1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Inactive BSOD - A thread tried to release a resource it did not own

Discussion in 'Malware and Virus Removal Archive' started by disilluzion, 2010/12/31.

  1. 2010/12/31
    disilluzion

    disilluzion Inactive Thread Starter

    Joined:
    2010/12/30
    Messages:
    6
    Likes Received:
    0
    [Inactive] BSOD - A thread tried to release a resource it did not own

    I was directed to this forum from here: http://www.windowsbbs.com/windows-vista/97060-bsod-when-using-digital-copy-discs-dump-data.html

    12/29 I was getting a BSOD whenever I would try to run a digital copy DVD.
    12/30 My PC started getting the same BSOD when idle or at the login screen.

    I followed the instructions here: http://www.windowsbbs.com/malware-virus-removal/announcements.html to get the below log files:

    Malwarebytes Anti-Malware


    Malwarebytes' Anti-Malware 1.50.1.1100
    www.malwarebytes.org

    Database version: 5426

    Windows 6.0.6002 Service Pack 2
    Internet Explorer 8.0.6001.18999

    12/30/2010 9:04:23 PM
    mbam-log-2010-12-30 (21-04-23).txt

    Scan type: Quick scan
    Objects scanned: 141113
    Time elapsed: 4 minute(s), 58 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 0

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    (No malicious items detected)

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    (No malicious items detected)

    Folders Infected:
    (No malicious items detected)

    Files Infected:
    (No malicious items detected)

    GMER


    GMER 1.0.15.15530 - http://www.gmer.net
    Rootkit scan 2010-12-31 00:00:53
    Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\00000063 WDC_WD75 rev.30.0
    Running: 0bhryjom.exe; Driver: C:\Users\Chris\AppData\Local\Temp\uftdapoc.sys


    ---- User IAT/EAT - GMER 1.0.15 ----

    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [748B7817] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [7490A86D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [748BBB22] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [748AF695] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [748B75E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [748AE7CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [748E8395] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [748BDA60] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [748AFFFA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [748AFF61] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [748A71CF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [7493CAE2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [748DC8D8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [748AD968] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [748A6853] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [748A687E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[1028] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [748B2AD1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    ---- Devices - GMER 1.0.15 ----

    AttachedDevice \FileSystem\Ntfs \Ntfs SiWinAcc.sys (Windows Accelerator Driver/Silicon Image, Inc)

    ---- EOF - GMER 1.0.15 ----

    MBRCheck

    MBRCheck, version 1.2.3
    (c) 2010, AD

    Command-line:
    Windows Version: Windows Vista Home Premium Edition
    Windows Information: Service Pack 2 (build 6002), 32-bit
    Base Board Manufacturer: ASUSTeK Computer INC.
    BIOS Manufacturer: Phoenix Technologies, LTD
    System Manufacturer: System manufacturer
    System Product Name: System Product Name
    Logical Drives Mask: 0x0000003c

    Kernel Drivers (total 164):
    0x81C09000 \SystemRoot\system32\ntkrnlpa.exe
    0x81FC2000 \SystemRoot\system32\hal.dll
    0x80409000 \SystemRoot\system32\kdcom.dll
    0x80410000 \SystemRoot\system32\PSHED.dll
    0x80421000 \SystemRoot\system32\BOOTVID.dll
    0x80429000 \SystemRoot\system32\CLFS.SYS
    0x8046A000 \SystemRoot\system32\CI.dll
    0x8054A000 \SystemRoot\system32\drivers\Wdf01000.sys
    0x805C6000 \SystemRoot\system32\drivers\WDFLDR.SYS
    0x80609000 \SystemRoot\system32\drivers\acpi.sys
    0x8064F000 \SystemRoot\system32\drivers\WMILIB.SYS
    0x80658000 \SystemRoot\system32\drivers\msisadrv.sys
    0x80660000 \SystemRoot\system32\drivers\pci.sys
    0x80687000 \SystemRoot\System32\drivers\partmgr.sys
    0x80696000 \SystemRoot\system32\drivers\volmgr.sys
    0x806A5000 \SystemRoot\System32\drivers\volmgrx.sys
    0x806EF000 \SystemRoot\system32\drivers\pciide.sys
    0x806F6000 \SystemRoot\system32\drivers\PCIIDEX.SYS
    0x80704000 \SystemRoot\System32\drivers\mountmgr.sys
    0x80714000 \SystemRoot\system32\drivers\atapi.sys
    0x8071C000 \SystemRoot\system32\drivers\ataport.SYS
    0x8073A000 \SystemRoot\system32\drivers\nvstor.sys
    0x80747000 \SystemRoot\system32\drivers\storport.sys
    0x80788000 \SystemRoot\system32\DRIVERS\jraid.sys
    0x80793000 \SystemRoot\system32\DRIVERS\SCSIPORT.SYS
    0x807B9000 \SystemRoot\system32\DRIVERS\nvstor32.sys
    0x807D6000 \SystemRoot\system32\DRIVERS\SI3132.sys
    0x8220E000 \SystemRoot\system32\drivers\fltmgr.sys
    0x82240000 \SystemRoot\system32\drivers\NIS\1205000.07D\SYMDS.SYS
    0x82297000 \SystemRoot\system32\drivers\fileinfo.sys
    0x822A7000 \SystemRoot\system32\drivers\NIS\1205000.07D\SYMEFA.SYS
    0x8234B000 \SystemRoot\system32\DRIVERS\SiWinAcc.sys
    0x8234F000 \SystemRoot\System32\Drivers\ksecdd.sys
    0x8280D000 \SystemRoot\system32\drivers\ndis.sys
    0x82918000 \SystemRoot\system32\drivers\msrpc.sys
    0x82943000 \SystemRoot\system32\drivers\NETIO.SYS
    0x82A02000 \SystemRoot\System32\drivers\tcpip.sys
    0x82AEC000 \SystemRoot\System32\drivers\fwpkclnt.sys
    0x87E0A000 \SystemRoot\System32\Drivers\Ntfs.sys
    0x87F1A000 \SystemRoot\system32\drivers\volsnap.sys
    0x87F53000 \SystemRoot\System32\Drivers\spldr.sys
    0x87F5B000 \SystemRoot\system32\DRIVERS\SiRemFil.sys
    0x87F63000 \SystemRoot\System32\Drivers\mup.sys
    0x87F72000 \SystemRoot\system32\DRIVERS\JGOGO.sys
    0x87F74000 \SystemRoot\System32\drivers\ecache.sys
    0x87F9B000 \SystemRoot\system32\drivers\ivicd.sys
    0x87FA5000 \SystemRoot\system32\drivers\disk.sys
    0x87FB6000 \SystemRoot\system32\drivers\CLASSPNP.SYS
    0x87FD7000 \SystemRoot\system32\drivers\crcdisk.sys
    0x87FE0000 \SystemRoot\system32\DRIVERS\null.sys
    0x82B24000 \SystemRoot\system32\DRIVERS\tunnel.sys
    0x87E00000 \SystemRoot\system32\DRIVERS\tunmp.sys
    0x82B2F000 \SystemRoot\system32\DRIVERS\amdk8.sys
    0x82B3F000 \SystemRoot\system32\DRIVERS\serial.sys
    0x82B59000 \SystemRoot\system32\DRIVERS\serenum.sys
    0x82B63000 \SystemRoot\system32\DRIVERS\parport.sys
    0x82B7B000 \SystemRoot\system32\DRIVERS\usbohci.sys
    0x82B85000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
    0x82BC3000 \SystemRoot\system32\DRIVERS\usbehci.sys
    0x82BD2000 \SystemRoot\System32\Drivers\AnyDVD.sys
    0x82BEB000 \SystemRoot\system32\drivers\iviaspi.sys
    0x8297E000 \SystemRoot\system32\DRIVERS\cdrom.sys
    0x82BF1000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
    0x82996000 \SystemRoot\system32\DRIVERS\ohci1394.sys
    0x829A6000 \SystemRoot\system32\DRIVERS\1394BUS.SYS
    0x8DC05000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
    0x8DC92000 \SystemRoot\system32\DRIVERS\nvmfdx32.sys
    0x8DD92000 \SystemRoot\system32\DRIVERS\atikmpag.sys
    0x8E807000 \SystemRoot\system32\DRIVERS\atikmdag.sys
    0x8EE9A000 \SystemRoot\System32\drivers\dxgkrnl.sys
    0x8EF3B000 \SystemRoot\System32\drivers\watchdog.sys
    0x8EF47000 \SystemRoot\system32\DRIVERS\ASACPI.sys
    0x8EF4F000 \SystemRoot\system32\DRIVERS\msiscsi.sys
    0x8EF7E000 \SystemRoot\system32\DRIVERS\TDI.SYS
    0x8EF89000 \SystemRoot\system32\drivers\povrtdev.sys
    0x8EF92000 \SystemRoot\system32\drivers\portcls.sys
    0x8EFBF000 \SystemRoot\system32\drivers\drmk.sys
    0x8DDCF000 \SystemRoot\system32\drivers\ks.sys
    0x8EFE4000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
    0x829B4000 \SystemRoot\system32\DRIVERS\ndistapi.sys
    0x829BF000 \SystemRoot\system32\DRIVERS\ndiswan.sys
    0x829E2000 \SystemRoot\system32\DRIVERS\raspppoe.sys
    0x823C0000 \SystemRoot\system32\DRIVERS\raspptp.sys
    0x823D4000 \SystemRoot\system32\DRIVERS\rassstp.sys
    0x823E9000 \SystemRoot\system32\DRIVERS\termdd.sys
    0x829F1000 \SystemRoot\system32\DRIVERS\kbdclass.sys
    0x82800000 \SystemRoot\system32\DRIVERS\mouclass.sys
    0x8EFFB000 \SystemRoot\system32\DRIVERS\swenum.sys
    0x82200000 \SystemRoot\system32\DRIVERS\mssmbios.sys
    0x807ED000 \SystemRoot\system32\DRIVERS\umbus.sys
    0x8F006000 \SystemRoot\system32\DRIVERS\usbhub.sys
    0x8F03B000 \SystemRoot\System32\Drivers\NDProxy.SYS
    0x8F04C000 \SystemRoot\system32\drivers\ADIHdAud.sys
    0x8F09E000 \SystemRoot\system32\drivers\HdAudio.sys
    0x8F0DD000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
    0x8F0F2000 \SystemRoot\system32\DRIVERS\USBD.SYS
    0x8F10D000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
    0x8F13C000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
    0x8F145000 \SystemRoot\system32\drivers\udffsrec.sys
    0x8F147000 \SystemRoot\System32\Drivers\Beep.SYS
    0x8F161000 \SystemRoot\System32\drivers\vga.sys
    0x8F16D000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
    0x8F18E000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
    0x8F196000 \SystemRoot\system32\drivers\rdpencdd.sys
    0x8F19E000 \SystemRoot\System32\Drivers\Msfs.SYS
    0x8F1A9000 \SystemRoot\System32\Drivers\Npfs.SYS
    0x8F1B7000 \SystemRoot\System32\DRIVERS\rasacd.sys
    0x8F1C0000 \SystemRoot\system32\DRIVERS\tdx.sys
    0x91009000 \SystemRoot\System32\Drivers\NIS\1205000.07D\SYMTDIV.SYS
    0x91061000 \??\C:\Windows\system32\Drivers\SYMEVENT.SYS
    0x91087000 \SystemRoot\system32\DRIVERS\smb.sys
    0x9109B000 \SystemRoot\system32\drivers\afd.sys
    0x910E3000 \SystemRoot\System32\DRIVERS\netbt.sys
    0x91115000 \SystemRoot\system32\DRIVERS\pacer.sys
    0x9112B000 \SystemRoot\system32\DRIVERS\netbios.sys
    0x91139000 \SystemRoot\system32\DRIVERS\wanarp.sys
    0x9114C000 \SystemRoot\system32\drivers\NIS\1205000.07D\Ironx86.SYS
    0x91170000 \SystemRoot\system32\drivers\NIS\1205000.07D\SRTSPX.SYS
    0x9117B000 \SystemRoot\system32\DRIVERS\rdbss.sys
    0x911B7000 \SystemRoot\system32\drivers\nsiproxy.sys
    0x9180B000 \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20101229.002\IDSvix86.sys
    0x91866000 \SystemRoot\System32\Drivers\ElbyCDIO.sys
    0x91870000 \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
    0x918CE000 \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
    0x918EB000 \SystemRoot\System32\Drivers\dfsc.sys
    0x91902000 \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20101123.003\BHDrvx86.sys
    0x919AE000 \SystemRoot\system32\drivers\AsIO.sys
    0x919B0000 \SystemRoot\System32\Drivers\crashdmp.sys
    0x919BD000 \SystemRoot\System32\Drivers\dump_diskdump.sys
    0x919C7000 \SystemRoot\System32\Drivers\dump_nvstor32.sys
    0x99E20000 \SystemRoot\System32\win32k.sys
    0x919E4000 \SystemRoot\System32\drivers\Dxapi.sys
    0x919EE000 \SystemRoot\system32\DRIVERS\monitor.sys
    0x9A040000 \SystemRoot\System32\TSDDD.dll
    0x9A060000 \SystemRoot\System32\cdd.dll
    0x911C1000 \SystemRoot\system32\drivers\luafv.sys
    0x9D802000 \SystemRoot\system32\drivers\spsys.sys
    0x9D8B2000 \SystemRoot\system32\DRIVERS\lltdio.sys
    0x9D8C2000 \SystemRoot\system32\DRIVERS\rspndr.sys
    0x9D8D5000 \SystemRoot\system32\drivers\HTTP.sys
    0x9D942000 \SystemRoot\System32\DRIVERS\srvnet.sys
    0x9D95F000 \SystemRoot\system32\DRIVERS\bowser.sys
    0x9D978000 \SystemRoot\System32\drivers\mpsdrv.sys
    0x9D98D000 \SystemRoot\system32\drivers\mrxdav.sys
    0x9D9AE000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
    0x9DE01000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
    0x9DE3A000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
    0x9DE52000 \SystemRoot\System32\DRIVERS\srv2.sys
    0x9DE7A000 \SystemRoot\System32\DRIVERS\srv.sys
    0x9DEC8000 \SystemRoot\system32\DRIVERS\parvdm.sys
    0x9DECF000 \SystemRoot\system32\DRIVERS\asyncmac.sys
    0x9DED8000 \SystemRoot\system32\drivers\peauth.sys
    0x9DFB6000 \SystemRoot\System32\Drivers\secdrv.SYS
    0x9DFC0000 \SystemRoot\System32\drivers\tcpipreg.sys
    0x9DFCC000 \SystemRoot\system32\DRIVERS\cdfs.sys
    0xADC09000 \SystemRoot\System32\Drivers\NIS\1205000.07D\SRTSP.SYS
    0xADC8E000 \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20101230.036\NAVEX15.SYS
    0xADDD9000 \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20101230.036\NAVENG.SYS
    0xADDED000 \SystemRoot\system32\DRIVERS\hidusb.sys
    0x9DFE2000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
    0xADDF6000 \SystemRoot\system32\DRIVERS\mouhid.sys
    0x9D9CD000 \SystemRoot\system32\DRIVERS\usbccgp.sys
    0xADC00000 \SystemRoot\system32\DRIVERS\kbdhid.sys
    0x77730000 \Windows\System32\ntdll.dll

    Processes (total 98):
    0 System Idle Process
    4 System
    396 C:\Windows\System32\smss.exe
    528 csrss.exe
    592 C:\Windows\System32\wininit.exe
    604 csrss.exe
    636 C:\Windows\System32\services.exe
    652 C:\Windows\System32\lsass.exe
    660 C:\Windows\System32\lsm.exe
    812 C:\Windows\System32\winlogon.exe
    824 C:\Windows\System32\svchost.exe
    892 C:\Windows\System32\svchost.exe
    1012 C:\Windows\System32\atiesrxx.exe
    1036 C:\Windows\System32\svchost.exe
    1060 C:\Windows\System32\svchost.exe
    1072 C:\Windows\System32\svchost.exe
    1152 C:\Windows\System32\audiodg.exe
    1176 C:\Windows\System32\svchost.exe
    1192 C:\Windows\System32\SLsvc.exe
    1232 C:\Windows\System32\svchost.exe
    1332 C:\Windows\System32\svchost.exe
    1492 C:\Windows\System32\spoolsv.exe
    1516 C:\Windows\System32\svchost.exe
    1732 C:\Windows\System32\atieclxx.exe
    1840 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    1856 C:\Program Files\Bonjour\mDNSResponder.exe
    1908 C:\Windows\System32\svchost.exe
    1984 C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
    324 C:\Program Files\MediaMall\MediaMallServer.exe
    608 C:\Program Files\Norton Internet Security\Engine\18.5.0.125\ccsvchst.exe
    1144 C:\Windows\System32\svchost.exe
    1300 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    1884 C:\Windows\System32\svchost.exe
    2088 C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    2120 C:\Windows\System32\svchost.exe
    2156 C:\Windows\System32\SearchIndexer.exe
    2476 C:\Windows\System32\svchost.exe
    2788 dllhost.exe
    3332 C:\Program Files\Norton Internet Security\Engine\18.5.0.125\ccsvchst.exe
    3372 C:\Windows\System32\taskeng.exe
    3388 C:\Windows\System32\dwm.exe
    3488 C:\Windows\explorer.exe
    3844 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    3872 C:\Program Files\Common Files\Ulead Systems\AutoDetector\Monitor.exe
    3884 C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
    3904 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
    3920 C:\Program Files\iTunes\iTunesHelper.exe
    3936 C:\Program Files\DivX\DivX Update\DivXUpdate.exe
    3948 C:\Program Files\Analog Devices\Core\smax4pnp.exe
    4016 C:\Program Files\MSN Toolbar\Platform\6.3.2348.0\mswinext.exe
    4052 C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe
    4064 C:\Program Files\lg_fwupdate\fwupdate.exe
    4088 C:\Program Files\Windows Sidebar\sidebar.exe
    2068 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    2240 C:\Program Files\MediaMall\PlayOn.exe
    952 C:\Program Files\Windows Media Player\wmpnscfg.exe
    2628 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    1816 C:\Program Files\Windows Media Player\wmpnetwk.exe
    3772 C:\Program Files\Windows Sidebar\sidebar.exe
    3944 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    4104 C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
    4148 C:\Program Files\iPod\bin\iPodService.exe
    4252 C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
    4372 C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
    4448 C:\Program Files\Windows Live\Contacts\wlcomm.exe
    5772 C:\Windows\System32\taskeng.exe
    4272 C:\Program Files\Windows Mail\WinMail.exe
    4892 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5056 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5096 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5108 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    4716 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    4760 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    2036 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    4956 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    1584 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    3068 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5008 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    3648 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5632 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5684 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5536 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    888 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5296 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5320 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5780 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    2684 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5368 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    4292 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    5764 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    3548 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    764 C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    1744 C:\Program Files\iTunes\iTunes.exe
    5708 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
    3196 C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
    480 C:\Windows\System32\SearchProtocolHost.exe
    4852 C:\Windows\System32\SearchFilterHost.exe
    3820 C:\Users\Chris\Downloads\MBRCheck.exe

    \\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
    \\.\F: --> \\.\PhysicalDrive1 at offset 0x00000000`00007e00 (NTFS)

    PhysicalDrive0 Model Number: WDC WD7500AAKS-00RBA, Rev: 30.0
    PhysicalDrive1 Model Number: WD5000YS External, Rev: 101a

    Size Device Name MBR Status
    --------------------------------------------
    698 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected
    SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979
    465 GB \\.\PhysicalDrive1 RE: Western Digital MBR code detected
    SHA1: CCCF1B32EE08ECFB66B30883CFF6110F69219FEA


    Done!

    DDS.txt



    DDS (Ver_10-12-12.02) - NTFSx86
    Run by Chris at 8:38:21.69 on Fri 12/31/2010
    Internet Explorer: 8.0.6001.18999
    Microsoft® Windows Vistaâ„¢ Home Premium 6.0.6002.2.1252.1.1033.18.2046.587 [GMT -6:00]

    AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
    FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

    ============== Running Processes ===============

    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\system32\atiesrxx.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\atieclxx.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Windows\system32\svchost.exe -k hpdevmgmt
    C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
    C:\Program Files\MediaMall\MediaMallServer.exe
    C:\Program Files\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\svchost.exe -k HPService
    C:\Windows\system32\DllHost.exe
    C:\Program Files\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\Common Files\Ulead Systems\AutoDetector\Monitor.exe
    C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\DivX\DivX Update\DivXUpdate.exe
    C:\Program Files\Analog Devices\Core\smax4pnp.exe
    C:\Program Files\MSN Toolbar\Platform\6.3.2348.0\mswinext.exe
    C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe
    C:\Program Files\lg_fwupdate\fwupdate.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\MediaMall\PlayOn.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Windows Mail\WinMail.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chris\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files\iTunes\iTunes.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
    C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\Chris\Downloads\dds.scr
    C:\Windows\system32\wbem\wmiprvse.exe

    ============== Pseudo HJT Report ===============

    uInternet Settings,ProxyOverride = *.local
    BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
    BHO: IE to GetRight Helper: {31ff080d-12a3-439a-a2ef-4ba95a3148e8} - c:\program files\getright\xx2gr.dll
    BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
    BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\norton internet security\engine\18.5.0.125\coIEPlg.dll
    BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton internet security\engine\18.5.0.125\ips\IPSBHO.DLL
    BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
    BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\msn toolbar\platform\6.3.2348.0\npwinext.dll
    BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
    TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton internet security\engine\18.5.0.125\coIEPlg.dll
    TB: @c:\program files\msn toolbar\platform\6.3.2348.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:\program files\msn toolbar\platform\6.3.2348.0\npwinext.dll
    uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
    uRun: [Google Update] "c:\users\chris\appdata\local\google\update\GoogleUpdate.exe" /c
    uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
    uRun: [PlayOn] c:\program files\mediamall\PlayOn.exe
    uRun: [LightScribe Control Panel] c:\program files\common files\lightscribe\LightScribeControlPanel.exe -hidden
    uRun: [NBJ] "c:\program files\ahead\nero backitup\NBJ.exe "
    uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
    mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
    mRun: [JMB36X IDE Setup] c:\windows\jm\JMInsIDE.exe
    mRun: [AsusStartupHelp] c:\program files\asus\aasp\1.00.15\AsRunHelp.exe
    mRun: [Ulead AutoDetector v2] c:\program files\common files\ulead systems\autodetector\monitor.exe
    mRun: [WINCINEMAMGR] "c:\program files\intervideo\common\bin\WinCinemaMgr.exe "
    mRun: [hpqSRMon] c:\program files\hp\digital imaging\bin\hpqSRMon.exe
    mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
    mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
    mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe "
    mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
    mRun: [SoundMAXPnP] c:\program files\analog devices\core\smax4pnp.exe
    mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe "
    mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe "
    mRun: [Bing Bar] "c:\program files\msn toolbar\platform\6.3.2348.0\mswinext.exe "
    mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
    mRun: [AmazonGSDownloaderTray] c:\program files\amazon\amazon games & software downloader\AmazonGSDownloaderTray.exe
    mRun: [Monitor] "c:\program files\leapfrog\leapfrog connect\Monitor.exe "
    mRun: [LGODDFU] "c:\program files\lg_fwupdate\fwupdate.exe" blrun
    mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
    dRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\interv~1.lnk - c:\program files\intervideo\common\bin\WinCinemaMgr.exe
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
    mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
    mPolicies-system: EnableLUA = 0 (0x0)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: Download with GetRight - c:\program files\getright\GRdownload.htm
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office10\EXCEL.EXE/3000
    IE: Open with GetRight Browser - c:\program files\getright\GRbrowse.htm
    IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
    DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
    DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab

    ============= SERVICES / DRIVERS ===============

    R0 amacpi;Microsoft Away Mode System;c:\windows\system32\drivers\null.sys [2008-1-20 4608]
    R0 ivicd;Ivi CDVD Filter Driver;c:\windows\system32\drivers\ivicd.sys [2010-9-25 38784]
    R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nis\1205000.07d\symds.sys [2010-12-9 340016]
    R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nis\1205000.07d\symefa.sys [2010-12-9 652336]
    R1 BHDrvx86;BHDrvx86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.1.0.37\definitions\bashdefs\20101123.003\BHDrvx86.sys [2010-11-22 691248]
    R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.1.0.37\definitions\ipsdefs\20101229.002\IDSvix86.sys [2010-12-30 353912]
    R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nis\1205000.07d\ironx86.sys [2010-12-9 136312]
    R1 SYMTDIv;Symantec Vista Network Dispatch Driver;c:\windows\system32\drivers\nis\1205000.07d\symtdiv.sys [2010-12-9 330360]
    R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-10-27 176128]
    R2 MediaMall Server;MediaMall Server;c:\program files\mediamall\MediaMallServer.exe [2010-10-2 3992432]
    R2 NIS;Norton Internet Security;c:\program files\norton internet security\engine\18.5.0.125\ccsvchst.exe [2010-12-9 130000]
    R3 amdkmdag;amdkmdag;c:\windows\system32\drivers\atikmdag.sys [2010-10-27 6573568]
    R3 amdkmdap;amdkmdap;c:\windows\system32\drivers\atikmpag.sys [2010-10-27 229888]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2010-9-24 102448]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S3 Amazon Download Agent;Amazon Download Agent;c:\program files\amazon\amazon games & software downloader\AmazonGSDownloaderService.exe [2010-11-3 401920]
    S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [2008-4-1 19456]
    S3 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504]
    S3 iviudf;iviudf;c:\windows\system32\drivers\IviUdf.sys [2010-9-25 126592]
    S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]

    =============== Created Last 30 ================

    2010-12-31 02:57:11 -------- d-----w- c:\users\chris\appdata\roaming\Malwarebytes
    2010-12-31 02:57:02 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2010-12-31 02:57:00 -------- d-----w- c:\progra~2\Malwarebytes
    2010-12-31 02:56:57 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
    2010-12-31 02:56:57 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
    2010-12-30 19:33:40 -------- d-----w- C:\symbols
    2010-12-30 19:26:31 -------- d-----w- c:\program files\Debugging Tools for Windows (x86)
    2010-12-30 01:11:09 4984 ----a-w- c:\windows\system32\drivers\nvphy.bin
    2010-12-30 01:10:21 356352 ----a-w- c:\windows\system32\nvusmb.exe
    2010-12-30 01:08:07 -------- d-----w- C:\NVIDIA
    2010-12-30 01:02:14 -------- d-----w- c:\program files\SystemRequirementsLab
    2010-12-18 18:36:30 -------- d-----w- C:\Downloads
    2010-12-18 18:31:41 -------- d-----w- c:\users\chris\appdata\roaming\GetRight
    2010-12-18 18:31:33 -------- d-----w- c:\program files\GetRight
    2010-12-17 19:39:48 5888 ------w- c:\windows\system32\drivers\imagedrv.sys
    2010-12-17 19:39:48 127488 ------w- c:\windows\system32\drivers\imagesrv.sys
    2010-12-17 19:39:27 364544 ------w- c:\windows\system32\TwnLib4.dll
    2010-12-17 19:39:27 106496 ----a-w- c:\windows\system32\TwnLib20.dll
    2010-12-17 19:39:26 476320 ------w- c:\windows\system32\ImagXpr7.dll
    2010-12-17 19:39:26 471040 ------w- c:\windows\system32\ImagXRA7.dll
    2010-12-17 19:39:26 262144 ------w- c:\windows\system32\ImagXR7.dll
    2010-12-17 19:39:26 1568768 ------w- c:\windows\system32\ImagX7.dll
    2010-12-17 19:39:24 155648 ----a-w- c:\windows\system32\NeroCheck.exe
    2010-12-17 19:36:51 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat
    2010-12-17 19:35:42 7680 ----a-w- c:\program files\internet explorer\iecompat.dll
    2010-12-15 13:45:00 66048 ----a-w- c:\program files\windows mail\wabmig.exe
    2010-12-15 13:45:00 515584 ----a-w- c:\program files\windows mail\wab.exe
    2010-12-15 13:45:00 33280 ----a-w- c:\program files\windows mail\wabfind.dll
    2010-12-14 13:38:16 1401856 ----a-w- c:\windows\system32\msxml6.dll
    2010-12-09 20:30:36 330360 ----a-w- c:\windows\system32\drivers\nis\1205000.07d\symtdiv.sys
    2010-12-09 20:30:35 652336 ----a-w- c:\windows\system32\drivers\nis\1205000.07d\symefa.sys
    2010-12-09 20:30:35 509560 ----a-w- c:\windows\system32\drivers\nis\1205000.07d\srtsp.sys
    2010-12-09 20:30:35 50168 ----a-w- c:\windows\system32\drivers\nis\1205000.07d\srtspx.sys
    2010-12-09 20:30:35 340016 ----a-w- c:\windows\system32\drivers\nis\1205000.07d\symds.sys
    2010-12-09 20:30:35 295032 ----a-w- c:\windows\system32\drivers\nis\1205000.07d\symnets.sys
    2010-12-09 20:30:35 136312 ----a-w- c:\windows\system32\drivers\nis\1205000.07d\ironx86.sys
    2010-12-09 20:29:58 -------- d-----w- c:\windows\system32\drivers\nis\1205000.07D

    ==================== Find3M ====================

    2010-11-25 22:50:06 505128 ----a-w- c:\windows\system32\msvcp71.dll
    2010-11-25 21:00:44 16384 ----a-w- c:\windows\system32\lgfwunis.exe
    2010-11-25 20:36:32 87608 ----a-w- c:\users\chris\appdata\roaming\inst.exe
    2010-11-25 20:36:32 47360 ----a-w- c:\users\chris\appdata\roaming\pcouffin.sys
    2010-11-22 16:16:57 89256 ----a-w- c:\windows\system32\ElbyCDIO.dll
    2010-11-04 18:56:07 345600 ----a-w- c:\windows\system32\wmicmiplugin.dll
    2010-11-04 18:55:38 352768 ----a-w- c:\windows\system32\taskschd.dll
    2010-11-04 18:55:38 270336 ----a-w- c:\windows\system32\taskcomp.dll
    2010-11-04 18:55:12 601600 ----a-w- c:\windows\system32\schedsvc.dll
    2010-11-04 16:34:06 171520 ----a-w- c:\windows\system32\taskeng.exe
    2010-11-02 06:01:54 916480 ----a-w- c:\windows\system32\wininet.dll
    2010-11-02 05:57:41 43520 ----a-w- c:\windows\system32\licmgr10.dll
    2010-11-02 05:57:27 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
    2010-11-02 05:57:11 71680 ----a-w- c:\windows\system32\iesetup.dll
    2010-11-02 05:57:11 109056 ----a-w- c:\windows\system32\iesysprep.dll
    2010-11-02 05:01:31 385024 ----a-w- c:\windows\system32\html.iec
    2010-11-02 04:26:10 133632 ----a-w- c:\windows\system32\ieUnatt.exe
    2010-11-02 04:24:44 1638912 ----a-w- c:\windows\system32\mshtml.tlb
    2010-10-28 15:44:56 34304 ----a-w- c:\windows\system32\atmlib.dll
    2010-10-28 13:27:47 292352 ----a-w- c:\windows\system32\atmfd.dll
    2010-10-28 13:20:12 2048 ----a-w- c:\windows\system32\tzres.dll
    2010-10-27 09:08:18 16281600 ----a-w- c:\windows\system32\atioglxx.dll
    2010-10-27 08:55:32 143360 ----a-w- c:\windows\system32\atiapfxx.exe
    2010-10-27 08:55:24 547328 ----a-w- c:\windows\system32\aticfx32.dll
    2010-10-27 08:52:18 450560 ----a-w- c:\windows\system32\ATIDEMGX.dll
    2010-10-27 08:51:56 393216 ----a-w- c:\windows\system32\atieclxx.exe
    2010-10-27 08:51:28 176128 ----a-w- c:\windows\system32\atiesrxx.exe
    2010-10-27 08:50:22 159744 ----a-w- c:\windows\system32\atitmmxx.dll
    2010-10-27 08:50:10 356352 ----a-w- c:\windows\system32\atipdlxx.dll
    2010-10-27 08:49:58 278528 ----a-w- c:\windows\system32\Oemdspif.dll
    2010-10-27 08:49:52 15872 ----a-w- c:\windows\system32\atimuixx.dll
    2010-10-27 08:49:46 43520 ----a-w- c:\windows\system32\ati2edxx.dll
    2010-10-27 08:46:58 4020736 ----a-w- c:\windows\system32\atidxx32.dll
    2010-10-27 08:35:28 46080 ----a-w- c:\windows\system32\aticalrt.dll
    2010-10-27 08:35:18 44032 ----a-w- c:\windows\system32\aticalcl.dll
    2010-10-27 08:33:52 5441536 ----a-w- c:\windows\system32\aticaldd.dll
    2010-10-27 08:28:22 4094464 ----a-w- c:\windows\system32\atiumdag.dll
    2010-10-27 08:14:58 52736 ----a-w- c:\windows\system32\coinst.dll
    2010-10-27 08:14:50 249856 ----a-w- c:\windows\system32\atiadlxx.dll
    2010-10-27 08:14:42 12800 ----a-w- c:\windows\system32\atiglpxx.dll
    2010-10-27 08:14:32 27136 ----a-w- c:\windows\system32\atigktxx.dll
    2010-10-27 08:13:36 30720 ----a-w- c:\windows\system32\atiuxpag.dll
    2010-10-27 08:13:24 28672 ----a-w- c:\windows\system32\atiu9pag.dll
    2010-10-27 08:13:04 23040 ----a-w- c:\windows\system32\atitmpxx.dll
    2010-10-27 07:50:10 3460096 ----a-w- c:\windows\system32\atiumdva.dll
    2010-10-27 07:37:14 52736 ----a-w- c:\windows\system32\atimpc32.dll
    2010-10-27 07:37:14 52736 ----a-w- c:\windows\system32\amdpcom32.dll
    2010-10-18 13:37:35 81920 ----a-w- c:\windows\system32\consent.exe
    2010-10-18 13:31:24 2038272 ----a-w- c:\windows\system32\win32k.sys
    2010-10-04 17:11:41 19968 ----a-w- c:\windows\system32\cpuinf32.dll
    2010-10-04 17:09:54 20480 ----a-w- c:\windows\system32\MGIIpl2.dll

    ============= FINISH: 8:39:36.80 ===============
     
    disilluzion,
    #1
  2. 2010/12/31
    disilluzion

    disilluzion Inactive Thread Starter

    Joined:
    2010/12/30
    Messages:
    6
    Likes Received:
    0
    Too many characters to fit this in my original post.

    Attach.txt

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_10-12-12.02)

    Microsoft® Windows Vista™ Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 9/25/2010 8:04:43 AM
    System Uptime: 12/31/2010 7:16:59 AM (1 hours ago)

    Motherboard: ASUSTeK Computer INC. | | M2N-SLI DELUXE
    Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 6400+ | Socket AM2 | 3200/200mhz

    ==== Disk Partitions =========================

    C: is FIXED (NTFS) - 699 GiB total, 152.108 GiB free.
    D: is CDROM ()
    E: is CDROM ()
    F: is FIXED (NTFS) - 466 GiB total, 57.141 GiB free.

    ==== Disabled Device Manager Items =============

    Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
    Description: HP Photosmart C6300
    Device ID: ROOT\IMAGE\0000
    Manufacturer: Hewlett-Packard
    Name: HP Photosmart C6300
    PNP Device ID: ROOT\IMAGE\0000
    Service: StillCam

    Class GUID: {4d36e971-e325-11ce-bfc1-08002be10318}
    Description: Photosmart C6300 series
    Device ID: ROOT\MULTIFUNCTION\0000
    Manufacturer: HP
    Name: Photosmart C6300 series
    PNP Device ID: ROOT\MULTIFUNCTION\0000
    Service:

    ==== System Restore Points ===================

    RP140: 12/29/2010 8:40:21 PM - Windows Update

    ==== Installed Programs ======================

    32 Bit HP CIO Components Installer
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Reader 9.4.1
    Amazon Games & Software Downloader
    Amazon MP3 Downloader 1.0.10
    AnyDVD
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    AsusUpdate
    ATI AVIVO Codecs
    ATI Catalyst Install Manager
    Bing Bar
    Bing Bar Platform
    Bing Rewards Client Installer
    BitTornado 0.3.7
    Bonjour
    BufferChm
    C6300
    Catalyst Control Center - Branding
    Catalyst Control Center Core Implementation
    Catalyst Control Center Graphics Full Existing
    Catalyst Control Center Graphics Full New
    Catalyst Control Center Graphics Light
    Catalyst Control Center Graphics Previews Common
    Catalyst Control Center Graphics Previews Vista
    Catalyst Control Center HydraVision Full
    Catalyst Control Center InstallProxy
    ccc-core-static
    ccc-utility
    CCC Help English
    Coupon Printer for Windows
    Debugging Tools for Windows (x86)
    Destination Component
    DeviceDiscovery
    DivX Setup
    GetRight
    Google Chrome
    GPBaseService2
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    HP Customer Participation Program 12.0
    HP Imaging Device Functions 12.0
    HP Photosmart C6300 All-In-One Driver Software 12.0 Rel .4
    HP Photosmart Essential 3.5
    HP Smart Web Printing
    HP Solution Center 13.0
    HP Update
    HPPhotoGadget
    HPPhotoSmartDiscLabelContent1
    HPPhotosmartEssential
    HPProductAssistant
    HPSSupply
    HydraVision
    ImgBurn
    InterVideo Launcher
    InterVideo MediaOne Gallery
    InterVideo Promotion Agent
    iTunes
    JMB36X Raid Configurer
    LeapFrog Connect
    LeapFrog Tag Plugin
    LG Tool Kit
    Logitech Harmony Remote Software 7
    Malwarebytes' Anti-Malware
    MarketResearch
    MediaOne Gallery
    Microsoft .NET Framework 3.5 SP1
    Microsoft .NET Framework 4 Client Profile
    Microsoft Application Error Reporting
    Microsoft Choice Guard
    Microsoft Default Manager
    Microsoft Office XP Professional with FrontPage
    Microsoft Search Enhancement Pack
    Microsoft Silverlight
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
    Microsoft Windows SDK for Windows 7 (7.1)
    Microsoft XML Parser
    MSVCRT
    MSVCSetup
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    Nero 6 Ultra Edition
    Network
    Norton Internet Security
    NVIDIA Drivers
    PC Probe II
    PlayOn
    PS_AIO_04_C6300_Software_Min
    QuickTime
    Remote Control USB Driver
    Scan
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
    Shop for HP Supplies
    Skins
    SmartWebPrinting
    SolutionCenter
    SoundMAX
    Status
    System Requirements Lab
    Toolbox
    TrayApp
    Ulead PhotoImpact 12
    UnloadSupport
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin)
    VC80CRTRedist - 8.0.50727.4053
    WebReg
    Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0)
    Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012)
    Windows Live Call
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Messenger
    Windows Live Sign-in Assistant
    Windows Live Upload Tool
    Xvid 1.2.2 final uninstall

    ==== Event Viewer Messages From Past Week ========

    12/31/2010 12:05:49 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: i8042prt Null
    12/31/2010 12:05:49 AM, Error: Service Control Manager [7000] - The Cyberlink RichVideo Service(CRVS) service failed to start due to the following error: The system cannot find the file specified.
    12/30/2010 9:54:57 PM, Error: EventLog [6008] - The previous system shutdown at 9:53:01 PM on 12/30/2010 was unexpected.
    12/30/2010 8:36:01 PM, Error: EventLog [6008] - The previous system shutdown at 8:33:50 PM on 12/30/2010 was unexpected.
    12/30/2010 8:27:26 PM, Error: Service Control Manager [7034] - The AMD External Events Utility service terminated unexpectedly. It has done this 1 time(s).
    12/30/2010 6:08:17 PM, Error: EventLog [6008] - The previous system shutdown at 6:06:04 PM on 12/30/2010 was unexpected.
    12/30/2010 5:45:04 PM, Error: EventLog [6008] - The previous system shutdown at 5:42:28 PM on 12/30/2010 was unexpected.
    12/30/2010 5:21:28 PM, Error: EventLog [6008] - The previous system shutdown at 5:19:22 PM on 12/30/2010 was unexpected.
    12/30/2010 4:57:22 PM, Error: EventLog [6008] - The previous system shutdown at 4:55:15 PM on 12/30/2010 was unexpected.
    12/30/2010 4:33:15 PM, Error: EventLog [6008] - The previous system shutdown at 4:31:08 PM on 12/30/2010 was unexpected.
    12/30/2010 4:09:08 PM, Error: EventLog [6008] - The previous system shutdown at 4:06:34 PM on 12/30/2010 was unexpected.
    12/30/2010 3:30:34 PM, Error: EventLog [6008] - The previous system shutdown at 3:28:00 PM on 12/30/2010 was unexpected.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD AsIO BHDrvx86 DfsC eeCtrl ElbyCDIO i8042prt IDSVix86 NetBIOS netbt nsiproxy Null PSched RasAcd rdbss Smb spldr SRTSPX SymIRON SYMTDIv tdx Wanarpv6
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The WebDav Client Redirector Driver service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The WebClient service depends on the WebDav Client Redirector Driver service which failed to start because of the following error: The dependency service or group failed to start.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service service which failed to start because of the following error: A device attached to the system is not functioning.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
    12/30/2010 10:46:30 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
    12/30/2010 10:45:57 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments " " in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
    12/30/2010 10:45:24 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments " " in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
    12/30/2010 10:45:24 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments " " in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
    12/30/2010 10:45:24 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service fdPHost with arguments " " in order to run the server: {145B4335-FE2A-4927-A040-7C35AD3180EF}
    12/30/2010 10:45:22 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
    12/30/2010 10:45:15 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments " " in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
    12/30/2010 10:44:55 PM, Error: EventLog [6008] - The previous system shutdown at 9:56:57 PM on 12/30/2010 was unexpected.
    12/29/2010 9:08:07 PM, Error: EventLog [6008] - The previous system shutdown at 9:06:25 PM on 12/29/2010 was unexpected.
    12/29/2010 9:00:25 PM, Error: EventLog [6008] - The previous system shutdown at 8:57:55 PM on 12/29/2010 was unexpected.
    12/29/2010 8:43:40 PM, Error: Service Control Manager [7031] - The MediaMall Server service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
    12/29/2010 8:20:03 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: i8042prt
    12/29/2010 8:18:56 PM, Error: EventLog [6008] - The previous system shutdown at 8:16:27 PM on 12/29/2010 was unexpected.
    12/29/2010 8:18:50 PM, Error: volsnap [25] - The shadow copies of volume C: were deleted because the shadow copy storage could not grow in time. Consider reducing the IO load on the system or choose a shadow copy storage volume that is not being shadow copied.
    12/29/2010 7:24:51 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
    12/29/2010 7:23:27 PM, Error: EventLog [6008] - The previous system shutdown at 7:19:44 PM on 12/29/2010 was unexpected.
    12/29/2010 6:54:18 PM, Error: EventLog [6008] - The previous system shutdown at 6:51:34 PM on 12/29/2010 was unexpected.
    12/29/2010 6:21:34 PM, Error: EventLog [6008] - The previous system shutdown at 6:20:14 PM on 12/29/2010 was unexpected.
    12/29/2010 6:16:14 PM, Error: EventLog [6008] - The previous system shutdown at 6:13:45 PM on 12/29/2010 was unexpected.
    12/29/2010 6:13:11 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AsIO BHDrvx86 eeCtrl ElbyCDIO i8042prt IDSVix86 spldr SRTSPX SymIRON SYMTDIv Wanarpv6
    12/29/2010 6:11:45 PM, Error: EventLog [6008] - The previous system shutdown at 6:08:33 PM on 12/29/2010 was unexpected.
    12/29/2010 6:08:33 PM, Error: EventLog [6008] - The previous system shutdown at 6:04:47 PM on 12/29/2010 was unexpected.
    12/29/2010 3:49:47 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the NIS service.
    12/28/2010 7:24:43 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
    12/27/2010 9:57:56 PM, Error: EventLog [6008] - The previous system shutdown at 9:07:42 PM on 12/27/2010 was unexpected.
    12/27/2010 5:24:04 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
    12/27/2010 4:27:26 PM, Error: Service Control Manager [7031] - The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
    12/27/2010 4:26:11 PM, Error: Service Control Manager [7031] - The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
    12/27/2010 11:59:55 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrkWks service.

    ==== End Of File ===========================

    Thanks for any help!
     
    disilluzion,
    #2


  3. to hide this advert.

  4. 2010/12/31
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    So far, I don't see much.
    Your error seems to be caused by IviUdf.sys, which is a part of InterVideo by Corel, which I can see being installed on your system.

    Uninstall? Reinstall?...and see, if it helps.
     
    broni,
    #3
  5. 2010/12/31
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    I'll post same reply in your other topic and you rather continue there...
     
    broni,
    #4

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...