Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

XP virus protection not working possible artemis?


  • Please log in to reply
58 replies to this topic

#1 midas1968

midas1968

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 23 May 2016 - 12:00 AM

Hi Sorry I'm on a XP(believe it or not I cannot afford a newer one)

Anyway I was having my computer act up and did a system restore after it found artemis!4890a45350f7 trojan in my E drive. took care of that but after restore Mcafee said real time protection wasn't working(every time I clicked to start, it would turn back to red a second later)  Then after reboot I could not get on Firefox as it said  XPCOM Unable to Upload.   Loaded into safe mode and worked on it, at first it wouldn't run the malwarebytes but finally replaced both Firefox and Malwarebytes with new installs and that worked and installed Avast. Avast does like the Mcafee and says 

You are Unprotected
Avast background service is not running.

I can do a smart scan but when I do a full scan it says

Unable to start scan

There are no more endpoints available from the endpoint mapper.

 

I am disabled and supposedly will be getting a new computer later in the year but desperatly want to hold onto this and my info until I do.  I'm pretty clueless so hopefully you have the patience someone like me requires.

 

Thanks

J


Edited by hamluis, 23 May 2016 - 05:31 AM.
Moved from XP to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 devilus

devilus

  • Members
  • 344 posts
  • OFFLINE
  •  
  • Local time:01:16 AM

Posted 23 May 2016 - 01:34 AM

Some months ago, I too had problems with Avast on XP. Somehow it was disabled on its own. There was no protection etc.

 

I always thought I better should stay with older versions because my OS was an older one. Wrong criteria! After upgrading to the latest version, all problems I had disappeared. It works very well now.

 

Don't know which version you have installed. If not the last one, try it. Don't forget to make a custom installation and exclude the Safe Browser.

 

 


Self-built PC, Lian-Li PC-A70B, GA-EX38-DS5, Intel Core 2 Duo 3GHz, Leadtek 9600GT, Kingston 4GB DDR2, Enermax Galaxy 850W

Selective boot (F12):

Vista Ultimate SP2 32bit, installed 2008, Samsung HD502HJ (500GB, SATA)

Windows 7 Ultimate SP1 64bit, installed 2016, Samsung 850 EVO (120GB, SSD)

Linux Mint 18.3 Cinnamon 64 bit, installed 2018, Intel 320 (120GB, SSD)


#3 midas1968

midas1968
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 23 May 2016 - 01:45 AM

Thanks for your reply. Not even sure what you mean by custom installation and exclude the safe browser???

#4 devilus

devilus

  • Members
  • 344 posts
  • OFFLINE
  •  
  • Local time:01:16 AM

Posted 23 May 2016 - 01:58 AM

Thanks for your reply. Not even sure what you mean by custom installation and exclude the safe browser???

Better you should uninstall the old version, before installing the new one. You can choose between Default and Custom when running the setup. When the Custom option is chosen, there is a setup screen for Avast:

 

Attached File  Avast Custom Setup.jpg   41.73KB   0 downloads

 

 

(PS: You can also uncheck Cleanup, Browser Cleanup and Software Updater modules.)


Edited by devilus, 23 May 2016 - 02:03 AM.

Self-built PC, Lian-Li PC-A70B, GA-EX38-DS5, Intel Core 2 Duo 3GHz, Leadtek 9600GT, Kingston 4GB DDR2, Enermax Galaxy 850W

Selective boot (F12):

Vista Ultimate SP2 32bit, installed 2008, Samsung HD502HJ (500GB, SATA)

Windows 7 Ultimate SP1 64bit, installed 2016, Samsung 850 EVO (120GB, SSD)

Linux Mint 18.3 Cinnamon 64 bit, installed 2018, Intel 320 (120GB, SSD)


#5 midas1968

midas1968
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 23 May 2016 - 02:57 AM

I uninstalled and restarted and did the uncheck safe browser while installing and rebooted but it still says the same thing. Something is not allowing Mcafee or Avast to have real time protection. It also seems I cannot reboot into normal mode, it gives me the option to say No and do a system restore which I didn't do and just rebooted again into safe mode. Can you help further? Thanks

#6 devilus

devilus

  • Members
  • 344 posts
  • OFFLINE
  •  
  • Local time:01:16 AM

Posted 23 May 2016 - 03:11 AM

Do you have running both Avast and McAfee Antivirus? I wouldn't do it.

I think I couldn't help further. Sorry.


Self-built PC, Lian-Li PC-A70B, GA-EX38-DS5, Intel Core 2 Duo 3GHz, Leadtek 9600GT, Kingston 4GB DDR2, Enermax Galaxy 850W

Selective boot (F12):

Vista Ultimate SP2 32bit, installed 2008, Samsung HD502HJ (500GB, SATA)

Windows 7 Ultimate SP1 64bit, installed 2016, Samsung 850 EVO (120GB, SSD)

Linux Mint 18.3 Cinnamon 64 bit, installed 2018, Intel 320 (120GB, SSD)


#7 themantis

themantis

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:07:16 PM

Posted 23 May 2016 - 08:59 AM

I don't think you can run two AVs on the system at the same time.



#8 midas1968

midas1968
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 23 May 2016 - 04:18 PM

No I deleted the Mcafee before I installed the Avast. Including using the Mcafee removal tool to remove all Mcafee so it wouldn't conflict. Anyone know how to help me Please!!!

#9 midas1968

midas1968
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 23 May 2016 - 06:06 PM

Update. Removed Avast, tried Avira but Avira didn't work(says doesn't work in safe mode on internet) Downloaded Tweaking Windows Fix from this site and did first thing it stated(Unplug power cord and drain computer of energy) and restarted and tried to restart the program yet it would not load.

#10 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,634 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:16 PM

Posted 24 May 2016 - 08:00 AM

Hi midas1968 :)

My name is Aura and I'll be assisting you with your issue. Follow the instructions below please.

3Al62Pm.pngMiniToolBox
  • Download MiniToolBox and move the file to your Desktop;
  • Right-click on MiniToolBox.exe and select Spcusrh.pngRun as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users);
  • Check the following options:
    • Flush DNS;
    • Report IE Proxy Settings;
    • Reset IE Proxy Settings;
    • Report FF Proxy Settings;
    • Reset FF Proxy Settings;
    • List content of Hosts;
    • List IP Configuration;
    • List Winsock Entries;
    • List Last 10 Event Viewer Errors;
    • List Installed Programs;
    • List Devices - Only Problems;
    • List Users, Partitions and Memory size;
      OQmAcqS.png
  • Once this is done, click on Go and wait for the scan to complete;
  • Once the scan is complete, a log will open. Please copy/paste the content of the output log in your next reply;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#11 midas1968

midas1968
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 24 May 2016 - 04:03 PM

Thank You!!! Much appreciated! Here is the info. MiniToolBox by Farbar Version: 07-02-2016 01 Ran by Administrator (administrator) on 24-05-2016 at 16:00:34 Running from "C:\Documents and Settings\Administrator\My Documents\Downloads" Microsoft Windows XP Professional Service Pack 3 (X86) Model: Precision WorkStation 490 Manufacturer: Dell Inc. Boot Mode: Network *************************************************************************** ========================= Flush DNS: =================================== Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= 127.0.0.1 localhost ========================= IP Configuration: ================================ Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Connected) # ---------------------------------- # Interface IP Configuration # ---------------------------------- pushd interface ip # Interface IP Configuration for "Local Area Connection" set address name="Local Area Connection" source=dhcp set dns name="Local Area Connection" source=dhcp register=PRIMARY set wins name="Local Area Connection" source=dhcp popd # End of interface IP configuration Windows IP Configuration Host Name . . . . . . . . . . . . : owner-c1f3a9834 Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : attlocal.net Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : attlocal.net Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller Physical Address. . . . . . . . . : 00-18-8B-26-52-69 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.1.27 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.254 DHCP Server . . . . . . . . . . . : 192.168.1.254 DNS Servers . . . . . . . . . . . : 192.168.1.254 Lease Obtained. . . . . . . . . . : Tuesday, May 24, 2016 2:56:56 PM Lease Expires . . . . . . . . . . : Wednesday, May 25, 2016 2:56:56 PM Server: homeportal Address: 192.168.1.254 Name: google.com Address: 216.58.218.142 Pinging google.com [216.58.218.142] with 32 bytes of data: Reply from 216.58.218.142: bytes=32 time=25ms TTL=55 Reply from 216.58.218.142: bytes=32 time=24ms TTL=55 Ping statistics for 216.58.218.142: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 24ms, Maximum = 25ms, Average = 24ms Server: homeportal Address: 192.168.1.254 Name: yahoo.com Addresses: 98.138.253.109, 206.190.36.45, 98.139.183.24 Pinging yahoo.com [206.190.36.45] with 32 bytes of data: Reply from 206.190.36.45: bytes=32 time=87ms TTL=48 Reply from 206.190.36.45: bytes=32 time=85ms TTL=48 Ping statistics for 206.190.36.45: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 85ms, Maximum = 87ms, Average = 86ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms =========================================================================== Interface List 0x1 ........................... MS TCP Loopback interface 0x2 ...00 18 8b 26 52 69 ...... Broadcom NetXtreme 57xx Gigabit Controller - McAfee Core NDIS Intermediate Filter Miniport =========================================================================== =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.27 20 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1 192.168.1.0 255.255.255.0 192.168.1.27 192.168.1.27 20 192.168.1.27 255.255.255.255 127.0.0.1 127.0.0.1 20 192.168.1.255 255.255.255.255 192.168.1.27 192.168.1.27 20 224.0.0.0 240.0.0.0 192.168.1.27 192.168.1.27 20 255.255.255.255 255.255.255.255 192.168.1.27 192.168.1.27 1 Default Gateway: 192.168.1.254 =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation) Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 12 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation) Catalog9 13 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (05/23/2016 06:02:21 PM) (Source: Application Error) (User: ) Description: Fault bucket 799589932. The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected. Error: (05/23/2016 06:00:52 PM) (Source: Application Error) (User: ) Description: Faulting application repair_windows.exe, version 3.9.0.0, faulting module gdi32.dll, version 5.1.2600.6460, fault address 0x0000ef4b. Processing media-specific event for [repair_windows.exe!ws!] Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service) (User: ) Description: The entry in the hash map cannot be updated. Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service) (User: ) Description: The entry in the hash map cannot be updated. Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service) (User: ) Description: The application cannot be initialized. Context: Windows Application Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service) (User: ) Description: The gatherer object cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service) (User: ) Description: The plug-in in cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: Element not found. (0x80070490) Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service) (User: ) Description: The plug-in in cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service) (User: ) Description: The Windows Search Service cannot load the property store information. Context: Windows Application, SystemIndex Catalog Details: 0x%08x (0x80041181 - The content index server cannot find a description of the content index in its database. Search will automatically attempt to recreate the content index description. If this problem persists, stop and restart the search service and, if necessary, delete and recreate the content index. ) Error: (05/21/2016 11:11:04 PM) (Source: AVLogEvent) (User: NT AUTHORITY) Description: a7f42014 System errors: ============= Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The following boot-start or system-start driver(s) failed to load: BANTExt ESProtectionDriver Fips intelppm mfehidk mfetdi2k SASDIFSV SASKUTIL Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Personal Firewall Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Firewall Core Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Anti-Malware Core service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee AP Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error: %%31 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Platform Services service failed to start due to the following error: %%3 Error: (05/24/2016 02:57:21 PM) (Source: DCOM) (User: NT AUTHORITY) Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (05/24/2016 02:45:04 AM) (Source: DCOM) (User: NT AUTHORITY) Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (05/24/2016 01:58:45 AM) (Source: Service Control Manager) (User: ) Description: The following boot-start or system-start driver(s) failed to load: BANTExt ESProtectionDriver Fips intelppm mfehidk mfetdi2k SASDIFSV SASKUTIL Microsoft Office Sessions: ========================= Error: (05/23/2016 06:02:21 PM) (Source: Application Error)(User: ) Description: 799589932 Error: (05/23/2016 06:00:52 PM) (Source: Application Error)(User: ) Description: repair_windows.exe3.9.0.0gdi32.dll5.1.2600.64600000ef4b Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE SECURITYCENTER.LNK Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE SECURITYCENTER.LNK Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: Element not found. (0x80070490) Search.TripoliIndexer Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Search.JetPropStore Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: 0x%08x (0x80041181 - The content index server cannot find a description of the content index in its database. Search will automatically attempt to recreate the content index description. If this problem persists, stop and restart the search service and, if necessary, delete and recreate the content index. ) Error: (05/21/2016 11:11:04 PM) (Source: AVLogEvent)(User: NT AUTHORITY) Description: a7f42014 =========================== Installed Programs ============================ µTorrent (HKLM\...\uTorrent) (Version: 3.0.0 - ) 7-Zip 16.00 (HKLM\...\7-Zip) (Version: 16.00 - Igor Pavlov) Adobe Flash Player 21 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Reader XI (11.0.10) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated) Apple Application Support (32-bit) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{A75CA58D-DB9C-4D14-9428-E0C7B0F623DC}) (Version: 9.0.0.26 - Apple Inc.) Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Belarc Advisor 8.4 (HKLM\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) Broadcom Gigabit Integrated Controller (HKLM\...\{FC57FC53-104C-415C-98D7-B05E659461A9}) (Version: 10.50.03 - Broadcom Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform) DC++ 0.851 (HKLM\...\DC++) (Version: 0.851 - Jacek Sieka) Direct WAV MP3 Splitter version 2.7.0.25 (HKLM\...\Direct WAV MP3 Splitter_is1) (Version: 2.7.0.25 - Piston Software) Dropbox (HKCU\...\Dropbox) (Version: 3.20.1 - Dropbox, Inc.) EaseUS Data Recovery Wizard 5.6.5 (HKLM\...\EaseUS Data Recovery Wizard 5.6.5_is1) (Version: - EaseUS) File Scavenger 4.0 (en) (HKLM\...\QueTek File Scavenger 4.0 (en)) (Version: 4.0.5.0 - QueTek Consulting Corporation) foobar2000 v1.3.1 (HKLM\...\foobar2000) (Version: 1.3.1 - Peter Pawlowski) FormatFactory 3.6.0.0 (HKLM\...\FormatFactory) (Version: 3.6.0.0 - Format Factory) GetDataBack for NTFS (HKLM\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.32.000 - Runtime Software) Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden iTunes (HKLM\...\{868B9974-4F23-494D-B6BC-4FAB92B2755D}) (Version: 12.1.3.6 - Apple Inc.) IVONA 2 (HKLM\...\IVONA 2) (Version: 1.6.60 - IVONA Software Sp. z o.o.) LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - ) LibreOffice 5.0.0.5 (HKLM\...\{48806D1D-C8D3-4235-8893-D5A03BAFC307}) (Version: 5.0.0.5 - The Document Foundation) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation) Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Mozilla Firefox 46.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 46.0.1 (x86 en-US)) (Version: 46.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 46.0.1 - Mozilla) Mp3tag v2.75 (HKLM\...\Mp3tag) (Version: v2.75 - Florian Heidenreich) NVIDIA Graphics Driver 309.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 309.00 - NVIDIA Corporation) NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation) Recuva (HKLM\...\Recuva) (Version: 1.44 - Piriform) Secunia PSI (2.0.0.4003) (HKLM\...\Secunia PSI) (Version: 2.0.0.4003 - Secunia) SigmaTel Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 5.10.4803.0 - SigmaTel) SoundTaxi 3.8.5 (HKLM\...\SoundTaxi_is1) (Version: - ) Sp5 (HKLM\...\{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}) (Version: 5.1.4324.0 - Microsoft) Hidden Sp5Intl (HKLM\...\{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}) (Version: 5.1.4324.0 - Microsoft) Hidden Sp5TTInt (HKLM\...\{E415C943-37E5-473F-8BAE-043C56734124}) (Version: 5.1.4324.0 - Microsoft) Hidden SpCommon (HKLM\...\{6C3959C6-943E-44B3-BAAD-570B04B134E5}) (Version: 5.1.4324.0 - Microsoft) Hidden Spotify (HKCU\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB) SpPhones (HKLM\...\{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}) (Version: 6.0.3122.0 - Microsoft) Hidden SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1218 - SUPERAntiSpyware.com) TextAloud 3.0 (HKLM\...\TextAloud3_is1) (Version: 3.0 - NextUp.com) Tweaking.com - Windows Repair (HKLM\...\Tweaking.com - Windows Repair) (Version: 3.9.0 - Tweaking.com) Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation) Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation) Hidden Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation) Visual MP3 Splitter & Joiner 6.1 (HKLM\...\Visual MP3 Splitter & Joiner_is1) (Version: - ManiacTools.com) WebFldrs XP (HKLM\...\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation) Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation) Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation) Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation) Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - ) Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - ) Windows Search 4.0 (HKLM\...\KB940157) (Version: 04.00.6001.503 - Microsoft Corporation) Yahoo! Messenger (HKLM\...\Yahoo! Messenger) (Version: - Yahoo! Inc.) Yahoo! Software Update (HKLM\...\Yahoo! Software Update) (Version: - ) ========================= Devices: ================================ ========================= Memory info: =================================== Percentage of memory in use: 23% Total physical RAM: 2046.08 MB Available physical RAM: 1566.79 MB Total Virtual: 3942.72 MB Available Virtual: 3654.2 MB ========================= Partitions: ===================================== 1 Drive c: () (Fixed) (Total:74.52 GB) (Free:6.55 GB) NTFS 3 Drive e: (HP_PAVILION) (Fixed) (Total:270.94 GB) (Free:129.24 GB) NTFS 4 Drive f: (HP_RECOVERY) (Fixed) (Total:8.5 GB) (Free:1.06 GB) FAT32 ========================= Users: ======================================== User accounts for \\OWNER-C1F3A9834 Administrator Guest HelpAssistant SUPPORT_388945a0 **** End of log ****

#12 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,634 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:16 PM

Posted 24 May 2016 - 04:12 PM

Are you able to run MiniToolBox again, but this time in Notepad, make sure that the "Word Wrap" feature isn't enabled? Because when you copy/paste it that way, it messed up the formatting.
53.jpg

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#13 midas1968

midas1968
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 24 May 2016 - 05:12 PM

Sorry about that. I think I got it correct below. MiniToolBox by Farbar Version: 07-02-2016 01 Ran by Administrator (administrator) on 24-05-2016 at 17:09:10 Running from "C:\Documents and Settings\Administrator\Desktop" Microsoft Windows XP Professional Service Pack 3 (X86) Model: Precision WorkStation 490 Manufacturer: Dell Inc. Boot Mode: Network *************************************************************************** ========================= Flush DNS: =================================== Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= 127.0.0.1 localhost ========================= IP Configuration: ================================ Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Connected) # ---------------------------------- # Interface IP Configuration # ---------------------------------- pushd interface ip # Interface IP Configuration for "Local Area Connection" set address name="Local Area Connection" source=dhcp set dns name="Local Area Connection" source=dhcp register=PRIMARY set wins name="Local Area Connection" source=dhcp popd # End of interface IP configuration Windows IP Configuration Host Name . . . . . . . . . . . . : owner-c1f3a9834 Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : attlocal.net Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : attlocal.net Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller Physical Address. . . . . . . . . : 00-18-8B-26-52-69 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.1.27 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.254 DHCP Server . . . . . . . . . . . : 192.168.1.254 DNS Servers . . . . . . . . . . . : 192.168.1.254 Lease Obtained. . . . . . . . . . : Tuesday, May 24, 2016 2:56:56 PM Lease Expires . . . . . . . . . . : Wednesday, May 25, 2016 2:56:56 PM Server: homeportal Address: 192.168.1.254 Name: google.com Address: 216.58.218.174 Pinging google.com [216.58.218.174] with 32 bytes of data: Reply from 216.58.218.174: bytes=32 time=24ms TTL=55 Reply from 216.58.218.174: bytes=32 time=24ms TTL=55 Ping statistics for 216.58.218.174: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 24ms, Maximum = 24ms, Average = 24ms Server: homeportal Address: 192.168.1.254 Name: yahoo.com Addresses: 206.190.36.45, 98.138.253.109, 98.139.183.24 Pinging yahoo.com [98.138.253.109] with 32 bytes of data: Reply from 98.138.253.109: bytes=32 time=65ms TTL=48 Reply from 98.138.253.109: bytes=32 time=63ms TTL=48 Ping statistics for 98.138.253.109: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 63ms, Maximum = 65ms, Average = 64ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms =========================================================================== Interface List 0x1 ........................... MS TCP Loopback interface 0x2 ...00 18 8b 26 52 69 ...... Broadcom NetXtreme 57xx Gigabit Controller - McAfee Core NDIS Intermediate Filter Miniport =========================================================================== =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.27 20 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1 192.168.1.0 255.255.255.0 192.168.1.27 192.168.1.27 20 192.168.1.27 255.255.255.255 127.0.0.1 127.0.0.1 20 192.168.1.255 255.255.255.255 192.168.1.27 192.168.1.27 20 224.0.0.0 240.0.0.0 192.168.1.27 192.168.1.27 20 255.255.255.255 255.255.255.255 192.168.1.27 192.168.1.27 1 Default Gateway: 192.168.1.254 =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation) Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 12 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation) Catalog9 13 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (05/23/2016 06:02:21 PM) (Source: Application Error) (User: ) Description: Fault bucket 799589932. The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected. Error: (05/23/2016 06:00:52 PM) (Source: Application Error) (User: ) Description: Faulting application repair_windows.exe, version 3.9.0.0, faulting module gdi32.dll, version 5.1.2600.6460, fault address 0x0000ef4b. Processing media-specific event for [repair_windows.exe!ws!] Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service) (User: ) Description: The entry in the hash map cannot be updated. Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service) (User: ) Description: The entry in the hash map cannot be updated. Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service) (User: ) Description: The application cannot be initialized. Context: Windows Application Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service) (User: ) Description: The gatherer object cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service) (User: ) Description: The plug-in in cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: Element not found. (0x80070490) Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service) (User: ) Description: The plug-in in cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service) (User: ) Description: The Windows Search Service cannot load the property store information. Context: Windows Application, SystemIndex Catalog Details: 0x%08x (0x80041181 - The content index server cannot find a description of the content index in its database. Search will automatically attempt to recreate the content index description. If this problem persists, stop and restart the search service and, if necessary, delete and recreate the content index. ) Error: (05/21/2016 11:11:04 PM) (Source: AVLogEvent) (User: NT AUTHORITY) Description: a7f42014 System errors: ============= Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The following boot-start or system-start driver(s) failed to load: BANTExt ESProtectionDriver Fips intelppm mfehidk mfetdi2k SASDIFSV SASKUTIL Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Personal Firewall Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Firewall Core Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Anti-Malware Core service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee AP Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error: %%31 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Platform Services service failed to start due to the following error: %%3 Error: (05/24/2016 02:57:21 PM) (Source: DCOM) (User: NT AUTHORITY) Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (05/24/2016 02:45:04 AM) (Source: DCOM) (User: NT AUTHORITY) Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (05/24/2016 01:58:45 AM) (Source: Service Control Manager) (User: ) Description: The following boot-start or system-start driver(s) failed to load: BANTExt ESProtectionDriver Fips intelppm mfehidk mfetdi2k SASDIFSV SASKUTIL Microsoft Office Sessions: ========================= Error: (05/23/2016 06:02:21 PM) (Source: Application Error)(User: ) Description: 799589932 Error: (05/23/2016 06:00:52 PM) (Source: Application Error)(User: ) Description: repair_windows.exe3.9.0.0gdi32.dll5.1.2600.64600000ef4b Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE SECURITYCENTER.LNK Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE SECURITYCENTER.LNK Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: Element not found. (0x80070490) Search.TripoliIndexer Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Search.JetPropStore Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: 0x%08x (0x80041181 - The content index server cannot find a description of the content index in its database. Search will automatically attempt to recreate the content index description. If this problem persists, stop and restart the search service and, if necessary, delete and recreate the content index. ) Error: (05/21/2016 11:11:04 PM) (Source: AVLogEvent)(User: NT AUTHORITY) Description: a7f42014 =========================== Installed Programs ============================ µTorrent (HKLM\...\uTorrent) (Version: 3.0.0 - ) 7-Zip 16.00 (HKLM\...\7-Zip) (Version: 16.00 - Igor Pavlov) Adobe Flash Player 21 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Reader XI (11.0.10) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated) Apple Application Support (32-bit) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{A75CA58D-DB9C-4D14-9428-E0C7B0F623DC}) (Version: 9.0.0.26 - Apple Inc.) Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Belarc Advisor 8.4 (HKLM\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) Broadcom Gigabit Integrated Controller (HKLM\...\{FC57FC53-104C-415C-98D7-B05E659461A9}) (Version: 10.50.03 - Broadcom Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform) DC++ 0.851 (HKLM\...\DC++) (Version: 0.851 - Jacek Sieka) Direct WAV MP3 Splitter version 2.7.0.25 (HKLM\...\Direct WAV MP3 Splitter_is1) (Version: 2.7.0.25 - Piston Software) Dropbox (HKCU\...\Dropbox) (Version: 3.20.1 - Dropbox, Inc.) EaseUS Data Recovery Wizard 5.6.5 (HKLM\...\EaseUS Data Recovery Wizard 5.6.5_is1) (Version: - EaseUS) File Scavenger 4.0 (en) (HKLM\...\QueTek File Scavenger 4.0 (en)) (Version: 4.0.5.0 - QueTek Consulting Corporation) foobar2000 v1.3.1 (HKLM\...\foobar2000) (Version: 1.3.1 - Peter Pawlowski) FormatFactory 3.6.0.0 (HKLM\...\FormatFactory) (Version: 3.6.0.0 - Format Factory) GetDataBack for NTFS (HKLM\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.32.000 - Runtime Software) Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden iTunes (HKLM\...\{868B9974-4F23-494D-B6BC-4FAB92B2755D}) (Version: 12.1.3.6 - Apple Inc.) IVONA 2 (HKLM\...\IVONA 2) (Version: 1.6.60 - IVONA Software Sp. z o.o.) LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - ) LibreOffice 5.0.0.5 (HKLM\...\{48806D1D-C8D3-4235-8893-D5A03BAFC307}) (Version: 5.0.0.5 - The Document Foundation) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation) Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Mozilla Firefox 46.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 46.0.1 (x86 en-US)) (Version: 46.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 46.0.1 - Mozilla) Mp3tag v2.75 (HKLM\...\Mp3tag) (Version: v2.75 - Florian Heidenreich) NVIDIA Graphics Driver 309.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 309.00 - NVIDIA Corporation) NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation) Recuva (HKLM\...\Recuva) (Version: 1.44 - Piriform) Secunia PSI (2.0.0.4003) (HKLM\...\Secunia PSI) (Version: 2.0.0.4003 - Secunia) SigmaTel Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 5.10.4803.0 - SigmaTel) SoundTaxi 3.8.5 (HKLM\...\SoundTaxi_is1) (Version: - ) Sp5 (HKLM\...\{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}) (Version: 5.1.4324.0 - Microsoft) Hidden Sp5Intl (HKLM\...\{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}) (Version: 5.1.4324.0 - Microsoft) Hidden Sp5TTInt (HKLM\...\{E415C943-37E5-473F-8BAE-043C56734124}) (Version: 5.1.4324.0 - Microsoft) Hidden SpCommon (HKLM\...\{6C3959C6-943E-44B3-BAAD-570B04B134E5}) (Version: 5.1.4324.0 - Microsoft) Hidden Spotify (HKCU\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB) SpPhones (HKLM\...\{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}) (Version: 6.0.3122.0 - Microsoft) Hidden SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1218 - SUPERAntiSpyware.com) TextAloud 3.0 (HKLM\...\TextAloud3_is1) (Version: 3.0 - NextUp.com) Tweaking.com - Windows Repair (HKLM\...\Tweaking.com - Windows Repair) (Version: 3.9.0 - Tweaking.com) Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation) Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation) Hidden Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation) Visual MP3 Splitter & Joiner 6.1 (HKLM\...\Visual MP3 Splitter & Joiner_is1) (Version: - ManiacTools.com) WebFldrs XP (HKLM\...\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation) Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation) Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation) Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation) Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - ) Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - ) Windows Search 4.0 (HKLM\...\KB940157) (Version: 04.00.6001.503 - Microsoft Corporation) Yahoo! Messenger (HKLM\...\Yahoo! Messenger) (Version: - Yahoo! Inc.) Yahoo! Software Update (HKLM\...\Yahoo! Software Update) (Version: - ) ========================= Devices: ================================ ========================= Memory info: =================================== Percentage of memory in use: 14% Total physical RAM: 2046.08 MB Available physical RAM: 1749.55 MB Total Virtual: 3942.72 MB Available Virtual: 3843.18 MB ========================= Partitions: ===================================== 1 Drive c: () (Fixed) (Total:74.52 GB) (Free:6.53 GB) NTFS 3 Drive e: (HP_PAVILION) (Fixed) (Total:270.94 GB) (Free:129.24 GB) NTFS 4 Drive f: (HP_RECOVERY) (Fixed) (Total:8.5 GB) (Free:1.06 GB) FAT32 ========================= Users: ======================================== User accounts for \\OWNER-C1F3A9834 Administrator Guest HelpAssistant SUPPORT_388945a0 **** End of log ****

#14 midas1968

midas1968
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:06:16 PM

Posted 24 May 2016 - 05:14 PM

Sorry once again. It should work this time. MiniToolBox by Farbar Version: 07-02-2016 01 Ran by Administrator (administrator) on 24-05-2016 at 17:09:10 Running from "C:\Documents and Settings\Administrator\Desktop" Microsoft Windows XP Professional Service Pack 3 (X86) Model: Precision WorkStation 490 Manufacturer: Dell Inc. Boot Mode: Network *************************************************************************** ========================= Flush DNS: =================================== Windows IP ConfigurationSuccessfully flushed the DNS Resolver Cache. ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= 127.0.0.1 localhost ========================= IP Configuration: ================================ Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Connected) # ---------------------------------- # Interface IP Configuration # ---------------------------------- pushd interface ip # Interface IP Configuration for "Local Area Connection" set address name="Local Area Connection" source=dhcp set dns name="Local Area Connection" source=dhcp register=PRIMARY set wins name="Local Area Connection" source=dhcp popd # End of interface IP configuration Windows IP Configuration Host Name . . . . . . . . . . . . : owner-c1f3a9834 Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : attlocal.netEthernet adapter Local Area Connection: Connection-specific DNS Suffix . : attlocal.net Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller Physical Address. . . . . . . . . : 00-18-8B-26-52-69 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.1.27 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.254 DHCP Server . . . . . . . . . . . : 192.168.1.254 DNS Servers . . . . . . . . . . . : 192.168.1.254 Lease Obtained. . . . . . . . . . : Tuesday, May 24, 2016 2:56:56 PM Lease Expires . . . . . . . . . . : Wednesday, May 25, 2016 2:56:56 PMServer: homeportal Address: 192.168.1.254 Name: google.com Address: 216.58.218.174 Pinging google.com [216.58.218.174] with 32 bytes of data:Reply from 216.58.218.174: bytes=32 time=24ms TTL=55Reply from 216.58.218.174: bytes=32 time=24ms TTL=55Ping statistics for 216.58.218.174: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 24ms, Maximum = 24ms, Average = 24msServer: homeportal Address: 192.168.1.254 Name: yahoo.com Addresses: 206.190.36.45, 98.138.253.109, 98.139.183.24 Pinging yahoo.com [98.138.253.109] with 32 bytes of data:Reply from 98.138.253.109: bytes=32 time=65ms TTL=48Reply from 98.138.253.109: bytes=32 time=63ms TTL=48Ping statistics for 98.138.253.109: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 63ms, Maximum = 65ms, Average = 64msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms=========================================================================== Interface List 0x1 ........................... MS TCP Loopback interface 0x2 ...00 18 8b 26 52 69 ...... Broadcom NetXtreme 57xx Gigabit Controller - McAfee Core NDIS Intermediate Filter Miniport =========================================================================== =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.27 20 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1 192.168.1.0 255.255.255.0 192.168.1.27 192.168.1.27 20 192.168.1.27 255.255.255.255 127.0.0.1 127.0.0.1 20 192.168.1.255 255.255.255.255 192.168.1.27 192.168.1.27 20 224.0.0.0 240.0.0.0 192.168.1.27 192.168.1.27 20 255.255.255.255 255.255.255.255 192.168.1.27 192.168.1.27 1 Default Gateway: 192.168.1.254 =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation) Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation) Catalog9 12 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation) Catalog9 13 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (05/23/2016 06:02:21 PM) (Source: Application Error) (User: ) Description: Fault bucket 799589932. The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected. Error: (05/23/2016 06:00:52 PM) (Source: Application Error) (User: ) Description: Faulting application repair_windows.exe, version 3.9.0.0, faulting module gdi32.dll, version 5.1.2600.6460, fault address 0x0000ef4b. Processing media-specific event for [repair_windows.exe!ws!] Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service) (User: ) Description: The entry in the hash map cannot be updated. Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service) (User: ) Description: The entry in the hash map cannot be updated. Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service) (User: ) Description: The application cannot be initialized. Context: Windows Application Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service) (User: ) Description: The gatherer object cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service) (User: ) Description: The plug-in in cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: Element not found. (0x80070490) Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service) (User: ) Description: The plug-in in cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service) (User: ) Description: The Windows Search Service cannot load the property store information. Context: Windows Application, SystemIndex Catalog Details: 0x%08x (0x80041181 - The content index server cannot find a description of the content index in its database. Search will automatically attempt to recreate the content index description. If this problem persists, stop and restart the search service and, if necessary, delete and recreate the content index. ) Error: (05/21/2016 11:11:04 PM) (Source: AVLogEvent) (User: NT AUTHORITY) Description: a7f42014 System errors: ============= Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The following boot-start or system-start driver(s) failed to load: BANTExt ESProtectionDriver Fips intelppm mfehidk mfetdi2k SASDIFSV SASKUTIL Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Personal Firewall Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Firewall Core Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Anti-Malware Core service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee AP Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: %%1068 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error: %%31 Error: (05/24/2016 02:58:36 PM) (Source: Service Control Manager) (User: ) Description: The McAfee Platform Services service failed to start due to the following error: %%3 Error: (05/24/2016 02:57:21 PM) (Source: DCOM) (User: NT AUTHORITY) Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (05/24/2016 02:45:04 AM) (Source: DCOM) (User: NT AUTHORITY) Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (05/24/2016 01:58:45 AM) (Source: Service Control Manager) (User: ) Description: The following boot-start or system-start driver(s) failed to load: BANTExt ESProtectionDriver Fips intelppm mfehidk mfetdi2k SASDIFSV SASKUTIL Microsoft Office Sessions: ========================= Error: (05/23/2016 06:02:21 PM) (Source: Application Error)(User: ) Description: 799589932 Error: (05/23/2016 06:00:52 PM) (Source: Application Error)(User: ) Description: repair_windows.exe3.9.0.0gdi32.dll5.1.2600.64600000ef4b Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE SECURITYCENTER.LNK Error: (05/21/2016 11:35:17 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE SECURITYCENTER.LNK Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Error: (05/21/2016 11:11:09 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: Element not found. (0x80070490) Search.TripoliIndexer Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The content index metadata cannot be read. (0xc0041801) Search.JetPropStore Error: (05/21/2016 11:11:08 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: 0x%08x (0x80041181 - The content index server cannot find a description of the content index in its database. Search will automatically attempt to recreate the content index description. If this problem persists, stop and restart the search service and, if necessary, delete and recreate the content index. ) Error: (05/21/2016 11:11:04 PM) (Source: AVLogEvent)(User: NT AUTHORITY) Description: a7f42014 =========================== Installed Programs ============================ µTorrent (HKLM\...\uTorrent) (Version: 3.0.0 - ) 7-Zip 16.00 (HKLM\...\7-Zip) (Version: 16.00 - Igor Pavlov) Adobe Flash Player 21 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Reader XI (11.0.10) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated) Apple Application Support (32-bit) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{A75CA58D-DB9C-4D14-9428-E0C7B0F623DC}) (Version: 9.0.0.26 - Apple Inc.) Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Belarc Advisor 8.4 (HKLM\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) Broadcom Gigabit Integrated Controller (HKLM\...\{FC57FC53-104C-415C-98D7-B05E659461A9}) (Version: 10.50.03 - Broadcom Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform) DC++ 0.851 (HKLM\...\DC++) (Version: 0.851 - Jacek Sieka) Direct WAV MP3 Splitter version 2.7.0.25 (HKLM\...\Direct WAV MP3 Splitter_is1) (Version: 2.7.0.25 - Piston Software) Dropbox (HKCU\...\Dropbox) (Version: 3.20.1 - Dropbox, Inc.) EaseUS Data Recovery Wizard 5.6.5 (HKLM\...\EaseUS Data Recovery Wizard 5.6.5_is1) (Version: - EaseUS) File Scavenger 4.0 (en) (HKLM\...\QueTek File Scavenger 4.0 (en)) (Version: 4.0.5.0 - QueTek Consulting Corporation) foobar2000 v1.3.1 (HKLM\...\foobar2000) (Version: 1.3.1 - Peter Pawlowski) FormatFactory 3.6.0.0 (HKLM\...\FormatFactory) (Version: 3.6.0.0 - Format Factory) GetDataBack for NTFS (HKLM\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.32.000 - Runtime Software) Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden iTunes (HKLM\...\{868B9974-4F23-494D-B6BC-4FAB92B2755D}) (Version: 12.1.3.6 - Apple Inc.) IVONA 2 (HKLM\...\IVONA 2) (Version: 1.6.60 - IVONA Software Sp. z o.o.) LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - ) LibreOffice 5.0.0.5 (HKLM\...\{48806D1D-C8D3-4235-8893-D5A03BAFC307}) (Version: 5.0.0.5 - The Document Foundation) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation) Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Mozilla Firefox 46.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 46.0.1 (x86 en-US)) (Version: 46.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 46.0.1 - Mozilla) Mp3tag v2.75 (HKLM\...\Mp3tag) (Version: v2.75 - Florian Heidenreich) NVIDIA Graphics Driver 309.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 309.00 - NVIDIA Corporation) NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation) Recuva (HKLM\...\Recuva) (Version: 1.44 - Piriform) Secunia PSI (2.0.0.4003) (HKLM\...\Secunia PSI) (Version: 2.0.0.4003 - Secunia) SigmaTel Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 5.10.4803.0 - SigmaTel) SoundTaxi 3.8.5 (HKLM\...\SoundTaxi_is1) (Version: - ) Sp5 (HKLM\...\{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}) (Version: 5.1.4324.0 - Microsoft) Hidden Sp5Intl (HKLM\...\{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}) (Version: 5.1.4324.0 - Microsoft) Hidden Sp5TTInt (HKLM\...\{E415C943-37E5-473F-8BAE-043C56734124}) (Version: 5.1.4324.0 - Microsoft) Hidden SpCommon (HKLM\...\{6C3959C6-943E-44B3-BAAD-570B04B134E5}) (Version: 5.1.4324.0 - Microsoft) Hidden Spotify (HKCU\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB) SpPhones (HKLM\...\{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}) (Version: 6.0.3122.0 - Microsoft) Hidden SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1218 - SUPERAntiSpyware.com) TextAloud 3.0 (HKLM\...\TextAloud3_is1) (Version: 3.0 - NextUp.com) Tweaking.com - Windows Repair (HKLM\...\Tweaking.com - Windows Repair) (Version: 3.9.0 - Tweaking.com) Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation) Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation) Hidden Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation) Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation) Visual MP3 Splitter & Joiner 6.1 (HKLM\...\Visual MP3 Splitter & Joiner_is1) (Version: - ManiacTools.com) WebFldrs XP (HKLM\...\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation) Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation) Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation) Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation) Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - ) Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - ) Windows Search 4.0 (HKLM\...\KB940157) (Version: 04.00.6001.503 - Microsoft Corporation) Yahoo! Messenger (HKLM\...\Yahoo! Messenger) (Version: - Yahoo! Inc.) Yahoo! Software Update (HKLM\...\Yahoo! Software Update) (Version: - ) ========================= Devices: ================================ ========================= Memory info: =================================== Percentage of memory in use: 14% Total physical RAM: 2046.08 MB Available physical RAM: 1749.55 MB Total Virtual: 3942.72 MB Available Virtual: 3843.18 MB ========================= Partitions: ===================================== 1 Drive c: () (Fixed) (Total:74.52 GB) (Free:6.53 GB) NTFS 3 Drive e: (HP_PAVILION) (Fixed) (Total:270.94 GB) (Free:129.24 GB) NTFS 4 Drive f: (HP_RECOVERY) (Fixed) (Total:8.5 GB) (Free:1.06 GB) FAT32 ========================= Users: ======================================== User accounts for \\OWNER-C1F3A9834 Administrator Guest HelpAssistant SUPPORT_388945a0 **** End of log ****

#15 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,634 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:16 PM

Posted 24 May 2016 - 05:15 PM

Looks like it didn't work. Make sure that the Word Wrap is disabled in Notepad, close the application, then run MiniToolBox.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users