Inactive [InActive] Getting unknown incoming/outgoing connection

EDIT: Apparently any internet activity such as games, updates, downloads, etc. will trigger these unknown source of incoming/outgoing connections.

After I disinfected Cornficker, there're some issues remain here:

1. Unable to open REG Folder
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows

Which this prevents me from installing AVG.

2. Been getting incoming/outgoing connections from unknown sources.
These are some screenshots of what I've been getting.
http://www.postimage.org/image.php?v=Pq2yroGS
http://www.postimage.org/image.php?v=Pq2yrXBS
http://www.postimage.org/image.php?v=gx1BN4g0
http://www.postimage.org/image.php?v=Pq2ytipJ
http://www.postimage.org/image.php?v=gx1BOg5i

Also, I've been getting this error.
http://www.postimage.org/image.php?v=Pq2yupfJ
http://www.postimage.org/image.php?v=gx1BP2Z9

I don't know about this, but seems like something not right.
http://www.postimage.org/image.php?v=gx1BPEoi


========================ATTACH LOG=======================

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-03-16.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 2008-08-06 11:59:41 午前
System Uptime: 2009-04-21 3:41:33 午後 (1 hours ago)

Motherboard: BIOSTAR Group | | P4M90-M4
Processor: Intel(R) Pentium(R) 4 CPU 2.40GHz | Socket 775 | 2400/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 18 GiB total, 1.742 GiB free.
D: is FIXED (NTFS) - 20 GiB total, 0.708 GiB free.
E: is FIXED (NTFS) - 20 GiB total, 3.342 GiB free.
F: is CDROM (UDF)
G: is FIXED (NTFS) - 18 GiB total, 2.716 GiB free.
H: is CDROM ()
I: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: VIA Compatable Fast Ethernet Adapter
Device ID: PCI\VEN_1106&DEV_3065&SUBSYS_22001565&REV_7C\3&2411E6FE&0&90
Manufacturer: VIA Technologies, Inc.
Name: VIA Compatable Fast Ethernet Adapter
PNP Device ID: PCI\VEN_1106&DEV_3065&SUBSYS_22001565&REV_7C\3&2411E6FE&0&90
Service: FETNDIS

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Realtek RTL8139 Family PCI Fast Ethernet NIC
Device ID: PCI\VEN_1186&DEV_1300&SUBSYS_13031186&REV_10\4&71586A9&0&2099
Manufacturer: Realtek
Name: Realtek RTL8139 Family PCI Fast Ethernet NIC
PNP Device ID: PCI\VEN_1186&DEV_1300&SUBSYS_13031186&REV_10\4&71586A9&0&2099
Service: rtl8139

==== System Restore Points ===================

RP1: 2009-04-20 11:35:31 午前 - System Checkpoint
RP2: 2009-04-20 11:35:54 午前 - ComboFix created restore point
RP3: 2009-04-20 9:18:00 午後 - Removed Java(TM) 6 Update 11

==== Installed Programs ======================


Heroes of Might and Magic(TM) III Armageddon's Blade
7-Zip 4.42
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
Adobe Flash Player 10 ActiveX
Adobe Reader 8.1.2
Adobe Reader 8.1.2 Security Update 1 (KB403742)
Adobe Shockwave Player
Adobe SVG Viewer 3.0
AutoUpdate
Battle Realms
BOTS
CCleaner (remove only)
Defraggler (remove only)
DivX Codec
DivX Converter
DivX Player
DivX Web Player
EAX(tm) Unified (SHELL)
Essential NetTools
EVEREST Home Edition v2.20
ffdshow [rev 1946] [2008-04-21]
FlashGet 1.9.6.1073
Heroes of Might and Magicｮ III The Shadow of Death(TM)
HijackThis 2.0.2
iZZi driver UTU UTD
Macromedia Extension Manager
Macromedia Flash 8
Macromedia Flash 8 Video Encoder
Macromedia Flash Player 8
Macromedia Flash Player 8 Plugin
Malwarebytes' Anti-Malware
Microsoft .NET Compact Framework 1.0 SP3 Developer
Microsoft .NET Compact Framework 2.0
Microsoft .NET Framework 2.0
Microsoft Device Emulator version 1.0 - ENU
Microsoft Document Explorer 2005
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Visio Professional 2003
Microsoft Office Word MUI (English) 2007
Microsoft Office XP Professional with FrontPage
Microsoft Software Update for Web Folders (English) 12
Microsoft SQL Server 2000
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (SQLEXPRESS)
Microsoft SQL Server 2005 Mobile [ENU] Developer Tools
Microsoft SQL Server 2005 Tools Express Edition
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft User-Mode Driver Framework Feature Pack 1.0.0 (Pre-Release 5348)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual J# 2.0 Redistributable Package
Microsoft Visual Studio 2005 Professional Edition - ENU
MSDN Library for Visual Studio 2005
MSN
MSXML 6.0 Parser
Nero 7 Premium
NexusTK
OpenSource Flash Video Splitter (remove only)
Platform
PowerDVD
Realtek High Definition Audio Driver
Spybot - Search & Destroy
Spybot - Search & Destroy 1.4
Storm Codec
Unlocker 1.8.6
VIA Chrome9 HC IGP Family Display 6.14.10.0146
VIA Display Driver 6.14.10.0099
VIA Platform Device Manager
WebFldrs XP
Winamp (remove only)
Windows Live Messenger
Windows Media Format 11 runtime
Windows Media Player 11
WinRAR archiver
XnView 1.94.2
らき☆すたDVD特典CD-ROM

==== Event Viewer Messages From Past Week ========

2009-04-21 3:43:47 午後, error: Service Control Manager [7034] - The MSSQLSERVER service terminated unexpectedly. It has done this 1 time(s).
2009-04-21 3:43:43 午後, error: Service Control Manager [7034] - The Machine Debug Manager service terminated unexpectedly. It has done this 1 time(s).
2009-04-21 3:41:10 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-21 3:37:58 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-21 3:37:52 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:37:42 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:37:18 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-21 3:37:12 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:37:10 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:36:46 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments " " in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
2009-04-21 3:36:41 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:35:25 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:35:07 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service MSIServer with arguments " " in order to run the server: {000C101C-0000-0000-C000-000000000046}
2009-04-21 3:33:01 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:31:35 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:30:53 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:30:16 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service MSIServer with arguments " " in order to run the server: {000C101C-0000-0000-C000-000000000046}
2009-04-21 3:26:29 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:25:31 午後, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BIOS Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
2009-04-21 3:25:31 午後, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 3:25:31 午後, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 3:25:31 午後, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 3:25:31 午後, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 3:25:25 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 3:24:49 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-21 3:24:38 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 2:35:51 午後, error: Service Control Manager [7034] - The MSSQLSERVER service terminated unexpectedly. It has done this 1 time(s).
2009-04-21 2:26:03 午後, error: Service Control Manager [7034] - The Machine Debug Manager service terminated unexpectedly. It has done this 1 time(s).
2009-04-21 10:14:47 午前, error: Service Control Manager [7034] - The MSSQLSERVER service terminated unexpectedly. It has done this 1 time(s).
2009-04-21 10:14:41 午前, error: Service Control Manager [7034] - The Machine Debug Manager service terminated unexpectedly. It has done this 1 time(s).
2009-04-21 10:03:00 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-21 10:02:54 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 10:00:24 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:51:41 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-21 1:51:34 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:51:28 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:51:26 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:43:12 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:34:13 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:34:13 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:34:12 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:32:04 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:31:56 午前, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BIOS Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
2009-04-21 1:31:56 午前, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 1:31:56 午前, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 1:31:56 午前, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 1:31:56 午前, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 1:31:30 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:31:21 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-21 1:31:11 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:31:10 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:27:48 午前, error: Service Control Manager [7034] - The MSSQLSERVER service terminated unexpectedly. It has done this 1 time(s).
2009-04-21 1:27:47 午前, error: Service Control Manager [7034] - The Machine Debug Manager service terminated unexpectedly. It has done this 1 time(s).
2009-04-21 1:22:17 午後, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BIOS Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
2009-04-21 1:22:17 午後, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 1:22:17 午後, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 1:22:17 午後, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 1:22:17 午後, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-21 1:21:56 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:21:38 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-21 1:21:29 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:21:28 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-21 1:21:27 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 9:05:02 午前, error: Service Control Manager [7034] - The Machine Debug Manager service terminated unexpectedly. It has done this 1 time(s).
2009-04-20 9:00:48 午前, error: Service Control Manager [7023] - The System Restore Service service terminated with the following error: The system cannot find the file specified.
2009-04-20 9:00:48 午前, error: Service Control Manager [7023] - The Driver Installer service terminated with the following error: A dynamic link library (DLL) initialization routine failed.
2009-04-20 9:00:42 午前, error: SRService [104] - The System Restore initialization process failed.
2009-04-20 8:54:16 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-20 8:54:08 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 8:54:02 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 8:53:55 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 8:53:35 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 7:49:07 午後, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BIOS Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
2009-04-20 7:49:07 午後, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-20 7:49:07 午後, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-20 7:49:07 午後, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-20 7:49:07 午後, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-20 7:48:26 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-20 7:48:18 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 7:48:15 午後, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 7:20:41 午後, error: Service Control Manager [7023] - The Driver Installer service terminated with the following error: A dynamic link library (DLL) initialization routine failed.
2009-04-20 4:30:08 午後, error: Service Control Manager [7023] - The Driver Installer service terminated with the following error: A dynamic link library (DLL) initialization routine failed.
2009-04-20 3:16:50 午後, error: Service Control Manager [7023] - The Driver Installer service terminated with the following error: A dynamic link library (DLL) initialization routine failed.
2009-04-20 11:59:42 午前, error: Service Control Manager [7034] - The Machine Debug Manager service terminated unexpectedly. It has done this 1 time(s).
2009-04-20 11:59:40 午前, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
2009-04-20 11:06:49 午前, error: Service Control Manager [7023] - The System Restore Service service terminated with the following error: The system cannot find the file specified.
2009-04-20 11:06:49 午前, error: Service Control Manager [7023] - The Driver Installer service terminated with the following error: A dynamic link library (DLL) initialization routine failed.
2009-04-20 11:06:35 午前, error: SRService [104] - The System Restore initialization process failed.
2009-04-20 11:05:21 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-20 11:05:18 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 11:03:11 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 11:01:19 午前, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BIOS Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
2009-04-20 11:01:19 午前, error: Service Control Manager [7023] - The System Restore Service service terminated with the following error: The system cannot find the file specified.
2009-04-20 11:01:19 午前, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-20 11:01:19 午前, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-20 11:01:19 午前, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-20 11:01:19 午前, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
2009-04-20 11:01:00 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 11:00:52 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 11:00:45 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 11:00:43 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2009-04-20 11:00:38 午前, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2009-04-20 11:00:16 午前, error: SRService [104] - The System Restore initialization process failed.
2009-04-20 1:18:26 午前, error: Service Control Manager [7023] - The System Restore Service service terminated with the following error: The system cannot find the file specified.
2009-04-20 1:18:26 午前, error: Service Control Manager [7023] - The Driver Installer service terminated with the following error: A dynamic link library (DLL) initialization routine failed.
2009-04-20 1:18:12 午前, error: SRService [104] - The System Restore initialization process failed.
2009-04-19 9:18:14 午後, error: Service Control Manager [7023] - The System Restore Service service terminated with the following error: The system cannot find the file specified.
2009-04-19 9:18:14 午後, error: Service Control Manager [7023] - The Driver Installer service terminated with the following error: A dynamic link library (DLL) initialization routine failed.
2009-04-19 9:18:06 午後, error: SRService [104] - The System Restore initialization process failed.
2009-04-19 6:56:31 午後, error: MRxSmb [8003] - The master browser has received a server announcement from the computer KELVIN-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{DFF28431-9379-4B77. The master browser is stopping or an election is being forced.
2009-04-19 5:44:29 午後, error: MRxSmb [8003] - The master browser has received a server announcement from the computer KELVIN-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{DFF28431-9379-4B77. The master browser is stopping or an election is being forced.
2009-04-19 5:19:09 午前, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
2009-04-19 5:19:09 午前, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
2009-04-19 5:14:26 午後, error: Service Control Manager [7023] - The System Restore Service service terminated with the following error: The system cannot find the file specified.
2009-04-19 5:14:13 午後, error: SRService [104] - The System Restore initialization process failed.
2009-04-19 12:21:23 午後, error: atapi [9] - The device, \Device\Ide\IdePort1, did not respond within the timeout period.
2009-04-19 12:20:28 午後, error: atapi [9] - The device, \Device\Ide\IdePort1, did not respond within the timeout period.
2009-04-19 12:19:58 午後, error: atapi [9] - The device, \Device\Ide\IdePort1, did not respond within the timeout period.
2009-04-19 11:58:20 午前, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
2009-04-19 11:57:28 午前, error: Service Control Manager [7023] - The System Restore Service service terminated with the following error: The system cannot find the file specified.
2009-04-19 11:57:21 午前, error: SRService [104] - The System Restore initialization process failed.
2009-04-19 10:48:58 午後, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service BITS with arguments " " in order to run the server: {4991D34B-80A1-4291-83B6-3328366B9097}
2009-04-19 10:46:33 午後, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
2009-04-19 10:46:28 午後, error: Service Control Manager [7034] - The MSSQLSERVER service terminated unexpectedly. It has done this 1 time(s).
2009-04-19 10:46:25 午後, error: Service Control Manager [7034] - The Machine Debug Manager service terminated unexpectedly. It has done this 1 time(s).
2009-04-19 10:45:56 午後, error: Service Control Manager [7023] - The System Restore Service service terminated with the following error: The system cannot find the file specified.
2009-04-19 10:45:56 午後, error: Service Control Manager [7023] - The Driver Installer service terminated with the following error: A dynamic link library (DLL) initialization routine failed.
2009-04-19 10:45:43 午後, error: SRService [104] - The System Restore initialization process failed.
2009-04-19 10:19:34 午後, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service BITS with arguments " " in order to run the server: {4991D34B-80A1-4291-83B6-3328366B9097}
2009-04-17 4:21:12 午後, error: Service Control Manager [7034] - The MSSQLSERVER service terminated unexpectedly. It has done this 1 time(s).
2009-04-17 10:23:03 午前, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 30 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
2009-04-17 10:08:02 午前, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
2009-04-17 10:07:50 午前, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
2009-04-16 8:25:21 午後, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
2009-04-16 8:25:10 午後, error: Service Control Manager [7034] - The Machine Debug Manager service terminated unexpectedly. It has done this 1 time(s).

==== End Of File ===========================


==========================DDS LOG========================

DDS (Ver_09-03-16.01) - NTFSx86
Run by user at 16:12:31.00 on 2009-04-21
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.932.81.1033.18.894.538 [GMT 8:00]


============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\EssNetTools3\Ent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\user\Desktop\security\dds.scr
C:\WINDOWS\system32\conime.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com.my/
uInternet Connection Wizard,ShellNext = hxxp://www.yahoo.com/
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: FGCatchUrl: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} - c:\program files\flashget\jccatch.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: FlashGet GetFlash Class: {f156768e-81ef-470c-9057-481ba8380dba} - c:\program files\flashget\getflash.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [UnlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe "
mRun: [izziReminder] c:\program files\izzi driver\izziReminder.exe /background
mRun: [VTTimer] VTTimer.exe
mRun: [S3trayp] S3trayp.exe
IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm
IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\program files\flashget\FlashGet.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} - hxxp://www.acclaim.com/cabs/acclaim_v5.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: {A570B7B7-0872-4D87-ABF6-23952F92386C} = 116.206.0.35 116.206.0.42
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

============= SERVICES / DRIVERS ===============

R0 ViBus;ViBus;c:\windows\system32\drivers\ViBus.sys [2008-8-6 16896]
R0 ViPrt;VIA SATA IDE Device Driver;c:\windows\system32\drivers\ViPrt.sys [2008-8-6 52224]
R1 BIOS;BIOS;c:\windows\system32\drivers\BIOS.sys [2008-8-6 13696]
R3 iBurstu;iBurst Terminal;c:\windows\system32\drivers\iBurstu.sys [2006-3-29 37362]
R3 S3GIGP;S3GIGP;c:\windows\system32\drivers\S3gIGPm.sys [2007-7-11 605696]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S4 msvsmon80;Visual Studio 2005 Remote Debugger;c:\program files\microsoft visual studio 8\common7\ide\remote debugger\x86\msvsmon.exe [2005-9-23 2799808]

=============== Created Last 30 ================

2009-04-21 01:34 552 a------- c:\windows\system32\d3d8caps.dat
2009-04-20 13:30 388,608 a------- c:\windows\system32\CF28127.exe
2009-04-20 13:30 <DIR> --d----- C:\ComboFix
2009-04-20 11:35 161,792 a------- c:\windows\SWREG.exe
2009-04-20 11:35 98,816 a------- c:\windows\sed.exe
2009-04-20 11:34 388,608 a------- c:\windows\system32\CF5510.exe
2009-04-15 10:03 720,896 a------- c:\windows\iun6002ev.exe
2009-04-06 14:40 0 a------- c:\windows\PowerReg.dat
2009-04-04 21:58 417,792 -------- c:\windows\uninst_lucky01.exe
2009-04-04 21:58 622 -------- c:\windows\uninst_lucky01.ini
2009-03-29 15:12 318 a------- c:\windows\WPE PRO.INI
2009-03-27 00:37 647,552 a------- c:\windows\autoruns.exe

==================== Find3M ====================

2009-04-06 15:32 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-06 15:32 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-02-07 15:17 410,984 a------- c:\windows\system32\deploytk.dll
2008-10-30 17:43 71,840 a------- c:\docume~1\user\applic~1\GDIPFONTCACHEV1.DAT
2006-04-05 03:39 37,907 a------- c:\windows\inf\iBcT0201.sys
2006-04-05 03:39 36,957 a------- c:\windows\inf\iBurst.sys
2006-03-29 03:25 37,362 a------- c:\windows\inf\iBurstu.sys

============= FINISH: 16:13:03.67 ===============

 

Hi and welcome

What Antivirus do you have on this computer?


I can see from the logs you have used ComboFix, it would help greatly if I can see the log it created.

C:\qoobox\quarantined_files.txt <-- is this file present? If so -- please post its contents.

How about c:\Combofix\combofix.txt <-- is it here?


Also I would like to see the log created from Malwarebytes' Anti-Malware

Click on the Malwarebytes' Anti-Malware icon to launch the program.
o Click on the Logs tab.
o Click on the log at the bottom of those listed to highlight it.
o Click Open.


In your next reply post:
ComboFix.txt
MBAM log