Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer running very slowly/"not responding"


  • Please log in to reply
34 replies to this topic

#1 harrisrj

harrisrj

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:54 AM

Posted 08 June 2015 - 10:51 PM

Hi.  I have a Dell Vostro 260 running Windows 7 Professional.  I have McAfee and use AdAware along with Windows Defender and they never find any virus or malware.

 

The computer takes an extended time to open files and run applications.  I use this computer for my job as an appraiser and it is very frustrating to have things take so long, impacting my productivity.

 

I will frequently get a message saying "not responding" when trying to open files or use programs but they will eventually work, most of the time.

Sometimes, they will stop and if it try the process again, it may work.

 

Upon rebooting, the computer does not recognize me as the admin and also some of the programs that I use then think it is the initial set up again.

Many settings will not be saved such as having to replace the desktop background as an example.

 

Please let me know if there is any additional information I can provide.  From my vantage point, it is somewhat nebulous but certainly not how it was before or how it should be.

 

Thank you, in advance for any help. 

 



BC AdBot (Login to Remove)

 


#2 phild0tcom

phild0tcom

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:02:54 AM

Posted 08 June 2015 - 11:46 PM

Disable or remove two of the 3 scanners.  Multiple security programs will cause this, since they are triple scanning every file you open.

 

I would recommend removing both McAfee and AdAware, disable Windows Defender, and run nothing but Malwarebytes Premium for your active security since it catches more than any AV software.


Edited by phild0tcom, 08 June 2015 - 11:47 PM.


#3 Kikig04

Kikig04

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thousand Oaks, California
  • Local time:10:54 AM

Posted 09 June 2015 - 12:15 AM

phild0tcom, would you say the same for the Free version of Malwarebytes?

 

 

Kiki G.



#4 Wizzlmang

Wizzlmang

  • Members
  • 105 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 09 June 2015 - 01:14 AM

Free malwarebytes doesn't have active protection, but I would reccomend running a scan with the free version, it's a solid AV program.



#5 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:07:54 PM

Posted 09 June 2015 - 02:06 AM

Hello there,

Malwarebytes is NOT an antivirus - it is an antimalware (which focuses on non-infectious malware i.e. trojans, rootkits and PUPs) and must be run alongside an antivirus to ensure full protection.

MBAM Free does not have real time protection, and thus is only useful as an on-demand scanner.

harrisrj, in your case I would remove Ad-Aware and disable Windows Defender. It is best that you use McAfee with Malwarebytes (free is ok, but preferably paid).

Regards,
Alex

#6 harrisrj

harrisrj
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:54 AM

Posted 09 June 2015 - 02:13 PM

thank you all for the suggestions.  I was using only Windows Defender when this all started. I renewed my Mcafee subscription and tried AdAware to see if they could catch the issue.  I removed AdAware and disabled Defender.  I will try to add Malwarebytes and see what happens.  I was having difficulty installing any scans.  It was like the computer did not want any virus protection or malware programs installed.

 

The issues remain after performing the above stated items.  Thanks, again.


thank you all for the suggestions.  I was using only Windows Defender when this all started. I renewed my Mcafee subscription and tried AdAware to see if they could catch the issue.  I removed AdAware and disabled Defender.  I will try to add Malwarebytes and see what happens.  I was having difficulty installing any scans.  It was like the computer did not want any virus protection or malware programs installed.

 

The issues remain after performing the above stated items.  Thanks, again.



#7 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:07:54 PM

Posted 09 June 2015 - 02:23 PM

What you described can be caused by a failing hard drive... Please run this.

GSmartControl

Please download GSmartControl and save it to your Desktop.
  • Extract gsmartcontrol-0.8.7-win32.zip to a folder, double-click on gsmartcontrol.exe
  • A list of hard drives will appear, single-click each disk to see Drive Information and identify your drive
    note: most machines will only have one or two entries, but an easy way to identify your drive is by its size.
  • Double-click on the hard drive to see detailed Device Information
  • Click on the Attributes tab, do you see any red or pink entries like the ones below? Please list the names in your next reply if there are any.
    info_failing.png
  • Click on the Perform Tests tab
  • Select Extended Self-Test and click Execute
    note: this test can take several hours to run
  • Allow the test to complete, the results will be displayed at the bottom
Please post screenshots of three tabs: Perform Tests, Attributes and Self-test Logs in your next reply.

Regards,
Alex

#8 harrisrj

harrisrj
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:54 AM

Posted 09 June 2015 - 11:46 PM

I'm sorry it took so long.  There was nothing that came up as pink or red on that scan.  I attempted to post the three screen shots you wanted as .jpg and .png files but it said I am not authorized to do it.  Is there another way to post those results.

 

The self test said "completed without error" on each line.  The attributes showed five "pre-failures" (raw read error rate, spin-up time, reallocated sector count, seek error rate, spin-up retry count)  the others said "old age."  Perform tests said "test completed without error."

 

Thanks for your help! 
 



#9 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:07:54 PM

Posted 10 June 2015 - 01:25 AM

Hi there,

Please upload the screenshots to an external hosting service like Imgur, then copy and paste the link here.

#10 harrisrj

harrisrj
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:54 AM

Posted 10 June 2015 - 01:23 PM

I was unable to cut and paste.  For some reason it won't allow me to paste here.  The three files are at imgur.com/pZcFW2H, imgur.com/xJ5vXjF and imgur.com/3EuhD4T 

I hope that helps.  Thank you.



#11 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:07:54 PM

Posted 10 June 2015 - 01:50 PM

Doesn't seem like a hard drive issue. Let's check out other things.

MiniToolbox by Farbar

Avast users please disable your antivirus before downloading!
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore Points
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

===

Security Check by screen317
  • Download Security Check by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt. Please copy and paste the contents of the log in your next reply.

Regards,
Alex

#12 harrisrj

harrisrj
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:54 AM

Posted 10 June 2015 - 04:44 PM

MiniToolBox by Farbar  Version: 11-05-2015 01
Ran by rob (administrator) on 10-06-2015 at 14:39:59
Running from "C:\Users\rob\Documents"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Model: Vostro 260 Manufacturer: Dell Inc.
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

DW1525 (802.11n) WLAN PCIe Card = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : rob-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 62-27-37-03-D5-47
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : DW1525 (802.11n) WLAN PCIe Card
   Physical Address. . . . . . . . . : 64-27-37-03-D5-47
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::c8f:c386:a32b:bfdf%13(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.22(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, June 06, 2015 2:24:02 PM
   Lease Expires . . . . . . . . . . : Thursday, June 11, 2015 1:55:52 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 241444663
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-95-6F-5B-D0-67-E5-23-47-72
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : D0-67-E5-23-47-72
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{9FC1CC1B-4991-454A-AC79-07FE0E8FA27F}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{EB66FB1F-763C-4AFA-A037-1057FDA55063}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{BE4EB178-F776-4755-9E94-32778ACCD559}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4000:80b::200e
      216.58.218.206


Pinging google.com [216.58.218.206] with 32 bytes of data:
Reply from 216.58.218.206: bytes=32 time=63ms TTL=53
Reply from 216.58.218.206: bytes=32 time=47ms TTL=53

Ping statistics for 216.58.218.206:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 47ms, Maximum = 63ms, Average = 55ms
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  206.190.36.45
      98.138.253.109
      98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=86ms TTL=52
Reply from 98.138.253.109: bytes=32 time=152ms TTL=52

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 86ms, Maximum = 152ms, Average = 119ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 2ms, Average = 1ms
===========================================================================
Interface List
 14...62 27 37 03 d5 47 ......Microsoft Virtual WiFi Miniport Adapter
 13...64 27 37 03 d5 47 ......DW1525 (802.11n) WLAN PCIe Card
 11...d0 67 e5 23 47 72 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.22     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.22    281
     192.168.1.22  255.255.255.255         On-link      192.168.1.22    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.22    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.22    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.22    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 13    281 fe80::/64                On-link
 13    281 fe80::c8f:c386:a32b:bfdf/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\system32\LavasoftTcpService.dll [326288] (Lavasoft Limited)
Catalog9 02 C:\Windows\system32\LavasoftTcpService.dll [326288] (Lavasoft Limited)
Catalog9 03 C:\Windows\system32\LavasoftTcpService.dll [326288] (Lavasoft Limited)
Catalog9 04 C:\Windows\system32\LavasoftTcpService.dll [326288] (Lavasoft Limited)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\LavasoftTcpService.dll [326288] (Lavasoft Limited)
x64-Catalog5 01 \Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 \Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 \Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 \Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 \Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\LavasoftTcpService64.dll [373864] (Lavasoft Limited)
x64-Catalog9 02 C:\Windows\System32\LavasoftTcpService64.dll [373864] (Lavasoft Limited)
x64-Catalog9 03 C:\Windows\System32\LavasoftTcpService64.dll [373864] (Lavasoft Limited)
x64-Catalog9 04 C:\Windows\System32\LavasoftTcpService64.dll [373864] (Lavasoft Limited)
x64-Catalog9 05 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 12 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 13 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 14 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 15 C:\Windows\System32\LavasoftTcpService64.dll [373864] (Lavasoft Limited)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/10/2015 00:14:46 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1".Error in manifest or policy file "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2" on line UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (06/10/2015 11:39:47 AM) (Source: Application Error) (User: )
Description: Faulting application name: Report32.exe, version: 9.1.2.2329, time stamp: 0x6aee465b
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00181313
Faulting process id: 0x16b0
Faulting application start time: 0xReport32.exe0
Faulting application path: Report32.exe1
Faulting module path: Report32.exe2
Report Id: Report32.exe3

Error: (06/09/2015 09:56:00 PM) (Source: Microsoft-Windows-User Profiles Service) (User: rob-PC)
Description: Windows cannot load the user's profile but has logged you on with the default profile for the system.

 DETAIL - Access is denied.

Error: (06/09/2015 03:17:28 PM) (Source: Application Error) (User: )
Description: Faulting application name: Report32.exe, version: 9.1.2.2329, time stamp: 0x6aee465b
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0x80000003
Fault offset: 0x1a114f8e
Faulting process id: 0x16b0
Faulting application start time: 0xReport32.exe0
Faulting application path: Report32.exe1
Faulting module path: Report32.exe2
Report Id: Report32.exe3

Error: (06/09/2015 08:31:54 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1".Error in manifest or policy file "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2" on line UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (06/09/2015 07:49:56 AM) (Source: Application Hang) (User: )
Description: The program Report32.exe version 9.1.2.2329 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 2f84

Start Time: 01d0a221b95a64f4

Termination Time: 41465

Application Path: C:\Program Files (x86)\ACI32\Applications\Report32.exe

Report Id: 7658ea3a-0eb6-11e5-aefb-d067e5234772

Error: (06/09/2015 07:45:23 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2640021731-618623992-2502750936-1000.bak).  hr = 0x80070539, The security ID structure is invalid.
.


Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {afe7bb7e-88bd-44c6-ba34-1c6fd6f377af}

Error: (06/09/2015 07:30:42 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2640021731-618623992-2502750936-1000.bak).  hr = 0x80070539, The security ID structure is invalid.
.


Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {c84fc95f-2eca-47e2-9ee6-5d16ebe44c9c}

Error: (06/08/2015 09:55:59 PM) (Source: Microsoft-Windows-User Profiles Service) (User: rob-PC)
Description: Windows cannot load the user's profile but has logged you on with the default profile for the system.

 DETAIL - Access is denied.

Error: (06/08/2015 06:53:51 PM) (Source: Adobe Reader) (User: )
Description:


System errors:
=============
Error: (06/10/2015 01:55:46 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{9FC1CC1B-4991-454A-AC79-07FE0E8FA27F} because another computer on the network has the same name.  The server could not start.

Error: (06/08/2015 00:29:51 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{9FC1CC1B-4991-454A-AC79-07FE0E8FA27F} because another computer on the network has the same name.  The server could not start.

Error: (06/06/2015 02:27:51 PM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/05/2015 01:06:27 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (06/05/2015 00:47:33 PM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/05/2015 00:43:01 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (06/04/2015 02:56:14 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{9FC1CC1B-4991-454A-AC79-07FE0E8FA27F} because another computer on the network has the same name.  The server could not start.

Error: (06/03/2015 02:49:40 PM) (Source: NetBT) (User: )
Description: The name "WORKGROUP      :1d" could not be registered on the interface with IP address 192.168.1.22.
The computer with the IP address 192.168.1.15 did not allow the name to be claimed by
this computer.

Error: (06/02/2015 09:24:19 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{9FC1CC1B-4991-454A-AC79-07FE0E8FA27F} because another computer on the network has the same name.  The server could not start.

Error: (06/02/2015 10:12:40 AM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (06/10/2015 00:14:46 PM) (Source: SideBySide)(User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"C:\Program Files\Microsoft Office 15\root\office15\lync.exe.ManifestC:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL1

Error: (06/10/2015 11:39:47 AM) (Source: Application Error)(User: )
Description: Report32.exe9.1.2.23296aee465bunknown0.0.0.000000000c00000050018131316b001d0a2e405fdb434C:\Program Files (x86)\ACI32\Applications\Report32.exeunknown114c1cef-0fa0-11e5-aefb-d067e5234772

Error: (06/09/2015 09:56:00 PM) (Source: Microsoft-Windows-User Profiles Service)(User: rob-PC)
Description: Access is denied.

Error: (06/09/2015 03:17:28 PM) (Source: Application Error)(User: )
Description: Report32.exe9.1.2.23296aee465bunknown0.0.0.000000000800000031a114f8e16b001d0a2e405fdb434C:\Program Files (x86)\ACI32\Applications\Report32.exeunknown4f9f9cf5-0ef5-11e5-aefb-d067e5234772

Error: (06/09/2015 08:31:54 AM) (Source: SideBySide)(User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"C:\Program Files\Microsoft Office 15\root\office15\lync.exe.ManifestC:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL1

Error: (06/09/2015 07:49:56 AM) (Source: Application Hang)(User: )
Description: Report32.exe9.1.2.23292f8401d0a221b95a64f441465C:\Program Files (x86)\ACI32\Applications\Report32.exe7658ea3a-0eb6-11e5-aefb-d067e5234772

Error: (06/09/2015 07:45:23 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2640021731-618623992-2502750936-1000.bak)0x80070539, The security ID structure is invalid.


Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {afe7bb7e-88bd-44c6-ba34-1c6fd6f377af}

Error: (06/09/2015 07:30:42 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2640021731-618623992-2502750936-1000.bak)0x80070539, The security ID structure is invalid.


Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {c84fc95f-2eca-47e2-9ee6-5d16ebe44c9c}

Error: (06/08/2015 09:55:59 PM) (Source: Microsoft-Windows-User Profiles Service)(User: rob-PC)
Description: Access is denied.

Error: (06/08/2015 06:53:51 PM) (Source: Adobe Reader)(User: )
Description:


=========================== Installed Programs ============================

Accidental Damage Services Agreement (HKLM-x32\...\{EF85FEF4-EB92-4075-A6D2-5F519BB30A2C}) (Version: 2.0.0 - Dell Inc.)
ACI Collection For Windows 2012 (HKLM-x32\...\{03EBDBBF-20E5-4910-B406-533412F40BB6}) (Version: 1.00.168 - ACI)
ACI Core Files (HKLM-x32\...\{C1067095-24AB-4BCD-B64B-BE83A9186DCE}) (Version: 2010 - )
ACI Desktop Additional Components  (HKLM-x32\...\{B91E86A0-9F63-4E7E-9D53-2C0AB67BE15C}) (Version: 1.00.069 - ACI)
Ad-Aware Web Companion (HKLM-x32\...\{902C3D36-9254-437D-98AC-913B78E60864}) (Version: 1.1.922.1860 - Lavasoft) Hidden
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
ANT Drivers Installer x64 (HKLM\...\{431CE782-4C51-4996-B36F-5D98D5527538}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apex Medina v4 Appraiser (HKLM-x32\...\Apex Medina v4 Appraiser) (Version:  - )
Apex Sketch v5 Standard (HKLM-x32\...\Apex Sketch v5 Standard) (Version: 5.3 - Apex Software)
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.5.0.909 - AVG Technologies)
Banctec Service Agreement (HKLM-x32\...\{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}) (Version: 2.0.0 - Dell Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
ColorTouch Assistant (HKLM-x32\...\{30553225-440D-ABAC-DB17-4712C016A9C5}) (Version: 3.10.3 - Venstar, Inc) Hidden
ColorTouch Assistant (HKLM-x32\...\com.venstar.ColorTouch.Assistant) (Version: 3.10.3 - Venstar, Inc)
Complete Care Business Service Agreement (HKLM-x32\...\{0ECFCB07-9BFE-4970-ACA1-D568D982760B}) (Version: 2.0.0 - Dell Inc.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.50.4.0 - Conexant)
Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DataMaster CRMLS (HKLM-x32\...\DataMaster CRMLS) (Version: 4.55.5637.28020 - Market Data Service LLC)
DataMaster LA Basin (HKLM-x32\...\DataMaster LA Basin) (Version: 4.55.5239.17204 - Market Data Service LLC)
DataMaster SOCALMLS (HKLM-x32\...\DataMaster SOCALMLS) (Version: 4.55.4428.25457 - Market Data Service LLC)
Dell Data Vault (HKLM\...\{2E55EEFD-2162-4A7D-9158-EDB0305603A6}) (Version: 4.2.2.0 - Dell Inc.) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.61 - Dell Inc.)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.61 - Dell Inc.)
Dell DataSafe Online (HKLM-x32\...\{C53BCCBE-9268-4C09-82E9-611444A73B3F}) (Version: 2.10.1.3 - Dell)
Dell Digital Delivery (HKLM-x32\...\{AFC08A81-D3C5-46F4-8F08-876E4BA606EA}) (Version: 1.7.4502.0 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Home Systems Service Agreement (HKLM-x32\...\{AB2FDE4F-6BED-4E9E-B676-3DCCEBB1FBFE}) (Version: 2.0.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.0.6584.81 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.0.3.60494 - Dell)
DirectX 9 Runtime (HKLM-x32\...\{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}) (Version: 1.00.0000 - Sonic Solutions) Hidden
DriverUpdate (HKLM-x32\...\{65C92136-6AF0-4E70-88D2-D19E739CE285}) (Version: 2.2.35415 - SlimWare Utilities, Inc.)
Elevated Installer (HKLM-x32\...\{7E73C9A3-24D9-4D7F-B4C7-7E4AFE0ADCCB}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{50755d67-ae60-4e47-b3d6-ce44d01b5a95}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{9FB8EC5B-03EE-463E-8F4F-84B525B986B7}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (HKLM-x32\...\{1D91CBB5-4CB1-4757-B0FD-2122AF8AAB9E}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Garmin WebUpdater (HKLM-x32\...\{F4DA4C73-026F-4D38-8C6B-85F0193E4B56}) (Version: 2.5.6 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.27.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2291 - Intel Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LavasoftTcpService (HKLM-x32\...\{90CF05DE-735F-42AB-A52A-F447FDFBE207}) (Version: 2.3.3.0 - Lavasoft) Hidden
McAfee AntiVirus Plus (HKLM-x32\...\MSC) (Version: 14.0.1029 - McAfee, Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.316 - McAfee, Inc.)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4719.1002 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
PDF-XChange 3 (HKLM-x32\...\PDF-XChange 3_is1) (Version:  - Tracker Software)
PhotoShowExpress (HKLM-x32\...\{3250260C-7A95-4632-893B-89657EB5545B}) (Version: 2.0.063 - Sonic Solutions) Hidden
QualxServ Service Agreement (HKLM-x32\...\{903679E8-44C8-4C07-9600-05C92654FC50}) (Version: 2.0.0 - Dell Inc.)
RBVirtualFolder64Inst (HKLM\...\{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}) (Version: 1.00.0000 - Roxio, Inc.) Hidden
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)
Roxio File Backup (HKLM\...\{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}) (Version: 1.3.2 - Roxio) Hidden
Sonic CinePlayer Decoder Pack (HKLM-x32\...\{9A00EC4E-27E1-42C4-98DD-662F32AC8870}) (Version: 4.3.0 - Sonic Solutions) Hidden
Web Companion (HKLM-x32\...\{902C3D36-9254-437D-98AC-913B78E60864}_WebCompanion) (Version: 1.1.922.1860 - Lavasoft)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 69%
Total physical RAM: 2984.63 MB
Available physical RAM: 899.83 MB
Total Pagefile: 5967.46 MB
Available Pagefile: 2358.33 MB
Total Virtual: 4095.88 MB
Available Virtual: 3946.49 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:449.57 GB) (Free:383.21 GB) NTFS

========================= Users: ========================================

User accounts for \\ROB-PC

Administrator            Guest                    rob                      

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

02-06-2015 16:55:53 Windows Update
09-06-2015 14:30:41 AA11
09-06-2015 14:45:10 Windows Update

**** End of log ****



#13 harrisrj

harrisrj
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:54 AM

Posted 10 June 2015 - 04:46 PM

that was the mini tool box, now the other one.  thanks.

 

Results of screen317's Security Check version 1.003  
 Windows 7 Service Pack 1 x64 (UAC is disabled!)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
McAfee Anti-Virus and Anti-Spyware   
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Ad-Aware
 Java 8 Update 45  
 Mozilla Firefox (38.0.5)
 Google Chrome (43.0.2357.124)
 Google Chrome (43.0.2357.81)
````````Process Check: objlist.exe by Laurent````````  
 Ad-Aware AAWService.exe is disabled!
 Ad-Aware AAWTray.exe is disabled!
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````



#14 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:07:54 PM

Posted 12 June 2015 - 02:12 PM

Hello there,

Apologies for the late reply - I accidently overlooked your topic.

Please uninstall the following software from Programs and Features:

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.5.0.909 - AVG Technologies)
DriverUpdate (HKLM-x32\...\{65C92136-6AF0-4E70-88D2-D19E739CE285}) (Version: 2.2.35415 - SlimWare Utilities, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)

If you run into any issues, let me know.

After that please perform a clean boot using instructions here, then download Revo Uninstaller Portable Free from here and use it to uninstall Lavasoft Ad-Aware.

Then please run this.

Emsisoft Emergency Kit

Please download Emsisoft Emergency Kit and save it to your desktop. Double click on the EmsisoftEmergencyKit file you downloaded to extract its contents and create a shortcut on the desktop. Leave all settings as they are and click the Extract button at the bottom. A folder named EEK will be created in the root of the drive (usually c:\).
  • After extraction please double-click on the new Start Emsisoft Emergency Kit icon on your desktop.
  • The first time you launch it, Emsisoft Emergency Kit will recommend that you allow it to download updates. Please click Yes so that it downloads the latest database updates.
  • When the update process is complete, a new button will appear in the lower-left corner that says Back. Click on this button to return to the Overview screen.
  • Click on Scan to be taken to the scan options. If you are asked if you want the scanner to scan for Potentially Unwanted Programs, then click Yes.
  • Click on the Full Scan button to start the scan.
  • When the scan is completed click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
  • When the threats have been quarantined, click the View report button in the lower-right corner, and the scan log will be opened in Notepad.
  • Please save the log in Notepad on your desktop, and attach it to your next reply.
  • When you close Emsisoft Emergency Kit, it will give you an option to sign up for a newsletter. This is optional, and is not necessary for the malware removal process.
Regards,
Alex

#15 harrisrj

harrisrj
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:54 AM

Posted 13 June 2015 - 12:20 AM

Thanks. I uninstalled each of those items and followed the other instructions.  Here is the log:

 

Emsisoft Emergency Kit - Version 9.0
Last update: 6/12/2015 6:33:03 PM
User account: rob-PC\rob

Scan settings:

Scan type: Full Scan
Objects: Rootkits, Memory, Traces, C:\, Q:\

Detect PUPs: On
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off

Scan start:    6/12/2015 6:33:49 PM
C:\ProgramData\apn     detected: Application.AppInstall (A)
C:\Program Files (x86)\DriverUpdate     detected: Application.InstallDrive (A)
C:\Users\rob\AppData\Local\SlimWare Utilities Inc\DriverUpdate     detected: Application.InstallDrive (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}     detected: Application.AdSend (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}     detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{95B7759C-8C7F-4BF1-B163-73684A933233}     detected: Application.BHO (A)
Key: HKEY_USERS\S-1-5-21-2640021731-618623992-2502750936-1000.BAK\SOFTWARE\SLIMWARE UTILITIES INC\DRIVERUPDATE     detected: Application.InstallDrive (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\SLIMWARE UTILITIES INC\DRIVERUPDATE     detected: Application.InstallDrive (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C1F5E799-B218-4C32-B189-3C389BA140BB}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{F60C9408-3110-4C98-A139-ABE1EE1111DD}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C1F5E799-B218-4C32-B189-3C389BA140BB}     detected: Adware.Superfish (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{F60C9408-3110-4C98-A139-ABE1EE1111DD}     detected: Adware.Superfish (A)

Scanned    319638
Found    26

Scan end:    6/12/2015 7:45:50 PM
Scan time:    1:12:01

C:\ProgramData\apn    Quarantined Application.AppInstall (A)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users