Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Directed here from the Security /virus/malware forum


  • This topic is locked This topic is locked
6 replies to this topic

#1 tadpole90

tadpole90

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:01:24 AM

Posted 05 November 2015 - 09:37 AM

Hallo

 

I was directed here by Nasdaq, to get help from a Windows 7 expert.  Here is the link to the thread that we had http://www.bleepingcomputer.com/forums/t/594063/unable-to-get-rid-of-cwindowssyswow64-wkernelsylvir/

 

I have Windows 7 Home Premium 64-bit operating system and mainly use IE 11 to browse.  I am having problems loading pages, they often appear blank, yet when I right click the screen and view source, the code is all there.  My email account takes a long time to load and then when I click to open a mail, nothing happens.  It can take me an hour to view 2 or 3 emails.  I also found another  file on my system that constantly returns after being quarantined : 

 

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\internet explorer\toolbar]
"Locked"=dword:00000000

 

HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar]
"Locked"=dword:00000000
[HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar\QuickComplete]

 

Thank you

 



BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 56,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:24 PM

Posted 05 November 2015 - 12:15 PM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#3 tadpole90

tadpole90
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:01:24 AM

Posted 06 November 2015 - 08:23 AM

Thank you for your reply and instructions. Here is the MTB.txt

MiniToolBox by Farbar Version: 02-11-2015
Ran by user (administrator) on 06-11-2015 at 15:19:23
Running from "C:\Users\user\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Model: Inspiron 5521 Manufacturer: Dell Inc.

Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/05/2015 03:10:48 PM) (Source: Application Hang) (User: )
Description: The program NOTEPAD.EXE version 6.1.7601.18917 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: b50
Start Time: 01d117cb37d0afe7
Termination Time: 3
Application Path: C:\Windows\system32\NOTEPAD.EXE
Report Id: 97bb7afa-83be-11e5-a847-74867a19cd03

Error: (11/01/2015 05:21:48 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c.manifest.
Component 2: C:\Program Files\PowerDataRecovery\Microsoft.VC90.CRT.MANIFEST.

Error: (11/01/2015 05:21:47 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c.manifest.
Component 2: C:\Program Files\PowerDataRecovery\Microsoft.VC90.CRT.MANIFEST.

Error: (11/01/2015 05:11:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.

Error: (11/01/2015 02:44:46 PM) (Source: System Restore) (User: )
Description: An unspecified error occurred during System Restore: (Installed Microsoft Fix it 50475). Additional information: 0x80070057.

Error: (11/01/2015 02:04:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.  Invalid Xml syntax.

Error: (11/01/2015 12:05:48 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.  Invalid Xml syntax.

Error: (11/01/2015 12:04:20 PM) (Source: Application Error) (User: )
Description: Faulting application name: chrome.exe, version: 46.0.2490.80, time stamp: 0x56262c73
Faulting module name: chrome.dll, version: 46.0.2490.80, time stamp: 0x56262781
Exception code: 0x80000003
Fault offset: 0x000170a6
Faulting process id: 0xda0
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3

Error: (11/01/2015 12:02:59 PM) (Source: Application Error) (User: )
Description: Faulting application name: chrome.exe, version: 46.0.2490.80, time stamp: 0x56262c73
Faulting module name: chrome.dll, version: 46.0.2490.80, time stamp: 0x56262781
Exception code: 0x80000003
Fault offset: 0x000170a6
Faulting process id: 0x1228
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3

Error: (11/01/2015 12:02:36 PM) (Source: Application Error) (User: )
Description: Faulting application name: chrome.exe, version: 46.0.2490.80, time stamp: 0x56262c73
Faulting module name: chrome.dll, version: 46.0.2490.80, time stamp: 0x56262781
Exception code: 0x80000003
Fault offset: 0x000170a6
Faulting process id: 0x121c
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3

System errors:
=============
Error: (11/06/2015 02:57:57 PM) (Source: Service Control Manager) (User: )
Description: The Wireless PAN DHCP Server service terminated unexpectedly. It has done this 1 time(s).

Error: (11/06/2015 02:57:56 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:  ntcdrdrv

Error: (11/06/2015 02:57:56 PM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service hung on starting.

Error: (11/06/2015 02:57:01 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (11/05/2015 02:37:20 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (11/05/2015 02:36:53 PM) (Source: Service Control Manager) (User: )
Description: The Wireless PAN DHCP Server service terminated unexpectedly. It has done this 1 time(s).

Error: (11/05/2015 02:36:52 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:  ntcdrdrv

Error: (11/03/2015 01:52:49 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 43. The internal error state is 252.

Error: (11/03/2015 01:52:49 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 43. The internal error state is 252.

Error: (11/03/2015 01:45:51 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 43. The internal error state is 252.

Microsoft Office Sessions:
=========================
Error: (11/05/2015 03:10:48 PM) (Source: Application Hang)(User: )
Description: NOTEPAD.EXE6.1.7601.18917b5001d117cb37d0afe73C:\Windows\system32\NOTEPAD.EXE97bb7afa-83be-11e5-a847-74867a19cd03

Error: (11/01/2015 05:21:48 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_ none_08e4299fa83d7e3c. manifestC:\Program Files\PowerDataRecovery\Microsoft.VC90.CRT.MANIFESTC:\Program Files\PowerDataRecovery\PowerDataRecovery.exe

Error: (11/01/2015 05:21:47 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c. manifestC:\Program Files\PowerDataRecovery\Microsoft.VC90.CRT.MANIFESTC:\Program Files\PowerDataRecovery\powerdatarecovery.exe

Error: (11/01/2015 05:11:43 PM) (Source: SideBySide)(User: )
Description: C:\Downloads\Software\spreadsheets_free.exeC:\Downloads\Software\spreadsheets_free.exe0

Error: (11/01/2015 02:44:46 PM) (Source: System Restore)(User: )
Description: Installed Microsoft Fix it 504750x80070057

Error: (11/01/2015 02:04:17 PM) (Source: SideBySide)(User: )
Description: C:\Downloads\Software\spreadsheets_free.exeC:\Downloads\Software\spreadsheets_free.exe0

Error: (11/01/2015 12:05:48 PM) (Source: SideBySide)(User: )
Description: C:\Downloads\Software\spreadsheets_free.exeC:\Downloads\Software\spreadsheets_free.exe0

Error: (11/01/2015 12:04:20 PM) (Source: Application Error)(User: )
Description: chrome.exe46.0.2490.8056262c73chrome.dll46.0.2490.805626278180000003000170a6da001d1148cacfc0cdfC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\chrome.dlleab21d41-807f-11e5-ac6e-74867a19cd03

Error: (11/01/2015 12:02:59 PM) (Source: Application Error)(User: )
Description: chrome.exe46.0.2490.8056262c73chrome.dll46.0.2490.805626278180000003000170a6122801d1148c7cc80045C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\chrome.dllba7e10a6-807f-11e5-ac6e-74867a19cd03

Error: (11/01/2015 12:02:36 PM) (Source: Application Error)(User: )
Description: chrome.exe46.0.2490.8056262c73chrome.dll46.0.2490.805626278180000003000170a6121c01d1148c6f5096aaC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\chrome.dllad04ab44-807f-11e5-ac6e-74867a19cd03

CodeIntegrity Errors:
===================================
Date: 2015-11-01 13:03:55.564
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-01 13:03:55.533
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-21 15:29:16.834
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-21 15:29:16.803
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-21 15:29:16.771
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-21 15:29:16.740
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-19 15:32:51.610
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-19 15:32:51.564
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-19 15:32:51.532
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-19 15:32:51.501
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

=========================== Installed Programs ============================
ABBYY FineReader 6.0 Sprint (HKLM-x32\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.2146.41621 - ABBYY Software House)
Adobe Flash Media Live Encoder 3.2 (HKLM-x32\...\{0659E943-DDF4-44FC-9FEE-A13B09F8BB08}) (Version: 3.2.0 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.170 - Adobe Systems Incorporated)
Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Any Video Converter 5.8.3 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Arles Image Web Page Creator 8.3.1 (HKLM-x32\...\Arles Image Web Page Creator_is1) (Version: - )
Article Wizard (HKLM\...\Article Wizard) (Version: 1.0.0 - Article Wizard)
Ashampoo WinOptimizer Free v.1.0.0 (HKLM-x32\...\{4209F371-393F-E3AF-1440-2EAD843B93B4}_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
AX88772 (HKLM-x32\...\{CAAF899F-D15F-480F-AF10-22B1431A5E9F}) (Version: 1.00.0000 - )
BlackBerry Desktop Software 7.1 (HKLM-x32\...\{BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}) (Version: 7.1.0.41 - Research In Motion Ltd.) Hidden
BlackBerry Desktop Software 7.1 (HKLM-x32\...\BlackBerry_Desktop) (Version: 7.1.0.41 - Research In Motion Ltd.)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.00 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Core FTP LE (x64) (HKLM-x32\...\CoreFTP(x64)) (Version: - )
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 16.3.7.0 - Synaptics Incorporated)
eBay (HKLM-x32\...\{A8B88634-7F90-402F-B66A-86429755F6A5}) (Version: 1.4.0 - eBay Inc.)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Free Download Manager 3.9.3 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.28.15 - Google Inc.) Hidden
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version: - Richard)
HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - )
ICQ7.2 (HKLM-x32\...\{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}) (Version: 7.2 - ICQ)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel® PROSet/Wireless for Bluetooth® + High Speed (HKLM\...\{90F00673-A276-4A58-B675-B426D39D1E09}) (Version: 15.3.0.0398 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{B9EE2364-A67C-40DD-8413-495E2C7FBCD0}) (Version: 2.1.2.0206 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
Intel® Turbo Boost Technology Monitor 2.6 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.6.2.0 - Intel)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.7.248 - Intel Corporation)
Intel® WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Intel® PROSet/Wireless WiFi Software (HKLM\...\{ECE5B218-A086-4E18-A362-D11181681457}) (Version: 15.03.1000.1637 - Intel Corporation)
JustCamIt 2.1.0 (HKLM-x32\...\JustCamIt2.1.0) (Version: 2.1.0 - iStreaming Networks LLC)
Keyword Advisor Pro (HKLM\...\Keyword Advisor Pro) (Version: 1.0.0 - Keyword Advisor Pro)
Lexmark Printable Web (HKLM-x32\...\{D2C5E510-BE6D-42CC-9F61-E4F939078474}) (Version: 1.0.0.0 - )
Lexmark Pro200-S500 Series (HKLM\...\Lexmark Pro200-S500 Series) (Version: - Lexmark International, Inc.)
Lexmark Tools for Office (HKLM-x32\...\{10812DE7-2E57-4740-B226-6B3BE34AF9D7}) (Version: 1.29.0.0 - )
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office XP Professional with FrontPage (HKLM-x32\...\{90280409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Office XP Web Components (HKLM-x32\...\{90260409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mobirise (HKLM-x32\...\Mobirise_is1) (Version: - )
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MWSnap 3 (HKLM-x32\...\MWSnap 3) (Version: 3.0.0.74 - Mirek Wojtowicz)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.9 - Notepad++ Team)
Pin It (HKLM-x32\...\Pin It_is1) (Version: 0.0.4 - Pinterest)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6788 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
Replay Converter 3 (HKLM-x32\...\Replay Converter 3) (Version: 3.60 - Applian Technologies Inc.)
SD Download Manager (HKCU\...\SD Download Manager 2.0.1.6) (Version: 2.0.1.6 - SD Download Manager)
SD Download Manager (HKLM-x32\...\{7431D666-8ACC-4C1C-9BB1-8DD5AF05299A}) (Version: 2.0.1.6 - SD Download Manager) Hidden
SiteSpinner V2 (HKLM-x32\...\{01ADD994-DF5D-4AC6-83EE-D40EF5EDDBFF}) (Version: 2.92.17 - Virtual Mechanics)
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.)
StrongVPN Client (HKLM-x32\...\{6EB6293C-9286-4981-8672-956E1A92F33B}_is1) (Version: 1.5.1.0 - Black Oak Computers, Inc)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - )
Traffic Travis 4.2.0 (HKLM-x32\...\Traffic Travis 4.2 Setup Wizard_is1) (Version: - Affilorama Ltd.)
Tube Pro Marketer (HKLM\...\Tube Pro Marketer) (Version: 1.0.0 - Tube Pro Marketer)
WinPatrol (HKLM-x32\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 33.1.2015.0 - Ruiware)
Wondershare Video Converter Ultimate(Build 8.4.0.0) (HKLM-x32\...\Wondershare Video Converter Ultimate_is1) (Version: 8.4.0.0 - Wondershare Software)
Wondershare Video Editor(Build 5.1.3) (HKLM-x32\...\Wondershare Video Editor_is1) (Version: - Wondershare Software)
XLovecam Flux Manager Service (HKLM-x32\...\XloveCamFluxManager) (Version: v4.6 - XLoveCam.com)
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)
Your Uninstaller! 2010 (HKLM-x32\...\YU2010_is1) (Version: 7.0 - URSoft, Inc.)

========================= Memory info: ===================================
Percentage of memory in use: 20%
Total physical RAM: 8067.36 MB
Available physical RAM: 6375.38 MB
Total Virtual: 20165.56 MB
Available Virtual: 18371.53 MB

========================= Partitions: =====================================
1 Drive c: (OS) (Fixed) (Total:916.29 GB) (Free:846.72 GB) NTFS

========================= Users: ========================================
User accounts for \\TADPOLE

Administrator Guest user

**** End of log ****


Edited by hamluis, 06 November 2015 - 10:14 AM.


#4 tadpole90

tadpole90
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:01:24 AM

Posted 06 November 2015 - 11:34 AM

And here is the speccy link.

 

http://speccy.piriform.com/results/Paqf8LfJB5jAx7EE3qGR5vT



#5 hamluis

hamluis

    Moderator


  • Moderator
  • 56,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:24 PM

Posted 06 November 2015 - 12:30 PM

You seem to have no AV installed...and your Windows firewall reflects a disabled status per Speccy.  These are security weaknesses.

 

Please review Repair Install - Windows 7 Forums - http://www.sevenforums.com/tutorials/3413-repair-install.html, paying particular attention to the sections dealing with OEM systems.  An OEM system is one sold by Dell, HP, Lenovo, et alia.

 

If this were my system...I would try the repair install procedure or simply do a factory reset.  You have already encountered (and overcome) problems trying to run the sfc /scannow command, so I don't think that would be effective in overcoming whatever ails your system.  I don't see anything which should be addressed in a somewhat different manner...but my ability to recognize problems is not necessarily infallible .

 

In any case, the best suggestion I can make...is to consider trying the repair install.

 

But...it appears to me that this system has no native support for Win 7 at the Dell site...which means that you probably cannot restore it to factory defaults and you may have an illegal install of Win 7.  I also notice that there don't seem to be any hotfixes detailed, although the "Windows install date" goes back to 2013.

 

In any case, I would try the repair install.

 

Louis


Edited by hamluis, 07 November 2015 - 10:12 AM.


#6 tadpole90

tadpole90
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:01:24 AM

Posted 07 November 2015 - 08:33 AM

Hallo Louis,

 

Thank you for your reply. 

 

1. Re " native4 support for Win 7 at the Dell site"

 

  I am not 100% sure what you mean by that. When I got this computer I made the system recovery discs, then  copied all the Dell software to a USB drive and deleted it from my computer, so I still have those file folders named as follows:

 

Dell

Dell Digital Delivery

Dell Support Centre

Dell DataSafe Local Backup 

Dell Inc

 

2.  I also notice that there don't seem to be any hotfixes detailed, although the "Windows install date" goes back to 2013.

 

I disable most  automatic updates on my computer as I have a very slow satellite internet connection.  I run them manually once a month.

 

3. You seem to have no AV installed...and your Windows firewall reflects a disabled status per Speccy.

 

I usually have Spybot on my computer but when I ran combofix.exe prior to asking for help from nasdaq, spybot was listed as *Disabled/Outdated*  I had just updated spybot, so did not know why it was reported as "outdated"  I uninstalled it, intending to reinstall once my computer was "clean"  The firewall I disabled to run a program.

 

In light of the above, I have re enabled windows update and re run Speccy in case this will make any difference to your diagnosis.  Here is the link

 

http://speccy.piriform.com/results/PUSS0TJ2kvmLBiMYO4fT8EJ

 

When I ran Magic Jellybean I get the following :

 

Windows 7 Home Premium Service Pack 1
Product Part No.: X15-37379
Installed from 'OEM' media.
Product ID: 00359-OEM-8992687-00095  match to CD Key data
CD Key: 6RBBT-F8VPQ-QCPVQ-KHRB8-RMV82
Computer Name: TADPOLE
Registered Owner: user
Registered Organization: Microsoft

 

I bought this computer from a registered computer shop, with windows 7 pre installed.
 

 

Thank you


Edited by hamluis, 07 November 2015 - 09:56 AM.


#7 hamluis

hamluis

    Moderator


  • Moderator
  • 56,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:24 PM

Posted 07 November 2015 - 10:28 AM

OK, I will attempt to elaborate :).

 

The key which you have...has widespread exposure on the Internet...which, in my mind...makes it an illegal install.  You can take that up with Microsoft, if you like but I am pretty sure that MS reps will come to the same conclusion that I have.  See Google Results .  If this was a valid key for your system, it certainly is compromised and you need to try to remedy that...via conversation/contact with MS.

 

BC Forum rules are structured so that any member indicating the use of methods to illegally install Windows or any program used by Windows...are unable to obtain any assistance that seemingly furthers the illegal use of Windows or said program.

 

Excerpt:  "No subject matter will be allowed whose purpose is to defeat existing copyright or security measures. If a user persists and/or the activity is obviously illegal the staff reserves the right to remove such content and/or ban the user. This would also mean encouraging the use or continued use of pirated software is not permitted, and subject to the same consequences."

 

No native support for Win 7 for this system...means that the system was designed to run Win 8, not Win 7...from what I see.  I see a releast date of Jun 2013, with Win 8 the installed O/S.  When I add all the apparent facts together...I come up with a Windows version that is illegally installed, I see no other conclusion that I should make.

 

In any case, you may contact me via PM if you want to discuss this further...although I feel that I have already provided you with all pertinent details which I consider worthy of consideration.

 

I suggest that you contact Microsoft if you believe that my determination is some combination of mistakes/errors regarding your current install of Win 7.

 

This topic is now closed.

 

Louis






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users