Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I have a network connection but server is not found, winsock problem?


  • This topic is locked This topic is locked
24 replies to this topic

#1 liquidescapes

liquidescapes

  • Members
  • 84 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 14 July 2013 - 11:51 PM

hello, new to any type of torum like this so sorry if this isn't the right place for this. 

 

i have a dell inspiron 9300 laptop with windows xp home edition version 5.1 service pack 3

 

this computer had been used for questionable surfing activities, possibly without any antivirus, maybe no firewall

 

i haven't been able to get online with this computer for a long long time, and recently i've been trying to figure out why.  over the last couple of days i've probably done a lot more harm than good as i've tried to solve this problem, but hopefully it can still be saved!

 

in network connections, it shows i am connected to a wireless router that works fine, as it connects the computer i'm currently on.  when i try to open a webpage, server is not found for firefox, and internet explorer just sits there trying to connect.

 

when i run %windir%\network diagnostic\xpnetdiag.exe i kept getting a message that said there was a problem with winsock catalog, although after my attempts to fix this, now network diagnostics just tells me to contact the company that provides support...

 

here's what i've done to make matters worse

 

i've reinstalled service pack 3, no good reason, just thought i'd try this

i've installed comodo firewall

i've installed avast, found many trojans and rootkits, done 2 boot time scans, still found 1 rootkit on the last boot time scan

i've installed malware bytes, found several trojans

i've installed superantispyware, found a couple things

i've installed spybot, found a couple things

i've installed ccleaner and privazer, just to see if that could somehow help

i ran winsockfix.exe, did i mention i don't know what i'm doing?

i ran winsockxpfix.exe, in for a penny, in for a pound

i followed directions found at  support.microsoft that had me delete some winsock things from the registry, install tcp/ip, of course this did not work either

i don't know what ipconfig.exe does, but on my computer an internal error occurs and the request is not supported. it's also unable to query host name

 

 

at this point, i'm surprised it still turns on. on the upside, i fixed the cd drive, which had stopped working, by uninstalling the hardware and then it reinstalled? itself when restarted.  got that idea from bleepingcomputer, so i figured i'd ask this question here

 

i feel sorry for the person that decides to help me.  i'm good with a telescope.  i know a lot about rocks.  i can run heavy equipment.  get a computer online?  not so much...

 

any attempt to help with this is greatly appreciated

 

thanks, jb


Edited by hamluis, 15 July 2013 - 12:40 PM.
Moved from XP to Networking - Hamluis.


BC AdBot (Login to Remove)

 


#2 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 15 July 2013 - 06:57 PM

Hi liquiescapes :)

 

On a working computer with a USB flash drive to download and transfer logs and software,

 

Download MiniToolBox and open/run the program.
When open, checkmark or select all options then click Go.
A notepad will open then copy-paste the report on your next reply.

 

Download then run Farbar Service Scanner and checkmark all boxes.
Click Scan and then a Notepad text will open. Copy-Paste the report on your next reply.

 

 


Tekken
 


#3 liquidescapes

liquidescapes
  • Topic Starter

  • Members
  • 84 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 15 July 2013 - 09:31 PM

hello jhayz

 

thanks in advance for attempting to get me back online.

 

here are the logs requested, from mini toolbox and farbar service scanner.

 

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Michele Buscher (administrator) on 15-07-2013 at 21:39:18
Running from "C:\Documents and Settings\Michele Buscher\Desktop\bleep"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



An internal error occurred: The request is not supported.

 

Please contact Microsoft Product Support Services for further help.



Additional information: Unable to query host name.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 
127.0.0.1       localhost

========================= IP Configuration: ================================

1394 Net Adapter = 1394 Connection (Disconnected)
Intel® PRO/Wireless 2200BG Network Connection = Wireless Network Connection (Connected)
Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration         
# ----------------------------------
pushd interface ip



popd
# End of interface IP configuration




Windows IP Configuration



An internal error occurred: The request is not supported.

 

Please contact Microsoft Product Support Services for further help.



Additional information: Unable to query host name.

Server:  UnKnown
Address:  127.0.0.1

Ping request could not find host google.com. Please check the name and try again.

Server:  UnKnown
Address:  127.0.0.1

Ping request could not find host yahoo.com. Please check the name and try again.

Unable to contact IP driver, error code 2,

========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\system32\nwprovau.dll [142336] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 23 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/13/2013 05:27:48 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (07/13/2013 04:14:49 PM) (Source: Application Error) (User: )
Description: Faulting application hpzscr01.exe, version 10.0.0.76, faulting module msvcrt.dll, version 7.0.2600.5512, fault address 0x00036fa3.
Processing media-specific event for [hpzscr01.exe!ws!]

Error: (07/13/2013 03:32:14 PM) (Source: MsiInstaller) (User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.

Error: (07/13/2013 03:29:39 PM) (Source: MsiInstaller) (User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.

Error: (07/13/2013 02:50:49 PM) (Source: MsiInstaller) (User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.

Error: (07/13/2013 02:50:44 PM) (Source: MsiInstaller) (User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.

Error: (07/13/2013 02:43:24 PM) (Source: Application Error) (User: )
Description: Faulting application hpzscr01.exe, version 10.0.0.76, faulting module msvcrt.dll, version 7.0.2600.5512, fault address 0x00036fa3.
Processing media-specific event for [hpzscr01.exe!ws!]

Error: (07/13/2013 02:32:57 PM) (Source: MsiInstaller) (User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.

Error: (07/13/2013 02:31:39 PM) (Source: Application Error) (User: )
Description: Faulting application hpzscr01.exe, version 10.0.0.76, faulting module msvcrt.dll, version 7.0.2600.5512, fault address 0x00036fa3.
Processing media-specific event for [hpzscr01.exe!ws!]

Error: (07/13/2013 02:31:25 PM) (Source: Application Error) (User: )
Description: Faulting application hpzscr01.exe, version 10.0.0.76, faulting module msvcrt.dll, version 7.0.2600.5512, fault address 0x00036fa3.
Processing media-specific event for [hpzscr01.exe!ws!]


System errors:
=============
Error: (07/15/2013 09:40:26 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%1075

Error: (07/15/2013 09:40:26 PM) (Source: Service Control Manager) (User: )
Description: The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec

Error: (07/15/2013 09:40:25 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%1075

Error: (07/15/2013 09:40:25 PM) (Source: Service Control Manager) (User: )
Description: The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec

Error: (07/15/2013 09:40:24 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%1075

Error: (07/15/2013 09:40:24 PM) (Source: Service Control Manager) (User: )
Description: The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec

Error: (07/15/2013 09:40:23 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%1075

Error: (07/15/2013 09:40:23 PM) (Source: Service Control Manager) (User: )
Description: The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec

Error: (07/15/2013 09:40:22 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%1075

Error: (07/15/2013 09:40:22 PM) (Source: Service Control Manager) (User: )
Description: The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec


Microsoft Office Sessions:
=========================
Error: (07/13/2013 05:27:48 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe server name or address could not be resolved

Error: (07/13/2013 04:14:49 PM) (Source: Application Error)(User: )
Description: hpzscr01.exe10.0.0.76msvcrt.dll7.0.2600.551200036fa3

Error: (07/13/2013 03:32:14 PM) (Source: MsiInstaller)(User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.(NULL)(NULL)(NULL)

Error: (07/13/2013 03:29:39 PM) (Source: MsiInstaller)(User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.(NULL)(NULL)(NULL)

Error: (07/13/2013 02:50:49 PM) (Source: MsiInstaller)(User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.(NULL)(NULL)(NULL)

Error: (07/13/2013 02:50:44 PM) (Source: MsiInstaller)(User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.(NULL)(NULL)(NULL)

Error: (07/13/2013 02:43:24 PM) (Source: Application Error)(User: )
Description: hpzscr01.exe10.0.0.76msvcrt.dll7.0.2600.551200036fa3

Error: (07/13/2013 02:32:57 PM) (Source: MsiInstaller)(User: BIGGIE)
Description: Product: SmartWebPrintingOC -- Error 1706. An installation package for the product SmartWebPrintingOC cannot be found. Try the installation again using a valid copy of the installation package 'smartwebprintingoc.msi'.(NULL)(NULL)(NULL)

Error: (07/13/2013 02:31:39 PM) (Source: Application Error)(User: )
Description: hpzscr01.exe10.0.0.76msvcrt.dll7.0.2600.551200036fa3

Error: (07/13/2013 02:31:25 PM) (Source: Application Error)(User: )
Description: hpzscr01.exe10.0.0.76msvcrt.dll7.0.2600.551200036fa3


=========================== Installed Programs ============================

Adobe AIR (Version: 2.5.1.17730)
Adobe Flash Player 10 ActiveX (Version: 10.0.12.36)
Adobe Flash Player 10 Plugin (Version: 10.3.183.7)
Adobe Reader 8.1.5 (Version: 8.1.5)
Ahead Nero Burning ROM
ALPS Touch Pad Driver
AOLIcon (Version: 1.00.0000)
ATI Control Panel (Version: 6.14.10.5160)
ATI Display Driver (Version: 8.162-050803a2-025823C-Dell)
avast! Free Antivirus (Version: 8.0.1489.0)
Barbie® Pet Rescue
Bonjour (Version: 1.0.106)
Broadcom Management Programs 2 (Version: 7.82.01)
BufferChm (Version: 100.0.170.000)
Canon MP190 series MP Drivers
CCleaner (Version: 4.03)
COMODO Firewall (Version: 6.2.20728.2847)
Conexant D110 MDC V.92 Modem
Corel Business Applications
CustomerResearchQFolder (Version: 1.00.0000)
D1500 (Version: 100.0.206.000)
D1500_Help (Version: 100.0.206.000)
DAO
DellSupport (Version: 6.0.3062)
Digital Content Portal (Version: 1.00.0000)
Digital Line Detect (Version: 1.14)
DJ_SF_03_D1500_ProductContext (Version: 100.0.215.000)
DJ_SF_03_D1500_Software (Version: 100.0.206.000)
DJ_SF_03_D1500_Software_Min (Version: 100.0.206.000)
Easy File Locker 1.2 (Version: 1.2)
ELIcon (Version: 1.00.0000)
FastStone Photo Resizer 3.0 (Version: 3.0)
GdiplusUpgrade (Version: 1.00.01)
Google Update Helper (Version: 1.3.21.123)
HP Photosmart Essential 2.5 (Version: 1.02.0000)
HPProductAssistant (Version: 100.0.170.000)
HPSSupply (Version: 100.0.170.000)
Intel® PROSet/Wireless Software (Version: 9.00.0000)
Internal Network Card Power Management (Version: 1.7.2)
Java 2 Runtime Environment, SE v1.4.2_03 (Version: 1.4.2_03)
Java™ 6 Update 17 (Version: 6.0.170)
KidiArt Studio (Version: 1.00.0000)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MarketResearch (Version: 100.0.170.000)
mCore (Version: 1.19.0000)
mDrWiFi (Version: 1.19.0000)
mHlpDell (Version: 1.19.0000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Digital Image Library 9 - Blocker (Version: 9.00.0000)
Microsoft Digital Image Standard 2006 (Version: 11.0.0422)
Microsoft Digital Image Standard 2006 Editor (Version: 11.0.0422)
Microsoft Digital Image Standard 2006 Library (Version: 11.0.0422)
Microsoft Office PowerPoint 2003 (Version: 11.0.5614.0)
Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3514)
Microsoft Plus! Photo Story 2 LE (Version: 1.1.0.3463)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Word 2002 (Version: 10.0.2627.01)
Microsoft Works (Version: 08.05.0818)
Microsoft Works Suite 2006 Setup Launcher
Microsoft Works Suite Add-in for Microsoft Word (Version: 8.0.0.0000)
mIWA (Version: 1.19.0000)
mIWCA (Version: 1.19.0000)
mLogView (Version: 1.19.0000)
mMHouse (Version: 1.19.0000)
MobileMe Control Panel (Version: 2.6.0.29)
Modem Helper (Version: 2.41)
Mozilla Firefox (3.6.23) (Version: 3.6.23 (en-US))
mPfMgr (Version: 1.19.0000)
mPfWiz (Version: 1.19.0000)
mProSafe (Version: 9.00.0000)
mSSO (Version: 1.19.0000)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6 Service Pack 2 (KB954459) (Version: 6.20.1099.0)
mToolkit (Version: 1.19.0000)
mWlsSafe (Version: 9.00.0000)
mXML (Version: 1.19.0000)
mZConfig (Version: 1.19.0000)
Nations Photo Lab ROES
Nations Photo Lab ROES Easy
Photo Viewer 2.4
PrivaZer (Version: 1.14.2.0)
PRS-500 USB driver (Version: 1.0.00.08110)
PSSWCORE (Version: 2.02.0000)
QuickTime (Version: 7.65.17.80)
Shop for HP Supplies (Version: 10.0)
SmartWebPrintingOC (Version: 100.0.189.000)
Socrates Media Product Browser (Version: 2.75.0000)
Sonic DLA (Version: 4.95)
Sonic MyDVD LE (Version: 6.1.1)
Sonic RecordNow Audio (Version: 2.0.0)
Sonic RecordNow Copy (Version: 2.0.0)
Sonic RecordNow Data (Version: 2.0.0)
Sonic Update Manager (Version: 3.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
SUPERAntiSpyware (Version: 5.6.1020)
Toolbox (Version: 100.0.170.000)
Unload (Version: 6.0.0)
UnloadSupport (Version: 10.0.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
VideoToolkit01 (Version: 100.0.128.000)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 100.0.170.000)
Windows Defender (Version: 1.1.1593.21)
Windows Driver Package - Sony Corporation (PRSUSB) USB  (08/08/2006 1.0.03.08080) (Version: 08/08/2006 1.0.03.08080)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Media Format 11 runtime
Windows Media Player 10 (Version: 9.00.3636)
Windows Media Player 11
Windows Mobile® Device Handbook (Version: 1.0)
Works Upgrade (Version: 8.0.0.0000)
ZoneAlarm Free Firewall (Version: 11.0.768.000)
Zune (Version: 03.01.0620.00)
Zune Language Pack (ES) (Version: 03.01.0620.00)
Zune Language Pack (FR) (Version: 03.01.0620.00)

========================= Devices: ================================

Name: ACPI Uniprocessor PC
Description: ACPI Uniprocessor PC
Class Guid: {4D36E966-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard computers)
Service: \Driver\ACPI_HAL

Name: Microsoft ACPI-Compliant System
Description: Microsoft ACPI-Compliant System
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: ACPI

Name: Intel® Pentium® M processor 1.73GHz
Description: Intel Processor
Class Guid: {50127DC3-0F36-415E-A6CC-4CB3BE910B65}
Manufacturer: Intel
Service: intelppm

Name: ACPI Thermal Zone
Description: ACPI Thermal Zone
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft AC Adapter
Description: Microsoft AC Adapter
Class Guid: {72631E54-78A4-11D0-BCF7-00AA00B7B32A}
Manufacturer: Microsoft
Service: CmBatt

Name: Microsoft ACPI-Compliant Control Method Battery
Description: Microsoft ACPI-Compliant Control Method Battery
Class Guid: {72631E54-78A4-11D0-BCF7-00AA00B7B32A}
Manufacturer: Microsoft
Service: CmBatt

Name: ACPI Lid
Description: ACPI Lid
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: ACPI Power Button
Description: ACPI Power Button
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: ACPI Sleep Button
Description: ACPI Sleep Button
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: System board
Description: System board
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI bus
Description: PCI bus
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: pci

Name: Mobile Intel® 915GM/PM/GMS/910GML Express Processor to DRAM Controller - 2590
Description: Mobile Intel® 915GM/PM/GMS/910GML Express Processor to DRAM Controller - 2590
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Intel
Service:

Name: Mobile Intel® 915GM/PM Express PCI Express Root Port - 2591
Description: Mobile Intel® 915GM/PM Express PCI Express Root Port - 2591
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Intel
Service: pci

Name: ATI MOBILITY RADEON X300
Description: ATI MOBILITY RADEON X300
Class Guid: {4D36E968-E325-11CE-BFC1-08002BE10318}
Manufacturer: ATI Technologies Inc.
Service: ati2mtag

Name: Default Monitor
Description: Default Monitor
Class Guid: {4D36E96E-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard monitor types)
Service:

Name: Default Monitor
Description: Default Monitor
Class Guid: {4D36E96E-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard monitor types)
Service:

Name: Default Monitor
Description: Default Monitor
Class Guid: {4D36E96E-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard monitor types)
Service:

Name: Default Monitor
Description: Default Monitor
Class Guid: {4D36E96E-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard monitor types)
Service:

Name: Intel® 82801FB/FBM USB Universal Host Controller - 2658
Description: Intel® 82801FB/FBM USB Universal Host Controller - 2658
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Intel® 82801FB/FBM USB Universal Host Controller - 2659
Description: Intel® 82801FB/FBM USB Universal Host Controller - 2659
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Intel® 82801FB/FBM USB Universal Host Controller - 265A
Description: Intel® 82801FB/FBM USB Universal Host Controller - 265A
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Intel® 82801FB/FBM USB Universal Host Controller - 265B
Description: Intel® 82801FB/FBM USB Universal Host Controller - 265B
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: USB Composite Device
Description: USB Composite Device
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbccgp

Name: USB Human Interface Device
Description: USB Human Interface Device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service: HidUsb

Name: HID Keyboard Device
Description: HID Keyboard Device
Class Guid: {4D36E96B-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard keyboards)
Service: kbdhid

Name: USB Human Interface Device
Description: USB Human Interface Device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service: HidUsb

Name: HID-compliant mouse
Description: HID-compliant mouse
Class Guid: {4D36E96F-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: mouhid

Name: HID-compliant consumer control device
Description: HID-compliant consumer control device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: Microsoft
Service:

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service:

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service:

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service:

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service:

Name: Intel® 82801FB/FBM USB2 Enhanced Host Controller - 265C
Description: Intel® 82801FB/FBM USB2 Enhanced Host Controller - 265C
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Intel
Service: usbehci

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: USB Mass Storage Device
Description: USB Mass Storage Device
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Compatible USB storage device
Service: USBSTOR

Name: Kingston DataTraveler 2.0 USB Device
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Intel® 82801 PCI Bridge - 2448
Description: Intel® 82801 PCI Bridge - 2448
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Intel
Service: pci

Name: Broadcom 440x 10/100 Integrated Controller
Description: Broadcom 440x 10/100 Integrated Controller
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Broadcom
Service: bcm4sbxp

Name: Ricoh R/RL/5C476(II) or Compatible CardBus Controller
Description: Ricoh R/RL/5C476(II) or Compatible CardBus Controller
Class Guid: {4D36E977-E325-11CE-BFC1-08002BE10318}
Manufacturer: RICOH
Service: pcmcia

Name: OHCI Compliant IEEE 1394 Host Controller
Description: OHCI Compliant IEEE 1394 Host Controller
Class Guid: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F}
Manufacturer: IEEE 1394 OHCI Compliant Host Controller Vendor
Service: ohci1394

Name: 1394 Net Adapter
Description: 1394 Net Adapter
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: NIC1394
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: SDA Standard Compliant SD Host Controller
Description: SDA Standard Compliant SD Host Controller
Class Guid: {A0A588A4-C46F-4B37-B7EA-C82FE89870C6}
Manufacturer: SDA Standard Compliant SD Host Controller Vendor
Service: sdbus

Name: Intel® PRO/Wireless 2200BG Network Connection
Description: Intel® PRO/Wireless 2200BG Network Connection
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Intel® Corporation
Service: w29n51

Name: SigmaTel C-Major Audio
Description: SigmaTel C-Major Audio
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: SigmaTel
Service: STAC97

Name: Conexant D110 MDC V.92 Modem
Description: Conexant D110 MDC V.92 Modem
Class Guid: {4D36E96D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Conexant
Service: Modem

Name: Intel® 82801FBM LPC Interface Controller - 2641
Description: Intel® 82801FBM LPC Interface Controller - 2641
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Intel
Service: isapnp

Name: ISAPNP Read Data Port
Description: ISAPNP Read Data Port
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Alps Touch Pad
Description: Alps Touch Pad
Class Guid: {4D36E96F-E325-11CE-BFC1-08002BE10318}
Manufacturer: Alps Electric
Service: i8042prt

Name: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Description: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Class Guid: {4D36E96B-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard keyboards)
Service: i8042prt

Name: System CMOS/real time clock
Description: System CMOS/real time clock
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: System timer
Description: System timer
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: System speaker
Description: System speaker
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: System board
Description: System board
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Programmable interrupt controller
Description: Programmable interrupt controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Direct memory access controller
Description: Direct memory access controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Numeric data processor
Description: Numeric data processor
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® 82801FBM Ultra ATA Storage Controllers - 2653
Description: Intel® 82801FBM Ultra ATA Storage Controllers - 2653
Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Manufacturer: Intel
Service: pciide

Name: Primary IDE Channel
Description: Primary IDE Channel
Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard IDE ATA/ATAPI controllers)
Service: atapi

Name: FUJITSU MHV2100BH
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Secondary IDE Channel
Description: Secondary IDE Channel
Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard IDE ATA/ATAPI controllers)
Service: atapi

Name: SONY DVD+-RW DW-Q58A
Description: CD-ROM Drive
Class Guid: {4D36E965-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard CD-ROM drives)
Service: cdrom

Name: Intel® 82801FB/FBM SMBus Controller - 266A
Description: Intel® 82801FB/FBM SMBus Controller - 266A
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Intel
Service:

Name: System board
Description: System board
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: System board
Description: System board
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft Composite Battery
Description: Microsoft Composite Battery
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: Compbatt

Name: Volume Manager
Description: Volume Manager
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: ftdisk

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Intel® PRO/Wireless 2200BG Network Connection - Intel Wireless Connection Agent Miniport
Description: Intel Wireless Connection Agent Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Intel Corporation
Service: IWCA

Name: A2 Direct Disk Access Support Driver
Description: A2 Direct Disk Access Support Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: A2DDA

Name: adxapie
Description: adxapie
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: adxapie

Name: AEGIS Protocol (IEEE 802.1x) v3.1.0.1
Description: AEGIS Protocol (IEEE 802.1x) v3.1.0.1
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AegisP

Name: AFD
Description: AFD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AFD

Name: Appdrv
Description: Appdrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Appdrv

Name: 1394 ARP Client Protocol
Description: 1394 ARP Client Protocol
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Arp1394

Name: aswRvrt
Description: aswRvrt
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswRvrt

Name: aswSP
Description: aswSP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswSP

Name: avast! Network Shield Support
Description: avast! Network Shield Support
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswTdi

Name: aswVmm
Description: aswVmm
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswVmm

Name: Beep
Description: Beep
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Beep

Name: COMODO Internet Security Helper Driver
Description: COMODO Internet Security Helper Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: cmdHlp

Name: dmboot
Description: dmboot
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: dmboot

Name: dmload
Description: dmload
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: dmload

Name: DSproct
Description: DSproct
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: DSproct

Name: DellSupport UniDriver
Description: DellSupport UniDriver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: dsunidrv

Name: Fips
Description: Fips
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Fips

Name: Generic Packet Classifier
Description: Generic Packet Classifier
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Gpc

Name: HTTP
Description: HTTP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: HTTP

Name: i2omgmt
Description: i2omgmt
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: i2omgmt

Name: COMODO Internet Security Firewall Driver
Description: COMODO Internet Security Firewall Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Inspect

Name: IntelIde
Description: IntelIde
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: IntelIde

Name: ksecdd
Description: ksecdd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ksecdd

Name: mdmxsdk
Description: mdmxsdk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mdmxsdk

Name: mnmdd
Description: mnmdd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mnmdd

Name: mountmgr
Description: mountmgr
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mountmgr

Name: NDIS System Driver
Description: NDIS System Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDIS

Name: Remote Access NDIS TAPI Driver
Description: Remote Access NDIS TAPI Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NdisTapi

Name: NDIS Usermode I/O Protocol
Description: NDIS Usermode I/O Protocol
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Ndisuio

Name: NDProxy
Description: NDProxy
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDProxy

Name: NetBios over Tcpip
Description: NetBios over Tcpip
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NetBT

Name: Null
Description: Null
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Null

Name: PartMgr
Description: PartMgr
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: PartMgr

Name: ParVdm
Description: ParVdm
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ParVdm

Name: Remote Access Auto Connection Driver
Description: Remote Access Auto Connection Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RasAcd

Name: RDPCDD
Description: RDPCDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPCDD

Name: WLAN Transport
Description: WLAN Transport
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: s24trans

Name: SASDIFSV
Description: SASDIFSV
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SASDIFSV

Name: SASKUTIL
Description: SASKUTIL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SASKUTIL

Name: Secdrv
Description: Secdrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Secdrv

Name: TfFsMon
Description: TfFsMon
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: TfFsMon

Name: TfNetMon
Description: TfNetMon
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: TfNetMon

Name: TfSysMon
Description: TfSysMon
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: TfSysMon

Name: VgaSave
Description: VgaSave
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: VgaSave

Name: VolSnap
Description: VolSnap
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: VolSnap

Name: Remote Access IP ARP Driver
Description: Remote Access IP ARP Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wanarp

Name: Wdf01000
Description: Wdf01000
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wdf01000

Name: Windows Socket 2.0 Non-IFS Service Provider Support Environment
Description: Windows Socket 2.0 Non-IFS Service Provider Support Environment
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WS2IFSL

Name: Windows Driver Foundation - User-mode Driver Framework Platform Driver
Description: Windows Driver Foundation - User-mode Driver Framework Platform Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WudfPf

Name: Audio Codecs
Description: Audio Codecs
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: Legacy Audio Drivers
Description: Legacy Audio Drivers
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: Media Control Devices
Description: Media Control Devices
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: Legacy Video Capture Devices
Description: Legacy Video Capture Devices
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: Video Codecs
Description: Video Codecs
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: Rasl2tp

Name: WAN Miniport (IP)
Description: WAN Miniport (IP)
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: NdisWan

Name: WAN Miniport (PPPOE)
Description: WAN Miniport (PPPOE)
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: RasPppoe

Name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: PptpMiniport

Name: Broadcom 440x 10/100 Integrated Controller - Packet Scheduler Miniport
Description: Packet Scheduler Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: PSched

Name: WAN Miniport (IP) - Packet Scheduler Miniport
Description: Packet Scheduler Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: PSched

Name: Intel® PRO/Wireless 2200BG Network Connection - Packet Scheduler Miniport
Description: Packet Scheduler Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: PSched

Name: Windows Mobile-based Internet Sharing Device - Packet Scheduler Miniport
Description: Packet Scheduler Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: PSched

Name: Direct Parallel
Description: Direct Parallel
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: Raspti

Name: Terminal Server Keyboard Driver
Description: Terminal Server Keyboard Driver
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: Terminal Server Mouse Driver
Description: Terminal Server Mouse Driver
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: Plug and Play Software Device Enumerator
Description: Plug and Play Software Device Enumerator
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: swenum

Name: Microsoft WINMM WDM Audio Compatibility Driver
Description: Microsoft WINMM WDM Audio Compatibility Driver
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: wdmaud

Name: Microsoft Kernel System Audio Device
Description: Microsoft Kernel System Audio Device
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: sysaudio

Name: Microsoft Kernel Wave Audio Mixer
Description: Microsoft Kernel Wave Audio Mixer
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: kmixer

Name: Microcode Update Device
Description: Microcode Update Device
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: update

Name: Microsoft System Management BIOS Driver
Description: Microsoft System Management BIOS Driver
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: mssmbios

Name: OpenManage Client Instrumentation device driver
Description: OpenManage Client Instrumentation device driver
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Dell Inc
Service: omci

Name: Zune Bus Root Bus Enumerator
Description: Zune Bus Root Bus Enumerator
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: zumbus

Name: Zune Bus Root Bus Enumerator
Description: Zune Bus Root Bus Enumerator
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: zumbus


========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 1023.4 MB
Available physical RAM: 584.91 MB
Total Pagefile: 2460.16 MB
Available Pagefile: 2113.5 MB
Total Virtual: 2047.88 MB
Available Virtual: 1969.1 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:89.19 GB) (Free:21.93 GB) NTFS
3 Drive f: () (Removable) (Total:14.9 GB) (Free:14.88 GB) FAT32

========================= Users: ========================================

User accounts for \\

Administrator            ASPNET                   Guest                    
HelpAssistant            Michele Buscher          SUPPORT_388945a0         

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

13-07-2013 05:59:40 Removed Ad-Aware
13-07-2013 06:07:07 Removed AVG 2012
13-07-2013 06:08:45 Removed AVG 2012
13-07-2013 06:14:44 Removed Symantec AntiVirus
13-07-2013 06:23:57 avast! Free Antivirus Setup
13-07-2013 19:36:07 Removed BlackBerry Desktop Software 5.0.1.
13-07-2013 20:18:51 Restore point
13-07-2013 22:38:37 Removed GeekBuddy.
14-07-2013 04:25:56 july13
15-07-2013 03:37:37 Installed Windows XP Service Pack 3.
15-07-2013 03:43:00 Installed Windows XP KB938464.

**** End of log ****
 

 

 

AND FARBAR SERVICE SCANNER

 

 

Farbar Service Scanner Version: 13-07-2013
Ran by Michele Buscher (administrator) on 15-07-2013 at 21:43:57
Running from "C:\Documents and Settings\Michele Buscher\Desktop\bleep"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is OK.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

Tcpip Service is not running. Checking service configuration:
The start type of Tcpip service is OK.
The ImagePath of Tcpip service is OK.

IpSec Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open IpSec registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open IpSec registry key. The service key does not exist.
Checking LEGACY_IpSec: ATTENTION!=====> Unable to open LEGACY_IpSec\0000 registry key. The key does not exist.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
There is no connection to network.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit

ATTENTION!=====> C:\WINDOWS\system32\Drivers\ipsec.sys FILE IS MISSING AND SHOULD BE RESTORED.

C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(9) aswTdi(11) cmdHlp(15) Gpc(6) IWCA(10) NetBT(5) PSched(7) s24trans(8) Tcpip(3)
0x0F000000040000000100000002000000030000000F0000000B0000000E00000005000000060000000700000008000000090000000A0000000C0000000D000000
ATTENTION!=====> IpSec Tag value should be 4. ATTENTION!=====> IpSec Tag value is missing and it should be 4.

**** End of log ****

 

 

 

yeah, that looks complicated...good luck! 

 

thanks again, jb

 



#4 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 15 July 2013 - 10:14 PM

:step1: Please create a restore point before editing the registry keys by following this link.

:step2: Download XP.zip from this site and unzip the downloaded file. Inside the folder you will find several files inside.

Double-click ipsec.reg and confirm the prompt.

 

Please post a new Farbar Service Scanner log and check your internet connection.


Tekken
 


#5 liquidescapes

liquidescapes
  • Topic Starter

  • Members
  • 84 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 16 July 2013 - 12:37 AM

hello again jhayz

 

i'm posting the new Farber Service Scanner log after running ipsec.reg

 

 

but i should tell you this, and this is probably a bad thing.  the computer that i'm online with lost internet connection, it said the remote device or resource won't accept the connection.  the device or resource (web proxy) is not set up to accept connections on port "21320".   immediately prior to this event i had downloaded file hippo updater, which updated my spybot and ccleaner. 

 

after much messing around, i ended up skipping the wireless router and running an ethernet cable from my cable provider's router, which got me back online.  however, the dell xp laptop still shows it's connected to that wireless network, even though the wireless router isn't plugged in.  the dell xp laptop also shows it is connected to a local area connection, broadcom 440x.  the right click options don't work for either of these connections, i can't view their status or disable the connection. it does allow me to click repair, and says "windows could not finish repairing the problem because the following action cannot be completed:  faild to query tcp/ip settings of the connection.  cannot proceed."
 

plugging the working ethernet cable into the dell xp laptop does not change anything that i can see within network connections.

 

i don't know how relevant any of that is, and i apologize if i have taken 2 steps backwards here.  i did notice the FSS log shows 2 OK's in IpSec Service that weren't there before, so that seems like a good thing. 

 

thanks again, jb

 

 

Farbar Service Scanner Version: 13-07-2013
Ran by Michele Buscher (administrator) on 16-07-2013 at 00:37:02
Running from "C:\Documents and Settings\Michele Buscher\Desktop\bleep"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is OK.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

Tcpip Service is not running. Checking service configuration:
The start type of Tcpip service is OK.
The ImagePath of Tcpip service is OK.

IpSec Service is not running. Checking service configuration:
The start type of IpSec service is OK.
The ImagePath of IpSec service is OK.
Checking LEGACY_IpSec: ATTENTION!=====> Unable to open LEGACY_IpSec\0000 registry key. The key does not exist.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
There is no connection to network.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit

ATTENTION!=====> C:\WINDOWS\system32\Drivers\ipsec.sys FILE IS MISSING AND SHOULD BE RESTORED.

C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(9) aswTdi(11) cmdHlp(15) Gpc(6) IPSec(5) IWCA(10) NetBT(5) PSched(7) s24trans(8) Tcpip(3)
0x0F000000040000000100000002000000030000000F0000000B0000000E00000005000000060000000700000008000000090000000A0000000C0000000D000000
ATTENTION!=====> IpSec Tag value should be 4.

**** End of log ****

 



#6 liquidescapes

liquidescapes
  • Topic Starter

  • Members
  • 84 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 16 July 2013 - 12:40 AM

hello jhayz

 

i totally forgot and this might have to do with losing internet from the wireless router, i  downloaded malwarebytes anti exploit beta at about the same time that i downloaded file hippo updater.  i've gotten rid of both of them.  sorry for making things more difficult on you, i'm done touching things till ordered to do so. 

 

thanks, jb



#7 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 16 July 2013 - 08:04 PM

Download Systemlook (32bit) from this link

Double-click SystemLook.exe and type :
 

 

:filefind

ipsec.sys

 

Click the Look button to start the scan.

When finished, a notepad window will open with the results of the scan. Copy paste the report on your next reply.


Tekken
 


#8 liquidescapes

liquidescapes
  • Topic Starter

  • Members
  • 84 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 16 July 2013 - 09:53 PM

hello jhayz, posting the log from systemlook.exe

 

 

 

SystemLook 30.07.11 by jpshortstuff
Log created at 22:05 on 16/07/2013 by Michele Buscher
Administrator - Elevation successful

========== filefind ==========

Searching for "ipsec.sys"
C:\i386\ipsec.sys    --a---- 74752 bytes    [23:22 23/05/2006]    [10:00 04/08/2004] 64537AA5C003A6AFEEE1DF819062D0D1
C:\WINDOWS\ServicePackFiles\i386\ipsec.sys    ------- 75264 bytes    [02:54 09/12/2008]    [06:49 14/04/2008] 23C74D75E36E7158768DD63D92789A91

-= EOF =-

 

 

thanks, jb



#9 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 17 July 2013 - 12:11 AM

Navigate to the folder location C:\WINDOWS\ServicePackFiles\i386\ then copy (right-click) ipsec.sys or paste it in C:/WINDOWS/SYSTEM32/Drivers folder. Reboot your computer and post a new FSS log. How's the computer running?


Tekken
 


#10 liquidescapes

liquidescapes
  • Topic Starter

  • Members
  • 84 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 17 July 2013 - 01:17 AM

Hi again

 

copied and pasted ipsec.sys to system32 drivers folder per instructions.  here's the new FSS log.  the computer itself is running fine, i can't get it online yet though.  in my network connections, things seem weird to me.  in LAN or High-Speedd Internet section, it shows 3 options. 

 

1.  1394 connection, status is connected

2.  local area connection with device name being broadcom440x..., status is disabled.  when i click this connection, a small Local Area Connection window opens, and says "enabling", then it says

        "enabled", however the status still says disabled.  if the ethernet cord is not plugged into the XP laptop, after "enabling" it says "connection failed".\

3.  Wireless Network Connection, status not connected, i mentioned weird things happened with the wireless router, i'm not even going to attempt to mess with that till after this is done, so for now

          i'm just switching the ethernet cord back and forth

 

thanks for all your help.  it ain't fixed yet, it may never be, but it seems like it's getting closer!

 

Farbar Service Scanner Version: 13-07-2013
Ran by Michele Buscher (administrator) on 17-07-2013 at 01:22:57
Running from "C:\Documents and Settings\Michele Buscher\Desktop\bleep"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is OK.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

Tcpip Service is not running. Checking service configuration:
The start type of Tcpip service is OK.
The ImagePath of Tcpip service is OK.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
There is no connection to network.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(9) aswTdi(11) cmdHlp(15) Gpc(6) IPSec(5) IWCA(10) NetBT(5) PSched(7) s24trans(8) Tcpip(3)
0x0F000000040000000100000002000000030000000F0000000B0000000E00000005000000060000000700000008000000090000000A0000000C0000000D000000
ATTENTION!=====> IpSec Tag value should be 4.

**** End of log ****

 

 

thanks again, jb



#11 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 17 July 2013 - 07:26 AM

Download winsock.zip from here and unzip it.

Right click on Winsock.reg then click Merge, reboot your computer.

Go to Start ==> Control Panel. Double-click Network Connections. Right-click Local Area Connection, and select Properties.

  • On the General tab, click Install a popup window opens.

  • Select Protocol from the list and then click Add.

  • A new window opens, click Have Disk....

  • In the browse... box type c:\windows\inf

  • Click OK.

  • Select Internet Protocol (TCP/IP), and then click OK.

  • Restart and check the connection.

Post also a new FSS log next time.


Edited by jhayz, 17 July 2013 - 07:26 AM.

Tekken
 


#12 liquidescapes

liquidescapes
  • Topic Starter

  • Members
  • 84 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 17 July 2013 - 05:40 PM

hello jhayz

 

i have attempted to do what you said, but i encountered some difficulty.  i am not going to proceed on my own, i'll just wait to hear from you.

 

per above instructions, i select protocol and click Add.  a new window opens "Select Network Protocol".   within this window, there is one manufacturer listed, Microsoft.  there are 3 network protocols listed:

         1.  microsoft tcp/ip version 6

          2.  network monitor driver

          3.  nwlink ipx/spx/netbios compatible

 

i click "Have Disk", and type c:\windows\infi into browse box., then click OK

 

a new "select network protocol" window opens, right on top of the other "select network protocal" window.  in this new window, there are two manufacturers listed:

         1.  meetinghouse data communications

          2.  microsoft

 

there is only network protocol listed, and it is :   AEGIS Protocol (IEEE 802.1x) v3.1.0.1

 

so in the first "select network protocol" window, i have something very similar to, but not exactly,  Internet Protocol (TCP/IP), mine being microsoft tcp/ip version 6.  and in the second "select network protocol" window, there's just the aegis  protocol, and i am just clicking cancel on this window for now till i receive further instructions.  after that i have access to the first 'select network protocol" window again, but i'm not clicking anything at this time, just canceling.

 

i do notice that within "local area connection properties", in the section labeled "this connection uses the following items", that aegis protocol (blah) and internet protocol (tcp/ip) are both found, and both have checkmarks next to them. 

 

in the "network connections" window, 1394 connection shows it is connected, while Local Area Connection shows "network cable unplugged", however the ethernet cable is plugged in, but was not plugged in when i rebooted the computer after merging the winsock.reg file.  should it matter when the ethernet cable is plugged in? 

 

posting new fss log, not sure if it matters at this point, thanks

 

 

 

Farbar Service Scanner Version: 13-07-2013
Ran by Michele Buscher (administrator) on 17-07-2013 at 17:57:36
Running from "C:\Documents and Settings\Michele Buscher\Desktop\bleep"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is OK.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

Tcpip Service is not running. Checking service configuration:
The start type of Tcpip service is OK.
The ImagePath of Tcpip service is OK.

IpSec Service is not running. Checking service configuration:
The start type of IpSec service is OK.
The ImagePath of IpSec service is OK.
Checking LEGACY_IpSec: ATTENTION!=====> Unable to open LEGACY_IpSec\0000 registry key. The key does not exist.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
There is no connection to network.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit

ATTENTION!=====> C:\WINDOWS\system32\Drivers\ipsec.sys FILE IS MISSING AND SHOULD BE RESTORED.

C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(9) aswTdi(11) cmdHlp(15) Gpc(6) IPSec(5) IWCA(10) NetBT(5) PSched(7) s24trans(8) Tcpip(3)
0x0F000000040000000100000002000000030000000F0000000B0000000E00000005000000060000000700000008000000090000000A0000000C0000000D000000
ATTENTION!=====> IpSec Tag value should be 4.

**** End of log ****

 

 

thanks, jb



#13 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 17 July 2013 - 07:22 PM

i click "Have Disk", and type c:\windows\infi into browse box

Should be c:\windows\inf

 

so in the first "select network protocol" window, i have something very similar to, but not exactly,  Internet Protocol (TCP/IP), mine being microsoft tcp/ip version 6.

 

The Internet Protocol(TCP/IP) should be available as it is... however looking at the FSS log seems to have reverted the IPsec registry as missing. Please try again the instructions at post#9 and post a new FSS log. It seems that an infection is present or TCP/IP is not found under the windows folder.


Tekken
 


#14 liquidescapes

liquidescapes
  • Topic Starter

  • Members
  • 84 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 17 July 2013 - 08:02 PM

ok, i'm running through this now, here's a couple things i noticed.  (infi instead of inf was a typo on my part, i did it correctly when entering into browse box, sorry for the confusion)

 

looking in system32/drivers, ipsec.sys was not listed, although ipsec.sys.new was there, and here are the properties of ipsec.sys.new

 

type of file:  NEW

opens with:  unknown

size:73.5 kb

size on disk: 76 kb

created:  today july 17, 2013, 1:15:40 AM   (when i first copied and pasted ipsec.sys)

modified: monday, april 14, 2008, 1:49:44 AM

accessed:  today, july 17, 2013, 7:52:52  PM  (as i'm doing this)

 

now, after copying and pasting ipsec.sys once again, both ipsec.sys and ipsec.sys.new are listed there

 

ok, now i've rebooted, and ipsec.sys.new is just plain gone, and ipsec.sys is there.  just out of curiousity i searched whole computer for ipsec.sys.new, and it is no where to be found.

 

 

here's the new fss log:, the ipsec service section is gone again....

 

Farbar Service Scanner Version: 13-07-2013
Ran by Michele Buscher (administrator) on 17-07-2013 at 20:18:59
Running from "C:\Documents and Settings\Michele Buscher\Desktop\bleep"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is OK.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

Tcpip Service is not running. Checking service configuration:
The start type of Tcpip service is OK.
The ImagePath of Tcpip service is OK.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
There is no connection to network.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(9) aswTdi(11) cmdHlp(15) Gpc(6) IPSec(5) IWCA(10) NetBT(5) PSched(7) s24trans(8) Tcpip(3)
0x0F000000040000000100000002000000030000000F0000000B0000000E00000005000000060000000700000008000000090000000A0000000C0000000D000000
ATTENTION!=====> IpSec Tag value should be 4.

**** End of log ****

 

 

computer folds up  nice and flat, i'm beginning to wonder just how far i could throw it...

 

thanks, jb

 

Farbar Service Scanner Version: 13-07-2013
Ran by Michele Buscher (administrator) on 17-07-2013 at 20:18:59
Running from "C:\Documents and Settings\Michele Buscher\Desktop\bleep"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is OK.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

Tcpip Service is not running. Checking service configuration:
The start type of Tcpip service is OK.
The ImagePath of Tcpip service is OK.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
There is no connection to network.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(9) aswTdi(11) cmdHlp(15) Gpc(6) IPSec(5) IWCA(10) NetBT(5) PSched(7) s24trans(8) Tcpip(3)
0x0F000000040000000100000002000000030000000F0000000B0000000E00000005000000060000000700000008000000090000000A0000000C0000000D000000
ATTENTION!=====> IpSec Tag value should be 4.

**** End of log ****



#15 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:10 PM

Posted 17 July 2013 - 08:27 PM

I will ask a well known expert to look up to this just in case, please hold on...


Tekken
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users