Tech Support Forum banner
Cancel

This may be confusing as it began with a pc that would not boot.

1281 Views 4 Replies 2 Participants Last post by  mike062759
M
Hi,

As the title describes I originally posted this as a problem concerning my laptops inability to reboot. I will give you the background by cutting and pasting from the original posting. All the reports were run yesterday. The laptop has been shut down since I ran the reports so as not to risk further infection:
==========================================================

03-12-2011, 01:16 PM #17
mike062759
Registered User


Join Date: Mar 2011
Location: San Diego, CA USA
Posts: 37
OS: vista SP2


Re: Not sure what to do -My Computer Did Not Shut Down Properly

--------------------------------------------------------------------------------

Well using F11 I was able to get to Restore to Factory Defaults. I am running that right now .. seems to be working. I will come back when it is complete. I would like to vet the machine for viruses before I begin reloading data. I will be back.

Thanks,
Mike


==========================================================
03-12-2011, 10:41 PM #18
mike062759
Registered User


Join Date: Mar 2011
Location: San Diego, CA USA
Posts: 37
OS: vista SP2


Re: Not sure what to do - Your Computer Did Not Shut Down Properly" Loop

--------------------------------------------------------------------------------

Ok! I am back. Don't know if I hurt or helped by my actions mentioned above but the machine is running. Here is the pertinent machine information:

=================================================================
Manufacturer: H.P.
Model: HP Pavillion dv2700 Notebook PC
Rating: 2.6 Windows Experience Rating (is that a decent rating?)
Processor: AMD Turion 64 x2 T2 60
RAM: 3007 MB (why would this not simply state 3GB?)
System Type: 32 bit
=================================================================
I ran the prescribed scans. DDS ran and produced both DDS and Attached reports. Initiated GMER and the scan ran for a few mins and the system shut down. Ditto on a second attempt. See following report:

Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.0.6000.2.0.0.768.3
Locale ID: 1033

Additional information about the problem:
BCCode: 4e
BCP1: 00000007
BCP2: 00064CBB
BCP3: 00000001
BCP4: 00000000
OS Version: 6_0_6000
Service Pack: 0_0
Product: 768_1

Files that help describe the problem:
C:\WINDOWS\Minidump\Mini031211-01.dmp
C:\Users\Michael J Murray\AppData\Local\Temp\WER-65473-0.sysdata.xml
C:\Users\Michael J Murray\AppData\Local\Temp\WER1DEB.tmp.version.txt

Read our privacy statement:
Microsoft Online Crash Analysis
=================================================================

.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Michael J Murray at 22:01:22.73 on Sat 03/12/2011
Internet Explorer: 7.0.6000.16512
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1033.18.3006.1855 [GMT -8:00]
.
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\WINDOWS\System32\rundll32.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Brother\Brmfcmon\BrMfimon.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Michael J Murray\Desktop\dds.scr
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=81&bd=Pavilion&pf=laptop
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=81&bd=Pavilion&pf=laptop
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=81&bd=Pavilion&pf=laptop
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No File
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_02\bin\ssv.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [LightScribe Control Panel] c:\program files\common files\lightscribe\LightScribeControlPanel.exe -hidden
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
uRun: [HPAdvisor] c:\program files\hewlett-packard\hp advisor\HPAdvisor.exe autoRun
mRun: [NvSvc] RUNDLL32.EXE c:\windows\system32\nvsvc.dll,nvsvcStart
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [QPService] "c:\program files\hp\quickplay\QPService.exe"
mRun: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun: [OnScreenDisplay] c:\program files\hewlett-packard\hp quicktouch\HPKBDAPP.exe
mRun: [UCam_Menu] "c:\program files\cyberlink\youcam\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\youcam" update "software\cyberlink\youcam\1.0"
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [hpqSRMon] c:\program files\hp\digital imaging\bin\hpqSRMon.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [hpWirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\HPWAMain.exe
mRun: [WAWifiMessage] c:\program files\hewlett-packard\hp wireless assistant\WiFiMsg.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre1.6.0_02\bin\jusched.exe"
mRun: [SSBkgdUpdate] "c:\program files\common files\scansoft shared\ssbkgdupdate\SSBkgdupdate.exe" -Embedding -boot
mRun: [PaperPort PTD] "c:\program files\scansoft\paperport\pptd40nt.exe"
mRun: [IndexSearch] "c:\program files\scansoft\paperport\IndexSearch.exe"
mRun: [PPort11reminder] "c:\program files\scansoft\paperport\ereg\ereg.exe" -r "c:\programdata\scansoft\paperport\11\config\ereg\Ereg.ini"
mRun: [BrMfcWnd] c:\program files\brother\brmfcmon\BrMfcWnd.exe /AUTORUN
mRun: [ControlCenter3] c:\program files\brother\controlcenter3\brctrcen.exe /autorun
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\vongot~1.lnk - c:\windows\installer\{8c3ae2d1-854d-4650-a73d-c7cc7ee36b80}\NewShortcut2_DB7E00C96DEF489A8112D8F81614F45A.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_02\bin\ssv.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files\common files\lightscribe\LSRunOnce.exe"
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2011-03-13 00:00:08 -------- d-----w- c:\users\michae~1\appdata\local\Scansoft
2011-03-12 23:26:04 171520 ----a-w- c:\windows\system32\wintrust.dll
2011-03-12 23:25:36 97792 ----a-w- c:\windows\system32\cabview.dll
2011-03-12 23:17:00 2421760 ----a-w- c:\windows\system32\wucltux.dll
2011-03-12 23:16:17 87552 ----a-w- c:\windows\system32\wudriver.dll
2011-03-12 23:15:29 33792 ----a-w- c:\windows\system32\wuapp.exe
2011-03-12 23:15:29 171608 ----a-w- c:\windows\system32\wuwebv.dll
2011-03-12 23:15:19 73728 ------w- c:\windows\system32\BRCrypt.dll
2011-03-12 23:15:12 102400 ------w- c:\windows\system32\BrMfNt.dll
2011-03-12 23:15:11 63488 ------w- c:\windows\system32\BrNetSti.dll
2011-03-12 23:15:11 57856 ------w- c:\windows\system32\BrWiaNCp.dll
2011-03-12 23:15:11 42496 ------w- c:\windows\system32\Brnsplg.dll
2011-03-12 23:15:11 126976 ------w- c:\windows\system32\BrfxD05a.dll
2011-03-12 23:15:11 106496 ------w- c:\windows\system32\BrMuSNMP.dll
2011-03-12 23:14:29 73728 ------w- c:\windows\system32\BrDctF2.dll
2011-03-12 23:14:29 5120 ------w- c:\windows\system32\BrDctF2L.dll
2011-03-12 23:14:29 3072 ------w- c:\windows\system32\BrDctF2S.dll
2011-03-12 23:14:29 176128 ------w- c:\windows\system32\BroSNMP.dll
2011-03-12 23:14:27 1522176 ----a-w- c:\windows\system32\BrWia08a.dll
2011-03-12 23:14:19 167936 ------w- c:\windows\system32\NSSearch.dll
2011-03-12 23:14:14 -------- d-----w- c:\program files\Brother
2011-03-12 21:57:59 -------- d-----w- c:\program files\Nuance
2011-03-12 21:56:40 -------- d-----w- c:\program files\common files\ScanSoft Shared
2011-03-12 21:56:35 -------- d-----w- c:\program files\ScanSoft
2011-03-12 21:55:49 -------- d-----w- c:\progra~2\Brother
2011-03-12 21:46:55 -------- d-----w- c:\users\michae~1\appdata\local\Hewlett-Packard
2011-03-12 21:45:54 -------- d-----w- c:\users\michae~1\appdata\local\QuickPlay
2011-03-12 21:45:45 -------- d-----w- c:\users\michae~1\appdata\roaming\Symantec
2011-03-12 21:22:24 -------- d-----w- c:\users\michae~1\appdata\local\VirtualStore
2011-03-12 21:19:19 -------- d-----w- c:\program files\Yahoo!
2011-03-12 21:18:08 -------- d-----w- c:\progra~2\Electronic Arts
2011-03-12 21:17:34 -------- d-----w- c:\users\michae~1\appdata\local\Downloaded Installations
2011-03-12 21:10:17 -------- d-----w- c:\program files\Broadcom
2011-03-12 21:00:08 -------- d-sh--we C:\Documents and Settings
.
==================== Find3M ====================
.
.
============= FINISH: 22:01:55.74 ===============


Let me know if you need fresh reports. I will repost to include the zipped "Attached" file. Thank you.
See less See more
Save
Like
Status
Not open for further replies.
1 - 5 of 5 Posts
Ried
Hello Mike,

Well using F11 I was able to get to Restore to Factory Defaults.
Click to expand...
Do you still suspect malware? There really isn't any malware at this time that can survive a format and reinstall of the OS. The only risk would be reinstalling backups that may have been infected.
Save
Like
M
I am not certain whether the machine is clean or not. You recommend using and see what happens? If so, should I just jump to the instructions for protecting my machine? Tetonbob helped me with another machine ... shall I reference those instructions for computer protection?
Save
Like
Ried
Yes, that would be the first order of business. Ensure you have installed an AV. If you are in need of one, here are 2 very good free Anti Virus programs:

Select one of these, or another of your choice. Download, install, update definitions, and run a full system scan.

After you've done that, click the Start button>Windows Updates and be sure to download and install all Critical Updates.

When you have finished with the updates, then install the other protective programs as recommended by tetonbob.

Use the machine for several days and let me know how it's behaving. :smile:
See less See more
Save
Like
M
Thank you Ried ... I will do so.
Save
Like
1 - 5 of 5 Posts
Status
Not open for further replies.
Tech Support Forum
A forum community dedicated to tech experts and enthusiasts. Come join the discussion about articles, computer security, Mac, Microsoft, Linux, hardware, networking, gaming, reviews, accessories, and more!
Full Forum Listing
Explore Our Forums
Windows XP Support Windows 7 , Windows Vista Support Motherboards, Bios|UEFI & CPU Networking Support Laptop Support

Top Contributors this Month

View All
spunk.funk
wolfen1086
Gary R
Recommended Communities
Community avatar for SkyscraperCity
SkyscraperCity
1M+ members
Community avatar for AVS Forum
AVS Forum
1M+ members
Community avatar for Climbing
Climbing
NEW!
30+ members
Top