TechSpot

Can't download anti-virus software for some reason

Inactive
By Gabbie
Jan 18, 2013
  1. Broni

    Broni Malware Annihilator Posts: 46,860   +254

    Of course :)
     
  2. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Thisisu
    Version: 4.7.1 (03.12.2013:1)
    OS: Microsoft Windows XP x86
    Ran by Acer on 03/15/2013 Fri at 21:00:57.73
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    ~~~ Services



    ~~~ Registry Values

    Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\DisplayName
    Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\URL



    ~~~ Registry Keys



    ~~~ Files



    ~~~ Folders





    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on 03/15/2013 Fri at 21:11:18.00
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
     
  3. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    Finished!!! :D!!!
    but the JRT report is so empty*nerd*
     
  4. Broni

    Broni Malware Annihilator Posts: 46,860   +254

    [​IMG] Run OTL
    • Under the Custom Scans/Fixes box at the bottom, paste in the following

      Code:
      :OTL
      SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
      SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
      DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
      DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
      DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
      DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
      DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
      DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Acer\LOCALS~1\Temp\catchme.sys -- (catchme)
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
      O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
      
      :Commands
      [purity]
      [emptytemp]
      [emptyjava]
      [emptyflash]
      [Reboot]
      
    • Then click the Run Fix button at the top
    • Let the program run unhindered, reboot the PC when it is done
    • You will get a log that shows the results of the fix. Please post it.

    NOTE. If for any reason OTL stalls (most likely at "killing processes..." step) run the fix from safe mode.

    [​IMG] Install ONE of these:

    - Avast! free antivirus: http://www.avast.com/eng/download-avast-home.html

    - free Microsoft Security Essentials: http://windows.microsoft.com/en-GB/windows/products/security-essentials
    Note for Windows 8 users: Microsoft Security Essentials comes preinstalled and renamed as Windows Defender.
    You can keep it or you have to disable it before installing another AV program. How to...

    - free Comodo Antivirus: http://www.comodo.com/home/internet-security/antivirus.php
    Last scans...

    [​IMG] Download Security Check from here or here and save it to your Desktop.
    • Double-click SecurityCheck.exe
    • Follow the onscreen instructions inside of the black box.
    • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
    NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
    NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.


    [​IMG] Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
    • Make sure the following options are checked:
      • Internet Services
      • Windows Firewall
      • System Restore
      • Security Center
      • Windows Update
      • Windows Defender
    • Press "Scan".
    • It will create a log (FSS.txt) in the same directory the tool is run.
    • Please copy and paste the log to your reply.

    [​IMG] Download Temp File Cleaner (TFC)
    Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
    • Double click on TFC.exe to run the program.
    • Click on Start button to begin cleaning process.
    • TFC will close all running programs, and it may ask you to restart computer.

    [​IMG] Please run a free online scan with the ESET Online Scanner

    • Disable your antivirus program
    • Tick the box next to YES, I accept the Terms of Use
    • Click Start
    • Accept any security warnings from your browser.
    • Check Scan archives
    • Click Start
    • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
    • When the scan completes, click on List of found threats
    • Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    • NOTE. If Eset won't find any threats, it won't produce any log.
     
  5. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    All processes killed
    ========== OTL ==========
    Service HidServ stopped successfully!
    Service HidServ deleted successfully!
    File %SystemRoot%\System32\hidserv.dll not found.
    Service AppMgmt stopped successfully!
    Service AppMgmt deleted successfully!
    File %SystemRoot%\System32\appmgmts.dll not found.
    Service WDICA stopped successfully!
    Service WDICA deleted successfully!
    Service PDRFRAME stopped successfully!
    Service PDRFRAME deleted successfully!
    Service PDRELI stopped successfully!
    Service PDRELI deleted successfully!
    Service PDFRAME stopped successfully!
    Service PDFRAME deleted successfully!
    Service PDCOMP stopped successfully!
    Service PDCOMP deleted successfully!
    Service PCIDump stopped successfully!
    Service PCIDump deleted successfully!
    Service lbrtfdc stopped successfully!
    Service lbrtfdc deleted successfully!
    Service i2omgmt stopped successfully!
    Service i2omgmt deleted successfully!
    Service Changer stopped successfully!
    Service Changer deleted successfully!
    Service catchme stopped successfully!
    Service catchme deleted successfully!
    File C:\DOCUME~1\Acer\LOCALS~1\Temp\catchme.sys not found.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
    Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
    C:\WINDOWS\Downloaded Program Files\gp.inf not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Acer
    ->Temp folder emptied: 984714 bytes
    ->Temporary Internet Files folder emptied: 66151596 bytes
    ->Google Chrome cache emptied: 6544220 bytes
    ->Flash cache emptied: 288863 bytes

    User: All Users

    User: Default User
    ->Temp folder emptied: 212992 bytes
    ->Temporary Internet Files folder emptied: 32768 bytes
    ->Flash cache emptied: 56862 bytes

    User: LocalService
    ->Temp folder emptied: 66016 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: NetworkService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 6169 bytes
    %systemroot%\System32\dllcache .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 90 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 25164007 bytes
    RecycleBin emptied: 1585995586 bytes

    Total Files Cleaned = 1,607.00 mb


    [EMPTYJAVA]

    User: Acer

    User: All Users

    User: Default User

    User: LocalService

    User: NetworkService

    Total Java Files Cleaned = 0.00 mb


    [EMPTYFLASH]

    User: Acer
    ->Flash cache emptied: 0 bytes

    User: All Users

    User: Default User
    ->Flash cache emptied: 0 bytes

    User: LocalService

    User: NetworkService

    Total Flash Files Cleaned = 0.00 mb


    OTL by OldTimer - Version 3.2.69.0 log created on 03162013_205653

    Files\Folders moved on Reboot...

    PendingFileRenameOperations files...

    Registry entries deleted on Reboot...
     
  6. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

  7. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    Farbar Service Scanner Version: 03-03-2013
    Ran by Acer (administrator) on 16-03-2013 at 21:08:36
    Running from "C:\Documents and Settings\Acer\My Documents\Downloads"
    Microsoft Windows XP Service Pack 3 (X86)
    Boot Mode: Normal
    ****************************************************************

    Internet Services:
    ============

    Connection Status:
    ==============
    Localhost is accessible.
    LAN connected.
    Google IP is accessible.
    Google.com is accessible.
    Yahoo IP is accessible.
    Yahoo.com is accessible.


    Windows Firewall:
    =============

    Firewall Disabled Policy:
    ==================


    System Restore:
    ============

    System Restore Disabled Policy:
    ========================


    Security Center:
    ============
    wscsvc Service is not running. Checking service configuration:
    The start type of wscsvc service is set to Disabled. The default start type is Auto.
    The ImagePath of wscsvc service is OK.
    The ServiceDll of wscsvc service is OK.


    Windows Update:
    ============
    wuauserv Service is not running. Checking service configuration:
    The start type of wuauserv service is set to Disabled. The default start type is Auto.
    The ImagePath of wuauserv service is OK.
    The ServiceDll of wuauserv service is OK.

    BITS Service is not running. Checking service configuration:
    The start type of BITS service is set to Disabled. The default start type is Auto.
    The ImagePath of BITS service is OK.
    The ServiceDll of BITS service is OK.


    Windows Autoupdate Disabled Policy:
    ============================


    File Check:
    ========
    C:\WINDOWS\system32\dhcpcsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0124416 ____A (Microsoft Corporation) E9CDA2EAA16122962524A46ED517F331

    C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
    C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
    C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
    C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
    C:\WINDOWS\system32\dnsrslvr.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0045056 ____A (Microsoft Corporation) DD735B8FDE449861949EF6CB30A05BF3

    C:\WINDOWS\system32\ipnathlp.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0319488 ____A (Microsoft Corporation) 49CC03219BC97F14F19E0AECF8504B3A

    C:\WINDOWS\system32\netman.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0197120 ____A (Microsoft Corporation) E4F05C6AC5ECC36B251039970DA7B0F4

    C:\WINDOWS\system32\wbem\WMIsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0144384 ____A (Microsoft Corporation) 8A2BFA2C980F314A15ECC8366235573E

    C:\WINDOWS\system32\srsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0169472 ____A (Microsoft Corporation) 051F276F1EB6A7C94C7BB0A8AACA8D52

    C:\WINDOWS\system32\Drivers\sr.sys
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0073216 ____A (Microsoft Corporation) D9C8F57AA380FA3D2332847071BE50F0

    C:\WINDOWS\system32\wscsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0080896 ____A (Microsoft Corporation) 7B5D775A3F44EAA14571353323A33A19

    C:\WINDOWS\system32\wbem\WMIsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0144384 ____A (Microsoft Corporation) 8A2BFA2C980F314A15ECC8366235573E

    C:\WINDOWS\system32\wuauserv.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0006656 ____A (Microsoft Corporation) 49AAEBCDE070932E9B1CFD7E954F70D9

    C:\WINDOWS\system32\qmgr.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0409088 ____A (Microsoft Corporation) A12C31544AB375C8412C9CD284DC87DB

    C:\WINDOWS\system32\es.dll
    [2008-07-08 04:27] - [2008-07-08 04:27] - 0253952 ____A (Microsoft Corporation) F80DD79D05B594A0181CE14BDAAAC650

    C:\WINDOWS\system32\cryptsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0062464 ____A (Microsoft Corporation) E681122A2A2D719D98A51966DC2AE850

    C:\WINDOWS\system32\svchost.exe
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0014336 ____A (Microsoft Corporation) 3D4729AB35EF6B179117406ACC188A43

    C:\WINDOWS\system32\rpcss.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0399360 ____A (Microsoft Corporation) CC22F915CFA1C1C368237E01C8F478EF

    C:\WINDOWS\system32\services.exe
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0108544 ____A (Microsoft Corporation) F123AC9887EDF3A3B0964960D027D3CF


    Extra List:
    =======
    Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3)
    0x080000000400000001000000020000000300000008000000050000000600000007000000
    IpSec Tag value is correct.

    **** End of log ****
     
  8. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    I tried to run Temp File Cleaner (TFC) twice but it never worked as in it was frozen and I had to forcefully shut down the laptop. just wondering if I should run it in safe mode or sth :) Thank you!
     
  9. Broni

    Broni Malware Annihilator Posts: 46,860   +254

    I need more details as to what happens.
    Did you try different browser?

    Run TFC from safe mode.
     
  10. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    I've ran TFC in safe mode successfully.

    That's what it says when I tried to access to those site with Chrome

    This webpage is not available

    The server at www.comodo.com can't be found, because the DNS lookup failed. DNS is the network service that translates a website's name to its Internet address. This error is most often caused by having no connection to the Internet or a misconfigured network. It can also be caused by an unresponsive DNS server or a firewall preventing Google Chrome from accessing the network.
    Here are some suggestions:

    • Reload this webpage later.
    • Check your Internet connection. Restart any router, modem, or other network devices you may be using.
    • Check your DNS settings. Contact your network administrator if you're not sure what this means.
    • Try disabling network prediction by following these steps: Go to the Chrome menu > Settings > Show advanced settings... and deselect "Predict network actions to improve page load performance." If this does not resolve the issue, we recommend selecting this option again for improved performance.
    • Add Google Chrome as a permitted program in your firewall's or antivirus software's settings. If it is already a permitted program, try deleting it from the list of permitted programs and adding it again.
    • If you use a proxy server, check your proxy settings or contact your network administrator to make sure the proxy server is working. If you don't believe you should be using a proxy server, adjust your proxy settings: Go to the Chrome menu > Settings > Show advanced settings... > Change proxy settings... > LAN Settings and deselect the "Use a proxy server for your LAN" checkbox.
    When I use IE, it says

    Oops! Internet Explorer could not find www.avast.com

    Try reloading: www.avast.com/eng/download-avast-home.html
    Additional suggestions:

    • Search on Google:
     
  11. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    I'm sure the internet connection has no issue. Because I can post things here without any issue.....*nerd* Thank you! I haven't run the online scan yet not sure if I should finish the links first..
     
     
  12. Broni

    Broni Malware Annihilator Posts: 46,860   +254

    We have some issues with some Windows services not running.
    Let's see if we can solve this.
    It may help with your problem.

    Download Windows Repair (All in One) from this site

    Install the program then run it.

    NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
    NOTE 2. Disable your antivirus program before running Windows Repair.


    Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

    [​IMG]



    Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

    [​IMG]


    Go to Step 4 and under "System Restore" click on Create button:

    [​IMG]


    Go to Start Repairs tab and click Start button.

    Leave all checkmarks as they're.
    NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

    Click on Start button.

    [​IMG]

    Post Windows Repair log (_windows_repair_log.txt) which is located in the following folder:
    64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
    32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs

    Post fresh FSS log as well.
     
  13. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    I will try it out tmr :) thank you so much!
     
  14. Broni

    Broni Malware Annihilator Posts: 46,860   +254

  15. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    Running Repair Under System Account
    Starting Repairs...
    Start (3/19/2013 10:07:38 PM)

    Reset Registry Permissions 01/03
    HKEY_CURRENT_USER & Sub Keys
    Start (3/19/2013 10:07:38 PM)
    Running Repair Under Current User Account
    Done (3/19/2013 10:07:43 PM)

    Reset Registry Permissions 02/03
    HKEY_LOCAL_MACHINE & Sub Keys
    Start (3/19/2013 10:07:43 PM)
    Running Repair Under System Account
    Done (3/19/2013 10:09:14 PM)

    Reset Registry Permissions 03/03
    HKEY_CLASSES_ROOT & Sub Keys
    Start (3/19/2013 10:09:14 PM)
    Running Repair Under System Account
    Done (3/19/2013 10:10:14 PM)

    Register System Files
    Start (3/19/2013 10:10:15 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:11:58 PM)

    Repair WMI
    Start (3/19/2013 10:11:58 PM)
    Running Repair Under Current User Account
    系統找不到指定的路徑。
    Running Repair Under System Account
    系統找不到指定的路徑。
    Done (3/19/2013 10:16:52 PM)

    Repair Windows Firewall
    Start (3/19/2013 10:16:52 PM)
    Running Repair Under Current User Account
    系統發生 1060 錯誤。

    指定的服務並未以已安裝的服務存在。

    尚未啟動 Windows Firewall/Internet Connection Sharing (ICS) 服務。

    詳細資料,請輸入 NET HELPMSG 3521。

    系統發生 1060 錯誤。

    指定的服務並未以已安裝的服務存在。

    服務名稱無效。

    詳細資料,請輸入 NET HELPMSG 2185。

    服務名稱無效。

    詳細資料,請輸入 NET HELPMSG 2185。

    Running Repair Under System Account
    系統發生 1060 錯誤。

    指定的服務並未以已安裝的服務存在。

    系統發生 1060 錯誤。

    指定的服務並未以已安裝的服務存在。

    服務名稱無效。

    詳細資料,請輸入 NET HELPMSG 2185。

    服務名稱無效。

    詳細資料,請輸入 NET HELPMSG 2185。

    Done (3/19/2013 10:17:05 PM)

    Repair Internet Explorer
    Start (3/19/2013 10:17:05 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:18:13 PM)

    Repair MDAC/MS Jet
    Start (3/19/2013 10:18:13 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:18:39 PM)

    Repair Hosts File
    Start (3/19/2013 10:18:39 PM)
    Running Repair Under System Account
    Done (3/19/2013 10:18:41 PM)

    Remove Policies Set By Infections
    Start (3/19/2013 10:18:41 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:18:46 PM)

    Repair Icons
    Start (3/19/2013 10:18:46 PM)
    Running Repair Under System Account
    找不到 C:\Documents and Settings\Acer\Local Settings\Application Data\IconCache.db.bak
    找不到 C:\Documents and Settings\Acer\Local Settings\Application Data\IconCache.db
    Done (3/19/2013 10:18:48 PM)

    Repair Winsock & DNS Cache
    Start (3/19/2013 10:18:48 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:19:01 PM)

    Repair Proxy Settings
    Start (3/19/2013 10:19:01 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:19:06 PM)

    Repair Windows Updates
    Start (3/19/2013 10:19:06 PM)
    Running Repair Under Current User Account
    尚未啟動 BITS 服務。

    詳細資料,請輸入 NET HELPMSG 3521。

    尚未啟動 Automatic Updates 服務。

    詳細資料,請輸入 NET HELPMSG 3521。

    系統找不到指定的檔案。
    Running Repair Under System Account
    尚未啟動 BITS 服務。

    詳細資料,請輸入 NET HELPMSG 3521。

    尚未啟動 Automatic Updates 服務。

    詳細資料,請輸入 NET HELPMSG 3521。

    系統找不到指定的檔案。
    Done (3/19/2013 10:20:06 PM)

    Repair CD/DVD Missing/Not Working
    Start (3/19/2013 10:20:07 PM)
    Done (3/19/2013 10:20:07 PM)

    Repair Volume Shadow Copy Service
    Start (3/19/2013 10:20:07 PM)
    Running Repair Under Current User Account
    尚未啟動 Volume Shadow Copy 服務。

    詳細資料,請輸入 NET HELPMSG 3521。

    尚未啟動 MS Software Shadow Copy Provider 服務。

    詳細資料,請輸入 NET HELPMSG 3521。

    Running Repair Under System Account
    尚未啟動 Volume Shadow Copy 服務。

    詳細資料,請輸入 NET HELPMSG 3521。

    尚未啟動 MS Software Shadow Copy Provider 服務。

    詳細資料,請輸入 NET HELPMSG 3521。

    Done (3/19/2013 10:20:34 PM)

    Repair MSI (Windows Installer)
    Start (3/19/2013 10:20:34 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:20:47 PM)

    Repair bat Association
    Start (3/19/2013 10:20:47 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:20:52 PM)

    Repair cmd Association
    Start (3/19/2013 10:20:52 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:20:57 PM)

    Repair com Association
    Start (3/19/2013 10:20:57 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:02 PM)

    Repair Directory Association
    Start (3/19/2013 10:21:02 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:07 PM)

    Repair Drive Association
    Start (3/19/2013 10:21:07 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:12 PM)

    Repair exe Association
    Start (3/19/2013 10:21:12 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:17 PM)

    Repair Folder Association
    Start (3/19/2013 10:21:17 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:21 PM)

    Repair inf Association
    Start (3/19/2013 10:21:22 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:26 PM)

    Repair lnk (Shortcuts) Association
    Start (3/19/2013 10:21:26 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:31 PM)

    Repair msc Association
    Start (3/19/2013 10:21:31 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:36 PM)

    Repair reg Association
    Start (3/19/2013 10:21:36 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:41 PM)

    Repair scr Association
    Start (3/19/2013 10:21:41 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:46 PM)

    Repair Windows Safe Mode
    Start (3/19/2013 10:21:46 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:21:51 PM)

    Repair Print Spooler
    Start (3/19/2013 10:21:51 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:22:06 PM)

    Restore Important Windows Services
    Start (3/19/2013 10:22:06 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:22:11 PM)

    Set Windows Services To Default Startup
    Start (3/19/2013 10:22:11 PM)
    Running Repair Under Current User Account
    Running Repair Under System Account
    Done (3/19/2013 10:22:43 PM)

    Cleaning up empty logs...

    All Selected Repairs Done.
    Done (3/19/2013 10:22:43 PM)
    Total Repair Time: 00:15:05


    ...YOU MUST RESTART YOUR SYSTEM...
    Running Repair Under System Account
     
  16. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    Farbar Service Scanner Version: 03-03-2013
    Ran by Acer (administrator) on 19-03-2013 at 22:38:22
    Running from "C:\Documents and Settings\Acer\My Documents\Downloads"
    Microsoft Windows XP Service Pack 3 (X86)
    Boot Mode: Normal
    ****************************************************************

    Internet Services:
    ============

    Connection Status:
    ==============
    Localhost is accessible.
    LAN connected.
    Google IP is accessible.
    Google.com is accessible.
    Yahoo IP is accessible.
    Yahoo.com is accessible.


    Windows Firewall:
    =============

    Firewall Disabled Policy:
    ==================


    System Restore:
    ============

    System Restore Disabled Policy:
    ========================


    Security Center:
    ============
    wscsvc Service is not running. Checking service configuration:
    The start type of wscsvc service is set to Disabled. The default start type is Auto.
    The ImagePath of wscsvc service is OK.
    The ServiceDll of wscsvc service is OK.


    Windows Update:
    ============
    wuauserv Service is not running. Checking service configuration:
    The start type of wuauserv service is set to Disabled. The default start type is Auto.
    The ImagePath of wuauserv service is OK.
    The ServiceDll of wuauserv service is OK.

    BITS Service is not running. Checking service configuration:
    The start type of BITS service is set to Disabled. The default start type is Auto.
    The ImagePath of BITS service is OK.
    The ServiceDll of BITS: "C:\WINDOWS\system32\qmgr.dll".


    Windows Autoupdate Disabled Policy:
    ============================


    File Check:
    ========
    C:\WINDOWS\system32\dhcpcsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0124416 ____A (Microsoft Corporation) E9CDA2EAA16122962524A46ED517F331

    C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
    C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
    C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
    C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
    C:\WINDOWS\system32\dnsrslvr.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0045056 ____A (Microsoft Corporation) DD735B8FDE449861949EF6CB30A05BF3

    C:\WINDOWS\system32\ipnathlp.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0319488 ____A (Microsoft Corporation) 49CC03219BC97F14F19E0AECF8504B3A

    C:\WINDOWS\system32\netman.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0197120 ____A (Microsoft Corporation) E4F05C6AC5ECC36B251039970DA7B0F4

    C:\WINDOWS\system32\wbem\WMIsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0144384 ____A (Microsoft Corporation) 8A2BFA2C980F314A15ECC8366235573E

    C:\WINDOWS\system32\srsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0169472 ____A (Microsoft Corporation) 051F276F1EB6A7C94C7BB0A8AACA8D52

    C:\WINDOWS\system32\Drivers\sr.sys
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0073216 ____A (Microsoft Corporation) D9C8F57AA380FA3D2332847071BE50F0

    C:\WINDOWS\system32\wscsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0080896 ____A (Microsoft Corporation) 7B5D775A3F44EAA14571353323A33A19

    C:\WINDOWS\system32\wbem\WMIsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0144384 ____A (Microsoft Corporation) 8A2BFA2C980F314A15ECC8366235573E

    C:\WINDOWS\system32\wuauserv.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0006656 ____A (Microsoft Corporation) 49AAEBCDE070932E9B1CFD7E954F70D9

    C:\WINDOWS\system32\qmgr.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0409088 ____A (Microsoft Corporation) A12C31544AB375C8412C9CD284DC87DB

    C:\WINDOWS\system32\es.dll
    [2008-07-08 04:27] - [2008-07-08 04:27] - 0253952 ____A (Microsoft Corporation) F80DD79D05B594A0181CE14BDAAAC650

    C:\WINDOWS\system32\cryptsvc.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0062464 ____A (Microsoft Corporation) E681122A2A2D719D98A51966DC2AE850

    C:\WINDOWS\system32\svchost.exe
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0014336 ____A (Microsoft Corporation) 3D4729AB35EF6B179117406ACC188A43

    C:\WINDOWS\system32\rpcss.dll
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0399360 ____A (Microsoft Corporation) CC22F915CFA1C1C368237E01C8F478EF

    C:\WINDOWS\system32\services.exe
    [2008-04-15 11:00] - [2008-04-15 11:00] - 0108544 ____A (Microsoft Corporation) F123AC9887EDF3A3B0964960D027D3CF


    Extra List:
    =======
    Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3)
    0x080000000400000001000000020000000300000008000000050000000600000007000000
    IpSec Tag value is correct.

    **** End of log ****
     
  17. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    I tried those sites again. still can't get there :|

    But done with all steps you mentioned last time! :D
     
  18. Broni

    Broni Malware Annihilator Posts: 46,860   +254

  19. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    If I don't have the CD can I still re-install it please? do you know what caused it. because I went to some bad sites?
     
  20. Broni

    Broni Malware Annihilator Posts: 46,860   +254

    It's really hard to say.
    Ask around. Some friend may have XP CD.
     
  21. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    I found Acer Recovery Management. there I can find restore system to factory default and also reinstall applications/drivers. Don't know if I should give it a try. I'll be getting a new laptop sometime this year. hopefully this won't happen to the new one :p
     
  22. Broni

    Broni Malware Annihilator Posts: 46,860   +254

    If you restore to factory settings you'll lose all data so if you want to go that way you must backup your data first.
     
  23. Gabbie

    Gabbie TS Rookie Topic Starter Posts: 44

    :)Broni, please kindly close the case. You have been of much help. Thank you!(y)
     
  24. Broni

    Broni Malware Annihilator Posts: 46,860   +254

    You're very welcome [​IMG]
     


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.