Inactive BSOD problem - 7-step removal results

[AJLEO]

Hi I recently posted in the BSOD section requesting help. The computer had occaional BSODs and even existed after a factory default reset. I was told to do the 7step virus removal thing in this forum. I have completed and here are the results.

Mbam log:

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Database version: 6705

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

07/06/2011 18:34:13
mbam-log-2011-06-07 (18-34-13).txt

Scan type: Quick scan
Objects scanned: 156519
Time elapsed: 4 minute(s), 28 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Gmer file is empty. there was nothing there.

DDS

.
DDS (Ver_2011-06-03.01) - NTFSAMD64 NETWORK
Internet Explorer: 8.0.7600.16385
Run by S.SAF at 19:46:52 on 2011-06-07
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.44.1033.18.4026.3347 [GMT 1:00]
.
AV: Norton Internet Security *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
AV: AntiVir Desktop *Enabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AntiVir Desktop *Enabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Norton Internet Security *Disabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
FW: Norton Internet Security *Disabled* {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Users\S.SAF\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Users\S.SAF\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\S.SAF\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0809&m=e527&r=27360511l775l0464z165r4692r243
uDefault_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0809&m=e527&r=27360511l775l0464z165r4692r243
mDefault_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0809&m=e527&r=27360511l775l0464z165r4692r243
mStart Page = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0809&m=e527&r=27360511l775l0464z165r4692r243
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Internet Security\Engine\17.1.0.19\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Internet Security\Engine\17.1.0.19\IPSBHO.DLL
BHO: Partner BHO Class: {83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4} - C:\ProgramData\Partner\Partner.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Internet Security\Engine\17.1.0.19\coIEPlg.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [Google Update] "C:\Users\S.SAF\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
mRunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{1A664675-A719-4C91-AD7F-871240DD0AA7} : DhcpNameServer = 192.168.1.1 192.168.1.1
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Symantec NCO BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\17.1.0.19\coIEPlg.dll
BHO-X64: Symantec NCO BHO - No File
BHO-X64: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\17.1.0.19\IPSBHO.DLL
BHO-X64: Symantec Intrusion Prevention - No File
BHO-X64: Partner BHO Class: {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO-X64: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\17.1.0.19\coIEPlg.dll
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun-x64: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
mRun-x64: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
mRunOnce-x64: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
.
============= SERVICES / DRIVERS ===============
.
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\system32\DRIVERS\L1C62x64.sys --> C:\Windows\system32\DRIVERS\L1C62x64.sys [?]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;C:\Windows\system32\DRIVERS\rtl8192se.sys --> C:\Windows\system32\DRIVERS\rtl8192se.sys [?]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2011-5-20 136360]
S2 AntiVirService;Avira AntiVir Guard;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2011-5-20 269480]
S2 avgntflt;avgntflt;C:\Windows\system32\DRIVERS\avgntflt.sys --> C:\Windows\system32\DRIVERS\avgntflt.sys [?]
S2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-3-30 325200]
S2 ePowerSvc;Acer ePower Service;C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe [2011-5-18 865824]
S2 GREGService;GREGService;C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe [2010-1-8 23584]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-17 135664]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-3-30 13336]
S2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe [2010-3-30 126392]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-6 144640]
S2 Updater Service;Updater Service;C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [2010-3-30 243232]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-17 135664]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-6 50432]
S3 Partner Service;Partner Service;C:\ProgramData\Partner\Partner.exe [2010-3-30 332272]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2010-3-30 225280]
.
=============== Created Last 30 ================
.
2011-06-07 18:30:20 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-06-07 18:30:16 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-06-05 18:44:43 -------- d-----w- C:\Users\S.SAF\AppData\Roaming\Malwarebytes
2011-06-05 18:43:51 -------- d-----w- C:\ProgramData\Malwarebytes
2011-06-05 18:43:48 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-06-05 18:36:03 -------- d-----w- C:\Program Files (x86)\Opera Next
2011-06-05 12:39:04 -------- d-----w- C:\Windows\System32\drivers\NISx64\1108000.005
2011-06-03 17:59:38 -------- d-----w- C:\Users\S.SAF\AppData\Local\{E91342E8-6517-4D3A-8C07-44E895E9F38F}
2011-06-03 12:42:11 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2011-06-03 10:25:17 -------- d-----w- C:\Users\S.SAF\AppData\Local\Tific
2011-06-03 10:25:12 -------- d-----w- C:\Users\S.SAF\AppData\Roaming\Tific
2011-06-03 10:25:07 -------- d-----w- C:\Users\S.SAF\AppData\Local\Symantec
2011-06-03 10:24:27 -------- d-----w- C:\Program Files\Symantec
2011-06-01 17:49:44 -------- d-----w- C:\Users\S.SAF\AppData\Local\{7DBE734F-9C10-4A85-BAA7-4B26B92F7E27}
2011-05-31 19:09:08 -------- d-----w- C:\Users\S.SAF\AppData\Local\{3B8AC109-6A53-4334-A8BD-475D58B61239}
2011-05-30 17:50:21 -------- d-----w- C:\Users\S.SAF\AppData\Roaming\Electronic Arts
2011-05-30 17:12:53 -------- d-----w- C:\Users\S.SAF\AppData\Local\Ilivid Player
2011-05-30 17:12:17 -------- dc-h--w- C:\ProgramData\{5BBA7CF7-C86B-4326-8FF3-C0E40CF3D1C7}
2011-05-30 17:12:09 -------- d-----w- C:\Program Files (x86)\iLivid
2011-05-30 17:11:55 -------- d-----w- C:\Program Files (x86)\Windows iLivid Toolbar
2011-05-30 17:11:41 -------- d-----w- C:\Users\S.SAF\AppData\Local\PackageAware
2011-05-29 19:58:57 -------- d-----w- C:\Users\S.SAF\AppData\Local\{925F9572-48E7-4456-BCAE-3CDEC101E80B}
2011-05-28 16:58:57 -------- d-----w- C:\Users\S.SAF\AppData\Local\{690E5C42-B8FD-4D76-BC9A-8BEE0CA2EF10}
2011-05-27 13:03:09 -------- d-----w- C:\Users\S.SAF\AppData\Local\{4FBAEDC8-629D-4A9F-86A8-1D06A03E408E}
2011-05-27 13:03:08 -------- d-----w- C:\Users\S.SAF\AppData\Local\{2F2F8529-D06D-4577-8F35-1C4ED94CC96C}
2011-05-26 19:54:26 -------- d-----w- C:\ProgramData\boost_interprocess
2011-05-26 09:56:07 -------- d-----w- C:\Users\S.SAF\AppData\Local\{F55FC005-4614-41E5-BA29-37C998C8AC2A}
2011-05-24 19:16:34 -------- d-----w- C:\Users\S.SAF\AppData\Local\{716DAD8D-207A-4DF8-BB03-5F0F15532D7A}
2011-05-23 06:31:26 -------- d-----w- C:\Users\S.SAF\AppData\Local\{353B025C-C5DD-426C-821E-3073606F0D48}
2011-05-22 18:53:48 -------- d-----w- C:\Users\S.SAF\AppData\Local\Adobe
2011-05-22 12:20:21 -------- d-----w- C:\Users\S.SAF\AppData\Local\{56059510-842F-4B47-B7CE-E573D2E8FBE7}
2011-05-22 09:36:51 -------- d-----w- C:\Users\S.SAF\AppData\Local\{AB53031E-6008-4329-87D4-D3621BE57D20}
2011-05-21 19:47:33 -------- d-----w- C:\Users\S.SAF\AppData\Local\WinZip
2011-05-21 19:25:37 -------- d-----w- C:\Users\S.SAF\AppData\Local\Diagnostics
2011-05-21 12:48:54 -------- d-----w- C:\Users\S.SAF\AppData\Local\{AA1EF65C-BC25-4E06-A34B-9BDC69A5EEBA}
2011-05-21 12:41:47 -------- d-----w- C:\Users\S.SAF\AppData\Local\{7BF79B7A-E03F-4E60-9A62-970A3DB04310}
2011-05-20 20:13:37 -------- d-----w- C:\Users\S.SAF\AppData\Roaming\Avira
2011-05-20 19:51:35 83120 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
2011-05-20 19:51:34 -------- d-----w- C:\ProgramData\Avira
2011-05-20 19:51:34 -------- d-----w- C:\Program Files (x86)\Avira
2011-05-20 18:13:43 -------- d-----w- C:\Users\S.SAF\AppData\Local\{DCAAFEF3-573C-4243-980F-30B216F92CF0}
2011-05-20 18:13:25 -------- d-----w- C:\Users\S.SAF\Tracing
2011-05-20 14:31:33 -------- d-----w- C:\Windows\en
2011-05-20 14:25:06 69464 ----a-w- C:\Windows\SysWow64\XAPOFX1_3.dll
2011-05-20 14:25:06 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll
2011-05-20 14:25:03 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll
2011-05-20 14:25:03 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll
2011-05-20 14:23:01 3860992 ----a-w- C:\Windows\System32\UIRibbon.dll
2011-05-20 14:23:01 2983424 ----a-w- C:\Windows\SysWow64\UIRibbon.dll
2011-05-20 14:23:01 1164800 ----a-w- C:\Windows\SysWow64\UIRibbonRes.dll
2011-05-20 14:23:01 1164800 ----a-w- C:\Windows\System32\UIRibbonRes.dll
2011-05-20 14:20:53 -------- d-----w- C:\Users\S.SAF\AppData\Local\Windows Live
2011-05-19 18:16:41 4398360 ----a-w- C:\Windows\System32\d3dx9_32.dll
2011-05-19 18:16:41 3426072 ----a-w- C:\Windows\SysWow64\d3dx9_32.dll
2011-05-19 18:16:26 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2011-05-19 18:14:09 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live
2011-05-18 12:05:21 -------- d-----w- C:\Windows\SysWow64\Atheros_L1e
2011-05-18 12:04:04 -------- d-----w- C:\Program Files\Synaptics
2011-05-18 02:47:23 -------- d-----w- C:\Windows\NAPP_Dism_Log
2011-05-17 18:58:26 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-17 18:48:56 8802128 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A67ACEAC-E54E-4858-814B-C1FA8B69440C}\mpengine.dll
2011-05-17 18:48:55 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-05-17 18:33:39 -------- d-----w- C:\Users\S.SAF\AppData\Local\Opera
2011-05-17 18:18:11 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2011-05-17 18:18:11 2048 ----a-w- C:\Windows\System32\tzres.dll
2011-05-17 18:17:36 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2011-05-17 18:17:36 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2011-05-17 18:17:36 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2011-05-17 18:17:36 243200 ----a-w- C:\Windows\System32\wow64.dll
2011-05-17 18:17:36 2048 ----a-w- C:\Windows\SysWow64\user.exe
2011-05-17 18:17:36 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2011-05-17 18:16:47 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2011-05-17 18:16:47 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2011-05-17 18:16:46 641536 ----a-w- C:\Windows\SysWow64\CPFilters.dll
2011-05-17 18:16:46 552960 ----a-w- C:\Windows\System32\msdri.dll
2011-05-17 18:16:46 288256 ----a-w- C:\Windows\System32\MSNP.ax
2011-05-17 18:16:46 204288 ----a-w- C:\Windows\SysWow64\MSNP.ax
2011-05-17 18:16:45 960512 ----a-w- C:\Windows\System32\CPFilters.dll
2011-05-17 18:16:13 1077248 ----a-w- C:\Windows\System32\Narrator.exe
2011-05-17 18:13:16 -------- d-----w- C:\Users\S.SAF\AppData\Local\Google
2011-05-17 18:12:27 -------- d-----w- C:\Users\S.SAF\AppData\Roaming\Intel Corporation
2011-05-17 18:11:49 -------- d---a-w- C:\book
2011-05-17 18:10:38 -------- d-----w- C:\Users\S.SAF\AppData\Local\VirtualStore
2011-05-17 18:07:59 -------- d-----w- C:\Program Files (x86)\OEM
2011-05-17 18:07:44 -------- d-----w- C:\Program Files\eMachines Accessory Store
2011-05-17 18:04:59 -------- d-sh--w- C:\Recovery
2011-05-17 17:53:33 -------- d-----w- C:\Windows\SysWow64\x64
2011-05-17 17:53:33 -------- d-----w- C:\Windows\SysWow64\Lang
2011-05-17 17:53:32 1002008 ----a-w- C:\Windows\SysWow64\igxpun.exe
.
==================== Find3M ====================
.
2011-05-17 17:55:41 6 ----a-w- C:\Windows\System32\PLD_Framework.cmd
.
============= FINISH: 19:47:37.06 ===============

Attachment file:

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-06-03.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 17/05/2011 19:05:14
System Uptime: 07/06/2011 19:35:39 (0 hours ago)
.
Motherboard: eMachines | | eMachines E527
Processor: Celeron(R) Dual-Core CPU T3300 @ 2.00GHz | uPGA-478 | 1995/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 220 GiB total, 187.079 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: Security Processor Loader Driver
Device ID: ROOT\LEGACY_SPLDR\0000
Manufacturer:
Name: Security Processor Loader Driver
PNP Device ID: ROOT\LEGACY_SPLDR\0000
Service: spldr
.
==== System Restore Points ===================
.
RP1: 17/05/2011 19:14:13 - Windows Update
RP2: 17/05/2011 19:15:26 - Windows Update
RP3: 17/05/2011 19:15:58 - Windows Update
RP4: 17/05/2011 19:16:30 - Windows Update
RP5: 17/05/2011 19:17:22 - Windows Update
RP6: 17/05/2011 19:17:56 - Windows Update
RP7: 17/05/2011 19:48:32 - Windows Update
RP8: 18/05/2011 13:04:59 - Installed Atheros Communications Inc.(R) AR81Family Gigabit/FastŽUñd
RP9: 18/05/2011 13:08:04 - Installed eMachines Power Management
RP10: 19/05/2011 19:12:18 - Installed eMachines Recovery Management
RP11: 19/05/2011 19:16:28 - Installed DirectX
RP12: 20/05/2011 15:21:25 - Windows Live Essentials
RP13: 20/05/2011 15:22:02 - Windows Update
RP14: 20/05/2011 15:22:36 - Windows Update
RP15: 20/05/2011 15:24:18 - Installed DirectX
RP16: 20/05/2011 15:24:49 - Installed DirectX
RP17: 20/05/2011 15:25:36 - WLSetup
RP18: 21/05/2011 20:46:30 - Installed WinZip 15.0
.
==== Installed Programs ======================
.
2007 Microsoft Office Suite Service Pack 2 (SP2)
Acrobat.com
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.1 MUI
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
Avira AntiVir Personal - Free Antivirus
Bejeweled 2 Deluxe
Blasterball 3
Bob the Builder Can-Do-Zoo
Build-a-lot 2
Chicken Invaders 3 - Revenge of the Yolk
Compatibility Pack for the 2007 Office system
D3DX10
eBay Worldwide
eMachines Game Console
eMachines Games
eMachines Power Management
eMachines Recovery Management
eMachines Registration
eMachines ScreenSaver
eMachines Updater
Escape Rosecliff Island
Faerie Solitaire
FATE - The Traitor Soul
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
Identity Card
Insaniquarium Deluxe
Intel(R) Control Center
Intel(R) Rapid Storage Technology
Jewel Quest
Jewel Quest Solitaire 3
Junk Mail filter update
Launch Manager
Mahjongg Artifacts
Malwarebytes' Anti-Malware version 1.51.0.1200
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
MSVCRT
MSVCRT_amd64
Norton Internet Security
Norton Online Backup
NTI Backup Now 5
NTI Backup Now Standard
NTI Media Maker 8
Opera 11.10
Penguins!
Polar Bowler
Polar Golfer
Polar Pool
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office Word 2007 (KB974631)
Virtual Families
Virtual Villagers - A New Home
Welcome Center
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Yahtzee
Zuma Deluxe
.
==== Event Viewer Messages From Past Week ========
.
31/05/2011 16:01:42, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x00000000000000dc, 0x0000000000000002, 0x0000000000000001, 0xfffff80002aa68c5). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 053111-36348-01.
07/06/2011 19:46:21, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
07/06/2011 19:46:20, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
07/06/2011 19:37:30, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
07/06/2011 19:37:30, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
07/06/2011 19:37:19, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
07/06/2011 19:37:11, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
07/06/2011 19:36:43, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: avipbb discache spldr SRTSP SRTSPX Wanarpv6
07/06/2011 19:36:31, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80001e68047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-35412-01.
07/06/2011 19:14:34, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service BITS with arguments "" in order to run the server: {4991D34B-80A1-4291-83B6-3328366B9097}
07/06/2011 19:08:02, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x00000000000000dc, 0x0000000000000002, 0x0000000000000001, 0xfffff80002a508c5). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-33696-01.
07/06/2011 18:43:16, Error: SRTSP [5] - Error loading Symantec real time Anti-Virus driver.
07/06/2011 18:43:16, Error: SRTSP [4] - Error loading virus definitions.
07/06/2011 18:19:06, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002aa6047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-81448-01.
07/06/2011 18:13:38, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002aac047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-82352-01.
07/06/2011 17:38:43, Error: Service Control Manager [7023] - The Peer Name Resolution Protocol service terminated with the following error: %%-2140993535
07/06/2011 17:38:43, Error: Service Control Manager [7001] - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: %%-2140993535
07/06/2011 17:38:43, Error: Microsoft-Windows-PNRPSvc [102] - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
07/06/2011 17:37:13, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
07/06/2011 17:37:13, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
07/06/2011 17:37:13, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
07/06/2011 17:36:42, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
07/06/2011 17:32:57, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002aa1047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-81713-01.
07/06/2011 16:28:03, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002a9c047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-82961-01.
07/06/2011 16:01:10, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002acefb1, 0x0000000000000000, 0xffffffffffffffff). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-71089-01.
07/06/2011 15:55:21, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002aa6047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-85769-01.
07/06/2011 15:46:54, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002a5e047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-80044-01.
07/06/2011 15:32:23, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002a6d047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-79763-01.
07/06/2011 15:26:40, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x00000000000000dd, 0x0000000000000002, 0x0000000000000001, 0xfffff80002a4f8c5). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-84193-01.
07/06/2011 15:13:55, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002a9d047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-78047-01.
07/06/2011 15:08:21, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002d8050a, 0x0000000000000001, 0x0000000000000018). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060711-89996-01.
04/06/2011 14:11:16, Error: Service Control Manager [7001] - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: After starting, the service hung in a start-pending state.
04/06/2011 14:11:12, Error: Service Control Manager [7022] - The Peer Name Resolution Protocol service hung on starting.
04/06/2011 13:33:01, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002a9e047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060411-89435-01.
04/06/2011 13:25:47, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002aa8047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060411-82290-01.
03/06/2011 13:28:20, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.
03/06/2011 13:28:20, Error: Service Control Manager [7000] - The Google Update Service (gupdate) service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
03/06/2011 12:06:35, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002db450a, 0x0000000000000001, 0x0000000000000018). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060311-74958-01.
03/06/2011 12:03:19, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the NIS service.
03/06/2011 12:00:08, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002aa0047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060311-46893-01.
03/06/2011 11:53:16, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x00000000000000dc, 0x0000000000000002, 0x0000000000000001, 0xfffff80002a5a8c5). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060311-42229-01.
03/06/2011 11:50:51, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Media Player Network Sharing Service service to connect.
03/06/2011 11:50:51, Error: Service Control Manager [7000] - The Windows Media Player Network Sharing Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
03/06/2011 11:46:44, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002a5c8c5, 0x0000000000000000, 0xffffffffffffffff). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060311-45567-01.
03/06/2011 11:43:20, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Browser service.
03/06/2011 11:39:53, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x0000000000000000, 0x0000000000000002, 0x0000000000000000, 0xfffff80002add0b6). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060311-44319-01.
03/06/2011 11:33:20, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002dbd50a, 0x0000000000000001, 0x0000000000000018). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060311-45287-01.
02/06/2011 15:02:58, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002a58047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060211-34289-01.
01/06/2011 16:22:21, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002a67047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060111-30232-01.
01/06/2011 14:30:26, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Norton Internet Security service to connect.
01/06/2011 14:30:26, Error: Service Control Manager [7000] - The Norton Internet Security service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
01/06/2011 12:48:15, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002a56047, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060111-43789-01.
.
==== End Of File ===========================

Any help will be appreciated. Recently it has been happening a lot and now I have to run this in safe mode.

 

[Bobbye]

Give me a few minutes to check your other thread, then I'll review your logs.

BTW, in case I forget, you do not need to put the logs in quotes. It looks nice but it actually cuts down in the available space for the log.

 

[AJLEO]

Yea ok thanks. I did use the quotes just to make it easy to read and differentiate lol. Anyways thanks for helping sir.

 

[Bobbye]

Considerations::
1. If you do a factory reset and put the same programs back on the system, you may not accomplish anything.
2. If you do a factory reset and the problem is hardware, you will accomplish nothing.

The point being sending a system back to 'out of the box' isn't going to do anything if everything remains the same!

You are running both Norton Internet Security and Avira. The means 2 antivirus programs: Timeline:
2011-05-20 19:51:34 -------- d-----w- C:\Program Files (x86)\Avira
2011-06-03 10:24:27 -------- d-----w- C:\Program Files\Symantec
They are both loading. But some of the Norton/Symantec files appear to be missing.
Norton doesn't play well with any other program trying to do the same job>>>
So either uninstall Norton>> Norton Removal Tool
Or uninstall Avira>> To uninstall Avira:

• Start> Settings> Control Panel> Add or Remove Programs (Windows 2000/ XP) or Start - Control Panel - Uninstall a program (Windows Vista / 7)
• Wait for the list of installed programs to load, then click the name of the Avira program.
• Click Remove next to the program's name (Windows 2000 / XP) or in the menu above the list (Windows Vista / 7).
• Press Yes, to confirm the removal and then OK.
• . Click Next until Finish. The software is removed.

===================================
Reboot the computer when you have finished the above.
===================================
Stop downloading and installing new programs. Stop doing factory resets. Don't do anything unless I instruct you to- including updates unless I advise. Exception is the AV program> Allow updates.
You fist post about the BSOD problem was 2 weeks ago- that's about 5/24/ Already having an unstable system, you went on to install at least 4 new programs in addition to numerous app data.
====================================
You are running "Partner application" by Google Inc, "Chrome aware".

...presumably collects and sends certain information. Thought to come pre-installed on (some) Acer computers. It is safe to disable the BHO and accompanying service - file detected by Spybot S&D as Spyware/PartnerBHO

We will remove this and the accompanying Service.

The Event Errors show multiples of this:

04/06/2011 14:11:12, Error: Service Control Manager [7022] - The Peer Name Resolution Protocol service hung on starting.
07/06/2011 17:38:43, Error: Service Control Manager [7023] - The Peer Name Resolution Protocol service terminated with the following error: %%-2140993535
07/06/2011 17:38:43, Error: Service Control Manager [7001] - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: %%-2140993535
07/06/2011 17:38:43, Error: Microsoft-Windows-PNRPSvc [102] - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.

In peer-to-peer environments, peers use specific name resolution systems to resolve each other's network locations (addresses, protocols, and ports) from names or other types of identifiers. In the past, peer name resolution has been complicated by the inherently transient connectivity as well as other shortcomings within the Domain Name System (DNS).
Please read the information here to help you understand the possible consequences of failure to run:
http://msdn.microsoft.com/en-us/library/bb968779.aspx
===========================================
Sometimes it's better to start with the 'simple' first. If this fits you, consider giving it a try:

.......I was having some BSODs after doing an upgrade install of Windows 7 from a previous version of Windows 7 and uninstalling and reinstalling ESET AV (and rebooting) solved the problems, in my case. I would suggest trying that, if you haven't already.

I have to run this in safe mode.

Explain this please. What happens when you try to boot into Normal Mode?

 

[AJLEO]

Before when I loaded into normal mode, after starting windows, I had the blue screen and it continued. But the last time i tried booting in normal mode, it just came up with "failed to start up windows" and gives me the option to start windows auto repair which does nothing. I have left that for a long time but it just stays stuck on searching for problem solutions.

Also I bought this laptop which came with the windows 7 pre-installed so I don't have the disc to uninstall and reinstall windows 7. I thought factory reset would do the trick since this has occured from something I downloaded from the internet and not related to the programs that were pre-installed.

Now I'm going to uninstall Northon since you said some files were missing and Its only a trail.

Do you also want me to remove the Google Chrome internet browser? I thought that was safe?

 

[Bobbye]

Did this computer belong to another user or was it from the manufacturer? This is a polite way of asking you if you know what was on the system when you got it!

It appears that a network of some type was set up on it, but it isn't running correctly. Please refer to my question about the Peer Name Resolution

As for Chrome, no, you don't have to remove the browser. But we will be removing the 'spyware' entry.

 

[AJLEO]

No it was bought straight from the store and I am the first and only owner of it. There were a bunch of things on it from start like northon pre-installed with 60 day trial, microsoft office with trial, microsoft works. Everything was on it except from the browsers I have installed which are opera and chrome.

And sorry but I don't understand that peer name resolution thing. Can you please explain a bit more. Also it doesn't allow me to remove northon for some reason. When I click on uninstall, nothing happens. Should I just remove avira instead?

 

[AJLEO]

I have deactivated Northon Security. Its not running so the only one running is Avira. Whats next please?

 

[Bobbye]

I gave you the Norton Removal Tool> again> Click on link.
[*]Norton Removal Tool
IF you have trouble running the Removal Tool, once you have downloaded it and save to the desktop, boot into Safe Mode to run it:

Boot into Safe Mode

• Restart your computer and start pressing the F8 key on your keyboard.
• Select the Safe Mode option when the Windows Advanced Options menu appears, and then press ENTER.

=====================================================
The PeerName Resolution is part of Network Programming in the Microsoft .NET Framework . I don't know if you're using it, but you can check the Service and set it to Manual as follows:

Click on Start> Run> type in services.msc> Enter> Double click on Peer Networking Identity Manager (it may shows as p2pimsvc)> Set the Startup type to Manual. Then exit Services and reboot the computer.

As some point in your computer history, you either set up a Homegroup or tried to. I suspect the doing the factory resets may have messed that up. Here are questions to ask yourself:
1. Did you "join" or make a homegroup when first installed? write down the password?
2. Does windows report you as on a "homegroup", either pc?
3. Have you turned ON Network Discovery? ie: advanced sharing settings, under (current profile)

You have the SQL Server 2005 Compact Edition installed. You may need the Peer Name for that. IF you need further help with that, you may find more knowledgeable members in the networking forum.

Stop setting the system back just because you get a BSOD. There are a lot for reasons for a BSOD and checking the Event Viewer before taking such drastic action would be a better way too go. Every time you set the system back, you undo any settings you have put in place- it's like start over-start over-start over and on and on.
*****************Stop doing the factory resets*********************************
==============================================
Please note: If you have Combofix on the desktop already, please uninstall it. Then download the current version and do the scan: Uninstall directions, if needed

• Click START> then RUN
• Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.

--------------------------------------
Download Combofix from HERE or HEREhttp://www.forospyware.com/sUBs/ComboFix.exe and save to the desktop

• Double click combofix.exe & follow the prompts.
• ComboFix will check to see if the Microsoft Windows Recovery Console is installed. It is recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode if needed.
  **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.
• Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
• Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
  
  
• .Click on Yes, to continue scanning for malware
• .If Combofix asks you to update the program, allow
• .Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
• .Close any open browsers.
• .Double click combofix.exe
  
  & follow the prompts to run.
• When the scan completes , a report will be generated-it will open a text window. Please paste the C:\ComboFix.txt in next reply..

Re-enable your Antivirus software.

Note 1:Do not mouse-click Combofix's window while it is running. That may cause it to stall.
Note 2: ComboFix may reset a number of Internet Explorer's settings, including making I-E the default browser.
Note 3: Combofix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you -- please tell your helper.
Note 4: CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
Note 5: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion", restart computer to fix the issue.