Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cannot connect to internet


  • Please log in to reply
60 replies to this topic

#1 Bernard1027

Bernard1027

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 23 November 2012 - 10:22 AM

OS is Windows XP Service Pack 3

After Scanning with SuperAntiSpyware it picked up numerous tracking cookies and a trojan. Unfortunately, I did not note the name of the trojan and proceeded with the normal cleaning of the files it detected. SAS required a reboot to clean the trojan which I did. After rebooting I could not connect to the internet. Currently, I am on a laptop connected to the same router that my infected machine is on and have internet access.

I have tried to connect my infected machine with the connection Wizard to no avail. I cannot access the firewall. The error messages I am getting are: Windows firewall settings cannot be displayed because the associated service is not running. or Windows cannot start the Windows Firewall/ICS Service. or Error 10050 - A socket operation encountered a dead network.

Also, A new icon appeared in the icon tray and when moused over the ballon says Acquiring network address...but never does.

Please advise how this can be cured.

Thank you,
Bernard

Edited by Bernard1027, 23 November 2012 - 10:29 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:21 AM

Posted 23 November 2012 - 12:11 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

#3 Bernard1027

Bernard1027
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 23 November 2012 - 01:56 PM

As instructed, the 3 logs are below.

13:39:27.0578 1940 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
13:39:27.0578 1940 ============================================================
13:39:27.0578 1940 Current date / time: 2012/11/23 13:39:27.0578
13:39:27.0578 1940 SystemInfo:
13:39:27.0578 1940
13:39:27.0578 1940 OS Version: 5.1.2600 ServicePack: 3.0
13:39:27.0578 1940 Product type: Workstation
13:39:27.0578 1940 ComputerName: WINXP_PRO
13:39:27.0578 1940 UserName: Sonny
13:39:27.0578 1940 Windows directory: C:\WINDOWS
13:39:27.0578 1940 System windows directory: C:\WINDOWS
13:39:27.0578 1940 Processor architecture: Intel x86
13:39:27.0578 1940 Number of processors: 2
13:39:27.0578 1940 Page size: 0x1000
13:39:27.0578 1940 Boot type: Normal boot
13:39:27.0578 1940 ============================================================
13:39:29.0953 1940 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
13:39:30.0046 1940 Drive \Device\Harddisk1\DR3 - Size: 0xE8DED00000 (931.48 Gb), SectorSize: 0x200, Cylinders: 0x1DAFD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:39:30.0062 1940 ============================================================
13:39:30.0062 1940 \Device\Harddisk0\DR0:
13:39:30.0062 1940 MBR partitions:
13:39:30.0062 1940 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x74315A, BlocksNum 0x39C41AE7
13:39:30.0062 1940 \Device\Harddisk1\DR3:
13:39:30.0062 1940 MBR partitions:
13:39:30.0062 1940 \Device\Harddisk1\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x746F6000
13:39:30.0062 1940 ============================================================
13:39:30.0109 1940 C: <-> \Device\Harddisk0\DR0\Partition1
13:39:30.0531 1940 I: <-> \Device\Harddisk1\DR3\Partition1
13:39:30.0531 1940 ============================================================
13:39:30.0531 1940 Initialize success
13:39:30.0531 1940 ============================================================
13:40:15.0234 3432 ============================================================
13:40:15.0234 3432 Scan started
13:40:15.0234 3432 Mode: Manual; TDLFS;
13:40:15.0234 3432 ============================================================
13:40:15.0843 3432 ================ Scan system memory ========================
13:40:15.0843 3432 System memory - ok
13:40:15.0843 3432 ================ Scan services =============================
13:40:15.0890 3432 !SASCORE - ok
13:40:15.0984 3432 [ 3FEFA63FDACBAB9C020CE2273AC45C47 ] 6to4 C:\WINDOWS\System32\6to4svc.dll
13:40:15.0984 3432 6to4 - ok
13:40:16.0000 3432 Abiosdsk - ok
13:40:16.0000 3432 abp480n5 - ok
13:40:16.0015 3432 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
13:40:16.0015 3432 ACPI - ok
13:40:16.0046 3432 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
13:40:16.0062 3432 ACPIEC - ok
13:40:16.0062 3432 adpu160m - ok
13:40:16.0078 3432 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
13:40:16.0109 3432 aec - ok
13:40:16.0109 3432 Aha154x - ok
13:40:16.0125 3432 aic78u2 - ok
13:40:16.0125 3432 aic78xx - ok
13:40:16.0140 3432 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
13:40:16.0156 3432 Alerter - ok
13:40:16.0171 3432 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
13:40:16.0187 3432 ALG - ok
13:40:16.0203 3432 AliIde - ok
13:40:16.0203 3432 amsint - ok
13:40:16.0203 3432 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
13:40:16.0234 3432 AppMgmt - ok
13:40:16.0234 3432 asc - ok
13:40:16.0234 3432 asc3350p - ok
13:40:16.0234 3432 asc3550 - ok
13:40:16.0328 3432 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
13:40:16.0328 3432 aspnet_state - ok
13:40:16.0343 3432 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
13:40:16.0375 3432 AsyncMac - ok
13:40:16.0406 3432 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\ATAPI.SYS
13:40:16.0406 3432 atapi - ok
13:40:16.0406 3432 Atdisk - ok
13:40:16.0421 3432 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
13:40:16.0437 3432 Atmarpc - ok
13:40:16.0453 3432 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
13:40:16.0468 3432 AudioSrv - ok
13:40:16.0500 3432 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
13:40:16.0500 3432 audstub - ok
13:40:16.0531 3432 [ 5D7BE7B19E827125E016325334E58FF1 ] BANTExt C:\WINDOWS\System32\Drivers\BANTExt.sys
13:40:16.0531 3432 BANTExt - ok
13:40:16.0546 3432 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
13:40:16.0578 3432 Beep - ok
13:40:16.0625 3432 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
13:40:16.0640 3432 BITS - ok
13:40:16.0656 3432 brmfrmps - ok
13:40:16.0687 3432 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
13:40:16.0687 3432 Browser - ok
13:40:16.0812 3432 catchme - ok
13:40:16.0828 3432 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
13:40:16.0843 3432 cbidf2k - ok
13:40:16.0906 3432 [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
13:40:16.0906 3432 CCALib8 - ok
13:40:16.0921 3432 cd20xrnt - ok
13:40:16.0937 3432 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
13:40:16.0984 3432 Cdaudio - ok
13:40:17.0031 3432 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
13:40:17.0031 3432 Cdfs - ok
13:40:17.0046 3432 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
13:40:17.0078 3432 Cdrom - ok
13:40:17.0078 3432 Changer - ok
13:40:17.0109 3432 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
13:40:17.0125 3432 CiSvc - ok
13:40:17.0140 3432 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
13:40:17.0171 3432 ClipSrv - ok
13:40:17.0203 3432 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:40:17.0203 3432 clr_optimization_v2.0.50727_32 - ok
13:40:17.0281 3432 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:40:17.0281 3432 clr_optimization_v4.0.30319_32 - ok
13:40:17.0281 3432 CmdIde - ok
13:40:17.0296 3432 COMSysApp - ok
13:40:17.0296 3432 Cpqarray - ok
13:40:17.0296 3432 cpuz134 - ok
13:40:17.0328 3432 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
13:40:17.0328 3432 CryptSvc - ok
13:40:17.0328 3432 ctbund - ok
13:40:17.0328 3432 dac2w2k - ok
13:40:17.0328 3432 dac960nt - ok
13:40:17.0375 3432 [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
13:40:17.0375 3432 DcomLaunch - ok
13:40:17.0406 3432 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
13:40:17.0406 3432 Dhcp - ok
13:40:17.0437 3432 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
13:40:17.0437 3432 Disk - ok
13:40:17.0437 3432 dmadmin - ok
13:40:17.0453 3432 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
13:40:17.0484 3432 dmboot - ok
13:40:17.0531 3432 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
13:40:17.0531 3432 dmio - ok
13:40:17.0562 3432 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
13:40:17.0562 3432 dmload - ok
13:40:17.0578 3432 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
13:40:17.0578 3432 dmserver - ok
13:40:17.0578 3432 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
13:40:17.0609 3432 DMusic - ok
13:40:17.0625 3432 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
13:40:17.0640 3432 Dnscache - ok
13:40:17.0656 3432 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
13:40:17.0687 3432 Dot3svc - ok
13:40:17.0687 3432 dpti2o - ok
13:40:17.0703 3432 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
13:40:17.0703 3432 drmkaud - ok
13:40:17.0718 3432 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
13:40:17.0750 3432 EapHost - ok
13:40:17.0765 3432 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
13:40:17.0765 3432 ERSvc - ok
13:40:17.0796 3432 [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog C:\WINDOWS\system32\services.exe
13:40:17.0828 3432 Eventlog - ok
13:40:17.0859 3432 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
13:40:17.0859 3432 EventSystem - ok
13:40:17.0875 3432 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
13:40:17.0906 3432 Fastfat - ok
13:40:17.0937 3432 [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
13:40:17.0968 3432 FastUserSwitchingCompatibility - ok
13:40:17.0968 3432 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
13:40:18.0000 3432 Fdc - ok
13:40:18.0046 3432 [ F67C49BC836ED4164F365B47CAB88F04 ] FileOpenManagerSvc C:\Program Files\FileOpen\Services\FileOpenManagerSvc32.exe
13:40:18.0046 3432 FileOpenManagerSvc - ok
13:40:18.0062 3432 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
13:40:18.0078 3432 Fips - ok
13:40:18.0093 3432 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
13:40:18.0109 3432 Flpydisk - ok
13:40:18.0140 3432 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
13:40:18.0140 3432 FltMgr - ok
13:40:18.0218 3432 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
13:40:18.0218 3432 FontCache3.0.0.0 - ok
13:40:18.0250 3432 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
13:40:18.0265 3432 Fs_Rec - ok
13:40:18.0296 3432 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
13:40:18.0296 3432 Ftdisk - ok
13:40:18.0312 3432 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
13:40:18.0328 3432 Gpc - ok
13:40:18.0406 3432 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
13:40:18.0421 3432 gupdate - ok
13:40:18.0421 3432 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
13:40:18.0421 3432 gupdatem - ok
13:40:18.0437 3432 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
13:40:18.0437 3432 HDAudBus - ok
13:40:18.0500 3432 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
13:40:18.0500 3432 helpsvc - ok
13:40:18.0500 3432 HidServ - ok
13:40:18.0531 3432 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
13:40:18.0531 3432 HidUsb - ok
13:40:18.0562 3432 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
13:40:18.0609 3432 hkmsvc - ok
13:40:18.0609 3432 hpn - ok
13:40:18.0640 3432 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
13:40:18.0640 3432 HTTP - ok
13:40:18.0671 3432 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
13:40:18.0687 3432 HTTPFilter - ok
13:40:18.0687 3432 i2omgmt - ok
13:40:18.0687 3432 i2omp - ok
13:40:18.0734 3432 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
13:40:18.0750 3432 i8042prt - ok
13:40:18.0906 3432 [ CD32607F1CC8AC67224334AE123F7B98 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
13:40:19.0046 3432 ialm - ok
13:40:19.0109 3432 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:40:19.0109 3432 idsvc - ok
13:40:19.0125 3432 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
13:40:19.0156 3432 Imapi - ok
13:40:19.0171 3432 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
13:40:19.0171 3432 ImapiService - ok
13:40:19.0187 3432 ini910u - ok
13:40:19.0296 3432 [ FB4293B1EAB313C28D4A1B8DB61ACA72 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
13:40:19.0328 3432 IntcAzAudAddService - ok
13:40:19.0328 3432 IntelIde - ok
13:40:19.0343 3432 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
13:40:19.0343 3432 intelppm - ok
13:40:19.0453 3432 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
13:40:19.0453 3432 IntuitUpdateService - ok
13:40:19.0531 3432 [ D9DA7B3117BF5EFF921C0CDED4D58050 ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
13:40:19.0546 3432 IntuitUpdateServiceV4 - ok
13:40:19.0578 3432 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
13:40:19.0578 3432 Ip6Fw - ok
13:40:19.0609 3432 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:40:19.0625 3432 IpFilterDriver - ok
13:40:19.0656 3432 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
13:40:19.0687 3432 IpInIp - ok
13:40:19.0703 3432 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
13:40:19.0718 3432 IpNat - ok
13:40:19.0734 3432 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
13:40:19.0765 3432 IPSec - ok
13:40:19.0796 3432 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
13:40:19.0812 3432 IRENUM - ok
13:40:19.0859 3432 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
13:40:19.0859 3432 isapnp - ok
13:40:19.0937 3432 [ 0E410EDC8D0527801B899CF29E60597C ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
13:40:19.0953 3432 JavaQuickStarterService - ok
13:40:19.0968 3432 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
13:40:19.0984 3432 Kbdclass - ok
13:40:20.0000 3432 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
13:40:20.0015 3432 kmixer - ok
13:40:20.0031 3432 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
13:40:20.0031 3432 KSecDD - ok
13:40:20.0062 3432 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
13:40:20.0062 3432 lanmanserver - ok
13:40:20.0093 3432 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
13:40:20.0109 3432 lanmanworkstation - ok
13:40:20.0125 3432 Lavasoft Kernexplorer - ok
13:40:20.0140 3432 Lbd - ok
13:40:20.0140 3432 lbrtfdc - ok
13:40:20.0187 3432 [ C12476DE1AFFB1BBA1A48A459CEB3D39 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
13:40:20.0187 3432 LightScribeService - ok
13:40:20.0218 3432 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
13:40:20.0234 3432 LmHosts - ok
13:40:20.0265 3432 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
13:40:20.0281 3432 Messenger - ok
13:40:20.0312 3432 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
13:40:20.0312 3432 mnmdd - ok
13:40:20.0359 3432 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
13:40:20.0390 3432 mnmsrvc - ok
13:40:20.0421 3432 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
13:40:20.0437 3432 Modem - ok
13:40:20.0437 3432 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
13:40:20.0453 3432 Mouclass - ok
13:40:20.0484 3432 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
13:40:20.0484 3432 mouhid - ok
13:40:20.0500 3432 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
13:40:20.0500 3432 MountMgr - ok
13:40:20.0578 3432 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:40:20.0593 3432 MozillaMaintenance - ok
13:40:20.0625 3432 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
13:40:20.0640 3432 MpFilter - ok
13:40:20.0750 3432 [ A69630D039C38018689190234F866D77 ] MpKsl38e731b9 C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{10DFA2F7-FAC2-40BA-81DF-BFBEDAD8739F}\MpKsl38e731b9.sys
13:40:20.0750 3432 MpKsl38e731b9 - ok
13:40:20.0750 3432 mraid35x - ok
13:40:20.0781 3432 MREMP50 - ok
13:40:20.0781 3432 MREMPR5 - ok
13:40:20.0781 3432 MRENDIS5 - ok
13:40:20.0781 3432 MRESP50 - ok
13:40:20.0812 3432 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
13:40:20.0812 3432 MRxDAV - ok
13:40:20.0843 3432 [ 60AE98742484E7AB80C3C1450E708148 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
13:40:20.0843 3432 MRxSmb - ok
13:40:20.0875 3432 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
13:40:20.0890 3432 MSDTC - ok
13:40:20.0953 3432 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
13:40:20.0953 3432 Msfs - ok
13:40:20.0953 3432 MSIServer - ok
13:40:20.0984 3432 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
13:40:21.0000 3432 MSKSSRV - ok
13:40:21.0078 3432 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
13:40:21.0078 3432 MsMpSvc - ok
13:40:21.0093 3432 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
13:40:21.0109 3432 MSPCLOCK - ok
13:40:21.0125 3432 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
13:40:21.0140 3432 MSPQM - ok
13:40:21.0156 3432 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
13:40:21.0171 3432 mssmbios - ok
13:40:21.0187 3432 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
13:40:21.0187 3432 MTsensor - ok
13:40:21.0218 3432 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
13:40:21.0218 3432 Mup - ok
13:40:21.0250 3432 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
13:40:21.0281 3432 napagent - ok
13:40:21.0296 3432 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
13:40:21.0296 3432 NDIS - ok
13:40:21.0328 3432 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
13:40:21.0343 3432 NdisTapi - ok
13:40:21.0359 3432 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
13:40:21.0375 3432 Ndisuio - ok
13:40:21.0390 3432 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
13:40:21.0421 3432 NdisWan - ok
13:40:21.0437 3432 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
13:40:21.0453 3432 NDProxy - ok
13:40:21.0468 3432 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
13:40:21.0468 3432 NetBIOS - ok
13:40:21.0484 3432 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
13:40:21.0531 3432 NetBT - ok
13:40:21.0546 3432 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
13:40:21.0609 3432 NetDDE - ok
13:40:21.0609 3432 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
13:40:21.0609 3432 NetDDEdsdm - ok
13:40:21.0625 3432 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
13:40:21.0640 3432 Netlogon - ok
13:40:21.0671 3432 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
13:40:21.0671 3432 Netman - ok
13:40:21.0687 3432 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:40:21.0687 3432 NetTcpPortSharing - ok
13:40:21.0734 3432 [ 832E4DD8964AB7ACC880B2837CB1ED20 ] Nla C:\WINDOWS\System32\mswsock.dll
13:40:21.0734 3432 Nla - ok
13:40:21.0750 3432 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
13:40:21.0765 3432 Npfs - ok
13:40:21.0781 3432 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
13:40:21.0781 3432 Ntfs - ok
13:40:21.0796 3432 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
13:40:21.0796 3432 NtLmSsp - ok
13:40:21.0859 3432 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
13:40:21.0890 3432 NtmsSvc - ok
13:40:21.0921 3432 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
13:40:21.0921 3432 Null - ok
13:40:21.0937 3432 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
13:40:21.0953 3432 NwlnkFlt - ok
13:40:21.0968 3432 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
13:40:21.0984 3432 NwlnkFwd - ok
13:40:22.0109 3432 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:40:22.0109 3432 odserv - ok
13:40:22.0156 3432 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:40:22.0156 3432 ose - ok
13:40:22.0187 3432 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\drivers\Parport.sys
13:40:22.0187 3432 Parport - ok
13:40:22.0203 3432 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
13:40:22.0203 3432 PartMgr - ok
13:40:22.0218 3432 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
13:40:22.0234 3432 ParVdm - ok
13:40:22.0234 3432 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
13:40:22.0234 3432 PCI - ok
13:40:22.0250 3432 PCIDump - ok
13:40:22.0250 3432 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
13:40:22.0250 3432 PCIIde - ok
13:40:22.0265 3432 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
13:40:22.0296 3432 Pcmcia - ok
13:40:22.0296 3432 PDCOMP - ok
13:40:22.0296 3432 PDFRAME - ok
13:40:22.0296 3432 PDRELI - ok
13:40:22.0296 3432 PDRFRAME - ok
13:40:22.0312 3432 perc2 - ok
13:40:22.0312 3432 perc2hib - ok
13:40:22.0328 3432 [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay C:\WINDOWS\system32\services.exe
13:40:22.0328 3432 PlugPlay - ok
13:40:22.0343 3432 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
13:40:22.0343 3432 PolicyAgent - ok
13:40:22.0359 3432 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
13:40:22.0375 3432 PptpMiniport - ok
13:40:22.0390 3432 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
13:40:22.0390 3432 ProtectedStorage - ok
13:40:22.0406 3432 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
13:40:22.0421 3432 PSched - ok
13:40:22.0437 3432 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
13:40:22.0453 3432 Ptilink - ok
13:40:22.0453 3432 ql1080 - ok
13:40:22.0468 3432 Ql10wnt - ok
13:40:22.0468 3432 ql12160 - ok
13:40:22.0468 3432 ql1240 - ok
13:40:22.0468 3432 ql1280 - ok
13:40:22.0484 3432 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
13:40:22.0484 3432 RasAcd - ok
13:40:22.0500 3432 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
13:40:22.0531 3432 RasAuto - ok
13:40:22.0531 3432 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
13:40:22.0562 3432 Rasl2tp - ok
13:40:22.0578 3432 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
13:40:22.0578 3432 RasMan - ok
13:40:22.0593 3432 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
13:40:22.0609 3432 RasPppoe - ok
13:40:22.0640 3432 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
13:40:22.0656 3432 Raspti - ok
13:40:22.0671 3432 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
13:40:22.0671 3432 Rdbss - ok
13:40:22.0703 3432 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
13:40:22.0703 3432 RDPCDD - ok
13:40:22.0734 3432 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
13:40:22.0734 3432 rdpdr - ok
13:40:22.0765 3432 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
13:40:22.0765 3432 RDPWD - ok
13:40:22.0765 3432 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
13:40:22.0812 3432 RDSessMgr - ok
13:40:22.0828 3432 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
13:40:22.0859 3432 redbook - ok
13:40:22.0875 3432 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
13:40:22.0906 3432 RemoteAccess - ok
13:40:22.0921 3432 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
13:40:22.0921 3432 RemoteRegistry - ok
13:40:22.0937 3432 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
13:40:22.0953 3432 RpcLocator - ok
13:40:22.0984 3432 [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs C:\WINDOWS\System32\rpcss.dll
13:40:22.0984 3432 RpcSs - ok
13:40:23.0031 3432 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
13:40:23.0062 3432 RSVP - ok
13:40:23.0078 3432 [ F0A21C62B9B835E1C96268EAAE31D239 ] RTLE8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
13:40:23.0125 3432 RTLE8023xp - ok
13:40:23.0140 3432 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
13:40:23.0140 3432 SamSs - ok
13:40:23.0140 3432 SASKUTIL - ok
13:40:23.0156 3432 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
13:40:23.0203 3432 SCardSvr - ok
13:40:23.0218 3432 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
13:40:23.0234 3432 Schedule - ok
13:40:23.0265 3432 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
13:40:23.0281 3432 Secdrv - ok
13:40:23.0296 3432 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
13:40:23.0296 3432 seclogon - ok
13:40:23.0296 3432 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
13:40:23.0312 3432 SENS - ok
13:40:23.0312 3432 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
13:40:23.0328 3432 serenum - ok
13:40:23.0343 3432 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
13:40:23.0390 3432 Serial - ok
13:40:23.0406 3432 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
13:40:23.0421 3432 Sfloppy - ok
13:40:23.0437 3432 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
13:40:23.0437 3432 SharedAccess - ok
13:40:23.0468 3432 [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
13:40:23.0468 3432 ShellHWDetection - ok
13:40:23.0468 3432 Simbad - ok
13:40:23.0468 3432 Sparrow - ok
13:40:23.0484 3432 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
13:40:23.0500 3432 splitter - ok
13:40:23.0515 3432 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler C:\WINDOWS\system32\spoolsv.exe
13:40:23.0843 3432 Spooler - ok
13:40:23.0859 3432 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
13:40:23.0859 3432 sr - ok
13:40:23.0890 3432 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
13:40:23.0890 3432 srservice - ok
13:40:23.0921 3432 [ 3BB03F2BA89D2BE417206C373D2AF17C ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
13:40:23.0921 3432 Srv - ok
13:40:23.0937 3432 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
13:40:23.0937 3432 SSDPSRV - ok
13:40:23.0968 3432 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
13:40:23.0968 3432 stisvc - ok
13:40:24.0000 3432 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
13:40:24.0015 3432 swenum - ok
13:40:24.0015 3432 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
13:40:24.0046 3432 swmidi - ok
13:40:24.0046 3432 SwPrv - ok
13:40:24.0046 3432 symc810 - ok
13:40:24.0046 3432 symc8xx - ok
13:40:24.0062 3432 sym_hi - ok
13:40:24.0062 3432 sym_u3 - ok
13:40:24.0078 3432 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
13:40:24.0109 3432 sysaudio - ok
13:40:24.0109 3432 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
13:40:24.0156 3432 SysmonLog - ok
13:40:24.0171 3432 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
13:40:24.0171 3432 TapiSrv - ok
13:40:24.0203 3432 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
13:40:24.0218 3432 Tcpip - ok
13:40:24.0250 3432 [ FB9F32ACC1D3AD523F7EC900B66FC1BB ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
13:40:24.0281 3432 Tcpip6 - ok
13:40:24.0296 3432 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
13:40:24.0296 3432 TDPIPE - ok
13:40:24.0312 3432 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
13:40:24.0312 3432 TDTCP - ok
13:40:24.0328 3432 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\TERMDD.SYS
13:40:24.0328 3432 TermDD - ok
13:40:24.0359 3432 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
13:40:24.0359 3432 TermService - ok
13:40:24.0375 3432 [ 1926899BF9FFE2602B63074971700412 ] Themes C:\WINDOWS\System32\shsvcs.dll
13:40:24.0375 3432 Themes - ok
13:40:24.0390 3432 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
13:40:24.0421 3432 TlntSvr - ok
13:40:24.0421 3432 TosIde - ok
13:40:24.0421 3432 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
13:40:24.0421 3432 TrkWks - ok
13:40:24.0453 3432 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
13:40:24.0453 3432 tunmp - ok
13:40:24.0484 3432 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
13:40:24.0500 3432 Udfs - ok
13:40:24.0515 3432 ultra - ok
13:40:24.0531 3432 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
13:40:24.0562 3432 Update - ok
13:40:24.0578 3432 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
13:40:24.0609 3432 upnphost - ok
13:40:24.0640 3432 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
13:40:24.0687 3432 UPS - ok
13:40:24.0718 3432 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
13:40:24.0734 3432 usbehci - ok
13:40:24.0781 3432 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
13:40:24.0812 3432 usbhub - ok
13:40:24.0843 3432 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
13:40:24.0843 3432 usbprint - ok
13:40:24.0875 3432 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
13:40:24.0875 3432 usbscan - ok
13:40:24.0890 3432 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
13:40:24.0906 3432 usbstor - ok
13:40:24.0921 3432 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
13:40:24.0937 3432 usbuhci - ok
13:40:24.0968 3432 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
13:40:24.0984 3432 VgaSave - ok
13:40:24.0984 3432 ViaIde - ok
13:40:25.0015 3432 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
13:40:25.0015 3432 VolSnap - ok
13:40:25.0031 3432 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
13:40:25.0062 3432 VSS - ok
13:40:25.0078 3432 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
13:40:25.0078 3432 W32Time - ok
13:40:25.0109 3432 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
13:40:25.0125 3432 Wanarp - ok
13:40:25.0218 3432 [ D634CFE93E0CD001499D0D6D68890C9E ] WDBackup C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
13:40:25.0250 3432 WDBackup - ok
13:40:25.0296 3432 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\WINDOWS\system32\DRIVERS\wdcsam.sys
13:40:25.0296 3432 WDC_SAM - ok
13:40:25.0343 3432 [ 2277CD5B13B18B6DF5F80E8A84254EA7 ] WDDriveService C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
13:40:25.0343 3432 WDDriveService - ok
13:40:25.0343 3432 WDICA - ok
13:40:25.0359 3432 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
13:40:25.0390 3432 wdmaud - ok
13:40:25.0453 3432 [ A578AE45097ACAD346C86C96F1C0D5A7 ] WDRulesService C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe
13:40:25.0468 3432 WDRulesService - ok
13:40:25.0515 3432 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
13:40:25.0515 3432 WebClient - ok
13:40:25.0562 3432 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
13:40:25.0578 3432 winmgmt - ok
13:40:25.0625 3432 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:40:25.0656 3432 wlidsvc - ok
13:40:25.0687 3432 [ 140EF97B64F560FD78643CAE2CDAD838 ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
13:40:25.0703 3432 WmdmPmSN - ok
13:40:25.0734 3432 [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] Wmi C:\WINDOWS\System32\advapi32.dll
13:40:25.0734 3432 Wmi - ok
13:40:25.0750 3432 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
13:40:25.0796 3432 WmiApSrv - ok
13:40:25.0890 3432 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
13:40:26.0062 3432 WMPNetworkSvc - ok
13:40:26.0140 3432 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:40:26.0156 3432 WPFFontCache_v0400 - ok
13:40:26.0187 3432 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
13:40:26.0203 3432 WS2IFSL - ok
13:40:26.0234 3432 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
13:40:26.0234 3432 wscsvc - ok
13:40:26.0234 3432 WSearch - ok
13:40:26.0250 3432 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
13:40:26.0250 3432 wuauserv - ok
13:40:26.0281 3432 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
13:40:26.0281 3432 WudfPf - ok
13:40:26.0281 3432 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
13:40:26.0296 3432 WudfRd - ok
13:40:26.0296 3432 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
13:40:26.0296 3432 WudfSvc - ok
13:40:26.0328 3432 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
13:40:26.0359 3432 WZCSVC - ok
13:40:26.0375 3432 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
13:40:26.0406 3432 xmlprov - ok
13:40:26.0406 3432 ================ Scan global ===============================
13:40:26.0437 3432 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
13:40:26.0468 3432 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
13:40:26.0500 3432 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
13:40:26.0515 3432 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
13:40:26.0515 3432 [Global] - ok
13:40:26.0515 3432 ================ Scan MBR ==================================
13:40:26.0531 3432 [ 923A599A126887912E20C0D762FB67BC ] \Device\Harddisk0\DR0
13:40:26.0765 3432 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
13:40:26.0765 3432 \Device\Harddisk0\DR0 - detected TDSS File System (1)
13:40:26.0781 3432 [ 828873DCDA9C064F313147B612A61FFC ] \Device\Harddisk1\DR3
13:40:26.0890 3432 \Device\Harddisk1\DR3 - ok
13:40:26.0890 3432 ================ Scan VBR ==================================
13:40:26.0890 3432 [ 1715D44B632C28D7FB45CD22EF0B2C3D ] \Device\Harddisk0\DR0\Partition1
13:40:26.0890 3432 \Device\Harddisk0\DR0\Partition1 - ok
13:40:26.0906 3432 [ 4AE21F4C5DA1EDE45B67ADA07CB293B0 ] \Device\Harddisk1\DR3\Partition1
13:40:26.0906 3432 \Device\Harddisk1\DR3\Partition1 - ok
13:40:26.0906 3432 ============================================================
13:40:26.0906 3432 Scan finished
13:40:26.0906 3432 ============================================================
13:40:26.0906 0240 Detected object count: 1
13:40:26.0906 0240 Actual detected object count: 1
13:41:11.0062 0240 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
13:41:11.0062 0240 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
13:41:44.0546 3648 Deinitialize success


MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Sonny (administrator) on 23-11-2012 at 13:46:34
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek RTL8102E Family PCI-E Fast Ethernet NIC = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : winxp_pro

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Realtek RTL8102E Family PCI-E Fast Ethernet NIC

Physical Address. . . . . . . . . : 00-26-18-54-16-DA

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 0.0.0.0

Subnet Mask . . . . . . . . . . . : 0.0.0.0

IP Address. . . . . . . . . . . . : fe80::226:18ff:fe54:16da%4

Default Gateway . . . . . . . . . :

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 192.168.1.1

fec0:0:0:ffff::1%1

fec0:0:0:ffff::2%1

fec0:0:0:ffff::3%1



Tunnel adapter Teredo Tunneling Pseudo-Interface:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

Physical Address. . . . . . . . . : FF-FF-FF-FF-FF-FF-FF-FF

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : fe80::ffff:ffff:fffd%5

Default Gateway . . . . . . . . . :

NetBIOS over Tcpip. . . . . . . . : Disabled

Server: UnKnown
Address: 127.0.0.1

Ping request could not find host google.com. Please check the name and try again.

Server: UnKnown
Address: 127.0.0.1

Ping request could not find host yahoo.com. Please check the name and try again.



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 26 18 54 16 da ...... Realtek RTL8102E Family PCI-E Fast Ethernet NIC - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
255.255.255.255 255.255.255.255 255.255.255.255 2 1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/23/2012 01:45:16 PM) (Source: Windows Search Service) (User: )
Description: The protocol handler IEPH.RSSHandler cannot be loaded. Error description: MAPI: Logon failed. .

Error: (11/23/2012 01:45:16 PM) (Source: Windows Search Service) (User: )
Description: The protocol handler IEPH.HistoryHandler cannot be loaded. Error description: The system cannot find the file specified. .

Error: (11/23/2012 01:43:04 PM) (Source: Windows Search Service) (User: )
Description: The protocol handler IEPH.RSSHandler cannot be loaded. Error description: MAPI: Logon failed. .

Error: (11/23/2012 01:43:04 PM) (Source: Windows Search Service) (User: )
Description: The protocol handler IEPH.HistoryHandler cannot be loaded. Error description: The system cannot find the file specified. .

Error: (11/23/2012 01:38:38 PM) (Source: Windows Search Service) (User: )
Description: The protocol handler IEPH.RSSHandler cannot be loaded. Error description: MAPI: Logon failed. .

Error: (11/23/2012 01:38:38 PM) (Source: Windows Search Service) (User: )
Description: The protocol handler IEPH.HistoryHandler cannot be loaded. Error description: The system cannot find the file specified. .

Error: (11/23/2012 11:03:48 AM) (Source: Windows Search Service) (User: )
Description: The protocol handler IEPH.RSSHandler cannot be loaded. Error description: MAPI: Logon failed. .

Error: (11/23/2012 11:03:48 AM) (Source: Windows Search Service) (User: )
Description: The protocol handler IEPH.HistoryHandler cannot be loaded. Error description: The system cannot find the file specified. .

Error: (11/23/2012 11:03:17 AM) (Source: JavaQuickStarterService) (User: )
Description: Unable to create JQS API server: socket() failed (Socket error 10050)

Error: (11/23/2012 11:03:11 AM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved


System errors:
=============
Error: (11/23/2012 11:12:19 AM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.141.158.0

Update Source: %NT AUTHORITY59

Update Stage: 4.1.0522.00

Source Path: 4.1.0522.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (11/23/2012 11:12:19 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {E60687F7-01A1-40AA-86AC-DB1CBF673334} did not register with DCOM within the required timeout.

Error: (11/23/2012 11:11:49 AM) (Source: Service Control Manager) (User: )
Description: The Automatic Updates service terminated with the following error:
%%2147952450

Error: (11/23/2012 11:11:49 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {E60687F7-01A1-40AA-86AC-DB1CBF673334} did not register with DCOM within the required timeout.

Error: (11/23/2012 11:11:19 AM) (Source: Service Control Manager) (User: )
Description: The Automatic Updates service terminated with the following error:
%%2147952450

Error: (11/23/2012 11:03:52 AM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service depends on the following nonexistent service: Afd

Error: (11/23/2012 11:03:43 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASKUTIL

Error: (11/23/2012 11:03:37 AM) (Source: Service Control Manager) (User: )
Description: The Automatic Updates service terminated with the following error:
%%2147952450

Error: (11/23/2012 11:03:36 AM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall/Internet Connection Sharing (ICS) service terminated with the following error:
%%10050

Error: (11/23/2012 11:03:33 AM) (Source: Service Control Manager) (User: )
Description: The IPSEC Services service terminated with the following error:
%%10050


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

2007 Microsoft Office system (Version: 12.0.6612.1000)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Ad-Aware Email Scanner for Outlook (Version: 1.0.0)
Add-ons (Version: 1.0.0.0)
Adobe AIR (Version: 2.7.1.19610)
Adobe Flash Player 10 ActiveX (Version: 10.3.183.20)
Adobe Flash Player 11 Plugin (Version: 11.5.502.110)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Annotations (Version: 1.0.0.0)
Annotations Help (Version: 1.0.0.0)
Belarc Advisor 8.2 (Version: 8.2.7.16)
Block Diagrams (Version: 1.0.0.0)
Block Diagrams Help (Version: 1.0.0.0)
Borders and Backgrounds (Version: 1.0.0.0)
Borders and Backgrounds Help (Version: 1.0.0.0)
Building Architecture (Version: 1.0.0.0)
Building Architecture Help (Version: 1.0.0.0)
Building Services (Version: 1.0.0.0)
Building Services Help (Version: 1.0.0.0)
CAD Drawing Converter (Version: 1.0.0.0)
CAD Drawing Converter Help (Version: 1.0.0.0)
CAD Drawing Display (Version: 1.0.0.0)
Callouts and Connectors (Version: 1.0.0.0)
Callouts and Connectors Help (Version: 1.0.0.0)
Canon Camera Access Library (Version: 8.4.0.1)
Canon DIGITAL CAMERA Solution Disk Software Guide (Version: 1.0.1.2)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (Version: 1.7.0.4)
Canon Internet Library for ZoomBrowser EX (Version: 1.6.3.9)
Canon MovieEdit Task for ZoomBrowser EX (Version: 3.2.0.34)
Canon Personal Printing Guide (Version: 1.0.0.1)
Canon PowerShot SX120 IS Camera User Guide (Version: 1.0.1.2)
Canon Utilities CameraWindow (Version: 7.3.0.4)
Canon Utilities CameraWindow DC (Version: 7.4.1.10)
Canon Utilities CameraWindow DC 8 (Version: 8.0.0.19)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (Version: 6.5.0.3)
Canon Utilities MyCamera (Version: 7.3.0.5)
Canon Utilities MyCamera DC (Version: 7.2.1.6)
Canon Utilities PhotoStitch (Version: 3.1.22.46)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (Version: 1.8.0.1)
Canon Utilities ZoomBrowser EX (Version: 6.4.0.7)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.2.2.11)
CCleaner (Version: 3.23)
Clip Art and Symbols (Version: 1.0.0.0)
Clip Art and Symbols Help (Version: 1.0.0.0)
Custom Patterns (Version: 1.0.0.0)
Custom Properties Editor (Version: 1.0.0.0)
Database Wizard (Version: 1.0.0.0)
Developing Visio Solutions Help (Version: 1.0.0.0)
EasyCleaner (Version: 2.0.6.380)
Electrical Engineering (Version: 1.0.0.0)
Electrical Engineering Help (Version: 1.0.0.0)
Equipment Selector (Version: 1.0.0.0)
Equipment Selector Furniture Database (Version: 1.0.0.0)
Equipment Selector Help (Version: 1.0.0.0)
Facilities Management (Version: 1.0.0.0)
Facilities Management Help (Version: 1.0.0.0)
FileOpen Client (Version: 3.0.67.914)
Flowcharts (Version: 1.0.0.0)
Flowcharts Help (Version: 1.0.0.0)
Fluid Power (Version: 1.0.0.0)
Fluid Power Help (Version: 1.0.0.0)
Forms and Charts (Version: 1.0.0.0)
Forms and Charts Help (Version: 1.0.0.0)
Foundation technical (Version: 1.0.0.0)
Garmin USB Drivers (Version: 2.3.0.0)
Garmin WebUpdater (Version: 2.4.2)
Google Update Helper (Version: 1.3.21.123)
Graphics Filters (Version: 1.0.0.0)
Help for Visio 2000 (HTML Help) (Version: 1.0.0.0)
Help_Technical (Version: 1.0.0.0)
HiJackThis (Version: 1.0.0)
Intel® Graphics Media Accelerator Driver
iSEEK AnswerWorks English Runtime (Version: 009.000.0002)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 35 (Version: 6.0.350)
K-Lite Codec Pack 7.0.0 (Standard) (Version: 7.0.0)
LightScribe 1.4.44.1 (Version: 1.4.44.1)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Maps (Version: 1.0.0.0)
Maps Help (Version: 1.0.0.0)
Mechanical Engineering (Version: 1.0.0.0)
Mechanical Engineering Help (Version: 1.0.0.0)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional Hybrid 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Project 2000 (Version: 9.00.3821)
Microsoft Repository (Version: 6.0.0.1)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (Version: 12.0.4518.1014)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6612.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual Studio Service Pack 3 (Version: 6.0.0.1)
Mozilla Firefox 16.0.2 (x86 en-US) (Version: 16.0.2)
Mozilla Maintenance Service (Version: 16.0.2)
Nero Suite
Network Diagrams (Version: 1.0.0.0)
Network Diagrams Help (Version: 1.0.0.0)
Office Layout (Version: 1.0.0.0)
Office Layout Help (Version: 1.0.0.0)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Organization Charts (Version: 1.0.0.0)
Organization Charts Help (Version: 1.0.0.0)
Page Layout Wizard (Version: 1.0.0.0)
PaperPort (Version: 9.02.0814)
PokerStars.net
PowerDVD
Process Engineering (Version: 1.0.0.0)
Process Engineering Help (Version: 1.0.0.0)
Program Files (Version: 06.00.0000)
Program Files Help (Version: 1.0.0.0)
Program Files Technical (Version: 1.0.0.0)
Project Schedules (Version: 1.0.0.0)
Project Schedules Help (Version: 1.0.0.0)
Property Reporting Wizard (Version: 1.0.0.0)
Quicken 2002 Home & Business
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.4)
REALTEK GbE & FE Ethernet PCI-E NIC Driver (Version: 1.17.0000)
Realtek High Definition Audio Driver (Version: 5.10.0.5745)
RealUpgrade 1.1 (Version: 1.1.0)
Release Notes (Version: 1.0.0.0)
Save as HTML (Version: 1.0.0.0)
Shape Explorer (Version: 1.0.0.0)
Shape Explorer Help (Version: 1.0.0.0)
Solutions (Version: 1.0.0.0)
Spelling (Version: 1.0.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
SpywareBlaster 4.6 (Version: 4.6.0)
TurboTax 2009
TurboTax 2009 WinPerFedFormset (Version: 009.000.2068)
TurboTax 2009 WinPerReleaseEngine (Version: 009.000.0328)
TurboTax 2009 WinPerTaxSupport (Version: 009.000.0238)
TurboTax 2009 wmdiper (Version: 009.000.0803)
TurboTax 2009 wrapper (Version: 009.000.0145)
TurboTax 2010
TurboTax 2010 WinPerFedFormset (Version: 010.000.4227)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0457)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0214)
TurboTax 2010 wmdiper (Version: 010.000.1238)
TurboTax 2010 wrapper (Version: 010.000.0157)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.2999)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0474)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0214)
TurboTax 2011 wmdiper (Version: 011.000.1615)
TurboTax 2011 wrapper (Version: 011.000.0121)
TurboTax 2012 (Version: 2012.0)
TurboTax 2012 WinPerFedFormset (Version: 012.000.1193)
TurboTax 2012 WinPerReleaseEngine (Version: 012.000.0295)
TurboTax 2012 WinPerTaxSupport (Version: 012.000.0134)
TurboTax 2012 wrapper (Version: 012.000.0119)
U3Launcher (Version: 1.0.0)
Uninstall Startup Inspector
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760413) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB898461) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
VBA (Version: 6.01.00.1234)
Visio (Version: 1.0.0.0)
Visio 2000 (Version: 6.0.0.1)
Visio Core Files (Version: 06.00.0000)
Visio Technical Core Files (Version: 06.00.0000)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
WD SmartWare (Version: 1.6.2.6)
WD Software Upgrader (Version: 1.5.0.6)
WebFldrs XP (Version: 9.50.7523)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3 (Version: 20080414.031525)

========================= Memory info: ===================================

Percentage of memory in use: 18%
Total physical RAM: 3574.11 MB
Available physical RAM: 2905.71 MB
Total Pagefile: 5456.54 MB
Available Pagefile: 4891.63 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.32 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:462.13 GB) (Free:367.37 GB) NTFS
7 Drive i: (My Book) (Fixed) (Total:931.48 GB) (Free:843.46 GB) NTFS

========================= Users: ========================================

User accounts for \\WINXP_PRO

Administrator Guest HelpAssistant
Sonny SUPPORT_388945a0

========================= Restore Points ==================================

26-08-2012 01:08:53 System Checkpoint
26-08-2012 11:49:43 Software Distribution Service 3.0
27-08-2012 10:49:51 Software Distribution Service 3.0
27-08-2012 22:17:34 Software Distribution Service 3.0
28-08-2012 10:51:13 Software Distribution Service 3.0
29-08-2012 09:23:05 Software Distribution Service 3.0
30-08-2012 09:53:27 Software Distribution Service 3.0
30-08-2012 23:22:35 Software Distribution Service 3.0
31-08-2012 11:14:58 Software Distribution Service 3.0
01-09-2012 10:36:02 Software Distribution Service 3.0
01-09-2012 22:34:24 Software Distribution Service 3.0
01-09-2012 22:36:46 Installed Java™ 6 Update 35
02-09-2012 13:26:03 Software Distribution Service 3.0
03-09-2012 11:10:47 Software Distribution Service 3.0
03-09-2012 21:43:05 Software Distribution Service 3.0
04-09-2012 11:20:14 Software Distribution Service 3.0
05-09-2012 12:24:54 Software Distribution Service 3.0
06-09-2012 00:25:05 Software Distribution Service 3.0
06-09-2012 12:09:33 Software Distribution Service 3.0
06-09-2012 19:07:00 Software Distribution Service 3.0
07-09-2012 04:36:30 Software Distribution Service 3.0
07-09-2012 06:23:46 Software Distribution Service 3.0
07-09-2012 12:00:52 Software Distribution Service 3.0
07-09-2012 14:10:15 Software Distribution Service 3.0
07-09-2012 18:04:53 Installed Windows XP KB915800-v4.
07-09-2012 18:05:10 Installed Windows XP Windows Search 4.0.
08-09-2012 00:30:08 Software Distribution Service 3.0
08-09-2012 06:17:54 Software Distribution Service 3.0
08-09-2012 09:24:16 Software Distribution Service 3.0
08-09-2012 10:16:29 Software Distribution Service 3.0
08-09-2012 17:52:43 Software Distribution Service 3.0
09-09-2012 10:08:48 Software Distribution Service 3.0
09-09-2012 19:03:41 Software Distribution Service 3.0
09-09-2012 21:00:24 Software Distribution Service 3.0
10-09-2012 12:29:00 Software Distribution Service 3.0
11-09-2012 10:23:10 Software Distribution Service 3.0
12-09-2012 00:29:35 Software Distribution Service 3.0
12-09-2012 10:03:45 Software Distribution Service 3.0
12-09-2012 10:06:28 Software Distribution Service 3.0
13-09-2012 09:33:24 Software Distribution Service 3.0
14-09-2012 10:20:35 Software Distribution Service 3.0
15-09-2012 02:15:20 Software Distribution Service 3.0
15-09-2012 12:03:05 Software Distribution Service 3.0
16-09-2012 10:50:14 Software Distribution Service 3.0
16-09-2012 21:26:09 Software Distribution Service 3.0
17-09-2012 09:40:05 Software Distribution Service 3.0
18-09-2012 12:48:42 Software Distribution Service 3.0
19-09-2012 13:00:15 Software Distribution Service 3.0
20-09-2012 01:12:30 Software Distribution Service 3.0
20-09-2012 11:48:22 Software Distribution Service 3.0
21-09-2012 10:24:05 Software Distribution Service 3.0
22-09-2012 12:47:05 Software Distribution Service 3.0
22-09-2012 13:07:21 Software Distribution Service 3.0
23-09-2012 01:14:08 Software Distribution Service 3.0
23-09-2012 18:10:16 Software Distribution Service 3.0
23-09-2012 22:33:35 Software Distribution Service 3.0
24-09-2012 13:07:21 Software Distribution Service 3.0
24-09-2012 18:48:10 Software Distribution Service 3.0
25-09-2012 10:38:27 Software Distribution Service 3.0
26-09-2012 01:15:09 Software Distribution Service 3.0
26-09-2012 12:51:04 Software Distribution Service 3.0
26-09-2012 16:53:13 Software Distribution Service 3.0
27-09-2012 00:25:19 Software Distribution Service 3.0
27-09-2012 12:43:14 Software Distribution Service 3.0
28-09-2012 00:44:18 Software Distribution Service 3.0
28-09-2012 11:43:02 Software Distribution Service 3.0
29-09-2012 01:37:42 Software Distribution Service 3.0
29-09-2012 11:52:19 Software Distribution Service 3.0
29-09-2012 15:52:42 Software Distribution Service 3.0
30-09-2012 10:25:45 Software Distribution Service 3.0
01-10-2012 11:08:01 Software Distribution Service 3.0
02-10-2012 00:50:31 Software Distribution Service 3.0
02-10-2012 00:56:54 Software Distribution Service 3.0
02-10-2012 10:14:20 Software Distribution Service 3.0
02-10-2012 18:04:28 Software Distribution Service 3.0
02-10-2012 19:45:49 Software Distribution Service 3.0
03-10-2012 12:03:31 Software Distribution Service 3.0
03-10-2012 20:07:13 Software Distribution Service 3.0
04-10-2012 01:25:28 Software Distribution Service 3.0
05-10-2012 00:41:08 Software Distribution Service 3.0
05-10-2012 09:28:36 Software Distribution Service 3.0
05-10-2012 21:55:03 Software Distribution Service 3.0
06-10-2012 10:23:09 Software Distribution Service 3.0
07-10-2012 11:37:03 Software Distribution Service 3.0
08-10-2012 13:10:57 Software Distribution Service 3.0
09-10-2012 01:03:09 Software Distribution Service 3.0
09-10-2012 11:08:25 Software Distribution Service 3.0
09-10-2012 23:30:10 Software Distribution Service 3.0
10-10-2012 09:38:13 Software Distribution Service 3.0
10-10-2012 10:11:48 Software Distribution Service 3.0
10-10-2012 10:21:16 Software Distribution Service 3.0
10-10-2012 23:25:02 Software Distribution Service 3.0
10-10-2012 23:26:44 Software Distribution Service 3.0
10-10-2012 23:27:20 Software Distribution Service 3.0
10-10-2012 23:28:43 Software Distribution Service 3.0
11-10-2012 10:58:34 Software Distribution Service 3.0
12-10-2012 11:30:24 Software Distribution Service 3.0
13-10-2012 01:16:25 Software Distribution Service 3.0
13-10-2012 12:16:09 Software Distribution Service 3.0
14-10-2012 12:35:54 Software Distribution Service 3.0
14-10-2012 17:27:32 Software Distribution Service 3.0
14-10-2012 18:26:04 Software Distribution Service 3.0
14-10-2012 23:01:43 Software Distribution Service 3.0
15-10-2012 12:26:26 Software Distribution Service 3.0
15-10-2012 12:35:17 Software Distribution Service 3.0
16-10-2012 00:48:55 Software Distribution Service 3.0
16-10-2012 12:07:36 Software Distribution Service 3.0
17-10-2012 11:26:48 Software Distribution Service 3.0
18-10-2012 01:11:23 Software Distribution Service 3.0
18-10-2012 10:33:51 Software Distribution Service 3.0
18-10-2012 18:42:44 Software Distribution Service 3.0
18-10-2012 19:32:44 Software Distribution Service 3.0
19-10-2012 10:39:22 Software Distribution Service 3.0
20-10-2012 11:44:57 Software Distribution Service 3.0
20-10-2012 16:46:13 Software Distribution Service 3.0
21-10-2012 01:54:33 Software Distribution Service 3.0
21-10-2012 11:34:56 Software Distribution Service 3.0
21-10-2012 20:58:23 Software Distribution Service 3.0
22-10-2012 13:07:22 Software Distribution Service 3.0
23-10-2012 10:58:13 Software Distribution Service 3.0
23-10-2012 18:34:52 Software Distribution Service 3.0
24-10-2012 01:47:33 Software Distribution Service 3.0
24-10-2012 12:40:03 Software Distribution Service 3.0
25-10-2012 13:19:42 Software Distribution Service 3.0
25-10-2012 20:30:16 Software Distribution Service 3.0
26-10-2012 12:28:36 Software Distribution Service 3.0
27-10-2012 11:36:39 Software Distribution Service 3.0
27-10-2012 20:17:05 Software Distribution Service 3.0
28-10-2012 12:46:25 Software Distribution Service 3.0
29-10-2012 13:11:00 Software Distribution Service 3.0
29-10-2012 22:40:40 Software Distribution Service 3.0
30-10-2012 12:54:27 Software Distribution Service 3.0
31-10-2012 00:36:31 Software Distribution Service 3.0
31-10-2012 11:04:33 Software Distribution Service 3.0
01-11-2012 11:24:58 Software Distribution Service 3.0
02-11-2012 11:53:49 Software Distribution Service 3.0
03-11-2012 12:23:21 Software Distribution Service 3.0
03-11-2012 19:14:15 Software Distribution Service 3.0
04-11-2012 12:15:18 Software Distribution Service 3.0
04-11-2012 21:34:08 Software Distribution Service 3.0
05-11-2012 11:56:11 Software Distribution Service 3.0
06-11-2012 01:12:22 Software Distribution Service 3.0
06-11-2012 13:27:06 Software Distribution Service 3.0
07-11-2012 07:19:48 Software Distribution Service 3.0
07-11-2012 13:34:37 Software Distribution Service 3.0
07-11-2012 21:13:18 Software Distribution Service 3.0
08-11-2012 13:26:41 Software Distribution Service 3.0
09-11-2012 01:07:48 Software Distribution Service 3.0
09-11-2012 12:54:32 Software Distribution Service 3.0
10-11-2012 14:04:29 Software Distribution Service 3.0
10-11-2012 18:29:57 Software Distribution Service 3.0
10-11-2012 20:02:10 Software Distribution Service 3.0
11-11-2012 12:44:52 Software Distribution Service 3.0
11-11-2012 21:56:08 Software Distribution Service 3.0
12-11-2012 13:29:37 Software Distribution Service 3.0
13-11-2012 14:41:03 Software Distribution Service 3.0
13-11-2012 22:48:44 Software Distribution Service 3.0
14-11-2012 12:00:42 Software Distribution Service 3.0
14-11-2012 18:12:21 Software Distribution Service 3.0
14-11-2012 23:12:48 Software Distribution Service 3.0
15-11-2012 13:13:42 Software Distribution Service 3.0
15-11-2012 13:34:36 Software Distribution Service 3.0
16-11-2012 02:24:15 Software Distribution Service 3.0
16-11-2012 11:22:35 Software Distribution Service 3.0
16-11-2012 19:54:37 Software Distribution Service 3.0
16-11-2012 21:31:34 Software Distribution Service 3.0
17-11-2012 14:04:02 Software Distribution Service 3.0
17-11-2012 18:19:23 Software Distribution Service 3.0
18-11-2012 02:07:59 Software Distribution Service 3.0
18-11-2012 14:11:39 Software Distribution Service 3.0
18-11-2012 19:25:29 Software Distribution Service 3.0
19-11-2012 04:56:13 Software Distribution Service 3.0
19-11-2012 14:14:04 Software Distribution Service 3.0
20-11-2012 11:37:56 Software Distribution Service 3.0
20-11-2012 17:31:11 Installed TurboTax 2012 wrapper
21-11-2012 02:23:40 Software Distribution Service 3.0
21-11-2012 14:23:40 Software Distribution Service 3.0
22-11-2012 16:58:26 System Checkpoint
22-11-2012 16:59:35 Installed Microsoft Fix it 50203
23-11-2012 18:28:08 System Checkpoint

**** End of log ****

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:21 AM

Posted 23 November 2012 - 02:02 PM

You didnot post farbar service scanner log

#5 Bernard1027

Bernard1027
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 23 November 2012 - 02:22 PM

I apologize. Trying to go too fast.

Farbar Service Scanner Version: 09-11-2012
Ran by Sonny (administrator) on 23-11-2012 at 14:17:32
Running from "C:\Documents and Settings\Sonny\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

afd Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open afd registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open afd registry key. The service key does not exist.


Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error. Yahoo IP is unreachable
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit

ATTENTION!=====> C:\WINDOWS\system32\Drivers\afd.sys FILE IS MISSING AND SHOULD BE RESTORED.

C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4) Tcpip6(8)
0x080000000500000001000000020000000300000004000000060000000700000008000000
IpSec Tag value is correct.

**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:21 AM

Posted 23 November 2012 - 03:22 PM

Launch FSS again and type

afd.sys in search box and

click on Search files option

Post the generated log

#7 Bernard1027

Bernard1027
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 23 November 2012 - 04:20 PM

Farbar Service Scanner Version: 09-11-2012
Ran by Sonny (administrator) on 23-11-2012 at 16:14:10
Microsoft Windows XP Service Pack 3 (X86)

************************************************
======== Search: "afd.sys" =========

C:\WINDOWS\system32\dllcache\afd.sys
[2008-06-20 13:40] - [2006-02-28 07:00] - 0138496 ___AC (Microsoft Corporation) 5AC495F4CB807B2B98AD2AD591E6D92E

C:\WINDOWS\SoftwareDistribution\Download\ff0686f2f699fa07ed5ad0848fa3055b\sp3qfe\afd.sys
[2011-04-18 13:00] - [2008-10-16 10:07] - 0138496 ____A (Microsoft Corporation) 38D7B715504DA4741DF35E3594FE2099

C:\WINDOWS\SoftwareDistribution\Download\ff0686f2f699fa07ed5ad0848fa3055b\sp3gdr\afd.sys
[2011-04-18 13:00] - [2008-10-16 09:43] - 0138496 ____A (Microsoft Corporation) 7618D5218F2A614672EC61A80D854A37

C:\WINDOWS\SoftwareDistribution\Download\ad744bdeedce85bf37a096f34577ff3a\sp3qfe\afd.sys
[2008-06-20 13:48] - [2008-06-20 13:48] - 0138496 ____A (Microsoft Corporation) D6EE6014241D034E63C49A50CB2B442A

C:\WINDOWS\SoftwareDistribution\Download\ad744bdeedce85bf37a096f34577ff3a\sp3gdr\afd.sys
[2008-06-20 13:40] - [2008-06-20 13:40] - 0138496 ____A (Microsoft Corporation) E3049B90FE06F3F740B7CFDA44995E2C

C:\WINDOWS\SoftwareDistribution\Download\a94a6432dbac6901fc5bf15157f718f8\SP3QFE\afd.sys
[2009-04-08 15:15] - [2008-08-14 12:34] - 0138496 ____A (Microsoft Corporation) 4D43E74F2A1239D53929B82600F1971C

C:\WINDOWS\SoftwareDistribution\Download\a94a6432dbac6901fc5bf15157f718f8\SP3GDR\afd.sys
[2009-04-08 15:15] - [2008-08-14 12:04] - 0138496 ____A (Microsoft Corporation) 7E775010EF291DA96AD17CA4B17137D7

C:\WINDOWS\SoftwareDistribution\Download\a94a6432dbac6901fc5bf15157f718f8\SP2QFE\afd.sys
[2009-04-08 15:15] - [2008-08-14 11:48] - 0138368 ____A (Microsoft Corporation) 6A0397376853E604DE8E1E7A87FC08AC

C:\WINDOWS\SoftwareDistribution\Download\a94a6432dbac6901fc5bf15157f718f8\SP2GDR\afd.sys
[2009-04-08 15:15] - [2008-08-14 11:51] - 0138368 ____A (Microsoft Corporation) 55E6E1C51B6D30E54335750955453702

C:\WINDOWS\ServicePackFiles\i386\afd.sys
[2009-04-07 20:44] - [2008-04-14 06:49] - 0138112 ____A (Microsoft Corporation) 322D0E36693D6E24A2398BEE62A268CD

C:\WINDOWS\$NtUninstallKB956803$\afd.sys
[2009-04-08 15:27] - [2008-06-20 13:40] - 0138496 ____C (Microsoft Corporation) E3049B90FE06F3F740B7CFDA44995E2C

C:\WINDOWS\$NtUninstallKB951748$\afd.sys
[2009-04-08 15:26] - [2008-04-14 06:49] - 0138112 ____C (Microsoft Corporation) 322D0E36693D6E24A2398BEE62A268CD

C:\WINDOWS\$NtUninstallKB2592799$\afd.sys
[2011-10-12 07:42] - [2011-02-16 08:22] - 0138496 ____C (Microsoft Corporation) 355556D9E580915118CD7EF736653A89

C:\WINDOWS\$NtUninstallKB2509553$\afd.sys
[2011-04-14 21:02] - [2008-08-14 12:04] - 0138496 ____C (Microsoft Corporation) 7E775010EF291DA96AD17CA4B17137D7

C:\WINDOWS\$NtUninstallKB2503665$\afd.sys
[2011-06-15 14:51] - [2008-10-16 09:43] - 0138496 ____C (Microsoft Corporation) 7618D5218F2A614672EC61A80D854A37

C:\WINDOWS\$NtServicePackUninstall$\afd.sys
[2009-06-30 11:45] - [2006-02-28 07:00] - 0138496 ___AC (Microsoft Corporation) 5AC495F4CB807B2B98AD2AD591E6D92E

C:\WINDOWS\$hf_mig$\KB956803\SP3QFE\afd.sys
[2009-04-08 15:15] - [2008-08-14 12:34] - 0138496 ____A (Microsoft Corporation) 4D43E74F2A1239D53929B82600F1971C

C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\afd.sys
[2008-06-20 13:48] - [2008-06-20 13:48] - 0138496 ____A (Microsoft Corporation) D6EE6014241D034E63C49A50CB2B442A

C:\WINDOWS\$hf_mig$\KB2592799\SP3QFE\afd.sys
[2011-10-12 07:39] - [2011-08-17 08:41] - 0138496 ____A (Microsoft Corporation) F6B7B1ECD7B41736BDB6FF4B092BCB79

C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\afd.sys
[2008-10-16 10:07] - [2008-10-16 10:07] - 0138496 ____A (Microsoft Corporation) 38D7B715504DA4741DF35E3594FE2099

C:\WINDOWS\$hf_mig$\KB2503665\SP3QFE\afd.sys
[2011-06-15 14:37] - [2011-02-16 08:25] - 0138496 ____A (Microsoft Corporation) 8D499B1276012EB907E7A9E0F4D8FDA4

====== End Of Search ======

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:21 AM

Posted 23 November 2012 - 04:49 PM

Copy this file

C:\WINDOWS\ServicePackFiles\i386\afd.sys

Paste it in C:\windows\system32\drivers folder

Download

afd.reg

Launch it and click YES

Restart the PC and post the new FSS log

#9 Bernard1027

Bernard1027
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 23 November 2012 - 05:15 PM

Farbar Service Scanner Version: 09-11-2012
Ran by Sonny (administrator) on 23-11-2012 at 17:12:03
Running from "C:\Documents and Settings\Sonny\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

afd Service is not running. Checking service configuration:
The start type of afd service is OK.
The ImagePath of afd service is OK.


Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error. Yahoo IP is unreachable
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4) Tcpip6(8)
0x080000000500000001000000020000000300000004000000060000000700000008000000
IpSec Tag value is correct.

**** End of log ****

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:21 AM

Posted 23 November 2012 - 05:16 PM

Download

Winsock fix

Launch it ,Click on FIX

Restart your PC after it gets completed

Check your browser.If that doesnt work try this


PLEASE create a restore point before trying this

Please copy the entire contents of the codebox below into Notepad:


REGEDIT4

[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Winsock]

[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2]





Open a notepad ,copy the script,save it as

Filename:winsock.reg
save as type:All files


Launch it and click YES to add it to registry

After that, Reboot your computer.

After the restart,

Go to Network Connections
Right click on your normal connection icon, and choose Properties
Click the Install button
Choose Protocol then click Add
Click Have disk
In the drop down box, type in: C:\WINDOWS\INF and click OK
In the next dialog, click Internet Protocol (TCP/IP) then click OK
Click Close to leave the properties box

After that, restart your computer and see if you can browse now.

Post the NEW FSS log

Good luck

#11 Bernard1027

Bernard1027
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 23 November 2012 - 05:56 PM

Winsock fix did not correct the problem. I went to create a Restore Point but it would not allow me to name the point or advance to creating one. I cannot select the description box for the restore point. Also there are no previous points in the calender. It is empty. Is there another problem that I have?

Edited by Bernard1027, 23 November 2012 - 06:23 PM.


#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:21 AM

Posted 23 November 2012 - 06:38 PM

Skip creating restore point ,go to next step

#13 Bernard1027

Bernard1027
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 23 November 2012 - 07:14 PM

Still cannot connect to internet. Log is as follows:

Farbar Service Scanner Version: 09-11-2012
Ran by Sonny (administrator) on 23-11-2012 at 19:08:43
Running from "C:\Documents and Settings\Sonny\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

afd Service is not running. Checking service configuration:
The start type of afd service is OK.
The ImagePath of afd service is OK.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
There is no connection to network.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error. Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4) Tcpip6(8)
0x080000000500000001000000020000000300000004000000060000000700000008000000
IpSec Tag value is correct.

**** End of log ****

#14 Bernard1027

Bernard1027
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 23 November 2012 - 07:24 PM

Please disregard my previous post. I did not follow your instructions correctly. Will redo last instructions and repost a log.

#15 Bernard1027

Bernard1027
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 23 November 2012 - 07:30 PM

Redid your last instructions correctly and still cannot connect or acess the firewall. The new log follows:

Farbar Service Scanner Version: 09-11-2012
Ran by Sonny (administrator) on 23-11-2012 at 19:25:17
Running from "C:\Documents and Settings\Sonny\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

afd Service is not running. Checking service configuration:
The start type of afd service is OK.
The ImagePath of afd service is OK.


Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error. Yahoo IP is unreachable
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4) Tcpip6(8)
0x080000000500000001000000020000000300000004000000060000000700000008000000
IpSec Tag value is correct.

**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users