Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

unable to install many pgms


  • This topic is locked This topic is locked
20 replies to this topic

#1 petegt5012

petegt5012

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:47 PM

Posted 29 April 2012 - 04:38 PM

System gateway GT5012 dual core 2.8 mhz 250 gb harddrive 1 gb ram (recently upgraded to 3 gb ram), a second hard drive with second XP sp3 os
Current os is XP media centre with sp3 (sp3 installed a long time ago).

I have a number of symptoms that I think are all trelated to a similar cause, but for the life of me I cannot find a cure for any of these.
read many forums and tried numerous things, way to many to list here. But here is a short list of my symtoms.
I think either I have some sort of malware or rootkit that is preventing me from updating/installing certain software, or maybe it is a registry

issue????

1. when i select standby the computer restarts (power settings are not set to do this). this is what has triggered me start ny investigation a

few weeks ago. The harddrive also goes nuts at startup for about 20 minutes. although not anymore since I uninstalled some of the things below.

I thought maybe out of date sftware was causing some issues....

2. cannot install zonealarm (free firewall v10.1.101.000), I uninstalled the older version (v9.2.057.000)because I could not upgrade same error

either way. Error is the program just exits (nothing in event viewer). All iget is the "run" choice window then it exits. no errors anywhere.
I also tried v10.1.079.000 same result. with task manager on high update speed process count does not change. nor can i see anything start in

proceess explorer.

3. i have run superantispyware and only found tracking cookies (cleaned).

4. ran malwarebytes found a txt file with "xpantivirus2008 or 2009_etc read this.txt" name and anydvd installer with virus, deleted it. the text

file I created with comments for my wife and kids regarding a virus we got 5 years ago and what file name to look for.

5. tried to instal "seatools for windows" get error "MsiInstaller cannot be found" event codes (1015, 11707, 1033, 1040, 11728, 1035, 1042,

11708, 1033) all slightly different text. also text about remote computer ??? what is this?

6. older versions of java cannot be removed via add remove programs, also tried javara same issue. Error during install or uninstall looking

for jre1.6.0_24-c-l.msi but path does not exist, this happens when installing or uninstalling Java 1.6.0_31 which never installed properly when

initial install was done via prompt from java to upgrade. Currently have java 7 installed. but add remove programs and regitry still have

entries to jave 1.6.0_24 and 1.6.0_31.

7.tried to install mcafee after uninstalling previous version... following error recieved
"mcafee virusscan enterprise installer information

error 1920.Service McaFee McShield (McShield) failed to start.
Verify that you have sufficient priviledges to stat system services."



8. just bought "total defense pc tune-up" (when i got the xtra memory) this past saturday. tried to install , seemed good, rebooted, start this

pgm and it just hangs with partially completed graphic widow.

I have been browsing alot of forums for hints on some of these symtoms. seems like everything and anything could be the culprit.

9. ran safernetworking rootanlyzer and found a bunch of reg keys "invisible to win32" and "unable to open key", and with "zero char in key

name" did a search and it seems they are ok related to deamon tools virtualized devices...

I ran ccleaner quite a while ago to clean files.


I am now at the point where I need help (I was probably there a while ago)....

I think it is related to the windows installer, but I have dowloaded v 4.5 and installed it. maybe I didn't do it right.
before I did this I copied the MsiServer Reg entries from another xp since I did not have that reg key on my PC ( followed instructions from

a forum post).

I may have malware that is stopping things from installing properly or perhaps not letting them out to the internet to complete installs???

Any ideas where to start? Do I have one major problem or totally independant problems that I should post separately.

I did recently run Combofix (I know i shouldn't have, but I actually did it by mistake, meant to run cccleaner again). Opps

I really thought I had a problem with my harddrive, but some forums eluded that malware can make it look like that. That i why I was trying to

instal "sea tools for windows". but it will not install either.
Wait I just installed Seatools for windows (SeaToolsforWindowsSetup-1206.exe) again and it seems to have installed completely. started it up

from start menu seems to be ok . The only thing that I can think that might have allowed this to work this time is I set wijndows installer to

automatic and started it a while before try the latest install. this did not work for the zonealarm however.

I did get "Speccy" from piriform and installed it which seems to indicate that my harddrive is ok...

All activities have been performed from an account that is defined in the administrator group and this is the id that has always been used since

the purchase of this PC.

Do you think you can help me?

BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:09:47 PM

Posted 29 April 2012 - 05:51 PM

Can you try creating another user account, and see if the problems persist?

#3 petegt5012

petegt5012
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:47 PM

Posted 29 April 2012 - 06:45 PM

never thought of that, I will try and see what happens.

#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:47 PM

Posted 29 April 2012 - 06:50 PM

Here is an easy way to create another account.


Open notepad and copy and paste the below into note pad and name it newprofile.bat

@echo off
net user newuser/add /expires:never /passwordreq:no
net localgroup “Administrators” /add new user

Save it to your desktop right click run as admin(xp users double click).Then reboot your machine.Then you will have a new account named newuser

#5 petegt5012

petegt5012
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:47 PM

Posted 29 April 2012 - 08:15 PM

sorry for taking so long being new got messed up on the login id

set up new account as belonging to admistrator account. Tried zonealarm same issue just exits after clicking run in "open file- Security warning" window. tried all 3 zonealarm files as described in original post. I do get a little bit of disk activity based on sounds.

tried deinstalling java 1.6.0_31 same message from window installer "click OK to try again, or enter an alternate path to a folder containing the installation package "jre 1.6.0_24-c-l.msi" in the box below " from the window installer window.

tried installing java 1.6.0_24 again seemed to complete ok , at least no error messages or windows. No files or folders in program files however, so maybe it also just exited. Odd that it did ask me if i wanted to install it even though it was already installed , it asked me this twice.

Tried to install 1.6.0_31 and got the same message from window installer window ..._24-c-l as above but it ends with a window/popup that says "Error 1714.The older version of Java™ 6 Update 31 cannot be removed, contact your technical support group."

Nothing has really changed by using a new USERID. Any other ideas?

#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:47 PM

Posted 29 April 2012 - 08:20 PM

Open Notepad and copy the text below the line into it and save it to your desktop call it msi.reg then right click it and select merge Reboot your machine

See if you can then download and run the programs below.

Please download FarbarServiceScanner and run it on the computer with the issue.

http://download.bleepingcomputer.com/farbar/FSS.exe

Make sure the following options are checked:
Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.


Please download MINITOOLBOX When the box opens click save file, save it to the desktop and run it.

http://download.bleepingcomputer.com/farbar/MiniToolBox.exe



Checkmark the following boxes:

List Last Ten Event Viewer Errors
List MiniDump Files
List Installed Programs
List Users, Partitions and Memory size
Click Go and post the result.
List Devices (Only Problems)

Hit Go Post Results in your reply to me.


Start copying below the line.
_________________________________________________________________


Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\.msi]
@="Msi.Package"

[HKEY_CLASSES_ROOT\Msi.Package]
"EditFlags"=hex:00,00,10,00
"FriendlyTypeName"=hex(2):40,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,\
00,6f,00,6f,00,74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,\
32,00,5c,00,6d,00,73,00,69,00,2e,00,64,00,6c,00,6c,00,2c,00,2d,00,33,00,34,\
00,00,00
@="Windows Installer Package"

[HKEY_CLASSES_ROOT\Msi.Package\DefaultIcon]
@="C:\\WINDOWS\\System32\\msiexec.exe,0"

[HKEY_CLASSES_ROOT\Msi.Package\shell]
@="Open,Repair,Uninstall"

[HKEY_CLASSES_ROOT\Msi.Package\shell\Open]
@="&Install"
"MUIVerb"=hex(2):40,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,\
6f,00,74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,\
00,6d,00,73,00,69,00,2e,00,64,00,6c,00,6c,00,2c,00,2d,00,33,00,36,00,00,00

[HKEY_CLASSES_ROOT\Msi.Package\shell\Open\command]
@=hex(2):22,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,\
00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,6d,00,\
73,00,69,00,65,00,78,00,65,00,63,00,2e,00,65,00,78,00,65,00,22,00,20,00,2f,\
00,69,00,20,00,22,00,25,00,31,00,22,00,20,00,25,00,2a,00,00,00

[HKEY_CLASSES_ROOT\Msi.Package\shell\Repair]
@="Re&pair"
"MUIVerb"=hex(2):40,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,\
6f,00,74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,\
00,6d,00,73,00,69,00,2e,00,64,00,6c,00,6c,00,2c,00,2d,00,33,00,37,00,00,00

[HKEY_CLASSES_ROOT\Msi.Package\shell\Repair\command]
@=hex(2):22,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,\
00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,6d,00,\
73,00,69,00,65,00,78,00,65,00,63,00,2e,00,65,00,78,00,65,00,22,00,20,00,2f,\
00,66,00,20,00,22,00,25,00,31,00,22,00,20,00,25,00,2a,00,00,00

[HKEY_CLASSES_ROOT\Msi.Package\shell\Uninstall]
@="&Uninstall"
"MUIVerb"=hex(2):40,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,\
6f,00,74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,\
00,6d,00,73,00,69,00,2e,00,64,00,6c,00,6c,00,2c,00,2d,00,33,00,38,00,00,00

[HKEY_CLASSES_ROOT\Msi.Package\shell\Uninstall\command]
@=hex(2):22,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,\
00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,6d,00,\
73,00,69,00,65,00,78,00,65,00,63,00,2e,00,65,00,78,00,65,00,22,00,20,00,2f,\
00,78,00,20,00,22,00,25,00,31,00,22,00,20,00,25,00,2a,00,00,00

Edited by InadequateInfirmity, 29 April 2012 - 08:24 PM.


#7 petegt5012

petegt5012
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:47 PM

Posted 29 April 2012 - 08:29 PM

under the new userid or my original one? does it matter?

#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:47 PM

Posted 29 April 2012 - 08:35 PM

Your original please. :)

#9 petegt5012

petegt5012
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:47 PM

Posted 29 April 2012 - 08:47 PM

Don't know if this makes a difference.
Just noticed I have a service called "YVDKPAGBU"

Oh just hovered over the executable that the registry points to and it is a rootkit detection utility from sysinternals. that I tried a few days ago, i actually execute it from rootkitrevealer.exe not sure why it is in temp folder and registry points there. probably a red herring.

rebooting now from new userid

#10 petegt5012

petegt5012
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:47 PM

Posted 29 April 2012 - 08:52 PM

opps too late should I go back to original and redo?

#11 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:47 PM

Posted 29 April 2012 - 08:57 PM

opps too late should I go back to original and redo?


Yes

#12 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:09:47 PM

Posted 29 April 2012 - 09:26 PM

Please do not perform registry edits without properly backing your registry up.

Please download ERUNT to back up your registry, also please do not take registry editing advice from those that do not post warnings. Doing so would and could potentially damage your computer.

Can you please rerun Malwarebytes with updating it, and then post the logs. Can you also run the additional scans listed below:

Hello,

And welcome to BleepingComputer.com, before we can assist you with your question of: Am I infected? You will need to perform the following tasks and post the logs of each if you can. If you have performed any of the scans below post the logs for those scans, and then perform the ones you have not done.

Please download and run Security Check from HERE, and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

SUPERAntiSpyware:

Please download and scan with SUPERAntiSpyware Free

  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are unchecked (leave all others checked):
    • Ignore files larger then 4mb
    • Ignore non-executable files

    Now Perform the scan with SUPERAntiSpyware as follows:
    • Launch the program and back on the main screen, under "Scan for Harmful Software" click Scan your computer.
    • On the left, make sure you check C:\Fixed Drive.
    • On the right, under "Complete Scan", choose Perform Complete Scan and click "Next".
    • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
    • Make sure everything has a checkmark next to it and click "Next".
    • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
    • If asked if you want to reboot, click "Yes" and reboot normally.
    • To retrieve the removal information after reboot, launch SUPERAntispyware again.[list]
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.

SAS Portable
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.


Now GMER

GMER does not work in 64bit Mode!!!!!!

Please download GMER from one of the following locations and save it to your desktop:

  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.
-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, uncheck Devices on the right side before scanning
.


All scans above should be performed in regular boot mode, and if that is not possible then I will post instructions in a follow up reply on how to get into Safe Mode to perform the scans. Also all scans should be COMPLETE and not quick unless specifically instructed to do so.

#13 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:47 PM

Posted 29 April 2012 - 09:35 PM

@ cryptodan

If you read the thread you would have seen that petegt5012

Has already ran sas and malwarebytes there is no need for this and telling members to not take my advice is childish. :)

Edited by InadequateInfirmity, 29 April 2012 - 09:35 PM.


#14 petegt5012

petegt5012
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:47 PM

Posted 29 April 2012 - 09:51 PM

Ok is cryptodan taking over from inadequateinfirmity, I am not clear on the protocol.

Here are the 2 listings that inadequateinfirmity requested. Not sure if they are of any use perhaps one of you could look and see.

It sounds like inadequateinfirmity is attacking it from a registry problem perspective and crytodan, you may be thinking some sort of infection. Could be you both are right but what comes first the chicken or the egg.

I suspect infection should be ruled out first.

In the mean time I will download these other tools that cryptodan suggests and try from there.

If this it for inadequateinfirmity thank-you so far.

Crytodan,
Given you requested anew userid , it did not change the situation, I thought it was a good try anyhow. Which id should i use for these next steps the original id or the new id.

I have SAS already (the free one) with the service "SAS Core Service" running started in automatic mode. I have run this before, but will run again.

running all these things will probably take me into late tomorrow as I have to go to work tomorrow and I have to get some sleep before taking my son back to university(move in day). I will get done what i can tonight, but will post all together.

#15 petegt5012

petegt5012
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:47 PM

Posted 29 April 2012 - 10:08 PM

opps forgot to post the listings
here they are

FSS.txt
System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(6) IPSec(4) mfetdik(8) NetBT(5) PSched(7) Tcpip(3)
0x080000000400000001000000020000000300000008000000050000000600000007000000
IpSec Tag value is correct.

**** End of log ****




Minitoolbox result.txt
MiniToolBox by Farbar Version: 18-01-2012
Ran by admin1 (administrator) on 29-04-2012 at 22:20:00
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/29/2012 09:15:08 PM) (Source: MsiInstaller) (User: admin2)admin2
Description: Product: Java™ 6 Update 31 -- Error 1714.The older version of Java™ 6 Update 31 cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)

Error: (04/29/2012 09:12:05 PM) (Source: MsiInstaller) (User: admin2)admin2
Description: Product: Java™ 6 Update 31 -- Error 1714.The older version of Java™ 6 Update 31 cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)

Error: (04/29/2012 06:52:29 PM) (Source: Application Error) (User: )
Description: Faulting application uphclean.exe, version 1.6.30.0, faulting module ntdll.dll, version 5.1.2600.6055, fault address 0x00029f07.
Error in creating result PEAP-TLV in response to received PEAP-TLV (uphclean.exe!ld!)

Error: (04/26/2012 07:34:57 PM) (Source: Application Error) (User: )
Description: Fault bucket -1345683758.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (04/26/2012 07:33:56 PM) (Source: Application Error) (User: )
Description: Faulting application ZVSZKDDI.exe, version 1.71.0.0, faulting module comctl32.dll, version 6.0.2900.6028, fault address 0x000048d6.
Processing media-specific event for [ZVSZKDDI.exe!ws!]

Error: (04/25/2012 09:41:58 PM) (Source: Application Error) (User: )
Description: Faulting application AMTUSI.exe, version 1.71.0.0, faulting module ntdll.dll, version 5.1.2600.6055, fault address 0x00019af2.
Processing media-specific event for [AMTUSI.exe!ws!]

Error: (04/25/2012 08:40:19 PM) (Source: Application Error) (User: )
Description: Faulting application uphclean.exe, version 1.6.30.0, faulting module ntdll.dll, version 5.1.2600.6055, fault address 0x00029f07.
Processing media-specific event for [uphclean.exe!ws!]

Error: (04/24/2012 10:40:18 PM) (Source: Application Error) (User: )
Description: Fault bucket -1348722094.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (04/24/2012 10:39:46 PM) (Source: Application Error) (User: )
Description: Faulting application YVDKPAGBU.exe, version 1.71.0.0, faulting module YVDKPAGBU.exe, version 1.71.0.0, fault address 0x0001f490.
Processing media-specific event for [YVDKPAGBU.exe!ws!]

Error: (04/22/2012 11:09:37 PM) (Source: JavaQuickStarterService) (User: )
Description: Unable to open C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf: No such file or directory


System errors:
=============
Error: (04/29/2012 10:12:37 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
mfehidk
mfetdik

Error: (04/29/2012 10:12:37 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error:
%%31

Error: (04/29/2012 10:12:37 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Task Manager service failed to start due to the following error:
%%3

Error: (04/29/2012 10:12:37 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Framework Service service failed to start due to the following error:
%%3

Error: (04/29/2012 10:12:37 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Engine Service service failed to start due to the following error:
%%3

Error: (04/29/2012 10:12:37 PM) (Source: Service Control Manager) (User: )
Description: The Java Quick Starter service failed to start due to the following error:
%%3

Error: (04/29/2012 10:12:32 PM) (Source: 0) (User: )
Description:

Error: (04/29/2012 09:50:07 PM) (Source: DCOM) (User: SYSTEM)
Description: The server {4EB61BAC-A3B6-4760-9581-655041EF4D69} did not register with DCOM within the required timeout.

Error: (04/29/2012 09:49:37 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
mfehidk
mfetdik

Error: (04/29/2012 09:49:36 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error:
%%31


Microsoft Office Sessions:
=========================
Error: (04/29/2012 09:15:08 PM) (Source: MsiInstaller)(User: admin2)admin2
Description: Product: Java™ 6 Update 31 -- Error 1714.The older version of Java™ 6 Update 31 cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)

Error: (04/29/2012 09:12:05 PM) (Source: MsiInstaller)(User: admin2)admin2
Description: Product: Java™ 6 Update 31 -- Error 1714.The older version of Java™ 6 Update 31 cannot be removed. Contact your technical support group. System Error 1612.(NULL)(NULL)(NULL)(NULL)

Error: (04/29/2012 06:52:29 PM) (Source: Application Error)(User: )
Description: uphclean.exe1.6.30.0ntdll.dll5.1.2600.605500029f07

Error: (04/26/2012 07:34:57 PM) (Source: Application Error)(User: )
Description: -1345683758

Error: (04/26/2012 07:33:56 PM) (Source: Application Error)(User: )
Description: ZVSZKDDI.exe1.71.0.0comctl32.dll6.0.2900.6028000048d6

Error: (04/25/2012 09:41:58 PM) (Source: Application Error)(User: )
Description: AMTUSI.exe1.71.0.0ntdll.dll5.1.2600.605500019af2

Error: (04/25/2012 08:40:19 PM) (Source: Application Error)(User: )
Description: uphclean.exe1.6.30.0ntdll.dll5.1.2600.605500029f07

Error: (04/24/2012 10:40:18 PM) (Source: Application Error)(User: )
Description: -1348722094

Error: (04/24/2012 10:39:46 PM) (Source: Application Error)(User: )
Description: YVDKPAGBU.exe1.71.0.0YVDKPAGBU.exe1.71.0.00001f490

Error: (04/22/2012 11:09:37 PM) (Source: JavaQuickStarterService)(User: )
Description: Unable to open C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf: No such file or directory


=========================== Installed Programs ============================

µTorrent (Version: 1.7.2)
1600 (Version: 47.0.1.000)
1600_Help (Version: 47.1.14.000)
1600Trb (Version: 47.1.14.000)
Acrobat.com (Version: 1.6.65)
Adobe Acrobat 8 Professional - English, Français, Deutsch (Version: 8.1.0)
Adobe AIR (Version: 1.5.0.7220)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge 1.0 (Version: 001.000.004)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Common File Installer (Version: 1.00.0000)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Download Manager (Version: 1.6.2.48)
Adobe ExtendScript Toolkit 2 (Version: 2.0.1)
Adobe Flash Player 11 Plugin (Version: 11.2.202.233)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Premiere Pro CS3 (Version: 3)
Adobe Premiere Pro CS3 Functional Content (Version: 8)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Setup (Version: 1.0)
Adobe Shockwave Player 11.5 (Version: 11.5.1.601)
Adobe Stock Photos 1.0 (Version: 1.0.8)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe SVG Viewer 3.0 (Version: 3.0)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP DVA Panels CS3 (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
Age of Empires III (Version: 1.00.0000)
AiO_Scan (Version: 47.0.1.000)
AiOSoftware (Version: 47.0.1.000)
AnyDVD
Apple Application Support (Version: 1.5.1)
Apple Mobile Device Support (Version: 3.4.0.25)
Apple Software Update (Version: 2.1.2.120)
ArtCursors (Version: )
Audacity 1.2.4
AutoCAD 2005 - English (Version: 16.1.63.10)
AutoCAD LT 2008 - English (Version: 17.1.51.0)
Autodesk DWF Viewer (Version: 4.1)
Autodesk DWF Viewer 7 (Version: 7.2.0)
AviSynth 2.5
BOClean
Bonjour (Version: 2.0.5.0)
BufferChm (Version: 45.4.157.000)
Canon Camera Access Library (Version: 8.1.1.17)
Canon Camera Support Core Library (Version: 7.3.1.6)
Canon Camera Window DC_DV 5 for ZoomBrowser EX (Version: 5.4.5.17)
Canon Camera Window DC_DV 6 for ZoomBrowser EX (Version: 6.2.0.8)
Canon Camera Window MC 6 for ZoomBrowser EX (Version: 6.1.0.7)
Canon G.726 WMP-Decoder (Version: 1.0.1.3)
Canon MovieEdit Task for ZoomBrowser EX (Version: 2.2.0.13)
Canon RAW Image Task for ZoomBrowser EX (Version: 2.3.0.11)
Canon RemoteCapture Task for ZoomBrowser EX (Version: 1.5.0.5)
Canon Utilities EOS Utility (Version: 1.0.3.17)
Canon Utilities PhotoStitch (Version: 3.1.17.41)
Canon Utilities ZoomBrowser EX (Version: 5.6.0.27)
CCleaner (Version: 3.06)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Cool Edit Pro 2.0
Copy (Version: 45.4.157.000)
CP_AtenaShokunin1Config (Version: 45.4.131.000)
cp_dwShrek2Albums1 (Version: 45.4.157.000)
cp_dwShrek2Cards1 (Version: 45.4.157.000)
CreativeProjects (Version: 45.4.157.000)
CreativeProjectsTemplates (Version: 45.4.157.000)
Critical Update for Windows Media Player 11 (KB959772)
Cue Master™ Gold (Version: 32.0.0.0)
CueTour (Version: 45.4.157.000)
DAEMON Tools (Version: 3.47.0)
Destinations (Version: 45.4.157.000)
Digital Guitar Tuner (Version: 2.3)
Digital Media Reader (Version: 1.10)
Director (Version: 45.4.157.000)
DiscAPI (Studio 10) (Version: 3.00.0033)
DivX (Version: 5.2.1)
DivX Content Uploader (Version: 1.1.0)
DivX Converter (Version: 6.2.1)
DivX Web Player (Version: 1.3.0)
DocProc (Version: 4.5.0.0)
DocumentViewer (Version: 45.4.157.000)
DVD Decrypter (Remove Only)
DVD Ripper Platinum 4 (Version: 4.0.56.0928)
DVD Shrink 3.2
DVD to iPod Converter 4 (Version: 4.0.56.0928)
Exact Audio Copy 0.95b4 (Version: 0.95b4)
Fax (Version: 47.0.1.000)
FileAlyzer 2 (Version: 2.0.5.57)
FLAC Installer 1.1.3b (remove only) (Version: 1.1.3b)
Folder Size for Windows (Version: 2.5)
FW LiveUpdate (Version: 2.0.7.2)
G-Force (Version: 3.6)
Gaa Moa's Plugins for Cool Edit Pro
Gateway Download Assistant (Version: 1.0.0)
GdiplusUpgrade (Version: 1.00.01)
Google Chrome (Version: 18.0.1025.162)
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Firefox (Version: 3.1.20080730)
Google Update Helper (Version: 1.3.21.111)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
Highlight Viewer (Windows Live Toolbar) (Version: 03.01.0146)
HP Extended Capabilities 4.7 (Version: 4.7)
HP Image Zone 4.7 (Version: 4.7)
HP Product Assistant (Version: 2.0.0.0)
HP PSC & OfficeJet 4.7
HP Update (Version: 5.002.005.003)
HPSystemDiagnostics (Version: 1.6.0.0)
ImgBurn (Version: 2.5.0.0)
InstantShare (Version: 45.4.157.000)
Intel Audio Studio (Version: 1.50.7600)
Intel® Graphics Media Accelerator Driver
Intel® PRO Network Connections Drivers
Intel® Processor ID Utility (Version: 3.6.0000)
Internet Client 2.4
iPod for Windows 2005-10-12 (Version: 4.3.0)
iPod for Windows 2006-03-23 (Version: 4.7.0)
iPod for Windows 2006-06-28 (Version: 4.7.0)
iPod Video Converter 3 (Version: 3.1.10.0926b)
Ipswitch WS_FTP 12 (Version: 12.3)
Ipswitch WS_FTP Home 2006 (Version: 10.0)
Ipswitch WS_FTP LE (Version: 6.00)
iTunes (Version: 10.2.2.12)
Java™ 6 Update 24 (Version: 6.0.240)
Java™ 6 Update 29 (Version: 6.0.290)
Java™ 7 Update 3 (Version: 7.0.30)
JavaFX 2.0.3 (Version: 2.0.3)
JLIP VideoCapture3.1
Junk Mail filter update (Version: 14.0.8089.726)
LEAD MPEG-4 Video Decoder (Version: 1.0)
Magic ISO Maker v5.4 (build 0239)
MagicTune3.6 (Version: 1.00.0000)
MarketResearch (Version: 45.4.158.000)
McAfee Agent (Version: 4.0.0.1496)
MediaFACE 4.2 (Version: 4.2)
MediaFACE 4.2 Image Library (Version: 4.2)
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB2656378)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Digital Image Library 9 - Blocker (Version: 9.00.0000)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Money 2005 (Version: 14)
Microsoft National Language Support Downlevel APIs
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0)
Microsoft Picture It! Library 10 (Version: 10.0.0612)
Microsoft Picture It! Premium 10 (Version: 10.0.0612)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Milton Bradley Classic Board Games
Motorola Driver Installation 3.5.0 (Version: 3.5.0)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSN
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB925672) (Version: 4.20.9839.0)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0)
Multimedia Keyboard Driver
Napster (Version: 3.0.3.7)
Napster Burn Engine (Version: 2.5.0000)
Natural Color
Nero BurnRights
Nero OEM
NetAlyzer 0.3 (Version: 0.3)
Online_Radio_TB Toolbar (Version: )
PanoStandAlone (Version: 45.4.157.000)
PDF Settings (Version: 1.0)
PhotoGallery (Version: 45.4.157.000)
Pinnacle device drivers (Version: 1.01.131)
Pinnacle Instant DVD Recorder (Version: 1.60.110)
Pinnacle PCI Performance Enhancer (Version: 1.16.0000)
PowerDVD
proDAD Heroglyph 2.5
ProductContext (Version: 47.1.14.000)
Project64 1.6 (Version: 1.6)
QFolder (Version: 1.00.0000)
QuickTax 2002 for Investors
QuickTax 2003 Platinum
QuickTax 2004
QuickTax 2005 (Version: 2005)
QuickTax 2006
QuickTax 2007 (Version: 1.00.0000)
QuickTax 2008 (Version: 1.00.0000)
QuickTax 2009 (Version: 1.00.0000)
QuickTax Deluxe 2001
QuickTax Tracker (Version: 12.01.0000)
QuickTime (Version: 7.69.80.9)
RAPID (Studio 10) (Version: 3.00.0014)
Rapport (Version: 3.5.1108.55)
Readme (Version: 47.0.1.000)
RealPlayer
RealUpgrade 1.0 (Version: 1.0.0)
Recovery Software Suite Gateway (Version: 1.00.0000)
RegAlyzer (Version: 1.6.2.16)
Retirement Income Planner
Revo Uninstaller Pro 2.5.3 (Version: 2.5.3)
RunAlyzer (Version: 1.6.1.24)
Scan (Version: 4.5.0.0)
ScannerCopy (Version: 4.5.0.0)
Scrabble
Screensaver Factory 4 Enterprise (Version: Screensaver Factory 4 Enterprise)
SeaTools for Windows (Version: 1.2.0.6)
Segoe UI (Version: 14.0.4327.805)
Sibelius Scorch Plugin
SigmaTel Audio (Version: 5.10.4501.0)
SkinsHP1 (Version: 45.4.157.000)
SMART Ideas 5 (Version: 5.1.15.1)
Smart Menus (Windows Live Toolbar) (Version: 03.01.0146)
SmartSound Quicktracks Plugin (Version: 3.0.2.7)
Soft Data Fax Modem with SmartCP
Sonic Encoders (Version: 1.00)
Sony Ericsson Update Service (Version: 2.11.7.13)
Speccy (Version: 1.16)
Spybot - Search & Destroy (Version: 1.6.2)
SpywareBlaster 4.6 (Version: 4.6.0)
Starcraft
StuffIt Expander 2010 (Version: 14.0.0)
Super Clone DVD 5.0
SUPERAntiSpyware Free Edition (Version: 4.0.0.1154)
Total Defense PC Tune-Up 4.0.0.0 (Version: 4.0.0.0)
TrayApp (Version: 45.4.157.000)
Tune Transfer for iPod (Version: 1.00.0000)
TuneUp Utilities 2007 (Version: 6.0.1255)
TurboTax 2010 (Version: 1.00.0000)
Ultra Video To Flash Converter 2.0
Unload (Version: 4.5.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
Update for Windows Internet Explorer 8 (KB973874) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows Media Player 10 (KB910393)
Update for Windows Media Player 10 (KB913800)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB961503) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update Rollup 2 for Windows XP Media Center Edition 2005
User Profile Hive Cleanup Service (Version: 1.6.30)
VC 9.0 Runtime (Version: 1.0.0)
Videora iPod Converter 0.91 (Version: 0.91)
Viewpoint Media Player
VLC media player 1.1.10 (Version: 1.1.10)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 45.4.157.000)
Webshots Desktop
Windows Defender (Version: 1.1.1592.0)
Windows Defender Signatures (Version: 1.20.0.0)
Windows Desktop Search (Version: 02.06.5000.5378)
Windows Desktop Search (KB926356-V2) (Version: 02.06.6000.5414)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live OneCare safety scanner
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Toolbar (Version: 14.0.8064.206)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Windows Management Framework Core
Windows Media Connect
Windows Media Format 11 runtime
Windows Media Format SDK Hotfix - KB891122
Windows Presentation Foundation (Version: 3.0.6920.0)
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB2619340
Windows XP Media Center Edition 2005 KB2628259
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3 (Version: 20080414.031525)
WinISO 5.3
WinPcap 3.1 (Version: 3.1.0.27)
WinRAR archiver
WinZip
XML Paper Specification Shared Components Pack 1.0
Yahoo! Toolbar

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 20%
Total physical RAM: 3061.64 MB
Available physical RAM: 2428.67 MB
Total Pagefile: 4419.13 MB
Available Pagefile: 3937.31 MB
Total Virtual: 2047.88 MB
Available Virtual: 1972.21 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:228.23 GB) (Free:103.36 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:4.64 GB) (Free:1.83 GB) FAT32
5 Drive g: () (Fixed) (Total:465.76 GB) (Free:382.23 GB) NTFS
6 Drive h: (97trk15) (CDROM) (Total:0.4 GB) (Free:0 GB) CDFS
11 Drive m: (99CAR21) (CDROM) (Total:0.29 GB) (Free:0 GB) CDFS
12 Drive n: (CDROM) (CDROM) (Total:2.79 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\D820LIVINGSTON

admin1 admin2 Administrator
ASPNET derek Guest
HelpAssistant Owner peterliv
Ryan SUPPORT_388945a0 test
testlimited

========================= Minidump Files ==================================

C:\WINDOWS\Minidump\Mini020212-01.dmp
C:\WINDOWS\Minidump\Mini020912-01.dmp
C:\WINDOWS\Minidump\Mini032012-01.dmp
C:\WINDOWS\Minidump\Mini032512-01.dmp
C:\WINDOWS\Minidump\Mini032512-02.dmp
C:\WINDOWS\Minidump\Mini032512-03.dmp
C:\WINDOWS\Minidump\Mini032912-01.dmp
C:\WINDOWS\Minidump\Mini032912-02.dmp
C:\WINDOWS\Minidump\Mini032912-03.dmp
C:\WINDOWS\Minidump\Mini033012-01.dmp
C:\WINDOWS\Minidump\Mini040412-01.dmp
C:\WINDOWS\Minidump\Mini040712-01.dmp
C:\WINDOWS\Minidump\Mini040812-01.dmp
C:\WINDOWS\Minidump\Mini040912-01.dmp
C:\WINDOWS\Minidump\Mini041012-01.dmp
C:\WINDOWS\Minidump\Mini041012-02.dmp

**** End of log ****







P.S. I don't have the results of malwarebytes any longer , I uninstalled it without copying the log (duh). But will reinstall it. and genrate a new one. Both the SAS and Malware bytes was run over a week ago. I also ran COMBOfix see my original reply ( actually no need to), it was by mistake but once running did not want to stop it.
I still have the output from combofix is that of any use or do I need to run a new one?
It doesn't matter to me it is just time.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users