Windows must now restart because plug and play service terminated unexpectedly

iskaalexander93 · February 6, 2013

Hi sir this is I'm from the topic user http://forums.malwarebytes.org/index.php?showtopic=122240.

There is a problem on my dekstop after 10 second I'm log on on my windows. There's pop up about "Windows must now restart because plug and play service terminated unexpectedly " and "Windows must now restart because power service terminated unexpectedly ".

And this is attach file from my computer

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 16/01/2012 16:46:33

System Uptime: 06/02/2013 15:03:30 (0 hours ago)

.

Motherboard: Intel Corp. | | Base Board Product Name

Processor: Intel® Core i3-2330M CPU @ 2.20GHz | CPU1 | 2195/1333mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 156 GiB total, 58,69 GiB free.

D: is FIXED (NTFS) - 146 GiB total, 125,841 GiB free.

E: is FIXED (NTFS) - 279 GiB total, 169,718 GiB free.

F: is CDROM ()

H: is Removable

.

==== Disabled Device Manager Items =============

.

Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Description: Security Processor Loader Driver

Device ID: ROOT\LEGACY_SPLDR\0000

Manufacturer:

Name: Security Processor Loader Driver

PNP Device ID: ROOT\LEGACY_SPLDR\0000

Service: spldr

.

Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Description: avast! Network Shield Support

Device ID: ROOT\LEGACY_ASWTDI\0000

Manufacturer:

Name: avast! Network Shield Support

PNP Device ID: ROOT\LEGACY_ASWTDI\0000

Service: aswTdi

.

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

Description: Microsoft ISATAP Adapter

Device ID: ROOT\*ISATAP\0002

Manufacturer: Microsoft

Name: Microsoft ISATAP Adapter

PNP Device ID: ROOT\*ISATAP\0002

Service: tunnel

.

==== System Restore Points ===================

.

No restore point in system.

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

Updater

Adobe AIR

Adobe Community Help

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Adobe Photoshop CS4

Adobe Reader 9.5.3

Advanced SystemCare 6

AirFlash

Angry Birds Rio 1.4.2.0

Angry Birds Space

Any Audio Converter 3.0.4

Atheros Bluetooth Filter Driver Package

Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver

Atheros Driver Installation Program

avast! Free Antivirus

BatteryCare 0.9.12.1

BatteryMon V2.1

Bejeweled 3

Bing Bar

Bing Rewards Client Installer

Bluetooth Stack for Windows by Toshiba

Build-a-lot

Cars 2

CCleaner

Chuzzle Deluxe

Conexant HD Audio

CorelDRAW Graphics Suite X4

CorelDRAW Graphics Suite X4 - Capture

CorelDRAW Graphics Suite X4 - Content

CorelDRAW Graphics Suite X4 - Draw

CorelDRAW Graphics Suite X4 - Filters

CorelDRAW Graphics Suite X4 - FontNav

CorelDRAW Graphics SUite X4 - ICA

CorelDRAW Graphics Suite X4 - IPM

CorelDRAW Graphics Suite X4 - Lang EN

CorelDRAW Graphics Suite X4 - PP

CorelDRAW Graphics Suite X4 - VBA

CorelDRAW® Graphics Suite X4

CorelDRAW® Graphics Suite X4 - Windows Shell Extension

CPUID CPU-Z 1.61.5

D3DX10

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition

Facebook Video Calling 1.2.0.287

FATE - The Traitor Soul

Fraps (remove only)

Free Pascal 2.6.0

Free Stuff version 1.5

Game Graphic Studio

GomezPEER

Google Chrome

Google Desktop Search

Google Toolbar for Internet Explorer

gpedt.msc 1.0

ImTOO Video Converter Ultimate 6

Indeo® Software

Intel® Management Engine Components

Intel® Rapid Storage Technology

Internet Download Manager

Java 7 Update 13

Java Auto Updater

Java 6 Update 33

Jewel Quest: The Sleepless Star - Collector's Edition

Junk Mail filter update

Label@Once 1.0

LogonStudio

Mad Medley Battle

Malwarebytes Anti-Malware version 1.70.0.1100

Media Player Codec Pack 4.2.3

Mesh Runtime

Messenger Companion

Microsoft .NET Framework 1.1

Microsoft .NET Framework 4.5 Beta

Microsoft Application Error Reporting

Microsoft Default Manager

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office 2010 Service Pack 1 (SP1)

Microsoft Office Access MUI (English) 2007

Microsoft Office Access MUI (English) 2010

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Access Setup Metadata MUI (English) 2010

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (English) 2007

Microsoft Office Excel MUI (English) 2010

Microsoft Office Groove MUI (English) 2007

Microsoft Office Groove Setup Metadata MUI (English) 2007

Microsoft Office InfoPath MUI (English) 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office OneNote MUI (English) 2010

Microsoft Office Outlook MUI (English) 2007

Microsoft Office Outlook MUI (English) 2010

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2010

Microsoft Office Professional 2010

Microsoft Office Proof (English) 2007

Microsoft Office Proof (English) 2010

Microsoft Office Proof (French) 2007

Microsoft Office Proof (French) 2010

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proof (Spanish) 2010

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing (English) 2010

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Publisher MUI (English) 2010

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared MUI (English) 2010

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2010

Microsoft Office Single Image 2010

Microsoft Office Word MUI (English) 2007

Microsoft Office Word MUI (English) 2010

Microsoft Primary Interoperability Assemblies 2005

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft XNA Framework Redistributable 4.0

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Microsoft_VC90_MFCLOC_x86

Mobile Partner

Mozilla Firefox 18.0.1 (x86 id)

Mozilla Maintenance Service

MSVCRT

MyTools Library

Need for Speed Most Wanted

Nero 7 Essentials

Norton Internet Security

NVIDIA 3D Vision Driver 310.70

NVIDIA Control Panel 310.70

NVIDIA Graphics Driver 310.70

NVIDIA HD Audio Driver 1.3.18.0

NVIDIA Install Application

NVIDIA PhysX

NVIDIA PhysX System Software 9.12.1031

NVIDIA Stereoscopic 3D Driver

Partition Wizard Home Edition 4.2

Penguins!

Plants vs. Zombies - Game of the Year

PlayReady PC Runtime x86

Polar Bowler

Pro Evolution Soccer 2012

Pro Evolution Soccer 2013

PROLiNK PCM100 UI

PS TO PC CONVERTER

QT Lite 4.1.0

RapidTyping

RAR Repair Tool v.4.0.1

Realtek USB 2.0 Reader Driver

Renesas Electronics USB 3.0 Host Controller Driver

Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition

Security Update for Microsoft InfoPath 2010 (KB2553322) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2553091)

Security Update for Microsoft Office 2010 (KB2553096)

Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2598039) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2687501) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2687510) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition

Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition

Security Update for Microsoft Visio Viewer 2010 (KB2597981) 32-Bit Edition

Security Update for Microsoft Word 2010 (KB2760410) 32-Bit Edition

Shollu versi 3.09

Skype Toolbars

Skype™ 5.10

Smartfren Connex CE682 UI

SPSS 16.0

swMSM

Synaptics Pointing Device Driver

System Requirements Lab for Intel

TOSHIBA Assist

TOSHIBA Bulletin Board

TOSHIBA ConfigFree

TOSHIBA Disc Creator

TOSHIBA eco Utility

TOSHIBA Face Recognition

TOSHIBA Hardware Setup

TOSHIBA HDD/SSD Alert

TOSHIBA Media Controller

TOSHIBA Media Controller Plug-in

TOSHIBA PC Health Monitor

TOSHIBA Recovery Media Creator

TOSHIBA ReelTime

TOSHIBA Resolution+ Plug-in for Windows Media Player

TOSHIBA Service Station

TOSHIBA Sleep Utility

TOSHIBA Speech System Applications

TOSHIBA Speech System SR Engine(U.S.) Version1.0

TOSHIBA Speech System TTS Engine(U.S.) Version1.0

TOSHIBA Supervisor Password

TOSHIBA Value Added Package

TOSHIBA Web Camera Application

TOSHIBA Wireless LAN Indicator

Transym TOCR V3.2 Pro

TuneUp Utilities 2013

TuneUp Utilities Language Pack (en-US)

Twin USB Vibration Gamepad

Ultra Alexa

UltraISO Premium V9.53

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office 2010 (KB2553065)

Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition

Update for Microsoft Office 2010 (KB2566458)

Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition

Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition

Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition

Update for Microsoft Office Access 2007 Help (KB963663)

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office Infopath 2007 Help (KB963662)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Outlook 2007 Help (KB963677)

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760573) 32-Bit Edition

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 Help (KB963665)

Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition

Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition

Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition

Update Installer for WildTangent Games App

USB Force Wheel

Visual Basic for Applications ® Core

Visual Basic for Applications ® Core - English

VLC media player 2.0.5

WeatherBug Alert

Web Assistant 2.0.0.445

WildTangent Games

WildTangent Games App (Toshiba Games)

Win7codecs

Winamp (remove only)

Windows Live Communications Platform

Windows Live Essentials

Windows Live Family Safety

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Mail

Windows Live Mesh

Windows Live Mesh ActiveX Control for Remote Connections

Windows Live Messenger

Windows Live Messenger Companion Core

Windows Live MIME IFilter

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live Remote Client

Windows Live Remote Client Resources

Windows Live Remote Service

Windows Live Remote Service Resources

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Windows Media Player Firefox Plugin

Windows Updates Downloader

WinRAR 4.11 (32-bit)

WinUtilities Undelete 3.1

Yahoo! Messenger

Yahoo! Software Update

Yahoo! Toolbar

Yontoo 1.10.02

Zuma's Revenge

.

==== Event Viewer Messages From Past Week ========

.

30/01/2013 11:41:45, Error: cdrom [15] - The device, \Device\CdRom0, is not ready for access yet.

06/02/2013 15:04:44, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service NVSvc with arguments "" in order to run the server: {DCAB0989-1301-4319-BE5F-ADE89F88581C}

06/02/2013 15:04:29, Error: Microsoft-Windows-WLAN-AutoConfig [10000] - WLAN Extensibility Module has failed to start. Module Path: C:\windows\system32\athihvs.dll Error Code: 21

06/02/2013 15:04:28, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}

06/02/2013 15:04:28, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

06/02/2013 15:04:24, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

06/02/2013 15:04:16, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

06/02/2013 15:04:12, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: aswSnx aswSP aswTdi discache spldr Tosrfcom Wanarpv6

06/02/2013 15:04:10, Error: Service Control Manager [7003] - The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.

06/02/2013 15:04:10, Error: Service Control Manager [7003] - The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.

06/02/2013 15:04:10, Error: Service Control Manager [7001] - The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

06/02/2013 15:02:00, Error: Service Control Manager [7023] - The Superfetch service terminated with the following error: The data is invalid.

06/02/2013 15:01:51, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Reboot the machine) after the unexpected termination of the Power service, but this action failed with the following error: A system shutdown has already been scheduled.

06/02/2013 15:01:51, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Reboot the machine) after the unexpected termination of the Plug and Play service, but this action failed with the following error: A system shutdown has already been scheduled.

06/02/2013 15:01:51, Error: Service Control Manager [7031] - The Power service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Reboot the machine.

06/02/2013 15:01:51, Error: Service Control Manager [7031] - The Plug and Play service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Reboot the machine.

06/02/2013 15:01:51, Error: Service Control Manager [7031] - The DCOM Server Process Launcher service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Reboot the machine.

06/02/2013 15:01:37, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

06/02/2013 14:55:16, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Reboot the machine) after the unexpected termination of the DCOM Server Process Launcher service, but this action failed with the following error: A system shutdown has already been scheduled.

06/02/2013 14:41:58, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80070420'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

06/02/2013 14:40:05, Error: Service Control Manager [7023] - The Windows Defender service terminated with the following error: %%-2147416365

06/02/2013 13:43:38, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service VSS with arguments "" in order to run the server: {E579AB5F-1CC4-44B4-BED9-DE0991FF0623}

06/02/2013 13:26:29, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

06/02/2013 12:17:10, Error: Microsoft-Windows-WMPNSS-Service [14333] - Service 'WMPNetworkSvc' did not start correctly due to error '0x800706bf'. Restart your computer, and then try to restart the service.

06/02/2013 11:52:33, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}

06/02/2013 11:42:24, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

06/02/2013 11:18:18, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: aswSnx aswTdi spldr

06/02/2013 11:18:15, Error: Service Control Manager [7023] - The Software Protection service terminated with the following error: The system cannot find the file specified.

06/02/2013 11:17:47, Error: Service Control Manager [7000] - The Link-Layer Topology Discovery Responder service failed to start due to the following error: The driver was not loaded because the system is booting into safe mode.

06/02/2013 11:17:47, Error: Service Control Manager [7000] - The Link-Layer Topology Discovery Mapper I/O Driver service failed to start due to the following error: The driver was not loaded because the system is booting into safe mode.

06/02/2013 11:14:20, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000008e (0xc0000005, 0x85125795, 0x83d7fa1c, 0x00000000). A dump was saved in: C:\windows\MEMORY.DMP. Report Id: 020613-19687-01.

06/02/2013 10:26:43, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.

06/02/2013 10:26:40, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}

06/02/2013 10:26:40, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}

06/02/2013 10:26:22, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: aswRdr aswSnx aswSP aswTdi DfsC discache NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Tosrfcom vwififlt Wanarpv6 WfpLwf

06/02/2013 10:26:20, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

06/02/2013 10:26:20, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the NetBT service which failed to start because of the following error: A device attached to the system is not functioning.

06/02/2013 10:26:20, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.

06/02/2013 10:26:20, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

06/02/2013 10:26:20, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

06/02/2013 10:26:20, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.

06/02/2013 10:26:20, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

06/02/2013 10:26:20, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.

06/02/2013 10:26:20, Error: Service Control Manager [7001] - The DHCP Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.

05/02/2013 21:11:44, Error: Service Control Manager [7034] - The Windows Search service terminated unexpectedly. It has done this 3 time(s).

05/02/2013 21:11:44, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-2147467243.

05/02/2013 21:11:14, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

05/02/2013 21:10:42, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

05/02/2013 21:10:39, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535.

05/02/2013 21:02:04, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service TuneUp.UtilitiesSvc with arguments "" in order to run the server: {FCA02D56-BF9D-4591-AD41-E59AF763C64A}

05/02/2013 21:01:59, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service TuneUp.UtilitiesSvc with arguments "" in order to run the server: {5EF1CF5D-87A9-434B-8786-2A08E1C30F6C}

05/02/2013 18:33:06, Error: Microsoft-Windows-WMPNSS-Service [14333] - Service 'WMPNetworkSvc' did not start correctly due to error '0x800706be'. Restart your computer, and then try to restart the service.

05/02/2013 18:24:23, Error: Microsoft-Windows-WMPNSS-Service [14333] - Service 'WMPNetworkSvc' did not start correctly due to error '0x80080005'. Restart your computer, and then try to restart the service.

05/02/2013 18:12:23, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-2147218173.

05/02/2013 17:23:39, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

05/02/2013 16:46:51, Error: Service Control Manager [7023] - The Intel® Management and Security Application User Notification Service service terminated with the following error: %%-2147467243

05/02/2013 16:46:45, Error: Service Control Manager [7023] - The Windows Update service terminated with the following error: %%-2147467243

05/02/2013 11:22:56, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.

04/02/2013 13:09:21, Error: Service Control Manager [7043] - The TuneUp Utilities Service service did not shut down properly after receiving a preshutdown control.

.

==== End Of File ===========================

And this is dds file from my computer

DDS (Ver_2012-11-20.01) - NTFS_x86 NETWORK

Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.13.2

Run by TOSHIBA at 15:18:09 on 2013-02-06

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.62.1033.18.2030.1542 [GMT 7:00]

.

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ================

.

C:\windows\system32\wininit.exe

C:\windows\system32\lsm.exe

C:\windows\Explorer.EXE

C:\windows\system32\ctfmon.exe

C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32Info.exe

C:\windows\system32\conhost.exe

C:\windows\system32\wbem\WmiPrvSE.exe

C:\windows\system32\svchost.exe -k DcomLaunch

C:\windows\system32\svchost.exe -k RPCSS

C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\windows\system32\svchost.exe -k netsvcs

C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\windows\system32\svchost.exe -k LocalService

C:\windows\system32\svchost.exe -k NetworkService

C:\windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\windows\System32\svchost.exe -k secsvcs

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://home.allgameshome.com/

uDefault_Search_URL = hxxp://google.inklineglobal.com

mStart Page = hxxp://home.allgameshome.com/

uSearchAssistant = hxxp://www.searchamong.com/searchview.php?query={searchTerms}&cat=webs&bar=true

uSearchURL,(Default) = hxxp://www.google.com/cse?cx=partner-pub-6697027465779297:3144322079&ie=ISO-8859-1&sa=Search&q=%s

mURLSearchHooks: {855F3B16-6D32-4fe6-8A56-BBB695989046} - <orphaned>

mURLSearchHooks: <No Name>: - LocalServer32 - <no file>

BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - c:\program files\internet download manager\IDMIECC.dll

BHO: Complitly: {0FB6A909-6086-458F-BD92-1F8EE10042A0} - c:\users\toshiba\appdata\roaming\complitly\Complitly.dll

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - c:\program files\windows live\companion\companioncore.dll

BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar.dll

BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL

BHO: Advanced SystemCare Browser Protection: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - c:\program files\iobit\advanced systemcare 6\browerprotect\ASCPlugin_Protection.dll

BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\microsoft\bingbar\7.1.361.0\BingExt.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

BHO: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - c:\program files\toshiba\toshiba media controller plug-in\TOSHIBAMediaControllerIE.dll

TB: &Google: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar.dll

TB: &Google: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar.dll

TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn2\yt.dll

TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -

TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll

uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun

uRun: [iDMan] c:\program files\internet download manager\IDMan.exe /onboot

uRun: [Advanced SystemCare 6] "c:\program files\iobit\advanced systemcare 6\ASCTray.exe" /AutoStart

mRun: [TPwrMain] c:\program files\toshiba\power saver\TPwrMain.EXE

mRun: [HSON] c:\program files\toshiba\tbs\HSON.exe

mRun: [TCrdMain] c:\program files\toshiba\flashcards\TCrdMain.exe

mRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe

mRun: [iTSecMng] c:\program files\toshiba\bluetooth toshiba stack\ItSecMng.exe /START

mRun: [TSleepSrv] c:\program files\toshiba\toshiba sleep utility\TSleepSrv.exe

mRun: [Teco] "c:\program files\toshiba\teco\Teco.exe" /r

mRun: [TosSENotify] c:\program files\toshiba\toshiba hdd ssd alert\TosWaitSrv.exe

mRun: [TosWaitSrv] c:\program files\toshiba\tphm\TosWaitSrv.exe

mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume

mRun: [TosVolRegulator] c:\program files\toshiba\tosvolregulator\TosVolRegulator.exe

mRun: [TosNC] c:\program files\toshiba\bulletinboard\TosNcCore.exe

mRun: [TosReelTimeMonitor] c:\program files\toshiba\reeltime\TosReelTimeMonitor.exe

mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe

mRun: [smartAudio] c:\program files\conexant\saii\SAIICpl.exe /t

mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"

mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\toshiba\bluetooth toshiba stack\TosBtMng.exe

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\gomezp~1.lnk - c:\program files\gomez\gomezpeer\bin\GomezPEER.exe

uPolicies-Explorer: MemCheckBoxInRunDlg = dword:1

uPolicies-Explorer: NoStrCmpLogical = dword:1

uPolicies-Explorer: NoDriveTypeAutoRun = dword:255

uPolicies-Explorer: NoDrives = dword:0

mPolicies-Explorer: NoChangeAnimation = dword:1

mPolicies-Explorer: NoStrCmpLogical = dword:1

mPolicies-Explorer: NoDrives = dword:0

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: &Google Search - c:\program files\google\googletoolbar.dll/cmsearch.html

IE: Add to TOSHIBA Bulletin Board - c:\program files\toshiba\bulletinboard\TosBBCom.dll/1000

IE: Backward &Links - c:\program files\google\googletoolbar.dll/cmbacklinks.html

IE: Cac&hed Snapshot of Page - c:\program files\google\googletoolbar.dll/cmcache.html

IE: Download all links with IDM - c:\program files\internet download manager\IEGetAll.htm

IE: Download with IDM - c:\program files\internet download manager\IEExt.htm

IE: E&xport to Microsoft Excel - c:\progra~1\mif5ba~1\office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - c:\progra~1\mif5ba~1\office14\ONBttnIE.dll/105

IE: Si&milar Pages - c:\program files\google\googletoolbar.dll/cmsimilar.html

IE: Translate into English - c:\program files\google\googletoolbar.dll/cmtrans.html

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll

IE: {5FC86FB3-A8B1-400B-8BE7-0EAF0D857F5D} - {5FC86FB3-A8B1-400B-8BE7-0EAF0D857F5D} - <orphaned>

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

IE: {97F922BD-8563-4184-87EE-8C4ACA438823} - {5D29E593-73A5-400A-B3BD-6B7A1AF05A31} - c:\program files\toshiba\bulletinboard\TosBBCom.dll

.

INFO: HKCU has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613} : NameServer = 208.67.220.220,208.67.222.123

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613}\050535F5051637361633 : DHCPNameServer = 192.168.0.4

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613}\3507565646970284F6473707F647 : DHCPNameServer = 202.134.0.155 202.134.0.155

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613}\4727566756C6B616028702F6E6A656B6 : NameServer = 208.67.220.220,208.67.222.123

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613}\4727566756C6B616028702F6E6A656B6 : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613}\554494E4553563 : NameServer = 208.67.220.220,208.67.222.123

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613}\554494E4553563 : DHCPNameServer = 192.168.0.4 180.131.144.144

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613}\642756560284F6473707F64702350756564697 : DHCPNameServer = 8.8.8.8 192.168.1.254

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613}\64C616378602A5F6E656 : DHCPNameServer = 202.134.0.155 202.134.0.155

TCP: Interfaces\{2A473650-20CD-4DF3-A403-1E949A784613}\64C6568796E656472427F616462616E646230282D41687E2130302D426073792 : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{5C5F0BC5-8C6A-49FD-B08E-A965ECDA1C87} : NameServer = 208.67.220.220,208.67.222.123

TCP: Interfaces\{70E4A9A0-5517-429F-AAEB-BB1E370CFCD3} : NameServer = 208.67.220.220,208.67.222.123

TCP: Interfaces\{CBA8F4CE-B224-48B1-989E-8781A9A014B2} : NameServer = 208.67.220.220,208.67.222.123

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL

Handler: dssrequest - <Clsid value has no data>

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll

Handler: sacore - <Clsid value has no data>

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\toshiba\appdata\roaming\mozilla\firefox\profiles\9xmp6gmq.default-1350804084411\

FF - prefs.js: Keyword.Enabled - true

FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/cse?cx=partner-pub-6697027465779297:7461124956&ie=ISO-8859-1&sa=Search&q=

FF - prefs.js: browser.search.selectedEngine - SearchMyWeb

FF - prefs.js: browser.startup.homepage - about:home

FF - prefs.js: keyword.URL - hxxp://www.google.com/cse?cx=partner-pub-6697027465779297:7461124956&ie=ISO-8859-1&sa=Search&q=

FF - prefs.js: network.proxy.ftp - 118.99.123.59

FF - prefs.js: network.proxy.ftp_port - 8080

FF - prefs.js: network.proxy.gopher -

FF - prefs.js: network.proxy.gopher_port - 0

FF - prefs.js: network.proxy.http - 118.99.123.59

FF - prefs.js: network.proxy.http_port - 8080

FF - prefs.js: network.proxy.socks - 118.99.123.59

FF - prefs.js: network.proxy.socks_port - 8080

FF - prefs.js: network.proxy.ssl - 118.99.123.59

FF - prefs.js: network.proxy.ssl_port - 8080

FF - prefs.js: network.proxy.type - 0

FF - plugin: c:\progra~1\mif5ba~1\office14\NPAUTHZ.DLL

FF - plugin: c:\progra~1\mif5ba~1\office14\NPSPWRAP.DLL

FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll

FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll

FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll

FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll

FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll

FF - plugin: c:\program files\wildtangent games\app\browserintegration\registered\0\NP_wtapp.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

FF - plugin: c:\users\toshiba\appdata\local\facebook\video\skype\npFacebookVideoCalling.dll

FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_146.dll

FF - plugin: c:\windows\system32\npdeployJava1.dll

FF - plugin: c:\windows\system32\npmproxy.dll

FF - ExtSQL: 2013-01-01 10:15; {e4a8a97b-f2ed-450b-b12d-ee082ba24781}; c:\users\toshiba\appdata\roaming\mozilla\firefox\profiles\9xmp6gmq.default-1350804084411\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi

FF - ExtSQL: 2013-01-06 17:09; {81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}; c:\users\toshiba\appdata\roaming\mozilla\firefox\profiles\9xmp6gmq.default-1350804084411\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}

FF - ExtSQL: 2013-01-26 00:44; ascsurfingprotection@iobit.com; c:\users\toshiba\appdata\roaming\mozilla\firefox\profiles\9xmp6gmq.default-1350804084411\extensions\ascsurfingprotection@iobit.com

FF - ExtSQL: 2013-01-29 08:53; jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack; c:\users\toshiba\appdata\roaming\mozilla\firefox\profiles\9xmp6gmq.default-1350804084411\extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi

FF - ExtSQL: 2013-01-29 09:23; {b0e1b4a6-2c6f-4e99-94f2-8e625d7ae255}; c:\users\toshiba\appdata\roaming\mozilla\firefox\profiles\9xmp6gmq.default-1350804084411\extensions\{b0e1b4a6-2c6f-4e99-94f2-8e625d7ae255}.xpi

.

---- FIREFOX POLICIES ----

FF - user.js: network.http.pipelining.maxrequests - 8

FF - user.js: network.http.request.max-start-delay - 0

FF - user.js: network.http.max-connections - 48

FF - user.js: network.http.max-connections-per-server - 16

FF - user.js: network.http.max-persistent-connections-per-proxy - 16

FF - user.js: network.http.max-persistent-connections-per-server - 8

FF - user.js: browser.turbo.enabled - true

FF - user.js: browser.display.show_image_placeholders - true

FF - user.js: browser.chrome.favicons - false

FF - user.js: browser.urlbar.autocomplete.enabled - true

FF - user.js: content.notify.ontimer - true

FF - user.js: content.interrupt.parsing - true

FF - user.js: content.max.tokenizing.time - 2250000

FF - user.js: content.switch.threshold - 750000

FF - user.js: plugin.expose_full_path - true

FF - user.js: ui.submenuDelay - 0

FF - user.js: browser.search.defaultenginename - SearchMyWeb

FF - user.js: browser.search.defaulturl - hxxp://www.google.com/cse?cx=partner-pub-6697027465779297:7461124956&ie=ISO-8859-1&sa=Search&q=

FF - user.js: keyword.URL - hxxp://www.google.com/cse?cx=partner-pub-6697027465779297:7461124956&ie=ISO-8859-1&sa=Search&q=

FF - user.js: browser.search.selectedEngine - SearchMyWeb

FF - user.js: content.notify.backoffcount - 5

FF - user.js: content.notify.interval - 750000

FF - user.js: layout.spellcheckDefault - 0

FF - user.js: network.dns.disableIPv6 - true

FF - user.js: network.http.pipelining - true

FF - user.js: network.http.proxy.pipelining - true

.

============= SERVICES / DRIVERS ===============

.

R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\drivers\TVALZFL.sys [2009-6-20 12920]

R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]

R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2010-11-9 68208]

R3 MEI;Intel® Management Engine Interface;c:\windows\system32\drivers\HECI.sys [2010-10-20 41088]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-12-11 62336]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-12-11 141440]

R3 QIOMem;Generic IO & Memory Access;c:\windows\system32\drivers\QIOMem.sys [2009-6-16 9216]

S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-11-30 738504]

S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-11-30 361032]

S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files\iobit\advanced systemcare 6\ASCService.exe [2012-11-17 465216]

S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-11-30 21256]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-11-30 58680]

S2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-11-30 44808]

S2 BBSvc;BingBar Service;c:\program files\microsoft\bingbar\7.1.361.0\BBSvc.EXE [2012-2-10 193816]

S2 CDROM_Detect;CDROM_Detect;c:\program files\airflash\C+WEject.exe [2012-5-25 269312]

S2 CDROM_Eject_H;CDROM_Eject_H;c:\program files\smartfren connex ce682 ui\HEject.exe [2012-12-4 267776]

S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files\toshiba\configfree\CFIWmxSvcs.exe [2010-1-29 185712]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2012-1-30 103992]

S2 ConfigFree Service;ConfigFree Service;c:\program files\toshiba\configfree\CFSvcs.exe [2009-3-11 46448]

S2 IDMWFP;IDMWFP;c:\windows\system32\drivers\idmwfp.sys [2012-8-31 97632]

S2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-2-5 398184]

S2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-2-5 682344]

S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]

S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2012-11-30 382824]

S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\toshiba\teco\TecoService.exe [2011-3-2 189880]

S2 UDisk Monitor;UDisk Monitor;c:\program files\prolink pcm100 ui\bin\MonServiceUDisk.exe [2012-11-2 512000]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files\intel\intel® management engine components\uns\UNS.exe [2011-8-16 2656280]

S3 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\7.1.361.0\SeaPort.EXE [2012-2-10 240408]

S3 BtFilter;Bluetooth LowerFilter Class Filter Driver;c:\windows\system32\drivers\btfilter.sys [2011-8-16 33640]

S3 CT_QUALCOMM_U_drv;Qualcomm EVDO USB Device for Serial Communication;c:\windows\system32\drivers\CT_QUALCOMM_U_drv.sys [2012-5-25 103552]

S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [2012-12-30 23456]

S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2011-8-16 39272]

S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-9-23 1493352]

S3 GamesAppService;GamesAppService;c:\program files\wildtangent games\app\GamesAppService.exe [2010-10-13 206072]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-2-5 21104]

S3 PGEffect;Pangu effect driver;c:\windows\system32\drivers\PGEffect.sys [2011-8-16 33616]

S3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [2012-1-16 16456]

S3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [2012-1-16 11088]

S3 qcusbserialser;PROLiNK PCM100 Serial Communication;c:\windows\system32\drivers\CT_U_USBSER.sys [2012-11-2 105344]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-11-20 14848]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2012-11-11 197224]

S3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUVStor.sys [2012-11-11 226408]

S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-14 207360]

S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-14 980992]

S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-14 661504]

S3 TMachInfo;TMachInfo;c:\program files\toshiba\toshiba service station\TMachInfo.exe [2011-8-16 54136]

S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\toshiba\toshiba hdd ssd alert\TosSmartSrv.exe [2010-12-9 112032]

S3 TPCHSrv;TPCH Service;c:\program files\toshiba\tphm\TPCHSrv.exe [2010-12-21 685488]

S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-11-20 49664]

S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-11-20 27136]

S3 USB_BusEnum_H;EVDO Telecom USB Bus Enumerator h;c:\windows\system32\drivers\USB_BusEnum_H.sys [2012-12-4 38400]

S3 USB_BusEnum_T;EVDO Telecom USB Bus Enumerator;c:\windows\system32\drivers\USB_BusEnum_T.sys [2012-4-3 38400]

S3 USB_ETS_H;EVDO Rev A Service USB port h;c:\windows\system32\drivers\USB_ETS_H.sys [2012-12-4 16128]

S3 USB_ETS_T;ZTE ETS Port FFDD;c:\windows\system32\drivers\USB_ETS_T.sys [2012-4-3 16128]

S3 USB_WinMux_H;EVDO Telecom USB MUX Serial Port h;c:\windows\system32\drivers\USB_WinMux_H.sys [2012-12-4 30080]

S3 UsbModemDriver;EVDO Rev A USB Modem h;c:\windows\system32\drivers\USB_MODEM_H.sys [2012-12-4 21504]

S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2012-1-20 1343400]

S3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files\batterycare\WinRing0.sys [2013-1-3 14416]

S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-23 51040]

SUnknown Web Assistant Updater;Web Assistant Updater; [x]

.

=============== Created Last 30 ================

.

2013-02-06 06:46:23 -------- d-sh--w- C:\$RECYCLE.BIN

2013-02-06 06:17:48 -------- d-----w- c:\users\toshiba\Doctor Web

2013-02-06 06:04:15 -------- d-----w- c:\users\toshiba\appdata\local\temp

2013-02-05 11:27:50 -------- d-----w- C:\found.000

2013-02-05 10:54:57 -------- d-----w- c:\users\toshiba\appdata\roaming\Malwarebytes

2013-02-05 10:54:48 -------- d-----w- c:\programdata\Malwarebytes

2013-02-05 10:54:44 21104 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-02-05 10:54:44 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2013-02-05 10:54:35 -------- d-----w- c:\users\toshiba\appdata\local\Programs

2013-02-05 10:29:19 -------- d-----w- c:\users\toshiba\appdata\local\ElevatedDiagnostics

2013-02-05 06:03:00 -------- d-----w- c:\windows\system32\catroot2

2013-02-05 05:00:38 303616 ----a-w- C:\SetACL.exe

2013-02-04 15:15:53 290304 ----a-w- C:\subinacl.exe

2013-02-04 05:32:42 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

2013-01-29 09:22:51 -------- d-----w- c:\program files\Malang Pes Club

2013-01-22 16:30:40 -------- d-----w- c:\program files\Windows Updates Downloader

2013-01-17 11:04:17 -------- d-----w- c:\program files\CCleaner

2013-01-16 06:23:28 -------- d-----w- c:\users\toshiba\appdata\local\ApplicationHistory

2013-01-12 04:46:54 110592 ----a-w- c:\windows\system32\TOCRdll.dll

2013-01-12 04:46:53 154896 ----a-w- c:\windows\system32\COMCT232.OCX

2013-01-12 04:46:52 1334032 ----a-w- c:\windows\system32\MSVBVM50.dll

2013-01-12 04:46:52 -------- d-----w- c:\program files\Transym

2013-01-11 13:10:31 -------- d-----w- c:\users\toshiba\appdata\roaming\Online Games Downloader

2013-01-11 13:10:28 -------- d-----w- c:\program files\Online Games Downloader

2013-01-10 15:22:19 -------- d-----w- c:\users\toshiba\appdata\local\PES_2013_Sound_Master_v1

2013-01-10 09:49:46 49152 ----a-w- c:\windows\system32\taskhost.exe

2013-01-10 09:46:08 492032 ----a-w- c:\windows\system32\win32spl.dll

2013-01-10 09:45:40 220160 ----a-w- c:\windows\system32\ncrypt.dll

2013-01-10 09:42:55 2345984 ----a-w- c:\windows\system32\win32k.sys

2013-01-10 09:42:42 1389568 ----a-w- c:\windows\system32\msxml6.dll

2013-01-08 11:14:03 -------- d-----w- c:\program files\EA Games

2013-01-08 10:50:18 -------- d-----w- c:\program files\Activision

2013-01-08 08:57:59 479752 ----a-w- c:\windows\system32\XAudio2_0.dll

2013-01-08 08:57:58 25608 ----a-w- c:\windows\system32\X3DAudio1_3.dll

2013-01-08 08:57:58 238088 ----a-w- c:\windows\system32\xactengine3_0.dll

2013-01-08 08:57:58 1420824 ----a-w- c:\windows\system32\D3DCompiler_37.dll

2013-01-08 08:57:57 462864 ----a-w- c:\windows\system32\d3dx10_37.dll

2013-01-08 08:57:57 3786760 ----a-w- c:\windows\system32\D3DX9_37.dll

2013-01-08 08:51:50 -------- d-----w- c:\program files\Disney Interactive Studios

.

==================== Find3M ====================

.

2013-02-04 05:32:22 861088 ----a-w- c:\windows\system32\npdeployJava1.dll

2013-02-04 05:32:21 782240 ----a-w- c:\windows\system32\deployJava1.dll

2013-01-26 06:49:07 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-01-26 06:49:07 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-01-18 06:53:14 2828 --sha-w- c:\programdata\KGyGaAvL.sys

2013-01-10 09:49:34 626688 ----a-w- c:\windows\system32\usp10.dll

2012-12-30 05:48:29 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys

2012-12-16 14:13:28 295424 ----a-w- c:\windows\system32\atmfd.dll

2012-12-16 14:13:20 34304 ----a-w- c:\windows\system32\atmlib.dll

2012-12-15 05:44:22 2048 ----a-w- c:\windows\system32\tzres.dll

2012-12-15 05:43:37 420864 ----a-w- c:\windows\system32\vbscript.dll

2012-12-15 05:43:37 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2012-12-15 05:43:37 1800704 ----a-w- c:\windows\system32\jscript9.dll

2012-12-15 05:43:37 142848 ----a-w- c:\windows\system32\ieUnatt.exe

2012-12-15 05:43:37 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

2012-12-15 05:43:37 1129472 ----a-w- c:\windows\system32\wininet.dll

2012-12-15 05:38:54 376832 ----a-w- c:\windows\system32\dpnet.dll

2012-12-10 03:00:00 1566208 ----a-w- c:\windows\system32\VSFilter.dll

2012-12-07 03:57:36 44544 ----a-w- c:\windows\system32\agremove.exe

2012-12-07 03:29:13 58288 ----a-w- c:\windows\system32\rpcnet.dll

2012-12-05 14:36:13 0 ----a-w- c:\windows\system32\FAPEED4.tmp

2012-12-05 14:36:12 0 ----a-w- c:\windows\system32\FAPEA3F.tmp

2012-12-05 14:35:06 0 ----a-w- c:\windows\system32\FAPE6E2.tmp

2012-12-05 14:35:05 0 ----a-w- c:\windows\system32\FAPE5C6.tmp

2012-12-05 14:33:20 0 ----a-w- c:\windows\system32\FAP4B59.tmp

2012-12-05 14:33:17 0 ----a-w- c:\windows\system32\FAP3C96.tmp

2012-12-05 14:29:35 0 ----a-w- c:\windows\system32\FAPDCF7.tmp

2012-12-05 14:28:04 0 ----a-w- c:\windows\system32\FAP7942.tmp

2012-12-05 14:21:34 0 ----a-w- c:\windows\system32\FAP85CC.tmp

2012-12-05 14:21:16 0 ----a-w- c:\windows\system32\FAP3E01.tmp

2012-12-05 14:21:10 0 ----a-w- c:\windows\system32\FAP24B4.tmp

2012-12-05 14:21:09 0 ----a-w- c:\windows\system32\FAP23B7.tmp

2012-12-05 14:20:52 0 ----a-w- c:\windows\system32\FAPDEB9.tmp

2012-12-05 14:20:40 0 ----a-w- c:\windows\system32\FAPB288.tmp

2012-12-05 14:20:40 0 ----a-w- c:\windows\system32\FAPB072.tmp

2012-12-05 14:14:42 561664 ----a-w- c:\windows\apppatch\AcLayers.dll

2012-12-03 15:39:40 9373032 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys

2012-12-03 15:39:40 889192 ----a-w- c:\windows\system32\nvdispgenco32.dll

2012-12-03 15:39:40 7819016 ----a-w- c:\windows\system32\nvcuda.dll

2012-12-03 15:39:40 6149904 ----a-w- c:\windows\system32\nvopencl.dll

2012-12-03 15:39:40 2606440 ----a-w- c:\windows\system32\nvcuvid.dll

2012-12-03 15:39:40 2496976 ----a-w- c:\windows\system32\nvapi.dll

2012-12-03 15:39:40 20335976 ----a-w- c:\windows\system32\nvoglv32.dll

2012-12-03 15:39:40 1874280 ----a-w- c:\windows\system32\nvcuvenc.dll

2012-12-03 15:39:40 17559912 ----a-w- c:\windows\system32\nvcompiler.dll

2012-12-03 15:39:40 15122280 ----a-w- c:\windows\system32\nvd3dum.dll

2012-12-03 15:39:40 12603960 ----a-w- c:\windows\system32\nvwgf2um.dll

2012-12-03 15:39:40 1011048 ----a-w- c:\windows\system32\nvdispco32.dll

2012-12-01 04:38:18 2869608 ----a-w- c:\windows\system32\nvsvc.dll

2012-12-01 04:38:13 3984744 ----a-w- c:\windows\system32\nvcpl.dll

2012-12-01 04:37:55 645480 ----a-w- c:\windows\system32\nvvsvc.exe

2012-12-01 04:37:55 62312 ----a-w- c:\windows\system32\nvshext.dll

2012-12-01 04:37:55 2557288 ----a-w- c:\windows\system32\nvsvcr.dll

2012-12-01 04:37:55 108392 ----a-w- c:\windows\system32\nvmctray.dll

2012-11-30 15:43:52 438632 ----a-w- c:\windows\system32\nvStreaming.exe

2012-11-20 16:19:53 73216 ----a-w- c:\windows\system32\WUDFSvc.dll

2012-11-20 16:19:53 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2012-11-20 16:19:53 613888 ----a-w- c:\windows\system32\WUDFx.dll

2012-11-20 16:19:53 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2012-11-20 16:19:53 196608 ----a-w- c:\windows\system32\WUDFHost.exe

2012-11-20 16:19:53 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll

2012-11-20 16:19:53 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2012-11-20 16:19:01 9728 ----a-w- c:\windows\system32\Wdfres.dll

2012-11-20 16:19:01 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

2012-11-20 16:19:01 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

2012-11-20 16:19:01 2560 ----a-w- c:\windows\system32\drivers\en-us\wdf01000.sys.mui

2012-11-20 16:06:36 44032 ----a-w- c:\windows\system32\dhcpcsvc6.dll

2012-11-20 16:06:36 193536 ----a-w- c:\windows\system32\dhcpcore6.dll

2012-11-20 16:03:17 369856 ----a-w- c:\windows\system32\drivers\cng.sys

2012-11-20 16:03:17 247808 ----a-w- c:\windows\system32\schannel.dll

2012-11-20 16:03:17 136560 ----a-w- c:\windows\system32\drivers\ksecpkg.sys

2012-11-20 16:03:17 1039360 ----a-w- c:\windows\system32\lsasrv.dll

2012-11-20 16:02:45 140288 ----a-w- c:\windows\system32\cryptsvc.dll

2012-11-20 16:02:45 1159680 ----a-w- c:\windows\system32\crypt32.dll

2012-11-20 16:02:45 103936 ----a-w- c:\windows\system32\cryptnet.dll

2012-11-20 15:41:04 172544 ----a-w- c:\windows\system32\wintrust.dll

2012-11-20 15:40:54 1211760 ----a-w- c:\windows\system32\drivers\ntfs.sys

2012-11-20 15:40:44 514560 ----a-w- c:\windows\system32\qdvd.dll

2012-11-20 15:40:27 805376 ----a-w- c:\windows\system32\FntCache.dll

2012-11-20 15:40:27 739840 ----a-w- c:\windows\system32\d2d1.dll

2012-11-13 14:53:08 2106216 ----a-w- c:\windows\system32\D3DCompiler_43.dll

2012-11-13 14:53:08 1998168 ----a-w- c:\windows\system32\D3DX9_43.dll

2012-11-13 14:53:00 470880 ----a-w- c:\windows\system32\d3dx10_43.dll

2012-11-13 14:53:00 248672 ----a-w- c:\windows\system32\d3dx11_43.dll

2012-11-13 11:58:56 332 ----a-w- c:\users\toshiba\cpip.reg

.

============= FINISH: 15:18:58,51 ===============

Thanks for your response and advance .

Maurice Naggar · February 6, 2013

Hello iskaa and welcome to MalwareBytes forum.

Older versions of Java pose a security risk. Uninstall Java 6 Update 33

And if you do not need Java for the programs that you use, keep Java off your system .

How to disable Java in various browsers : http://blog.eset.com/2012/08/29/disabling-java-a-safer-way-to-browse

Also see No, Seriously, Just Disable Java in Your Browser Right Now

Do the following task and let me know after it is done. As much as possible, I need for you to get back into normal mode Windows.

We Need to Run a Batch Script

Press the Windows-key on keyboard.
In the box, type notepad and press Enter.

Highlight the contents of the following codebox, and copy and paste that text into NOTEPAD.

@Echo off
del /f /q c:\windows\system32\FAPEED4.tmp
del /f /q c:\windows\system32\FAPEA3F.tmp
del /f /q c:\windows\system32\FAPE6E2.tmp
del /f /q c:\windows\system32\FAPE5C6.tmp
del /f /q c:\windows\system32\FAP4B59.tmp
del /f /q c:\windows\system32\FAP3C96.tmp
del /f /q c:\windows\system32\FAPDCF7.tmp
del /f /q c:\windows\system32\FAP7942.tmp
del /f /q c:\windows\system32\FAP85CC.tmp
del /f /q c:\windows\system32\FAP3E01.tmp
del /f /q c:\windows\system32\FAP24B4.tmp
del /f /q c:\windows\system32\FAP23B7.tmp
del /f /q c:\windows\system32\FAPDEB9.tmp
del /f /q c:\windows\system32\FAPB288.tmp
del /f /q c:\windows\system32\FAPB072.tmp
sc stop wuauserv
sc stop bits
sc config dcomlaunch start= auto
sc config nsi start= auto
sc config dhcp start= auto
sc config rpcss start= auto
sc config winmgmt start= auto
sc config wscsvc start= delayed-auto
sc config bits start= delayed-auto
sc config wuauserv start= delayed-auto
sc config sdrsvc start= manual
sc config vss start= auto
sc config eventlog start= auto
sc config bfe start= auto
sc config eventsystem start= auto
sc start sdrsvc
sc start vss
sc start rpcss
sc start eventsystem
sc start bfe
sc start bits
sc start wuauserv
shutdown -r -t 1
del /f /q "%~f0"

Select File -> Save AS.
Press the Desktop button on the left side of the save dialog.
In the box, type in Fix.bat.
Press .
Close Notepad.
Right click on your desktop, and choose .
Press Yes if prompted by User Account Control.

Let me know after this is done, and if system is useable in normal mode Windows 7.

There is a lot more to follow after this.

Edited February 6, 2013 by Maurice Naggar

Maurice Naggar · February 6, 2013

P.S. Remove by using Control Panel >> Programs and Features

Advance System Care and any other Iobit program you have onboard.

Iobit has a bad reputation and was known to have stolen MalwareBytes intellectual property.

uRun: [Advanced SystemCare 6] "c:\program files\iobit\advanced systemcare 6\ASCTray.exe" /AutoStart That "app" shows as auto-starting with Windows.

iskaalexander93 · February 7, 2013

Done all, after that?

Maurice Naggar · February 7, 2013

Download >> Farbar's Service Scanner utility << and Save to your Desktop.

If using Windows 7 or Vista, Right-Click on fss.exe and select Run As Admisnitrator.

If using XP, double-click to start.

Answer Yes to ok when prompted.

If your firewall then puts out a prompt, again, allow it to run.

Once FSS is on-screen, be sure the following items are checkmarked:

Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update
Windows Defender
Other services

Click on "Scan".

It will create a log (FSS.txt) in the same directory the tool is run.

Copy & Paste contents of FSS.txt into your reply.

iskaalexander93 · February 8, 2013

I run this FSS in safe mode with networking, because I haven't run in normal mode because just can run ini dekstop in 10s after that restart.

This Is Log of FSS

Farbar Service Scanner Version: 30-01-2013

Ran by TOSHIBA (administrator) on 08-02-2013 at 19:58:20

Running from "C:\Users\TOSHIBA\Desktop"

Windows 7 Home Premium Service Pack 1 (X86)

Boot Mode: Network

****************************************************************

Internet Services:

============

Connection Status:

==============

Localhost is accessible.

LAN connected.

Attempt to access Google IP returned error.

Attempt to access Google.com returned error: Other errors

Attempt to access Yahoo IP returned error.

Attempt to access Yahoo.com returned error: Other errors

Windows Firewall:

=============

Firewall Disabled Policy:

==================

System Restore:

============

SDRSVC Service is not running. Checking service configuration:

The start type of SDRSVC service is OK.

The ImagePath of SDRSVC service is OK.

The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:

The start type of VSS service is set to Auto. The default start type is 3.

The ImagePath of VSS service is OK.

System Restore Disabled Policy:

========================

Action Center:

============

wscsvc Service is not running. Checking service configuration:

The start type of wscsvc service is OK.

The ImagePath of wscsvc service is OK.

The ServiceDll of wscsvc service is OK.

Windows Update:

============

wuauserv Service is not running. Checking service configuration:

The start type of wuauserv service is OK.

The ImagePath of wuauserv service is OK.

The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:

The start type of BITS service is OK.

The ImagePath of BITS service is OK.

The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:

The start type of EventSystem service is OK.

The ImagePath of EventSystem service is OK.

The ServiceDll of EventSystem service is OK.

Windows Autoupdate Disabled Policy:

============================

Windows Defender:

==============

Other Services:

==============

File Check:

========

C:\windows\system32\nsisvc.dll => MD5 is legit

C:\windows\system32\Drivers\nsiproxy.sys => MD5 is legit

C:\windows\system32\dhcpcore.dll => MD5 is legit

C:\windows\system32\Drivers\afd.sys => MD5 is legit

C:\windows\system32\Drivers\tdx.sys => MD5 is legit

C:\windows\system32\Drivers\tcpip.sys => MD5 is legit

C:\windows\system32\dnsrslvr.dll => MD5 is legit

C:\windows\system32\mpssvc.dll => MD5 is legit

C:\windows\system32\bfe.dll => MD5 is legit

C:\windows\system32\Drivers\mpsdrv.sys => MD5 is legit

C:\windows\system32\SDRSVC.dll => MD5 is legit

C:\windows\system32\vssvc.exe => MD5 is legit

C:\windows\system32\wscsvc.dll => MD5 is legit

C:\windows\system32\wbem\WMIsvc.dll

[2012-12-15 12:48] - [2012-12-15 12:48] - 0163840 ____A (Microsoft Corporation) 320B13F43726EB73B2D7AE8869AFAACE

C:\windows\system32\wuaueng.dll => MD5 is legit

C:\windows\system32\qmgr.dll => MD5 is legit

C:\windows\system32\es.dll => MD5 is legit

C:\windows\system32\cryptsvc.dll => MD5 is legit

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit

C:\windows\system32\ipnathlp.dll => MD5 is legit

C:\windows\system32\iphlpsvc.dll => MD5 is legit

C:\windows\system32\svchost.exe

[2011-04-08 17:54] - [2011-03-01 15:05] - 0021504 ____A (Microsoft Corporation) ECDB182F885292145826C58252B53000

C:\windows\system32\rpcss.dll => MD5 is legit

**** End of log ****

Maurice Naggar · February 8, 2013

What does this mean?

because just can run ini dekstop in 10s after that restart.

I am not understanding that.

You have the DDS tool from before. Do a new run of DDS.

On Vista/ Windows 7/ Windows 8 do a RIGHT-click on dds and select Run As Administrator :excl:

On Windows XP double click dds to run the tool.

DDS will run in a command prompt window and will take 3 to 4 minutes or so.

Follow and answer the prompts as appropriate.

When done, DDS will open two (2) logs:
DDS.txt
Attach.txt
Save both reports to your desktop.

Please Copy & Paste contents of the following logs in your next reply:

DDS.txt

iskaalexander93 · February 8, 2013

Sorry I was also not clear in

explaining. So my point is when

after I log in into the desktop and

after 10 seconds a pop up restarting

it. So I do not have time for all this

work done in normal mode, so I did all of this process in safe mode.

Attach.txt

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 16/01/2012 16:46:33

System Uptime: 08/02/2013 21:13:14 (0 hours ago)

.

Motherboard: Intel Corp. | | Base Board Product Name

Processor: Intel® Core i3-2330M CPU @ 2.20GHz | CPU1 | 2195/1333mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 156 GiB total, 58,908 GiB free.

D: is FIXED (NTFS) - 146 GiB total, 125,789 GiB free.

E: is FIXED (NTFS) - 279 GiB total, 169,705 GiB free.

F: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Description: Security Processor Loader Driver

Device ID: ROOT\LEGACY_SPLDR\0000

Manufacturer:

Name: Security Processor Loader Driver

PNP Device ID: ROOT\LEGACY_SPLDR\0000

Service: spldr

.

==== System Restore Points ===================

.

No restore point in system.

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

Adobe AIR

Adobe Community Help

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Adobe Photoshop CS4

Adobe Reader 9.5.3

Advanced SystemCare 6

AirFlash

Angry Birds Rio 1.4.2.0

Angry Birds Space

Any Audio Converter 3.0.4

Atheros Bluetooth Filter Driver Package

Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver

Atheros Driver Installation Program

avast! Free Antivirus

BatteryCare 0.9.12.1

BatteryMon V2.1

Bejeweled 3

Bing Bar

Bing Rewards Client Installer

Bluetooth Stack for Windows by Toshiba

Build-a-lot

Cars 2

CCleaner

Chuzzle Deluxe

Conexant HD Audio

CorelDRAW Graphics Suite X4

CorelDRAW Graphics Suite X4 - Capture

CorelDRAW Graphics Suite X4 - Content

CorelDRAW Graphics Suite X4 - Draw

CorelDRAW Graphics Suite X4 - Filters

CorelDRAW Graphics Suite X4 - FontNav

CorelDRAW Graphics SUite X4 - ICA

CorelDRAW Graphics Suite X4 - IPM

CorelDRAW Graphics Suite X4 - Lang EN

CorelDRAW Graphics Suite X4 - PP

CorelDRAW Graphics Suite X4 - VBA

CorelDRAW® Graphics Suite X4

CorelDRAW® Graphics Suite X4 - Windows Shell Extension

CPUID CPU-Z 1.61.5

D3DX10

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition

Facebook Video Calling 1.2.0.287

FATE - The Traitor Soul

Fraps (remove only)

Free Pascal 2.6.0

Free Stuff version 1.5

Game Graphic Studio

GomezPEER

Google Chrome

Google Desktop Search

Google Toolbar for Internet Explorer

gpedt.msc 1.0

HitmanPro 3.7

ImTOO Video Converter Ultimate 6

Indeo Software