Help! I think I'm infected but can't run malwarebytes!

[tlheyman]

Merged 4 post

We look for post with 0 replies, so when you replied to your own topic, we assumed you were being helped

My computer freezes up right after start up. I have been able to run both chkdsk and chkdsk/r and they found/fixed a ton of files but still freezing up. I can't successfully run a scan to upload for you. What should I do?

And I've been trying to run dds and it never finishes.

Ah, finally got both malwarebytes and dds to run. malwarebytes didn't find anything. dds reports shown below.

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31

Run by Gene at 19:41:47 on 2012-05-29

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8191.6105 [GMT -4:00]

.

AV: Sophos Anti-Virus *Disabled/Updated* {479CCF92-4960-B3E0-7373-BF453B467D2C}

SP: Sophos Anti-Virus *Disabled/Updated* {FCFD2E76-6F5A-BC6E-49C3-843740C13791}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe

C:\Windows\system32\atieclxx.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\Explorer.EXE

C:\Windows\system32\Dwm.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\taskeng.exe

C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files (x86)\Backblaze\bzserv.exe

C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe

C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe

C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe

C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe

C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe

C:\Users\Gene\AppData\Local\Google\Update\GoogleUpdate.exe

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files (x86)\sophos\AutoUpdate\ALMon.exe

C:\Program Files (x86)\AirPort\APAgent.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\WUDFHost.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Windows\system32\taskeng.exe

c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe

c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe

C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe

C:\Program Files (x86)\Intuit\QuickBooks 2012\QBW32.EXE

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

C:\Windows\SysWOW64\WinMsgBalloonServer.exe

C:\Windows\SysWOW64\WinMsgBalloonClient.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\notepad.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com/

uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=bestbuy&pf=cndt

mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=bestbuy&pf=cndt

uInternet Settings,ProxyOverride = *.local

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Sophos Web Content Scanner: {39ea7695-b3f2-4c44-a4bc-297ada8fd235} - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SophosBHO.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

BHO: hpBHO Class: {abd3b5e1-b268-407b-a150-2641dab8d898} - C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll

BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll

BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB: Microsoft Live Search Toolbar: {1e61ed7c-7cb8-49d6-b9e9-ab4c880c8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File

uRun: [Google Update] "C:\Users\Gene\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

mRun: [sophos AutoUpdate Monitor] C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe

mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [AirPort Base Station Agent] "C:\Program Files (x86)\AirPort\APAgent.exe"

mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [intuit SyncManager] C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe startup

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

dRun: [backblaze] "C:\Program Files (x86)\Backblaze\bzbui.exe" -quiet

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\INTUIT~1.LNK - C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGOCA~1.LNK - C:\Program Files (x86)\GretagMacbeth\i1\Eye-One Match 3\CalibrationLoader\CalibrationLoader.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\PROFIL~1.LNK - C:\Program Files (x86)\GretagMacbeth\i1\Eye-One Match 3\ProfileReminder.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\QUICKB~2.LNK - C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\QUICKB~1.LNK - C:\Program Files (x86)\Intuit\QuickBooks 2012\QBW32.EXE

mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL

LSP: C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll

DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.0.cab

DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 75.75.76.76 75.75.75.75

TCP: Interfaces\{8AFC352A-3B53-4A5B-9257-7B0134F9DEEB} : DhcpNameServer = 75.75.76.76 75.75.75.75

TCP: Interfaces\{F78A3A08-EC59-452C-93A9-F7239DBC2CB8} : DhcpNameServer = 68.87.75.198 68.87.64.150

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

Handler: intu-help-qb5 - {867FCB77-9823-4cd6-8210-D85F968D466F} - C:\Program Files (x86)\Intuit\QuickBooks 2012\HelpAsyncPluggableProtocol.dll

Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\Windows\System32\mscoree.dll

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

AppInit_DLLs: C:\PROGRA~2\sophos\SOPHOS~1\sophos_detoured.dll,C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: Sophos Web Content Scanner: {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SophosBHO.dll

BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

BHO-X64: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

BHO-X64: hpBHO Class: {ABD3B5E1-B268-407B-A150-2641DAB8D898} - C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll

BHO-X64: HelloWorldBHO - No File

BHO-X64: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO-X64: SkypeIEPluginBHO - No File

BHO-X64: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll

BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB-X64: Microsoft Live Search Toolbar: {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll

TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

TB-X64: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File

mRun-x64: [sophos AutoUpdate Monitor] C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe

mRun-x64: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun-x64: [AirPort Base Station Agent] "C:\Program Files (x86)\AirPort\APAgent.exe"

mRun-x64: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun-x64: [intuit SyncManager] C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe startup

mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

AppInit_DLLs-X64: C:\PROGRA~2\sophos\SOPHOS~1\sophos_detoured.dll,C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL

SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Gene\AppData\Roaming\Mozilla\Firefox\Profiles\xo3cwgs6.default\

FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\NPcol400.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll

FF - plugin: C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll

FF - plugin: C:\Program Files (x86)\Virtual Earth 3D\npVE3D.dll

FF - plugin: C:\Users\Gene\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

.

============= SERVICES / DRIVERS ===============

.

R0 ahcix64s;ahcix64s;C:\Windows\system32\DRIVERS\ahcix64s.sys --> C:\Windows\system32\DRIVERS\ahcix64s.sys [?]

R1 SAVOnAccess;SAVOnAccess;C:\Windows\system32\DRIVERS\savonaccess.sys --> C:\Windows\system32\DRIVERS\savonaccess.sys [?]

R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]

R2 AMD_RAIDXpert;AMD RAIDXpert;C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe [2009-3-16 122880]

R2 bzserv;Backblaze Service;C:\Program Files (x86)\Backblaze\bzserv.exe [2011-8-30 211240]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-4-9 654408]

R2 QBVSS;QBIDPService;C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [2011-8-19 1248256]

R2 SAVAdminService;Sophos Anti-Virus status reporter;C:\Program Files (x86)\sophos\Sophos Anti-Virus\SAVAdminService.exe [2010-10-8 163056]

R2 SAVService;Sophos Anti-Virus;C:\Program Files (x86)\sophos\Sophos Anti-Virus\SavService.exe [2010-6-4 97520]

R2 Sophos AutoUpdate Service;Sophos AutoUpdate Service;C:\Program Files (x86)\sophos\AutoUpdate\ALsvc.exe [2012-4-11 232472]

R2 swi_service;Sophos Web Intelligence Service;C:\Program Files (x86)\sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [2012-2-21 1543704]

R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atipmdag.sys --> C:\Windows\system32\DRIVERS\atipmdag.sys [?]

R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]

R3 lvpepf64;Volume Adapter;C:\Windows\system32\DRIVERS\lv302a64.sys --> C:\Windows\system32\DRIVERS\lv302a64.sys [?]

R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\system32\DRIVERS\lvrs64.sys --> C:\Windows\system32\DRIVERS\lvrs64.sys [?]

R3 LVUSBS64;Logitech USB Monitor Filter;C:\Windows\system32\DRIVERS\LVUSBS64.sys --> C:\Windows\system32\DRIVERS\LVUSBS64.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]

R3 usbfilter;AMD USB Filter Driver;C:\Windows\system32\DRIVERS\usbfilter.sys --> C:\Windows\system32\DRIVERS\usbfilter.sys [?]

R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-2-26 135664]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-12 257696]

S3 EyeOneDisplay;EyeOneDisplay;C:\Windows\system32\Drivers\i1display_x64.sys --> C:\Windows\system32\Drivers\i1display_x64.sys [?]

S3 FlyUsb;FLY Fusion;C:\Windows\system32\DRIVERS\FlyUsb.sys --> C:\Windows\system32\DRIVERS\FlyUsb.sys [?]

S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-2-26 135664]

S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-7 129976]

S3 SeqCal;SeqCal;C:\Windows\system32\DRIVERS\SeqCal.sys --> C:\Windows\system32\DRIVERS\SeqCal.sys [?]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S4 HPBtnSrv;HP Easy Backup Button Service;C:\Program Files (x86)\Hewlett-Packard\HP Easy Backup\HPBtnSrv.exe [2009-8-19 192512]

S4 SophosBootDriver;SophosBootDriver;C:\Windows\system32\DRIVERS\SophosBootDriver.sys --> C:\Windows\system32\DRIVERS\SophosBootDriver.sys [?]

S4 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

.

=============== Created Last 30 ================

.

2012-05-29 21:19:16 8955792 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{639920FE-914A-4F9C-A8E2-6FF08ED599D0}\mpengine.dll

2012-05-29 14:55:32 -------- d-sh--w- C:\found.003

2012-05-28 17:46:31 -------- d-----w- C:\ProgramData\Recovery

2012-05-14 03:28:58 -------- d-sh--w- C:\found.002

2012-05-11 23:57:42 1544704 ----a-w- C:\Windows\System32\DWrite.dll

2012-05-11 23:57:42 1077248 ----a-w- C:\Windows\SysWow64\DWrite.dll

2012-05-11 23:57:38 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe

2012-05-11 23:57:36 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2012-05-11 23:57:36 3146240 ----a-w- C:\Windows\System32\win32k.sys

2012-05-11 23:57:35 3913072 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2012-05-11 23:56:55 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys

2012-05-11 23:56:48 1918320 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2012-05-11 23:56:24 1732096 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL

2012-05-11 23:56:23 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll

2012-05-11 23:56:23 1393664 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll

2012-05-11 23:56:23 1367552 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll

2012-05-11 23:56:22 1402880 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll

2012-05-07 14:49:16 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service

2012-05-07 14:49:12 157352 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice_installer.exe

2012-05-07 14:49:12 129976 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice.exe

.

==================== Find3M ====================

.

2012-05-06 23:55:25 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-05-06 23:55:25 419488 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-05-06 23:55:07 8744608 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe

2012-04-04 19:56:40 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys

2012-03-01 06:46:16 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys

2012-03-01 06:38:27 220672 ----a-w- C:\Windows\System32\wintrust.dll

2012-03-01 06:33:50 81408 ----a-w- C:\Windows\System32\imagehlp.dll

2012-03-01 06:28:47 5120 ----a-w- C:\Windows\System32\wmi.dll

2012-03-01 05:37:41 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll

2012-03-01 05:33:23 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll

2012-03-01 05:29:16 5120 ----a-w- C:\Windows\SysWow64\wmi.dll

.

============= FINISH: 19:42:53.98 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 11/1/2009 10:09:40 PM

System Uptime: 5/29/2012 7:19:09 PM (0 hours ago)

.

Motherboard: FOXCONN | | ALOE

Processor: AMD Phenom™ II X4 910 Processor | CPU 1 | 2600/200mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 919 GiB total, 298.285 GiB free.

D: is FIXED (NTFS) - 12 GiB total, 2.231 GiB free.

E: is CDROM ()

F: is Removable

G: is Removable

H: is Removable

I: is Removable

J: is Removable

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP377: 5/22/2012 4:02:17 PM - Windows Update

RP378: 5/29/2012 5:17:30 PM - Windows Update

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

ACDSee Photo Manager 2009

ActiveCheck component for HP Active Support Library

Adobe AIR

Adobe Community Help

Adobe Extension Manager CS5

Adobe Flash Player 10 ActiveX

Adobe Media Player

Adobe Photoshop CS5

Adobe Reader X (10.1.3)

AirPort

Amazon MP3 Downloader 1.0.9

AMD USB Filter Driver

Apple Application Support

Apple Software Update

AVS Image Converter 1.3.2.141

AVS Update Manager 1.0

AVS4YOU Software Navigator 1.4

Backblaze

Catalyst Control Center - Branding

Catalyst Control Center Core Implementation

Catalyst Control Center Graphics Full Existing

Catalyst Control Center Graphics Full New

Catalyst Control Center Graphics Light

Catalyst Control Center Graphics Previews Common

Catalyst Control Center Graphics Previews Vista

Catalyst Control Center HydraVision Full

Catalyst Control Center InstallProxy

Catalyst Control Center Localization All

ccc-core-static

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

Compatibility Pack for the 2007 Office system

Coupon Printer for Windows

CyberLink DVD Suite Deluxe

DirectX for Managed Code Update (Summer 2004)

Eye-One Match 3.6.2

eZsuite

Google Chrome

Google SketchUp 7.1

Google SketchUp 8

Google Toolbar for Internet Explorer

Google Update Helper

Homepage Protection

HP Advisor

HP Customer Experience Enhancements

HP Easy Backup

HP Games

HP MediaSmart Demo

HP MediaSmart DVD

HP MediaSmart Movie Themes

HP MediaSmart Music/Photo/Video

HP Odometer

HP Remote Solution

HP Setup

HP Support Assistant

HP Support Information

HP Update

HPAsset component for HP Active Support Library

HydraVision

i1_driver_installer_utility_i1Match version 1.0

iPhone Backup Extractor

Java Auto Updater

Java™ 6 Update 31

LabelPrint

LeapFrog Connect

LeapFrog Leapster2 Plugin

LeapFrog Tag Plugin

LightScribe System Software

Malwarebytes Anti-Malware version 1.61.0.1400

Microsoft Live Search Toolbar

Microsoft Office 2007 Primary Interop Assemblies

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Access MUI (English) 2007

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (English) 2007

Microsoft Office File Validation Add-In

Microsoft Office Groove MUI (English) 2007

Microsoft Office Groove Setup Metadata MUI (English) 2007

Microsoft Office InfoPath MUI (English) 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office Outlook MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office PowerPoint Viewer 2007 (English)

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Word MUI (English) 2007

Microsoft Silverlight

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual Studio 2005 Tools for Office Runtime

Microsoft Works

Microsoft_VC80_ATL_x86

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Mozilla Firefox 12.0 (x86 en-US)

Mozilla Maintenance Service

Mozilla Thunderbird 12.0.1 (x86 en-US)

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

PDF Settings CS5

Photodex Presenter

PictureMover

Power2Go

PowerDirector

PowerRecover

QuickBooks

QuickBooks Pro 2012

QuickTime

RAIDXpert

Realtek High Definition Audio Driver

Safari

Security Update for CAPICOM (KB931906)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition

Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition

Skype Click to Call

Skype™ 5.5

Sophos Anti-Virus

Sophos AutoUpdate

StudioCloud 3.0

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft .NET Framework 4 Extended (KB2468871)

Update for Microsoft .NET Framework 4 Extended (KB2533523)

Update for Microsoft .NET Framework 4 Extended (KB2600217)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office Access 2007 Help (KB963663)

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office Infopath 2007 Help (KB963662)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Outlook 2007 Help (KB963677)

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 Help (KB963665)

Use the entry named LeapFrog Connect to uninstall (LeapFrog Leapster2 Plugin)

Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin)

Windows Media Player Firefox Plugin

.

==== Event Viewer Messages From Past Week ========

.

5/29/2012 7:19:50 PM, Error: Service Control Manager [7000] - The PDIHWCTL service failed to start due to the following error: The system cannot find the file specified.

5/29/2012 6:47:47 PM, Error: SAVOnAccess [564] - Communication error between on-access driver and service for access of registry value [\REGISTRY\MACHINE\SOFTWARE\Microsoft\Security Center cval] by process svchost.exe.

5/29/2012 6:47:47 PM, Error: SAVOnAccess [563] - Communication error between on-access driver and service for access of registry key [\REGISTRY\MACHINE SOFTWARE\Microsoft\Security Center\Svc\Vol] by process svchost.exe.

5/29/2012 6:46:14 PM, Error: SAVOnAccess [84] - "Savservice threads busy" condition cleared - "busy" messages may be logged to system event log again from this point.

5/29/2012 6:46:13 PM, Error: SAVOnAccess [83] - To avoid filling up the system event log, "Savservice threads busy" and similar messages will not be logged until after the service has recovered again

5/29/2012 6:46:13 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3deb6be05fdf]) filename continues: "...skMachineUA"

5/29/2012 6:46:13 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3deb37c9832b]) filename continues: "...Image (2).jpg"

5/29/2012 6:46:13 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3deb37aa9147]) filename continues: "...SystemCertificates\My\Certificates\16CB1B4B6C5C8D6F1135D0B681C29C74F1AB2EB3"

5/29/2012 6:46:13 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3deb37a10bc6]) filename continues: "....tmp\SWREG.DAT"

5/29/2012 6:46:13 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...skVolume2\Users\Gene\AppData\Local\Temp\nsv42DB.tmp\SWREG.DAT" (process cmd.exe, start check timestamp [ 1cd3decd9d00acf]).

5/29/2012 6:46:13 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...iskVolume2\Users\Gene\Pictures\scans\2012-01-03\Image (2).jpg" (process wmpnetwk.exe, start check timestamp [ 1cd3decd9d00acf]).

5/29/2012 6:46:13 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...\Device\HarddiskVolume2\Windows\SysWOW64\urlmon.dll" (process mbamservice.ex, start check timestamp [ 1cd3decd9d00acf]).

5/29/2012 6:46:13 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...\Device\HarddiskVolume2\Windows\SysWOW64\CRYPTBASE.dll" (process mbamservice.ex, start check timestamp [ 1cd3decd9d00acf]).

5/29/2012 6:46:13 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...\Device\HarddiskVolume2\Windows\SysWOW64\APISETSCHEMA.DLL" (process mbamservice.ex, start check timestamp [ 1cd3decd9d00acf]).

5/29/2012 6:46:13 PM, Error: SAVOnAccess [565] - Communication error between on-access driver and service for parent process cmd.exe creating target process SWREG.DAT.

5/29/2012 6:46:09 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\System32\Tasks\GoogleUpdateTa ..." of process taskeng.exe, start check timestamp [ 1cd3deb6be05fdf] did not complete in time: file was not scanned.

5/29/2012 6:44:40 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3deb378b9f64]) filename continues: "...\retailer.dll"

5/29/2012 6:44:40 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\urlmon.dll ..." of process mbamservice.ex, start check timestamp [ 1cd3deb37a10bc6] did not complete in time: file was not scanned.

5/29/2012 6:44:40 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\APISETSCHEMA.DLL ..." of process mbamservice.ex, start check timestamp [ 1cd3deb37a10bc6] did not complete in time: file was not scanned.

5/29/2012 6:44:40 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\system32\SensApi.dll ..." of process wermgr.exe, start check timestamp [ 1cd3deb379eaa66] did not complete in time: file was not scanned.

5/29/2012 6:44:40 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Users\Gene\Pictures\scans\2012-01-03\ ..." of process wmpnetwk.exe, start check timestamp [ 1cd3deb37c9832b] did not complete in time: file was not scanned.

5/29/2012 6:44:40 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Users\Gene\AppData\Roaming\Microsoft\ ..." of process AdobeARM.exe, start check timestamp [ 1cd3deb37aa9147] did not complete in time: file was not scanned.

5/29/2012 6:44:40 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Users\Gene\AppData\Local\Temp\nsv42DB ..." of process cmd.exe, start check timestamp [ 1cd3deb37a10bc6] did not complete in time: file was not scanned.

5/29/2012 6:44:40 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Program Files (x86)\Sophos\AutoUpdate ..." of process ALsvc.exe, start check timestamp [ 1cd3deb378b9f64] did not complete in time: file was not scanned.

5/29/2012 6:41:13 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the eventlog service.

5/29/2012 6:41:06 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\dllhost.exe ..." of process mbamservice.ex, start check timestamp [ 1cd3deab74fde1d] did not complete in time: file was not scanned.

5/29/2012 6:41:05 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\NaturalLanguage6.dll ..." of process mbamservice.ex, start check timestamp [ 1cd3deab762e91f] did not complete in time: file was not scanned.

5/29/2012 6:39:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AudioSrv service.

5/29/2012 6:39:12 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SENS service.

5/29/2012 6:38:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Schedule service.

5/29/2012 6:38:12 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the iphlpsvc service.

5/29/2012 6:37:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the RasMan service.

5/29/2012 6:37:36 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.

5/29/2012 6:37:12 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WSearch service.

5/29/2012 6:35:32 PM, Error: Service Control Manager [7022] - The Security Center service hung on starting.

5/29/2012 6:34:32 PM, Error: SAVOnAccess [85] - File [...ddiskVolume2\Users\Gene\AppData\Local\Temp\nsv42DB.tmp\temp00]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process SED.DAT, (start check timestamp [ 1cd3deb379eaa66]).

5/29/2012 6:34:32 PM, Error: SAVOnAccess [85] - File [...cf1df_5.82.7600.16385_en-us_020378a8991bbcc2\comctl32.dll.mui]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process mbamservice.ex, (start check timestamp [ 1cd3deabeb44415]).

5/29/2012 6:33:27 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Defender service to connect.

5/29/2012 6:33:27 PM, Error: Service Control Manager [7000] - The Windows Defender service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

5/29/2012 6:33:18 PM, Error: SAVOnAccess [566] - Communication error between on-access driver and service for a modification of file "\Device\HarddiskVolume2\Windows\SysWOW64\NapaSet.txt" by process RAIDXpert.exe .

5/29/2012 6:33:07 PM, Error: SAVOnAccess [566] - Communication error between on-access driver and service for a modification of file "\Device\HarddiskVolume2\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf" by process svchost.exe .

5/29/2012 6:33:07 PM, Error: SAVOnAccess [566] - Communication error between on-access driver and service for a modification of file "\Device\HarddiskVolume2\Windows\Prefetch\SVCHOST.EXE-05F624AB.pf" by process svchost.exe .

5/29/2012 6:32:57 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3de95ea67f9b]) filename continues: "....dll"

5/29/2012 6:32:57 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...skVolume2\Users\Gene\AppData\Local\Temp\nsv42DB.tmp\SWREG.DAT" (process mbamservice.ex, start check timestamp [ 1cd3deafee19daa]).

5/29/2012 6:32:57 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...skVolume2\Users\Gene\AppData\Local\Temp\nsv42DB.tmp\SWREG.DAT" (process cmd.exe, start check timestamp [ 1cd3deafee3ff0b]).

5/29/2012 6:32:57 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...\Device\HarddiskVolume2\Windows\SysWOW64\wbem\WMIADAP.exe" (process mbamservice.ex, start check timestamp [ 1cd3deafee8c1cb]).

5/29/2012 6:32:57 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...\Device\HarddiskVolume2\Windows\SysWOW64\wbem\WMIADAP.exe" (process mbamservice.ex, start check timestamp [ 1cd3deafee6606b]).

5/29/2012 6:32:57 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...\Device\HarddiskVolume2\Windows\SysWOW64\wbem\WMIADAP.exe" (process mbamservice.ex, start check timestamp [ 1cd3deafee3ff0b]).

5/29/2012 6:31:27 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\system32\PhotoMetadataHandler ..." of process wmpnetwk.exe, start check timestamp [ 1cd3de95ea67f9b] did not complete in time: file was not scanned.

5/29/2012 6:31:23 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Software Protection service to connect.

5/29/2012 6:31:23 PM, Error: Service Control Manager [7000] - The Software Protection service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

5/29/2012 6:31:23 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3de95cb03d41]) filename continues: "....tmp\SWREG.DAT"

5/29/2012 6:31:23 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Users\Gene\AppData\Local\Temp\nsv42DB ..." of process mbamservice.ex, start check timestamp [ 1cd3de95cb03d41] did not complete in time: file was not scanned.

5/29/2012 6:31:09 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3de9544d240c]) filename continues: "...c..-controls.resources_6595b64144ccf1df_5.82.7600.16385_en-us_020378a8991bbcc2"

5/29/2012 6:31:09 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3de9544d240c]) filename continues: "...\comctl32.dll.mui"

5/29/2012 6:31:09 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\WinSxS\x86_microsoft.windows. ..." of process mbamservice.ex, start check timestamp [ 1cd3de9544d240c] did not complete in time: file was not scanned.

5/29/2012 6:30:57 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3de94cf70655]) filename continues: "...ui"

5/29/2012 6:30:57 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\syswow64\en-US\kernel32.dll.m ..." of process mbamservice.ex, start check timestamp [ 1cd3de94cf70655] did not complete in time: file was not scanned.

5/29/2012 6:30:57 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\dllhost.exe ..." of process mbamservice.ex, start check timestamp [ 1cd3de94ce8be14] did not complete in time: file was not scanned.

5/29/2012 6:30:53 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\system32\sppsvc.exe ..." of process services.exe, start check timestamp [ 1cd3de94aedb8fa] did not complete in time: file was not scanned.

5/29/2012 6:17:58 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Apple Mobile Device service to connect.

5/29/2012 6:17:58 PM, Error: Service Control Manager [7000] - The Apple Mobile Device service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

5/29/2012 5:43:29 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3de28c7120f7]) filename continues: "...P Advisor\MessagingServer.dll"

5/29/2012 5:43:29 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...\Device\HarddiskVolume2\Windows\SysWOW64\samlib.dll" (process mbamservice.ex, start check timestamp [ 1cd3de416118dd2]).

5/29/2012 5:43:29 PM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...\Device\HarddiskVolume2\Windows\SysWOW64\authz.dll" (process mbamservice.ex, start check timestamp [ 1cd3de416118dd2]).

5/29/2012 5:43:29 PM, Error: SAVOnAccess [564] - Communication error between on-access driver and service for access of registry value [indows Media Player NSS\3.0\Servers\B5B46AFA-83C1-4CEF-AD17-EA3AD8C73173 Alive] by process wmpnetwk.exe.

5/29/2012 5:43:29 PM, Error: SAVOnAccess [564] - Communication error between on-access driver and service for access of registry value [DD6-8A13-47EF-9431-BD4A3583DCDA}\{9A37047E-7B24-447F-A0A0-D67A5FEDB190} Reason] by process wmpnetwk.exe.

5/29/2012 5:43:29 PM, Error: SAVOnAccess [564] - Communication error between on-access driver and service for access of registry value [572DDD6-8A13-47EF-9431-BD4A3583DCDA}\{9A37047E-7B24-447F-A0A0-D67A5FEDB190} ID] by process wmpnetwk.exe.

5/29/2012 5:43:29 PM, Error: SAVOnAccess [563] - Communication error between on-access driver and service for access of registry key [ {2572DDD6-8A13-47EF-9431-BD4A3583DCDA}\{9A37047E-7B24-447F-A0A0-D67A5FEDB190}] by process wmpnetwk.exe.

5/29/2012 5:42:38 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Program Files (x86)\Hewlett-Packard\H ..." of process HPAdvisor.exe, start check timestamp [ 1cd3de28c7120f7] did not complete in time: file was not scanned.

5/29/2012 5:42:03 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\authz.dll ..." of process mbamservice.ex, start check timestamp [ 1cd3de27837d008] did not complete in time: file was not scanned.

5/29/2012 5:41:59 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AudioEndpointBuilder service.

5/29/2012 5:41:57 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Users\EJ & Olivia\Videos\desktop.ini ..." of process wmpnetwk.exe, start check timestamp [ 1cd3de27499d8be] did not complete in time: file was not scanned.

5/29/2012 5:41:55 PM, Error: SAVOnAccess [85] - File [...Volume2\Windows\system32\Microsoft\Protect\S-1-5-19\Preferred]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process lsass.exe, (start check timestamp [ 1cd3de273e4f029]).

5/29/2012 5:41:55 PM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3de272fba94f]) filename continues: "...ui"

5/29/2012 5:41:55 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\svchost.exe ..." of process mbamservice.ex, start check timestamp [ 1cd3de272f6e68e] did not complete in time: file was not scanned.

5/29/2012 5:41:55 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\samlib.dll ..." of process mbamservice.ex, start check timestamp [ 1cd3de273e02d69] did not complete in time: file was not scanned.

5/29/2012 5:41:55 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\syswow64\en-US\kernel32.dll.m ..." of process mbamservice.ex, start check timestamp [ 1cd3de272fba94f] did not complete in time: file was not scanned.

5/29/2012 5:41:55 PM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\system32\drivers\spsys.sys ..." of process System, start check timestamp [ 1cd3de272e3db8c] did not complete in time: file was not scanned.

5/29/2012 5:41:29 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

5/29/2012 5:40:59 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SysMain service.

5/29/2012 5:40:29 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WPDBusEnum service.

5/29/2012 5:39:59 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WMPNetworkSvc service.

5/29/2012 11:57:28 AM, Error: Service Control Manager [7034] - The Sophos Anti-Virus status reporter service terminated unexpectedly. It has done this 1 time(s).

5/29/2012 11:55:44 AM, Error: Service Control Manager [7023] - The Sophos AutoUpdate Service service terminated with the following error: %%-2147467243

5/29/2012 11:49:16 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Presentation Foundation Font Cache 3.0.0.0 service to connect.

5/29/2012 11:49:16 AM, Error: Service Control Manager [7000] - The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

5/29/2012 11:48:32 AM, Error: Service Control Manager [7022] - The Internet Connection Sharing (ICS) service hung on starting.

5/29/2012 11:35:36 AM, Error: Service Control Manager [7023] - The Windows Update service terminated with the following error: %%-2147467243

5/29/2012 11:24:15 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC discache NetBIOS NetBT nsiproxy Psched rdbss SAVOnAccess spldr tdx vwififlt Wanarpv6 WfpLwf ws2ifsl

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The Network Connections service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.

5/29/2012 11:24:14 AM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

5/29/2012 10:48:58 AM, Error: SAVOnAccess [85] - File [...gram Files (x86)\sophos\Sophos Anti-Virus\SAVAdminService.exe]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process mbamservice.ex, (start check timestamp [ 1cd3daa2d7ebd3d]).

5/29/2012 10:48:58 AM, Error: SAVOnAccess [85] - File [...gram Files (x86)\sophos\Sophos Anti-Virus\SAVAdminService.exe]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process mbamservice.ex, (start check timestamp [ 1cd3daa2d79fa7d]).

5/29/2012 10:48:58 AM, Error: SAVOnAccess [85] - File [...e2\Program Files (x86)\sophos\Sophos Anti-Virus\WSCClient.exe]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process svchost.exe, (start check timestamp [ 1cd3daa2d79fa7d]).

5/29/2012 10:48:58 AM, Error: SAVOnAccess [85] - File [...Device\HarddiskVolume2\PROGRA~2\Sophos\SOPHOS~1\WSCClient.exe]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process SAVAdminServic, (start check timestamp [ 1cd3daa2d7c5bdd]).

5/29/2012 10:48:58 AM, Error: SAVOnAccess [85] - File [...Device\HarddiskVolume2\PROGRA~2\Sophos\SOPHOS~1\WSCClient.exe]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process SAVAdminServic, (start check timestamp [ 1cd3daa2d79fa7d]).

5/29/2012 10:48:58 AM, Error: SAVOnAccess [85] - File [...\Device\HarddiskVolume2\Windows\SysWOW64\wscisvif.dll]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process mbamservice.ex, (start check timestamp [ 1cd3daa2de779c9]).

5/29/2012 10:48:58 AM, Error: SAVOnAccess [85] - File [...\Device\HarddiskVolume2\Windows\SysWOW64\wscisvif.dll]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process mbamservice.ex, (start check timestamp [ 1cd3daa2d85e15e]).

5/29/2012 10:48:58 AM, Error: SAVOnAccess [85] - File [...\Device\HarddiskVolume2\Windows\SysWOW64\wscisvif.dll]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process mbamservice.ex, (start check timestamp [ 1cd3daa2d837ffe]).

5/29/2012 10:48:57 AM, Error: SAVOnAccess [85] - File [...\90555968565afd59bce4b0974e9903bd\System.Windows.Forms.ni.dll]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process mbamservice.ex, (start check timestamp [ 1cd3ce5d7bd393f]).

5/29/2012 10:48:51 AM, Error: SAVOnAccess [85] - File [...\Device\HarddiskVolume2\Windows\SysWOW64\en-US\apss.dll.mui]'s scan succeeded following a timeout/busy condition - it is being logged in case it contributed to that condition. Process mbamservice.ex, (start check timestamp [ 1cd3ce5d4ae1485]).

5/29/2012 10:46:27 AM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3ce57ca71156]) filename continues: "...twareUpdate"

5/29/2012 10:44:29 AM, Error: Ntfs [55] - The file system structure on the disk is corrupt and unusable. Please run the chkdsk utility on the volume HP.

5/29/2012 10:44:21 AM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3ce531644f7d]) filename continues: "...r\Scans\History\Results\Quick\{1A72360D-EF20-4B81-BA64-3EEB88DBEFE0}"

5/28/2012 11:25:38 AM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3ce47fb819af]) filename continues: "...ows Defender\MP Scheduled Scan"

5/28/2012 11:25:38 AM, Error: SAVOnAccess [80] - SAV service threads all busy: on-access driver could not request scan for file "...pdateTaskUserS-1-5-21-2538685935-2764079445-1791342672-1006UA" (process taskeng.exe, start check timestamp [ 1cd3ce62281d22a]).

5/28/2012 11:25:38 AM, Error: SAVOnAccess [566] - Communication error between on-access driver and service for a modification of file "kVolume2\Windows\System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan" by process svchost.exe .

5/28/2012 11:25:38 AM, Error: SAVOnAccess [566] - Communication error between on-access driver and service for a modification of file "aze\bzdata\bzfilelists\v000b000e2a408911fc0332c0417_c____filelist.dat.future" by process bzfilelist.exe .

5/28/2012 11:25:38 AM, Error: SAVOnAccess [564] - Communication error between on-access driver and service for access of registry value [on\Schedule\TaskCache\Tasks\{9D50C01C-8270-464D-82CB-336B5D0862FF} DynamicInfo] by process svchost.exe.

5/28/2012 11:25:32 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BFE service.

5/28/2012 11:25:24 AM, Error: SAVOnAccess [564] - Communication error between on-access driver and service for access of registry value [4079445-1791342672-1006\Software\CyberLink\Common\CLML\TouchSmart ITunesStatus] by process CLMLSvc.exe.

5/28/2012 11:25:22 AM, Error: SAVOnAccess [566] - Communication error between on-access driver and service for a modification of file "Volume2\ProgramData\Backblaze\bzdata\bzfilelists\completefilelist.dat.future" by process bzfilelist.exe .

5/28/2012 11:25:22 AM, Error: SAVOnAccess [565] - Communication error between on-access driver and service for parent process mbam.exe creating target process regsvr32.exe.

5/28/2012 11:25:02 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.

5/28/2012 11:24:04 AM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\System32\Tasks\Microsoft\Wind ..." of process svchost.exe, start check timestamp [ 1cd3ce47fb819af] did not complete in time: file was not scanned.

5/28/2012 11:23:48 AM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\regsvr32.exe ..." of process mbam.exe, start check timestamp [ 1cd3ce4762dd5d8] did not complete in time: file was not scanned.

5/28/2012 11:23:32 AM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3ce46d515675]) filename continues: "...rms.ni.dll"

5/28/2012 11:23:32 AM, Error: SAVOnAccess [82] - Scan failure (start check timestamp [ 1cd3ce46d515675]) filename continues: "...727_32\System.Windows.Forms\90555968565afd59bce4b0974e9903bd\System.Windows.Fo"

5/28/2012 11:23:32 AM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\assembly\NativeImages_v2.0.50 ..." of process mbamservice.ex, start check timestamp [ 1cd3ce46d515675] did not complete in time: file was not scanned.

5/28/2012 11:23:27 AM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\apss.dll ..." of process mbamservice.ex, start check timestamp [ 1cd3ce46a41ea81] did not complete in time: file was not scanned.

5/28/2012 11:23:23 AM, Error: SAVOnAccess [81] - The on-access scan of file "\Device\HarddiskVolume2\Windows\SysWOW64\samlib.dll ..." of process mbamservice.ex, start check timestamp [ 1cd3ce467bf36f7] did not complete in time: file was not scanned.

5/27/2012 11:44:18 PM, Error: SAVOnAccess [566] - Communication error between on-access driver and service for a modification of file "\Device\HarddiskVolume2\Windows\Prefetch\WSCCLIENT.EXE-0D8B4679.pf" by process svchost.exe .

5/25/2012 9:54:34 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Intuit QuickBooks FCS service to connect.

5/25/2012 9:54:34 PM, Error: Service Control Manager [7000] - The Intuit QuickBooks FCS service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

5/25/2012 9:54:34 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service QBFCService with arguments "" in order to run the server: {E2F551B5-D7E4-351C-A975-2E8EEE4D1917}

5/25/2012 5:00:02 PM, Error: SAVOnAccess [10] - The on-access driver failed to scan the boot sector of drive F:.

.

==== End Of File ===========================

Anybody? Please?

[Maurice Naggar]

Step 1

1. Go >> Here << and download ERUNT

(ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.)

2. Install ERUNT by following the prompts

(use the default install settings but say no to the portion that asks you to add ERUNT to the start-up folder, if you like you can enable this option later)

3. Start ERUNT

(either by double clicking on the desktop icon or choosing to start the program at the end of the setup)

4. Choose a location for the backup

(the default location is C:\WINDOWS\ERDNT which is acceptable).

5. Make sure that at least the first two check boxes are ticked

6. Press OK

7. Press YES to create the folder.

Step 2

To show all files:

• Go to your Desktop
• Double-Click the Computer icon.
  
• From the menu options, Select Tools, then Folder Options.
  
• Next click the View tab.
  
• Locate and uncheck Hide file extensions for known file types.
  
• Locate and uncheck Hide protected operating system files (Recommended).
  
• Locate and click Show hidden files and folders and drives.
  
• Click Apply > OK.

Step 3

Download Random's System Information Tool (RSIT) by random/random from here and save it to your desktop.

• Double click on RSIT.exe to run RSIT.
  
• Click Continue at the disclaimer screen.
  
• Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)

Step 4

Download Security Check by screen317 and save it to your Desktop: here or here

• Run Security Check
• Follow the onscreen instructions inside of the command window.
• A Notepad document should open automatically called checkup.txt; close Notepad. We will need this log, too, so remember where you've saved it!

Step 5

Close all open browsers at this point.

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

For directions on how, see How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Do NOT turn off the firewall

Start Internet Explorer

Using Internet Explorer browser only, go to BitDefender Quickscan website:

http://quickscan.bitdefender.com

and click "Start Scan".

Observe your browser in case it shows a notice/message bar to allow download and installation of a tool.

Allow the download and install of qsax.cab from BitDefender. Right-click the IE info bar and select Install to install the BitDefender quick scan module.

If prompted, reply yes to allow it to run.

Press the Allow button and follow prompts.

Press the "Start Scan" once more.

You'll see the EULA in a pop-up window. Click the I accept & then the OK button

Note: The FAQ is here --> http://quickscan.bitdefender.com/faq/

and that QuickScan has no removal capability.

The site boasts a 60-second scan. Do have patience as it likely will take longer.

It may seem to stall at moments, but have patience; it will move on.

You'll see a progress bar at top right of window.

Hopefully you will see a No infections found in the bar-winddow. Press the View Log button.

The log report will show in your text editor. Save the log.

Do a Select ALL, Copy. Then paste contents into your next reply.

Step 6

Download and Save McAfee Stinger to your Desktop

http://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Close all browsers before starting. Disable your antivirus program and anti-malware,if any.

How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

On Windows 7 & Vista systems, Right Click and select Run as Administrator.

On XP, double-click to start it.

The GUI interface will look like this

The C drive is the default for scanning.

Press the Preferences button. In the top right-block "On virus detection", click Rename

In the bottom block "Heuristic network check for suspicious files" select High

Click the Scan Now button.

When done, use the File menu and select Save report to file

Stinger.txt is the log report and will be saved to your Desktop. I will need a copy of that log.

Stinger is a standalone utility used to detect and remove specific malware. It is not a full scan for all types of malware or viruses.

It is not intended as virus protection.

Step 7

RE-Enable your antivirus program.

Copy & Paste contents of Log.txt & Info.txt & Checkup.txt & log from Bitdefender & Stinger.txt.

Use separate replies as needed if logs do not fit into one reply box. Please do NOT attach logs.

[Maurice Naggar]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!