Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Windows 7 64 bit Problems

System Health Report esrv_svc.exe MBR Check Windows Update Windows 7 64 bit troubleshooting Kaspersky Protected Browser

  • Please log in to reply

#1
XRad Worker

XRad Worker

    New Member

  • Member
  • Pip
  • 1 posts

I started to develop some issues with my Windows 7 64 bit laptop after a Windows Update a few weeks ago. Extremely lengthy shutdowns and long startups. Ran a lot of diagnostics and replaced some Intel drivers that Dell said were causing a problem. Everything was fixed (I thought) except for some reason the System Health Report could not be generated (it says "path not found", but when I right click "Back", it shows a clock "collecting data for 60 seconds" without ever generating a report).

 

I have security through Kaspersky and it is always turned on. Last Saturday I used their Protected Browser feature to log into my bank and pay a credit card bill. Throughout the bank session I was receiving multiple Kaspersky messages that something was trying to read my memory, and pointed to a file "Internet System Usage Report"  which was identified as esrv_svc.exe. This got me very concerned.

 

Having recently been to this website in search of answers, at this point I decided to download and run the MBR Check. The report it generated is pasted below. 

 

Does it show any problems I need to get fixed (MBR infection?). The message at the end is confusing. I am also checking with Kaspersky on their support forum. Thank you for your assistance.

 

MBRCheck, version 1.2.3
© 2010, AD
 
Command-line:
Windows Version: Windows 7 Professional
Windows Information: Service Pack 1 (build 7601), 64-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: Inspiron 3537
Logical Drives Mask: 0x0000005c
 
Kernel Drivers (total 193):
  0x03262000 \SystemRoot\system32\ntoskrnl.exe
  0x03219000 \SystemRoot\system32\hal.dll
  0x00BC8000 \SystemRoot\system32\kdcom.dll
  0x00CDA000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
  0x00D29000 \SystemRoot\system32\PSHED.dll
  0x00D3D000 \SystemRoot\system32\CLFS.SYS
  0x00C00000 \SystemRoot\system32\CI.dll
  0x00E52000 \SystemRoot\system32\drivers\Wdf01000.sys
  0x00F14000 \SystemRoot\system32\drivers\WDFLDR.SYS
  0x01014000 \SystemRoot\system32\DRIVERS\kl1.sys
  0x01776000 \SystemRoot\system32\drivers\ACPI.sys
  0x017CD000 \SystemRoot\system32\drivers\WMILIB.SYS
  0x017D6000 \SystemRoot\system32\drivers\msisadrv.sys
  0x00F24000 \SystemRoot\system32\drivers\pci.sys
  0x017E0000 \SystemRoot\system32\drivers\vdrvroot.sys
  0x017ED000 \SystemRoot\system32\drivers\iusb3hcs.sys
  0x00F57000 \SystemRoot\system32\DRIVERS\cm_km_w.sys
  0x00F94000 \SystemRoot\System32\drivers\partmgr.sys
  0x017F7000 \SystemRoot\system32\DRIVERS\compbatt.sys
  0x01000000 \SystemRoot\system32\DRIVERS\BATTC.SYS
  0x00FA9000 \SystemRoot\system32\drivers\volmgr.sys
  0x00C75000 \SystemRoot\System32\drivers\volmgrx.sys
  0x00FBE000 \SystemRoot\System32\drivers\mountmgr.sys
  0x018BE000 \SystemRoot\system32\drivers\iaStorA.sys
  0x01B78000 \SystemRoot\system32\drivers\storport.sys
  0x01BDC000 \SystemRoot\system32\drivers\amdxata.sys
  0x01800000 \SystemRoot\system32\drivers\fltmgr.sys
  0x0184C000 \SystemRoot\system32\drivers\fileinfo.sys
  0x01C3F000 \SystemRoot\System32\Drivers\Ntfs.sys
  0x01860000 \SystemRoot\System32\Drivers\msrpc.sys
  0x01C00000 \SystemRoot\System32\Drivers\ksecdd.sys
  0x01E73000 \SystemRoot\System32\Drivers\cng.sys
  0x01EE5000 \SystemRoot\System32\drivers\pcw.sys
  0x01EF6000 \SystemRoot\System32\Drivers\Fs_Rec.sys
  0x01F00000 \SystemRoot\system32\drivers\ndis.sys
  0x01E00000 \SystemRoot\system32\drivers\NETIO.SYS
  0x00E00000 \SystemRoot\System32\Drivers\ksecpkg.sys
  0x02000000 \SystemRoot\System32\drivers\tcpip.sys
  0x00D9B000 \SystemRoot\System32\drivers\fwpkclnt.sys
  0x0224D000 \SystemRoot\system32\drivers\volsnap.sys
  0x02299000 \SystemRoot\System32\Drivers\spldr.sys
  0x022A1000 \SystemRoot\System32\drivers\rdyboost.sys
  0x022DB000 \SystemRoot\System32\Drivers\mup.sys
  0x022ED000 \SystemRoot\system32\drivers\iaStorF.sys
  0x022F8000 \SystemRoot\System32\drivers\hwpolicy.sys
  0x02301000 \SystemRoot\System32\DRIVERS\fvevol.sys
  0x0233B000 \SystemRoot\system32\drivers\disk.sys
  0x02351000 \SystemRoot\system32\drivers\CLASSPNP.SYS
  0x04B0C000 \SystemRoot\system32\DRIVERS\cdrom.sys
  0x04CFA000 \SystemRoot\system32\DRIVERS\klif.sys
  0x04C00000 \SystemRoot\system32\DRIVERS\klflt.sys
  0x04C35000 \SystemRoot\system32\DRIVERS\klhk.sys
  0x04C8B000 \SystemRoot\system32\DRIVERS\ks.sys
  0x04CCE000 \SystemRoot\System32\Drivers\Null.SYS
  0x04CD7000 \SystemRoot\System32\Drivers\Beep.SYS
  0x04CDE000 \SystemRoot\System32\drivers\vga.sys
  0x04DCC000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
  0x04B36000 \SystemRoot\System32\drivers\watchdog.sys
  0x04DF1000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
  0x04CEC000 \SystemRoot\system32\drivers\rdpencdd.sys
  0x04B46000 \SystemRoot\system32\drivers\rdprefmp.sys
  0x04B4F000 \SystemRoot\System32\Drivers\Msfs.SYS
  0x04B5A000 \SystemRoot\System32\Drivers\Npfs.SYS
  0x04B6B000 \SystemRoot\system32\DRIVERS\tdx.sys
  0x04B8D000 \SystemRoot\system32\DRIVERS\TDI.SYS
  0x04B9A000 \SystemRoot\system32\DRIVERS\kltdi.sys
  0x04BAA000 \SystemRoot\System32\DRIVERS\netbt.sys
  0x04EE5000 \SystemRoot\system32\drivers\afd.sys
  0x04F6E000 \SystemRoot\system32\DRIVERS\klwtp.sys
  0x04F83000 \SystemRoot\system32\DRIVERS\wfplwf.sys
  0x04F8C000 \SystemRoot\system32\DRIVERS\pacer.sys
  0x04FB2000 \SystemRoot\system32\DRIVERS\vwififlt.sys
  0x04FC8000 \SystemRoot\system32\DRIVERS\klim6.sys
  0x04FD2000 \SystemRoot\system32\DRIVERS\netbios.sys
  0x04FE1000 \SystemRoot\system32\DRIVERS\wanarp.sys
  0x04E00000 \SystemRoot\system32\DRIVERS\termdd.sys
  0x04E14000 \SystemRoot\system32\DRIVERS\rdbss.sys
  0x04E65000 \SystemRoot\system32\drivers\nsiproxy.sys
  0x04E71000 \SystemRoot\system32\DRIVERS\mssmbios.sys
  0x04E7C000 \SystemRoot\system32\DRIVERS\kneps.sys
  0x04EAA000 \SystemRoot\system32\DRIVERS\klpd.sys
  0x04EB2000 \SystemRoot\System32\drivers\discache.sys
  0x054AB000 \SystemRoot\system32\drivers\csc.sys
  0x0552E000 \SystemRoot\System32\Drivers\dfsc.sys
  0x0554C000 \SystemRoot\system32\DRIVERS\blbdrive.sys
  0x0555D000 \SystemRoot\system32\DRIVERS\tunnel.sys
  0x058EE000 \SystemRoot\system32\DRIVERS\igdkmd64.sys
  0x05D0A000 \SystemRoot\System32\drivers\dxgkrnl.sys
  0x05800000 \SystemRoot\System32\drivers\dxgmms1.sys
  0x05846000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
  0x05679000 \SystemRoot\system32\DRIVERS\iusb3xhc.sys
  0x0573E000 \SystemRoot\system32\DRIVERS\USBD.SYS
  0x05740000 \SystemRoot\system32\DRIVERS\TeeDriverx64.sys
  0x03607000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
  0x06001000 \SystemRoot\system32\DRIVERS\athrx.sys
  0x036DE000 \SystemRoot\system32\DRIVERS\vwifibus.sys
  0x036EB000 \SystemRoot\system32\drivers\usbehci.sys
  0x036FD000 \SystemRoot\system32\drivers\USBPORT.SYS
  0x03753000 \SystemRoot\system32\DRIVERS\i8042prt.sys
  0x03771000 \SystemRoot\system32\DRIVERS\SynTP.sys
  0x0575C000 \SystemRoot\system32\DRIVERS\klkbdflt.sys
  0x05768000 \SystemRoot\system32\DRIVERS\kbdclass.sys
  0x05777000 \SystemRoot\system32\DRIVERS\klmouflt.sys
  0x05783000 \SystemRoot\system32\DRIVERS\mouclass.sys
  0x037F9000 \SystemRoot\system32\DRIVERS\CmBatt.sys
  0x03600000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
  0x05792000 \SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys
  0x0579F000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
  0x057A8000 \SystemRoot\system32\DRIVERS\intelppm.sys
  0x057BE000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
  0x057CE000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
  0x05600000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
  0x05624000 \SystemRoot\system32\DRIVERS\ndistapi.sys
  0x05630000 \SystemRoot\system32\DRIVERS\ndiswan.sys
  0x057E4000 \SystemRoot\system32\DRIVERS\raspppoe.sys
  0x0586A000 \SystemRoot\system32\DRIVERS\raspptp.sys
  0x0565F000 \SystemRoot\system32\DRIVERS\rassstp.sys
  0x0588B000 \SystemRoot\system32\DRIVERS\rdpbus.sys
  0x063FC000 \SystemRoot\system32\DRIVERS\swenum.sys
  0x05896000 \SystemRoot\system32\DRIVERS\btath_bus.sys
  0x058A3000 \SystemRoot\system32\DRIVERS\umbus.sys
  0x05583000 \SystemRoot\system32\DRIVERS\usbhub.sys
  0x058B5000 \SystemRoot\System32\Drivers\NDProxy.SYS
  0x04800000 \SystemRoot\system32\DRIVERS\portcls.sys
  0x058CA000 \SystemRoot\system32\DRIVERS\drmk.sys
  0x05473000 \SystemRoot\system32\drivers\ksthunk.sys
  0x02399000 \SystemRoot\system32\DRIVERS\iusb3hub.sys
  0x07263000 \SystemRoot\system32\drivers\RTKVHD64.sys
  0x075CE000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
  0x075E9000 \SystemRoot\system32\DRIVERS\wdcsam64.sys
  0x075ED000 \SystemRoot\System32\Drivers\crashdmp.sys
  0x07200000 \SystemRoot\System32\Drivers\dump_diskdump.sys
  0x0483D000 \SystemRoot\System32\Drivers\dump_iaStorA.sys
  0x0720A000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
  0x00040000 \SystemRoot\System32\win32k.sys
  0x0721D000 \SystemRoot\System32\drivers\Dxapi.sys
  0x07819000 \SystemRoot\system32\DRIVERS\btfilter.sys
  0x078BE000 \SystemRoot\System32\Drivers\BTHUSB.sys
  0x078D6000 \SystemRoot\System32\Drivers\bthport.sys
  0x07962000 \SystemRoot\system32\DRIVERS\monitor.sys
  0x07970000 \SystemRoot\System32\Drivers\RtsUVStor.sys
  0x079C2000 \SystemRoot\system32\DRIVERS\usbccgp.sys
  0x07229000 \SystemRoot\System32\Drivers\usbvideo.sys
  0x079DF000 \SystemRoot\system32\DRIVERS\dc3d.sys
  0x079F7000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
  0x07800000 \SystemRoot\system32\DRIVERS\hidusb.sys
  0x05479000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
  0x05492000 \SystemRoot\system32\DRIVERS\mouhid.sys
  0x055DD000 \SystemRoot\system32\DRIVERS\point64.sys
  0x00580000 \SystemRoot\System32\TSDDD.dll
  0x055EE000 \SystemRoot\system32\DRIVERS\kbdhid.sys
  0x02200000 \SystemRoot\system32\DRIVERS\rfcomm.sys
  0x04EC1000 \SystemRoot\system32\DRIVERS\BthEnum.sys
  0x0222C000 \SystemRoot\system32\DRIVERS\bthpan.sys
  0x02E05000 \SystemRoot\system32\DRIVERS\btath_rcp.sys
  0x02E51000 \SystemRoot\system32\drivers\btath_avdt.sys
  0x02E7C000 \SystemRoot\system32\drivers\btath_a2dp.sys
  0x02EE6000 \SystemRoot\system32\DRIVERS\btath_hcrp.sys
  0x02F32000 \SystemRoot\system32\DRIVERS\btath_flt.sys
  0x02F4E000 \SystemRoot\system32\DRIVERS\btath_lwflt.sys
  0x00610000 \SystemRoot\System32\cdd.dll
  0x02F66000 \SystemRoot\system32\drivers\luafv.sys
  0x02F89000 \SystemRoot\system32\DRIVERS\lltdio.sys
  0x02F9E000 \SystemRoot\system32\DRIVERS\nwifi.sys
  0x04ED1000 \SystemRoot\system32\DRIVERS\ndisuio.sys
  0x02381000 \SystemRoot\system32\DRIVERS\rspndr.sys
  0x05E7F000 \SystemRoot\system32\drivers\HTTP.sys
  0x05F48000 \SystemRoot\system32\DRIVERS\udfs.sys
  0x05F9D000 \SystemRoot\system32\DRIVERS\bowser.sys
  0x05FBB000 \SystemRoot\System32\drivers\mpsdrv.sys
  0x05FD3000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
  0x05E00000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
  0x05E4E000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
  0x05400000 \SystemRoot\system32\DRIVERS\kldisk.sys
  0x07CE8000 \SystemRoot\system32\drivers\peauth.sys
  0x07D92000 \SystemRoot\System32\DRIVERS\srvnet.sys
  0x07DC3000 \SystemRoot\system32\DRIVERS\usbprint.sys
  0x07DCF000 \SystemRoot\System32\Drivers\mvusbews.sys
  0x07DDC000 \SystemRoot\system32\DRIVERS\usbscan.sys
  0x07DED000 \SystemRoot\System32\Drivers\HPM1210FAX.sys
  0x07C00000 \SystemRoot\System32\drivers\tcpipreg.sys
  0x07C12000 \SystemRoot\System32\DRIVERS\srv2.sys
  0x084CB000 \SystemRoot\System32\DRIVERS\srv.sys
  0x08563000 \SystemRoot\System32\Drivers\fastfat.SYS
  0x08599000 \??\C:\Windows\system32\drivers\semav6msr64.sys
  0x77B10000 \Windows\System32\ntdll.dll
  0x47BE0000 \Windows\System32\smss.exe
  0xFFE30000 \Windows\System32\apisetschema.dll
  0xFF0B0000 \Windows\System32\autochk.exe
  0xFFDD0000 \Windows\System32\ws2_32.dll
  0xFFBC0000 \Windows\System32\ole32.dll
  0xFFAB0000 \Windows\System32\msctf.dll
  0xFF940000 \Windows\System32\urlmon.dll
 
Processes (total 103):
       0 System Idle Process
       4 System
     416 C:\Windows\System32\smss.exe
     588 csrss.exe
     680 C:\Windows\System32\wininit.exe
     712 csrss.exe
     744 C:\Windows\System32\services.exe
     804 C:\Windows\System32\lsass.exe
     816 C:\Windows\System32\lsm.exe
     876 C:\Windows\System32\winlogon.exe
     956 C:\Windows\System32\svchost.exe
     164 C:\Windows\System32\svchost.exe
     592 C:\Windows\System32\svchost.exe
     480 C:\Windows\System32\svchost.exe
     652 C:\Windows\System32\svchost.exe
    1048 C:\Windows\System32\svchost.exe
    1172 C:\Windows\System32\svchost.exe
    1288 C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
    1312 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    1320 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    1364 C:\Windows\System32\svchost.exe
    1652 wlanext.exe
    1684 C:\Windows\System32\spoolsv.exe
    1692 conhost.exe
    1764 C:\Windows\System32\svchost.exe
    1852 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    1892 C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
    1920 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    2024 C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
    1120 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
    1284 C:\Program Files\Bonjour\mDNSResponder.exe
    1660 C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
    1864 C:\Windows\System32\svchost.exe
    1952 C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe
    2056 C:\Windows\System32\HPSIsvc.exe
    2084 C:\Program Files\Intel\iCLS Client\HeciServer.exe
    2276 C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
    2376 C:\Windows\System32\svchost.exe
    2412 C:\Windows\System32\svchost.exe
    2452 C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
    2584 C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
    2640 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    2668 C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
    2704 C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
    2716 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    2804 C:\Windows\System32\svchost.exe
    3328 C:\Windows\System32\svchost.exe
    3412 WmiPrvSE.exe
    4080 C:\Windows\System32\dwm.exe
    2568 C:\Windows\explorer.exe
    2984 C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
    3964 C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
    2912 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    3976 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    4056 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
    4280 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    4296 C:\Windows\System32\igfxtray.exe
    4308 C:\Windows\System32\hkcmd.exe
    4436 C:\Windows\System32\igfxpers.exe
    4444 C:\Program Files\Dell\QuickSet\quickset.exe
    4548 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    4572 C:\Program Files\iTunes\iTunesHelper.exe
    4604 WmiPrvSE.exe
    4640 C:\Windows\System32\igfxsrvc.exe
    4844 C:\Windows\System32\SearchIndexer.exe
    4964 C:\Program Files\Windows Sidebar\sidebar.exe
    5116 C:\Program Files\iPod\bin\iPodService.exe
    4368 C:\Users\Atom\AppData\Local\Microsoft\OneDrive\OneDrive.exe
    5364 C:\Users\Atom\AppData\Roaming\Spotify\SpotifyWebHelper.exe
    5648 C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
    5712 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    5752 C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
    5760 C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
    5904 C:\Windows\System32\dllhost.exe
    5940 C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
    5952 C:\Windows\System32\svchost.exe
    2388 C:\Windows\System32\svchost.exe
    3164 C:\Program Files (x86)\Dell Update\DellUpService.exe
    3288 dllhost.exe
    5064 C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
    4944 C:\Program Files (x86)\Dell Update\DellUpTray.exe
    6424 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    6752 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    7032 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    7092 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    7112 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    7136 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    6660 C:\Windows\SysWOW64\cmd.exe
    6684 C:\Windows\System32\conhost.exe
    6840 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe
    5416 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    4480 C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
    6916 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
    6392 C:\Windows\System32\svchost.exe
    5636 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
     992 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    3652 C:\Windows\splwow64.exe
    5968 C:\Windows\System32\audiodg.exe
    3688 C:\Users\Atom\Downloads\MBRCheck.exe
    2696 C:\Windows\System32\conhost.exe
    4256 C:\Windows\System32\dllhost.exe
    1988 C:\Windows\SysWOW64\wermgr.exe
    4760 C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
 
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000005`6d200000  (NTFS)
\\.\G: --> \\.\PhysicalDrive1 at offset 0x00000000`00100000  (NTFS)
 
PhysicalDrive0 Model Number: ST750LM022HN-M750MBB, Rev: 2BA30001
PhysicalDrive1 Model Number: WDMy Passport 0820, Rev: 1007
 
      Size  Device Name          MBR Status
  --------------------------------------------
    698 GB  \\.\PhysicalDrive0   Windows 2008 MBR code detected
            SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979
   1862 GB  \\.\PhysicalDrive1   RE: Windows XP MBR code detected
            SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A
 
 
Done!

  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,029 posts
  • MVP

I've asked for your thread to be moved to our malware forum so I can  get some logs so we can see what is going on.  Probably easiest to post the logs as you get them.

 

 
 
Please download Farbar Recovery Scan Tool and save it to your Desktop. 
 
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version. 
 
  •  
  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer. 
  • click on the Addition.txt box. 
  • Press Scan button. 
  • It will produce a log called FRST.txt in the same directory the tool is run from.  
  • Please copy and paste that log back here and also the second log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply. 
  •  
     
    Also:
     

    Get the free version of Speccy:
     
    http://www.filehippo...download_speccy (Look in the upper right for the Download
    Latest Version button  - Do NOT press the large Start Download button on the upper left!)  Download, Save and Install it.  
     
    Close all browsers and open progrms before running Speccy.  Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  (It will be near the top about 10 lines down.)  Save the file and close notepad  Attach the file to your next post as it is usually too large for the forum (Click on More Reply Options then Choose file, select the file, Open, Attach this File) Uninstall Speccy.
     
    Also:
     

    Get Process Explorer
     
    Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).  
     
    View, Select Column, check Verified Signer, OK
    Options, Verify Image Signatures
     
     
    Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  
     
    Wait a full minute then:
     
    File, Save As, Save.  Open the file Procexp.txt on your desktop and copy and paste the text to a reply.
     
     

     
    Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.
     
    Reboot. 
     
    Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator.  Then type (with an Enter after each line).
    sfc  /scannow
     
    (This will check your critical system files. Does this finish without complaint?  IF it says it couldn't fix everything then:
     
    Copy the next two lines:
     
    findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log  >  \windows\logs\cbs\junk.txt 
    notepad \windows\logs\cbs\junk.txt 
     
    Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue.  Right click and Paste or Edit then Paste and the copied line should appear.
    Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)
     
     
    1. Please download the Event Viewer Tool by Vino Rosso
    and save it to your Desktop:
    2. Right-click VEW.exe and Run AS Administrator
    3. Under 'Select log to query', select:
     
    * System
    4. Under 'Select type to list', select:
    * Error
    * Warning
     
     
    Then use the 'Number of events' as follows:
     
     
    1. Click the radio button for 'Number of events'
    Type 20 in the 1 to 20 box
    Then click the Run button.
    Notepad will open with the output log.
     
     
    Please post the Output log in your next reply then repeat but select Application.
     
     (Second time you run vew it will overwrite the first log so copy it to a reply or rename it first.)
     
     
     

    • 0

    #3
    iammykyl

    iammykyl

      Tech Staff

    • Technician
    • 7,047 posts

    Please Click here!, and follow the recommendations in the guide.

    Someone will be along to tell you what steps to take after you post the contents of the scan results.


    • 0






    Similar Topics


    Also tagged with one or more of these keywords: System Health Report, esrv_svc.exe, MBR Check, Windows Update, Windows 7 64 bit, troubleshooting, Kaspersky Protected Browser

    0 user(s) are reading this topic

    0 members, 0 guests, 0 anonymous users

    As Featured On:

    Microsoft Yahoo BBC MSN PC Magazine Washington Post HP