Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AXWIN Frame Window Application Error, please help!


  • Please log in to reply
8 replies to this topic

#1 tvaddicts

tvaddicts

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 09 May 2012 - 11:03 AM

Hi

I was trying to install ccleaner in my laptop and in the middle of the process a popup window appears saying "AXWIN Frame Window: ccsetup318.exe - Application Error". I've read in some forums that this could be a malware issue. Below are details about my laptop;

Dell Inspiron 2200
Windows XP

Also, I've also attempted to install flash player. When I double click the downloaded file, it doesn't do anything. Does not confirm if the installation was successful or not. Also, I've noticed that the installer I've recently downloaded from Adobe was automatically deleted.

Thanks!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:26 AM

Posted 09 May 2012 - 12:09 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 tvaddicts

tvaddicts
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 09 May 2012 - 11:51 PM

Hi,

Thanks for the reply. I've downloaded and ran the 3 software you've stated in your reply. Below are the logs to each of them;

TDSSkiller logs:
12:05:43.0140 3236 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
12:05:45.0140 3236 ============================================================
12:05:45.0140 3236 Current date / time: 2012/05/09 12:05:45.0140
12:05:45.0140 3236 SystemInfo:
12:05:45.0140 3236
12:05:45.0140 3236 OS Version: 5.1.2600 ServicePack: 2.0
12:05:45.0140 3236 Product type: Workstation
12:05:45.0140 3236 ComputerName: PAL
12:05:45.0156 3236 UserName: Admin
12:05:45.0156 3236 Windows directory: C:\WINDOWS
12:05:45.0156 3236 System windows directory: C:\WINDOWS
12:05:45.0156 3236 Processor architecture: Intel x86
12:05:45.0156 3236 Number of processors: 1
12:05:45.0156 3236 Page size: 0x1000
12:05:45.0156 3236 Boot type: Normal boot
12:05:45.0156 3236 ============================================================
12:05:49.0656 3236 Drive \Device\Harddisk0\DR0 - Size: 0x12A1E0DE00 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:05:49.0875 3236 ============================================================
12:05:49.0875 3236 \Device\Harddisk0\DR0:
12:05:49.0875 3236 MBR partitions:
12:05:49.0875 3236 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x61A7927
12:05:49.0937 3236 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x61A79A5, BlocksNum 0x3362C5B
12:05:49.0937 3236 ============================================================
12:05:50.0234 3236 C: <-> \Device\Harddisk0\DR0\Partition0
12:05:50.0281 3236 D: <-> \Device\Harddisk0\DR0\Partition1
12:05:50.0328 3236 ============================================================
12:05:50.0328 3236 Initialize success
12:05:50.0328 3236 ============================================================
12:06:21.0109 0488 ============================================================
12:06:21.0109 0488 Scan started
12:06:21.0109 0488 Mode: Manual; TDLFS;
12:06:21.0109 0488 ============================================================
12:06:21.0437 0488 Aavmker4 (473f97edc5a5312f3665ab2921196c0c) C:\WINDOWS\system32\drivers\Aavmker4.sys
12:06:21.0453 0488 Aavmker4 - ok
12:06:21.0453 0488 Abiosdsk - ok
12:06:21.0468 0488 abp480n5 - ok
12:06:21.0546 0488 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:06:21.0562 0488 ACPI - ok
12:06:21.0625 0488 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
12:06:21.0625 0488 ACPIEC - ok
12:06:21.0625 0488 adpu160m - ok
12:06:21.0687 0488 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
12:06:21.0703 0488 aec - ok
12:06:21.0734 0488 AFD (5ac495f4cb807b2b98ad2ad591e6d92e) C:\WINDOWS\System32\drivers\afd.sys
12:06:21.0734 0488 AFD - ok
12:06:21.0750 0488 Aha154x - ok
12:06:21.0750 0488 aic78u2 - ok
12:06:21.0765 0488 aic78xx - ok
12:06:21.0796 0488 Alerter (c7ae0fd3867db0d42b03b73c18f3d671) C:\WINDOWS\system32\alrsvc.dll
12:06:21.0796 0488 Alerter - ok
12:06:21.0828 0488 ALG (f1958fbf86d5c004cf19a5951a9514b7) C:\WINDOWS\System32\alg.exe
12:06:21.0828 0488 ALG - ok
12:06:21.0843 0488 AliIde - ok
12:06:21.0859 0488 amsint - ok
12:06:21.0906 0488 AppMgmt (9c3c12975c97119412802b181fbeeffe) C:\WINDOWS\System32\appmgmts.dll
12:06:21.0906 0488 AppMgmt - ok
12:06:21.0921 0488 asc - ok
12:06:21.0937 0488 asc3350p - ok
12:06:21.0953 0488 asc3550 - ok
12:06:22.0031 0488 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
12:06:22.0031 0488 aspnet_state - ok
12:06:22.0046 0488 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\WINDOWS\system32\drivers\aswFsBlk.sys
12:06:22.0062 0488 aswFsBlk - ok
12:06:22.0093 0488 aswFW (80beddcbb4a1417cec0c78a61cac0f66) C:\WINDOWS\system32\drivers\aswFW.sys
12:06:22.0109 0488 aswFW - ok
12:06:22.0125 0488 aswKbd (81e695913fefd4e23360a69c0f151797) C:\WINDOWS\system32\drivers\aswKbd.sys
12:06:22.0140 0488 aswKbd - ok
12:06:22.0156 0488 aswMon2 (8c30b7ddd2f1d8d138ebe40345af2b11) C:\WINDOWS\system32\drivers\aswMon2.sys
12:06:22.0171 0488 aswMon2 - ok
12:06:22.0203 0488 aswNdis (7b948e3657bea62e437bc46ca6ef6012) C:\WINDOWS\system32\DRIVERS\aswNdis.sys
12:06:22.0203 0488 aswNdis - ok
12:06:22.0234 0488 aswNdis2 (72c8f79d72b4ff6e1627276ddf4b01c9) C:\WINDOWS\system32\drivers\aswNdis2.sys
12:06:22.0234 0488 aswNdis2 - ok
12:06:22.0281 0488 aswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\WINDOWS\system32\drivers\aswRdr.sys
12:06:22.0281 0488 aswRdr - ok
12:06:22.0359 0488 aswSnx (dcb199b967375753b5019ec15f008f53) C:\WINDOWS\system32\drivers\aswSnx.sys
12:06:22.0375 0488 aswSnx - ok
12:06:22.0437 0488 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\WINDOWS\system32\drivers\aswSP.sys
12:06:22.0453 0488 aswSP - ok
12:06:22.0484 0488 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\WINDOWS\system32\drivers\aswTdi.sys
12:06:22.0484 0488 aswTdi - ok
12:06:22.0531 0488 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:06:22.0531 0488 AsyncMac - ok
12:06:22.0562 0488 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
12:06:22.0562 0488 atapi - ok
12:06:22.0578 0488 Atdisk - ok
12:06:22.0609 0488 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:06:22.0609 0488 Atmarpc - ok
12:06:22.0640 0488 AudioSrv (db66db626e4882ebef55f136f12c1829) C:\WINDOWS\System32\audiosrv.dll
12:06:22.0640 0488 AudioSrv - ok
12:06:22.0656 0488 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
12:06:22.0656 0488 audstub - ok
12:06:22.0750 0488 Autorun CDROM Monitor (564820c1522ff9686b9080762e482c5b) C:\WINDOWS\system32\SupportAppXL\cdrom_mon.exe
12:06:22.0750 0488 Autorun CDROM Monitor - ok
12:06:22.0937 0488 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:06:22.0937 0488 avast! Antivirus - ok
12:06:22.0968 0488 avast! Firewall (7d465549dfb0eca6601e9609c72cd20a) C:\Program Files\AVAST Software\Avast\afwServ.exe
12:06:22.0968 0488 avast! Firewall - ok
12:06:23.0031 0488 BCM43XX (30d20fc98bcfd52e1da778cf19b223d4) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
12:06:23.0046 0488 BCM43XX - ok
12:06:23.0109 0488 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
12:06:23.0109 0488 Beep - ok
12:06:23.0171 0488 BITS (2c69ec7e5a311334d10dd95f338fccea) C:\WINDOWS\system32\qmgr.dll
12:06:23.0187 0488 BITS - ok
12:06:23.0218 0488 Browser (39128b5a743545baedd3984c210f00a8) C:\WINDOWS\System32\browser.dll
12:06:23.0218 0488 Browser - ok
12:06:23.0328 0488 catchme - ok
12:06:23.0359 0488 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
12:06:23.0359 0488 cbidf2k - ok
12:06:23.0375 0488 cd20xrnt - ok
12:06:23.0390 0488 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
12:06:23.0406 0488 Cdaudio - ok
12:06:23.0453 0488 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
12:06:23.0453 0488 Cdfs - ok
12:06:23.0484 0488 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:06:23.0484 0488 Cdrom - ok
12:06:23.0500 0488 Changer - ok
12:06:23.0515 0488 CiSvc (3192bd04d032a9c4a85a3278c268a13a) C:\WINDOWS\system32\cisvc.exe
12:06:23.0515 0488 CiSvc - ok
12:06:23.0546 0488 ClipSrv (c8dec22c4137d7a90f8bdf41ca4b82ae) C:\WINDOWS\system32\clipsrv.exe
12:06:23.0546 0488 ClipSrv - ok
12:06:23.0703 0488 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:06:23.0703 0488 clr_optimization_v2.0.50727_32 - ok
12:06:23.0734 0488 CmBatt (4266be808f85826aedf3c64c1e240203) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
12:06:23.0750 0488 CmBatt - ok
12:06:23.0750 0488 CmdIde - ok
12:06:23.0765 0488 Compbatt (df1b1a24bf52d0ebc01ed4ece8979f50) C:\WINDOWS\system32\DRIVERS\compbatt.sys
12:06:23.0765 0488 Compbatt - ok
12:06:23.0796 0488 COMSysApp - ok
12:06:23.0812 0488 Cpqarray - ok
12:06:23.0859 0488 CryptSvc (87f3e2d2a3231f820f9248db90090f42) C:\WINDOWS\System32\cryptsvc.dll
12:06:23.0875 0488 CryptSvc - ok
12:06:23.0875 0488 dac2w2k - ok
12:06:23.0890 0488 dac960nt - ok
12:06:23.0968 0488 DcomLaunch (348f04e3582ef2467ee5379d67b99fd7) C:\WINDOWS\system32\rpcss.dll
12:06:23.0984 0488 DcomLaunch - ok
12:06:24.0015 0488 Dhcp (3f15a1dbd86f7bdaf404648282d11ece) C:\WINDOWS\System32\dhcpcsvc.dll
12:06:24.0015 0488 Dhcp - ok
12:06:24.0031 0488 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
12:06:24.0031 0488 Disk - ok
12:06:24.0171 0488 Diskeeper (26e09498268c88bd6a7c791ebc71dbe5) C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
12:06:24.0187 0488 Diskeeper - ok
12:06:24.0203 0488 dmadmin - ok
12:06:24.0296 0488 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
12:06:24.0328 0488 dmboot - ok
12:06:24.0359 0488 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
12:06:24.0359 0488 dmio - ok
12:06:24.0390 0488 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
12:06:24.0390 0488 dmload - ok
12:06:24.0421 0488 dmserver (1639d9964c9e1b2ecca95c8217d3e70d) C:\WINDOWS\System32\dmserver.dll
12:06:24.0437 0488 dmserver - ok
12:06:24.0500 0488 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
12:06:24.0500 0488 DMusic - ok
12:06:24.0515 0488 Dnscache (7379de06fd196e396a00aa97b990c00d) C:\WINDOWS\System32\dnsrslvr.dll
12:06:24.0515 0488 Dnscache - ok
12:06:24.0531 0488 dpti2o - ok
12:06:24.0546 0488 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
12:06:24.0562 0488 drmkaud - ok
12:06:24.0671 0488 E100B (7d91dc6342248369f94d6eba0cf42e99) C:\WINDOWS\system32\DRIVERS\e100b325.sys
12:06:24.0671 0488 E100B - ok
12:06:24.0703 0488 ERSvc (67dff7bbbd0e80aab7b3cf061448db8a) C:\WINDOWS\System32\ersvc.dll
12:06:24.0703 0488 ERSvc - ok
12:06:24.0734 0488 Eventlog (c6ce6eec82f187615d1002bb3bb50ed4) C:\WINDOWS\system32\services.exe
12:06:24.0750 0488 Eventlog - ok
12:06:24.0781 0488 EventSystem (3d9418cf112a11adc45e2a0c0a44df47) C:\WINDOWS\system32\es.dll
12:06:24.0796 0488 EventSystem - ok
12:06:24.0812 0488 ewusbnet - ok
12:06:24.0843 0488 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
12:06:24.0859 0488 Fastfat - ok
12:06:24.0921 0488 FastUserSwitchingCompatibility (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
12:06:24.0921 0488 FastUserSwitchingCompatibility - ok
12:06:24.0953 0488 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\drivers\Fdc.sys
12:06:24.0953 0488 Fdc - ok
12:06:24.0968 0488 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
12:06:24.0968 0488 Fips - ok
12:06:24.0984 0488 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\drivers\Flpydisk.sys
12:06:24.0984 0488 Flpydisk - ok
12:06:25.0031 0488 FltMgr (5a85cd3d07273e3f6fe72ee9c6431632) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
12:06:25.0031 0488 FltMgr - ok
12:06:25.0140 0488 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:06:25.0140 0488 FontCache3.0.0.0 - ok
12:06:25.0156 0488 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:06:25.0156 0488 Fs_Rec - ok
12:06:25.0187 0488 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:06:25.0187 0488 Ftdisk - ok
12:06:25.0234 0488 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:06:25.0265 0488 Gpc - ok
12:06:25.0281 0488 helpsvc (8827911a8c37e40c027cbfc88e69d967) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:06:25.0296 0488 helpsvc - ok
12:06:25.0343 0488 HidServ (9376e6893e52b368abc6255bf54f0b28) C:\WINDOWS\System32\hidserv.dll
12:06:25.0343 0488 HidServ - ok
12:06:25.0390 0488 hidusb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:06:25.0406 0488 hidusb - ok
12:06:25.0406 0488 hpn - ok
12:06:25.0468 0488 HSFHWICH (a84bbbdd125d370593004f6429f8445c) C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
12:06:25.0468 0488 HSFHWICH - ok
12:06:25.0562 0488 HSF_DPV (b678fa91cf4a1c19b462d8db04cd02ab) C:\WINDOWS\system32\DRIVERS\HSF_DPV.SYS
12:06:25.0593 0488 HSF_DPV - ok
12:06:25.0656 0488 HTTP (909d110c9634b0f1487eaaea837317d9) C:\WINDOWS\system32\Drivers\HTTP.sys
12:06:25.0671 0488 HTTP - ok
12:06:25.0703 0488 HTTPFilter (064d8581adf77c25133e7d751d917d83) C:\WINDOWS\System32\w3ssl.dll
12:06:25.0703 0488 HTTPFilter - ok
12:06:25.0718 0488 hwdatacard - ok
12:06:25.0734 0488 hwusbdev - ok
12:06:25.0750 0488 i2omgmt - ok
12:06:25.0750 0488 i2omp - ok
12:06:25.0796 0488 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
12:06:25.0812 0488 i8042prt - ok
12:06:26.0015 0488 ialm (d705558b6a678e894c5c67430eef67a2) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
12:06:26.0046 0488 ialm - ok
12:06:26.0265 0488 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:06:26.0281 0488 idsvc - ok
12:06:26.0421 0488 Imapi (12c59b8929121ace2f55acc86682cf12) C:\WINDOWS\system32\DRIVERS\imapi.sys
12:06:26.0421 0488 Imapi - ok
12:06:26.0468 0488 ImapiService (fa788520bcac0f5d9d5cde5615c0d931) C:\WINDOWS\system32\imapi.exe
12:06:26.0468 0488 ImapiService - ok
12:06:26.0500 0488 ini910u - ok
12:06:26.0546 0488 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
12:06:26.0546 0488 IntelIde - ok
12:06:26.0578 0488 intelppm (db8a1859cf9e48914dcc0a7206d87be5) C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:06:26.0578 0488 intelppm - ok
12:06:26.0593 0488 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
12:06:26.0609 0488 Ip6Fw - ok
12:06:26.0656 0488 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:06:26.0656 0488 IpFilterDriver - ok
12:06:26.0671 0488 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:06:26.0671 0488 IpInIp - ok
12:06:26.0703 0488 IpNat (472c75f85e631f8aa87d21c9fee6238d) C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:06:26.0718 0488 IpNat - ok
12:06:26.0734 0488 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:06:26.0734 0488 IPSec - ok
12:06:26.0781 0488 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
12:06:26.0781 0488 IRENUM - ok
12:06:26.0812 0488 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:06:26.0812 0488 isapnp - ok
12:06:26.0953 0488 JavaQuickStarterService (91061352084424820ac6268808cb8ee3) C:\Program Files\Java\jre6\bin\jqs.exe
12:06:26.0953 0488 JavaQuickStarterService - ok
12:06:27.0000 0488 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:06:27.0000 0488 Kbdclass - ok
12:06:27.0015 0488 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
12:06:27.0015 0488 kbdhid - ok
12:06:27.0062 0488 kmixer (8531438246ce9474e41ee1599904c0c7) C:\WINDOWS\system32\drivers\kmixer.sys
12:06:27.0062 0488 kmixer - ok
12:06:27.0093 0488 KSecDD (eb7ffe87fd367ea8fca0506f74a87fbb) C:\WINDOWS\system32\drivers\KSecDD.sys
12:06:27.0093 0488 KSecDD - ok
12:06:27.0140 0488 lanmanserver (76b15ac51a74be936ea86ea6e08817cf) C:\WINDOWS\System32\srvsvc.dll
12:06:27.0156 0488 lanmanserver - ok
12:06:27.0187 0488 lanmanworkstation (ef48ed538b8bf80825dabb6ba17f2f09) C:\WINDOWS\System32\wkssvc.dll
12:06:27.0203 0488 lanmanworkstation - ok
12:06:27.0203 0488 lbrtfdc - ok
12:06:27.0234 0488 LmHosts (b3eff6d938c572e90a07b3d87a3c7657) C:\WINDOWS\System32\lmhsvc.dll
12:06:27.0250 0488 LmHosts - ok
12:06:27.0328 0488 MDM (7cf1b716372b89568ae4c0fe769f5869) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
12:06:27.0328 0488 MDM - ok
12:06:27.0375 0488 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
12:06:27.0375 0488 mdmxsdk - ok
12:06:27.0406 0488 Messenger (95fd808e4ac22aba025a7b3eac0375d2) C:\WINDOWS\System32\msgsvc.dll
12:06:27.0421 0488 Messenger - ok
12:06:27.0484 0488 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
12:06:27.0500 0488 Microsoft Office Groove Audit Service - ok
12:06:27.0531 0488 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
12:06:27.0531 0488 mnmdd - ok
12:06:27.0562 0488 mnmsrvc (f6415361201915b9fe3896b0e4e724ff) C:\WINDOWS\system32\mnmsrvc.exe
12:06:27.0562 0488 mnmsrvc - ok
12:06:27.0609 0488 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
12:06:27.0609 0488 Modem - ok
12:06:27.0640 0488 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:06:27.0640 0488 Mouclass - ok
12:06:27.0671 0488 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
12:06:27.0671 0488 MountMgr - ok
12:06:27.0718 0488 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:06:27.0718 0488 MozillaMaintenance - ok
12:06:27.0734 0488 mraid35x - ok
12:06:27.0750 0488 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:06:27.0765 0488 MRxDAV - ok
12:06:27.0812 0488 MRxSmb (3ecc5f53a627b28a23aa7cc8c9376db4) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:06:27.0828 0488 MRxSmb - ok
12:06:27.0875 0488 MSDTC (c7c3d89eb0a6f3dba622ea737fa335b1) C:\WINDOWS\system32\msdtc.exe
12:06:27.0875 0488 MSDTC - ok
12:06:27.0906 0488 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
12:06:27.0906 0488 Msfs - ok
12:06:27.0921 0488 MSIServer - ok
12:06:27.0968 0488 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:06:27.0968 0488 MSKSSRV - ok
12:06:28.0000 0488 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:06:28.0000 0488 MSPCLOCK - ok
12:06:28.0015 0488 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
12:06:28.0015 0488 MSPQM - ok
12:06:28.0062 0488 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:06:28.0062 0488 mssmbios - ok
12:06:28.0093 0488 Mup (f66b6b1cddee6ca87cefc016eb7a0d8e) C:\WINDOWS\system32\drivers\Mup.sys
12:06:28.0093 0488 Mup - ok
12:06:28.0218 0488 NBService (87a00faedd703d8d2bdcb29ce5eeea6b) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
12:06:28.0234 0488 NBService - ok
12:06:28.0265 0488 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
12:06:28.0281 0488 NDIS - ok
12:06:28.0328 0488 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:06:28.0328 0488 NdisTapi - ok
12:06:28.0343 0488 Ndisuio (77d9bf86b912104c229d4f0d25be3c12) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:06:28.0343 0488 Ndisuio - ok
12:06:28.0359 0488 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:06:28.0375 0488 NdisWan - ok
12:06:28.0390 0488 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
12:06:28.0390 0488 NDProxy - ok
12:06:28.0406 0488 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
12:06:28.0406 0488 NetBIOS - ok
12:06:28.0437 0488 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
12:06:28.0437 0488 NetBT - ok
12:06:28.0468 0488 NetDDE (05afb5ad06462257bea7495283c86d50) C:\WINDOWS\system32\netdde.exe
12:06:28.0484 0488 NetDDE - ok
12:06:28.0500 0488 NetDDEdsdm (05afb5ad06462257bea7495283c86d50) C:\WINDOWS\system32\netdde.exe
12:06:28.0500 0488 NetDDEdsdm - ok
12:06:28.0546 0488 Netlogon (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
12:06:28.0562 0488 Netlogon - ok
12:06:28.0609 0488 Netman (3516d8a18b36784b1005b950b84232e1) C:\WINDOWS\System32\netman.dll
12:06:28.0625 0488 Netman - ok
12:06:28.0781 0488 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:06:28.0781 0488 NetTcpPortSharing - ok
12:06:28.0828 0488 Nla (4e74af063c3271fbea20dd940cfd1184) C:\WINDOWS\System32\mswsock.dll
12:06:28.0843 0488 Nla - ok
12:06:28.0843 0488 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
12:06:28.0859 0488 Npfs - ok
12:06:28.0921 0488 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
12:06:28.0953 0488 Ntfs - ok
12:06:28.0953 0488 NtLmSsp (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
12:06:28.0968 0488 NtLmSsp - ok
12:06:29.0015 0488 NtmsSvc (b62f29c00ac55a761b2e45877d85ea0f) C:\WINDOWS\system32\ntmssvc.dll
12:06:29.0046 0488 NtmsSvc - ok
12:06:29.0078 0488 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
12:06:29.0093 0488 Null - ok
12:06:29.0109 0488 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:06:29.0109 0488 NwlnkFlt - ok
12:06:29.0140 0488 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:06:29.0140 0488 NwlnkFwd - ok
12:06:29.0328 0488 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:06:29.0328 0488 odserv - ok
12:06:29.0390 0488 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:06:29.0390 0488 ose - ok
12:06:29.0437 0488 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\drivers\Parport.sys
12:06:29.0437 0488 Parport - ok
12:06:29.0453 0488 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
12:06:29.0453 0488 PartMgr - ok
12:06:29.0484 0488 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
12:06:29.0484 0488 ParVdm - ok
12:06:29.0546 0488 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
12:06:29.0546 0488 PCI - ok
12:06:29.0562 0488 PCIDump - ok
12:06:29.0578 0488 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\drivers\PCIIde.sys
12:06:29.0593 0488 PCIIde - ok
12:06:29.0656 0488 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
12:06:29.0656 0488 Pcmcia - ok
12:06:29.0671 0488 PDCOMP - ok
12:06:29.0687 0488 PDFRAME - ok
12:06:29.0687 0488 PDRELI - ok
12:06:29.0703 0488 PDRFRAME - ok
12:06:29.0718 0488 perc2 - ok
12:06:29.0734 0488 perc2hib - ok
12:06:29.0781 0488 PlugPlay (c6ce6eec82f187615d1002bb3bb50ed4) C:\WINDOWS\system32\services.exe
12:06:29.0796 0488 PlugPlay - ok
12:06:29.0859 0488 PolicyAgent (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
12:06:29.0875 0488 PolicyAgent - ok
12:06:29.0906 0488 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:06:29.0906 0488 PptpMiniport - ok
12:06:29.0921 0488 ProtectedStorage (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
12:06:29.0921 0488 ProtectedStorage - ok
12:06:29.0937 0488 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
12:06:29.0953 0488 PSched - ok
12:06:29.0968 0488 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:06:29.0968 0488 Ptilink - ok
12:06:29.0984 0488 ql1080 - ok
12:06:29.0984 0488 Ql10wnt - ok
12:06:30.0000 0488 ql12160 - ok
12:06:30.0015 0488 ql1240 - ok
12:06:30.0031 0488 ql1280 - ok
12:06:30.0046 0488 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:06:30.0046 0488 RasAcd - ok
12:06:30.0078 0488 RasAuto (44db7a9bdd2fb58747d123fbf1d35adb) C:\WINDOWS\System32\rasauto.dll
12:06:30.0093 0488 RasAuto - ok
12:06:30.0125 0488 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:06:30.0125 0488 Rasl2tp - ok
12:06:30.0171 0488 RasMan (ed5e89dedb0111e2869cb37d62b46c7a) C:\WINDOWS\System32\rasmans.dll
12:06:30.0187 0488 RasMan - ok
12:06:30.0203 0488 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:06:30.0203 0488 RasPppoe - ok
12:06:30.0218 0488 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
12:06:30.0218 0488 Raspti - ok
12:06:30.0250 0488 Rdbss (b48441a6dc703ee4c36db14ee51a189c) C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:06:30.0265 0488 Rdbss - ok
12:06:30.0281 0488 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:06:30.0281 0488 RDPCDD - ok
12:06:30.0296 0488 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
12:06:30.0312 0488 rdpdr - ok
12:06:30.0359 0488 RDPWD (047bea21274c8a4a233674a76c958c2c) C:\WINDOWS\system32\drivers\RDPWD.sys
12:06:30.0359 0488 RDPWD - ok
12:06:30.0390 0488 RDSessMgr (729798e0933076b8fcfcd9934698f164) C:\WINDOWS\system32\sessmgr.exe
12:06:30.0406 0488 RDSessMgr - ok
12:06:30.0421 0488 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
12:06:30.0437 0488 redbook - ok
12:06:30.0468 0488 RemoteAccess (3046db917e3cfa040632799dd9b14865) C:\WINDOWS\System32\mprdim.dll
12:06:30.0484 0488 RemoteAccess - ok
12:06:30.0515 0488 RemoteRegistry (3151427db7d87107d1c5be58fac53960) C:\WINDOWS\system32\regsvc.dll
12:06:30.0531 0488 RemoteRegistry - ok
12:06:30.0562 0488 RpcLocator (793f04a09b15e7c6c11dbdffaf06c0ab) C:\WINDOWS\system32\locator.exe
12:06:30.0562 0488 RpcLocator - ok
12:06:30.0609 0488 RpcSs (348f04e3582ef2467ee5379d67b99fd7) C:\WINDOWS\System32\rpcss.dll
12:06:30.0625 0488 RpcSs - ok
12:06:30.0656 0488 rspndr (0e11b35e972796042044bc27ce13b065) C:\WINDOWS\system32\DRIVERS\rspndr.sys
12:06:30.0656 0488 rspndr - ok
12:06:30.0687 0488 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
12:06:30.0703 0488 RSVP - ok
12:06:30.0718 0488 SamSs (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
12:06:30.0734 0488 SamSs - ok
12:06:30.0750 0488 SCardSvr (25d8de134df108e3dbc8d7d23b1aa58e) C:\WINDOWS\System32\SCardSvr.exe
12:06:30.0765 0488 SCardSvr - ok
12:06:30.0812 0488 Schedule (92360854316611f6cc471612213c3d92) C:\WINDOWS\system32\schedsvc.dll
12:06:30.0828 0488 Schedule - ok
12:06:30.0890 0488 Secdrv (07f7f501ad50de2ba2d5842d9b6d6155) C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:06:30.0890 0488 Secdrv - ok
12:06:30.0921 0488 seclogon (b1e0ce09895376871746f36dc5773b4f) C:\WINDOWS\System32\seclogon.dll
12:06:30.0921 0488 seclogon - ok
12:06:30.0953 0488 SENS (dfd9870cf39c791d86c4c209da9fa919) C:\WINDOWS\system32\sens.dll
12:06:30.0968 0488 SENS - ok
12:06:30.0984 0488 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\drivers\Serial.sys
12:06:30.0984 0488 Serial - ok
12:06:31.0031 0488 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
12:06:31.0031 0488 Sfloppy - ok
12:06:31.0093 0488 SharedAccess (36cc8c01b5e50163037bef56cb96deff) C:\WINDOWS\System32\ipnathlp.dll
12:06:31.0109 0488 SharedAccess - ok
12:06:31.0171 0488 ShellHWDetection (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
12:06:31.0171 0488 ShellHWDetection - ok
12:06:31.0187 0488 Simbad - ok
12:06:31.0203 0488 Sparrow - ok
12:06:31.0250 0488 splitter (9bb1dd670cb7505a90fc4e61d4aa8227) C:\WINDOWS\system32\drivers\splitter.sys
12:06:31.0250 0488 splitter - ok
12:06:31.0296 0488 Spooler (ad3d9d191aea7b5445fe1d82ffbb4788) C:\WINDOWS\system32\spoolsv.exe
12:06:31.0296 0488 Spooler - ok
12:06:31.0328 0488 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
12:06:31.0328 0488 sr - ok
12:06:31.0375 0488 srservice (92bdf74f12d6cbec43c94d4b7f804838) C:\WINDOWS\system32\srsvc.dll
12:06:31.0390 0488 srservice - ok
12:06:31.0437 0488 Srv (5230953c21c811b5fc1ff31ae2b48097) C:\WINDOWS\system32\DRIVERS\srv.sys
12:06:31.0453 0488 Srv - ok
12:06:31.0484 0488 SSDPSRV (4b8d61792f7175bed48859cc18ce4e38) C:\WINDOWS\System32\ssdpsrv.dll
12:06:31.0500 0488 SSDPSRV - ok
12:06:31.0531 0488 STAC97 (305cc42945a713347f978d78566113f3) C:\WINDOWS\system32\drivers\STAC97.sys
12:06:31.0546 0488 STAC97 - ok
12:06:31.0578 0488 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
12:06:31.0593 0488 StillCam - ok
12:06:31.0640 0488 stisvc (d9f6c4f6b1e188adafc42b561d9bc2e6) C:\WINDOWS\system32\wiaservc.dll
12:06:31.0671 0488 stisvc - ok
12:06:31.0687 0488 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
12:06:31.0703 0488 swenum - ok
12:06:31.0734 0488 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
12:06:31.0734 0488 swmidi - ok
12:06:31.0750 0488 SwPrv - ok
12:06:31.0765 0488 symc810 - ok
12:06:31.0765 0488 symc8xx - ok
12:06:31.0781 0488 sym_hi - ok
12:06:31.0796 0488 sym_u3 - ok
12:06:31.0875 0488 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
12:06:31.0875 0488 sysaudio - ok
12:06:31.0921 0488 SysmonLog (8b54aa346d1b1b113ffaa75501b8b1b2) C:\WINDOWS\system32\smlogsvc.exe
12:06:31.0921 0488 SysmonLog - ok
12:06:31.0984 0488 TapiSrv (1418a3a6e76e5a2e3f5e43866e793a8b) C:\WINDOWS\System32\tapisrv.dll
12:06:32.0000 0488 TapiSrv - ok
12:06:32.0093 0488 Tcpip (c5e8c53a50767f016b539d946ed8b121) C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:06:32.0109 0488 Tcpip - ok
12:06:32.0140 0488 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
12:06:32.0140 0488 TDPIPE - ok
12:06:32.0171 0488 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
12:06:32.0187 0488 TDTCP - ok
12:06:32.0203 0488 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
12:06:32.0218 0488 TermDD - ok
12:06:32.0265 0488 TermService (c29a5286e64d97385178452d5f307b98) C:\WINDOWS\System32\termsrv.dll
12:06:32.0281 0488 TermService - ok
12:06:32.0312 0488 Themes (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
12:06:32.0328 0488 Themes - ok
12:06:32.0375 0488 TlntSvr (37db0a7d097310e8b4de803fc3119c78) C:\WINDOWS\system32\tlntsvr.exe
12:06:32.0390 0488 TlntSvr - ok
12:06:32.0406 0488 TosIde - ok
12:06:32.0421 0488 TrkWks (6d9ac544b30f96c57f8206566c1fb6a1) C:\WINDOWS\system32\trkwks.dll
12:06:32.0437 0488 TrkWks - ok
12:06:32.0484 0488 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
12:06:32.0484 0488 Udfs - ok
12:06:32.0500 0488 UIUSys - ok
12:06:32.0515 0488 ultra - ok
12:06:32.0562 0488 Update (a4815a4884898f355a3513e60843a4fd) C:\WINDOWS\system32\DRIVERS\update.sys
12:06:32.0578 0488 Update - ok
12:06:32.0609 0488 upnphost (0546477bde979e33294fe97f6b3de84a) C:\WINDOWS\System32\upnphost.dll
12:06:32.0640 0488 upnphost - ok
12:06:32.0656 0488 UPS (3f5df65b0758675f95a2d43918a740a3) C:\WINDOWS\System32\ups.exe
12:06:32.0671 0488 UPS - ok
12:06:32.0703 0488 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:06:32.0703 0488 usbccgp - ok
12:06:32.0750 0488 usbehci (a45ea1550ea4b368c4fba7ca9d056bc9) C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:06:32.0750 0488 usbehci - ok
12:06:32.0765 0488 usbhub (6d46b1f89134892a862ac56b00ac11fe) C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:06:32.0765 0488 usbhub - ok
12:06:32.0828 0488 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:06:32.0859 0488 usbprint - ok
12:06:32.0968 0488 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:06:32.0984 0488 usbscan - ok
12:06:33.0015 0488 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:06:33.0015 0488 USBSTOR - ok
12:06:33.0062 0488 usbuhci (0ee1925590ba1abec14254d54d9870f4) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:06:33.0062 0488 usbuhci - ok
12:06:33.0093 0488 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
12:06:33.0093 0488 VgaSave - ok
12:06:33.0109 0488 ViaIde - ok
12:06:33.0140 0488 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
12:06:33.0156 0488 VolSnap - ok
12:06:33.0250 0488 VSS (3ee00364ae0fd8d604f46cbaf512838a) C:\WINDOWS\System32\vssvc.exe
12:06:33.0265 0488 VSS - ok
12:06:33.0312 0488 W32Time (2b281958f5d0cf99ed626e3ef39d5c8d) C:\WINDOWS\system32\w32time.dll
12:06:33.0343 0488 W32Time - ok
12:06:33.0375 0488 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:06:33.0375 0488 Wanarp - ok
12:06:33.0390 0488 WDICA - ok
12:06:33.0437 0488 wdmaud (0bfa8203b8148fb4e54bc212c41ce497) C:\WINDOWS\system32\drivers\wdmaud.sys
12:06:33.0453 0488 wdmaud - ok
12:06:33.0484 0488 WebClient (346e7d636adfe4e3b1b32af8326220ff) C:\WINDOWS\System32\webclnt.dll
12:06:33.0500 0488 WebClient - ok
12:06:33.0593 0488 winachsf (0c5b9cf1bdf998750d9c5eeb5f8c55ac) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
12:06:33.0609 0488 winachsf - ok
12:06:33.0671 0488 winmgmt (f399242a80c4066fd155efa4cf96658e) C:\WINDOWS\system32\wbem\WMIsvc.dll
12:06:33.0687 0488 winmgmt - ok
12:06:33.0718 0488 wltrysvc - ok
12:06:33.0750 0488 WmdmPmSN (f4db1f1417ff329e8ff217d5c474d5d7) C:\WINDOWS\system32\MsPMSNSv.dll
12:06:33.0765 0488 WmdmPmSN - ok
12:06:33.0875 0488 Wmi (1aff244ca134956c54474f4e2433e4ce) C:\WINDOWS\System32\advapi32.dll
12:06:33.0906 0488 Wmi - ok
12:06:33.0953 0488 WmiApSrv (ba8cecc3e813e1f7c441b20393d4f86c) C:\WINDOWS\system32\wbem\wmiapsrv.exe
12:06:33.0953 0488 WmiApSrv - ok
12:06:34.0078 0488 WMPNetworkSvc (4f51f2688c51520211c3810c8548e639) C:\Program Files\Windows Media Player\WMPNetwk.exe
12:06:34.0109 0488 WMPNetworkSvc - ok
12:06:34.0171 0488 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
12:06:34.0171 0488 WS2IFSL - ok
12:06:34.0234 0488 wscsvc (478995b4555958e52388496618d9c678) C:\WINDOWS\system32\wscsvc.dll
12:06:34.0250 0488 wscsvc - ok
12:06:34.0281 0488 wuauserv (b72508649dad03bcb5d708edb1e3e57e) C:\WINDOWS\system32\wuauserv.dll
12:06:34.0296 0488 wuauserv - ok
12:06:34.0328 0488 WudfPf (443f0a35cb3be5d176053da39157a898) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
12:06:34.0328 0488 WudfPf - ok
12:06:34.0359 0488 WudfRd (e12d4c486d7eb4e0961c27558dc25af7) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
12:06:34.0359 0488 WudfRd - ok
12:06:34.0390 0488 WudfSvc (8a92b1f02571b634f50db35a934989f6) C:\WINDOWS\System32\WUDFSvc.dll
12:06:34.0406 0488 WudfSvc - ok
12:06:34.0468 0488 WZCSVC (b1f190a2bf52b8f4601c677f475ce5e5) C:\WINDOWS\System32\wzcsvc.dll
12:06:34.0484 0488 WZCSVC - ok
12:06:34.0531 0488 xmlprov (eef46dab68229a14da3d8e73c99e2959) C:\WINDOWS\System32\xmlprov.dll
12:06:34.0546 0488 xmlprov - ok
12:06:34.0609 0488 ZTEusbmdm6k (1d4eb2e5fc4276cd5e9b862d349f68bd) C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys
12:06:34.0625 0488 ZTEusbmdm6k - ok
12:06:34.0656 0488 ZTEusbnmea (1d4eb2e5fc4276cd5e9b862d349f68bd) C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys
12:06:34.0671 0488 ZTEusbnmea - ok
12:06:34.0703 0488 ZTEusbser6k (1d4eb2e5fc4276cd5e9b862d349f68bd) C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys
12:06:34.0703 0488 ZTEusbser6k - ok
12:06:34.0734 0488 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
12:06:35.0078 0488 \Device\Harddisk0\DR0 - ok
12:06:35.0078 0488 Boot (0x1200) (98cb2f035b491f8c5faccdfd08ba6f83) \Device\Harddisk0\DR0\Partition0
12:06:35.0078 0488 \Device\Harddisk0\DR0\Partition0 - ok
12:06:35.0093 0488 Boot (0x1200) (c8bf21c9e489f67acc9ae1628b6e1773) \Device\Harddisk0\DR0\Partition1
12:06:35.0093 0488 \Device\Harddisk0\DR0\Partition1 - ok
12:06:35.0093 0488 ============================================================
12:06:35.0093 0488 Scan finished
12:06:35.0093 0488 ============================================================
12:06:35.0125 0272 Detected object count: 0
12:06:35.0125 0272 Actual detected object count: 0
12:09:23.0078 3192 Deinitialize success

#4 tvaddicts

tvaddicts
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 10 May 2012 - 01:00 AM

Here's the aswMBR. I can't seem to post the GMER logs because it's too long. After hitting post button, I've got "Your post was too long. Please go back and shorten it a little. " error..


aswMBR logs:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-09 12:51:51
-----------------------------
12:51:51.156 OS Version: Windows 5.1.2600 Service Pack 2
12:51:51.156 Number of processors: 1 586 0xD08
12:51:51.156 ComputerName: PAL UserName:
12:51:51.921 Initialize success
12:51:52.984 AVAST engine defs: 12050900
12:52:44.953 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4
12:52:44.953 Disk 0 Vendor: TOSHIBA_MK8026GAX PA002D Size: 76318MB BusType: 3
12:52:45.000 Disk 0 MBR read successfully
12:52:45.000 Disk 0 MBR scan
12:52:45.406 Disk 0 Windows XP default MBR code
12:52:45.453 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 49999 MB offset 63
12:52:45.734 Disk 0 Partition - 00 0F Extended LBA 26309 MB offset 102398310
12:52:45.796 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 26309 MB offset 102398373
12:52:45.859 Disk 0 scanning sectors +156280320
12:52:46.328 Disk 0 scanning C:\WINDOWS\system32\drivers
12:53:26.875 Service scanning
12:53:40.453 Modules scanning
12:54:27.625 Disk 0 trace - called modules:
12:54:27.656 ntkrnlpa.exe catchme.sys CLASSPNP.SYS disk.sys atapi.sys hal.dll intelide.sys PCIIDEX.SYS
12:54:27.656 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x823e7ab8]
12:54:27.656 3 CLASSPNP.SYS[f84b2fcf] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-4[0x823772f8]
12:54:28.234 AVAST engine scan C:\WINDOWS
12:54:51.296 AVAST engine scan C:\WINDOWS\system32
12:02:13.531 AVAST engine scan C:\WINDOWS\system32\drivers
12:02:59.609 AVAST engine scan C:\Documents and Settings\Admin
12:08:30.421 AVAST engine scan C:\Documents and Settings\All Users
12:09:33.437 Scan finished successfully
12:12:55.484 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
12:12:55.484 The log file has been saved successfully to "C:\aswMBR.txt"

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:26 AM

Posted 10 May 2012 - 01:28 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#6 tvaddicts

tvaddicts
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 10 May 2012 - 09:34 AM

Hi narenxp,

Followed your instructions about MBAM, got 10 infected objects and removed it.

No threats detected by Eset Online Scanner.

As for MiniToolBox, got the below results;

MiniToolBox by Farbar Version: 18-01-2012
Ran by Admin (administrator) on 09-05-2012 at 12:03:43
Microsoft Windows XP Professional Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Dell Wireless 1450 Dual Band WLAN Mini-PCI Card = Wireless Network Connection (Connected)
Intel® PRO/100 VE Network Connection = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : pal

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Dell Wireless 1450 Dual Band WLAN Mini-PCI Card

Physical Address. . . . . . . . . : 00-0B-7D-24-E0-6B

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 10.0.0.4

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 10.0.0.1

DHCP Server . . . . . . . . . . . : 10.0.0.1

DNS Servers . . . . . . . . . . . : 10.0.0.1

Lease Obtained. . . . . . . . . . : Wednesday, May 09, 2012 12:06:32 PM

Lease Expires . . . . . . . . . . : Thursday, May 10, 2012 12:06:32 PM



Ethernet adapter Local Area Connection 2:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection

Physical Address. . . . . . . . . : 00-12-3F-05-D7-B6

Server: UnKnown
Address: 10.0.0.1

Name: google.com
Addresses: 74.125.71.139, 74.125.71.100, 74.125.71.101, 74.125.71.102
74.125.71.113, 74.125.71.138



Pinging google.com [74.125.71.138] with 32 bytes of data:



Reply from 74.125.71.138: bytes=32 time=65ms TTL=54

Reply from 74.125.71.138: bytes=32 time=66ms TTL=54



Ping statistics for 74.125.71.138:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 65ms, Maximum = 66ms, Average = 65ms

Server: UnKnown
Address: 10.0.0.1

Name: yahoo.com
Addresses: 209.191.122.70, 72.30.38.140, 98.139.183.24



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:



Reply from 209.191.122.70: bytes=32 time=200ms TTL=49

Reply from 209.191.122.70: bytes=32 time=202ms TTL=49



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 200ms, Maximum = 202ms, Average = 201ms

Server: UnKnown
Address: 10.0.0.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 0b 7d 24 e0 6b ...... Dell Wireless 1450 Dual Band WLAN Mini-PCI Card - Packet Scheduler Miniport
0x3 ...00 12 3f 05 d7 b6 ...... Intel® PRO/100 VE Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.0.0.1 10.0.0.4 25
10.0.0.0 255.255.255.0 10.0.0.4 10.0.0.4 25
10.0.0.4 255.255.255.255 127.0.0.1 127.0.0.1 25
10.255.255.255 255.255.255.255 10.0.0.4 10.0.0.4 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
224.0.0.0 240.0.0.0 10.0.0.4 10.0.0.4 25
255.255.255.255 255.255.255.255 10.0.0.4 3 1
255.255.255.255 255.255.255.255 10.0.0.4 10.0.0.4 1
Default Gateway: 10.0.0.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [90112] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [90112] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/09/2012 00:05:26 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/09/2012 00:05:26 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/09/2012 00:52:21 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: A connection with the server could not be established

Error: (05/09/2012 00:52:17 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/09/2012 00:52:17 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (08/09/2011 08:51:03 PM) (Source: Microsoft Office 12) (User: )
Description: EventType officelifeboathang, P1 winword.exe, P2 12.0.4518.1014, P3 ntdll.dll, P4 5.1.2600.2180, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 officelifeboathang0, P10 officelifeboathang1.

Error: (08/05/2011 08:17:15 AM) (Source: MsiInstaller) (User: Admin)Admin
Description: Product: Macromedia Shockwave Player -- Error 1904. Module C:\WINDOWS\system32\Macromed\Flash\Flash.ocx failed to register. HRESULT -2147220473. Contact your support personnel.


System errors:
=============
Error: (05/09/2012 00:01:49 PM) (Source: 0) (User: )
Description: 0xC0000001HarddiskVolume1

Error: (05/09/2012 00:04:46 PM) (Source: Dhcp) (User: )
Description: Your computer has lost the lease to its IP address 10.0.0.4 on the
Network Card with network address 000B7D24E06B.

Error: (05/06/2012 00:49:50 AM) (Source: W32Time) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible.
No attempt to contact a source will be made for 14 minutes.
NtpClient has no source of accurate time.

Error: (05/06/2012 00:49:50 AM) (Source: W32Time) (User: )
Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually
configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15
minutes.
The error was: A socket operation was attempted to an unreachable host. (0x80072751)

Error: (08/09/2011 08:33:42 PM) (Source: W32Time) (User: )
Description: The time service has detected that the system time needs to be
changed by +19158196 seconds. The time service will not change the system
time by more than +54000 seconds. Verify that your time and time zone
are correct, and that the time source time.windows.com (ntp.m|0x1|10.141.56.6:123->65.55.21.19:123) is working properly.

Error: (08/09/2011 08:38:59 PM) (Source: W32Time) (User: )
Description: The time service has detected that the system time needs to be
changed by +19060500 seconds. The time service will not change the system
time by more than +54000 seconds. Verify that your time and time zone
are correct, and that the time source time.windows.com (ntp.m|0x1|10.141.55.3:123->65.55.21.13:123) is working properly.

Error: (08/09/2011 08:32:47 PM) (Source: W32Time) (User: )
Description: The time service has detected that the system time needs to be
changed by +19005121 seconds. The time service will not change the system
time by more than +54000 seconds. Verify that your time and time zone
are correct, and that the time source time.windows.com (ntp.m|0x1|10.141.107.66:123->65.55.21.13:123) is working properly.

Error: (08/09/2011 08:35:27 PM) (Source: W32Time) (User: )
Description: The time service has detected that the system time needs to be
changed by +18981771 seconds. The time service will not change the system
time by more than +54000 seconds. Verify that your time and time zone
are correct, and that the time source time.windows.com (ntp.m|0x1|10.141.20.32:123->65.55.21.20:123) is working properly.

Error: (08/09/2011 08:33:04 PM) (Source: W32Time) (User: )
Description: The time service has detected that the system time needs to be
changed by +18972497 seconds. The time service will not change the system
time by more than +54000 seconds. Verify that your time and time zone
are correct, and that the time source time.windows.com (ntp.m|0x1|10.141.61.58:123->65.55.21.23:123) is working properly.

Error: (08/09/2011 08:30:40 PM) (Source: W32Time) (User: )
Description: The time service has detected that the system time needs to be
changed by +18842857 seconds. The time service will not change the system
time by more than +54000 seconds. Verify that your time and time zone
are correct, and that the time source time.windows.com (ntp.m|0x1|10.240.250.45:123->65.55.21.23:123) is working properly.


Microsoft Office Sessions:
=========================
Error: (08/09/2011 08:35:28 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 0 seconds with 1860 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

avast! Internet Security (Version: 7.0.1426.0)
C-Major Audio (Version: 42xx)
Conexant D110 MDC V.92 Modem
Dell Wireless WLAN Card (Version: 4.10.47.3)
Diskeeper 2007 Pro Premier (Version: 11.0.686.32)
ESET Online Scanner v3
HP Deskjet Ink Adv 2060 K110 Basic Device Software (Version: 22.0.334.0)
HP Deskjet Ink Adv 2060 K110 Help (Version: 140.0.2.2)
HP Deskjet Ink Adv 2060 K110 Product Improvement Study (Version: 22.0.334.0)
HP Photo Creations (Version: 1.0.0.3341)
HP Update (Version: 5.002.005.003)
Intel® Graphics Media Accelerator Driver for Mobile (Version: 6.14.10.4609)
Intel® PRO Network Adapters and Drivers
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 27 (Version: 6.0.270)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.4518.1014)
Microsoft User-Mode Driver Framework Feature Pack 1.0.0 (Pre-Release 5348)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSN
MSXML 4.0 SP2 (KB925672) (Version: 4.20.9839.0)
MSXML 6.0 Parser (KB925673) (Version: 6.00.3888.0)
Nero 7 Premium (Version: 7.02.2760)
SMART BRO (Version: 1.0.0.0)
Software Update for Web Folders (Version: 9.60.6715.0)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 7 (Version: 20061017.133151)
Windows Media Format 11 runtime
Windows Media Player 11
WinDVD (Version: 8.0.0.0)

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 503.37 MB
Available physical RAM: 269.58 MB
Total Pagefile: 1229.77 MB
Available Pagefile: 985.59 MB
Total Virtual: 2047.88 MB
Available Virtual: 1977.94 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:48.83 GB) (Free:30.91 GB) NTFS
2 Drive d: () (Fixed) (Total:25.69 GB) (Free:25.52 GB) NTFS

========================= Users: ========================================

User accounts for \\PAL

Admin Administrator Guest
HelpAssistant SUPPORT_388945a0


**** End of log ****

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:26 AM

Posted 10 May 2012 - 10:05 AM

Do you still have issues?

#8 tvaddicts

tvaddicts
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 10 May 2012 - 10:25 AM

Yeap, still can't install ccleaner as well as flash player. Same error as before...

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:26 AM

Posted 10 May 2012 - 12:45 PM

Try this

Press Windows+R key and type


MSCONFIG and click ok

Check mark SELECTIVE STARTUP

Uncheck LOAD STARTUP ITEMS

Click on services tab,

check mark HIDE ALL MICROSOFT SERVICES

& then click on DISABLE ALL

click ok,restart the PC in normal mode and see if you can install them now

Download

http://download.sysinternals.com/files/ProcessExplorer.zip

Extract and launch it,if you still receive the error,launch process explorer and check which process initiates the AXWIN windows

good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users