I'm also getting a svchost.exe Application Error " the instruction at "0x06310190" referenced memory at "0x06310190".
the memory could not be "written"
I would have followed the posed instructions but the first note was "Please note that all instructions given are customized for this computer only, the tools used may cause damage if used on a computer with different infections
I've also received a Data Execution Prevention message from Windows which states" To help protect your computer, Window
has closed this program" Generic Host Process for Win32 Services.
File: myonlinearcade.com/survey/c/94/index.php
Infection: Exploit Social engineering (type 1912)
Result: Object was blocked
Also on occasions when I start up my browser (Firefox 5.0) I will get a tab about being winner from wal-mart.
My browser redirects to strange websites (ex: pubads.g.doubleclick.net) before actually going to my desired site.
AVG has also vaulted "setup.exe (4252)" and "setup.exe (1860)" and described these as "Trojan.Win32 Generic.pak:cobra"
My processing goes to 100% utilization after the computer is on for a period of time and slows to a crawl.
My browser and computer on occasion will spontaneously freeze and can only be revived after a hitting the reset button
(ctrl+alt+del would NOT work).
This is my first time posting to this forum please forgive any errors in format.
.
DDS (Ver_2011-06-23.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by AZ at 12:55:32 on 2011-07-02
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.895.128 [GMT -4:00]
.
AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Documents and Settings\AZ\Local Settings\Application Data\CrossLoop\CrossLoopService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\Program Files\AVG\AVG10\avgemcx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\SupportSoft\bin\bcont.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\PROGRA~1\MICROS~2\OFFICE11\OUTLOOK.EXE
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\WINDOWS\system32\NOTEPAD.EXE
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://news.google.com/
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Desktop Software] "c:\program files\common files\supportsoft\bin\bcont.exe" /ini "c:\program files\comcastui\desktop software\uinstaller.ini" /fromrun /starthidden
mRun: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
mRun: [AlcxMonitor] ALCXMNTR.EXE
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [UpdateManager] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [EEventManager] c:\progra~1\epsons~1\eventm~1\EEventManager.exe
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 10.0\reader\Reader_sl.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [ddoctorv2] "c:\program files\comcast\desktop doctor\bin\sprtcmd.exe" /P ddoctorv2
mRun: [<NO NAME>]
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} - hxxps://h20436.www2.hp.com/ediags/dex/s ... DEXAXO.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 68.87.74.166 68.87.68.166
TCP: Interfaces\{DE038714-5CDA-49F1-A43C-B066D60146DF} : DhcpNameServer = 68.87.74.166 68.87.68.166
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\az\application data\mozilla\firefox\profiles\yx8detvg.default\
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://news.google.com/
FF - prefs.js: keyword.URL - hxxp://search.avg.com/route/?d=4ddebeab ... g=en-US&q=
FF - component: c:\program files\avg\avg10\firefox4\components\avgssff4.dll
FF - component: c:\program files\avg\avg10\firefox4\components\avgssff5.dll
FF - component: c:\program files\avg\avg10\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: c:\program files\avg\avg10\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: c:\program files\avg\avg10\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
FF - Ext: AVG Safe Search: {1E73965B-8B48-48be-9C8D-68B920ABC1C4} - c:\program files\avg\avg10\Firefox4
FF - Ext: StartNow Toolbar: {5911488E-9D1E-40ec-8CBB-06B231CC153F} - %profile%\extensions\{5911488E-9D1E-40ec-8CBB-06B231CC153F}
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 32592]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-9-7 248656]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 34896]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-11-9 297168]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [2011-4-18 7398752]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg10\avgwdsvc.exe [2011-2-8 269520]
R2 CrossLoopService;CrossLoop Service;c:\documents and settings\az\local settings\application data\crossloop\CrossLoopService.exe [2011-4-28 560880]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2010-8-19 134480]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2010-8-19 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2010-8-19 27216]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2011-5-26 984392]
S3 tvnserver;TightVNC Server;c:\documents and settings\az\local settings\application data\crossloop\tvnserver.exe [2011-4-28 814080]
.
=============== Created Last 30 ================
.
2011-07-01 12:55:01 -------- d-----w- c:\program files\Comcast
2011-07-01 12:53:58 -------- d-----w- c:\documents and settings\az\local settings\application data\SupportSoft
2011-07-01 12:53:31 -------- d-----w- c:\program files\common files\SupportSoft
2011-07-01 12:53:31 -------- d-----w- c:\program files\ComcastUI
2011-06-27 20:50:00 -------- d-----w- c:\windows\system32\wbem\repository\FS
2011-06-27 20:50:00 -------- d-----w- c:\windows\system32\wbem\Repository
2011-06-27 19:31:31 -------- d-----w- c:\program files\StartNow Toolbar
2011-06-17 14:03:20 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-09 14:16:31 -------- d-----w- c:\documents and settings\all users\application data\mJ45103KpMcP45103
.
==================== Find3M ====================
.
2011-06-30 20:40:27 59 ----a-w- c:\windows\wpd99.drv
2011-05-02 15:31:52 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25:27 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19:43 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-26 14:11:12 11081728 ----a-w- c:\windows\system32\ieframe(2)(2).dll
2011-04-25 16:11:12 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:11:12 916480 ----a-w- c:\windows\system32\wininet(2)(2).dll
2011-04-25 16:11:12 1211904 ----a-w- c:\windows\system32\urlmon(2)(2).dll
2011-04-25 16:11:11 43520 ------w- c:\windows\system32\licmgr10.dll
2011-04-25 16:11:11 1991680 ----a-w- c:\windows\system32\iertutil(2)(2).dll
2011-04-25 16:11:11 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 12:01:22 385024 ------w- c:\windows\system32\html.iec
2011-04-21 13:37:43 105472 ----a-w- c:\windows\system32\drivers\mup.sys
2011-04-15 01:28:42 134480 ----a-w- c:\windows\system32\drivers\AVGIDSDriver.sys
2011-04-05 04:59:56 297168 ----a-w- c:\windows\system32\drivers\avgtdix.sys
.
=================== ROOTKIT ====================
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: WDC_WD3200AVJB-63WKA0 rev.00.02C01 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
.
device: opened successfully
user: MBR read successfully
.
Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x84AF64D0]<<
_asm { PUSH EBP; MOV EBP, ESP; PUSH ECX; MOV EAX, [EBP+0x8]; CMP EAX, [0x84afc7d0]; MOV EAX, [0x84afc84c]; PUSH EBX; PUSH ESI; MOV ESI, [EBP+0xc]; MOV EBX, [ESI+0x60]; PUSH EDI; JNZ 0x20; MOV [EBP+0x8], EAX; }
1 ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Harddisk0\DR0[0x84BEA560]
3 CLASSPNP[0xF751CFD7] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\00000058[0x84BC8F18]
5 ACPI[0xF7393620] -> ntkrnlpa!IofCallDriver[0x804EE130] -> [0x84B8E940]
\Driver\atapi[0x84B85C78] -> IRP_MJ_CREATE -> 0x84AF64D0
error: Read A device attached to the system is not functioning.
kernel: MBR read successfully
_asm { XOR AX, AX; MOV SS, AX; MOV SP, 0x7c00; STI ; PUSH AX; POP ES; PUSH AX; POP DS; CLD ; MOV SI, 0x7c1b; MOV DI, 0x61b; PUSH AX; PUSH DI; MOV CX, 0x1e5; REP MOVSB ; RETF ; MOV BP, 0x7be; MOV CL, 0x4; CMP [BP+0x0], CH; JL 0x2e; JNZ 0x3a; }
detected disk devices:
detected hooks:
\Driver\atapi DriverStartIo -> 0x84AF631B
user & kernel MBR OK
Warning: possible TDL3 rootkit infection !
.
============= FINISH: 13:00:52.17 ===============
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-06-23.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 12/23/2010 7:57:28 PM
System Uptime: 7/2/2011 12:32:14 PM (1 hours ago)
.
Motherboard: ASUSTek Computer INC. | | Salmon
Processor: AMD Athlon(tm) 64 Processor 3300+ | Socket 754 | 2411/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 128 GiB total, 61.233 GiB free.
D: is Removable
E: is Removable
F: is Removable
G: is Removable
H: is CDROM ()
I: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP115: 4/3/2011 10:29:15 PM - System Checkpoint
RP116: 4/4/2011 10:40:45 PM - System Checkpoint
RP117: 4/6/2011 8:03:50 AM - System Checkpoint
RP118: 4/7/2011 8:40:29 AM - System Checkpoint
RP119: 4/8/2011 8:52:30 AM - System Checkpoint
RP120: 4/9/2011 11:22:37 AM - System Checkpoint
RP121: 4/10/2011 11:51:56 AM - System Checkpoint
RP122: 4/11/2011 12:37:12 PM - System Checkpoint
RP123: 4/12/2011 1:22:33 PM - System Checkpoint
RP124: 4/13/2011 3:06:42 PM - System Checkpoint
RP125: 4/14/2011 3:00:14 AM - Software Distribution Service 3.0
RP126: 4/15/2011 9:26:40 AM - System Checkpoint
RP127: 4/16/2011 9:30:18 AM - System Checkpoint
RP128: 4/17/2011 12:46:26 PM - System Checkpoint
RP129: 4/18/2011 1:25:19 PM - System Checkpoint
RP130: 4/19/2011 2:18:18 PM - System Checkpoint
RP131: 4/20/2011 3:17:13 PM - System Checkpoint
RP132: 4/24/2011 11:02:28 PM - System Checkpoint
RP133: 4/25/2011 11:45:15 PM - System Checkpoint
RP134: 4/26/2011 7:45:36 PM - Restore Operation
RP135: 4/27/2011 7:29:31 AM - Software Distribution Service 3.0
RP136: 4/27/2011 8:24:56 AM - Restore Operation
RP137: 4/27/2011 8:48:48 AM - Restore Operation
RP138: 4/27/2011 8:52:03 AM - Restore Operation
RP139: 4/27/2011 3:15:07 PM - Restore Operation
RP140: 4/27/2011 3:19:05 PM - Restore Operation
RP141: 4/27/2011 3:22:51 PM - Restore Operation
RP142: 4/27/2011 3:39:51 PM - Restore Operation
RP143: 4/27/2011 4:50:44 PM - Restore Operation
RP144: 4/28/2011 5:50:41 PM - System Checkpoint
RP145: 4/29/2011 6:01:17 PM - System Checkpoint
RP146: 4/30/2011 6:23:28 PM - System Checkpoint
RP147: 5/1/2011 7:15:37 PM - System Checkpoint
RP148: 5/2/2011 8:10:08 PM - System Checkpoint
RP149: 5/3/2011 9:10:08 PM - System Checkpoint
RP150: 5/5/2011 7:24:17 AM - System Checkpoint
RP151: 5/6/2011 7:58:48 AM - System Checkpoint
RP152: 5/7/2011 2:15:54 PM - System Checkpoint
RP153: 5/8/2011 2:53:29 PM - System Checkpoint
RP154: 5/8/2011 4:06:51 PM - Restore Operation
RP155: 5/9/2011 5:10:13 PM - System Checkpoint
RP156: 5/10/2011 5:21:37 PM - System Checkpoint
RP157: 5/11/2011 5:42:29 PM - System Checkpoint
RP158: 5/12/2011 3:00:13 AM - Software Distribution Service 3.0
RP159: 5/13/2011 3:21:32 AM - System Checkpoint
RP160: 5/14/2011 4:21:32 AM - System Checkpoint
RP161: 5/15/2011 5:21:32 AM - System Checkpoint
RP162: 5/16/2011 8:50:42 AM - System Checkpoint
RP163: 5/17/2011 9:26:07 AM - System Checkpoint
RP164: 5/18/2011 10:03:25 AM - System Checkpoint
RP165: 5/19/2011 10:52:51 AM - System Checkpoint
RP166: 5/20/2011 9:18:28 AM - Restore Operation
RP167: 5/21/2011 11:12:04 AM - System Checkpoint
RP168: 5/22/2011 1:59:26 PM - System Checkpoint
RP169: 5/23/2011 2:46:21 PM - System Checkpoint
RP170: 5/25/2011 9:17:37 AM - System Checkpoint
RP171: 5/26/2011 9:35:45 AM - System Checkpoint
RP172: 5/26/2011 3:07:44 PM - Restore Operation
RP173: 5/26/2011 3:25:30 PM - Restore Operation
RP174: 5/26/2011 4:55:29 PM - Installed AVG 2011
RP175: 5/26/2011 4:57:58 PM - Removed AVG 2011
RP176: 5/27/2011 11:23:58 PM - System Checkpoint
RP177: 5/28/2011 11:44:30 PM - System Checkpoint
RP178: 5/30/2011 12:44:30 AM - System Checkpoint
RP179: 5/31/2011 12:34:46 PM - System Checkpoint
RP180: 6/1/2011 12:47:05 PM - System Checkpoint
RP181: 6/2/2011 1:36:40 PM - System Checkpoint
RP182: 6/3/2011 2:02:07 PM - System Checkpoint
RP183: 6/4/2011 11:40:19 AM - Restore Operation
RP184: 6/5/2011 11:47:45 AM - System Checkpoint
RP185: 6/5/2011 1:32:02 PM - Restore Operation
RP186: 6/6/2011 2:22:12 PM - System Checkpoint
RP187: 6/7/2011 2:32:36 PM - System Checkpoint
RP188: 6/8/2011 3:39:57 PM - System Checkpoint
RP189: 6/9/2011 6:55:19 PM - System Checkpoint
RP190: 6/11/2011 4:13:56 PM - System Checkpoint
RP191: 6/12/2011 4:38:44 PM - System Checkpoint
RP192: 6/13/2011 6:45:00 PM - System Checkpoint
RP193: 6/15/2011 12:55:56 AM - System Checkpoint
RP194: 6/17/2011 10:15:52 AM - System Checkpoint
RP195: 6/18/2011 12:30:12 PM - Software Distribution Service 3.0
RP196: 6/19/2011 1:22:22 PM - System Checkpoint
RP197: 6/20/2011 1:38:57 PM - System Checkpoint
RP198: 6/21/2011 2:15:10 PM - System Checkpoint
RP199: 6/22/2011 3:15:02 PM - System Checkpoint
RP200: 6/23/2011 4:16:11 PM - System Checkpoint
RP201: 6/24/2011 7:15:26 PM - System Checkpoint
RP202: 6/25/2011 2:15:53 PM - Restore Operation
RP203: 6/25/2011 3:28:50 PM - Software Distribution Service 3.0
RP204: 6/26/2011 3:29:56 PM - System Checkpoint
RP205: 6/27/2011 4:06:39 PM - System Checkpoint
RP206: 6/27/2011 4:38:52 PM - Restore Operation
RP207: 6/27/2011 4:54:11 PM - Removed Bonjour
RP208: 6/27/2011 6:12:17 PM - Software Distribution Service 3.0
RP209: 6/28/2011 1:51:31 PM - Restore Operation
RP210: 6/29/2011 3:38:42 PM - System Checkpoint
RP211: 6/29/2011 5:35:47 PM - Software Distribution Service 3.0
RP212: 6/30/2011 6:38:45 PM - System Checkpoint
RP213: 7/1/2011 8:53:30 AM - Installed Comcast Desktop Software (v1.2.0.9)
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader X (10.0.1)
Agere Systems PCI Soft Modem
Apple Application Support
Apple Mobile Device Support
Apple Software Update
AVG 2011
Comcast Desktop Software (v1.2.0.9)
Compatibility Pack for the 2007 Office system
CrossLoop 2.75
Desktop Doctor
Epson Event Manager
EPSON Scan
EPSON WorkForce 600 Series Printer Uninstall
EpsonNet Print
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB981793)
iTunes
Java Auto Updater
Java(TM) 6 Update 23
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Mozilla Firefox (3.6.18)
Pdf995
QuickTime
Realtek AC'97 Audio
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982381)
Security Update for Windows XP (KB982665)
SiS VGA Utilities
Sonic DLA
Sonic RecordNow! Plus
Sonic Update Manager
Spybot - Search & Destroy
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
WebFldrs XP
Windows Internet Explorer 8
Windows XP Service Pack 3
.
==== Event Viewer Messages From Past Week ========
.
7/1/2011 9:13:22 AM, error: Dhcp [1002] - The IP address lease 192.168.1.1 for the Network Card with network address 0011D8292605 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).
7/1/2011 9:12:37 AM, error: Dhcp [1002] - The IP address lease 192.168.2.105 for the Network Card with network address 0011D8292605 has been denied by the DHCP server 192.168.1.254 (The DHCP Server sent a DHCPNACK message).
7/1/2011 9:10:45 AM, error: Dhcp [1002] - The IP address lease 76.108.145.113 for the Network Card with network address 0011D8292605 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).
7/1/2011 8:51:53 AM, error: Dhcp [1002] - The IP address lease 192.168.100.2 for the Network Card with network address 0011D8292605 has been denied by the DHCP server 192.168.100.1 (The DHCP Server sent a DHCPNACK message).
7/1/2011 8:51:22 AM, error: Dhcp [1002] - The IP address lease 76.108.145.113 for the Network Card with network address 0011D8292605 has been denied by the DHCP server 192.168.100.1 (The DHCP Server sent a DHCPNACK message).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The Workstation service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The Windows Audio service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The Server service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The Network Connections service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The HID Input Service service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The Fast User Switching Compatibility service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The Error Reporting Service service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The DHCP Client service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The Cryptographic Services service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7034] - The COM+ Event System service terminated unexpectedly. It has done this 1 time(s).
6/30/2011 4:28:46 PM, error: Service Control Manager [7031] - The Help and Support service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 100 milliseconds: Restart the service.
6/30/2011 4:28:46 PM, error: Service Control Manager [7031] - The Background Intelligent Transfer Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
6/29/2011 8:41:29 AM, error: Service Control Manager [7022] - The WebClient service hung on starting.
6/29/2011 1:46:13 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the BITS service.
6/27/2011 4:54:27 PM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
6/27/2011 4:38:55 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
6/27/2011 4:38:19 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
6/27/2011 4:38:16 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD Avgldx86 Avgmfx86 Avgtdix Fips IPSec MRxSmb NetBIOS NetBT Processor RasAcd Rdbss Tcpip
6/27/2011 4:38:16 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD Networking Support Environment service which failed to start because of the following error: A device attached to the system is not functioning.
6/27/2011 4:38:16 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
6/27/2011 4:38:16 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
6/27/2011 4:38:16 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
6/27/2011 4:38:16 PM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
6/27/2011 4:38:16 PM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
.
==== End Of File ===========================