist.exe by Laurent```````` 
 Windows Defender MSMpEng.exe
 Bitdefender Bitdefender 2015 vsserv.exe 
 Bitdefender Bitdefender 2015 updatesrv.exe 
 Bitdefender Bitdefender 2015 bdagent.exe 
 Bitdefender Bitdefender 2015 bdwtxag.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

 



#4 Sincx

Sincx
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:35 PM

Posted 09 May 2015 - 11:57 AM

Some reason it says antivirus out of date in that log....which isn't the case will check with bitdefender for that :S

Edit: Seems to be a different install from older version prior to reinstalling windows ?

 

 

Nevertheless all security is being disabled ..


Edited by Sincx, 09 May 2015 - 12:02 PM.


#5 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,596 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:08:35 AM

Posted 09 May 2015 - 12:02 PM

Apparently you are using both Windows Defender and Bitdefender at the same time. Which means that two Antivirus processes are running, which could cause system instability and conflict. Is it possible for you to uninstall Bitdefender, run the removal tool for it, then reinstall it completely?

http://www.bitdefender.com/uninstall/

Once done, run SecurityCheck again to provide me a new log please.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#6 Sincx

Sincx
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:35 PM

Posted 09 May 2015 - 12:14 PM

On it !



#7 Sincx

Sincx
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:35 PM

Posted 09 May 2015 - 12:55 PM

New log after reinstall:

 

 Results of screen317's Security Check version 1.001 
   x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
 Windows Security Center service is not running! This report may not be accurate!
 Windows Firewall Disabled! 
Windows Defender  
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Google Chrome (42.0.2311.135)
 Google Chrome (42.0.2311.90)
````````Process Check: objlist.exe by Laurent```````` 
 Bitdefender Bitdefender 2015 vsserv.exe 
 Bitdefender Bitdefender 2015 updatesrv.exe 
 Bitdefender Bitdefender 2015 bdagent.exe 
 Bitdefender Bitdefender 2015 bdwtxag.exe 
 Bitdefender Bitdefender 2015 seccenter.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````
 



#8 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,596 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:08:35 AM

Posted 09 May 2015 - 12:59 PM

Yeah there's an issue with your services.

zImGw67.pngWindows Repair All-In-One
NOTE: Before following to step below, please disable your Antivirus software or any other real-time security software that you have enabled.
  • Download the portable version of Windows Repair All-In-One;
  • Move the file (archive) on your Desktop, and extract it there;
  • Go in the tweaking.com_windows_repair_aio folder, then Tweaking.com - Windows Repair folder, right-click on Repair_Windows.exe and select Run as Administrator;
  • From there, click on the Next button until you are presented with an Open Repairs button and click on it;
  • Let the Registry back up complete, and move on to the check-list window;
  • Click on the Unselect All button at the bottom, then check the following items:
    • 03 - Reset Service Permissions
    • 06 - Repair Windows Firewall
    • 10 - Remove Policies Set By Infections
    • 26 - Restore Important Windows Services
    • 27 - Set Windows Services To Default Startup
  • Once done, click on the Start Repairs button and let the scan execute;
  • If you are being prompted with a Security Warning, allow it to go through;
  • Once the repair is complete, it'll ask you to restart your computer, please do it;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#9 Sincx

Sincx
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:35 PM

Posted 09 May 2015 - 01:11 PM

All done, new results:

 

 

 Results of screen317's Security Check version 1.001 
   x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled! 
Bitdefender Antivirus  
Windows Defender       
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
 Google Chrome (42.0.2311.135)
 Google Chrome (42.0.2311.90)
````````Process Check: objlist.exe by Laurent```````` 
 Bitdefender Bitdefender 2015 vsserv.exe 
 Bitdefender Bitdefender 2015 updatesrv.exe 
 Bitdefender Bitdefender 2015 bdagent.exe 
 Bitdefender Bitdefender 2015 bdwtxag.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

 



#10 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,596 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:08:35 AM

Posted 09 May 2015 - 01:13 PM

It all looks good to me. Does it keeps on getting disabled: Action Center, Bitdefender, etc.?

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#11 Sincx

Sincx
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:35 PM

Posted 09 May 2015 - 01:16 PM

Nope after restart it all stays as it should be so thats solved then I guess !! If anything will come up regarding this issue will give a quick post.

 

Thanks alot !



#12 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,596 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:08:35 AM

Posted 09 May 2015 - 01:16 PM

No problem Sincx, I'll keep this thread in monitoring :)

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#13 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,271 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:35 AM

Posted 09 May 2015 - 01:25 PM

Topic moved to a more appropriate forum.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#14 reaktor24

reaktor24

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:35 PM

Posted 11 August 2015 - 03:16 PM

I wonder why my previous post was deleted.


Edited by reaktor24, 11 August 2015 - 03:18 PM.


#15 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,271 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:35 AM

Posted 11 August 2015 - 03:28 PM

@ reaktor24 :welcome: to Bleeping Computer.

You have replied to an older topic.

If you have a question, issue or problem you would like to discuss, please start your own topic. Doing that will help to avoid the confusion that often occurs when trying to help two or more members at the same time in the same thread. Even if your problem is similar to the original poster's problem, the solution could be different based on the kind of hardware, software, system requirements, etc. you are using and the presence of other malware. Further, posting for assistance in someone else's topic is not considered proper forum etiquette.

Thanks for your cooperation.
The BC Staff
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users