Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Blue screen, information in message: Computer 2


  • This topic is locked This topic is locked
6 replies to this topic

#1 KWR5

KWR5

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:05:37 PM

Posted 19 December 2014 - 07:42 PM

technical information:

*** STOP: 0x00000101 (0x00000061,0x00000000, 0x807c4120,0x00000001)

 

collecting data for crash dump

initializing disk for crash dump

dumping physical memory to disk: 100

contact your system admin

 

DDS (Ver_2012-11-20.01) - NTFS_x86 NETWORK
Internet Explorer: 11.0.9600.17496
Run by Judie at 19:21:32 on 2014-12-19
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.1918.1256 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\Qustodio\qproxy\qengine.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.ask.com/?l=dis&o=14196
uDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
mRun: [OEM02Mon.exe] c:\windows\OEM02Mon.exe
mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [QAppTray] "c:\program files\qustodio\qapp\QAppTray.exe"
mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRunOnce: [GrpConv] grpconv -o
StartupFolder: c:\users\judie\appdata\roaming\micros~1\windows\startm~1\programs\startup\delldo~1.lnk - c:\program files\dell\delldock\DellDock.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
LSP: c:\windows\system32\qproxy.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab
DPF: {BAE1D8DF-0B35-47E3-A1E7-EEB3FF2ECD19} - hxxp://games.bigfishgames.com/en_dinerdashfloontheg/online/ddfotg.1.0.0.33.cab
DPF: {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{16F67F0C-64EE-4A5F-A47A-90751A647BB5} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{16F67F0C-64EE-4A5F-A47A-90751A647BB5}\374756078616E69656 : DHCPNameServer = 192.168.254.254 192.168.254.254
TCP: Interfaces\{16F67F0C-64EE-4A5F-A47A-90751A647BB5}\66D636D27657563747 : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{16F67F0C-64EE-4A5F-A47A-90751A647BB5}\66D636D27657563747 : DHCPNameServer = 4.2.2.2 8.8.8.8 192.168.207.103
TCP: Interfaces\{16F67F0C-64EE-4A5F-A47A-90751A647BB5}\D4970286F6D65602E6564777F627B6 : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{16F67F0C-64EE-4A5F-A47A-90751A647BB5}\D4970286F6D65602E6564777F627B6 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{16F67F0C-64EE-4A5F-A47A-90751A647BB5}\D6F62727E65647 : DHCPNameServer = 192.168.254.254 192.168.254.254
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\39.0.2171.95\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R2 qengine;qengine;c:\program files\qustodio\qproxy\qengine.exe [2014-5-29 3884880]
S0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-12-17 49944]
S0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-12-17 206248]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [2014-12-17 787800]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2014-12-17 423784]
S1 qwd;qwd service;c:\windows\system32\drivers\qwd.sys [2014-10-20 25304]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-12-17 24184]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-12-17 70384]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-12-17 91496]
S2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2014-12-17 50344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2010-1-11 155648]
S2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes anti-malware\mbamscheduler.exe [2014-8-31 1871160]
S2 MBAMService;MBAMService;c:\program files\malwarebytes anti-malware\mbamservice.exe [2014-8-31 969016]
S2 qupdate;qupdate;c:\program files\qustodio\qapp\QUpdateService.exe [2014-5-29 1853240]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\avast software\avast\ng\vbox\VBoxAswDrv.sys [2014-12-17 218192]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\avast software\avast\ng\vbox\AvastVBoxSVC.exe [2014-12-17 3192344]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 CisUtMonitor;CisUtMonitor;c:\windows\system32\drivers\CisUtMonitor.sys [2014-9-9 27600]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-12-17 102912]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-8-31 23256]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-8-31 114904]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-8-31 51928]
S3 MHIKEY10;MHIKEY10;c:\windows\system32\drivers\MHIKEY10.sys [2010-10-1 52096]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-13 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2011-8-21 1343400]
.
=============== File Associations ===============
.
ShellExec: AcroRd32.exe: NCHconvertdoc="c:\program files\nch software\videopad\videopad.exe" -extfind Doxillion "%L"
.
=============== Created Last 30 ================
.
2014-12-19 12:50:47 -------- d-sh--w- c:\users\judie\appdata\local\EmieUserList
2014-12-19 12:50:47 -------- d-sh--w- c:\users\judie\appdata\local\EmieSiteList
2014-12-19 12:50:47 -------- d-sh--w- c:\users\judie\appdata\local\EmieBrowserModeList
2014-12-19 05:06:26 32768 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2014-12-19 04:34:14 114904 ----a-w- c:\windows\system32\drivers\65A03C1A.sys
2014-12-19 03:58:34 -------- d-----w- c:\program files\Enigma Software Group
2014-12-18 02:58:24 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-12-18 01:28:44 -------- d-----w- c:\program files\iPod
2014-12-18 01:28:40 -------- d-----w- c:\programdata\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
2014-12-18 01:07:35 -------- d-----w- c:\users\judie\appdata\roaming\Dropbox
2014-12-18 01:04:13 -------- d-----w- c:\windows\system32\vbox
2014-12-18 01:01:27 -------- d-----w- c:\users\judie\appdata\roaming\AVAST Software
2014-12-18 00:59:13 91496 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-12-18 00:59:12 206248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-12-18 00:59:11 70384 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-12-18 00:59:11 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-12-18 00:59:10 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-12-18 00:59:09 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-12-18 00:59:03 787800 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-12-18 00:58:51 43152 ----a-w- c:\windows\avastSS.scr
2014-12-18 00:56:06 -------- d-----w- c:\program files\AVAST Software
2014-12-18 00:46:46 6144 ----a-w- c:\windows\system32\KBDYAK.DLL
2014-12-18 00:46:46 6144 ----a-w- c:\windows\system32\KBDBASH.DLL
2014-12-17 12:52:00 -------- d-s---w- c:\windows\system32\CompatTel
2014-12-17 12:52:00 -------- d-----w- c:\windows\system32\appraiser
2014-12-17 05:09:04 3209728 ----a-w- c:\windows\system32\mf.dll
2014-12-17 05:09:04 23040 ----a-w- c:\windows\system32\mfpmp.exe
2014-12-17 05:09:04 2048 ----a-w- c:\windows\system32\mferror.dll
2014-12-17 05:09:04 103424 ----a-w- c:\windows\system32\mfps.dll
2014-12-17 05:09:03 50176 ----a-w- c:\windows\system32\rrinstaller.exe
2014-12-17 04:53:37 -------- d-----w- c:\windows\Migration
2014-12-17 04:37:45 9054624 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{fff6eef0-202b-4d4d-b78f-4776db8a109c}\mpengine.dll
2014-12-17 04:19:50 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2014-12-17 04:19:50 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2014-12-17 04:19:50 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2014-12-17 04:19:50 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2014-12-17 04:19:50 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2014-12-17 04:19:49 613888 ----a-w- c:\windows\system32\WUDFx.dll
2014-12-17 04:19:49 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2014-12-17 04:18:32 99480 ----a-w- c:\windows\system32\infocardapi.dll
2014-12-17 04:18:28 8856 ----a-w- c:\windows\system32\icardres.dll
2014-12-17 04:18:18 619672 ----a-w- c:\windows\system32\icardagt.exe
2014-12-17 04:18:15 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-12-17 04:06:11 -------- d-----w- c:\windows\system32\MRT
2014-12-17 03:54:41 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2014-12-17 03:54:40 164864 ----a-w- c:\program files\windows media player\wmplayer.exe
2014-12-17 03:29:39 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2014-12-17 03:29:39 1168384 ----a-w- c:\windows\system32\crypt32.dll
2014-12-17 03:29:39 103936 ----a-w- c:\windows\system32\cryptnet.dll
2014-12-17 03:29:31 49152 ----a-w- c:\windows\system32\taskhost.exe
2014-12-17 03:29:26 44032 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2014-12-17 03:29:26 193536 ----a-w- c:\windows\system32\dhcpcore6.dll
2014-12-17 03:28:22 1505280 ----a-w- c:\windows\system32\d3d11.dll
2014-12-17 03:28:13 903168 ----a-w- c:\windows\system32\certutil.exe
2014-12-17 03:28:13 43008 ----a-w- c:\windows\system32\certenc.dll
2014-12-17 03:28:00 679424 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-12-17 03:28:00 656896 ----a-w- c:\windows\system32\nshwfp.dll
2014-12-17 03:28:00 216576 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-12-17 03:26:49 3969984 ----a-w- c:\windows\system32\ntkrnlpa.exe
2014-12-17 03:26:48 3914176 ----a-w- c:\windows\system32\ntoskrnl.exe
2014-12-17 03:26:47 538112 ----a-w- c:\windows\system32\objsel.dll
2014-12-17 03:26:47 51200 ----a-w- c:\windows\system32\cngprovider.dll
2014-12-17 03:26:47 49664 ----a-w- c:\windows\system32\adprovider.dll
2014-12-17 03:26:47 48128 ----a-w- c:\windows\system32\capiprovider.dll
2014-12-17 03:26:47 47616 ----a-w- c:\windows\system32\dpapiprovider.dll
2014-12-17 03:26:47 36864 ----a-w- c:\windows\system32\dimsroam.dll
2014-12-17 03:26:47 35328 ----a-w- c:\windows\system32\wincredprovider.dll
2014-12-17 03:26:47 293376 ----a-w- c:\windows\system32\KernelBase.dll
2014-12-17 03:26:28 626688 ----a-w- c:\windows\system32\usp10.dll
2014-12-17 03:24:41 640512 ----a-w- c:\windows\system32\advapi32.dll
2014-12-17 03:24:41 619520 ----a-w- c:\windows\system32\tdh.dll
2014-12-17 03:24:41 1289096 ----a-w- c:\windows\system32\ntdll.dll
2014-12-17 03:24:40 69632 ----a-w- c:\windows\system32\smss.exe
2014-12-17 03:24:40 38912 ----a-w- c:\windows\system32\csrsrv.dll
2014-12-17 03:24:37 2363904 ----a-w- c:\windows\system32\msi.dll
2014-12-17 03:24:18 434688 ----a-w- c:\windows\system32\scavengeui.dll
2014-12-17 03:24:12 793600 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-12-17 03:24:09 231424 ----a-w- c:\windows\system32\mswsock.dll
2014-12-17 03:24:01 155136 ----a-w- c:\windows\system32\charmap.exe
2014-12-17 03:22:58 163840 ----a-w- c:\windows\system32\scrrun.dll
2014-12-17 03:21:48 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-12-17 03:20:56 76288 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-12-17 03:20:56 6016 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-12-17 03:20:56 43520 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-12-17 03:20:56 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-12-17 03:20:56 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-12-17 03:20:56 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2014-12-17 03:20:56 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-12-17 03:19:48 47104 ----a-w- c:\windows\system32\appinfo.dll
2014-12-17 03:00:21 248832 ----a-w- c:\windows\system32\WSManMigrationPlugin.dll
2014-12-17 03:00:21 214016 ----a-w- c:\windows\system32\WsmWmiPl.dll
2014-12-17 03:00:21 198656 ----a-w- c:\windows\system32\WSManHTTPConfig.exe
2014-12-17 03:00:21 145920 ----a-w- c:\windows\system32\WsmAuto.dll
2014-12-17 03:00:21 1177088 ----a-w- c:\windows\system32\WsmSvc.dll
2014-12-17 02:47:22 2425856 ----a-w- c:\windows\system32\wucltux.dll
2014-12-17 02:46:56 92672 ----a-w- c:\windows\system32\wudriver.dll
2014-12-17 02:46:41 33792 ----a-w- c:\windows\system32\wuapp.exe
2014-12-17 02:46:41 179656 ----a-w- c:\windows\system32\wuwebv.dll
2014-12-17 02:41:34 -------- d-sh--w- C:\$RECYCLE.BIN
2014-12-17 02:20:45 98816 ----a-w- c:\windows\sed.exe
2014-12-17 02:20:45 256000 ----a-w- c:\windows\PEV.exe
2014-12-17 02:20:45 208896 ----a-w- c:\windows\MBR.exe
2014-12-17 02:06:49 -------- d-----w- c:\users\judie\appdata\local\Macromedia
2014-12-11 13:52:08 3981488 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
.
==================== Find3M  ====================
.
2014-12-19 22:33:58 114904 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-18 02:58:24 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-12-13 23:54:07 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-12-13 23:54:07 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-12-04 04:38:59 337920 ----a-w- c:\windows\system32\generaltel.dll
2014-12-04 04:38:45 610304 ----a-w- c:\windows\system32\invagent.dll
2014-12-04 04:38:40 315392 ----a-w- c:\windows\system32\devinv.dll
2014-12-04 04:38:37 728576 ----a-w- c:\windows\system32\appraiser.dll
2014-12-04 04:38:36 202752 ----a-w- c:\windows\system32\aepdu.dll
2014-12-04 04:38:36 159744 ----a-w- c:\windows\system32\aepic.dll
2014-12-04 04:34:13 873984 ----a-w- c:\windows\system32\aeinv.dll
2014-12-01 23:28:26 1160872 ----a-w- c:\windows\system32\aitstatic.exe
2014-11-24 19:04:58 229000 ------w- c:\windows\system32\MpSigStub.exe
2014-11-21 11:14:20 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-11-21 11:14:10 75480 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-11-21 11:14:06 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-11-11 02:44:32 186880 ----a-w- c:\windows\system32\pku2u.dll
2014-11-11 02:44:25 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-11-11 01:32:14 74752 ----a-w- c:\windows\system32\drivers\tdx.sys
2014-11-08 02:45:09 2048 ----a-w- c:\windows\system32\tzres.dll
2014-10-25 01:32:37 67584 ----a-w- c:\windows\system32\packager.dll
2014-10-20 03:31:27 414392 ----a-w- c:\windows\system32\drivers\aswsp.sys.1413775949811
2014-10-18 01:33:18 571904 ----a-w- c:\windows\system32\oleaut32.dll
2014-10-14 01:56:19 136632 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-10-14 01:50:50 523776 ----a-w- c:\windows\system32\termsrv.dll
2014-10-14 01:50:39 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-10-14 01:47:30 146432 ----a-w- c:\windows\system32\msaudite.dll
2014-10-14 01:46:02 681984 ----a-w- c:\windows\system32\adtschema.dll
2014-10-10 00:45:54 2379264 ----a-w- c:\windows\system32\win32k.sys
2014-10-03 01:44:42 442880 ----a-w- c:\windows\system32\AUDIOKSE.dll
2014-10-03 01:44:31 275968 ----a-w- c:\windows\system32\EncDump.dll
2014-10-03 01:44:26 475136 ----a-w- c:\windows\system32\audiosrv.dll
2014-10-03 01:44:26 374784 ----a-w- c:\windows\system32\AudioEng.dll
2014-10-03 01:44:26 195584 ----a-w- c:\windows\system32\AudioSes.dll
2014-09-25 01:40:50 519680 ----a-w- c:\windows\system32\qdvd.dll
.
============= FINISH: 19:24:33.76 ===============
Attached File  attach.txt   20.02KB   0 downloads


BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,620 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:37 PM

Posted 24 December 2014 - 07:45 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/560440 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 KWR5

KWR5
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:05:37 PM

Posted 25 December 2014 - 05:49 PM

technical information:

*** STOP: 0x00000101 (0x00000061,0x00000000, 0x807c4120,0x00000001)

 

collecting data for crash dump

initializing disk for crash dump

dumping physical memory to disk: 100

contact your system admin

 

I just reinstalled windows yesterday, it ran fine until I shut down and windows did 120 updates and I plugged in iphone. Did not download itunes. Only thing is has ofter OS is avast, malwarebytes.

 

DDS (Ver_2012-11-20.01) - NTFS_x86 NETWORK
Internet Explorer: 11.0.9600.17496
Run by Hannah at 17:20:11 on 2014-12-25
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.1918.1276 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Windows\helppane.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{13701040-ED79-42DC-825F-F07D19C8E326} : DHCPNameServer = 192.168.1.1
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\39.0.2171.95\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
S0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-12-25 49944]
S0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-12-25 206248]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [2014-12-25 787800]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2014-12-25 423784]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-12-25 24184]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-12-25 70384]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-12-25 91496]
S2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2014-12-25 50344]
S2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes anti-malware\mbamscheduler.exe [2014-12-25 1871160]
S2 MBAMService;MBAMService;c:\program files\malwarebytes anti-malware\mbamservice.exe [2014-12-25 969016]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\avast software\avast\ng\vbox\VBoxAswDrv.sys [2014-12-25 218192]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\avast software\avast\ng\vbox\AvastVBoxSVC.exe [2014-12-25 3192344]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-12-25 102912]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-12-25 23256]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-12-25 114904]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-12-25 51928]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-13 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
.
=============== Created Last 30 ================
.
2014-12-25 20:57:45 114904 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-25 20:56:44 75480 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-12-25 20:56:44 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-12-25 20:56:44 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-12-25 20:56:44 -------- d-----w- c:\programdata\Malwarebytes
2014-12-25 20:56:43 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-12-25 20:56:19 -------- d-----w- c:\users\hannah\appdata\local\Programs
2014-12-25 20:49:28 -------- d-----w- c:\windows\system32\vbox
2014-12-25 20:49:24 -------- d-----w- c:\users\hannah\appdata\roaming\Dropbox
2014-12-25 20:48:05 -------- d-----w- c:\users\hannah\appdata\roaming\AVAST Software
2014-12-25 20:46:46 91496 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-12-25 20:46:45 206248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-12-25 20:46:43 70384 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-12-25 20:46:43 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-12-25 20:46:42 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-12-25 20:46:41 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-12-25 20:46:33 787800 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-12-25 20:45:45 43152 ----a-w- c:\windows\avastSS.scr
2014-12-25 20:43:31 -------- d-----w- c:\program files\AVAST Software
2014-12-25 20:42:37 -------- d-----w- c:\programdata\AVAST Software
2014-12-25 18:57:06 99480 ----a-w- c:\windows\system32\infocardapi.dll
2014-12-25 18:57:00 8856 ----a-w- c:\windows\system32\icardres.dll
2014-12-25 18:56:49 619672 ----a-w- c:\windows\system32\icardagt.exe
2014-12-25 18:56:44 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-12-25 18:55:41 5120 ----a-w- c:\windows\system32\wmi.dll
2014-12-25 18:55:41 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2014-12-25 18:30:38 69632 ----a-w- c:\windows\system32\smss.exe
2014-12-25 18:30:38 640512 ----a-w- c:\windows\system32\advapi32.dll
2014-12-25 18:30:38 619520 ----a-w- c:\windows\system32\tdh.dll
2014-12-25 18:30:38 38912 ----a-w- c:\windows\system32\csrsrv.dll
2014-12-25 18:30:38 1289096 ----a-w- c:\windows\system32\ntdll.dll
2014-12-25 18:30:11 231424 ----a-w- c:\windows\system32\mswsock.dll
2014-12-25 18:29:44 49152 ----a-w- c:\windows\system32\taskhost.exe
2014-12-25 18:25:03 1505280 ----a-w- c:\windows\system32\d3d11.dll
2014-12-25 18:24:03 -------- d-sh--w- c:\windows\Installer
2014-12-25 18:19:41 -------- d-----w- c:\users\hannah\appdata\local\Google
2014-12-25 18:19:30 -------- d-----w- c:\users\hannah\appdata\local\Apps
2014-12-25 18:19:29 -------- d-----w- c:\users\hannah\appdata\local\Deployment
2014-12-25 14:12:19 530432 ----a-w- c:\windows\system32\comctl32.dll
2014-12-25 14:12:18 55808 ----a-w- c:\windows\system32\drivers\hidclass.sys
2014-12-25 14:12:18 25728 ----a-w- c:\windows\system32\drivers\hidparse.sys
2014-12-25 14:12:16 571904 ----a-w- c:\windows\system32\oleaut32.dll
2014-12-25 14:12:15 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-12-25 14:12:11 175104 ----a-w- c:\windows\system32\wintrust.dll
2014-12-25 14:11:52 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2014-12-25 14:11:52 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2014-12-25 14:11:52 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2014-12-25 14:11:50 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2014-12-25 14:11:35 376832 ----a-w- c:\windows\system32\dpnet.dll
2014-12-25 14:11:13 654336 ----a-w- c:\windows\system32\rpcrt4.dll
2014-12-25 14:11:01 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-12-25 14:11:00 186880 ----a-w- c:\windows\system32\pku2u.dll
2014-12-25 14:09:43 305152 ----a-w- c:\windows\system32\gdi32.dll
2014-12-25 14:08:58 70656 ----a-w- c:\windows\system32\fontsub.dll
2014-12-25 14:07:56 156824 ----a-w- c:\windows\system32\mscorier.dll
2014-12-25 14:07:56 1131664 ----a-w- c:\windows\system32\dfshim.dll
2014-12-25 14:07:55 81560 ----a-w- c:\windows\system32\mscories.dll
2014-12-25 14:07:39 67584 ----a-w- c:\windows\system32\packager.dll
2014-12-25 14:07:07 314880 ----a-w- c:\windows\system32\webio.dll
2014-12-25 14:07:03 94208 ----a-w- c:\program files\common files\system\ole db\msdaosp.dll
2014-12-25 14:07:03 86016 ----a-w- c:\windows\system32\odbccu32.dll
2014-12-25 14:07:03 81920 ----a-w- c:\windows\system32\odbccr32.dll
2014-12-25 14:07:03 319488 ----a-w- c:\windows\system32\odbcjt32.dll
2014-12-25 14:07:03 122880 ----a-w- c:\windows\system32\odbccp32.dll
2014-12-25 14:07:02 163840 ----a-w- c:\windows\system32\odbctrac.dll
2014-12-25 14:05:58 86016 ----a-w- c:\windows\system32\drivers\usbcir.sys
2014-12-25 14:00:37 47104 ----a-w- c:\windows\system32\appinfo.dll
2014-12-25 07:43:49 -------- d-----w- c:\windows\Panther
2014-12-25 07:32:13 -------- d-----w- C:\Windows.old
2014-12-25 05:44:54 9054624 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{1b0a4eeb-e97c-49b5-8c5f-88909b4ae66b}\mpengine.dll
2014-12-25 05:44:51 229000 ------w- c:\windows\system32\MpSigStub.exe
2014-12-25 05:31:53 -------- d-----w- c:\users\hannah\appdata\local\ElevatedDiagnostics
2014-12-25 05:25:06 826880 ----a-w- c:\windows\system32\rdpcore.dll
2014-12-25 05:25:06 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2014-12-25 05:15:22 2425856 ----a-w- c:\windows\system32\wucltux.dll
2014-12-25 05:15:09 92672 ----a-w- c:\windows\system32\wudriver.dll
.
==================== Find3M  ====================
.
2014-12-25 20:45:49 422760 ----a-w- c:\windows\system32\drivers\aswsp.sys.1419540425421
2014-12-25 20:45:18 787800 ----a-w- c:\windows\system32\drivers\aswsnx.sys.1419540428744
2014-12-25 18:27:04 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-14 01:56:19 136632 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-10-14 01:50:50 523776 ----a-w- c:\windows\system32\termsrv.dll
2014-10-14 01:50:39 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-10-14 01:47:30 146432 ----a-w- c:\windows\system32\msaudite.dll
2014-10-14 01:46:02 681984 ----a-w- c:\windows\system32\adtschema.dll
2014-10-10 00:45:54 2379264 ----a-w- c:\windows\system32\win32k.sys
2014-10-03 01:44:42 442880 ----a-w- c:\windows\system32\AUDIOKSE.dll
2014-10-03 01:44:31 275968 ----a-w- c:\windows\system32\EncDump.dll
2014-10-03 01:44:26 475136 ----a-w- c:\windows\system32\audiosrv.dll
2014-10-03 01:44:26 374784 ----a-w- c:\windows\system32\AudioEng.dll
2014-10-03 01:44:26 195584 ----a-w- c:\windows\system32\AudioSes.dll
.
============= FINISH: 17:21:13.22 ===============
 
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium 
Boot Device: \Device\HarddiskVolume1
Install Date: 12/25/2014 12:13:56 AM
System Uptime: 12/25/2014 4:17:12 PM (1 hours ago)
.
Motherboard: Dell Inc. |  | 0UK441
Processor: AMD Turion™ 64 X2 Mobile Technology TL-60 | Microprocessor | 1995/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 233 GiB total, 169.289 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: 
Description: Base System Device
Device ID: PCI\VEN_1180&DEV_0852&SUBSYS_01FD1028&REV_12\4&C9A676E&0&0CA4
Manufacturer: 
Name: Base System Device
PNP Device ID: PCI\VEN_1180&DEV_0852&SUBSYS_01FD1028&REV_12\4&C9A676E&0&0CA4
Service: 
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: avast! VM Monitor
Device ID: ROOT\LEGACY_ASWVMM\0000
Manufacturer: 
Name: avast! VM Monitor
PNP Device ID: ROOT\LEGACY_ASWVMM\0000
Service: aswVmm
.
Class GUID: 
Description: Base System Device
Device ID: PCI\VEN_1180&DEV_0592&SUBSYS_01FD1028&REV_12\4&C9A676E&0&0BA4
Manufacturer: 
Name: Base System Device
PNP Device ID: PCI\VEN_1180&DEV_0592&SUBSYS_01FD1028&REV_12\4&C9A676E&0&0BA4
Service: 
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: Security Processor Loader Driver
Device ID: ROOT\LEGACY_SPLDR\0000
Manufacturer: 
Name: Security Processor Loader Driver
PNP Device ID: ROOT\LEGACY_SPLDR\0000
Service: spldr
.
Class GUID: 
Description: Base System Device
Device ID: PCI\VEN_1180&DEV_0843&SUBSYS_01FD1028&REV_12\4&C9A676E&0&0AA4
Manufacturer: 
Name: Base System Device
PNP Device ID: PCI\VEN_1180&DEV_0843&SUBSYS_01FD1028&REV_12\4&C9A676E&0&0AA4
Service: 
.
==== System Restore Points ===================
.
RP3: 12/25/2014 12:14:29 AM - Windows Update
RP4: 12/25/2014 12:25:07 AM - Windows Update
RP5: 12/25/2014 1:21:28 PM - Windows Update
RP7: 12/25/2014 3:43:13 PM - avast! antivirus system restore point
.
==== Installed Programs ======================
.
Avast Free Antivirus
Google Chrome
Google Update Helper
Malwarebytes Anti-Malware version 2.0.4.1028
.
==== Event Viewer Messages From Past Week ========
.
12/25/2014 5:21:03 PM, Error: Service Control Manager [7001]  - The Computer Browser service depends on the Server service which failed to start because of the following error:  The dependency service or group failed to start.
12/25/2014 5:20:18 PM, Error: Service Control Manager [7001]  - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:  The dependency service or group failed to start.
12/25/2014 4:52:01 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
12/25/2014 4:52:01 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
12/25/2014 4:51:47 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
12/25/2014 4:51:37 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
12/25/2014 4:17:55 PM, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  aswRvrt aswSnx aswSP aswVmm discache spldr Wanarpv6
12/25/2014 4:17:53 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001]  - The computer has rebooted from a bugcheck.  The bugcheck was: 0x00000101 (0x00000061, 0x00000000, 0x807c4120, 0x00000001). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 122514-34133-01.
12/25/2014 3:30:26 PM, Error: Schannel [36888]  - The following fatal alert was generated: 70. The internal error state is 105.
12/25/2014 3:24:23 PM, Error: Service Control Manager [7023]  - 
12/25/2014 3:18:40 PM, Error: Microsoft-Windows-WMPNSS-Service [14324]  - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(WindowsMediaPlayer) encountered error '0x80004002'. If possible, reinstall Windows Media Player.
12/25/2014 3:18:38 PM, Error: Service Control Manager [7023]  - The Windows Defender service terminated with the following error:  The process cannot access the file because it is being used by another process.
12/25/2014 3:18:27 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.
12/25/2014 3:18:27 PM, Error: Service Control Manager [7000]  - The Google Update Service (gupdate) service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
12/25/2014 3:18:26 PM, Error: Service Control Manager [7031]  - The Print Spooler service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
12/25/2014 3:18:26 PM, Error: Service Control Manager [7023]  - The Windows Font Cache Service service terminated with the following error:  The process cannot access the file because it is being used by another process.
12/25/2014 2:39:16 PM, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x8024200d: Security Update for Windows 7 (KB3013126).
12/25/2014 12:15:57 AM, Error: Service Control Manager [7022]  - The Windows Search service hung on starting.
.
==== End Of File ===========================
 


#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 36,572 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:03:37 PM

Posted 28 December 2014 - 06:05 PM

Greetings KWR5 and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that. :thumbup2:

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far. While I review our situation please run the below for me.

===================================================

Farbar Recovery Scan Tool (FRST)

--------------------
  • Download Farbar Recover Scan Tool for either 32 bit or 64 bit systems and save it to your desktop <<< Important
  • If you are unsure if you have 32 bit or 64 bit simply download and try one. If that doesn't run properly the other one should
  • Double click the icon
  • Click Yes to the disclaimer
  • Make sure the Addition.txt box is checked
  • Click Scan and allow the program to run
  • Click OK on the Scan complete screen, then OK on the Addition.txt pop up screen
  • 2 Notepad documents should now be open on your desktop.
  • Please copy and paste the contents of both in your reply
===================================================

System Summary Information

--------------------
  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time
  • Type msinfo32 and press Enter
  • Left click on System Summary
  • Click File, Save, and name the file Summary
  • Zip and attach the file to your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • FRST results
  • Addition log
  • System Summary Information

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#5 KWR5

KWR5
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:05:37 PM

Posted 29 December 2014 - 11:37 PM

This dell does not support windows 7. after windows update is when I get the BSOD. I will install XP.

Thank you

Kim



#6 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 36,572 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:03:37 PM

Posted 30 December 2014 - 09:09 AM

Thank you for letting us know.

Good luck.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#7 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 36,572 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:03:37 PM

Posted 30 December 2014 - 09:09 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users