Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Was my new Win10 PC infected by Malware?


  • Please log in to reply
2 replies to this topic

#1 Taffy_078

Taffy_078

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:36 PM

Posted 18 March 2016 - 12:40 AM

I don't normally cross-post between Forums but being honest I have to declare that in this instance I have. But please may I explain.

 

Waiting for Tri-Peaks Solitaire to load, I was so disappointed to see a half-naked young lady in a bikini with the tag "Nude Plus-size models deemed too sexy for TV" and an invitation to "Watch the Video!!" It was from "I love Video.tv.

 

(A few days later another similar ad appeared, about ladies clothes.)

 

I wasn't disappointed just because my wife walked in at that moment and boxed my ears but also surprised that it has taken Microsoft so long to descend into those depths just to make a buck or two.

 

I posted in the MS Forum and of course there has been some mickey-taking along the lines of "that'll teach you to search the internet for such things" - which I don't, honestly!!

 

I continue to blame Microsoft (or one of the companies to whom they sell my cookies) because since I've changed my settings relating to ads, I haven't had another I loveVideo,tv advert.

 

There was a suggestion that I'd been infected by Malware which, being me I rubbished. I'd run MBAM and that found nothing. But I then ran AdwCleaner and it removed three or four entries.

 

Would you please be good enough to let me know if I could post the AdwCleaner report here for someone to check out if any of those entries relate to this blasted Advert?

 

Hoping you can help, again.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:36 AM

Posted 18 March 2016 - 10:25 AM

hi, yes please post I here and these also.
Quick
3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
Long
cvMlKv6.pngESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Taffy_078

Taffy_078
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:36 PM

Posted 19 March 2016 - 05:10 AM

Hello boopme. Sorry for the delay but my new PC had a strange moment yesterday. I've explained at the end below what happened in case it affected some of the results I'm about to post.

 

The ESET was fine - no threats found.

 

Here are the results of the MiniToolBox scan and I look forward to hearing the outcome. Thanks for your help.

 

 

MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by Dad (administrator) on 19-03-2016 at 07:45:46
Running from "C:\Users\dcyew\Desktop"
Microsoft Windows 10 Home  (X64)
Model: HP ENVY Notebook Manufacturer: HP
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
========================= IP Configuration: ================================

Intel® Dual Band Wireless-AC 3165 = Wi-Fi (Connected)
Realtek PCIe GBE Family Controller = Ethernet (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 5" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : NewHPLaptop
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : B0-5A-DA-57-F6-74
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Local Area Connection* 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 34-02-86-71-2F-D3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Intel® Dual Band Wireless-AC 3165
   Physical Address. . . . . . . . . : 34-02-86-71-2F-D2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::f06a:30cb:9eec:6ecf%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.72(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 18 March 2016 18:07:28
   Lease Expires . . . . . . . . . . : 20 March 2016 05:04:42
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 87294598
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1D-77-19-15-B0-5A-DA-57-F6-74
   DNS Servers . . . . . . . . . . . : 192.168.1.254
                                       192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 34-02-86-71-2F-D6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:d2:256c:3f57:feb7(Preferred)
   Link-local IPv6 Address . . . . . : fe80::d2:256c:3f57:feb7%17(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 385875968
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1D-77-19-15-B0-5A-DA-57-F6-74
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.home:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  BTHomeHub.home
Address:  192.168.1.254

Name:    google.com
Address:  216.58.198.206

Pinging google.com [216.58.198.206] with 32 bytes of data:
Reply from 216.58.198.206: bytes=32 time=12ms TTL=54
Reply from 216.58.198.206: bytes=32 time=12ms TTL=54

Ping statistics for 216.58.198.206:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 12ms, Maximum = 12ms, Average = 12ms
Server:  BTHomeHub.home
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  206.190.36.45
   98.139.183.24
   98.138.253.109

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=96ms TTL=46
Reply from 98.139.183.24: bytes=32 time=98ms TTL=46

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 96ms, Maximum = 98ms, Average = 97ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...b0 5a da 57 f6 74 ......Realtek PCIe GBE Family Controller
 10...34 02 86 71 2f d3 ......Microsoft Wi-Fi Direct Virtual Adapter
 12...34 02 86 71 2f d2 ......Intel® Dual Band Wireless-AC 3165
 19...34 02 86 71 2f d6 ......Bluetooth Device (Personal Area Network)
  1...........................Software Loopback Interface 1
 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.72     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.72    281
     192.168.1.72  255.255.255.255         On-link      192.168.1.72    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.72    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.72    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.72    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 17    306 ::/0                     On-link
  1    306 ::1/128                  On-link
 17    306 2001::/32                On-link
 17    306 2001:0:9d38:6ab8:d2:256c:3f57:feb7/128
                                    On-link
 12    281 fe80::/64                On-link
 17    306 fe80::/64                On-link
 17    306 fe80::d2:256c:3f57:feb7/128
                                    On-link
 12    281 fe80::f06a:30cb:9eec:6ecf/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
 17    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55808] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [51712] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [80896] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/18/2016 10:40:45 PM) (Source: Office 2016 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073418220

Error: (03/17/2016 06:47:09 PM) (Source: Office 2016 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073418220

Error: (03/17/2016 07:37:53 AM) (Source: Application Error) (User: )
Description: Faulting application name: IEXPLORE.EXE, version: 11.0.10586.20, time stamp: 0x56541caa
Faulting module name: AdblockPlus32.dll, version: 1.5.0.0, time stamp: 0x56017e35
Exception code: 0xc0000005
Fault offset: 0x00013b86
Faulting process ID: 0x1a5c
Faulting application start time: 0xIEXPLORE.EXE0
Faulting application path: IEXPLORE.EXE1
Faulting module path: IEXPLORE.EXE2
Report ID: IEXPLORE.EXE3
Faulting package full name: IEXPLORE.EXE4
Faulting package-relative application ID: IEXPLORE.EXE5

Error: (03/17/2016 01:17:30 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: NEWHPLAPTOP)
Description: Activation of application Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App failed with error: -2147024770 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (03/16/2016 06:57:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NEWHPLAPTOP)
Description: Activation of application Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App failed with error: -2147024770 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (03/16/2016 06:47:09 PM) (Source: Office 2016 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073418220

Error: (03/16/2016 06:42:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NEWHPLAPTOP)
Description: Activation of application Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App failed with error: -2147024770 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (03/16/2016 06:32:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NEWHPLAPTOP)
Description: Activation of application Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App failed with error: -2147024770 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (03/16/2016 06:27:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NEWHPLAPTOP)
Description: Activation of application Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App failed with error: -2147024770 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (03/16/2016 06:22:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NEWHPLAPTOP)
Description: Activation of application Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App failed with error: -2147024770 See the Microsoft-Windows-TWinUI/Operational log for additional information.

System errors:
=============
Error: (03/19/2016 12:32:45 AM) (Source: Service Control Manager) (User: )
Description: The User Data Access_4b20ed service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/19/2016 12:32:45 AM) (Source: Service Control Manager) (User: )
Description: The User Data Storage_4b20ed service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/19/2016 12:32:45 AM) (Source: Service Control Manager) (User: )
Description: The Contact Data_4b20ed service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/19/2016 12:32:45 AM) (Source: Service Control Manager) (User: )
Description: The Sync Host_4b20ed service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/19/2016 12:32:45 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (03/18/2016 06:44:35 PM) (Source: Service Control Manager) (User: )
Description: The User Data Access_21c76e service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/18/2016 06:44:35 PM) (Source: Service Control Manager) (User: )
Description: The User Data Storage_21c76e service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/18/2016 06:44:35 PM) (Source: Service Control Manager) (User: )
Description: The Contact Data_21c76e service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/18/2016 06:44:35 PM) (Source: Service Control Manager) (User: )
Description: The Sync Host_21c76e service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/18/2016 06:44:34 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Microsoft Office Sessions:
=========================
Error: (03/18/2016 10:40:45 PM) (Source: Office 2016 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073418220

Error: (03/17/2016 06:47:09 PM) (Source: Office 2016 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073418220

Error: (03/17/2016 07:37:53 AM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.10586.2056541caaAdblockPlus32.dll1.5.0.056017e35c000000500013b861a5c01d1801d2a6fa5daC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Program Files\Adblock Plus for IE\AdblockPlus32.dlldf0ce5e4-1b9a-4839-8f31-299ea3224370

Error: (03/17/2016 01:17:30 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: NEWHPLAPTOP)
Description: Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App-2147024770

Error: (03/16/2016 06:57:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NEWHPLAPTOP)
Description: Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App-2147024770

Error: (03/16/2016 06:47:09 PM) (Source: Office 2016 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073418220

Error: (03/16/2016 06:42:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NEWHPLAPTOP)
Description: Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App-2147024770

Error: (03/16/2016 06:32:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NEWHPLAPTOP)
Description: Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App-2147024770

Error: (03/16/2016 06:27:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NEWHPLAPTOP)
Description: Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App-2147024770

Error: (03/16/2016 06:22:05 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NEWHPLAPTOP)
Description: Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App-2147024770

CodeIntegrity Errors:
===================================
  Date: 2016-03-16 05:25:54.576
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-13 06:22:15.642
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-12 08:26:02.002
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-10 17:32:47.937
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-09 06:19:55.870
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-02 08:21:41.729
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-02 07:27:45.095
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-02-23 05:48:59.831
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-02-19 07:26:56.476
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-02-11 13:18:36.274
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 7647.12 MB
Available physical RAM: 4522.02 MB
Total Virtual: 15583.12 MB
Available Virtual: 12108.84 MB

========================= Partitions: =====================================

1 Drive c: (Windows) (Fixed) (Total:915.63 GB) (Free:853.55 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:14.7 GB) (Free:1.76 GB) NTFS

========================= Users: ========================================

User accounts for \\NEWHPLAPTOP

Administrator            Dad                      DefaultAccount          
Guest                   

**** End of log ****

 

 

My new laptop was screwed up by the January WUs and it was only a few days ago that my OEW (HP) weaved some magic and got it back to normal.
Yesterday I saved MiniToolBox to my Desktop but it didn't show. That happened three times. Then whenever I tried to close a windows in IE11 nothing happened and eventually with five IE windows on my bottom task bar showing the "something happening" revolving circle of dots. (What's that called, btw?)

I ended up closing the IE11 programs using Task Manager.

I couldn't drag icons into the recycle bin. After I emptied it with Ccleaner the icon still showed full even though it was empty and then I couldn't run MBAM to check my PC. When I clicked on MBAM to run as Administrator it asked me to confirm I want it to run and when I did nothing happened. It was as if I had two desktop screens open (which I hadn't) but could only see one of them. I decided to restart my laptop - after ten or so minutes it was still trying to restart so I decided to stop it. None of the normal keys worked so I had to depress the power button for 5 seconds. Gave it 5 minutes, powered up and everything was working fine!






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users