Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Multiple BSODs and Crashes with Multiple Error Codes (Previously Helpe


  • Please log in to reply

#1
BaronX13

BaronX13

    Member

  • Member
  • PipPip
  • 28 posts
Within the last couple of months my computer has started to BSOD almost randomly. These BSODs happen under different loads both heavy and light, different times, different temperatures, and with different programs running with seemingly no pattern to them. Upon inspection of BSOD error codes, many of the codes were different, some would show up two or three times, while some only once, but so far I have gotten at least five different BSOD error codes that I can remember. While I can't give any information on patterns due to this, nor can I come up with any programs in particular that may be causing this, the only real other information that I can give, other than the BSOD symptoms, would be that the BSODs are not consistent. I don't mean just the multiple BSOD error codes, I mean that the computer will BSOD multiple times in a short time frame, then after letting the computer stay off for a period of time, they seem to go away and the computer will work fine until another "BSOD fit" happens. I previously created a thread in the "Windows 7 Operating System" area of the forums to try and diagnose the BSOD issues as well as find a solution to them. That thread can be found here. Within that thread he/she stated that "the crashes are all over the place" following up with some instruction on how to do a basic tune up of the machine along with removing some unneeded programs. Needless to say I followed the instructions. At the end, I was told that he/she thinks that there may be quite a large amount of malware to be removed (Perhaps this is what is creating the BSODs?). I was instructed to create a new thread within the "Malware" area of the forums and finish up with my solution here. And...here I am. So my basic question is, what malware is present on my system and how do I remove/fix it? And will this solve my BSOD issues and make the system stable/work again? I apologize for not being able to give more concise information.






OTL logfile created on: 7/2/2013 3:58:58 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Chris\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.97 Gb Total Physical Memory | 6.10 Gb Available Physical Memory | 76.55% Memory free
15.93 Gb Paging File | 13.84 Gb Available in Paging File | 86.84% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.41 Gb Total Space | 792.51 Gb Free Space | 85.09% Space Free | Partition Type: NTFS

Computer Name: DARKSTAR | User Name: Chris | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/07/02 15:58:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Chris\Downloads\OTL.exe
PRC - [2013/05/16 09:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013/05/10 02:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/05/09 03:58:35 | 006,583,664 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\Setup\avast.setup
PRC - [2013/05/09 03:58:30 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013/05/09 03:58:30 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/12/14 04:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2012/11/19 12:15:20 | 000,014,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2012/09/17 19:19:50 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012/09/17 19:19:48 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012/09/17 19:19:44 | 000,128,896 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe


========== Modules (No Company Name) ==========

MOD - [2013/06/14 20:28:42 | 000,393,168 | ---- | M] () -- C:\Users\Chris\AppData\Local\Google\Chrome\Application\27.0.1453.116\ppgooglenaclpluginchrome.dll
MOD - [2013/06/14 20:28:41 | 013,140,432 | ---- | M] () -- C:\Users\Chris\AppData\Local\Google\Chrome\Application\27.0.1453.116\PepperFlash\pepflashplayer.dll
MOD - [2013/06/14 20:28:40 | 004,051,408 | ---- | M] () -- C:\Users\Chris\AppData\Local\Google\Chrome\Application\27.0.1453.116\pdf.dll
MOD - [2013/06/14 20:27:51 | 000,599,504 | ---- | M] () -- C:\Users\Chris\AppData\Local\Google\Chrome\Application\27.0.1453.116\libglesv2.dll
MOD - [2013/06/14 20:27:50 | 000,124,368 | ---- | M] () -- C:\Users\Chris\AppData\Local\Google\Chrome\Application\27.0.1453.116\libegl.dll
MOD - [2013/06/14 20:27:48 | 001,597,392 | ---- | M] () -- C:\Users\Chris\AppData\Local\Google\Chrome\Application\27.0.1453.116\ffmpegsumo.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/05/09 03:58:30 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2012/09/06 02:53:46 | 000,170,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\IPROSetMonitor.exe -- (Intel®
SRV:64bit: - [2012/06/19 19:10:34 | 000,634,632 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 20:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013/06/12 03:23:33 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/06/06 17:06:24 | 000,543,656 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/05/16 09:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/05/10 02:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/12/14 04:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2012/11/19 12:15:20 | 000,014,904 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2012/09/17 19:19:50 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/09/17 19:19:48 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/09/17 19:19:44 | 000,128,896 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe -- (Intel®
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/07/02 15:56:21 | 001,030,952 | ---- | M] (AVAST Software) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013/07/02 15:56:21 | 000,378,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013/07/02 15:56:21 | 000,189,936 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013/05/16 22:17:40 | 000,025,600 | ---- | M] (Razer Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rzdaendpt.sys -- (rzdaendpt)
DRV:64bit: - [2013/05/16 22:17:38 | 000,023,040 | ---- | M] (Razer Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rzvkeyboard.sys -- (rzvkeyboard)
DRV:64bit: - [2013/05/16 22:17:30 | 000,126,464 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzudd.sys -- (rzudd)
DRV:64bit: - [2013/05/16 22:17:28 | 000,031,232 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzendpt.sys -- (rzendpt)
DRV:64bit: - [2013/05/09 03:59:07 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Unknown] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013/05/09 03:59:07 | 000,065,336 | ---- | M] () [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013/05/09 03:59:07 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013/05/09 03:59:06 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013/05/09 03:59:06 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2013/02/25 00:27:45 | 000,194,848 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2013/02/22 07:40:13 | 000,792,560 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2013/02/22 07:40:13 | 000,358,896 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2013/02/22 07:40:13 | 000,020,464 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2013/01/31 04:50:58 | 000,028,160 | ---- | M] (ManyCam LLC) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys -- (mcaudrv_simple)
DRV:64bit: - [2013/01/23 14:15:36 | 000,064,624 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012/11/19 12:10:38 | 000,652,344 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2012/11/19 12:10:36 | 000,028,216 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorF.sys -- (iaStorF)
DRV:64bit: - [2012/10/10 22:08:10 | 000,044,928 | ---- | M] (ManyCam LLC) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys -- (ManyCam)
DRV:64bit: - [2012/09/19 11:02:08 | 000,102,368 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
DRV:64bit: - [2012/08/10 17:44:16 | 000,482,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1c62x64.sys -- (e1cexpress)
DRV:64bit: - [2012/07/30 13:32:08 | 000,203,104 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
DRV:64bit: - [2012/06/17 03:17:51 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/05/10 17:33:56 | 000,217,600 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2012/05/10 17:33:54 | 000,097,792 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2012/04/25 12:11:36 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/03/01 01:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/18 06:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2011/11/11 02:20:44 | 000,316,208 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mvs91xx.sys -- (mvs91xx)
DRV:64bit: - [2011/03/11 01:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 01:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 08:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 06:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 06:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/08/18 00:28:32 | 000,026,136 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ICCWDT.sys -- (ICCWDT)
DRV:64bit: - [2010/06/09 10:00:14 | 000,028,544 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\intelsmb.sys -- (smbusp)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2013/04/15 10:01:56 | 000,013,080 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\invoker64.sys -- (EfiInvoker)
DRV - [2012/05/14 04:28:36 | 000,010,568 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\MSI Afterburner\RTCore64.sys -- (RTCore64)
DRV - [2011/06/02 12:08:34 | 000,017,864 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys -- (cpudrv64)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2008/07/26 22:30:36 | 000,014,544 | ---- | M] (OpenLibSys.org) [Kernel | On_Demand | Stopped] -- C:\Users\Chris\Downloads\WinRing0x64.sys -- (WinRing0_1_2_0)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylo...00000224d843791
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B3 01 F0 BC 07 4B CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...00000224d843791
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Chris\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Chris\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Chris\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Chris\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013/02/22 10:07:56 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Chris\AppData\Local\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Chris\AppData\Local\Google\Chrome\Application\27.0.1453.116\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Chris\AppData\Local\Google\Chrome\Application\27.0.1453.116\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java™ Platform SE 6 U33 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 6.0.330.3 (Enabled) = C:\Windows\SysWOW64\npdeployJava1.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Chris\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: YouTube = C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.4.1_0\
CHR - Extension: Google Search = C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: avast! Online Security = C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0\
CHR - Extension: Gmail = C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Vid-Saver) - {11111111-1111-1111-1111-110011341191} - C:\Program Files (x86)\Vid-Saver\Vid-Saver.dll (215 Apps)
O2 - BHO: (JetMP3) - {134DA043-566E-4572-82E6-8978D0ED03D8} - C:\Users\Chris\AppData\Local\jetmp3\ie\jetmp3.dll ()
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Funmoods Helper Object) - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\PROGRA~2\Funmoods\1.5.23.22\bh\escort.dll File not found
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Funmoods Toolbar) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\PROGRA~2\Funmoods\1.5.23.22\escorTlbr.dll File not found
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_25)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A50A30CA-3388-4553-9DE7-E7E2F85F5600}: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/07/02 15:56:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2013/07/02 15:56:17 | 000,378,944 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/07/02 15:56:17 | 000,033,400 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013/07/02 15:56:15 | 000,072,016 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013/07/02 15:56:15 | 000,064,288 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013/07/02 15:56:14 | 001,030,952 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/07/02 15:56:11 | 000,080,816 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013/07/02 15:56:10 | 000,287,840 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2013/07/02 15:55:53 | 000,041,664 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/07/02 15:55:43 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013/07/02 15:55:13 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2013/07/02 15:18:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
[2013/07/02 15:18:50 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2013/07/02 02:09:33 | 000,000,000 | ---D | C] -- C:\Users\Chris\Desktop\New folder (2)
[2013/07/02 01:50:03 | 000,660,160 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\Chris\Desktop\autoruns.exe
[2013/07/02 01:50:03 | 000,579,264 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\Chris\Desktop\autorunsc.exe
[2013/06/30 13:46:24 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView
[2013/06/30 13:46:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NirSoft
[2013/06/30 13:39:56 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Mozilla
[2013/06/25 04:29:38 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\Warframe
[2013/06/23 02:02:07 | 000,000,000 | -HSD | C] -- C:\found.000
[2013/06/06 02:05:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Space Hulk Mod
[2013/06/06 02:05:37 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2013/06/05 17:38:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2013/06/05 05:53:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Uniblue
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/07/02 15:56:21 | 001,030,952 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/07/02 15:56:21 | 000,378,944 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/07/02 15:56:21 | 000,189,936 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/07/02 15:56:21 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys.sum
[2013/07/02 15:56:21 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswSP.sys.sum
[2013/07/02 15:56:21 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswSnx.sys.sum
[2013/07/02 15:56:18 | 000,001,922 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/07/02 15:56:11 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013/07/02 15:51:49 | 000,017,360 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/07/02 15:51:49 | 000,017,360 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/07/02 15:50:24 | 000,780,690 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/07/02 15:50:24 | 000,661,122 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/07/02 15:50:24 | 000,121,548 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/07/02 15:49:01 | 000,000,928 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4179176860-620969967-2100876624-1000UA.job
[2013/07/02 15:49:01 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4179176860-620969967-2100876624-1000Core.job
[2013/07/02 15:49:00 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179176860-620969967-2100876624-1000UA.job
[2013/07/02 15:49:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179176860-620969967-2100876624-1000Core.job
[2013/07/02 15:44:25 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2013/07/02 15:44:25 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/07/02 15:44:25 | 000,000,828 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2013/07/02 15:44:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/07/02 15:44:16 | 2121,134,079 | -HS- | M] () -- C:\hiberfil.sys
[2013/07/02 15:40:00 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/07/02 15:18:51 | 000,001,264 | ---- | M] () -- C:\Users\Chris\Desktop\Revo Uninstaller.lnk
[2013/07/02 05:42:05 | 536,764,267 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/06/27 23:20:52 | 000,660,160 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Users\Chris\Desktop\autoruns.exe
[2013/06/27 23:20:52 | 000,579,264 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Users\Chris\Desktop\autorunsc.exe
[2013/06/20 07:39:36 | 000,002,364 | ---- | M] () -- C:\Users\Chris\Desktop\Google Chrome.lnk
[2013/06/19 21:11:33 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_rzendpt_01009.Wdf
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/07/02 15:56:21 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys.sum
[2013/07/02 15:56:21 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswSP.sys.sum
[2013/07/02 15:56:21 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswSnx.sys.sum
[2013/07/02 15:56:18 | 000,001,922 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/07/02 15:56:13 | 000,189,936 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/07/02 15:56:13 | 000,065,336 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013/07/02 15:56:10 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2013/07/02 15:18:51 | 000,001,264 | ---- | C] () -- C:\Users\Chris\Desktop\Revo Uninstaller.lnk
[2013/07/02 01:50:03 | 000,049,518 | ---- | C] () -- C:\Users\Chris\Desktop\autoruns.chm
[2013/06/19 21:11:33 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_rzendpt_01009.Wdf
[2013/04/15 13:38:21 | 000,007,602 | ---- | C] () -- C:\Users\Chris\AppData\Local\Resmon.ResmonCfg
[2013/04/15 10:06:53 | 000,100,864 | ---- | C] () -- C:\Windows\SysWow64\EfiInvoker64.dll
[2013/04/15 10:06:53 | 000,087,040 | ---- | C] () -- C:\Windows\SysWow64\EfiInvoker.dll
[2012/11/22 00:25:38 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2012/11/02 02:58:10 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\SETTINGSread.ini
[2012/06/19 18:52:42 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
[2012/06/17 04:26:51 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\CmdLineExt03.dll
[2012/06/17 03:11:24 | 000,031,470 | ---- | C] () -- C:\Users\Chris\AppData\Local\funmoods.crx
[2012/06/14 21:16:24 | 000,795,928 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/06/14 21:10:09 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011/09/28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011/09/19 08:03:40 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\rtvcvfw32.dll

========== ZeroAccess Check ==========

[2009/07/13 23:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 00:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/26 23:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/07/06 01:23:41 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\.minecraft
[2012/06/22 20:39:17 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\.purple
[2012/06/17 03:06:54 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\Babylon
[2012/06/17 03:11:54 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\BucksBee Loyalty Plugin - 100884.rs for Chrome
[2013/07/02 15:25:54 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\DAEMON Tools Lite
[2012/11/22 01:03:19 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\driveridentifier
[2013/02/04 05:46:43 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\HandBrake
[2012/06/17 04:01:59 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\LibreOffice
[2012/08/05 22:57:55 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\ManyCam
[2012/06/14 22:24:52 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\runic games
[2012/11/22 00:01:41 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\SystemRequirementsLab
[2013/01/05 13:30:32 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\TeamViewer
[2012/08/04 03:08:29 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\thriXXX
[2013/06/28 23:47:19 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\TS3Client
[2012/12/14 22:09:06 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\Unity
[2013/06/18 07:50:19 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\uTorrent
[2012/06/29 17:48:20 | 000,000,000 | ---D | M] -- C:\Users\Chris\AppData\Roaming\wargaming.net

========== Purity Check ==========



< End of report >
  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP
I'm going to give you a lot of stuff to do. Feel free to copy and past the logs as you get them. I don't mind multiple posts.

First:
Download BlueScreenView
http://www.nirsoft.n...creen_view.html

Double click on BlueScreenView.exe file to run the program.
When scanning is done, go Edit, Select All.

Go File, Save Selected Items, and save the report as BSOD.txt.
Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.

This will show us the reported causes of your different BSODs. The fact that they are all over the place probably means that the reported causes aren't really the causes. Something else is messing up and leaving them holding the bag.


Second: Download the adwCleaner

  • Run the Tool
    Windows Vista and Windows 7 users:
    Right click in the adwCleaner.exe and select the option
    Posted Image
  • Select the Delete button.
  • When the scan completes, it will open a notepad windows.
  • Please, copy the content of this file in your next reply.

This will remove a lot of the adware that you have had foisted on you.

Third: Get Process Explorer

http://live.sysinter...com/procexp.exe
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header to sort things by CPU usage with the big hitters at the top.

Wait a minute then:

File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.

This lets me see if some process is hogging the CPU.

Fourth:
Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).
sfc  /scannow

(This will check your critical system files. Does this finish without complaint? IF it says it couldn't fix everything then:

Copy the next two lines:

findstr /c:"[SR]" \windows\logs\cbs\cbs.log > \windows\logs\cbs\junk.txt
notepad \windows\logs\cbs\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

This checks and tries to repair your critical system files and also shows me if there are any errors which may be slowing you down.

Fifth: Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button) Download, Save and Install it. Run Speccy by right clicking and Run As Admin. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Open the file in notepad and delete the line that gives the serial number of your Operating System. (It will be near the top about 10 lines down.) Close and Save the file then Attach the file to your next post. Uninstall Speccy.

This allows me to see the temperatures on your PC as well as the condition of your hard drive and a lot of other stuff. We do this after a bunch of other stuff so that the PC will be nice and warm so if it has problems with temp control we should see it.


Sixth: Since you have Avast let's let it do a full boot-time scan. I don't see any obvious infections but this should pretty much rule out infections. You will probably want to let this run while you sleep as it can take 6 hours or so, so mute the speakers before you start. It's going to take many hours. Click on the Avast ball. Click on Security then on Antivirus. (You can also hit Scan Now which will start the Quick Scan as it takes you to the correct page. Stop the scan as we don't need it.) Scroll down until you find Boot-time Scan. Click on Settings. It should be set by default to do the System Drive which is what we want.
Where it says Heuristics Sensitivity - click on the last of the orange boxes. We want it to maximum (High). Both boxes should be checked. Change it to say "Move to Chest" under "When a threat is found ..." OK. Now click on "Schedule Now" and then close the Avast window. Close all programs then reboot. The scan will start. It normally tells you where it will store the report. Usually it is at C:\ProgramData\Avast Software\Avast\report\aswboot.txt
To view the report, click on the Avast ball then on Maintenance then on Scan Logs. Click on the log and then View Results. If it didn't find anything I don't need the report but if it did please copy and paste the report.

Seventh. Bad RAM can cause all sorts of problems so let's also run the built-in Memory test:

http://www.sevenforu...stics-tool.html

Ron
  • 1

#3
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
BLUE SCREEN VIEWER LOG





==================================================
Dump File : 063013-12370-01.dmp
Crash Time : 6/30/2013 3:16:05 PM
Bug Check String :
Bug Check Code : 0x0000010e
Parameter 1 : 00000000`0000001f
Parameter 2 : fffff8a0`0ec35d00
Parameter 3 : 00000000`00000000
Parameter 4 : 00000000`001c8c58
Caused By Driver : watchdog.sys
Caused By Address : watchdog.sys+122f
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\063013-12370-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 292,544
Dump File Time : 6/30/2013 3:16:55 PM
==================================================

==================================================
Dump File : 063013-10264-01.dmp
Crash Time : 6/30/2013 12:10:52 PM
Bug Check String : PAGE_FAULT_IN_NONPAGED_AREA
Bug Check Code : 0x00000050
Parameter 1 : fffffa80`725958cf
Parameter 2 : 00000000`00000000
Parameter 3 : fffff880`0928cb08
Parameter 4 : 00000000`00000005
Caused By Driver : nvlddmkm.sys
Caused By Address : nvlddmkm.sys+de28d
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\063013-10264-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 292,528
Dump File Time : 6/30/2013 1:01:11 PM
==================================================

==================================================
Dump File : 063013-13696-01.dmp
Crash Time : 6/30/2013 11:10:49 AM
Bug Check String : IRQL_NOT_LESS_OR_EQUAL
Bug Check Code : 0x0000000a
Parameter 1 : 00000000`00000098
Parameter 2 : 00000000`00000002
Parameter 3 : 00000000`00000000
Parameter 4 : fffff800`0330dd80
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+75c00
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.1.7601.18113 (win7sp1_gdr.130318-1533)
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\063013-13696-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 292,552
Dump File Time : 6/30/2013 11:14:45 AM
==================================================

==================================================
Dump File : 061813-21340-01.dmp
Crash Time : 6/18/2013 4:42:30 AM
Bug Check String : POOL_CORRUPTION_IN_FILE_AREA
Bug Check Code : 0x000000de
Parameter 1 : 00000000`00000002
Parameter 2 : fffff8a0`118d1ff0
Parameter 3 : fffff8a0`118d1f87
Parameter 4 : 00000001`fc8d28c0
Caused By Driver : ntoskrnl.exe
Caused By Address : ntoskrnl.exe+75c00
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.1.7601.18113 (win7sp1_gdr.130318-1533)
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\061813-21340-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 292,608
Dump File Time : 6/18/2013 5:06:22 AM
==================================================

==================================================
Dump File : 042513-20638-01.dmp
Crash Time : 4/25/2013 4:22:28 AM
Bug Check String :
Bug Check Code : 0x00000124
Parameter 1 : 00000000`00000000
Parameter 2 : fffffa80`0ae56028
Parameter 3 : 00000000`be200000
Parameter 4 : 00000000`0005110a
Caused By Driver : hal.dll
Caused By Address : hal.dll+12a3b
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\042513-20638-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 287,248
Dump File Time : 4/25/2013 11:49:22 AM
==================================================

==================================================
Dump File : 042413-11856-01.dmp
Crash Time : 4/24/2013 8:57:50 PM
Bug Check String :
Bug Check Code : 0x00000124
Parameter 1 : 00000000`00000000
Parameter 2 : fffffa80`0a707028
Parameter 3 : 00000000`be200000
Parameter 4 : 00000000`0005110a
Caused By Driver : hal.dll
Caused By Address : hal.dll+12a3b
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\042413-11856-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 284,848
Dump File Time : 4/24/2013 8:59:44 PM
==================================================

==================================================
Dump File : 042413-13135-01.dmp
Crash Time : 4/24/2013 1:31:58 PM
Bug Check String :
Bug Check Code : 0x00000124
Parameter 1 : 00000000`00000000
Parameter 2 : fffffa80`0a621028
Parameter 3 : 00000000`be200000
Parameter 4 : 00000000`0005110a
Caused By Driver : hal.dll
Caused By Address : hal.dll+12a3b
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\042413-13135-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 266,320
Dump File Time : 4/24/2013 1:34:13 PM
==================================================

==================================================
Dump File : 042413-13509-01.dmp
Crash Time : 4/24/2013 1:20:08 PM
Bug Check String : SYSTEM_SERVICE_EXCEPTION
Bug Check Code : 0x0000003b
Parameter 1 : 00000000`c0000005
Parameter 2 : fffff880`0153aa99
Parameter 3 : fffff880`0a708e80
Parameter 4 : 00000000`00000000
Caused By Driver : fltmgr.sys
Caused By Address : fltmgr.sys+2a99
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\042413-13509-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 284,000
Dump File Time : 4/24/2013 1:22:05 PM
==================================================

==================================================
Dump File : 042413-23244-01.dmp
Crash Time : 4/24/2013 1:06:49 PM
Bug Check String :
Bug Check Code : 0x00000124
Parameter 1 : 00000000`00000000
Parameter 2 : fffffa80`0ae68028
Parameter 3 : 00000000`be200000
Parameter 4 : 00000000`0005110a
Caused By Driver : hal.dll
Caused By Address : hal.dll+12a3b
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\042413-23244-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 285,080
Dump File Time : 4/24/2013 1:10:19 PM
==================================================

==================================================
Dump File : 042313-11263-01.dmp
Crash Time : 4/23/2013 10:33:25 PM
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : ffffffff`c000001d
Parameter 2 : fffff800`0327b5a5
Parameter 3 : fffff880`03778618
Parameter 4 : fffff880`03777e70
Caused By Driver : rdyboost.sys
Caused By Address : rdyboost.sys+4c90
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+6b5a5
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\042313-11263-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 266,320
Dump File Time : 4/23/2013 10:40:00 PM
==================================================

==================================================
Dump File : 042313-10342-01.dmp
Crash Time : 4/23/2013 8:47:45 PM
Bug Check String :
Bug Check Code : 0x00000101
Parameter 1 : 00000000`00000031
Parameter 2 : 00000000`00000000
Parameter 3 : fffff880`033d7180
Parameter 4 : 00000000`00000003
Caused By Driver : hal.dll
Caused By Address : hal.dll+7b7f
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\042313-10342-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 292,672
Dump File Time : 4/23/2013 8:50:06 PM
==================================================

==================================================
Dump File : 042313-12729-01.dmp
Crash Time : 4/23/2013 7:56:43 PM
Bug Check String :
Bug Check Code : 0x00000101
Parameter 1 : 00000000`00000031
Parameter 2 : 00000000`00000000
Parameter 3 : fffff880`033d7180
Parameter 4 : 00000000`00000003
Caused By Driver : Ntfs.sys
Caused By Address : Ntfs.sys+5bd80
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+75c00
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\042313-12729-01.dmp
Processors Count : 4
Major Version : 15
Minor Version : 7601
Dump File Size : 283,400
Dump File Time : 4/23/2013 7:58:12 PM
==================================================
  • 0

#4
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
# AdwCleaner v2.304 - Logfile created 07/06/2013 at 13:08:48
# Updated 03/07/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Chris - DARKSTAR
# Boot Mode : Normal
# Running from : C:\Users\Chris\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\user.js
File Deleted : C:\Users\Chris\AppData\Local\funmoods.crx
Folder Deleted : C:\Program Files (x86)\OApps
Folder Deleted : C:\Program Files (x86)\Vid-Saver
Folder Deleted : C:\ProgramData\Anti-phishing Domain Advisor
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Chris\AppData\Local\Vid-Saver
Folder Deleted : C:\Users\Chris\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\Chris\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Chris\AppData\LocalLow\Funmoods
Folder Deleted : C:\Users\Chris\AppData\Roaming\Babylon

***** [Registry] *****

Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Vid-Saver
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Default Tab
Key Deleted : HKCU\Software\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Microsoft\Babylon
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110011341191}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110011341191}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003491.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003491.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003491.FBApi
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003491.FBApi.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003491.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003491.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\f
Key Deleted : HKLM\SOFTWARE\Classes\funmoods.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\funmoods.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr
Key Deleted : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\funmoodsApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\funmoodsApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3}
Key Deleted : HKLM\Software\Default Tab
Key Deleted : HKLM\Software\DefaultTab
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Vid-Saver_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Vid-Saver_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011341191}
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110011341191}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A9DB719C-7156-415E-B49D-BAD039DE4F13}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F03FD9D0-4F2B-497C-8A71-DD41D70B07D9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pgmfkblbflahhponhjmkcnpjinenhlnc
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011341191}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011341191}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Anti-phishing Domain Advisor
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Vid-Saver
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?affID=113959&tt=060612_7_&babsrc=HP_ss&mntrId=0adfd1bd00000000000000224d843791 --> hxxp://www.google.com

-\\ Google Chrome v27.0.1453.116

File : C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [9828 octets] - [06/07/2013 13:08:48]

########## EOF - C:\AdwCleaner[S1].txt - [9888 octets] ##########
  • 0

#5
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 98.42 0 K 24 K 0
procexp64.exe 0.82 32,116 K 53,520 K 4180 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Sysinternals
Interrupts 0.40 0 K 0 K n/a Hardware Interrupts and DPCs
csrss.exe 0.09 3,124 K 9,244 K 724 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
System 0.09 132 K 1,684 K 4
dwm.exe 0.09 33,024 K 35,168 K 2160 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
explorer.exe 0.01 35,972 K 63,160 K 2200 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
LMS.exe 0.01 2,544 K 5,120 K 3960 Local Manageability Service Intel Corporation (Verified) Intel Corporation
AppleMobileDeviceService.exe 0.01 3,320 K 9,744 K 1620 MobileDeviceService Apple Inc. (Verified) Apple Inc.
svchost.exe 0.01 4,660 K 10,188 K 964 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
AvastUI.exe < 0.01 8,736 K 6,312 K 2524 avast! Antivirus AVAST Software (Verified) AVAST Software
AvastSvc.exe < 0.01 34,516 K 11,868 K 1584 avast! Service AVAST Software (Verified) AVAST Software
svchost.exe < 0.01 18,396 K 21,588 K 504 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
iPodService.exe < 0.01 3,396 K 8,072 K 3104 iPodService Module (64-bit) Apple Inc. (Verified) Apple Inc.
chrome.exe < 0.01 48,592 K 78,676 K 3884 Google Chrome Google Inc. (Verified) Google Inc
svchost.exe < 0.01 16,068 K 17,276 K 1516 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 9,808 K 17,708 K 1064 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
csrss.exe < 0.01 3,068 K 5,296 K 644 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
SearchIndexer.exe < 0.01 29,224 K 19,908 K 3144 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
wmpnetwk.exe < 0.01 11,468 K 5,544 K 3988 Windows Media Player Network Sharing Service Microsoft Corporation (Verified) Microsoft Windows
chrome.exe < 0.01 80,512 K 116,068 K 4584 Google Chrome Google Inc. (Verified) Google Inc
taskhost.exe < 0.01 12,856 K 14,380 K 2096 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
chrome.exe < 0.01 71,320 K 89,256 K 4748 Google Chrome Google Inc. (Verified) Google Inc
svchost.exe < 0.01 28,988 K 45,344 K 1100 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
daemonu.exe < 0.01 5,172 K 11,448 K 2964 NVIDIA Settings Update Manager NVIDIA Corporation (Verified) NVIDIA Corporation
IAStorDataMgrSvc.exe < 0.01 41,172 K 43,976 K 4836 IAStorDataSvc Intel Corporation (Verified) Intel Corporation - Intel® Rapid Storage Technology
svchost.exe < 0.01 133,060 K 139,472 K 1036 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
MpCmdRun.exe < 0.01 5,828 K 11,076 K 956 Microsoft Malware Protection Command Line Utility Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 12,752 K 16,076 K 1752 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
lsass.exe < 0.01 4,840 K 11,788 K 812 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows
nvvsvc.exe < 0.01 5,980 K 12,488 K 1352 NVIDIA Driver Helper Service, Version 314.07 NVIDIA Corporation (Verified) NVIDIA Corporation
iTunesHelper.exe < 0.01 4,144 K 11,888 K 2688 iTunesHelper Apple Inc. (Verified) Apple Inc.
TeamViewer_Service.exe < 0.01 4,768 K 12,576 K 2360 TeamViewer 8 TeamViewer GmbH (Verified) TeamViewer
svchost.exe < 0.01 39,076 K 28,124 K 1560 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 3,904 K 8,300 K 4488 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 3,840 K 7,720 K 4428 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WLIDSVCM.EXE 2,144 K 4,264 K 3344 Microsoft® Windows Live ID Service Monitor Microsoft Corporation (Verified) Microsoft Corporation
WLIDSVC.EXE 5,328 K 13,636 K 456 Microsoft® Windows Live ID Service Microsoft Corporation (Verified) Microsoft Corporation
winlogon.exe 3,060 K 7,488 K 860 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 1,728 K 4,684 K 732 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows
UNS.exe 5,560 K 12,092 K 3260 User Notification Service Intel Corporation (Verified) Intel Corporation
svchost.exe 4,324 K 8,200 K 428 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2,676 K 6,644 K 3044 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 7,644 K 14,080 K 3508 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 4,344 K 8,560 K 4148 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
spoolsv.exe 7,496 K 13,232 K 1724 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
smss.exe 536 K 1,192 K 408 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows
services.exe 5,584 K 9,620 K 796 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows
procexp.exe 2,724 K 8,168 K 3964 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
nvxdsync.exe 8,088 K 17,992 K 1344 NVIDIA User Experience Driver Component NVIDIA Corporation (Verified) NVIDIA Corporation
nvvsvc.exe 2,872 K 7,424 K 156 NVIDIA Driver Helper Service, Version 314.07 NVIDIA Corporation (Verified) NVIDIA Corporation
nvtray.exe 6,152 K 13,468 K 2808 NVIDIA Settings NVIDIA Corporation (Verified) NVIDIA Corporation
mDNSResponder.exe 2,948 K 6,636 K 2600 Bonjour Service Apple Inc. (Verified) Apple Inc.
lsm.exe 2,632 K 4,396 K 820 Local Session Manager Service Microsoft Corporation (Verified) Microsoft Windows
IPROSetMonitor.exe 2,492 K 5,376 K 2780 Intel® PROSet Monitoring Service Intel Corporation (Verified) Intel Corporation
IntelMeFWService.exe 1,352 K 4,016 K 5028 Intel® ME Service Intel Corporation (Verified) Intel Corporation
HeciServer.exe 2,620 K 6,636 K 2752 Intel® Capability Licensing Service Interface Intel® Corporation (Verified) Intel® Upgrade Service
dllhost.exe 3,080 K 7,036 K 1428 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 24,440 K 49,744 K 5064 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 55,240 K 81,484 K 4960 Google Chrome Google Inc. (Verified) Google Inc
audiodg.exe 15,828 K 15,960 K 4216 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows
armsvc.exe 1,488 K 4,336 K 1556 Adobe Acrobat Update Service Adobe Systems Incorporated (Verified) Adobe Systems
  • 0

#6
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
On the Command Prompt Scan, it finished scanning without complaint, but it said it did find corrupted files it could not fix. The command prompt instructions that came after the two lines given were kind of confusing for me, but I believe this is the notepad text that you wanted. Tell me if I am wrong/right.





2013-07-06 13:35:19, Info CSI 00000009 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:19, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:21, Info CSI 0000000c [SR] Verify complete
2013-07-06 13:35:21, Info CSI 0000000d [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:21, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:22, Info CSI 00000010 [SR] Verify complete
2013-07-06 13:35:22, Info CSI 00000011 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:22, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:24, Info CSI 00000014 [SR] Verify complete
2013-07-06 13:35:24, Info CSI 00000015 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:24, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:25, Info CSI 00000018 [SR] Verify complete
2013-07-06 13:35:25, Info CSI 00000019 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:25, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:27, Info CSI 0000001c [SR] Verify complete
2013-07-06 13:35:27, Info CSI 0000001d [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:27, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:29, Info CSI 00000020 [SR] Verify complete
2013-07-06 13:35:30, Info CSI 00000021 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:30, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:31, Info CSI 00000024 [SR] Verify complete
2013-07-06 13:35:31, Info CSI 00000025 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:31, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:33, Info CSI 00000028 [SR] Verify complete
2013-07-06 13:35:33, Info CSI 00000029 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:33, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:35, Info CSI 0000002c [SR] Verify complete
2013-07-06 13:35:35, Info CSI 0000002d [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:35, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:36, Info CSI 00000030 [SR] Verify complete
2013-07-06 13:35:36, Info CSI 00000031 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:36, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:37, Info CSI 00000034 [SR] Verify complete
2013-07-06 13:35:37, Info CSI 00000035 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:37, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:40, Info CSI 00000039 [SR] Verify complete
2013-07-06 13:35:40, Info CSI 0000003a [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:40, Info CSI 0000003b [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:43, Info CSI 0000003f [SR] Verify complete
2013-07-06 13:35:44, Info CSI 00000040 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:44, Info CSI 00000041 [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:48, Info CSI 00000044 [SR] Verify complete
2013-07-06 13:35:48, Info CSI 00000045 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:48, Info CSI 00000046 [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:51, Info CSI 00000049 [SR] Verify complete
2013-07-06 13:35:51, Info CSI 0000004a [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:51, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:54, Info CSI 0000004d [SR] Verify complete
2013-07-06 13:35:54, Info CSI 0000004e [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:54, Info CSI 0000004f [SR] Beginning Verify and Repair transaction
2013-07-06 13:35:58, Info CSI 00000074 [SR] Verify complete
2013-07-06 13:35:58, Info CSI 00000075 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:35:58, Info CSI 00000076 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:02, Info CSI 00000078 [SR] Verify complete
2013-07-06 13:36:02, Info CSI 00000079 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:02, Info CSI 0000007a [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:04, Info CSI 0000007c [SR] Verify complete
2013-07-06 13:36:04, Info CSI 0000007d [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:04, Info CSI 0000007e [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:08, Info CSI 00000080 [SR] Verify complete
2013-07-06 13:36:08, Info CSI 00000081 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:08, Info CSI 00000082 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:11, Info CSI 00000084 [SR] Verify complete
2013-07-06 13:36:11, Info CSI 00000085 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:11, Info CSI 00000086 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:14, Info CSI 00000088 [SR] Verify complete
2013-07-06 13:36:14, Info CSI 00000089 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:14, Info CSI 0000008a [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:17, Info CSI 0000008c [SR] Verify complete
2013-07-06 13:36:17, Info CSI 0000008d [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:17, Info CSI 0000008e [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:22, Info CSI 000000b1 [SR] Verify complete
2013-07-06 13:36:22, Info CSI 000000b2 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:22, Info CSI 000000b3 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:26, Info CSI 000000b5 [SR] Verify complete
2013-07-06 13:36:26, Info CSI 000000b6 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:26, Info CSI 000000b7 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:32, Info CSI 000000b9 [SR] Verify complete
2013-07-06 13:36:32, Info CSI 000000ba [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:32, Info CSI 000000bb [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:35, Info CSI 000000bf [SR] Verify complete
2013-07-06 13:36:35, Info CSI 000000c0 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:35, Info CSI 000000c1 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:36, Info CSI 000000c3 [SR] Verify complete
2013-07-06 13:36:36, Info CSI 000000c4 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:36, Info CSI 000000c5 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:37, Info CSI 000000c7 [SR] Verify complete
2013-07-06 13:36:37, Info CSI 000000c8 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:37, Info CSI 000000c9 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:38, Info CSI 000000cb [SR] Verify complete
2013-07-06 13:36:38, Info CSI 000000cc [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:38, Info CSI 000000cd [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:43, Info CSI 000000e0 [SR] Verify complete
2013-07-06 13:36:43, Info CSI 000000e1 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:43, Info CSI 000000e2 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:44, Info CSI 000000e4 [SR] Verify complete
2013-07-06 13:36:44, Info CSI 000000e5 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:44, Info CSI 000000e6 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:45, Info CSI 000000e8 [SR] Verify complete
2013-07-06 13:36:45, Info CSI 000000e9 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:45, Info CSI 000000ea [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:47, Info CSI 000000ec [SR] Verify complete
2013-07-06 13:36:47, Info CSI 000000ed [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:47, Info CSI 000000ee [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:50, Info CSI 000000f1 [SR] Verify complete
2013-07-06 13:36:50, Info CSI 000000f2 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:50, Info CSI 000000f3 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:56, Info CSI 000000f6 [SR] Verify complete
2013-07-06 13:36:56, Info CSI 000000f7 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:56, Info CSI 000000f8 [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:58, Info CSI 000000fa [SR] Verify complete
2013-07-06 13:36:58, Info CSI 000000fb [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:58, Info CSI 000000fc [SR] Beginning Verify and Repair transaction
2013-07-06 13:36:59, Info CSI 000000fe [SR] Verify complete
2013-07-06 13:36:59, Info CSI 000000ff [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:36:59, Info CSI 00000100 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:02, Info CSI 00000102 [SR] Verify complete
2013-07-06 13:37:02, Info CSI 00000103 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:02, Info CSI 00000104 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:05, Info CSI 00000106 [SR] Verify complete
2013-07-06 13:37:05, Info CSI 00000107 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:05, Info CSI 00000108 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:08, Info CSI 0000010a [SR] Verify complete
2013-07-06 13:37:08, Info CSI 0000010b [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:08, Info CSI 0000010c [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:14, Info CSI 00000123 [SR] Verify complete
2013-07-06 13:37:14, Info CSI 00000124 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:14, Info CSI 00000125 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:17, Info CSI 00000128 [SR] Verify complete
2013-07-06 13:37:17, Info CSI 00000129 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:17, Info CSI 0000012a [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:25, Info CSI 0000012c [SR] Verify complete
2013-07-06 13:37:25, Info CSI 0000012d [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:25, Info CSI 0000012e [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:28, Info CSI 00000130 [SR] Verify complete
2013-07-06 13:37:28, Info CSI 00000131 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:28, Info CSI 00000132 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:33, Info CSI 00000135 [SR] Verify complete
2013-07-06 13:37:33, Info CSI 00000136 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:33, Info CSI 00000137 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:36, Info CSI 00000139 [SR] Verify complete
2013-07-06 13:37:36, Info CSI 0000013a [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:36, Info CSI 0000013b [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:39, Info CSI 0000013d [SR] Verify complete
2013-07-06 13:37:39, Info CSI 0000013e [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:39, Info CSI 0000013f [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:42, Info CSI 00000141 [SR] Verify complete
2013-07-06 13:37:42, Info CSI 00000142 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:42, Info CSI 00000143 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:44, Info CSI 00000145 [SR] Verify complete
2013-07-06 13:37:44, Info CSI 00000146 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:44, Info CSI 00000147 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:47, Info CSI 0000014b [SR] Verify complete
2013-07-06 13:37:47, Info CSI 0000014c [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:47, Info CSI 0000014d [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:50, Info CSI 0000014f [SR] Cannot repair member file [l:34{17}]"windeploy.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:50, Info CSI 00000151 [SR] Cannot repair member file [l:32{16}]"WinLGDep.dll.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:50, Info CSI 00000153 [SR] Cannot repair member file [l:26{13}]"audit.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:50, Info CSI 00000155 [SR] Cannot repair member file [l:26{13}]"setup.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:50, Info CSI 00000157 [SR] Cannot repair member file [l:32{16}]"W32UIRes.dll.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:50, Info CSI 00000159 [SR] Cannot repair member file [l:30{15}]"oobeldr.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:51, Info CSI 0000015b [SR] Cannot repair member file [l:34{17}]"windeploy.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:51, Info CSI 0000015c [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:37:51, Info CSI 0000015e [SR] Cannot repair member file [l:32{16}]"WinLGDep.dll.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:51, Info CSI 0000015f [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:37:51, Info CSI 00000161 [SR] Cannot repair member file [l:26{13}]"audit.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:51, Info CSI 00000162 [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:37:51, Info CSI 00000164 [SR] Cannot repair member file [l:26{13}]"setup.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:51, Info CSI 00000165 [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:37:51, Info CSI 00000167 [SR] Cannot repair member file [l:32{16}]"W32UIRes.dll.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:51, Info CSI 00000168 [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:37:51, Info CSI 0000016a [SR] Cannot repair member file [l:30{15}]"oobeldr.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:37:51, Info CSI 0000016b [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:37:51, Info CSI 0000016e [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:34{17}]"windeploy.exe.mui"; source file in store is also corrupted
2013-07-06 13:37:51, Info CSI 00000171 [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:32{16}]"WinLGDep.dll.mui"; source file in store is also corrupted
2013-07-06 13:37:51, Info CSI 00000174 [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:26{13}]"audit.exe.mui"; source file in store is also corrupted
2013-07-06 13:37:51, Info CSI 00000177 [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:26{13}]"setup.exe.mui"; source file in store is also corrupted
2013-07-06 13:37:51, Info CSI 0000017a [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:32{16}]"W32UIRes.dll.mui"; source file in store is also corrupted
2013-07-06 13:37:51, Info CSI 0000017d [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:30{15}]"oobeldr.exe.mui"; source file in store is also corrupted
2013-07-06 13:37:54, Info CSI 0000017f [SR] Verify complete
2013-07-06 13:37:54, Info CSI 00000180 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:54, Info CSI 00000181 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:58, Info CSI 00000184 [SR] Verify complete
2013-07-06 13:37:58, Info CSI 00000185 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:37:58, Info CSI 00000186 [SR] Beginning Verify and Repair transaction
2013-07-06 13:37:58, Info CSI 00000188 [SR] Cannot repair member file [l:24{12}]"spwizimg.dll" of Microsoft-Windows-Setup-Navigation-Wizard-Framework, Version = 6.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:38:00, Info CSI 0000018a [SR] Cannot repair member file [l:24{12}]"spwizimg.dll" of Microsoft-Windows-Setup-Navigation-Wizard-Framework, Version = 6.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:38:00, Info CSI 0000018b [SR] This component was referenced by [l:202{101}]"Microsoft-Windows-Foundation-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.WindowsFoundationDelivery"
2013-07-06 13:38:00, Info CSI 0000018e [SR] Could not reproject corrupted file [ml:520{260},l:46{23}]"\??\C:\Windows\System32"\[l:24{12}]"spwizimg.dll"; source file in store is also corrupted
2013-07-06 13:38:01, Info CSI 00000190 [SR] Verify complete
2013-07-06 13:38:01, Info CSI 00000191 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:01, Info CSI 00000192 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:04, Info CSI 00000195 [SR] Verify complete
2013-07-06 13:38:04, Info CSI 00000196 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:04, Info CSI 00000197 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:06, Info CSI 00000199 [SR] Cannot repair member file [l:24{12}]"W32UIRes.dll" of Microsoft-Windows-Setup-Component, Version = 6.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:38:08, Info CSI 0000019b [SR] Cannot repair member file [l:24{12}]"W32UIRes.dll" of Microsoft-Windows-Setup-Component, Version = 6.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:38:08, Info CSI 0000019c [SR] This component was referenced by [l:202{101}]"Microsoft-Windows-Foundation-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.WindowsFoundationDelivery"
2013-07-06 13:38:08, Info CSI 0000019f [SR] Could not reproject corrupted file [ml:520{260},l:56{28}]"\??\C:\Windows\System32\oobe"\[l:24{12}]"W32UIRes.dll"; source file in store is also corrupted
2013-07-06 13:38:09, Info CSI 000001a2 [SR] Verify complete
2013-07-06 13:38:09, Info CSI 000001a3 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:09, Info CSI 000001a4 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:13, Info CSI 000001a6 [SR] Verify complete
2013-07-06 13:38:13, Info CSI 000001a7 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:13, Info CSI 000001a8 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:15, Info CSI 000001aa [SR] Verify complete
2013-07-06 13:38:15, Info CSI 000001ab [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:15, Info CSI 000001ac [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:18, Info CSI 000001ae [SR] Verify complete
2013-07-06 13:38:18, Info CSI 000001af [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:18, Info CSI 000001b0 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:20, Info CSI 000001b2 [SR] Verify complete
2013-07-06 13:38:20, Info CSI 000001b3 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:20, Info CSI 000001b4 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:24, Info CSI 000001b7 [SR] Verify complete
2013-07-06 13:38:24, Info CSI 000001b8 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:24, Info CSI 000001b9 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:26, Info CSI 000001bb [SR] Verify complete
2013-07-06 13:38:26, Info CSI 000001bc [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:26, Info CSI 000001bd [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:28, Info CSI 000001bf [SR] Verify complete
2013-07-06 13:38:28, Info CSI 000001c0 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:28, Info CSI 000001c1 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:31, Info CSI 000001c4 [SR] Verify complete
2013-07-06 13:38:31, Info CSI 000001c5 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:31, Info CSI 000001c6 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:34, Info CSI 000001c9 [SR] Verify complete
2013-07-06 13:38:34, Info CSI 000001ca [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:34, Info CSI 000001cb [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:37, Info CSI 000001ce [SR] Verify complete
2013-07-06 13:38:37, Info CSI 000001cf [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:37, Info CSI 000001d0 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:41, Info CSI 000001d2 [SR] Verify complete
2013-07-06 13:38:41, Info CSI 000001d3 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:41, Info CSI 000001d4 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:44, Info CSI 000001d7 [SR] Verify complete
2013-07-06 13:38:44, Info CSI 000001d8 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:44, Info CSI 000001d9 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:45, Info CSI 000001db [SR] Verify complete
2013-07-06 13:38:45, Info CSI 000001dc [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:45, Info CSI 000001dd [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:47, Info CSI 000001df [SR] Verify complete
2013-07-06 13:38:47, Info CSI 000001e0 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:47, Info CSI 000001e1 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:49, Info CSI 000001e3 [SR] Verify complete
2013-07-06 13:38:49, Info CSI 000001e4 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:49, Info CSI 000001e5 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:52, Info CSI 000001e7 [SR] Verify complete
2013-07-06 13:38:52, Info CSI 000001e8 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:52, Info CSI 000001e9 [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:55, Info CSI 000001eb [SR] Verify complete
2013-07-06 13:38:55, Info CSI 000001ec [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:55, Info CSI 000001ed [SR] Beginning Verify and Repair transaction
2013-07-06 13:38:56, Info CSI 000001ef [SR] Verify complete
2013-07-06 13:38:56, Info CSI 000001f0 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:38:56, Info CSI 000001f1 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:00, Info CSI 000001f3 [SR] Verify complete
2013-07-06 13:39:00, Info CSI 000001f4 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:00, Info CSI 000001f5 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:07, Info CSI 000001f7 [SR] Verify complete
2013-07-06 13:39:08, Info CSI 000001f8 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:08, Info CSI 000001f9 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:14, Info CSI 000001fb [SR] Verify complete
2013-07-06 13:39:15, Info CSI 000001fc [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:15, Info CSI 000001fd [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:16, Info CSI 000001ff [SR] Verify complete
2013-07-06 13:39:16, Info CSI 00000200 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:16, Info CSI 00000201 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:18, Info CSI 00000203 [SR] Verify complete
2013-07-06 13:39:18, Info CSI 00000204 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:18, Info CSI 00000205 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:19, Info CSI 00000207 [SR] Verify complete
2013-07-06 13:39:19, Info CSI 00000208 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:19, Info CSI 00000209 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:21, Info CSI 0000020b [SR] Verify complete
2013-07-06 13:39:21, Info CSI 0000020c [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:21, Info CSI 0000020d [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:23, Info CSI 0000020f [SR] Verify complete
2013-07-06 13:39:23, Info CSI 00000210 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:23, Info CSI 00000211 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:24, Info CSI 00000213 [SR] Verify complete
2013-07-06 13:39:24, Info CSI 00000214 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:24, Info CSI 00000215 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:25, Info CSI 00000217 [SR] Verify complete
2013-07-06 13:39:25, Info CSI 00000218 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:25, Info CSI 00000219 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:28, Info CSI 00000221 [SR] Verify complete
2013-07-06 13:39:28, Info CSI 00000222 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:28, Info CSI 00000223 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:31, Info CSI 00000225 [SR] Verify complete
2013-07-06 13:39:31, Info CSI 00000226 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:31, Info CSI 00000227 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:33, Info CSI 00000229 [SR] Verify complete
2013-07-06 13:39:33, Info CSI 0000022a [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:33, Info CSI 0000022b [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:35, Info CSI 0000022d [SR] Verify complete
2013-07-06 13:39:35, Info CSI 0000022e [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:35, Info CSI 0000022f [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:37, Info CSI 00000231 [SR] Verify complete
2013-07-06 13:39:37, Info CSI 00000232 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:37, Info CSI 00000233 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:41, Info CSI 00000236 [SR] Verify complete
2013-07-06 13:39:41, Info CSI 00000237 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:41, Info CSI 00000238 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:43, Info CSI 0000023a [SR] Verify complete
2013-07-06 13:39:43, Info CSI 0000023b [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:43, Info CSI 0000023c [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:44, Info CSI 0000023e [SR] Verify complete
2013-07-06 13:39:44, Info CSI 0000023f [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:44, Info CSI 00000240 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:49, Info CSI 00000243 [SR] Verify complete
2013-07-06 13:39:49, Info CSI 00000244 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:49, Info CSI 00000245 [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:55, Info CSI 00000249 [SR] Verify complete
2013-07-06 13:39:55, Info CSI 0000024a [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:55, Info CSI 0000024b [SR] Beginning Verify and Repair transaction
2013-07-06 13:39:58, Info CSI 00000250 [SR] Verify complete
2013-07-06 13:39:58, Info CSI 00000251 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:39:58, Info CSI 00000252 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:02, Info CSI 0000025a [SR] Verify complete
2013-07-06 13:40:02, Info CSI 0000025b [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:02, Info CSI 0000025c [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:06, Info CSI 00000263 [SR] Verify complete
2013-07-06 13:40:06, Info CSI 00000264 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:06, Info CSI 00000265 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:09, Info CSI 0000026a [SR] Verify complete
2013-07-06 13:40:09, Info CSI 0000026b [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:09, Info CSI 0000026c [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:11, Info CSI 0000026e [SR] Verify complete
2013-07-06 13:40:11, Info CSI 0000026f [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:11, Info CSI 00000270 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:13, Info CSI 00000274 [SR] Verify complete
2013-07-06 13:40:13, Info CSI 00000275 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:13, Info CSI 00000276 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:16, Info CSI 0000028f [SR] Verify complete
2013-07-06 13:40:16, Info CSI 00000290 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:16, Info CSI 00000291 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:19, Info CSI 0000029f [SR] Verify complete
2013-07-06 13:40:19, Info CSI 000002a0 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:19, Info CSI 000002a1 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:21, Info CSI 000002a3 [SR] Verify complete
2013-07-06 13:40:22, Info CSI 000002a4 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:22, Info CSI 000002a5 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:24, Info CSI 000002a7 [SR] Verify complete
2013-07-06 13:40:24, Info CSI 000002a8 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:24, Info CSI 000002a9 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:26, Info CSI 000002ab [SR] Verify complete
2013-07-06 13:40:26, Info CSI 000002ac [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:26, Info CSI 000002ad [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:28, Info CSI 000002bb [SR] Verify complete
2013-07-06 13:40:28, Info CSI 000002bc [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:28, Info CSI 000002bd [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:31, Info CSI 000002bf [SR] Verify complete
2013-07-06 13:40:31, Info CSI 000002c0 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:31, Info CSI 000002c1 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:35, Info CSI 000002cf [SR] Verify complete
2013-07-06 13:40:35, Info CSI 000002d0 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:35, Info CSI 000002d1 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:36, Info CSI 000002d3 [SR] Verify complete
2013-07-06 13:40:36, Info CSI 000002d4 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:36, Info CSI 000002d5 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:40, Info CSI 000002d8 [SR] Verify complete
2013-07-06 13:40:40, Info CSI 000002d9 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:40, Info CSI 000002da [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:41, Info CSI 000002dc [SR] Verify complete
2013-07-06 13:40:41, Info CSI 000002dd [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:41, Info CSI 000002de [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:42, Info CSI 000002e0 [SR] Verify complete
2013-07-06 13:40:42, Info CSI 000002e1 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:42, Info CSI 000002e2 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:45, Info CSI 000002e4 [SR] Verify complete
2013-07-06 13:40:45, Info CSI 000002e5 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:45, Info CSI 000002e6 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:47, Info CSI 000002e8 [SR] Verify complete
2013-07-06 13:40:47, Info CSI 000002e9 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:47, Info CSI 000002ea [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:51, Info CSI 00000304 [SR] Verify complete
2013-07-06 13:40:51, Info CSI 00000305 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:51, Info CSI 00000306 [SR] Beginning Verify and Repair transaction
2013-07-06 13:40:53, Info CSI 00000308 [SR] Cannot repair member file [l:28{14}]"iassdo.dll.mui" of Microsoft-Windows-Networking-Internet_Authentication_Service_Iassdo.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:40:53, Info CSI 0000030a [SR] Cannot repair member file [l:28{14}]"iassdo.dll.mui" of Microsoft-Windows-Networking-Internet_Authentication_Service_Iassdo.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:40:53, Info CSI 0000030b [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:40:53, Info CSI 0000030e [SR] Could not reproject corrupted file [ml:60{30},l:58{29}]"\??\C:\Windows\SysWOW64\en-US"\[l:28{14}]"iassdo.dll.mui"; source file in store is also corrupted
2013-07-06 13:40:54, Info CSI 00000310 [SR] Verify complete
2013-07-06 13:40:54, Info CSI 00000311 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:40:54, Info CSI 00000312 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:01, Info CSI 00000314 [SR] Verify complete
2013-07-06 13:41:01, Info CSI 00000315 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:01, Info CSI 00000316 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:03, Info CSI 00000318 [SR] Verify complete
2013-07-06 13:41:04, Info CSI 00000319 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:04, Info CSI 0000031a [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:05, Info CSI 0000031e [SR] Verify complete
2013-07-06 13:41:05, Info CSI 0000031f [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:05, Info CSI 00000320 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:06, Info CSI 00000322 [SR] Verify complete
2013-07-06 13:41:07, Info CSI 00000323 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:07, Info CSI 00000324 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:08, Info CSI 00000326 [SR] Verify complete
2013-07-06 13:41:08, Info CSI 00000327 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:08, Info CSI 00000328 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:11, Info CSI 0000032a [SR] Verify complete
2013-07-06 13:41:11, Info CSI 0000032b [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:11, Info CSI 0000032c [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:13, Info CSI 0000032e [SR] Verify complete
2013-07-06 13:41:13, Info CSI 0000032f [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:13, Info CSI 00000330 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:15, Info CSI 00000333 [SR] Verify complete
2013-07-06 13:41:15, Info CSI 00000334 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:15, Info CSI 00000335 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:16, Info CSI 00000337 [SR] Verify complete
2013-07-06 13:41:17, Info CSI 00000338 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:17, Info CSI 00000339 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:19, Info CSI 0000033b [SR] Verify complete
2013-07-06 13:41:19, Info CSI 0000033c [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:19, Info CSI 0000033d [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:22, Info CSI 0000033f [SR] Verify complete
2013-07-06 13:41:22, Info CSI 00000340 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:22, Info CSI 00000341 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:24, Info CSI 00000344 [SR] Verify complete
2013-07-06 13:41:24, Info CSI 00000345 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:24, Info CSI 00000346 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:27, Info CSI 00000348 [SR] Verify complete
2013-07-06 13:41:27, Info CSI 00000349 [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:27, Info CSI 0000034a [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:29, Info CSI 0000034c [SR] Verify complete
2013-07-06 13:41:29, Info CSI 0000034d [SR] Verifying 100 (0x0000000000000064) components
2013-07-06 13:41:29, Info CSI 0000034e [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:32, Info CSI 00000350 [SR] Verify complete
2013-07-06 13:41:32, Info CSI 00000351 [SR] Verifying 64 (0x0000000000000040) components
2013-07-06 13:41:32, Info CSI 00000352 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:33, Info CSI 00000354 [SR] Verify complete
2013-07-06 13:41:33, Info CSI 00000355 [SR] Repairing 4 components
2013-07-06 13:41:33, Info CSI 00000356 [SR] Beginning Verify and Repair transaction
2013-07-06 13:41:33, Info CSI 00000358 [SR] Cannot repair member file [l:34{17}]"windeploy.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 0000035a [SR] Cannot repair member file [l:32{16}]"WinLGDep.dll.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 0000035c [SR] Cannot repair member file [l:26{13}]"audit.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 0000035e [SR] Cannot repair member file [l:26{13}]"setup.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 00000360 [SR] Cannot repair member file [l:32{16}]"W32UIRes.dll.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 00000362 [SR] Cannot repair member file [l:30{15}]"oobeldr.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 00000364 [SR] Cannot repair member file [l:24{12}]"spwizimg.dll" of Microsoft-Windows-Setup-Navigation-Wizard-Framework, Version = 6.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 00000366 [SR] Cannot repair member file [l:24{12}]"W32UIRes.dll" of Microsoft-Windows-Setup-Component, Version = 6.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 00000368 [SR] Cannot repair member file [l:28{14}]"iassdo.dll.mui" of Microsoft-Windows-Networking-Internet_Authentication_Service_Iassdo.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 0000036a [SR] Cannot repair member file [l:34{17}]"windeploy.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 0000036b [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:41:33, Info CSI 0000036d [SR] Cannot repair member file [l:32{16}]"WinLGDep.dll.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 0000036e [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:41:33, Info CSI 00000370 [SR] Cannot repair member file [l:26{13}]"audit.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 00000371 [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:41:33, Info CSI 00000373 [SR] Cannot repair member file [l:26{13}]"setup.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 00000374 [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:41:33, Info CSI 00000376 [SR] Cannot repair member file [l:32{16}]"W32UIRes.dll.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 00000377 [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:41:33, Info CSI 00000379 [SR] Cannot repair member file [l:30{15}]"oobeldr.exe.mui" of Microsoft-Windows-Setup-Component.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 0000037a [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:41:33, Info CSI 0000037d [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:34{17}]"windeploy.exe.mui"; source file in store is also corrupted
2013-07-06 13:41:33, Info CSI 00000380 [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:32{16}]"WinLGDep.dll.mui"; source file in store is also corrupted
2013-07-06 13:41:33, Info CSI 00000383 [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:26{13}]"audit.exe.mui"; source file in store is also corrupted
2013-07-06 13:41:33, Info CSI 00000386 [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:26{13}]"setup.exe.mui"; source file in store is also corrupted
2013-07-06 13:41:33, Info CSI 00000389 [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:32{16}]"W32UIRes.dll.mui"; source file in store is also corrupted
2013-07-06 13:41:33, Info CSI 0000038c [SR] Could not reproject corrupted file [ml:520{260},l:68{34}]"\??\C:\Windows\System32\oobe\en-US"\[l:30{15}]"oobeldr.exe.mui"; source file in store is also corrupted
2013-07-06 13:41:33, Info CSI 0000038e [SR] Cannot repair member file [l:24{12}]"spwizimg.dll" of Microsoft-Windows-Setup-Navigation-Wizard-Framework, Version = 6.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 0000038f [SR] This component was referenced by [l:202{101}]"Microsoft-Windows-Foundation-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.WindowsFoundationDelivery"
2013-07-06 13:41:33, Info CSI 00000392 [SR] Could not reproject corrupted file [ml:520{260},l:46{23}]"\??\C:\Windows\System32"\[l:24{12}]"spwizimg.dll"; source file in store is also corrupted
2013-07-06 13:41:33, Info CSI 00000394 [SR] Cannot repair member file [l:24{12}]"W32UIRes.dll" of Microsoft-Windows-Setup-Component, Version = 6.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 00000395 [SR] This component was referenced by [l:202{101}]"Microsoft-Windows-Foundation-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.WindowsFoundationDelivery"
2013-07-06 13:41:33, Info CSI 00000398 [SR] Could not reproject corrupted file [ml:520{260},l:56{28}]"\??\C:\Windows\System32\oobe"\[l:24{12}]"W32UIRes.dll"; source file in store is also corrupted
2013-07-06 13:41:33, Info CSI 0000039a [SR] Cannot repair member file [l:28{14}]"iassdo.dll.mui" of Microsoft-Windows-Networking-Internet_Authentication_Service_Iassdo.Resources, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture = [l:10{5}]"en-US", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-07-06 13:41:33, Info CSI 0000039b [SR] This component was referenced by [l:266{133}]"Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~en-US~6.1.7601.17514.Windows Foundation Language Pack"
2013-07-06 13:41:33, Info CSI 0000039e [SR] Could not reproject corrupted file [ml:60{30},l:58{29}]"\??\C:\Windows\SysWOW64\en-US"\[l:28{14}]"iassdo.dll.mui"; source file in store is also corrupted
2013-07-06 13:41:33, Info CSI 000003a0 [SR] Repair complete
2013-07-06 13:41:33, Info CSI 000003a1 [SR] Committing transaction
2013-07-06 13:41:34, Info CSI 000003a5 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction have been successfully repaired
  • 0

#7
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 06/07/2013 1:49:04 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 06/07/2013 6:34:00 PM
Type: Error Category: 0
Event: 7001 Source: Service Control Manager
The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: %%-2140993535

Log: 'System' Date/Time: 06/07/2013 6:34:00 PM
Type: Error Category: 0
Event: 7023 Source: Service Control Manager
The Peer Name Resolution Protocol service terminated with the following error: %%-2140993535

Log: 'System' Date/Time: 06/07/2013 6:34:00 PM
Type: Error Category: 0
Event: 7001 Source: Service Control Manager
The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: %%-2140993535

Log: 'System' Date/Time: 06/07/2013 6:34:00 PM
Type: Error Category: 0
Event: 7023 Source: Service Control Manager
The Peer Name Resolution Protocol service terminated with the following error: %%-2140993535

Log: 'System' Date/Time: 06/07/2013 6:34:00 PM
Type: Error Category: 0
Event: 102 Source: Microsoft-Windows-PNRPSvc
The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.

Log: 'System' Date/Time: 06/07/2013 6:34:00 PM
Type: Error Category: 0
Event: 102 Source: Microsoft-Windows-PNRPSvc
The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.

Log: 'System' Date/Time: 06/07/2013 6:33:49 PM
Type: Error Category: 0
Event: 7001 Source: Service Control Manager
The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: %%-2140993535

Log: 'System' Date/Time: 06/07/2013 6:33:49 PM
Type: Error Category: 0
Event: 7023 Source: Service Control Manager
The Peer Name Resolution Protocol service terminated with the following error: %%-2140993535

Log: 'System' Date/Time: 06/07/2013 6:33:49 PM
Type: Error Category: 0
Event: 102 Source: Microsoft-Windows-PNRPSvc
The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.

Log: 'System' Date/Time: 06/07/2013 6:33:36 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The IOCBIOS service failed to start due to the following error: The system cannot find the path specified.

Log: 'System' Date/Time: 06/07/2013 6:32:41 PM
Type: Error Category: 0
Event: 7023 Source: Service Control Manager
The Peer Name Resolution Protocol service terminated with the following error: %%-2140993535

Log: 'System' Date/Time: 06/07/2013 6:32:41 PM
Type: Error Category: 0
Event: 7001 Source: Service Control Manager
The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: %%-2140993535

Log: 'System' Date/Time: 06/07/2013 6:32:41 PM
Type: Error Category: 0
Event: 102 Source: Microsoft-Windows-PNRPSvc
The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

#8
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 06/07/2013 1:50:39 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

#9
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
This attachment is the Speccy file.

Attached Files


  • 0

#10
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP
Lot of errors in your sfc log. File corruption is usually caused by either bad RAM or a failing hard drive. Let's try the builtin Memory test:

http://www.sevenforu...stics-tool.html

Multiple runs are best as an error may not always be present.
  • 1

Advertisements


#11
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
The Avast boot-can found no virus.
  • 0

#12
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
There were no results from the memory diagnostics tool. Nothing popped up upon logging back in after start up. Said "no errors detected yet" throughout the whole scan. This should finish all the asked for logs and finish all instructions for now.
  • 0

#13
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
I will run memory diagnostics tool a few more times as asked.
  • 0

#14
BaronX13

BaronX13

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
The memory diagnostics still read no errors.
  • 0

#15
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP
OK. Let's check the drive. It's a Seagate and they have a really good test called Seatools: http://knowledge.sea...US/FAQ/202435en

The extended test is what we want. It will take a long time so best to let it run while you sleep.

If that passes then let Windows do its disk check:


1. Double-click My Computer, and then right-click the hard disk that you want to check. C:
2. Click Properties, and then click Tools.
3. Under Error-checking, click Check Now. A dialog box that shows the Check disk options is displayed,
4. Check both boxes and then click Start.
You will receive the following message:
The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?
Click Yes to schedule the disk check, OK then restart. The disk check will run and will probably take several hours.

Your peer name resolution errors are supposedly caused by a corrupted file called: idstore.sst

It is normally located at:
"C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\PeerNetworking\idstore.sst"

If you delete the file the service should create a new one when next you reboot.


Run VEW again after your next reboot and post the System logs. Let's see if it helped.


Usually with this many errors in the SFC log the best solution is a repair install. A repair install allows you to keep your data but will require a lot of Microsoft updates after the repair. I don't suppose you have the Windows 7 Disk do you? I do not have a Windows 64 PC so can't really upload the corrupt files for you and there are just too many bad files to make this practical.
  • 1






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP