Solved Generic Host Process for Win32 has encountered a problem

[Resolved] Generic Host Process for Win32 has encountered a problem

Hello.
Last week I had a sudden message whilst browsing saying that a trojan had been detected and to close everything and shut down so that it could be dealt with. I started to do this but whilst my laptop was just closing down McAfee popped up to say it had detacted and dealt with a trojan! After starting it back up it's never been the same. I did a full scan with Malwarebytes which found nothing but McAfee found and dealt with again, a trojan. However, ever since I am getting the 'Generic Host Process needs to close' error after which I lose my sound card and can't reinstate it (although an external one seems OK). My wireless internet connection is also now random, sometimes I can turn the Dell network assistant off and use Intel's PROset wireless manager but sometimes I cannot, it connects to my HomeHub but can't get to the outside world. I tried to System Restore but I get an error saying that it can not protect my computor and to restart. I also sometimes can't open Help and Support at all and it asks me to open Help and Support to solve the issue!

I have just run a quick scan with McAfee and it found nothing but when I tried to use Malwarebytes I got an error code 714(0,9). I tried to reinstall Malwarebytes but keep getting redirected to other websites and with my current situation I am reluctant to proceed from other than the authors site.

Sorry to go on but I wanted to give you as much info upfront as possible incase it helps. I hope I have followed the rules for my first post, please forgive me if I haven't.

Gary

 

Hi Pete and thanks for such a quick response.

As I said I had already done a scan with McAfee which found nothing. I can't run Malwarebytes as I get an error code even if I change the name as suggested. I have just downloaded and run TFC which seemed to go fine. However when I downloaded and ran the GMER application I got a blue screen of death telling me that the problem was a page fault in non paged area. I have restarted (I'm typing this on a different machine) but wondered if this means anything before I carry on.

Gary

 

I've done this once but it's not showing so here they are again, hope I'm not double posting!


MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows XP Home Edition
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x0000001c

Kernel Drivers (total 158):
0x804D7000 \WINDOWS\system32\ntkrnlpa.exe
0x806E5000 \WINDOWS\system32\hal.dll
0x83330000 \WINDOWS\system32\KDCOM.DLL
0xF8A08000 \WINDOWS\system32\BOOTVID.dll
0xF84C5000 ACPI.sys
0xF8AF4000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
0xF84B4000 pci.sys
0xF85F4000 isapnp.sys
0xF8A0C000 compbatt.sys
0xF8A10000 \WINDOWS\system32\DRIVERS\BATTC.SYS
0xF8BBC000 pciide.sys
0xF8874000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xF8604000 MountMgr.sys
0xF8495000 ftdisk.sys
0xF887C000 PartMgr.sys
0xF8614000 VolSnap.sys
0xF847D000 atapi.sys
0xF8624000 disk.sys
0xF8634000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xF845D000 fltmgr.sys
0xF844B000 sr.sys
0xF83EE000 mfehidk.sys
0xF83D9000 drvmcdb.sys
0xF8644000 PxHelp20.sys
0xF83C2000 KSecDD.sys
0xF8335000 Ntfs.sys
0xF8308000 NDIS.sys
0xF8654000 RapportKELL.sys
0xF8AF6000 \WINDOWS\System32\Drivers\USBD.SYS
0xF8664000 ohci1394.sys
0xF8674000 \WINDOWS\system32\DRIVERS\1394BUS.SYS
0xF82EE000 Mup.sys
0xF8694000 \SystemRoot\system32\DRIVERS\nic1394.sys
0xF8844000 \SystemRoot\system32\DRIVERS\intelppm.sys
0xF80D4000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0xF80D0000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0xF6D94000 \SystemRoot\system32\DRIVERS\ialmnt5.sys
0xF6D80000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xF6D58000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0xF6BFA000 \SystemRoot\system32\DRIVERS\w39n51.sys
0xF891C000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0xF6BD6000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xF8924000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xF8854000 \SystemRoot\system32\DRIVERS\bcm4sbxp.sys
0xF6BC2000 \SystemRoot\system32\DRIVERS\sdbus.sys
0xF892C000 \SystemRoot\system32\DRIVERS\rimmptsk.sys
0xF8864000 \SystemRoot\system32\DRIVERS\rimsptsk.sys
0xF6B76000 \SystemRoot\system32\DRIVERS\rixdptsk.sys
0xF86A4000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xF6B47000 \SystemRoot\system32\DRIVERS\SynTP.sys
0xF8934000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xF893C000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xF86B4000 \SystemRoot\system32\DRIVERS\imapi.sys
0xF86C4000 \SystemRoot\System32\Drivers\AFS2K.SYS
0xF8B24000 \SystemRoot\system32\drivers\sscdbhk5.sys
0xF86D4000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xF86E4000 \SystemRoot\system32\DRIVERS\redbook.sys
0xF6B24000 \SystemRoot\system32\DRIVERS\ks.sys
0xF8944000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0xF8D32000 \SystemRoot\system32\DRIVERS\audstub.sys
0xF6633000 \SystemRoot\system32\DRIVERS\mfendisk.sys
0xF6EF2000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xF8AA4000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xF661C000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xF6EE2000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xF8744000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xF8994000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xF660B000 \SystemRoot\system32\DRIVERS\psched.sys
0xF8754000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xF65E7000 \SystemRoot\system32\drivers\mfeavfk.sys
0xF3144000 \SystemRoot\system32\drivers\mfefirek.sys
0xF3B67000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xF3B5F000 \SystemRoot\system32\DRIVERS\raspti.sys
0xF6F12000 \SystemRoot\system32\DRIVERS\termdd.sys
0xF8B88000 \SystemRoot\system32\DRIVERS\swenum.sys
0xF212B000 \SystemRoot\system32\DRIVERS\update.sys
0xF59B9000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xF3B57000 \SystemRoot\system32\DRIVERS\omci.sys
0xF2117000 \SystemRoot\system32\DRIVERS\zte_mf651_dc_enum.sys
0xF8714000 \SystemRoot\system32\DRIVERS\WDFLDR.SYS
0xF20A6000 \SystemRoot\System32\Drivers\wdf01000.sys
0xF5FF0000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xAA6B0000 \SystemRoot\system32\drivers\sthda.sys
0xAA68C000 \SystemRoot\system32\drivers\portcls.sys
0xF6000000 \SystemRoot\system32\drivers\drmk.sys
0xAA65A000 \SystemRoot\system32\DRIVERS\HSFHWAZL.sys
0xAA55D000 \SystemRoot\system32\DRIVERS\HSF_DPV.sys
0xAA4AD000 \SystemRoot\system32\DRIVERS\HSF_CNXT.sys
0xF3B4F000 \SystemRoot\System32\Drivers\Modem.SYS
0xF5FD0000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xA5164000 \SystemRoot\System32\Drivers\i2omgmt.SYS
0xA6E6A000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xA503B000 \SystemRoot\System32\Drivers\Null.SYS
0xA6E68000 \SystemRoot\System32\Drivers\Beep.SYS
0xA523A000 \SystemRoot\system32\drivers\ssrtln.sys
0xA5232000 \SystemRoot\System32\drivers\vga.sys
0xA6E66000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xA6E64000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xA522A000 \SystemRoot\System32\Drivers\Msfs.SYS
0xA5222000 \SystemRoot\System32\Drivers\Npfs.SYS
0xA4DD7000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xA42CF000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xA4276000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xA4263000 \SystemRoot\system32\drivers\mfetdi2k.sys
0xA423B000 \SystemRoot\system32\DRIVERS\netbt.sys
0xA4DC3000 \SystemRoot\System32\drivers\ws2ifsl.sys
0xA54D2000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xA4219000 \SystemRoot\System32\drivers\afd.sys
0xA54C2000 \SystemRoot\system32\DRIVERS\netbios.sys
0xA54A2000 \SystemRoot\system32\DRIVERS\arp1394.sys
0xA41EE000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xA41C5000 \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
0xA5492000 \??\C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\25973\RapportCerberus_25973.sys
0xA4165000 \??\C:\WINDOWS\system32\drivers\RapportBuka.sys
0xA40F5000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xA5482000 \SystemRoot\System32\Drivers\Fips.SYS
0xA469D000 \SystemRoot\SYSTEM32\DRIVERS\APPDRV.SYS
0xA49D6000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xA40DD000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xA6B7E000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xF82B6000 \SystemRoot\System32\drivers\Dxapi.sys
0xA521A000 \SystemRoot\System32\watchdog.sys
0xBF000000 \SystemRoot\System32\drivers\dxg.sys
0xF8BEB000 \SystemRoot\System32\drivers\dxgthk.sys
0xBF020000 \SystemRoot\System32\ialmdnt5.dll
0xBF012000 \SystemRoot\System32\ialmrnt5.dll
0xBF042000 \SystemRoot\System32\ialmdev5.DLL
0xBF077000 \SystemRoot\System32\ialmdd5.DLL
0xBF159000 \SystemRoot\System32\ATMFD.DLL
0xF79A5000 \SystemRoot\system32\drivers\drvnddm.sys
0xF8CD0000 \SystemRoot\system32\dla\tfsndres.sys
0xA40C7000 \SystemRoot\system32\dla\tfsnifs.sys
0xF63CB000 \SystemRoot\system32\dla\tfsnopio.sys
0xA6488000 \SystemRoot\system32\dla\tfsnpool.sys
0xF32FD000 \SystemRoot\system32\dla\tfsnboio.sys
0xF7995000 \SystemRoot\system32\dla\tfsncofs.sys
0xF8CD1000 \SystemRoot\system32\dla\tfsndrct.sys
0xA40AE000 \SystemRoot\system32\dla\tfsnudf.sys
0xA4095000 \SystemRoot\system32\dla\tfsnudfa.sys
0xA5212000 \SystemRoot\system32\DRIVERS\AegisP.sys
0xA7F0A000 \SystemRoot\system32\DRIVERS\packet.sys
0xA7F02000 \SystemRoot\system32\DRIVERS\s24trans.sys
0xA88D6000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA3F78000 \SystemRoot\system32\DRIVERS\mrxdav.sys
0xF8B3E000 \SystemRoot\System32\Drivers\ASCTRM.SYS
0xA3F13000 \SystemRoot\system32\drivers\wdmaud.sys
0xA8224000 \SystemRoot\system32\drivers\sysaudio.sys
0xA3CB5000 \SystemRoot\system32\DRIVERS\srv.sys
0xA3DCD000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xA78FC000 \SystemRoot\system32\DRIVERS\LVPr2Mon.sys
0xA377D000 \??\C:\WINDOWS\system32\FsUsbExDisk.SYS
0xA3422000 \SystemRoot\system32\drivers\cfwids.sys
0xA2D8B000 \SystemRoot\System32\Drivers\HTTP.sys
0xA223B000 \SystemRoot\system32\drivers\mfeapfk.sys
0xA2290000 \SystemRoot\system32\drivers\mfebopk.sys
0xA2001000 \SystemRoot\system32\DRIVERS\ipnat.sys
0x7C900000 \WINDOWS\system32\ntdll.dll

Processes (total 75):
0 System Idle Process
4 SYSTEM
1368 C:\WINDOWS\system32\smss.exe
1472 csrss.exe
1496 C:\WINDOWS\system32\winlogon.exe
1548 C:\WINDOWS\system32\services.exe
1568 C:\WINDOWS\system32\lsass.exe
1752 C:\WINDOWS\system32\svchost.exe
1828 svchost.exe
1912 C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
2000 C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
272 C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
380 C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe
512 C:\WINDOWS\system32\svchost.exe
628 C:\WINDOWS\explorer.exe
688 svchost.exe
1016 C:\WINDOWS\system32\spoolsv.exe
1088 C:\Program Files\Common Files\Logitech\LVMVFM\LVPrcSrv.exe
1152 svchost.exe
1276 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1312 C:\Program Files\Bonjour\mDNSResponder.exe
1360 C:\WINDOWS\system32\FsUsbExService.Exe
1476 C:\Program Files\Dell Network Assistant\hnm_svc.exe
320 C:\Program Files\Java\jre6\bin\jqs.exe
592 C:\PROGRA~1\McAfee\SITEAD~1\McSACore.exe
852 C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
824 C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
944 C:\Program Files\Dell\QuickSet\NicConfigSvc.exe
1168 C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
2060 C:\WINDOWS\system32\svchost.exe
2132 C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
2188 wdfmgr.exe
2224 C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
2324 C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
2376 C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
3384 C:\WINDOWS\system32\rundll32.exe
3864 C:\WINDOWS\system32\hkcmd.exe
3876 C:\WINDOWS\system32\igfxpers.exe
3896 C:\WINDOWS\stsystra.exe
3916 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3972 C:\Program Files\Dell\QuickSet\quickset.exe
3980 C:\WINDOWS\system32\igfxsrvc.exe
4068 C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
4084 C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
164 C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
460 C:\Program Files\Creative\Mixer\CTSVolFE.exe
104 C:\Program Files\Dell\Media Experience\DMXLauncher.exe
1032 C:\WINDOWS\system32\dla\tfswctrl.exe
1192 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
1208 C:\Program Files\Real\RealPlayer\realplay.exe
2120 C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
2320 C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
2416 C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
2736 C:\WINDOWS\system32\M-AudioTaskBarIcon.exe
2476 C:\Program Files\Common Files\Java\Java Update\jusched.exe
2464 C:\Program Files\McAfee.com\Agent\mcagent.exe
2712 C:\Program Files\iTunes\iTunesHelper.exe
2864 C:\Program Files\Messenger\msmsgs.exe
2880 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
3008 C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
3028 C:\WINDOWS\system32\ctfmon.exe
3040 C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
3676 C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
568 C:\Program Files\Dell Network Assistant\ezi_hnm2.exe
2892 C:\Program Files\Digital Line Detect\DLG.exe
1876 C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
4256 C:\Lotus\organize\EasyClip.exe
4276 C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
4652 C:\Program Files\iPod\bin\iPodService.exe
5320 C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
5936 C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
5468 C:\WINDOWS\system32\wuauclt.exe
4180 alg.exe
1044 C:\WINDOWS\system32\svchost.exe
4928 C:\Documents and Settings\Gary Dixon\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`04e71400 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x0000000d`30f1d000 (NTFS)

PhysicalDrive0 Model Number: TOSHIBAMK8032GSX, Rev: AS112D

Size Device Name MBR Status
--------------------------------------------
73 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 86489E3B39BA71CCD7428B67894DE6732DFFF0C8


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:

Done!

 

.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Gary Dixon at 10:09:22.18 on 02/05/2011
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.502.96 [GMT 1:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Disabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\Explorer.EXE
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Dell Network Assistant\hnm_svc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Creative\Mixer\CTSVolFE.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\Program Files\Dell Network Assistant\ezi_hnm2.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Lotus\organize\easyclip.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Documents and Settings\Gary Dixon\Desktop\dds.scr
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.co.uk/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=0060921
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mSearch Bar = hxxp://uk.red.clientapps.yahoo.com/customize/btyahoo/defaults/sb/*http://uk.docs.yahoo.com/info/bt_side.html
uInternet Connection Wizard,ShellNext = hxxp://www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=0060921
uInternet Settings,ProxyServer = 192.168.2.180:8080
uInternet Settings,ProxyOverride = 127.0.0.1;*.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} -
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\npdivx32.dll
BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - c:\program files\divx\divx plus web player\npdivx32.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20101210083627.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.6.6209.1142\swg.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} -
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe "
uRun: [eyeBeam SIP Client]
uRun: [LDM] c:\program files\logitech\desktop messenger\8876480\program\LogitechDesktopMessenger.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [TomTomHOME.exe] "c:\program files\tomtom home 2\TomTomHOMERunner.exe "
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [Dell QuickSet] c:\program files\dell\quickset\quickset.exe
mRun: [IntelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe "
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [DVDLauncher] "c:\program files\cyberlink\powerdvd\DVDLauncher.exe "
mRun: [CTSVolFE.exe] "c:\program files\creative\mixer\CTSVolFE.exe" /r
mRun: [DMXLauncher] c:\program files\dell\media experience\DMXLauncher.exe
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [ISUSPM Startup] "c:\program files\common files\installshield\updateservice\isuspm.exe" -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [RealTray] c:\program files\real\realplayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
mRun: [LogitechCommunicationsManager] "c:\program files\common files\logitech\lcommgr\Communications_Helper.exe "
mRun: [LogitechQuickCamRibbon] "c:\program files\logitech\quickcam10\QuickCam10.exe" /hide
mRun: [LVCOMSX] "c:\program files\common files\logitech\lcommgr\LVComSX.exe "
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe "
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [MobileConnect] %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent
mRun: [MSKDetectorExe] c:\program files\mcafee\spamkiller\MSKDetct.exe /uninstall
mRun: [NPSStartup]
mRun: [M-Audio Taskbar Icon] c:\windows\system32\M-AudioTaskBarIcon.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe "
mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe "
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [<NO NAME>]
StartupFolder: c:\docume~1\garydi~1\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\dellne~1.lnk - c:\windows\installer\{0240bdfb-2995-4a3f-8c96-18d41282b716}\Icon0240BDFB3.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpoddt~1.lnk - c:\program files\hewlett-packard\digital imaging\bin\hpotdd01.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\desktop messenger\8876480\program\LDMConf.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\lotuso~1.lnk - c:\lotus\organize\easyclip.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - c:\program files\tiscali\tiscali internet\dlls\tiscalifilter.dll
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: igfxcui - igfxdev.dll
.
============= SERVICES / DRIVERS ===============
.
R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2010-9-2 386840]
R0 RapportKELL;RapportKELL;c:\windows\system32\drivers\RapportKELL.sys [2011-4-8 59240]
R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2010-9-2 84072]
R1 RapportBuka;RapportBuka;c:\windows\system32\drivers\RapportBuka.sys [2010-3-4 390528]
R1 RapportCerberus_25973;RapportCerberus_25973;c:\documents and settings\all users\application data\trusteer\rapport\store\exts\rapportcerberus\25973\RapportCerberus_25973.sys [2011-4-13 57144]
R1 RapportPG;RapportPG;c:\program files\trusteer\rapport\bin\RapportPG.sys [2011-4-8 169320]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2009-8-20 233472]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\mcafee\siteadvisor\McSACore.exe [2010-1-9 88176]
R2 McMPFSvc;McAfee Personal Firewall Service; "c:\program files\common files\mcafee\mcsvchost\McSvHost.exe" /McCoreSvc [2010-9-2 271480]
R2 McNaiAnn;McAfee VirusScan Announcer; "c:\program files\common files\mcafee\mcsvchost\McSvHost.exe" /McCoreSvc [2010-9-2 271480]
R2 McProxy;McAfee Proxy Service; "c:\program files\common files\mcafee\mcsvchost\McSvHost.exe" /McCoreSvc [2010-9-2 271480]
R2 McShield;McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2010-9-2 171168]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2010-9-2 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\common files\mcafee\systemcore\mfevtps.exe [2010-9-2 141792]
R2 RapportMgmtService;Rapport Management Service;c:\program files\trusteer\rapport\bin\RapportMgmtService.exe [2011-4-8 767208]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\tomtom home 2\TomTomHOMEService.exe [2011-3-9 92592]
R2 VMCService;Vodafone Mobile Connect Service;c:\program files\vodafone\vodafone mobile connect\bin\VMCService.exe [2008-3-13 24576]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-9-2 55840]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2009-8-20 36608]
R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2010-9-2 152960]
R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2010-9-2 52104]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-9-2 313288]
R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2010-9-2 88544]
R3 zte_mf651_dc_enum;ZTE Mobile Connect DC Enumerator;c:\windows\system32\drivers\zte_mf651_dc_enum.sys [2009-11-6 80128]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-2-5 135664]
S3 MAUSBFASTTRACKULTRA;Service for M-Audio Fast Track Ultra;c:\windows\system32\drivers\maudiofasttrackultra.sys --> c:\windows\system32\drivers\MAudioFastTrackUltra.sys [?]
S3 MAUSBRI;M-Audio Fast Track Ultra Service;c:\windows\system32\drivers\mausbftu.sys [2010-3-8 135944]
S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2010-9-2 88544]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-9-2 84264]
S3 RDID1046;EDIROL UA-25;c:\windows\system32\drivers\Rdwm1046.sys [2008-2-18 172401]
S3 TASCAM_US122144;TASCAM USB 2.0 Audio Device driver;c:\windows\system32\drivers\tascusb2.sys [2008-7-3 396192]
S3 TASCAM_US122L_MIDI;TASCAM US-122L WDM MIDI Device;c:\windows\system32\drivers\tscusb2m.sys [2008-7-3 10752]
S3 TASCAM_US122L_WDM;TASCAM US-122L WDM;c:\windows\system32\drivers\tscusb2a.sys [2008-7-3 19904]
S3 US122;US122 Driver;c:\windows\system32\drivers\US122.sys [2004-7-30 131968]
S3 US122DL;US122 Firmware Downloader;c:\windows\system32\drivers\US122DL.sys [2004-7-30 18304]
S3 Us122WdmService;US122 Wdm Audio;c:\windows\system32\drivers\US122Wdm.sys [2004-7-30 39168]
S3 zte_mf651_cdc_acm;ZTE Mobile Connect CDC-ACM driver;c:\windows\system32\drivers\zte_mf651_cdc_acm.sys [2009-11-6 85248]
S3 zte_mf651_cdc_ecm;zte_mf651_cdc_ecm;c:\windows\system32\drivers\zte_mf651_cdc_ecm.sys [2009-11-6 49920]
S3 zte_mf651_cpo;ZTE Mobile Connect Mass Storage Device;c:\windows\system32\drivers\zte_mf651_cpo.sys [2009-11-6 9856]
.
=============== Created Last 30 ================
.
2011-05-01 12:05:34 339968 ----a-w- c:\windows\system32\RapportBuka.dll
2011-04-29 11:44:44 -------- d-----w- c:\docume~1\garydi~1\locals~1\applic~1\Trusteer
2011-04-28 17:39:50 -------- d-----w- c:\docume~1\garydi~1\applic~1\ElevatedDiagnostics
2011-04-28 14:57:28 -------- d-----w- c:\windows\system32\wbem\repository\FS
2011-04-28 14:57:28 -------- d-----w- c:\windows\system32\wbem\Repository
2011-04-14 08:01:18 -------- d-----w- C:\D1_32
2011-04-10 16:59:34 -------- d-----w- c:\docume~1\garydi~1\locals~1\applic~1\Thinstall
2011-04-10 16:59:34 -------- d-----w- c:\docume~1\garydi~1\applic~1\Thinstall
2011-04-10 16:58:20 -------- d-----w- c:\program files\Microsoft Visio 2007 Portable
2011-04-09 15:50:02 237568 ----a-w- c:\windows\system32\glut32.dll
2011-04-09 15:03:33 -------- d-----w- c:\docume~1\garydi~1\applic~1\Smaart
2011-04-08 09:17:38 59240 ----a-w- c:\windows\system32\drivers\RapportKELL.sys
2011-04-07 14:15:32 33104 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\msonpppr.dll
2011-04-07 14:15:32 32656 ----a-w- c:\windows\system32\msonpmon.dll
2011-04-07 14:08:32 -------- d-----w- c:\windows\SHELLNEW
2011-04-07 14:07:56 -------- d-----w- c:\docume~1\garydi~1\locals~1\applic~1\Microsoft Help
.
==================== Find3M ====================
.
2011-03-07 05:33:50 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-03-04 06:37:06 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-03-03 13:21:11 1857920 ----a-w- c:\windows\system32\win32k.sys
2011-02-23 12:38:36 6580 --sha-w- c:\windows\system32\KGyGaAvL.sys
2011-02-23 12:38:32 56 --sh--r- c:\windows\system32\3F6769B316.sys
2011-02-22 23:06:29 916480 ----a-w- c:\windows\system32\wininet.dll
2011-02-22 23:06:29 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-02-22 23:06:29 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-02-22 11:41:59 385024 ----a-w- c:\windows\system32\html.iec
2011-02-17 12:32:12 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2011-02-15 12:56:39 290432 ----a-w- c:\windows\system32\atmfd.dll
2011-02-11 13:25:52 229888 ----a-w- c:\windows\system32\fxscover.exe
2011-02-09 13:53:52 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53:52 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-08 13:33:55 978944 ----a-w- c:\windows\system32\mfc42.dll
2011-02-08 13:33:55 974848 ----a-w- c:\windows\system32\mfc42u.dll
2011-02-02 07:58:35 2067456 ----a-w- c:\windows\system32\mstscax.dll
.
=================== ROOTKIT ====================
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: TOSHIBA_MK8032GSX rev.AS112D -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
.
device: opened successfully
user: MBR read successfully
.
Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x833744F0]<<
_asm { PUSH EBP; MOV EBP, ESP; PUSH ECX; MOV EAX, [EBP+0x8]; CMP EAX, [0x8337a7d0]; MOV EAX, [0x8337a84c]; PUSH EBX; PUSH ESI; MOV ESI, [EBP+0xc]; MOV EBX, [ESI+0x60]; PUSH EDI; JNZ 0x20; MOV [EBP+0x8], EAX; }
1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x833CA030]
3 CLASSPNP[0xF8634FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\00000080[0x833A8788]
5 ACPI[0xF84CB620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> [0x833CDD98]
\Driver\atapi[0x83382AE8] -> IRP_MJ_CREATE -> 0x833744F0
error: Read A device attached to the system is not functioning.
kernel: MBR read successfully
_asm { MOV AX, 0x0; MOV SS, AX; MOV SP, 0x7c00; MOV DS, AX; CLD ; MOV CX, 0x100; MOV SI, SP; MOV DI, 0x600; MOV ES, AX; REP MOVSW ; JMP FAR 0x0:0x62c; }
detected disk devices:
detected hooks:
\Driver\atapi DriverStartIo -> 0x8337433B
user & kernel MBR OK
Warning: possible TDL3 rootkit infection !
.
============= FINISH: 10:12:39.31 ===============



.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 27/09/2006 15:18:21
System Uptime: 02/05/2011 09:31:50 (1 hours ago)
.
Motherboard: Dell Inc. | | 0KD882
Processor: Genuine Intel(R) CPU T2050 @ 1.60GHz | Microprocessor | 1596/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 53 GiB total, 16.343 GiB free.
D: is FIXED (NTFS) - 17 GiB total, 16.492 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP814: 25/02/2011 19:57:21 - Software Distribution Service 3.0
RP815: 26/02/2011 20:46:53 - Software Distribution Service 3.0
RP816: 27/02/2011 19:34:07 - Software Distribution Service 3.0
RP817: 01/03/2011 12:01:25 - System Checkpoint
RP818: 02/03/2011 12:32:48 - System Checkpoint
RP819: 03/03/2011 17:17:04 - System Checkpoint
RP820: 05/03/2011 11:57:17 - System Checkpoint
RP821: 06/03/2011 13:30:02 - System Checkpoint
RP822: 07/03/2011 19:51:34 - System Checkpoint
RP823: 08/03/2011 21:42:18 - System Checkpoint
RP824: 09/03/2011 13:16:56 - Software Distribution Service 3.0
RP825: 14/03/2011 11:58:24 - System Checkpoint
RP826: 15/03/2011 13:10:26 - System Checkpoint
RP827: 15/03/2011 20:54:46 - Software Distribution Service 3.0
RP828: 17/03/2011 07:35:54 - System Checkpoint
RP829: 17/03/2011 15:38:36 - Installed Yamaha LS9 Editor
RP830: 19/03/2011 17:43:53 - System Checkpoint
RP831: 20/03/2011 18:18:34 - System Checkpoint
RP832: 21/03/2011 21:28:52 - System Checkpoint
RP833: 23/03/2011 10:38:36 - System Checkpoint
RP834: 24/03/2011 12:11:54 - System Checkpoint
RP835: 24/03/2011 21:46:21 - Software Distribution Service 3.0
RP836: 27/03/2011 11:59:13 - System Checkpoint
RP837: 28/03/2011 14:36:32 - System Checkpoint
RP838: 29/03/2011 15:21:17 - System Checkpoint
RP839: 30/03/2011 16:38:34 - System Checkpoint
RP840: 31/03/2011 19:03:44 - System Checkpoint
RP841: 01/04/2011 20:21:07 - System Checkpoint
RP842: 02/04/2011 21:37:19 - System Checkpoint
RP843: 04/04/2011 10:28:25 - System Checkpoint
RP844: 05/04/2011 11:39:32 - System Checkpoint
RP845: 07/04/2011 11:05:04 - System Checkpoint
RP846: 07/04/2011 14:00:16 - Installed Microsoft Office Home and Student 2007
RP847: 07/04/2011 14:07:02 - Removed Corel Paint Shop Pro X
RP848: 07/04/2011 14:11:59 - Removed Garmin Communicator Plugin
RP849: 07/04/2011 14:12:44 - Removed Garmin Trip and Waypoint Manager v5
RP850: 07/04/2011 14:14:11 - Removed Garmin USB Drivers
RP851: 07/04/2011 14:27:51 - Removed Microsoft Office Professional Edition 2003
RP852: 07/04/2011 15:06:18 - Installed Microsoft Office Home and Student 2007
RP853: 07/04/2011 15:15:28 - Printer Driver Send To Microsoft OneNote Driver Installed
RP854: 07/04/2011 15:27:32 - Installed Microsoft Office Professional Edition 2003
RP855: 07/04/2011 19:23:07 - Software Distribution Service 3.0
RP856: 08/04/2011 20:41:10 - System Checkpoint
RP857: 08/04/2011 22:04:08 - Software Distribution Service 3.0
RP858: 09/04/2011 21:08:03 - Software Distribution Service 3.0
RP859: 12/04/2011 19:46:46 - System Checkpoint
RP860: 13/04/2011 20:18:36 - System Checkpoint
RP861: 14/04/2011 21:08:27 - System Checkpoint
RP862: 14/04/2011 22:55:52 - Software Distribution Service 3.0
RP863: 16/04/2011 11:37:52 - System Checkpoint
RP864: 17/04/2011 18:43:48 - Software Distribution Service 3.0
RP865: 19/04/2011 08:32:22 - System Checkpoint
RP866: 20/04/2011 10:23:44 - System Checkpoint
RP867: 21/04/2011 11:55:31 - System Checkpoint
RP868: 21/04/2011 15:27:16 - Software Distribution Service 3.0
RP869: 22/04/2011 16:44:45 - System Checkpoint
RP870: 23/04/2011 17:41:13 - System Checkpoint
RP871: 24/04/2011 19:34:28 - System Checkpoint
RP872: 27/04/2011 08:36:30 - System Checkpoint
RP873: 28/04/2011 07:27:26 - Installed Rapport
RP874: 28/04/2011 08:02:26 - Restore Operation
RP875: 28/04/2011 11:11:24 - Installed Rapport
RP876: 28/04/2011 15:51:51 - Restore Operation
RP877: 28/04/2011 18:30:00 - Installed %1 %2.
RP878: 29/04/2011 19:32:13 - System Checkpoint
RP879: 30/04/2011 08:29:20 - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
AC3File 0.7b
AC3Filter 1.63b
Add-ons
Adobe Acrobat 4.0
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
Adobe Flash Player 10 ActiveX
Adobe Reader 8.1.2
Adobe Reader 8.1.2 Security Update 1 (KB403742)
Annotations
Annotations Help
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ARTEuro
BitTorrent
Block Diagrams
Block Diagrams Help
Bonjour
Borders and Backgrounds
Borders and Backgrounds Help
Broadcom Management Programs
BT NetProtect Plus
Building Architecture
Building Architecture Help
Building Services
Building Services Help
CAD Drawing Converter
CAD Drawing Converter Help
CAD Drawing Converter Samples
CAD Drawing Display
Callouts and Connectors
Callouts and Connectors Help
Clip Art and Symbols
Clip Art and Symbols Help
Conexant HDA D110 MDC V.92 Modem
Custom Patterns
Custom Properties Editor
Database Wizard
Dell Media Experience
Dell Network Assistant
Dell Support 3.2
Dell System Restore
Developing Visio Solutions Help
Digital Line Detect
DivX Setup
Electrical Engineering
Electrical Engineering Help
Facilities Management
Facilities Management Help
Fast Track Ultra
Flowcharts
Flowcharts Help
Fluid Power
Fluid Power Help
Forms and Charts
Forms and Charts Help
Foundation technical
FTDI USB Serial Converter Drivers
Google Toolbar for Internet Explorer
Google Update Helper
Graphics Filters
Help for Visio 2000 (HTML Help)
Help_Technical
High Definition Audio Driver Package - KB835221
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976002-v5)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
hp instant support
HP Memories Disc
HP Photo and Imaging 2.0 - All-in-One
HP Photo and Imaging 2.0 - All-in-One Drivers
Huawei modem
Intel(R) Graphics Media Accelerator Driver
Intel(R) PROSet/Wireless Software
Internet Explorer (Enable DEP)
iTunes
J2SE Runtime Environment 5.0 Update 6
Java Auto Updater
Java(TM) 6 Update 23
Learn2 Player (Uninstall Only)
LEGO Creator Knights' Kingdom
Logitech Audio Echo Cancellation Component
Logitech Desktop Messenger
Logitech QuickCam
Logitech Video Enumerator
Logitech® Camera Driver
Lotus NotesSQL 2.06 driver
Lotus SmartSuite - English
Malwarebytes' Anti-Malware
MAPP Online Pro
Maps
Maps Help
MATLAB Component Runtime 7.5
mCore
MCU
mDrWiFi
Mechanical Engineering
Mechanical Engineering Help
Meyer Sound Compass 2.1.1
mHlpDell
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Edition 2003
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Repository
Microsoft Silverlight
Microsoft Software Update for Web Folders (English) 12
Microsoft Visio 2000 (IE)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual Studio Service Pack 3
Microsoft Wine Guide Version 2.0
Microsoft Works
mIWA
Mixer
mLogView
mMHouse
MobileMe Control Panel
Modem Helper
Mp3tag v2.42
mPfMgr
mPfWiz
mProSafe
mSSO
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
MVision
mWlsSafe
mWMI
mXML
mZConfig
NetWaiting
Network Diagrams
Network Diagrams Help
Office Layout
Office Layout Help
Organization Charts
Organization Charts Help
Page Layout Wizard
PC Connectivity Solution
PM1D Manager
PowerDVD 5.7
PrimoPDF -- by Nitro PDF Software
Process Engineering
Process Engineering Help
Program Files
Program Files Help
Program Files Technical
Project Schedules
Project Schedules Help
Property Reporting Wizard
QuickSet
QuickTime
Rapport
RealPlayer Basic
Release Notes Technical
Safari
SAMSUNG Mobile Composite Device Software
Samsung Mobile Modem Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung New PC Studio
SAMSUNG SYMBIAN USB Download Driver
SAMSUNG USB Mobile Device Software
SamsungConnectivityCableDriver
Save as HTML
SCS 10.7.5
SearchAssist
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2466156)
Security Update for 2007 Microsoft Office System (KB2509488)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft Office Excel 2007 (KB2464583)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2464594)
Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows Media Player 9 (KB936782)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2491683)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Shape Explorer Help
Skype Toolbars
Skypeâ„¢ 4.2
Smaart 6.1.0.0
Solutions
Sonic DLA
Sonic MyDVD LE
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Sound Blaster Audigy ADVANCED MB Demo
Steinberg Cubase VST 32 5.0r3
Steinberg WaveLab v4.0d
Studio Manager
Synaptics Pointing Device Driver
Tiscali Internet
TomTom HOME 2.8.1.2218
TomTom HOME Visual Studio Merge Modules
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Windows Internet Explorer 8 (KB973874)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
US-122
US-122L / US-144 driver
US122 Driver 3.40
V1 Home 2.0
VBA
VC80CRTRedist - 8.0.50727.4053
Viewpoint Media Player
Visio
Visio Core Files
Visio Technical Core Files
Vodafone Mobile Connect Lite Huawei
Wanadoo Europe Installer
WebFldrs XP
Windows Driver Package - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
Windows Driver Package - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Media Format Runtime
Windows PowerShell(TM) 1.0
Windows XP Service Pack 3
WinRAR 4.00 beta 5 (32-bit)
Xvid 1.2.2 final uninstall
Yamaha LS9 Editor
YAMAHA M7CL Editor
YAMAHA PM5D Editor
YAMAHA Studio Manager
ZTE Mobile Connect 4.3.28.4451
ZTEIcera_4.3.28.4451
.
==== Event Viewer Messages From Past Week ========
.
30/04/2011 18:12:00, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service winmgmt with arguments " " in order to run the server: {8BC3F05E-D86B-11D0-A075-00C04FB68820}
30/04/2011 17:51:19, error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Background Intelligent Transfer Service service, but this action failed with the following error: An instance of the service is already running.
30/04/2011 17:41:56, error: Service Control Manager [7000] - The HTTP SSL service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
30/04/2011 17:41:55, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the HTTP SSL service to connect.
30/04/2011 17:37:50, error: Dhcp [1001] - Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 0018DE189915. The following error occurred: The operation was canceled by the user. . Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.
30/04/2011 17:37:46, error: Dhcp [1002] - The IP address lease 192.168.2.56 for the Network Card with network address 0018DE189915 has been denied by the DHCP server 10.0.0.250 (The DHCP Server sent a DHCPNACK message).
30/04/2011 15:06:00, error: Dhcp [1002] - The IP address lease 192.168.2.56 for the Network Card with network address 0018DE189915 has been denied by the DHCP server 10.0.0.251 (The DHCP Server sent a DHCPNACK message).
30/04/2011 14:26:09, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the Browser service.
30/04/2011 14:25:30, error: Service Control Manager [7023] - The Windows Firewall/Internet Connection Sharing (ICS) service terminated with the following error: Access is denied.
02/05/2011 09:36:51, error: System Error [1003] - Error code 000000b8, parameter1 00000000, parameter2 00000000, parameter3 00000000, parameter4 00000000.
01/05/2011 19:16:55, error: System Error [1003] - Error code 10000050, parameter1 ffab8000, parameter2 00000000, parameter3 8053a5e3, parameter4 00000000.
01/05/2011 18:23:27, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service wuauserv with arguments " " in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
01/05/2011 17:24:15, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
01/05/2011 13:58:17, error: NetBT [4311] - Initialization failed because the driver device could not be created.
01/05/2011 13:45:55, error: DCOM [10005] - DCOM got error "%109" attempting to start the service netman with arguments " " in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
01/05/2011 13:23:53, error: NetBT [4321] - The name "LASTXP15 :0" could not be registered on the Interface with IP address 192.168.1.76. The machine with the IP address 192.168.1.66 did not allow the name to be claimed by this machine.
01/05/2011 13:23:51, error: NetBT [4321] - The name "MAIN :0" could not be registered on the Interface with IP address 192.168.1.76. The machine with the IP address 192.168.1.64 did not allow the name to be claimed by this machine.
01/05/2011 13:15:43, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the IMAPI CD-Burning COM Service service to connect.
01/05/2011 13:15:43, error: Service Control Manager [7000] - The IMAPI CD-Burning COM Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
01/05/2011 13:07:44, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
01/05/2011 12:15:57, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service netman with arguments " " in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
01/05/2011 11:42:04, error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error: An instance of the service is already running.
01/05/2011 11:29:26, error: NetBT [4321] - The name "MAIN :0" could not be registered on the Interface with IP address 192.168.1.65. The machine with the IP address 192.168.1.64 did not allow the name to be claimed by this machine.
01/05/2011 11:29:26, error: NetBT [4321] - The name "LASTXP15 :0" could not be registered on the Interface with IP address 192.168.1.65. The machine with the IP address 192.168.1.66 did not allow the name to be claimed by this machine.
01/05/2011 11:25:02, error: Service Control Manager [7023] - The iPod Service service terminated with the following error: Security must be initialized before any interfaces are marshalled or unmarshalled. It cannot be changed once initialized.
01/05/2011 11:19:56, error: Service Control Manager [7000] - The Nsynas32 service failed to start due to the following error: The system cannot find the device specified.
01/05/2011 10:25:08, error: Dhcp [1002] - The IP address lease 192.168.2.56 for the Network Card with network address 0018DE189915 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).
.
==== End Of File ===========================

 

Sorry, I just realised I have posted twice, I didn't see the message first time. Forgive me.

 

I've unzipped it OK but itr won't run. It gets to 80% initialization and then I get an error report telling that it had encountered a problem and had to close. I tried disabling the firewall and the real time scanning but it was the same result.

 

Everything was going well, it detected rootkit activity and had to restart. Then it was scanning for some time and suddenly I have a blue screen saying it has shut down windows because 'BAD_POOL_HEADER'.

I have restarted my laptop and have had the 'Generic Host Process' error again. I can also find no Combofix.txt file.
Should I try again in safe mode?

 

Will do but I have to keep restarting my pc cos the internet drops out or refuses to connect after restart so it takes some time.
I only mention it incase it's connected to the issue.

 

I thought i'd run Rkill.com ok but when I tried to run Combofix as your_name.exe it told me I'm not allowed to reame it. I'll try Rkill.scr next.

 

Still under normal mode?

 

Half of my posts here don't seem to get through.
I tried to run Rkill.exe which seemed to happen but didn't give any indication soI downloaded Rkill .scr and ran that. When I tried to run Combocheck renamed as your_name.exe it told me that I wasn't allowed to rename it. So I ran it as Combocheck which it had reverted to on my desktop and have got the blue screen again. I restarted and tried to go to Safe Mode but got a blue screen before anything else happened.
INVALID_WORK_QUEUE_ITEM

I seem to have restarted my laptop around 15 times in the last hour!
Thanks for this, I'm so frustrated and need this machine for my work!