TechSpot

Referred by Virus/Malware removal,bad Zero Access and source can't be located

By Chris Corson
Jan 1, 2014
Post New Reply
  1. Last edited by a moderator: Jan 1, 2014
  2. Cobalt006

    Cobalt006 TS Evangelist Posts: 1,777   +241

    Have you tried formatting the computer? Then reinstalling your OS. At this point I do not think a clean install will help you.
     
  3. Tmagic650

    Tmagic650 TS Ambassador Posts: 17,244   +234

    What are the hardware specs of this "sick" computer?
     
  4. Chris Corson

    Chris Corson TS Rookie Topic Starter Posts: 41

    I have done 2 full erases with clean installs in the last couple days,Still running like garbage.....its like I am completely powerless.
     
  5. Chris Corson

    Chris Corson TS Rookie Topic Starter Posts: 41

    Here are specs:

    [​IMG]Summary
    Operating System
    Windows 8.1 64-bit
    CPU
    Cannot initialize SPC dll
    RAM
    Cannot initialize SPC dll
    Motherboard
    Cannot initialize SPC dll
    Graphics
    Cannot initialize SPC dll
    Storage
    931GB Seagate ST1000DM003-1CH162 ATA Device (SATA):
    40 °C
    Optical Drives
    PLDS DVD-RW DS8A9SH ATA Device
    Audio
    USB Audio Device
    [​IMG]Operating System
    Windows 8.1 64-bit
    Computer type: Tablet
    Installation Date: 1/4/2014 7:45:52 PM
    Windows Security Center
    Firewall:
    Enabled
    Windows Update
    AutoUpdate:
    Download Automatically and Install at Set Scheduled time
    Schedule Frequency:
    Every Day
    Schedule Time
    Antivirus
    Antivirus:
    Enabled
    Display Name:
    Windows Defender
    Virus Signature Database:
    Up to date
    .NET Frameworks installed
    v4.5 Full
    v4.5 Client
    Internet Explorer
    Version:
    11.0.9600.16384
    PowerShell
    Version:
    4.0
    Environment Variables
    USERPROFILE:
    C:\Users\Family-PC
    SystemRoot:
    C:\WINDOWS
    User Variables
    TEMP:
    C:\Users\Family-PC\AppData\Local\Temp
    TMP:
    C:\Users\Family-PC\AppData\Local\Temp
    Machine Variables
    ComSpec:
    C:\WINDOWS\system32\cmd.exe
    FP_NO_HOST_CHECK:
    NO
    NUMBER_OF_PROCESSORS:
    2
    OS:
    Windows_NT
    Path:
    C:\WINDOWS\system32
    C:\WINDOWS
    C:\WINDOWS\System32\Wbem
    C:\WINDOWS\System32\WindowsPowerShell\v1.0\
    PATHEXT:
    .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
    PROCESSOR_ARCHITECTURE:
    AMD64
    PROCESSOR_IDENTIFIER:
    Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
    PROCESSOR_LEVEL:
    6
    PROCESSOR_REVISION:
    3a09
    PSModulePath:
    C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\
    SAFEBOOT_OPTION:
    NETWORK
    TEMP:
    C:\WINDOWS\TEMP
    TMP:
    C:\WINDOWS\TEMP
    USERNAME:
    SYSTEM
    windir:
    C:\WINDOWS
    Power Profile
    Active power scheme:
    Home/Office Desk
    Hibernation:
    Enabled
    Turn Off Monitor after: (On AC Power):
    20 min
    Turn Off Hard Disk after: (On AC Power):
    Never
    Suspend after: (On AC Power):
    Never
    Screen saver:
    Disabled
    Uptime
    Current Session
    Current Time:
    1/4/2014 10:07:54 PM
    Current Uptime:
    1,153 sec (0 d, 00 h, 19 m, 13 s)
    Last Boot Time:
    1/4/2014 9:48:41 PM
    Services
    Running:
    Background Tasks Infrastructure Service
    Running:
    Base Filtering Engine
    Running:
    Credential Manager
    Running:
    Cryptographic Services
    Running:
    DCOM Server Process Launcher
    Running:
    DHCP Client
    Running:
    DNS Client
    Running:
    Local Session Manager
    Running:
    Network List Service
    Running:
    Network Location Awareness
    Running:
    Network Store Interface Service
    Running:
    Plug and Play
    Running:
    Power
    Running:
    Remote Procedure Call (RPC)
    Running:
    RPC Endpoint Mapper
    Running:
    System Events Broker
    Running:
    TCP/IP NetBIOS Helper
    Running:
    Touch Keyboard and Handwriting Panel Service
    Running:
    User Profile Service
    Running:
    Windows Connection Manager
    Running:
    Windows Defender Service
    Running:
    Windows Event Log
    Running:
    Windows Firewall
    Running:
    Windows Management Instrumentation
    Running:
    WLAN AutoConfig
    Running:
    Workstation
    Stopped:
    ActiveX Installer (AxInstSV)
    Stopped:
    App Readiness
    Stopped:
    Application Experience
    Stopped:
    Application Identity
    Stopped:
    Application Information
    Stopped:
    Application Layer Gateway Service
    Stopped:
    AppX Deployment Service (AppXSVC)
    Stopped:
    Background Intelligent Transfer Service
    Stopped:
    BitLocker Drive Encryption Service
    Stopped:
    Block Level Backup Engine Service
    Stopped:
    Bluetooth Support Service
    Stopped:
    Certificate Propagation
    Stopped:
    CNG Key Isolation
    Stopped:
    COM+ Event System
    Stopped:
    COM+ System Application
    Stopped:
    Computer Browser
    Stopped:
    Device Association Service
    Stopped:
    Device Install Service
    Stopped:
    Device Setup Manager
    Stopped:
    Diagnostic Policy Service
    Stopped:
    Diagnostic Service Host
    Stopped:
    Diagnostic System Host
    Stopped:
    Distributed Link Tracking Client
    Stopped:
    Distributed Transaction Coordinator
    Stopped:
    Encrypting File System (EFS)
    Stopped:
    Extensible Authentication Protocol
    Stopped:
    Family Safety
    Stopped:
    Fax
    Stopped:
    File History Service
    Stopped:
    Function Discovery Provider Host
    Stopped:
    Function Discovery Resource Publication
    Stopped:
    Group Policy Client
    Stopped:
    Health Key and Certificate Management
    Stopped:
    HomeGroup Listener
    Stopped:
    HomeGroup Provider
    Stopped:
    Human Interface Device Service
    Stopped:
    Hyper-V Data Exchange Service
    Stopped:
    Hyper-V Guest Service Interface
    Stopped:
    Hyper-V Guest Shutdown Service
    Stopped:
    Hyper-V Heartbeat Service
    Stopped:
    Hyper-V Remote Desktop Virtualization Service
    Stopped:
    Hyper-V Time Synchronization Service
    Stopped:
    Hyper-V Volume Shadow Copy Requestor
    Stopped:
    IKE and AuthIP IPsec Keying Modules
    Stopped:
    Intel Content Protection HECI Service
    Stopped:
    Interactive Services Detection
    Stopped:
    Internet Connection Sharing (ICS)
    Stopped:
    Internet Explorer ETW Collector Service
    Stopped:
    IP Helper
    Stopped:
    IPsec Policy Agent
    Stopped:
    KtmRm for Distributed Transaction Coordinator
    Stopped:
    Link-Layer Topology Discovery Mapper
    Stopped:
    Microsoft Account Sign-in Assistant
    Stopped:
    Microsoft iSCSI Initiator Service
    Stopped:
    Microsoft Software Shadow Copy Provider
    Stopped:
    Microsoft Storage Spaces SMP
    Stopped:
    Multimedia Class Scheduler
    Stopped:
    Net.Tcp Port Sharing Service
    Stopped:
    Netlogon
    Stopped:
    Network Access Protection Agent
    Stopped:
    Network Connected Devices Auto-Setup
    Stopped:
    Network Connection Broker
    Stopped:
    Network Connections
    Stopped:
    Network Connectivity Assistant
    Stopped:
    Optimize drives
    Stopped:
    Peer Name Resolution Protocol
    Stopped:
    Peer Networking Grouping
    Stopped:
    Peer Networking Identity Manager
    Stopped:
    Performance Counter DLL Host
    Stopped:
    Performance Logs & Alerts
    Stopped:
    PNRP Machine Name Publication Service
    Stopped:
    Portable Device Enumerator Service
    Stopped:
    Print Spooler
    Stopped:
    Printer Extensions and Notifications
    Stopped:
    Problem Reports and Solutions Control Panel Support
    Stopped:
    Program Compatibility Assistant Service
    Stopped:
    Quality Windows Audio Video Experience
    Stopped:
    Remote Access Auto Connection Manager
    Stopped:
    Remote Access Connection Manager
    Stopped:
    Remote Desktop Configuration
    Stopped:
    Remote Desktop Services
    Stopped:
    Remote Desktop Services UserMode Port Redirector
    Stopped:
    Remote Procedure Call (RPC) Locator
    Stopped:
    Remote Registry
    Stopped:
    Routing and Remote Access
    Stopped:
    Secondary Logon
    Stopped:
    Secure Socket Tunneling Protocol Service
    Stopped:
    Security Accounts Manager
    Stopped:
    Security Center
    Stopped:
    Sensor Monitoring Service
    Stopped:
    Server
    Stopped:
    Shell Hardware Detection
    Stopped:
    Smart Card
    Stopped:
    Smart Card Device Enumeration Service
    Stopped:
    Smart Card Removal Policy
    Stopped:
    SNMP Trap
    Stopped:
    Software Protection
    Stopped:
    Spot Verifier
    Stopped:
    SSDP Discovery
    Stopped:
    Still Image Acquisition Events
    Stopped:
    Storage Service
    Stopped:
    Superfetch
    Stopped:
    System Event Notification Service
    Stopped:
    Task Scheduler
    Stopped:
    Telephony
    Stopped:
    Themes
    Stopped:
    Thread Ordering Server
    Stopped:
    Time Broker
    Stopped:
    UPnP Device Host
    Stopped:
    Virtual Disk
    Stopped:
    Volume Shadow Copy
    Stopped:
    WebClient
    Stopped:
    Windows Audio
    Stopped:
    Windows Audio Endpoint Builder
    Stopped:
    Windows Biometric Service
    Stopped:
    Windows Color System
    Stopped:
    Windows Connect Now - Config Registrar
    Stopped:
    Windows Defender Network Inspection Service
    Stopped:
    Windows Driver Foundation - User-mode Driver Framework
    Stopped:
    Windows Encryption Provider Host Service
    Stopped:
    Windows Error Reporting Service
    Stopped:
    Windows Event Collector
    Stopped:
    Windows Font Cache Service
    Stopped:
    Windows Image Acquisition (WIA)
    Stopped:
    Windows Installer
    Stopped:
    Windows Location Framework Service
    Stopped:
    Windows Media Player Network Sharing Service
    Stopped:
    Windows Modules Installer
    Stopped:
    Windows Remote Management (WS-Management)
    Stopped:
    Windows Search
    Stopped:
    Windows Store Service (WSService)
    Stopped:
    Windows Time
    Stopped:
    Windows Update
    Stopped:
    WinHTTP Web Proxy Auto-Discovery Service
    Stopped:
    Wired AutoConfig
    Stopped:
    WMI Performance Adapter
    Stopped:
    Work Folders
    Stopped:
    WWAN AutoConfig
    TimeZone
    TimeZone:
    GMT -5:00 Hours
    Language:
    English (United States)
    Location:
    United States
    Format:
    English (United States)
    Currency:
    $
    Date Format:
    M/d/yyyy
    Time Format:
    h:mm:ss tt
    Scheduler
    No tasks currently running
    System Folders
    Application Data:
    C:\ProgramData
    Cookies:
    C:\Users\Family-PC\AppData\Local\Microsoft\Windows\INetCookies
    Desktop:
    C:\Users\Family-PC\Desktop
    Documents:
    C:\Users\Public\Documents
    Fonts:
    C:\WINDOWS\Fonts
    Global Favorites:
    C:\Users\Family-PC\Favorites
    Internet History:
    C:\Users\Family-PC\AppData\Local\Microsoft\Windows\History
    Local Application Data:
    C:\Users\Family-PC\AppData\Local
    Music:
    C:\Users\Public\Music
    Path for burning CD:
    C:\Users\Family-PC\AppData\Local\Microsoft\Windows\Burn\Burn
    Physical Desktop:
    C:\Users\Family-PC\Desktop
    Pictures:
    C:\Users\Public\Pictures
    Program Files:
    C:\Program Files
    Public Desktop:
    C:\Users\Public\Desktop
    Start Menu:
    C:\ProgramData\Microsoft\Windows\Start Menu
    Start Menu Programs:
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs
    Startup:
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    Templates:
    C:\ProgramData\Microsoft\Windows\Templates
    Temporary Internet Files:
    C:\Users\Family-PC\AppData\Local\Microsoft\Windows\INetCache
    User Favorites:
    C:\Users\Family-PC\Favorites
    Videos:
    C:\Users\Public\Videos
    Windows Directory:
    C:\WINDOWS
    Windows/System:
    C:\WINDOWS\system32
    Process List
    csrss.exe
    Process ID:
    372
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Memory Usage:
    3.34 MB
    Peak Memory Usage:
    3.39 MB
    csrss.exe
    Process ID:
    424
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Memory Usage:
    26 MB
    Peak Memory Usage:
    27 MB
    ctfmon.exe
    Process ID:
    1240
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\WINDOWS\system32\ctfmon.exe
    Memory Usage:
    4.05 MB
    Peak Memory Usage:
    4.07 MB
    dllhost.exe
    Process ID:
    1480
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\WINDOWS\system32\DllHost.exe
    Memory Usage:
    12 MB
    Peak Memory Usage:
    13 MB
    dllhost.exe
    Process ID:
    2616
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\WINDOWS\system32\DllHost.exe
    Memory Usage:
    5.07 MB
    Peak Memory Usage:
    5.07 MB
    dllhost.exe
    Process ID:
    2648
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\WINDOWS\system32\DllHost.exe
    Memory Usage:
    6.18 MB
    Peak Memory Usage:
    6.18 MB
    dwm.exe
    Process ID:
    708
    User:
    DWM-1
    Domain:
    Window Manager
    Path:
    C:\WINDOWS\system32\dwm.exe
    Memory Usage:
    68 MB
    Peak Memory Usage:
    124 MB
    explorer.exe
    Process ID:
    1152
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\WINDOWS\Explorer.EXE
    Memory Usage:
    82 MB
    Peak Memory Usage:
    82 MB
    iexplore.exe
    Process ID:
    1864
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Program Files\Internet Explorer\iexplore.exe
    Memory Usage:
    39 MB
    Peak Memory Usage:
    43 MB
    iexplore.exe
    Process ID:
    1908
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    Memory Usage:
    259 MB
    Peak Memory Usage:
    274 MB
    iexplore.exe
    Process ID:
    276
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    Memory Usage:
    92 MB
    Peak Memory Usage:
    214 MB
    iexplore.exe
    Process ID:
    1308
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    Memory Usage:
    89 MB
    Peak Memory Usage:
    222 MB
    iexplore.exe
    Process ID:
    1332
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    Memory Usage:
    99 MB
    Peak Memory Usage:
    150 MB
    iexplore.exe
    Process ID:
    2068
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    Memory Usage:
    46 MB
    Peak Memory Usage:
    73 MB
    lsass.exe
    Process ID:
    516
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\lsass.exe
    Memory Usage:
    9.66 MB
    Peak Memory Usage:
    9.75 MB
    MsMpEng.exe
    Process ID:
    872
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Memory Usage:
    41 MB
    Peak Memory Usage:
    305 MB
    notepad.exe
    Process ID:
    1784
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\WINDOWS\system32\NOTEPAD.EXE
    Memory Usage:
    11 MB
    Peak Memory Usage:
    11 MB
    RuntimeBroker.exe
    Process ID:
    1800
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Windows\System32\RuntimeBroker.exe
    Memory Usage:
    8.89 MB
    Peak Memory Usage:
    8.94 MB
    services.exe
    Process ID:
    508
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Memory Usage:
    4.76 MB
    Peak Memory Usage:
    4.78 MB
    smss.exe
    Process ID:
    300
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Memory Usage:
    1.07 MB
    Peak Memory Usage:
    1.10 MB
    Speccy64.exe
    Process ID:
    2684
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Program Files\Speccy\Speccy64.exe
    Memory Usage:
    24 MB
    Peak Memory Usage:
    24 MB
    svchost.exe
    Process ID:
    576
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\svchost.exe
    Memory Usage:
    8.91 MB
    Peak Memory Usage:
    9.10 MB
    svchost.exe
    Process ID:
    620
    User:
    NETWORK SERVICE
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\svchost.exe
    Memory Usage:
    5.77 MB
    Peak Memory Usage:
    5.79 MB
    svchost.exe
    Process ID:
    720
    User:
    LOCAL SERVICE
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\System32\svchost.exe
    Memory Usage:
    11 MB
    Peak Memory Usage:
    12 MB
    svchost.exe
    Process ID:
    764
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\svchost.exe
    Memory Usage:
    15 MB
    Peak Memory Usage:
    17 MB
    svchost.exe
    Process ID:
    828
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\System32\svchost.exe
    Memory Usage:
    11 MB
    Peak Memory Usage:
    11 MB
    svchost.exe
    Process ID:
    860
    User:
    LOCAL SERVICE
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\svchost.exe
    Memory Usage:
    6.72 MB
    Peak Memory Usage:
    6.72 MB
    svchost.exe
    Process ID:
    884
    User:
    NETWORK SERVICE
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\svchost.exe
    Memory Usage:
    13 MB
    Peak Memory Usage:
    15 MB
    svchost.exe
    Process ID:
    992
    User:
    LOCAL SERVICE
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\svchost.exe
    Memory Usage:
    13 MB
    Peak Memory Usage:
    14 MB
    System
    Process ID:
    4
    Memory Usage:
    1.25 MB
    Peak Memory Usage:
    3.35 MB
    System Idle Process
    Process ID:
    0
    TabTip.exe
    Process ID:
    1676
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
    Memory Usage:
    8.11 MB
    Peak Memory Usage:
    8.11 MB
    TabTip32.exe
    Process ID:
    1708
    User:
    Family-PC
    Domain:
    Family
    Path:
    C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
    Memory Usage:
    2.86 MB
    Peak Memory Usage:
    2.86 MB
    wininit.exe
    Process ID:
    416
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\wininit.exe
    Memory Usage:
    3.59 MB
    Peak Memory Usage:
    3.64 MB
    winlogon.exe
    Process ID:
    468
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\winlogon.exe
    Memory Usage:
    7.69 MB
    Peak Memory Usage:
    16 MB
    WmiPrvSE.exe
    Process ID:
    2804
    User:
    NETWORK SERVICE
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    Memory Usage:
    9.04 MB
    Peak Memory Usage:
    9.08 MB
    WmiPrvSE.exe
    Process ID:
    2900
    User:
    SYSTEM
    Domain:
    NT AUTHORITY
    Path:
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    Memory Usage:
    5.88 MB
    Peak Memory Usage:
    5.97 MB
    Device Tree
    ACPI x64-based PC
    Microsoft ACPI-Compliant System
    ACPI Fan
    ACPI Fan
    ACPI Fan
    ACPI Fan
    ACPI Fan
    ACPI Fixed Feature Button
    ACPI Thermal Zone
    ACPI Thermal Zone
    Intel Pentium CPU G2030 @ 3.00GHz
    Intel Pentium CPU G2030 @ 3.00GHz
    Motherboard resources
    System board
    PCI Express Root Complex
    Intel 6 Series/C200 Series Chipset Family PCI Express Root Port 1 - 1C10
    Intel HD Graphics
    Intel Management Engine Interface
    Motherboard resources
    SM Bus Controller
    Xeon processor E3-1200 v2/3rd Gen Core processor DRAM Controller - 0150
    Intel(R) 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C2D
    USB Root Hub
    Generic USB Hub
    USB Composite Device
    USB Input Device
    HID Keyboard Device
    USB Input Device
    HID-compliant consumer control device
    HID-compliant system controller
    High Definition Audio Controller
    High Definition Audio Device
    High Definition Audio Device
    Intel(R) 6 Series/C200 Series Chipset Family PCI Express Root Port 3 - 1C14
    Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
    Microsoft Wi-Fi Direct Virtual Adapter
    Intel(R) 6 Series/C200 Series Chipset Family PCI Express Root Port 5 - 1C18
    PCI Device
    Intel(R) 6 Series/C200 Series Chipset Family PCI Express Root Port 6 - 1C1A
    Realtek PCIe GBE Family Controller
    Intel(R) 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C26
    USB Root Hub
    Generic USB Hub
    USB Input Device
    HID-compliant mouse
    USB Composite Device
    Lenovo USB2.0 Audio
    Lenovo USB2.0 UVC Camera
    USB Composite Device
    USB Input Device
    HID-compliant mouse
    HID-compliant touch screen
    Microsoft Input Configuration Device
    USB Input Device
    HID-compliant vendor-defined device
    HID-compliant whiteboard
    USB Input Device
    HID-compliant mouse
    Intel(R) H61 Express Chipset Family LPC Interface Controller - 1C5C
    ACPI Power Button
    ACPI Sleep Button
    Direct memory access controller
    High precision event timer
    Intel 82802 Firmware Hub Device
    Motherboard resources
    Motherboard resources
    Numeric data processor
    Programmable interrupt controller
    Standard PS/2 Keyboard
    System CMOS/real time clock
    System timer
    Microsoft ACPI-Compliant Embedded Controller
    Unknown Device
    Unknown Device
    Standard Dual Channel PCI IDE Controller
    ATA Channel 0
    PLDS DVD-RW DS8A9SH ATA Device
    ATA Channel 1
    ST1000DM003-1CH162 ATA Device
    Standard Dual Channel PCI IDE Controller
    ATA Channel 0
    ATA Channel 1
    [​IMG]CPU
    Cannot initialize SPC dll
    [​IMG]RAM
    Cannot initialize SPC dll
    [​IMG]Motherboard
    Cannot initialize SPC dll
    [​IMG]Graphics
    Cannot initialize SPC dll
    [​IMG]Storage
    Hard drives
    ST1000DM003-1CH162 ATA Device
    Manufacturer:
    Seagate
    Heads:
    16
    Cylinders:
    121,601
    Tracks:
    31,008,255
    Sectors:
    1,953,520,065
    SATA type:
    SATA-III 6.0Gb/s
    Device type:
    Fixed
    ATA Standard:
    ATA8-ACS
    Serial Number:
    Z1D4G397
    LBA Size:
    48-bit LBA
    Power On Count:
    554 times
    Power On Time:
    112.8 days
    Speed:
    7200 RPM
    Features:
    S.M.A.R.T., NCQ
    Transfer Mode:
    SATA III
    Interface:
    SATA
    Capacity:
    931 GB
    Real size:
    1,000,204,886,016 bytes
    RAID Type:
    None
    S.M.A.R.T
    Status:
    Good
    Temperature:
    40 °C
    Temperature Range:
    OK (less than 50 °C)
    01 Read Error Rate:
    114 (099) Data 0004B6F8B8
    03 Spin-Up Time:
    098 (097) Data 0000000000
    04 Start/Stop Count:
    100 (100) Data 000000024D
    05 Reallocated Sectors Count:
    100 (100) Data 0000000000
    07 Seek Error Rate:
    080 (060) Data 0006B5FFED
    09 Power-On Hours (POH):
    097 (097) Data 0000000A92
    0A Spin Retry Count:
    100 (100) Data 0000000000
    0C Device Power Cycle Count:
    100 (100) Data 000000022A
    B7 SATA Downshift Error Count:
    100 (100) Data 0000000000
    B8 End-to-End error / IOEDC:
    100 (100) Data 0000000000
    BB Reported Uncorrectable Errors:
    100 (100) Data 0000000000
    BC Command Timeout:
    100 (100) Data 000000000F
    BD High Fly Writes (WDC):
    100 (100) Data 0000000000
    BE Temperature Difference from 100:
    060 (049) Data 0028280028
    BF G-sense error rate:
    100 (100) Data 0000000000
    C0 Power-off Retract Count:
    100 (100) Data 000000011D
    C1 Load/Unload Cycle Count:
    100 (100) Data 000000024F
    C2 Temperature:
    040 (051) Data 0000000028
    C5 Current Pending Sector Count:
    100 (100) Data 0000000000
    C6 Uncorrectable Sector Count:
    100 (100) Data 0000000000
    C7 UltraDMA CRC Error Count:
    200 (200) Data 0000000000
    F0 Head Flying Hours:
    100 (253) Data 0000000AA3
    F1 Total LBAs Written:
    100 (253) Data 0036B9D3C5
    F2 Total LBAs Read:
    100 (253) Data 00CF221A50
    Partition 0
    Partition ID:
    Disk #0, Partition #0
    Size:
    300 MB
    Partition 1
    Partition ID:
    Disk #0, Partition #1
    Size:
    100 MB
    Partition 2
    Partition ID:
    Disk #0, Partition #2
    Disk Letter:
    C:
    File System:
    NTFS
    Volume Serial Number:
    F6E70CF8
    Size:
    930 GB
    Used Space:
    18.2 GB (2%)
    Free Space:
    912 GB (98%)
    [​IMG]Optical Drives
    PLDS DVD-RW DS8A9SH ATA Device
    Media Type:
    DVD Writer
    Name:
    PLDS DVD-RW DS8A9SH ATA Device
    Availability:
    Running/Full Power
    Capabilities:
    Random Access, Supports Writing, Supports Removable Media
    Read capabilities:
    CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
    Write capabilities:
    CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
    Config Manager Error Code:
    Device is working properly
    Config Manager User Config:
    FALSE
    Drive:
    E:
    Media Loaded:
    FALSE
    SCSI Bus:
    0
    SCSI Logical Unit:
    0
    SCSI Port:
    0
    SCSI Target Id:
    0
    Status:
    OK
    [​IMG]Audio
    Sound Cards
    USB Audio Device
    High Definition Audio Device
    High Definition Audio Device
    [​IMG]Peripherals
    HID Keyboard Device
    Device Kind:
    Keyboard
    Device Name:
    HID Keyboard Device
    Vendor:
    Unknown
    Location:
    USB Input Device
    Driver
    Date:
    6-21-2006
    Version:
    6.3.9600.16384
    File:
    C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    File:
    C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    Standard PS/2 Keyboard
    Device Kind:
    Keyboard
    Device Name:
    Standard PS/2 Keyboard
    Vendor:
    PNP
    Location:
    Intel H61 Express Chipset Family LPC Interface Controller - 1C5C
    Driver
    Date:
    6-21-2006
    Version:
    6.3.9600.16384
    File:
    C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    File:
    C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    HID-compliant mouse
    Device Kind:
    Mouse
    Device Name:
    HID-compliant mouse
    Vendor:
    Unknown
    Location:
    USB Input Device
    Driver
    Date:
    6-21-2006
    Version:
    6.3.9600.16384
    File:
    C:\WINDOWS\system32\DRIVERS\mouhid.sys
    File:
    C:\WINDOWS\system32\DRIVERS\mouclass.sys
    HID-compliant mouse
    Device Kind:
    Mouse
    Device Name:
    HID-compliant mouse
    Vendor:
    Unknown
    Location:
    USB Input Device
    Driver
    Date:
    6-21-2006
    Version:
    6.3.9600.16384
    File:
    C:\WINDOWS\system32\DRIVERS\mouhid.sys
    File:
    C:\WINDOWS\system32\DRIVERS\mouclass.sys
    HID-compliant mouse
    Device Kind:
    Mouse
    Device Name:
    HID-compliant mouse
    Vendor:
    Unknown
    Location:
    USB Input Device
    Driver
    Date:
    6-21-2006
    Version:
    6.3.9600.16384
    File:
    C:\WINDOWS\system32\DRIVERS\mouhid.sys
    File:
    C:\WINDOWS\system32\DRIVERS\mouclass.sys
    USB Video Device
    Device Kind:
    Camera/scanner
    Device Name:
    USB Video Device
    Vendor:
    Z-Star Microelectronics
    Comment:
    Lenovo USB2.0 UVC Camera
    Location:
    0000.001d.0000.001.005.000.000.000.000
    Driver
    Date:
    6-21-2006
    Version:
    6.3.9600.16384
    File:
    C:\WINDOWS\system32\drivers\usbvideo.sys
    USB Audio Device
    Device Kind:
    Audio device
    Device Name:
    USB Audio Device
    Vendor:
    Z-Star Microelectronics
    Comment:
    Lenovo USB2.0 Audio
    Location:
    0000.001d.0000.001.005.000.000.000.000
    Driver
    Date:
    8-22-2013
    Version:
    6.3.9600.16384
    File:
    C:\WINDOWS\system32\drivers\USBAUDIO.sys
    File:
    C:\WINDOWS\system32\drivers\drmk.sys
    File:
    C:\WINDOWS\system32\drivers\portcls.sys
    File:
    C:\WINDOWS\system32\WMALFXGFXDSP.dll
    File:
    C:\WINDOWS\system32\SysFxUI.dll
    Printers
    [​IMG]Network
    You are connected to the internet
    Connected through:
    Realtek PCIe GBE Family Controller
    Adapter Type:
    Ethernet
    NetBIOS over TCP/IP:
    Enabled via DHCP
    NETBIOS Node Type:
    Hybrid node
    Link Speed:
    0 Bps
    Computer Name
    NetBIOS Name:
    FAMILY
    DNS Name:
    Family
    Membership:
    Part of workgroup
    Workgroup:
    WORKGROUP
    Remote Desktop
    Disabled
    Console
    State:
    Active
    Domain:
    Family
    WinInet Info
    LAN Connection
    Local system uses a local area network to connect to the Internet
    Local system has RAS to connect to the Internet
    Sharing and Discovery
    File and printer sharing service:
    Enabled
    Simple File Sharing:
    Disabled
    Administrative Shares:
    Enabled
    Network access: Sharing and security model for local accounts:
    Classic - local users authenticate as themselves
    Adapters List
    Microsoft Wi-Fi Direct Virtual Adapter
    Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
    Realtek PCIe GBE Family Controller
    IP Address:
    192.168.1.2
    Subnet mask:
    255.255.255.0
    Gateway server:
    192.168.1.1
    DHCP:
    192.168.1.1
    DNS Server:
    192.168.1.1
    Network Shares
    No network shares
    Current TCP Connections
    C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE (1908)
    Local 192.168.1.2:49375:
    ESTABLISHED Remote 173.194.43.54:443 (Querying... ) (HTTPS)
    Local 192.168.1.2:49388:
    ESTABLISHED Remote 173.194.43.54:443 (Querying... ) (HTTPS)
    lsass.exe (516)
    Local 0.0.0.0:49155:
    LISTEN
    services.exe (508)
    Local 0.0.0.0:49154:
    LISTEN
    svchost.exe (620)
    Local 0.0.0.0:135 (DCE):
    LISTEN
    svchost.exe (720)
    Local 0.0.0.0:49153:
    LISTEN
    System Process
    Local 192.168.1.2:49733:
    TIME-WAIT Remote 108.171.164.204:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49745:
    TIME-WAIT Remote 205.251.251.49:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49749:
    TIME-WAIT Remote 74.125.226.198:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49750:
    TIME-WAIT Remote 74.125.226.198:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49751:
    TIME-WAIT Remote 192.33.31.101:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49757:
    TIME-WAIT Remote 31.13.69.80:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49758:
    TIME-WAIT Remote 31.13.69.80:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49762:
    TIME-WAIT Remote 54.230.53.251:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49708:
    TIME-WAIT Remote 74.125.226.199:443 (Querying... ) (HTTPS)
    Local 192.168.1.2:49709:
    TIME-WAIT Remote 74.125.226.199:443 (Querying... ) (HTTPS)
    Local 192.168.1.2:49721:
    TIME-WAIT Remote 74.125.226.193:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49722:
    TIME-WAIT Remote 74.125.226.193:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49725:
    TIME-WAIT Remote 173.194.43.11:443 (Querying... ) (HTTPS)
    Local 192.168.1.2:49726:
    TIME-WAIT Remote 173.194.43.11:443 (Querying... ) (HTTPS)
    Local 192.168.1.2:49727:
    TIME-WAIT Remote 173.194.43.15:443 (Querying... ) (HTTPS)
    Local 192.168.1.2:49728:
    TIME-WAIT Remote 173.194.43.15:443 (Querying... ) (HTTPS)
    Local 192.168.1.2:49731:
    TIME-WAIT Remote 108.171.164.204:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49732:
    TIME-WAIT Remote 108.171.164.204:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49768:
    TIME-WAIT Remote 157.55.185.118:443 (Querying... ) (HTTPS)
    Local 192.168.1.2:49734:
    TIME-WAIT Remote 173.194.68.95:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49735:
    TIME-WAIT Remote 173.194.68.95:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49738:
    TIME-WAIT Remote 54.230.54.143:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49739:
    TIME-WAIT Remote 54.230.54.143:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49740:
    TIME-WAIT Remote 54.230.54.143:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49741:
    TIME-WAIT Remote 54.230.54.143:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49742:
    TIME-WAIT Remote 54.230.54.143:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49743:
    TIME-WAIT Remote 54.230.54.143:80 (Querying... ) (HTTP)
    Local 192.168.1.2:49744:
    TIME-WAIT Remote 205.251.251.49:80 (Querying... ) (HTTP)
    System Process
    Local 192.168.1.2:139 (NetBIOS session service):
    LISTEN
    wininit.exe (416)
    Local 0.0.0.0:49152:
    LISTEN
     
  6. Chris Corson

    Chris Corson TS Rookie Topic Starter Posts: 41

    I ran some MBR scans and have a couple logs....could you help me interpret them?

    MBRCheck, version 1.2.3
    (c) 2010, AD
    Command-line:
    Windows Version:
    Windows Information: (build 9200), 64-bit
    Base Board Manufacturer: LENOVO
    BIOS Manufacturer: LENOVO
    System Manufacturer: LENOVO
    System Product Name: 10110
    Logical Drives Mask: 0x00000014
    Kernel Drivers (total 141):
    0xE1002000 \SystemRoot\system32\ntoskrnl.exe
    0xE1785000 \SystemRoot\system32\hal.dll
    0xE06AB000 \SystemRoot\system32\kd.dll
    0x000AB000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
    0x00111000 \SystemRoot\System32\drivers\werkernel.sys
    0x0011F000 \SystemRoot\System32\drivers\CLFS.SYS
    0x00181000 \SystemRoot\System32\drivers\tm.sys
    0x001A3000 \SystemRoot\system32\PSHED.dll
    0x001B8000 \SystemRoot\system32\BOOTVID.dll
    0x00000000 \SystemRoot\system32\CI.dll
    0x002C7000 \SystemRoot\System32\drivers\msrpc.sys
    0x00324000 \SystemRoot\system32\drivers\Wdf01000.sys
    0x00200000 \SystemRoot\system32\drivers\WDFLDR.SYS
    0x00211000 \SystemRoot\System32\Drivers\acpiex.sys
    0x00229000 \SystemRoot\System32\Drivers\WppRecorder.sys
    0x00234000 \SystemRoot\System32\drivers\ACPI.sys
    0x002B9000 \SystemRoot\System32\drivers\WMILIB.SYS
    0x00459000 \SystemRoot\System32\Drivers\cng.sys
    0x004EF000 \SystemRoot\System32\drivers\msisadrv.sys
    0x004F9000 \SystemRoot\System32\drivers\pci.sys
    0x00542000 \SystemRoot\System32\drivers\vdrvroot.sys
    0x0054F000 \SystemRoot\system32\drivers\pdc.sys
    0x0056B000 \SystemRoot\System32\drivers\partmgr.sys
    0x00583000 \SystemRoot\System32\drivers\spaceport.sys
    0x005E0000 \SystemRoot\System32\drivers\volmgr.sys
    0x00684000 \SystemRoot\System32\drivers\volmgrx.sys
    0x006E3000 \SystemRoot\System32\drivers\pciide.sys
    0x006EB000 \SystemRoot\System32\drivers\PCIIDEX.SYS
    0x006FA000 \SystemRoot\System32\drivers\mountmgr.sys
    0x00715000 \SystemRoot\System32\drivers\atapi.sys
    0x0071F000 \SystemRoot\System32\drivers\ataport.SYS
    0x00754000 \SystemRoot\System32\drivers\EhStorClass.sys
    0x0076E000 \SystemRoot\system32\drivers\fltmgr.sys
    0x007CA000 \SystemRoot\System32\drivers\fileinfo.sys
    0x00600000 \SystemRoot\system32\drivers\WdFilter.sys
    0x00828000 \SystemRoot\System32\Drivers\Ntfs.sys
    0x00A1E000 \SystemRoot\System32\Drivers\ksecdd.sys
    0x00A39000 \SystemRoot\System32\drivers\pcw.sys
    0x00A49000 \SystemRoot\System32\Drivers\Fs_Rec.sys
    0x00A54000 \SystemRoot\system32\drivers\ndis.sys
    0x00B6C000 \SystemRoot\system32\drivers\NETIO.SYS
    0x00644000 \SystemRoot\System32\Drivers\ksecpkg.sys
    0x00C30000 \SystemRoot\System32\drivers\tcpip.sys
    0x00EAE000 \SystemRoot\System32\drivers\fwpkclnt.sys
    0x00F1A000 \SystemRoot\system32\DRIVERS\wfplwfs.sys
    0x00F3F000 \SystemRoot\System32\DRIVERS\fvevol.sys
    0x00400000 \SystemRoot\System32\drivers\volsnap.sys
    0x010C9000 \SystemRoot\System32\drivers\rdyboost.sys
    0x0110E000 \SystemRoot\System32\Drivers\mup.sys
    0x01125000 \SystemRoot\System32\drivers\intelpep.sys
    0x01140000 \SystemRoot\System32\drivers\disk.sys
    0x0115C000 \SystemRoot\System32\drivers\CLASSPNP.SYS
    0x011B2000 \SystemRoot\System32\Drivers\crashdmp.sys
    0x01000000 \SystemRoot\System32\drivers\cdrom.sys
    0x0102E000 \SystemRoot\System32\Drivers\Null.SYS
    0x01037000 \SystemRoot\System32\Drivers\Beep.SYS
    0x0103F000 \SystemRoot\System32\drivers\BasicRender.sys
    0x01477000 \SystemRoot\System32\drivers\dxgkrnl.sys
    0x01400000 \SystemRoot\System32\drivers\watchdog.sys
    0x01412000 \SystemRoot\System32\drivers\dxgmms1.sys
    0x0104D000 \SystemRoot\System32\drivers\BasicDisplay.sys
    0x0105F000 \SystemRoot\System32\Drivers\Npfs.SYS
    0x015F2000 \SystemRoot\System32\Drivers\Msfs.SYS
    0x01073000 \SystemRoot\system32\DRIVERS\tdx.sys
    0x01093000 \SystemRoot\system32\DRIVERS\TDI.SYS
    0x0168E000 \SystemRoot\System32\DRIVERS\netbt.sys
    0x016DA000 \SystemRoot\system32\drivers\afd.sys
    0x0176D000 \SystemRoot\system32\DRIVERS\pacer.sys
    0x01797000 \SystemRoot\system32\DRIVERS\vwififlt.sys
    0x017AF000 \SystemRoot\system32\DRIVERS\netbios.sys
    0x01600000 \SystemRoot\system32\DRIVERS\rdbss.sys
    0x01670000 \SystemRoot\system32\drivers\nsiproxy.sys
    0x0167E000 \SystemRoot\System32\drivers\npsvctrig.sys
    0x017C0000 \SystemRoot\System32\drivers\mssmbios.sys
    0x017CC000 \SystemRoot\System32\Drivers\dfsc.sys
    0x010B1000 \SystemRoot\system32\DRIVERS\ahcache.sys
    0x010A1000 \SystemRoot\System32\drivers\CompositeBus.sys
    0x017F2000 \SystemRoot\system32\DRIVERS\kdnic.sys
    0x00FD2000 \SystemRoot\System32\drivers\umbus.sys
    0x018A5000 \SystemRoot\system32\DRIVERS\igdkmd64.sys
    0x01CC7000 \SystemRoot\System32\Drivers\fastfat.SYS
    0x01D00000 \SystemRoot\System32\drivers\HECIx64.sys
    0x01D11000 \SystemRoot\System32\drivers\usbehci.sys
    0x01D29000 \SystemRoot\System32\drivers\USBPORT.SYS
    0x01D98000 \SystemRoot\System32\drivers\HDAudBus.sys
    0x01E84000 \SystemRoot\system32\DRIVERS\rtwlane.sys
    0x02074000 \SystemRoot\System32\drivers\vwifibus.sys
    0x02081000 \SystemRoot\system32\DRIVERS\Rt630x64.sys
    0x02115000 \SystemRoot\System32\drivers\i8042prt.sys
    0x02134000 \SystemRoot\System32\drivers\kbdclass.sys
    0x02144000 \SystemRoot\System32\drivers\intelppm.sys
    0x02162000 \SystemRoot\System32\drivers\NdisVirtualBus.sys
    0x0216D000 \SystemRoot\System32\drivers\swenum.sys
    0x0216F000 \SystemRoot\System32\drivers\ks.sys
    0x021BB000 \SystemRoot\System32\drivers\iwdbus.sys
    0x021C7000 \SystemRoot\System32\drivers\rdpbus.sys
    0x01E00000 \SystemRoot\System32\drivers\usbhub.sys
    0x01E6B000 \SystemRoot\System32\drivers\USBD.SYS
    0x01800000 \SystemRoot\system32\drivers\HdAudio.sys
    0x01DB1000 \SystemRoot\system32\drivers\portcls.sys
    0x021D2000 \SystemRoot\system32\drivers\drmk.sys
    0x021EE000 \SystemRoot\system32\drivers\ksthunk.sys
    0x01E77000 \SystemRoot\System32\Drivers\dump_dumpata.sys
    0x021F4000 \SystemRoot\System32\Drivers\dump_atapi.sys
    0x01866000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
    0x00109000 \SystemRoot\System32\win32k.sys
    0x0187C000 \SystemRoot\System32\drivers\HIDPARSE.SYS
    0x011C7000 \SystemRoot\System32\drivers\usbccgp.sys
    0x01884000 \SystemRoot\System32\drivers\hidusb.sys
    0x00C00000 \SystemRoot\System32\drivers\HIDCLASS.SYS
    0x01892000 \SystemRoot\System32\drivers\kbdhid.sys
    0x011F1000 \SystemRoot\System32\drivers\mouhid.sys
    0x00C1F000 \SystemRoot\System32\drivers\mouclass.sys
    0x00FE3000 \SystemRoot\System32\drivers\monitor.sys
    0x00722000 \SystemRoot\System32\TSDDD.dll
    0x008BA000 \SystemRoot\System32\cdd.dll
    0x001C2000 \SystemRoot\System32\Drivers\usbvideo.sys
    0x00800000 \SystemRoot\system32\drivers\usbaudio.sys
    0x01134000 \SystemRoot\System32\drivers\MTConfig.sys
    0x022EB000 \SystemRoot\system32\drivers\luafv.sys
    0x0230F000 \SystemRoot\system32\DRIVERS\lltdio.sys
    0x02323000 \SystemRoot\system32\DRIVERS\nwifi.sys
    0x02395000 \SystemRoot\system32\DRIVERS\ndisuio.sys
    0x023A9000 \SystemRoot\system32\DRIVERS\rspndr.sys
    0x023C1000 \SystemRoot\system32\DRIVERS\vwifimp.sys
    0x02481000 \SystemRoot\system32\drivers\HTTP.sys
    0x0257B000 \SystemRoot\system32\DRIVERS\bowser.sys
    0x0259B000 \SystemRoot\System32\drivers\mpsdrv.sys
    0x02400000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
    0x025B2000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
    0x02200000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
    0x0224B000 \SystemRoot\system32\drivers\Ndu.sys
    0x02671000 \SystemRoot\system32\drivers\peauth.sys
    0x0271A000 \SystemRoot\System32\Drivers\secdrv.SYS
    0x02725000 \SystemRoot\System32\DRIVERS\srvnet.sys
    0x02768000 \SystemRoot\System32\drivers\tcpipreg.sys
    0x02A6F000 \SystemRoot\System32\DRIVERS\srv2.sys
    0x02B1C000 \SystemRoot\System32\DRIVERS\srv.sys
    0x02BB4000 \SystemRoot\system32\DRIVERS\tunnel.sys
    0x02BE1000 \SystemRoot\System32\drivers\condrv.sys
    0x02A00000 \SystemRoot\system32\Drivers\WdNisDrv.sys
    Processes (total 37):
    0 System Idle Process
    4 System
    292 C:\Windows\System32\smss.exe
    372 csrss.exe
    436 C:\Windows\System32\wininit.exe
    444 csrss.exe
    512 C:\Windows\System32\winlogon.exe
    520 C:\Windows\System32\services.exe
    544 C:\Windows\System32\lsass.exe
    612 C:\Windows\System32\svchost.exe
    656 C:\Windows\System32\svchost.exe
    744 dwm.exe
    760 C:\Windows\System32\svchost.exe
    796 C:\Windows\System32\svchost.exe
    836 C:\Windows\System32\svchost.exe
    920 C:\Windows\System32\svchost.exe
    1020 C:\Windows\System32\svchost.exe
    1008 C:\Windows\System32\spoolsv.exe
    1032 C:\Windows\System32\svchost.exe
    1272 dasHost.exe
    1348 C:\Program Files\Windows Defender\MsMpEng.exe
    1652 C:\Windows\System32\svchost.exe
    1984 C:\Windows\System32\taskhostex.exe
    2140 C:\Windows\explorer.exe
    2240 C:\Program Files\Windows Defender\NisSrv.exe
    2316 C:\Windows\System32\SearchIndexer.exe
    2660 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
    2772 C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
    2984 C:\Windows\System32\svchost.exe
    3048 C:\Windows\System32\igfxtray.exe
    3068 C:\Windows\System32\igfxsrvc.exe
    2080 C:\Windows\System32\hkcmd.exe
    2312 C:\Windows\System32\igfxpers.exe
    1448 C:\Windows\System32\audiodg.exe
    492 C:\Users\Family-PC\Downloads\MBRCheck.exe
    1884 C:\Windows\System32\conhost.exe
    2972 C:\Windows\System32\dllhost.exe
    \\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`21100000 (NTFS)
    PhysicalDrive0 Model Number: ST1000DM003-1CH162, Rev: CC56
    Size Device Name MBR Status
    --------------------------------------------
    931 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
    SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79

    Done!
     
  7. Chris Corson

    Chris Corson TS Rookie Topic Starter Posts: 41

    Code:
    MBRScan v1.1.1
    OS  : Windows 8  (64 bit)
    PROCESSOR  : Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
    BOOT  : Normal Boot
    DATE  : 2014/01/04 (ISO 8601) at 21:37:07
    ________________________________________________________________________________
    DISK  : Device\Harddisk0\DR0 __ST1000DM003-1CH162 (CC56)
    BUS_TYPE  : (0x03)  P-ATA
    USE_PIO  : NO
    MAX_TRANSFER  : 128 Kb
    ALIGNMENT_MASK : word aligned
    ________________________________________________________________________________
    Device\Harddisk0\DR0 931.5 Go  [Fixed] ==> 7 MBR Code
    MBR_MD5  : BED68CE91C2E053FD69123AA25624B63
    MBR_SHA1  : 4D2072E7DB9739F83700EE892AB6CE936568B0D9
    Device\Harddisk0\Partition1 2.00 To   0xEE EFI GPT[1] 
    ________________________________________________________________________________
    ############################### Additional scan ################################
    DRIVER  : C:\WINDOWS\system32\ntoskrnl.exe => Invisible on the disk
    ADDRESS : 0xE1002000
    SIZE  : 7.51 Mo
    DRIVER  : C:\WINDOWS\system32\hal.dll => Invisible on the disk
    ADDRESS : 0xE1785000
    SIZE  : 444.0 Ko
    DRIVER  : C:\WINDOWS\system32\kd.dll => Invisible on the disk
    ADDRESS : 0xE06AB000
    SIZE  : 36.0 Ko
    DRIVER  : C:\WINDOWS\system32\mcupdate_GenuineIntel.dll => Invisible on the disk
    ADDRESS : 0x000AB000
    SIZE  : 408.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\werkernel.sys => Invisible on the disk
    ADDRESS : 0x00111000
    SIZE  : 56.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\CLFS.SYS => Invisible on the disk
    ADDRESS : 0x0011F000
    SIZE  : 392.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\tm.sys => Invisible on the disk
    ADDRESS : 0x00181000
    SIZE  : 136.0 Ko
    DRIVER  : C:\WINDOWS\system32\CI.dll => Invisible on the disk
    ADDRESS : 0x00000000
    SIZE  : 544.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\msrpc.sys => Invisible on the disk
    ADDRESS : 0x002C7000
    SIZE  : 372.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\Wdf01000.sys => Invisible on the disk
    ADDRESS : 0x00324000
    SIZE  : 828.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\WDFLDR.SYS => Invisible on the disk
    ADDRESS : 0x00200000
    SIZE  : 68.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\acpiex.sys => Invisible on the disk
    ADDRESS : 0x00211000
    SIZE  : 96.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\WppRecorder.sys => Invisible on the disk
    ADDRESS : 0x00229000
    SIZE  : 44.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\ACPI.sys => Invisible on the disk
    ADDRESS : 0x00234000
    SIZE  : 532.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\WMILIB.SYS => Invisible on the disk
    ADDRESS : 0x002B9000
    SIZE  : 40.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\cng.sys => Invisible on the disk
    ADDRESS : 0x00459000
    SIZE  : 556.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\msisadrv.sys => Invisible on the disk
    ADDRESS : 0x004EF000
    SIZE  : 40.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\pci.sys => Invisible on the disk
    ADDRESS : 0x004F9000
    SIZE  : 292.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\vdrvroot.sys => Invisible on the disk
    ADDRESS : 0x00542000
    SIZE  : 52.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\pdc.sys => Invisible on the disk
    ADDRESS : 0x0054F000
    SIZE  : 112.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\partmgr.sys => Invisible on the disk
    ADDRESS : 0x0056B000
    SIZE  : 96.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\spaceport.sys => Invisible on the disk
    ADDRESS : 0x00583000
    SIZE  : 372.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\volmgr.sys => Invisible on the disk
    ADDRESS : 0x005E0000
    SIZE  : 84.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\volmgrx.sys => Invisible on the disk
    ADDRESS : 0x00684000
    SIZE  : 380.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\pciide.sys => Invisible on the disk
    ADDRESS : 0x006E3000
    SIZE  : 32.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\PCIIDEX.SYS => Invisible on the disk
    ADDRESS : 0x006EB000
    SIZE  : 60.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\mountmgr.sys => Invisible on the disk
    ADDRESS : 0x006FA000
    SIZE  : 108.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\atapi.sys => Invisible on the disk
    ADDRESS : 0x00715000
    SIZE  : 40.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\ataport.SYS => Invisible on the disk
    ADDRESS : 0x0071F000
    SIZE  : 212.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\EhStorClass.sys => Invisible on the disk
    ADDRESS : 0x00754000
    SIZE  : 104.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\fltmgr.sys => Invisible on the disk
    ADDRESS : 0x0076E000
    SIZE  : 368.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\fileinfo.sys => Invisible on the disk
    ADDRESS : 0x007CA000
    SIZE  : 88.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\WdFilter.sys => Invisible on the disk
    ADDRESS : 0x00600000
    SIZE  : 272.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\Ntfs.sys => Invisible on the disk
    ADDRESS : 0x00828000
    SIZE  : 1.96 Mo
    DRIVER  : C:\WINDOWS\System32\Drivers\ksecdd.sys => Invisible on the disk
    ADDRESS : 0x00A1E000
    SIZE  : 108.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\pcw.sys => Invisible on the disk
    ADDRESS : 0x00A39000
    SIZE  : 64.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\Fs_Rec.sys => Invisible on the disk
    ADDRESS : 0x00A49000
    SIZE  : 44.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\ndis.sys => Invisible on the disk
    ADDRESS : 0x00A54000
    SIZE  : 1.09 Mo
    DRIVER  : C:\WINDOWS\system32\drivers\NETIO.SYS => Invisible on the disk
    ADDRESS : 0x00B6C000
    SIZE  : 484.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\ksecpkg.sys => Invisible on the disk
    ADDRESS : 0x00644000
    SIZE  : 208.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\tcpip.sys => Invisible on the disk
    ADDRESS : 0x00C30000
    SIZE  : 2.49 Mo
    DRIVER  : C:\WINDOWS\System32\drivers\fwpkclnt.sys => Invisible on the disk
    ADDRESS : 0x00EAE000
    SIZE  : 432.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\wfplwfs.sys => Invisible on the disk
    ADDRESS : 0x00F1A000
    SIZE  : 148.0 Ko
    DRIVER  : C:\WINDOWS\System32\DRIVERS\fvevol.sys => Invisible on the disk
    ADDRESS : 0x00F3F000
    SIZE  : 588.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\volsnap.sys => Invisible on the disk
    ADDRESS : 0x00400000
    SIZE  : 320.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\rdyboost.sys => Invisible on the disk
    ADDRESS : 0x010C9000
    SIZE  : 276.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\mup.sys => Invisible on the disk
    ADDRESS : 0x0110E000
    SIZE  : 92.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\intelpep.sys => Invisible on the disk
    ADDRESS : 0x01125000
    SIZE  : 60.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\disk.sys => Invisible on the disk
    ADDRESS : 0x01140000
    SIZE  : 112.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\CLASSPNP.SYS => Invisible on the disk
    ADDRESS : 0x0115C000
    SIZE  : 344.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\crashdmp.sys => Invisible on the disk
    ADDRESS : 0x011B2000
    SIZE  : 84.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\cdrom.sys => Invisible on the disk
    ADDRESS : 0x01000000
    SIZE  : 184.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\Null.SYS => Invisible on the disk
    ADDRESS : 0x0102E000
    SIZE  : 36.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\Beep.SYS => Invisible on the disk
    ADDRESS : 0x01037000
    SIZE  : 32.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\BasicRender.sys => Invisible on the disk
    ADDRESS : 0x0103F000
    SIZE  : 56.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\dxgkrnl.sys => Invisible on the disk
    ADDRESS : 0x01477000
    SIZE  : 1.48 Mo
    DRIVER  : C:\WINDOWS\System32\drivers\watchdog.sys => Invisible on the disk
    ADDRESS : 0x01400000
    SIZE  : 72.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\dxgmms1.sys => Invisible on the disk
    ADDRESS : 0x01412000
    SIZE  : 388.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\BasicDisplay.sys => Invisible on the disk
    ADDRESS : 0x0104D000
    SIZE  : 72.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\Npfs.SYS => Invisible on the disk
    ADDRESS : 0x0105F000
    SIZE  : 80.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\Msfs.SYS => Invisible on the disk
    ADDRESS : 0x015F2000
    SIZE  : 48.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\tdx.sys => Invisible on the disk
    ADDRESS : 0x01073000
    SIZE  : 128.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\TDI.SYS => Invisible on the disk
    ADDRESS : 0x01093000
    SIZE  : 56.0 Ko
    DRIVER  : C:\WINDOWS\System32\DRIVERS\netbt.sys => Invisible on the disk
    ADDRESS : 0x0168E000
    SIZE  : 304.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\afd.sys => Invisible on the disk
    ADDRESS : 0x016DA000
    SIZE  : 588.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\pacer.sys => Invisible on the disk
    ADDRESS : 0x0176D000
    SIZE  : 168.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\vwififlt.sys => Invisible on the disk
    ADDRESS : 0x01797000
    SIZE  : 96.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\netbios.sys => Invisible on the disk
    ADDRESS : 0x017AF000
    SIZE  : 68.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\rdbss.sys => Invisible on the disk
    ADDRESS : 0x01600000
    SIZE  : 448.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\nsiproxy.sys => Invisible on the disk
    ADDRESS : 0x01670000
    SIZE  : 56.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\npsvctrig.sys => Invisible on the disk
    ADDRESS : 0x0167E000
    SIZE  : 48.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\mssmbios.sys => Invisible on the disk
    ADDRESS : 0x017C0000
    SIZE  : 48.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\dfsc.sys => Invisible on the disk
    ADDRESS : 0x017CC000
    SIZE  : 152.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\ahcache.sys => Invisible on the disk
    ADDRESS : 0x010B1000
    SIZE  : 92.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\CompositeBus.sys => Invisible on the disk
    ADDRESS : 0x010A1000
    SIZE  : 60.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\kdnic.sys => Invisible on the disk
    ADDRESS : 0x017F2000
    SIZE  : 44.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\umbus.sys => Invisible on the disk
    ADDRESS : 0x00FD2000
    SIZE  : 68.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\igdkmd64.sys => Invisible on the disk
    ADDRESS : 0x018A5000
    SIZE  : 4.13 Mo
    DRIVER  : C:\WINDOWS\System32\Drivers\fastfat.SYS => Invisible on the disk
    ADDRESS : 0x01CC7000
    SIZE  : 228.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\HECIx64.sys => Invisible on the disk
    ADDRESS : 0x01D00000
    SIZE  : 68.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\usbehci.sys => Invisible on the disk
    ADDRESS : 0x01D11000
    SIZE  : 96.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\USBPORT.SYS => Invisible on the disk
    ADDRESS : 0x01D29000
    SIZE  : 444.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\HDAudBus.sys => Invisible on the disk
    ADDRESS : 0x01D98000
    SIZE  : 100.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\rtwlane.sys => Invisible on the disk
    ADDRESS : 0x01E84000
    SIZE  : 1.94 Mo
    DRIVER  : C:\WINDOWS\System32\drivers\vwifibus.sys => Invisible on the disk
    ADDRESS : 0x02074000
    SIZE  : 52.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\Rt630x64.sys => Invisible on the disk
    ADDRESS : 0x02081000
    SIZE  : 592.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\i8042prt.sys => Invisible on the disk
    ADDRESS : 0x02115000
    SIZE  : 124.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\kbdclass.sys => Invisible on the disk
    ADDRESS : 0x02134000
    SIZE  : 64.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\intelppm.sys => Invisible on the disk
    ADDRESS : 0x02144000
    SIZE  : 120.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\NdisVirtualBus.sys => Invisible on the disk
    ADDRESS : 0x02162000
    SIZE  : 44.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\swenum.sys => Invisible on the disk
    ADDRESS : 0x0216D000
    SIZE  : 8.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\ks.sys => Invisible on the disk
    ADDRESS : 0x0216F000
    SIZE  : 304.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\iwdbus.sys => Invisible on the disk
    ADDRESS : 0x021BB000
    SIZE  : 48.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\rdpbus.sys => Invisible on the disk
    ADDRESS : 0x021C7000
    SIZE  : 44.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\usbhub.sys => Invisible on the disk
    ADDRESS : 0x01E00000
    SIZE  : 428.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\USBD.SYS => Invisible on the disk
    ADDRESS : 0x01E6B000
    SIZE  : 48.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\HdAudio.sys => Invisible on the disk
    ADDRESS : 0x01800000
    SIZE  : 408.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\portcls.sys => Invisible on the disk
    ADDRESS : 0x01DB1000
    SIZE  : 284.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\drmk.sys => Invisible on the disk
    ADDRESS : 0x021D2000
    SIZE  : 112.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\ksthunk.sys => Invisible on the disk
    ADDRESS : 0x021EE000
    SIZE  : 24.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\dump_dumpata.sys => Invisible on the disk
    ADDRESS : 0x01E77000
    SIZE  : 52.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\dump_atapi.sys => Invisible on the disk
    ADDRESS : 0x021F4000
    SIZE  : 40.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\dump_dumpfve.sys => Invisible on the disk
    ADDRESS : 0x01866000
    SIZE  : 88.0 Ko
    DRIVER  : C:\WINDOWS\System32\win32k.sys => Invisible on the disk
    ADDRESS : 0x00109000
    SIZE  : 4.10 Mo
    DRIVER  : C:\WINDOWS\System32\drivers\HIDPARSE.SYS => Invisible on the disk
    ADDRESS : 0x0187C000
    SIZE  : 32.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\usbccgp.sys => Invisible on the disk
    ADDRESS : 0x011C7000
    SIZE  : 168.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\hidusb.sys => Invisible on the disk
    ADDRESS : 0x01884000
    SIZE  : 56.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\HIDCLASS.SYS => Invisible on the disk
    ADDRESS : 0x00C00000
    SIZE  : 124.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\kbdhid.sys => Invisible on the disk
    ADDRESS : 0x01892000
    SIZE  : 56.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\mouhid.sys => Invisible on the disk
    ADDRESS : 0x011F1000
    SIZE  : 52.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\mouclass.sys => Invisible on the disk
    ADDRESS : 0x00C1F000
    SIZE  : 64.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\monitor.sys => Invisible on the disk
    ADDRESS : 0x00FE3000
    SIZE  : 56.0 Ko
    DRIVER  : C:\WINDOWS\System32\TSDDD.dll => Invisible on the disk
    ADDRESS : 0x00722000
    SIZE  : 36.0 Ko
    DRIVER  : C:\WINDOWS\System32\cdd.dll => Invisible on the disk
    ADDRESS : 0x008BA000
    SIZE  : 236.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\usbvideo.sys => Invisible on the disk
    ADDRESS : 0x001C2000
    SIZE  : 208.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\usbaudio.sys => Invisible on the disk
    ADDRESS : 0x00800000
    SIZE  : 120.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\MTConfig.sys => Invisible on the disk
    ADDRESS : 0x01134000
    SIZE  : 40.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\luafv.sys => Invisible on the disk
    ADDRESS : 0x022EB000
    SIZE  : 144.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\lltdio.sys => Invisible on the disk
    ADDRESS : 0x0230F000
    SIZE  : 80.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\nwifi.sys => Invisible on the disk
    ADDRESS : 0x02323000
    SIZE  : 456.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\ndisuio.sys => Invisible on the disk
    ADDRESS : 0x02395000
    SIZE  : 80.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\rspndr.sys => Invisible on the disk
    ADDRESS : 0x023A9000
    SIZE  : 96.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\vwifimp.sys => Invisible on the disk
    ADDRESS : 0x023C1000
    SIZE  : 56.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\HTTP.sys => Invisible on the disk
    ADDRESS : 0x02481000
    SIZE  : 1000.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\bowser.sys => Invisible on the disk
    ADDRESS : 0x0257B000
    SIZE  : 128.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\mpsdrv.sys => Invisible on the disk
    ADDRESS : 0x0259B000
    SIZE  : 92.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\mrxsmb.sys => Invisible on the disk
    ADDRESS : 0x02400000
    SIZE  : 432.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys => Invisible on the disk
    ADDRESS : 0x025B2000
    SIZE  : 228.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys => Invisible on the disk
    ADDRESS : 0x02200000
    SIZE  : 300.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\Ndu.sys => Invisible on the disk
    ADDRESS : 0x0224B000
    SIZE  : 116.0 Ko
    DRIVER  : C:\WINDOWS\system32\drivers\peauth.sys => Invisible on the disk
    ADDRESS : 0x02671000
    SIZE  : 676.0 Ko
    DRIVER  : C:\WINDOWS\System32\Drivers\secdrv.SYS => Invisible on the disk
    ADDRESS : 0x0271A000
    SIZE  : 44.0 Ko
    DRIVER  : C:\WINDOWS\System32\DRIVERS\srvnet.sys => Invisible on the disk
    ADDRESS : 0x02725000
    SIZE  : 268.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\tcpipreg.sys => Invisible on the disk
    ADDRESS : 0x02768000
    SIZE  : 72.0 Ko
    DRIVER  : C:\WINDOWS\System32\DRIVERS\srv2.sys => Invisible on the disk
    ADDRESS : 0x02A6F000
    SIZE  : 692.0 Ko
    DRIVER  : C:\WINDOWS\System32\DRIVERS\srv.sys => Invisible on the disk
    ADDRESS : 0x02B1C000
    SIZE  : 608.0 Ko
    DRIVER  : C:\WINDOWS\system32\DRIVERS\tunnel.sys => Invisible on the disk
    ADDRESS : 0x02BB4000
    SIZE  : 180.0 Ko
    DRIVER  : C:\WINDOWS\System32\drivers\condrv.sys => Invisible on the disk
    ADDRESS : 0x02BE1000
    SIZE  : 64.0 Ko
    DRIVER  : C:\WINDOWS\system32\Drivers\WdNisDrv.sys => Invisible on the disk
    ADDRESS : 0x02A00000
    SIZE  : 132.0 Ko
    BCD EmsSettings {0CE4991B-E6B3-4B16-B23C-5E0D9250E5D9} => BcdLibraryBoolean_EmsEnabled (16000020)
    SystemStartOptions :  NOEXECUTE=OPTIN  NOVGA
    ________________________________________________________________________________
    _______MBR  \Device\Harddisk0\DR0 
    0x00000000  33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00  3À.м.|.À.ؾ.|¿.
    0x00000010  06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00  .¹..üó¤Ph..Ëû¹..
    0x00000020  BD BE 07 80 7E 00 00 7C 0B 0F 85 0E 01 83 C5 10  ½¾..~..|......Å.
    0x00000030  E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00  âñÍ..V.UÆF..ÆF..
    0x00000040  B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09  ´A»ªUÍ.]r..ûUªu.
    0x00000050  F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74  ÷Á..t.þF.f`.~..t
    0x00000060  26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00  &fh....f.v.h..h.
    0x00000070  7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13  |h..h..´B.V..ôÍ.
    0x00000080  9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00  ..Ä..ë.¸..».|.V.
    0x00000090  8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1C FE  .v..N..n.Í.fas.þ
    0x000000A0  4E 11 75 0C 80 7E 00 80 0F 84 8A 00 B2 80 EB 84  N.u..~......².ë.
    0x000000B0  55 32 E4 8A 56 00 CD 13 5D EB 9E 81 3E FE 7D 55  U2ä.V.Í.]ë..>þ}U
    0x000000C0  AA 75 6E FF 76 00 E8 8D 00 75 17 FA B0 D1 E6 64  ªun.v.è..u.ú°Ñæd
    0x000000D0  E8 83 00 B0 DF E6 60 E8 7C 00 B0 FF E6 64 E8 75  è..°ßæ`è|.°.ædèu
    0x000000E0  00 FB B8 00 BB CD 1A 66 23 C0 75 3B 66 81 FB 54  .û¸.»Í.f#Àu;f.ûT
    0x000000F0  43 50 41 75 32 81 F9 02 01 72 2C 66 68 07 BB 00  CPAu2.ù..r,fh.».
    0x00000100  00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66  .fh....fh....fSf
    0x00000110  53 66 55 66 68 00 00 00 00 66 68 00 7C 00 00 66  SfUfh....fh.|..f
    0x00000120  61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00 00 CD  ah...Í.Z2öê.|..Í
    0x00000130  18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07 32 E4  ..·.ë..¶.ë..µ.2ä
    0x00000140  05 00 07 8B F0 AC 3C 00 74 09 BB 07 00 B4 0E CD  ....ð¬<.t.»..´.Í
    0x00000150  10 EB F2 F4 EB FD 2B C9 E4 64 EB 00 24 02 E0 F8  .ëòôëý+Éädë.$.àø
    0x00000160  24 02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69  $.ÃInvalid parti
    0x00000170  74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72  tion table.Error
    0x00000180  20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69  loading operati
    0x00000190  6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E  ng system.Missin
    0x000001A0  67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74  g operating syst
    0x000001B0  65 6D 00 00 00 63 7B 9A F1 D6 F3 E5 00 00 00 00  em...c{.ñÖóå....
    0x000001C0  02 00 EE FF FF FF 01 00 00 00 FF FF FF FF 00 00  ..î.............
    0x000001D0  00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    0x000001E0  00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    0x000001F0  00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA  ..............Uª
    __________________________16_BIT_ASM_CODE
      
    0x0000  33c0  XOR AX, AX  
    0x0002  8ed0  MOV SS, AX  
    0x0004  bc 007c  MOV SP, 0x7c00  
    0x0007  8ec0  MOV ES, AX  
    0x0009  8ed8  MOV DS, AX  
    0x000B  be 007c  MOV SI, 0x7c00  
    0x000E  bf 0006  MOV DI, 0x600  
    0x0011  b9 0002  MOV CX, 0x200  
    0x0014  fc  CLD  
    0x0015  f3 a4  REP MOVSB  
    0x0017  50  PUSH AX  
    0x0018  68 1c06  PUSH 0x61c  
    0x001B  cb  RETF  
    0x001C  fb  STI  
    0x001D  b9 0400  MOV CX, 0x4  
    0x0020  bd be07  MOV BP, 0x7be  
    0x0023  807e 00 00  CMP BYTE [BP+0x0], 0x0  
    0x0027  7c 0b  JL 0x34  
    0x0029  0f85 0e01  JNZ 0x13b  
    0x002D  83c5 10  ADD BP, 0x10  
    0x0030  e2 f1  LOOP 0x23  
    0x0032  cd 18  INT 0x18  
    0x0034  8856 00  MOV [BP+0x0], DL  
    0x0037  55  PUSH BP  
    0x0038  c646 11 05  MOV BYTE [BP+0x11], 0x5  
    0x003C  c646 10 00  MOV BYTE [BP+0x10], 0x0  
    0x0040  b4 41  MOV AH, 0x41  
    0x0042  bb aa55  MOV BX, 0x55aa  
    0x0045  cd 13  INT 0x13  
    0x0047  5d  POP BP  
    0x0048  72 0f  JB 0x59  
    0x004A  81fb 55aa  CMP BX, 0xaa55  
    0x004E  75 09  JNZ 0x59  
    0x0050  f7c1 0100  TEST CX, 0x1  
    0x0054  74 03  JZ 0x59  
    0x0056  fe46 10  INC BYTE [BP+0x10]  
    0x0059  66 60  PUSHAD  
    0x005B  807e 10 00  CMP BYTE [BP+0x10], 0x0  
    0x005F  74 26  JZ 0x87  
    0x0061  66 68 00000000  PUSH 0x0  
    0x0067  66 ff76 08  PUSH DWORD [BP+0x8]  
    0x006B  68 0000  PUSH 0x0  
    0x006E  68 007c  PUSH 0x7c00  
    0x0071  68 0100  PUSH 0x1  
    0x0074  68 1000  PUSH 0x10  
    0x0077  b4 42  MOV AH, 0x42  
    0x0079  8a56 00  MOV DL, [BP+0x0]  
    0x007C  8bf4  MOV SI, SP  
    0x007E  cd 13  INT 0x13  
    0x0080  9f  LAHF  
    0x0081  83c4 10  ADD SP, 0x10  
    0x0084  9e  SAHF  
    0x0085  eb 14  JMP 0x9b  
    0x0087  b8 0102  MOV AX, 0x201  
    0x008A  bb 007c  MOV BX, 0x7c00  
    0x008D  8a56 00  MOV DL, [BP+0x0]  
    0x0090  8a76 01  MOV DH, [BP+0x1]  
    0x0093  8a4e 02  MOV CL, [BP+0x2]  
    0x0096  8a6e 03  MOV CH, [BP+0x3]  
    0x0099  cd 13  INT 0x13  
    0x009B  66 61  POPAD  
    0x009D  73 1c  JAE 0xbb  
    0x009F  fe4e 11  DEC BYTE [BP+0x11]  
    0x00A2  75 0c  JNZ 0xb0  
    0x00A4  807e 00 80  CMP BYTE [BP+0x0], 0x80  
    0x00A8  0f84 8a00  JZ 0x136  
    0x00AC  b2 80  MOV DL, 0x80  
    0x00AE  eb 84  JMP 0x34  
    0x00B0  55  PUSH BP  
    0x00B1  32e4  XOR AH, AH  
    0x00B3  8a56 00  MOV DL, [BP+0x0]  
    0x00B6  cd 13  INT 0x13  
    0x00B8  5d  POP BP  
    0x00B9  eb 9e  JMP 0x59  
    0x00BB  813e fe7d 55aa  CMP WORD [0x7dfe], 0xaa55  
    0x00C1  75 6e  JNZ 0x131  
    0x00C3  ff76 00  PUSH WORD [BP+0x0]  
    0x00C6  e8 8d00  CALL 0x156  
    0x00C9  75 17  JNZ 0xe2  
    0x00CB  fa  CLI  
    0x00CC  b0 d1  MOV AL, 0xd1  
    0x00CE  e6 64  OUT 0x64, AL  
    0x00D0  e8 8300  CALL 0x156  
    0x00D3  b0 df  MOV AL, 0xdf  
    0x00D5  e6 60  OUT 0x60, AL  
    0x00D7  e8 7c00  CALL 0x156  
    0x00DA  b0 ff  MOV AL, 0xff  
    0x00DC  e6 64  OUT 0x64, AL  
    0x00DE  e8 7500  CALL 0x156  
    0x00E1  fb  STI  
    0x00E2  b8 00bb  MOV AX, 0xbb00  
    0x00E5  cd 1a  INT 0x1a  
    0x00E7  66 23c0  AND EAX, EAX  
    0x00EA  75 3b  JNZ 0x127  
    0x00EC  66 81fb 54435041CMP EBX, 0x41504354  
    0x00F3  75 32  JNZ 0x127  
    0x00F5  81f9 0201  CMP CX, 0x102  
    0x00F9  72 2c  JB 0x127  
    0x00FB  66 68 07bb0000  PUSH 0xbb07  
    0x0101  66 68 00020000  PUSH 0x200  
    0x0107  66 68 08000000  PUSH 0x8  
    0x010D  66 53  PUSH EBX  
    0x010F  66 53  PUSH EBX  
    0x0111  66 55  PUSH EBP  
    0x0113  66 68 00000000  PUSH 0x0  
    0x0119  66 68 007c0000  PUSH 0x7c00  
    0x011F  66 61  POPAD  
    0x0121  68 0000  PUSH 0x0  
    0x0124  07  POP ES  
    0x0125  cd 1a  INT 0x1a  
    0x0127  5a  POP DX  
    0x0128  32f6  XOR DH, DH  
    0x012A  ea 007c 0000  JMP FAR 0x0:0x7c00  
    0x012F  cd 18  INT 0x18  
    0x0131  a0 b707  MOV AL, [0x7b7]  
    0x0134  eb 08  JMP 0x13e  
    0x0136  a0 b607  MOV AL, [0x7b6]  
    0x0139  eb 03  JMP 0x13e  
    0x013B  a0 b507  MOV AL, [0x7b5]  
    0x013E  32e4  XOR AH, AH  
    0x0140  05 0007  ADD AX, 0x700  
    0x0143  8bf0  MOV SI, AX  
    0x0145  ac  LODSB  
    0x0146  3c 00  CMP AL, 0x0  
    0x0148  74 09  JZ 0x153  
    0x014A  bb 0700  MOV BX, 0x7  
    0x014D  b4 0e  MOV AH, 0xe  
    0x014F  cd 10  INT 0x10  
    0x0151  eb f2  JMP 0x145  
    0x0153  f4  HLT  
    0x0154  eb fd  JMP 0x153  
    0x0156  2bc9  SUB CX, CX  
    0x0158  e4 64  IN AL, 0x64  
    0x015A  eb 00  JMP 0x15c  
    0x015C  24 02  AND AL, 0x2  
    0x015E  e0 f8  LOOPNZ 0x158  
    0x0160  24 02  AND AL, 0x2  
    0x0162  c3  RET  
    0x0163  49  DEC CX  
    0x0164  6e  OUTSB  
    0x0165  76 61  JBE 0x1c8  
    0x0167  6c  INSB  
    0x0168  6964 20 7061  IMUL SP, [SI+0x20], 0x6170  
    0x016D  72 74  JB 0x1e3  
    0x016F  6974 69 6f6e  IMUL SI, [SI+0x69], 0x6e6f  
    0x0174  2074 61  AND [SI+0x61], DH  
    0x0177  626c 65  BOUND BP, [SI+0x65]  
    0x017A  0045 72  ADD [DI+0x72], AL  
    0x017D  72 6f  JB 0x1ee  
    0x017F  72 20  JB 0x1a1  
    0x0181  6c  INSB  
    0x0182  6f  OUTSW  
    0x0183  61  POPA  
    0x0184  64 696e 67 206f IMUL BP, FS:[BP+0x67], 0x6f20  
    0x018A  70 65  JO 0x1f1  
    0x018C  72 61  JB 0x1ef  
    0x018E  74 69  JZ 0x1f9  
    0x0190  6e  OUTSB  
    0x0191  67 2073 79  AND [EBX+0x79], DH  
    0x0195  73 74  JAE 0x20b  
    0x0197  65 6d  INS WORD GS:[DI], DX  
    0x0199  004d 69  ADD [DI+0x69], CL  
    0x019C  73 73  JAE 0x211  
    0x019E  696e 67 206f  IMUL BP, [BP+0x67], 0x6f20  
    0x01A3  70 65  JO 0x20a  
    0x01A5  72 61  JB 0x208  
    0x01A7  74 69  JZ 0x212  
    0x01A9  6e  OUTSB  
    0x01AA  67 2073 79  AND [EBX+0x79], DH  
    0x01AE  73 74  JAE 0x224  
    0x01B0  65 6d  INS WORD GS:[DI], DX  
    0x01B2  0000  ADD [BX+SI], AL  
    0x01B4  0063 7b  ADD [BP+DI+0x7b], AH  
    0x01B7  9a f1d6 f3e5  CALL FAR 0xe5f3:0xd6f1  
    0x01BC  0000  ADD [BX+SI], AL  
    0x01BE  0000  ADD [BX+SI], AL  
    0x01C0  0200  ADD AL, [BX+SI]  
    0x01C2  ee  OUT DX, AL  
    0x01C3  ff  DB 0xff  
    0x01C4  ff  DB 0xff  
    0x01C5  ff01  INC WORD [BX+DI]  
    0x01C7  0000  ADD [BX+SI], AL  
    0x01C9  00ff  ADD BH, BH  
    0x01CB  ff  DB 0xff  
    0x01CC  ff  DB 0xff  
    0x01CD  ff00  INC WORD [BX+SI]  
    0x01CF  0000  ADD [BX+SI], AL  
    0x01D1  0000  ADD [BX+SI], AL  
    0x01D3  0000  ADD [BX+SI], AL  
    0x01D5  0000  ADD [BX+SI], AL  
    0x01D7  0000  ADD [BX+SI], AL  
    0x01D9  0000  ADD [BX+SI], AL  
    0x01DB  0000  ADD [BX+SI], AL  
    0x01DD  0000  ADD [BX+SI], AL  
    0x01DF  0000  ADD [BX+SI], AL  
    0x01E1  0000  ADD [BX+SI], AL  
    0x01E3  0000  ADD [BX+SI], AL  
    0x01E5  0000  ADD [BX+SI], AL  
    0x01E7  0000  ADD [BX+SI], AL  
    0x01E9  0000  ADD [BX+SI], AL  
    0x01EB  0000  ADD [BX+SI], AL  
    0x01ED  0000  ADD [BX+SI], AL  
    0x01EF  0000  ADD [BX+SI], AL  
    0x01F1  0000  ADD [BX+SI], AL  
    0x01F3  0000  ADD [BX+SI], AL  
    0x01F5  0000  ADD [BX+SI], AL  
    0x01F7  0000  ADD [BX+SI], AL  
    0x01F9  0000  ADD [BX+SI], AL  
    0x01FB  0000  ADD [BX+SI], AL  
    0x01FD  0055 aa  ADD [DI-0x56], DL 
    
     
  8. Tmagic650

    Tmagic650 TS Ambassador Posts: 17,244   +234

    This points to a wrong bios setting or a hardware problem
     
  9. Chris Corson

    Chris Corson TS Rookie Topic Starter Posts: 41

    Any suggestions at all?
     
  10. Tmagic650

    Tmagic650 TS Ambassador Posts: 17,244   +234

    Is this a tablet?
     
  11. Chris Corson

    Chris Corson TS Rookie Topic Starter Posts: 41

    PC.....Touch "All In One"
     
  12. LookinAround

    LookinAround Ex Tech Spotter Posts: 6,491   +183

    I skimmed through your other threads. I see you have a Lenovo C540 All-in-one. I don't have a good answer to your problem. But I do see you have a Seagate drive. Have you checked the disk hardware? Try running the Seagate disk tools. (I never used them myself but would guess they should be straight forward) Look under Utilities
    http://www.seagate.com/support/downloads/
     

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...