Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Stuck in an infinite startup repair loop


  • This topic is locked This topic is locked
5 replies to this topic

#1 JerryAC

JerryAC

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:41 AM

Posted 19 October 2012 - 10:30 PM

I left my pc on the other night. When I woke up I went to start firefox and I received an error message.
I restarted to try to fix the problem and Windows wouldn't start. It went into startup repair. Startup repair says it can't fix the problem either.
Now that's all I get, startup repair can't fix it, restart and its just the same thing all over again.

Can anyone help?


Here is the Farbar Recover txt file:




Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2012
Ran by SYSTEM at 19-10-2012 23:20:12
Running from J:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM-x32\...\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey [x]
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-08-27] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [x]
HKU\Default\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [x]
HKU\Default User\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [x]
HKU\UpdatusUser\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [x]
HKLM\...\Winlogon: [Shell] explorer.exe [x ] ()
Tcpip\Parameters: [DhcpNameServer] 209.18.47.61 209.18.47.62
Startup: C:\Users\Default\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (No File)
Startup: C:\Users\Default User\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (No File)
Startup: C:\Users\UpdatusUser\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (No File)

==================== Services (Whitelisted) ===================

3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [x]
3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [x]
2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [x]
3 ALG; C:\Windows\System32\alg.exe [x]
3 AppIDSvc; C:\Windows\System32\appidsvc.dll [x]
3 Appinfo; C:\Windows\System32\appinfo.dll [x]
3 aspnet_state; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [x]
2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [x]
2 AudioSrv; C:\Windows\System32\Audiosrv.dll [x]
3 AxInstSV; C:\Windows\System32\AxInstSV.dll [x]
4 BBSvc; "C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE" [x]
2 BBUpdate; "C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE" [x]
3 BDESVC; C:\Windows\System32\bdesvc.dll [x]
2 BFE; C:\Windows\System32\bfe.dll [x]
3 BITS; C:\Windows\System32\qmgr.dll [x]
2 Bonjour Service; "C:\Program Files\Bonjour\mDNSResponder.exe" [x]
3 Browser; C:\Windows\System32\browser.dll [x]
3 bthserv; C:\Windows\System32\bthserv.dll [x]
3 CertPropSvc; C:\Windows\System32\certprop.dll [x]
2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [x]
2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
3 COMSysApp; C:\Windows\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [x]
2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [x]
3 DAUpdaterSvc; C:\program files (x86)\steam\steamapps\common\dragon age origins\bin_ship\DAUpdaterSvc.Service.exe [x]
2 DcomLaunch; C:\Windows\System32\rpcss.dll [x]
3 defragsvc; C:\Windows\System32\defragsvc.dll [x]
2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [x]
3 dot3svc; C:\Windows\System32\dot3svc.dll [x]
2 DPS; C:\Windows\System32\dps.dll [x]
3 EapHost; C:\Windows\System32\eapsvc.dll [x]
3 EFS; C:\Windows\System32\lsass.exe [x]
3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [x]
3 ehSched; C:\Windows\ehome\ehsched.exe [x]
3 Fax; C:\Windows\System32\fxssvc.exe [x]
3 fdPHost; C:\Windows\System32\fdPHost.dll [x]
3 FDResPub; C:\Windows\System32\fdrespub.dll [x]
2 FontCache; C:\Windows\System32\FntCache.dll [x]
2 gpsvc; C:\Windows\System32\gpsvc.dll [x]
2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [x]
3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [x]
3 gusvc; "C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe" [x]
3 hkmsvc; C:\Windows\System32\kmsvc.dll [x]
3 HomeGroupListener; C:\Windows\System32\ListSvc.dll [x]
3 HomeGroupProvider; C:\Windows\System32\provsvc.dll [x]
2 IKEEXT; C:\Windows\System32\ikeext.dll [x]
3 IPBusEnum; C:\Windows\System32\ipbusenum.dll [x]
2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [x]
3 iPod Service; "C:\Program Files\iPod\bin\iPodService.exe" [x]
3 KeyIso; C:\Windows\System32\lsass.exe [x]
2 LanmanServer; C:\Windows\System32\srvsvc.dll [x]
2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [x]
4 LeapFrog Connect Device Service; "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe" [x]
2 lmhosts; C:\Windows\System32\lmhsvc.dll [x]
2 LVPrcS64; "C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe" [x]
2 McAfee SiteAdvisor Service; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [x]
2 McMPFSvc; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [x]
2 mcmscsvc; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [x]
2 McNaiAnn; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [x]
2 McNASvc; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [x]
3 McODS; "C:\Program Files\McAfee\VirusScan\mcods.exe" [x]
2 McProxy; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [x]
2 McShield; "C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe" [x]
2 mfefire; "C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" [x]
2 mfevtp; "C:\Windows\system32\mfevtps.exe" [x]
2 MMCSS; C:\Windows\System32\mmcss.dll [x]
3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [x]
2 MpsSvc; C:\Windows\System32\mpssvc.dll [x]
2 MSK80Service; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [x]
3 napagent; C:\Windows\System32\qagentRT.dll [x]
3 Netlogon; C:\Windows\System32\lsass.exe [x]
3 Netman; C:\Windows\System32\netman.dll [x]
3 netprofm; C:\Windows\System32\netprofm.dll [x]
2 NlaSvc; C:\Windows\System32\nlasvc.dll [x]
2 nsi; C:\Windows\System32\nsisvc.dll [x]
2 nvsvc; C:\Windows\system32\nvvsvc.exe [x]
2 nvUpdatusService; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [x]
3 p2pimsvc; C:\Windows\System32\pnrpsvc.dll [x]
3 p2psvc; C:\Windows\System32\p2psvc.dll [x]
2 PcaSvc; C:\Windows\System32\pcasvc.dll [x]
3 PerfHost; C:\Windows\SysWow64\perfhost.exe [x]
2 PlugPlay; C:\Windows\System32\umpnpmgr.dll [x]
2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [x]
3 PNRPAutoReg; C:\Windows\System32\pnrpauto.dll [x]
3 PNRPsvc; C:\Windows\System32\pnrpsvc.dll [x]
3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [x]
2 Power; C:\Windows\System32\umpo.dll [x]
2 ProfSvc; C:\Windows\System32\profsvc.dll [x]
3 ProtectedStorage; C:\Windows\System32\lsass.exe [x]
3 RasAuto; C:\Windows\System32\rasauto.dll [x]
3 RasMan; C:\Windows\System32\rasmans.dll [x]
3 RemoteRegistry; C:\Windows\System32\regsvc.dll [x]
2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [x]
3 RpcLocator; C:\Windows\System32\locator.exe [x]
2 RpcSs; C:\Windows\System32\rpcss.dll [x]
2 SamSs; C:\Windows\System32\lsass.exe [x]
3 SCardSvr; C:\Windows\System32\SCardSvr.dll [x]
2 Schedule; C:\Windows\System32\schedsvc.dll [x]
3 SCPolicySvc; C:\Windows\System32\certprop.dll [x]
3 SDRSVC; C:\Windows\System32\SDRSVC.dll [x]
2 seclogon; C:\Windows\system32\seclogon.dll [x]
3 SensrSvc; C:\Windows\System32\sensrsvc.dll [x]
2 SessionLauncher; C:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe [x]
2 SharedAccess; C:\Windows\System32\ipnathlp.dll [x]
2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [x]
2 SkypeUpdate; "C:\Program Files (x86)\Skype\Updater\Updater.exe" [x]
3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [x]
2 Spooler; C:\Windows\System32\spoolsv.exe [x]
2 sppsvc; C:\Windows\System32\sppsvc.exe [x]
3 sppuinotify; C:\Windows\System32\sppuinotify.dll [x]
3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [x]
3 SstpSvc; C:\Windows\System32\sstpsvc.dll [x]
3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService [x]
2 Stereo Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
2 stisvc; C:\Windows\System32\wiaservc.dll [x]
3 stllssvr; "C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe" [x]
3 swprv; C:\Windows\System32\swprv.dll [x]
2 SysMain; C:\Windows\System32\sysmain.dll [x]
3 TabletInputService; C:\Windows\System32\TabSvc.dll [x]
3 TBS; C:\Windows\System32\tbssvc.dll [x]
2 TermService; C:\Windows\System32\termsrv.dll [x]
2 Themes; C:\Windows\System32\themeservice.dll [x]
3 THREADORDER; C:\Windows\System32\mmcss.dll [x]
2 TrkWks; C:\Windows\System32\trkwks.dll [x]
3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [x]
3 UI0Detect; C:\Windows\System32\UI0Detect.exe [x]
3 upnphost; C:\Windows\System32\upnphost.dll [x]
3 VaultSvc; C:\Windows\System32\lsass.exe [x]
3 vds; C:\Windows\System32\vds.exe [x]
3 VSS; C:\Windows\System32\vssvc.exe [x]
3 W32Time; C:\Windows\System32\w32time.dll [x]
3 wbengine; "C:\Windows\system32\wbengine.exe" [x]
3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [x]
3 Wecsvc; C:\Windows\System32\wecsvc.dll [x]
3 wercplsupport; C:\Windows\System32\wercplsupport.dll [x]
3 WerSvc; C:\Windows\System32\WerSvc.dll [x]
2 WinDefend; C:\Program Files (x86)\Windows Defender\mpsvc.dll [x]
3 WinHttpAutoProxySvc; winhttp.dll [x]
2 Winmgmt; C:\Windows\System32\wbem\WMIsvc.dll [x]
3 Wlansvc; C:\Windows\System32\wlansvc.dll [x]
2 wlidsvc; "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" [x]
3 wmiApSrv; C:\Windows\System32\wbem\WmiApSrv.exe [x]
2 WMPNetworkSvc; "C:\Program Files\Windows Media Player\wmpnetwk.exe" [x]
3 WPDBusEnum; C:\Windows\System32\wpdbusenum.dll [x]
2 wscsvc; C:\Windows\System32\wscsvc.dll [x]
2 wuauserv; C:\Windows\System32\wuaueng.dll [x]
2 wudfsvc; C:\Windows\System32\WUDFSvc.dll [x]
3 WwanSvc; C:\Windows\System32\wwansvc.dll [x]

==================== Drivers (Whitelisted) =====================

3 HipShieldK; C:\Windows\System32\Drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
3 mfeavfk; C:\Windows\System32\Drivers\mfeavfk.sys [300392 2012-06-22] (McAfee, Inc.)
3 mfefirek; C:\Windows\System32\Drivers\mfefirek.sys [513456 2012-06-22] (McAfee, Inc.)
1 mfewfpk; C:\Windows\System32\Drivers\mfewfpk.sys [335784 2012-06-22] (McAfee, Inc.)
3 SQTECH905C; C:\Windows\System32\Drivers\Capt905c.sys [48448 2009-11-11] (Service & Quality Technology.)
3 1394ohci; C:\Windows\System32\DRIVERS\1394ohci.sys [x]
0 ACPI; C:\Windows\System32\DRIVERS\ACPI.sys [x]
1 AFD; C:\Windows\system32\drivers\afd.sys [x]
0 amdxata; C:\Windows\System32\drivers\amdxata.sys [x]
3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [x]
0 atapi; C:\Windows\System32\DRIVERS\atapi.sys [x]
2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [x]
3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [x]
3 catchme; \??\C:\ComboFix\catchme.sys [x]
4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [x]
3 cfwids; C:\Windows\System32\drivers\cfwids.sys [x]
0 CLFS; C:\Windows\System32\CLFS.sys [x]
0 CNG; C:\Windows\System32\Drivers\cng.sys [x]
2 cpuz132; \??\C:\Windows\system32\drivers\cpuz132_x64.sys [x]
1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [x]
1 discache; C:\Windows\System32\drivers\discache.sys [x]
0 Disk; C:\Windows\System32\DRIVERS\disk.sys [x]
3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
3 fastfat; [x]
0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [x]
0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [x]
0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [x]
3 HDAudBus; C:\Windows\System32\DRIVERS\HDAudBus.sys [x]
3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [x]
3 HTTP; C:\Windows\System32\drivers\HTTP.sys [x]
0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [x]
3 intelppm; C:\Windows\System32\DRIVERS\intelppm.sys [x]
3 k57nd60a; C:\Windows\System32\DRIVERS\k57nd60a.sys [x]
0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [x]
0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [x]
2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [x]
2 luafv; C:\Windows\system32\drivers\luafv.sys [x]
3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [x]
3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [x]
3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [x]
3 mfeavfk01; [x]
0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [x]
3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [x]
3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [x]
0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [x]
3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [x]
3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [x]
3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [x]
1 Msfs; [x]
0 msisadrv; C:\Windows\System32\DRIVERS\msisadrv.sys [x]
3 MsRPC; [x]
1 mssmbios; C:\Windows\System32\DRIVERS\mssmbios.sys [x]
0 Mup; C:\Windows\System32\Drivers\mup.sys [x]
0 NDIS; C:\Windows\System32\drivers\ndis.sys [x]
1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [x]
1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [x]
1 Npfs; [x]
1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [x]
3 Ntfs; [x]
0 partmgr; C:\Windows\System32\drivers\partmgr.sys [x]
0 pci; C:\Windows\System32\DRIVERS\pci.sys [x]
0 pciide; C:\Windows\System32\DRIVERS\pciide.sys [x]
0 pcw; C:\Windows\System32\drivers\pcw.sys [x]
1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [x]
0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [x]
1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [x]
1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [x]
1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [x]
1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [x]
0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [x]
1 RxFilter; C:\Windows\System32\DRIVERS\RxFilter.sys [x]
0 spldr; [x]
3 srv; C:\Windows\System32\DRIVERS\srv.sys [x]
3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [x]
3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [x]
3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [x]
0 vdrvroot; C:\Windows\System32\DRIVERS\vdrvroot.sys [x]
0 volmgr; C:\Windows\System32\DRIVERS\volmgr.sys [x]
0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [x]
0 volsnap; C:\Windows\System32\DRIVERS\volsnap.sys [x]
0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [x]
3 WinUsb; C:\Windows\System32\DRIVERS\WinUsb.sys [x]
1 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [x]
3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [x]

==================== NetSvcs (Whitelisted) ====================


==================== One Month Created Files and Folders ========

2012-10-19 22:35 - 2012-10-19 22:35 - 00000000 ____D C:\FRST
2012-10-18 16:58 - 2012-10-18 16:59 - 00000000 ____D C:\Windows\System32\config\mybackup
2012-10-13 07:00 - 2012-10-18 16:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2012-10-09 12:30 - 2012-08-30 09:18 - 03902832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2012-10-09 12:30 - 2012-08-18 07:40 - 00016384 ____A (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll
2012-10-09 12:30 - 2012-08-18 03:22 - 00014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2012-10-09 12:30 - 2012-08-18 03:19 - 00025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2012-10-09 12:29 - 2012-08-18 07:22 - 00006144 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00005120 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 07:22 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:17 - 00005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00005120 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 03:09 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 01:12 - 00007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2012-10-09 12:29 - 2012-08-18 01:12 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2012-10-09 12:29 - 2012-08-18 01:07 - 00006144 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 01:07 - 00004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 01:07 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-10-09 12:29 - 2012-08-18 01:07 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2012-10-09 12:29 - 2012-08-10 15:54 - 00541184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2012-10-09 12:29 - 2012-06-01 20:45 - 00139264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2012-10-08 11:43 - 2012-10-08 11:43 - 00000000 ____D C:\Splash
2012-10-08 11:38 - 2012-10-08 11:46 - 00000359 ____A C:\Windows\CoDUO.INI
2012-10-08 11:37 - 2012-10-08 11:37 - 00000992 ____A C:\Users\UpdatusUser\Desktop\Call of Duty Single Player.lnk
2012-10-08 11:37 - 2012-10-08 11:37 - 00000992 ____A C:\Users\UpdatusUser\Desktop\Call of Duty Multiplayer.lnk
2012-10-08 11:32 - 2012-10-18 07:27 - 00000000 ____D C:\Program Files (x86)\Call of Duty
2012-10-08 11:30 - 2012-10-08 11:37 - 00000745 ____A C:\Windows\CoD.INI
2012-10-08 11:14 - 2012-10-08 14:42 - 00856991 ____A C:\Users\Jerry\Documents\unit1.pptx
2012-10-05 03:12 - 2012-10-07 16:18 - 00280647 ____N C:\Windows\Minidump\100712-15381-01.dmp
2012-09-30 16:25 - 2012-04-20 12:40 - 00196440 ____A (McAfee, Inc.) C:\Windows\System32\Drivers\HipShieldK.sys
2012-09-26 15:29 - 2012-08-21 09:01 - 00033240 ____A (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys
2012-09-26 15:28 - 2012-10-18 16:45 - 00000000 ____D C:\Users\All Users\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-09-26 15:28 - 2012-10-18 16:45 - 00000000 ____D C:\Program Files (x86)\iTunes
2012-09-26 15:28 - 2012-09-26 15:28 - 00000000 ____D C:\Program Files\iPod
2012-09-24 15:43 - 2012-09-24 15:43 - 00097554 ____A C:\Users\Jerry\Desktop\alexburketsept24
2012-09-21 23:01 - 2012-08-24 02:31 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-09-21 23:01 - 2012-08-24 02:18 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-09-21 23:01 - 2012-08-24 02:17 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-09-21 23:01 - 2012-08-24 02:14 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-09-21 23:01 - 2012-08-24 02:14 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-09-21 23:01 - 2012-08-24 02:13 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-09-21 23:01 - 2012-08-24 02:12 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-09-21 23:01 - 2012-08-24 02:11 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-09-21 23:01 - 2012-08-24 02:09 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-09-21 23:01 - 2012-08-24 02:04 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-09-21 23:01 - 2012-08-23 22:48 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-09-21 23:01 - 2012-08-23 22:47 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-09-21 23:01 - 2012-08-23 22:44 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-09-19 17:30 - 2012-09-19 17:30 - 00000000 ____D C:\Users\Jerry\Desktop\blackmesa

==================== 3 Months Modified Files ==================

2012-10-09 13:03 - 2012-07-03 13:42 - 00696760 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-10-09 13:03 - 2011-05-12 19:11 - 00073656 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-10-08 14:42 - 2012-10-08 11:14 - 00856991 ____A C:\Users\Jerry\Documents\unit1.pptx
2012-10-08 11:46 - 2012-10-08 11:38 - 00000359 ____A C:\Windows\CoDUO.INI
2012-10-08 11:37 - 2012-10-08 11:37 - 00000992 ____A C:\Users\UpdatusUser\Desktop\Call of Duty Single Player.lnk
2012-10-08 11:37 - 2012-10-08 11:37 - 00000992 ____A C:\Users\UpdatusUser\Desktop\Call of Duty Multiplayer.lnk
2012-10-08 11:37 - 2012-10-08 11:30 - 00000745 ____A C:\Windows\CoD.INI
2012-10-07 16:18 - 2012-10-05 03:12 - 00280647 ____N C:\Windows\Minidump\100712-15381-01.dmp
2012-10-01 12:13 - 2012-09-10 14:17 - 00000332 ____A C:\Windows\Tasks\McQcTask.job
2012-09-30 19:43 - 2012-09-09 04:01 - 00092104 ____A C:\Windows\PFRO.log
2012-09-24 15:43 - 2012-09-24 15:43 - 00097554 ____A C:\Users\Jerry\Desktop\alexburketsept24
2012-09-12 17:14 - 2012-09-12 13:09 - 00019208 ____A C:\Windows\DirectX.log
2012-09-09 04:01 - 2012-09-09 04:01 - 00000000 ____A C:\Windows\setuperr.log
2012-09-08 08:05 - 2009-07-13 18:34 - 00000215 ____A C:\Windows\system.ini
2012-08-30 09:18 - 2012-10-09 12:30 - 03902832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2012-08-28 16:27 - 2011-09-23 16:53 - 00002130 ____A C:\Users\Jerry\Desktop\GooredFix.txt
2012-08-24 02:31 - 2012-09-21 23:01 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-08-24 02:18 - 2012-09-21 23:01 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-08-24 02:17 - 2012-09-21 23:01 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-08-24 02:14 - 2012-09-21 23:01 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-08-24 02:14 - 2012-09-21 23:01 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-08-24 02:13 - 2012-09-21 23:01 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-08-24 02:12 - 2012-09-21 23:01 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-08-24 02:11 - 2012-09-21 23:01 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-08-24 02:09 - 2012-09-21 23:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-08-24 02:04 - 2012-09-21 23:01 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-08-23 22:48 - 2012-09-21 23:01 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-08-23 22:47 - 2012-09-21 23:01 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-08-23 22:44 - 2012-09-21 23:01 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-08-21 09:01 - 2012-09-26 15:29 - 00033240 ____A (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys
2012-08-21 09:01 - 2010-08-25 10:06 - 00125872 ____A (GEAR Software Inc.) C:\Windows\System32\GEARAspi64.dll
2012-08-21 09:01 - 2010-08-25 10:06 - 00106928 ____A (GEAR Software Inc.) C:\Windows\SysWOW64\GEARAspi.dll
2012-08-18 07:40 - 2012-10-09 12:30 - 00016384 ____A (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00006144 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00005120 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2012-08-18 07:22 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2012-08-18 03:22 - 2012-10-09 12:30 - 00014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2012-08-18 03:19 - 2012-10-09 12:30 - 00025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2012-08-18 03:17 - 2012-10-09 12:29 - 00005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00005120 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-08-18 03:09 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2012-08-18 01:12 - 2012-10-09 12:29 - 00007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2012-08-18 01:12 - 2012-10-09 12:29 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2012-08-18 01:07 - 2012-10-09 12:29 - 00006144 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2012-08-18 01:07 - 2012-10-09 12:29 - 00004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-08-18 01:07 - 2012-10-09 12:29 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-08-18 01:07 - 2012-10-09 12:29 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2012-08-15 23:26 - 2009-07-13 20:45 - 00386648 ____A C:\Windows\System32\FNTCACHE.DAT
2012-08-10 15:54 - 2012-10-09 12:29 - 00541184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2012-08-02 09:55 - 2012-09-12 11:31 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2012-08-02 09:05 - 2012-09-12 11:31 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2012-08-01 14:07 - 2012-08-01 14:07 - 10081887 ____A C:\Users\Jerry\Desktop\esarena.zip


==================== Known DLLs (Whitelisted) =================

C:\Windows\System32\clbcatq.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\clbcatq.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\ole32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\ole32.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\advapi32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\advapi32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\COMDLG32.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\gdi32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\gdi32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\IERTUTIL.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\IMM32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\IMM32.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\kernel32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\kernel32.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\MSCTF.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\MSCTF.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\MSVCRT.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\MSVCRT.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\NORMALIZ.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\NSI.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\NSI.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\OLEAUT32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\OLEAUT32.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\PSAPI.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\PSAPI.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\rpcrt4.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\rpcrt4.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\sechost.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\sechost.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\Setupapi.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\Setupapi.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\SHELL32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\SHELL32.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\SHLWAPI.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\SHLWAPI.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\URLMON.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\URLMON.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\user32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\user32.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\USP10.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\USP10.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\WININET.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\WININET.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\WLDAP32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\WLDAP32.dll IS MISSING <==== ATTENTION!
C:\Windows\System32\WS2_32.dll IS MISSING <==== ATTENTION!
C:\Windows\SysWOW64\WS2_32.dll IS MISSING <==== ATTENTION!

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe IS MISSING <==== ATTENTION!.
C:\Windows\System32\wininit.exe IS MISSING <==== ATTENTION!.
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe IS MISSING <==== ATTENTION!.
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe IS MISSING <==== ATTENTION!.
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe IS MISSING <==== ATTENTION!.
C:\Windows\System32\User32.dll IS MISSING <==== ATTENTION!.
C:\Windows\SysWOW64\User32.dll IS MISSING <==== ATTENTION!.
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys IS MISSING <==== ATTENTION!.

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2012-10-10 19:43:14

==================== Memory info ===========================

Percentage of memory in use: 12%
Total physical RAM: 6135.12 MB
Available physical RAM: 5354.39 MB
Total Pagefile: 6133.27 MB
Available Pagefile: 5345.32 MB
Total Virtual: 8192 MB
Available Virtual: 8191.91 MB

==================== Partitions =============================

1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:120.91 GB) NTFS
7 Drive j: () (Removable) (Total:1.86 GB) (Free:1.85 GB) FAT
8 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
9 Drive y: (RECOVERY) (Fixed) (Total:14.65 GB) (Free:9.73 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B
Disk 1 No Media 0 B 0 B
Disk 2 No Media 0 B 0 B
Disk 3 No Media 0 B 0 B
Disk 4 No Media 0 B 0 B
Disk 5 Online 1900 MB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 31 KB
Partition 2 Primary 14 GB 40 MB
Partition 3 Primary 451 GB 14 GB

==================================================================================

Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 8 FAT Partition 39 MB Healthy Hidden

=========================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 Y RECOVERY NTFS Partition 14 GB Healthy

=========================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C OS NTFS Partition 451 GB Healthy

=========================================================

Partitions of Disk 5:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 1899 MB 128 KB

==================================================================================

Disk: 5
Partition 1
Type : 06
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 7 J FAT Removable 1899 MB Healthy

=========================================================

Last Boot: 2012-10-16 15:27

==================== End Of Log =============================

Attached Files

  • Attached File  FRST.txt   44.76KB   0 downloads

Edited by hamluis, 20 October 2012 - 09:58 AM.
Moved from Vista to Malware Removal Logs - Hamluis.


BC AdBot (Login to Remove)

 


#2 JerryAC

JerryAC
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:41 AM

Posted 20 October 2012 - 02:39 PM

Anyone have any ideas? I read that I might need to reinstall windows, but I could lose everything by doing that. Is that true?

#3 JerryAC

JerryAC
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:41 AM

Posted 21 October 2012 - 08:01 PM

Bump. I really could use some help.

#4 JerryAC

JerryAC
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:41 AM

Posted 22 October 2012 - 05:46 PM

bump

#5 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:08:41 AM

Posted 23 October 2012 - 03:17 AM

Hello JerryAC,

Welcome to the forum and apologies for the delay.

The log shows that a lot of vital system files are missing. They might have been infected with a file infecter virus and removed. In any case something or someone has removed them.

You can try to restore the system using the only restore point you have:

Restore point made on: 2012-10-10 19:43:14


To do that while booted to System Recovery Option, select "System Restore" and confirm the prompt to restore the system. If the restore point is from a user that doesn't exist you may have no access to it. If it was not available or didn't work in any way you may use the factory restore to restore the whole system. By doing that, the system will be restored to the first time the computer was used.

#6 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:08:41 AM

Posted 28 October 2012 - 05:05 PM

This thread will now be closed due to lack of activity and the fact that there is no quick fix.

If you should have a new issue, please start a new topic.

Every one else should start a new topic.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users