Active Computer goes to Blue Screen directly after start-up

steiv n · 2009/08/20

[Active] Computer goes to Blue Screen directly after start-up

So basically, the only way to get my computer to run is to start-up in safe mode. I ran a scan with Malwarebyte's Anti-malware it found some currupt files and deleted them and my computer ran normal for about 30 minutes then bluscreened again. This time when I restarted (in safe mode)programs would not open correctly or at all. I ran another scan (by right click malwarebytes and selecting "run as.. ")and deleted more currupt files but now it's back to going directly to blue screen ater loading windows outside of safemode, though programs are back to starting normally.
Malwarebytes is not finding any bad files on scan, so I'm kind of at a loss on what to do next. I did try to download superspyware but couldnt install in safe mode.

steiv n · 2009/08/20

Sorry, here:

DDS (Ver_09-07-30.01) - NTFSx86 NETWORK
Run by New owner at 11:00:51.53 on Thu 08/20/2009
Internet Explorer: 8.0.6001.18813
Microsoft® Windows Vistaâ„¢ Home Basic 6.0.6001.1.1252.1.1033.18.2813.1864 [GMT -4:00]

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\Explorer.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\BitTorrent\bittorrent.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
c:\PROGRA~1\mcafee\msc\mcuimgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\New owner\Desktop\dds.scr
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://google.com/
uDefault_Page_URL = hxxp://www.msn.com
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=2&o=vb32&d=1208&m=aspire_5515
mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=2&o=vb32&d=1208&m=aspire_5515
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: McAfee Phishing Filter: {377c180e-6f0e-4d4c-980f-f45bd3d40cf4} - c:\progra~1\mcafee\msk\mcapbho.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Freecause Toolbar BHO: {614bda1f-9bef-4cd1-bde4-fa4804929b4a} - c:\users\momnd\mypoints toolbar 2.0\Toolbar.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\mcafee\virusscan\scriptsn.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.15642\swg.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_A8904FB862BD9564.dll
BHO: MSN Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\msn\toolbar\3.0.1203.0\msneshellx.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
TB: MSN Toolbar: {1e61ed7c-7cb8-49d6-b9e9-ab4c880c8414} - c:\program files\msn\toolbar\3.0.1203.0\msneshellx.dll
TB: MyPoints Toolbar 2.0: {89a2510a-b4b6-4683-bec9-1b96700bc7f1} - c:\users\momnd\mypoints toolbar 2.0\Toolbar.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
uRun: [BitTorrent DNA] "c:\users\new owner\program files\dna\btdna.exe "
uRun: [BitTorrent] "c:\program files\bittorrent\bittorrent.exe "
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [AlcoholAutomount] "c:\program files\alcohol soft\alcohol 120\axcmd.exe" /automount
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [LManager] c:\progra~1\launch~1\LManager.exe
mRun: [mcagent_exe] c:\program files\mcafee.com\agent\mcagent.exe /runkey
mRun: [BkupTray] "c:\program files\newtech infosystems\nti backup now 5\BkupTray.exe "
mRun: [Acer Assist Launcher] c:\program files\acer\acer assist\launcher.exe
mRun: [<NO NAME>]
mRun: [RoxWatchTray] "c:\program files\common files\roxio shared\9.0\sharedcom\RoxWatchTray9.exe "
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe "
mRun: [AdobeCS4ServiceManager] "c:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe "
mRun: [MaxMenuMgr] "c:\program files\seagate\seagatemanager\freeagent status\StxMenuMgr.exe "
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
Trusted Zone: sony.com\launcher.station
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: {AE8473D5-FDAD-4FF8-86EA-33E6C2D4D186} = 68.28.250.92 68.28.242.91
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll

================= FIREFOX ===================

FF - ProfilePath -
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.enforce_same_site_origin ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.cache_size ", 51200);
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.ogg.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.wave.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.autoplay.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.urlbar.autocomplete.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "capability.policy.mailnews.*.wholeText ", "noAccess ");
c:\program files\mozilla firefox\greprefs\all.js - pref( "dom.storage.default_quota ", 5120);
c:\program files\mozilla firefox\greprefs\all.js - pref( "content.sink.event_probe_rate ", 3);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.http.prompt-temp-redirect ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "layout.css.dpi ", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref( "layout.css.devPixelsPerPx ", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref( "gestures.enable_single_finger_input ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "dom.max_chrome_script_run_time ", 0);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.tcp.sendbuffer ", 131072);
c:\program files\mozilla firefox\greprefs\all.js - pref( "geo.enabled ", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.remember_cert_checkbox_default_setting ", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "browser.search.param.yahoo-fr ", "moz35 ");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "browser.search.param.yahoo-fr-cjkt ", "moz35 ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "extensions.blocklist.level ", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.urlbar.restrict.typed ", "~ ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.urlbar.default.behavior ", 0);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.history ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.formdata ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.passwords ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.downloads ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.cookies ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.cache ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.sessions ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.offlineApps ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.siteSettings ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.history ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.formdata ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.passwords ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.downloads ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.cookies ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.cache ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.sessions ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.offlineApps ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.siteSettings ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.sanitize.migrateFx3Prefs ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.ssl_override_behavior ", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "security.alternate_certificate_error_page ", "certerror ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.privatebrowsing.autostart ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.privatebrowsing.dont_prompt_on_enter ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "geo.wifi.uri ", "https://www.google.com/loc/json ");

============= SERVICES / DRIVERS ===============

R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2009-7-4 130936]
S2 AntipPro2009_100;AntipyProex;c:\windows\svchast.exe --> c:\windows\svchast.exe [?]
S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\newtech infosystems\nti backup now 5\client\Agentsvc.exe [2008-3-3 16384]
S2 ETService;Empowering Technology Service;c:\program files\acer\empowering technology\service\ETService.exe [2008-12-28 24576]
S2 FreeAgentGoNext Service;Seagate Service;c:\program files\seagate\seagatemanager\sync\FreeAgentService.exe [2009-3-27 165160]
S2 gupdate1c9fa92315764b0;Google Update Service (gupdate1c9fa92315764b0);c:\program files\google\update\GoogleUpdate.exe [2009-7-1 133104]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\mcafee\siteadvisor\McSACore.exe [2009-2-6 210216]
S2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\newtech infosystems\nti backup now 5\BackupSvc.exe [2008-4-26 45056]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\newtech infosystems\nti backup now 5\SchedulerSvc.exe [2008-4-26 131072]
S2 SeaPort;SeaPort;c:\program files\microsoft\search enhancement pack\seaport\SeaPort.exe [2009-5-19 240512]
S2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2009-8-6 2749736]
S2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\common files\microsoft shared\windows live\WLIDSVC.EXE [2009-3-30 1533808]
S3 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr.sys [2009-8-7 55280]
S3 fsssvc;Windows Live Family Safety;c:\program files\windows live\family safety\fsssvc.exe [2009-2-6 533360]
S3 sdAuxService;PC Tools Auxiliary Service;c:\program files\spyware doctor\pctsAuxs.exe [2009-7-4 348752]
S3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\drivers\wacmoumonitor.sys [2009-8-6 15656]

=============== Created Last 30 ================

2009-08-20 00:48 <DIR> --d----- c:\program files\common files\Wise Installation Wizard
2009-08-20 00:44 <DIR> --d----- c:\users\new owner\Option
2009-08-19 00:25 <DIR> --d----- c:\users\newown~1\appdata\roaming\Malwarebytes
2009-08-19 00:25 38,160 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-08-19 00:25 <DIR> --d----- c:\programdata\Malwarebytes
2009-08-19 00:25 <DIR> --d----- c:\progra~2\Malwarebytes
2009-08-19 00:25 19,096 a------- c:\windows\system32\drivers\mbam.sys
2009-08-19 00:25 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-08-18 13:23 384,011,431 a------- c:\windows\MEMORY.DMP
2009-08-18 05:58 <DIR> --d----- C:\Westwood
2009-08-17 02:12 <DIR> --d----- c:\users\newown~1\appdata\roaming\uqm
2009-08-17 02:12 <DIR> --d----- c:\program files\The Ur-Quan Masters
2009-08-15 12:38 <DIR> --d----- c:\program files\CCleaner
2009-08-15 12:34 <DIR> --d----- c:\program files\FileHippo.com
2009-08-13 21:16 1,256,448 a------- c:\windows\system32\lsasrv.dll
2009-08-13 21:16 499,712 a------- c:\windows\system32\kerberos.dll
2009-08-13 21:16 213,504 a------- c:\windows\system32\msv1_0.dll
2009-08-13 21:16 175,104 a------- c:\windows\system32\wdigest.dll
2009-08-13 21:16 270,848 a------- c:\windows\system32\schannel.dll
2009-08-13 21:16 439,896 a------- c:\windows\system32\drivers\ksecdd.sys
2009-08-13 21:16 9,728 a------- c:\windows\system32\lsass.exe
2009-08-13 21:16 72,704 a------- c:\windows\system32\secur32.dll
2009-08-13 01:04 313,344 a------- c:\windows\system32\wmpdxm.dll
2009-08-13 01:04 7,680 a------- c:\windows\system32\spwmp.dll
2009-08-13 01:04 4,096 a------- c:\windows\system32\msdxm.ocx
2009-08-13 01:04 4,096 a------- c:\windows\system32\dxmasf.dll
2009-08-13 01:04 43,520 a------- c:\windows\system32\msdxm.tlb
2009-08-13 01:04 18,432 a------- c:\windows\system32\amcompat.tlb
2009-08-13 01:04 71,680 a------- c:\windows\system32\atl.dll
2009-08-13 01:04 160,256 a------- c:\windows\system32\wkssvc.dll
2009-08-13 01:03 2,066,432 a------- c:\windows\system32\mstscax.dll
2009-08-13 01:02 91,136 a------- c:\windows\system32\avifil32.dll
2009-08-10 15:03 <DIR> --d----- c:\program files\Mozilla Sunbird
2009-08-07 23:40 <DIR> --d----- C:\WTablet
2009-08-07 15:21 <DIR> --d----- c:\programdata\Seagate
2009-08-07 15:21 <DIR> --d----- c:\program files\Seagate
2009-08-07 15:21 <DIR> --d----- c:\progra~2\Seagate
2009-08-07 15:15 <DIR> --d----- c:\users\newown~1\appdata\roaming\Windows Live Writer
2009-08-07 13:53 55,280 a------- c:\windows\system32\drivers\fssfltr.sys
2009-08-07 13:51 <DIR> --d----- c:\program files\Microsoft SQL Server Compact Edition
2009-08-07 13:49 <DIR> --d----- c:\program files\Windows Live SkyDrive
2009-08-07 12:41 <DIR> --d----- c:\program files\common files\Windows Live
2009-08-07 12:39 <DIR> --d----- c:\program files\Microsoft
2009-08-06 23:23 <DIR> --d----- c:\programdata\Corel
2009-08-06 23:23 <DIR> --d----- c:\progra~2\Corel
2009-08-06 22:51 <DIR> --d----- c:\users\newown~1\appdata\roaming\WTablet
2009-08-06 22:50 4,222,760 -------- c:\windows\system32\PenTablet.cpl
2009-08-06 22:50 1,421,964 -------- c:\windows\system32\PenTablet.znc
2009-08-06 22:49 11,440 a------- c:\windows\system32\drivers\WacomVKHid.sys
2009-08-06 22:46 11,312 a------- c:\windows\system32\drivers\wacommousefilter.sys
2009-08-06 22:46 13,352 a------- c:\windows\system32\drivers\wacomvhid.sys
2009-08-06 22:45 15,656 a------- c:\windows\system32\drivers\wacmoumonitor.sys
2009-08-06 22:45 <DIR> --d----- c:\windows\system32\WTablet
2009-08-06 22:45 186,152 -------- c:\windows\system32\Pen_Tablet.dll
2009-08-06 22:45 172,840 -------- c:\windows\system32\Wintab32.dll
2009-08-06 22:45 2,749,736 -------- c:\windows\system32\Pen_Tablet.exe
2009-08-06 22:45 <DIR> --d----- c:\program files\Tablet
2009-08-06 00:27 <DIR> --d----- c:\program files\Sony Online Entertainment
2009-08-04 17:40 <DIR> --d----- c:\users\newown~1\appdata\roaming\deskUNPDF
2009-08-03 14:06 <DIR> --d----- c:\program files\CDisplayEx
2009-07-28 22:31 1,024 a------- c:\programdata\1pdfdec.dll
2009-07-28 22:31 1,024 a------- c:\progra~2\1pdfdec.dll
2009-07-28 22:30 48 a------- c:\windows\system32\pdfutil.ini
2009-07-28 17:14 43 a------- c:\windows\gswin32.ini
2009-07-28 14:10 20,886 a------- c:\windows\system32\ddmon.dll
2009-07-28 14:09 <DIR> -cd-h--- c:\programdata\{25931257-6F3F-4B2E-8044-A617196E659E}
2009-07-28 14:09 <DIR> -cd-h--- c:\progra~2\{25931257-6F3F-4B2E-8044-A617196E659E}
2009-07-28 14:09 <DIR> --d----- c:\program files\deskPDF
2009-07-28 14:09 <DIR> --d----- c:\program files\Docudesk
2009-07-28 12:35 <DIR> --d----- c:\programdata\NOS
2009-07-25 10:30 <DIR> --d----- C:\LXKZ32
2009-07-24 16:07 <DIR> --d----- c:\program files\common files\Symantec Shared
2009-07-24 11:26 97,800 a------- c:\windows\system32\infocardapi.dll
2009-07-24 11:26 105,016 a------- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-07-24 11:26 622,080 a------- c:\windows\system32\icardagt.exe
2009-07-24 11:26 37,384 a------- c:\windows\system32\infocardcpl.cpl
2009-07-24 11:26 43,544 a------- c:\windows\system32\PresentationHostProxy.dll
2009-07-24 11:26 11,264 a------- c:\windows\system32\icardres.dll
2009-07-24 11:26 781,344 a------- c:\windows\system32\PresentationNative_v0300.dll
2009-07-24 11:26 326,160 a------- c:\windows\system32\PresentationHost.exe
2009-07-24 11:15 96,760 a------- c:\windows\system32\dfshim.dll
2009-07-24 11:15 282,112 a------- c:\windows\system32\mscoree.dll
2009-07-24 11:15 41,984 a------- c:\windows\system32\netfxperf.dll
2009-07-24 11:15 158,720 a------- c:\windows\system32\mscorier.dll
2009-07-24 11:15 83,968 a------- c:\windows\system32\mscories.dll
2009-07-23 23:37 <DIR> --d----- c:\program files\BlackIsle
2009-07-22 18:59 <DIR> --d----- c:\users\new owner\Incomplete
2009-07-22 18:15 <DIR> --d----- c:\users\newown~1\appdata\roaming\NCH Software
2009-07-22 18:11 <DIR> --d----- c:\programdata\NCH Swift Sound
2009-07-22 18:11 <DIR> --d----- c:\program files\NCH Swift Sound
2009-07-22 17:36 <DIR> --d----- c:\programdata\FLEXnet
2009-07-22 17:08 <DIR> --d----- c:\program files\common files\Macrovision Shared
2009-07-22 16:27 <DIR> --d----- c:\program files\Tag Support Plugin for Media Player

==================== Find3M ====================

2009-08-07 12:38 51,200 a------- c:\windows\inf\infpub.dat
2009-08-07 12:38 86,016 a------- c:\windows\inf\infstrng.dat
2009-08-07 12:38 86,016 a------- c:\windows\inf\infstor.dat
2009-07-28 12:33 73,312 a------- c:\windows\system32\drivers\adfs.sys
2009-07-23 23:39 52,736 a------- c:\windows\ipuninst.exe
2009-07-21 17:52 915,456 a------- c:\windows\system32\wininet.dll
2009-07-21 17:47 109,056 a------- c:\windows\system32\iesysprep.dll
2009-07-21 17:47 71,680 a------- c:\windows\system32\iesetup.dll
2009-07-21 16:13 133,632 a------- c:\windows\system32\ieUnatt.exe
2009-07-16 04:24 4,608 a------- c:\windows\system32\w95inf32.dll
2009-07-16 04:24 2,272 a------- c:\windows\system32\w95inf16.dll
2009-07-11 17:57 192,512 a------- c:\windows\system32\UNPDFMenu.dll
2009-07-06 10:46 410,984 a------- c:\windows\system32\deploytk.dll
2009-07-03 00:11 721,904 a------- c:\windows\system32\drivers\sptd.sys
2009-06-15 11:24 156,672 a------- c:\windows\system32\t2embed.dll
2009-06-15 11:20 72,704 a------- c:\windows\system32\fontsub.dll
2009-06-15 11:20 10,240 a------- c:\windows\system32\dciman32.dll
2009-06-15 08:52 289,792 a------- c:\windows\system32\atmfd.dll
2008-12-04 07:55 665,600 a------- c:\windows\inf\drvindex.dat
2006-11-02 08:39 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 08:39 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 08:39 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 08:39 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 05:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 05:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 05:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 05:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat

============= FINISH: 11:03:57.32 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-07-30.01)

Microsoft® Windows Vistaâ„¢ Home Basic
Boot Device: \Device\HarddiskVolume2
Install Date: 12/28/2008 4:41:21 PM
System Uptime: 8/20/2009 9:29:43 AM (2 hours ago)

Motherboard: Acer | | Nile
Processor: AMD Athlon(tm) Processor 2650e | Socket M2/S1G1 | 1596/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 70 GiB total, 12.173 GiB free.
D: is FIXED (NTFS) - 70 GiB total, 50.285 GiB free.
E: is CDROM (UDF)
F: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

No restore point in system.

==== Installed Programs ======================

AAC Decoder
Acer Assist
Acer Empowering Technology
Acer Mobility Center Plug-In
Acrobat.com
Adobe AIR
Adobe Anchor Service CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Extra Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Recommended Settings CS4
Adobe Color Video Profiles CS CS4
Adobe CSI CS4
Adobe Default Language CS4
Adobe Device Central CS4
Adobe Drive CS4
Adobe Dynamiclink Support
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Flash CS4
Adobe Flash CS4 Extension - Flash Lite STI en
Adobe Flash CS4 Professional
Adobe Flash CS4 STI-en
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Fonts All
Adobe Linguistics CS4
Adobe Media Encoder CS4
Adobe Media Encoder CS4 Importer
Adobe Media Player
Adobe Output Module
Adobe PDF Library Files CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 Support
Adobe Reader 9.1.3
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe Type Support CS4
Adobe Update Manager CS4
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
AdobeColorCommonSetRGB
Alien Shooter
ATI Catalyst Install Manager
AutoUpdate
BitTorrent
BlackBerry Desktop Software 4.3
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization Chinese Standard
Catalyst Control Center Localization Chinese Traditional
Catalyst Control Center Localization Czech
Catalyst Control Center Localization Danish
Catalyst Control Center Localization Dutch
Catalyst Control Center Localization Finnish
Catalyst Control Center Localization French
Catalyst Control Center Localization German
Catalyst Control Center Localization Greek
Catalyst Control Center Localization Hungarian
Catalyst Control Center Localization Italian
Catalyst Control Center Localization Japanese
Catalyst Control Center Localization Korean
Catalyst Control Center Localization Norwegian
Catalyst Control Center Localization Polish
Catalyst Control Center Localization Portuguese
Catalyst Control Center Localization Russian
Catalyst Control Center Localization Spanish
Catalyst Control Center Localization Swedish
Catalyst Control Center Localization Thai
Catalyst Control Center Localization Turkish
ccc-core-static
ccc-utility
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner (remove only)
CDisplayEx 1.4
Choice Guard
CodeBlocks
Connect
Corel Painter Essentials 4
Deal Info
deskPDF 2.5 Professional Edition
deskUNPDF 3 Professional
DivX Codec
DivX Converter
DivX Player
DivX Plus DirectShow Filters
DivX Version Checker
DivX Web Player
DNA
Docudesk GPL Ghostscript 8.15
Fallout
Fallout2
FileHippo.com Update Checker
Google Apps
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
H.264 Decoder
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Java(TM) 6 Update 13
Junk Mail filter update
kuler
Launch Manager
LightScribe 1.4.142.1
LimeWire 5.1.4
M4a/Flac/Ogg/Ape/Mpc Tag Support Plugin for Media Player v 1.1
Malwarebytes' Anti-Malware
McAfee SecurityCenter
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office Live Add-in 1.4
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
MKV Splitter
Mozilla Firefox (3.5.2)
Mozilla Sunbird (0.9)
Mozilla Thunderbird (2.0.0.22)
MSN Toolbar
MSVCRT
MSXML 4.0 SP2 (KB954430)
MyPoints Toolbar 2.0
Nox
NTI Backup Now 5
NTI Backup Now Standard
OpenOffice.org 3.1
Orion
PDF Essentials Plus
PDF Settings CS4
Pen Tablet
Photoshop Camera Raw
Pixel Bender Toolkit
Planescape - Torment
Planescape Torment Hack
Putt Mania
RealPlayer
Realtek 8169 8168 8101E 8102E Ethernet Driver
Realtek High Definition Audio Driver
Roxio Media Manager
Seagate Manager Installer
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB969679)
Security Update for Microsoft Office Excel 2007 (KB969682)
Security Update for Microsoft Office PowerPoint 2007 (KB957789)
Security Update for Microsoft Office system 2007 (KB969613)
Security Update for Microsoft Office Word 2007 (KB969604)
Skins
SOE Web Installer
Spelling Dictionaries Support For Adobe Reader 9
Spyware Doctor 6.0
Suite Shared Configuration CS4
Switch Sound File Converter
Synaptics Pointing Device Driver
The Ur-Quan Masters 0.6.2
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.762
Vim 7.2 (self-installing)
VLC media player 0.9.9
Warcraft III
Westwood Shared Internet Components
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sync
Windows Live Toolbar
Windows Live Upload Tool
Windows Live Writer
WinRAR archiver
WinZip 12.1

==== Event Viewer Messages From Past Week ========

8/20/2009 9:30:39 AM, Error: EventLog [6008] - The previous system shutdown at 9:28:42 AM on 8/20/2009 was unexpected.
8/20/2009 12:48:28 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service MSIServer with arguments " " in order to run the server: {000C101C-0000-0000-C000-000000000046}
8/20/2009 12:38:32 AM, Error: EventLog [6008] - The previous system shutdown at 12:36:56 AM on 8/20/2009 was unexpected.
8/20/2009 12:31:08 AM, Error: Service Control Manager [7000] - The AntipyProex service failed to start due to the following error: The system cannot find the file specified.
8/19/2009 9:57:43 PM, Error: EventLog [6008] - The previous system shutdown at 9:55:17 PM on 8/19/2009 was unexpected.
8/19/2009 9:54:53 PM, Error: Microsoft-Windows-ResourcePublication [1002] - Element Provider\Microsoft.Base.Publication/Publication/Computer failed to publish. Ensure that both PKEY_PUBSVCS_METADATA and PKEY_PUBSVCS_TYPE are set properly on the function instance and there were no errors adding the function instance.
8/19/2009 9:54:36 PM, Error: EventLog [6008] - The previous system shutdown at 9:52:13 PM on 8/19/2009 was unexpected.
8/19/2009 9:51:32 PM, Error: EventLog [6008] - The previous system shutdown at 9:49:20 PM on 8/19/2009 was unexpected.
8/19/2009 9:06:39 PM, Error: EventLog [6008] - The previous system shutdown at 7:33:59 AM on 8/19/2009 was unexpected.
8/19/2009 4:50:18 AM, Error: EventLog [6008] - The previous system shutdown at 4:48:33 AM on 8/19/2009 was unexpected.
8/19/2009 3:10:25 AM, Error: EventLog [6008] - The previous system shutdown at 3:08:32 AM on 8/19/2009 was unexpected.
8/19/2009 10:22:48 PM, Error: EventLog [6008] - The previous system shutdown at 10:20:46 PM on 8/19/2009 was unexpected.
8/19/2009 10:19:56 PM, Error: EventLog [6008] - The previous system shutdown at 10:16:32 PM on 8/19/2009 was unexpected.
8/19/2009 10:06:03 PM, Error: EventLog [6008] - The previous system shutdown at 10:03:59 PM on 8/19/2009 was unexpected.
8/19/2009 10:03:17 PM, Error: EventLog [6008] - The previous system shutdown at 10:01:22 PM on 8/19/2009 was unexpected.
8/19/2009 10:00:41 PM, Error: EventLog [6008] - The previous system shutdown at 9:58:24 PM on 8/19/2009 was unexpected.
8/18/2009 9:53:41 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Roxio Hard Drive Watcher 9 service to connect.
8/18/2009 9:51:43 PM, Error: EventLog [6008] - The previous system shutdown at 9:50:08 PM on 8/18/2009 was unexpected.
8/18/2009 7:17:20 PM, Error: EventLog [6008] - The previous system shutdown at 7:14:57 PM on 8/18/2009 was unexpected.
8/18/2009 7:14:16 PM, Error: EventLog [6008] - The previous system shutdown at 2:50:58 PM on 8/18/2009 was unexpected.
8/18/2009 2:16:01 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments " " in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
8/18/2009 11:44:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service stisvc with arguments " " in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
8/18/2009 11:37:13 PM, Error: EventLog [6008] - The previous system shutdown at 11:35:16 PM on 8/18/2009 was unexpected.
8/18/2009 11:25:36 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: mfehidk spldr Wanarpv6
8/18/2009 11:25:20 PM, Error: Microsoft-Windows-WLAN-AutoConfig [10000] - WLAN Extensibility Module has failed to start. Module Path: C:\Windows\System32\bcmihvsrv.dll Error Code: 21
8/18/2009 11:24:55 PM, Error: EventLog [6008] - The previous system shutdown at 11:22:45 PM on 8/18/2009 was unexpected.
8/18/2009 11:22:02 PM, Error: EventLog [6008] - The previous system shutdown at 10:13:06 PM on 8/18/2009 was unexpected.
8/18/2009 10:12:26 PM, Error: EventLog [6008] - The previous system shutdown at 10:09:10 PM on 8/18/2009 was unexpected.
8/18/2009 1:38:52 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments " " in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
8/18/2009 1:34:15 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments " " in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
8/18/2009 1:34:12 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC mfehidk MPFP NetBIOS netbt nsiproxy PSched RasAcd rdbss Smb spldr Tcpip tdx Wanarpv6
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The WebDav Client Redirector Driver service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The WebClient service depends on the WebDav Client Redirector Driver service which failed to start because of the following error: The dependency service or group failed to start.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The TCP/IP Registry Compatibility service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service service which failed to start because of the following error: A device attached to the system is not functioning.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The Network Connections service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/18/2009 1:34:12 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
8/18/2009 1:34:12 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service McNASvc with arguments " " in order to run the server: {24F616A1-B755-4053-8018-C3425DC8B68A}
8/18/2009 1:33:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments " " in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
8/18/2009 1:33:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments " " in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
8/18/2009 1:33:37 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
8/18/2009 1:33:27 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments " " in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
8/18/2009 1:33:07 PM, Error: EventLog [6008] - The previous system shutdown at 1:31:14 PM on 8/18/2009 was unexpected.
8/18/2009 1:29:32 PM, Error: EventLog [6008] - The previous system shutdown at 1:26:05 PM on 8/18/2009 was unexpected.
8/18/2009 1:23:47 PM, Error: EventLog [6008] - The previous system shutdown at 1:20:58 PM on 8/18/2009 was unexpected.
8/17/2009 5:38:16 AM, Error: volsnap [35] - The shadow copies of volume C: were aborted because the shadow copy storage failed to grow.
8/13/2009 9:08:05 PM, Error: Server [2505] - The server could not bind to the transport \Device\NetBT_Tcpip_{1D69327A-41BE-45F5-9F83-B01C419E94E5} because another computer on the network has the same name. The server could not start.
8/13/2009 9:08:05 PM, Error: netbt [4321] - The name "WILLIAMPOSEY-PC:20" could not be registered on the interface with IP address 10.0.0.7. The computer with the IP address 169.254.179.173 did not allow the name to be claimed by this computer.
8/13/2009 9:08:05 PM, Error: netbt [4321] - The name "WILLIAMPOSEY-PC:0" could not be registered on the interface with IP address 10.0.0.7. The computer with the IP address 169.254.179.173 did not allow the name to be claimed by this computer.
8/13/2009 7:16:33 AM, Error: Service Control Manager [7000] - The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
8/13/2009 5:05:11 AM, Error: Microsoft-Windows-SharedAccess_NAT [31004] - The DNS proxy agent was unable to allocate 0 bytes of memory. This may indicate that the system is low on virtual memory, or that the memory manager has encountered an internal error.
8/13/2009 2:09:01 PM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

==== End Of File ===========================

broni · 2009/08/20

Please download ComboFix from [color= "Red"]Here[/color] or [color= "#FF0000"]Here[/color] to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**

Please, never rename Combofix unless instructed.

Close any open browsers.

Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results ".

Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.

NOTE. If Combofix asks you to install Recovery Console, please allow it.

Close any open browsers.

WARNING: Combofix will disconnect your machine from the Internet as soon as it starts

Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.

If there is no internet connection after running Combofix, then restart your computer to restore back your connection.

Double click on combofix.exe & follow the prompts.

When finished, it will produce a report for you.

Please post the "C:\ComboFix.txt" along with a new HijackThis log for further review.

**Note: Do not mouseclick combofix's window while it's running. That may cause it to stall**

Make sure, you re-enable your security programs, when you're done with Combofix.

DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!

Download HijackThis:
http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download
by clicking on Download HijackThis Installer
Install, and run it.
Post HijackTHis log.
Do NOT attempt to fix anything!

NOTE. If you're using Vista, right click on HijackThis, and click Run as Administrator

Log in or Sign up

Active Computer goes to Blue Screen directly after start-up

steiv n Inactive Thread Starter

steiv n Inactive Thread Starter

broni Moderator Malware Analyst

Share This Page

Log in or Sign up

Active Computer goes to Blue Screen directly after start-up

steiv n Inactive Thread Starter

steiv n Inactive Thread Starter

broni Moderator Malware Analyst

Share This Page

Useful Searches