SledgeProne
Posts: 91 +0
After nearly a year of what seemed innocuous ad clutter, raked from my machine each week like grass trimmings off my lawn, I paid little attention when AVG supposedly blocked an "intrusion" before it entered my machine.
Once again, the recently long period of relatively safe, problem-free websurfing also led me to be more aggressive, upon learning this bug had actually evaded AVG's defense, and before I realized the potential of it's insidious nature, I had chased it down all the predictable routes, lesser trojans survive, while THIS beast only morphed complexity, and as I continued to wrestle with it, more broken furniture strewn in its wake.
As it stands, my IE settings are in shambles, consequently no connection to speak of, Firewall MIA, a new install (naive on my part, to replace AVG) of "Avast" currently sits, crouched in a corner, blind and defenseless without a connection to phone home, and seemingly scared of its own shadow. Malwarebytes which early on, had chomped on it, no longer see's anything, while I have a strong hunch, it's still here.
via my backup machine:
Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org
Database version: v2012.04.11.01
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Master Blaster :: ENDLESS [administrator]
Protection: Enabled
4/13/2012 1:43:06 AM
mbam-log-2012-04-13 (01-43-06).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 212146
Time elapsed: 10 minute(s), 22 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
=============================================================
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-04-13 02:41:17
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e WDC_WD7500AADS-00L5B1 rev.01.01A01
Running: gmer.exe; Driver: C:\DOCUME~1\MASTER~1\LOCALS~1\Temp\uwldapod.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xA564728E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xA56470F9]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xA56BCD92]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject
---- Devices - GMER 1.0.15 ----
Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
---- EOF - GMER 1.0.15 ----
=================================================================
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 12/10/2009 8:41:39 PM
System Uptime: 4/13/2012 4:42:39 AM (0 hours ago)
.
Motherboard: ECS | | GF7050VT-M
Processor: Intel Pentium III Xeon processor | CPU 1 | 2533/267mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 128 GiB total, 6.329 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 149 GiB total, 1.759 GiB free.
F: is FIXED (NTFS) - 149 GiB total, 0.24 GiB free.
G: is FIXED (NTFS) - 571 GiB total, 7.327 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP498: 4/7/2012 12:40:44 AM - System Checkpoint
RP499: 4/8/2012 12:53:15 AM - System Checkpoint
RP500: 4/9/2012 1:12:55 AM - System Checkpoint
RP501: 4/10/2012 1:51:23 AM - Removed Google Earth.
RP502: 4/10/2012 4:22:19 PM - Restore Operation
RP503: 4/11/2012 12:24:13 AM - Removed AVG 2012
RP504: 4/11/2012 12:25:52 AM - Removed AVG 2012
RP505: 4/11/2012 12:31:19 AM - avast! Pro Antivirus Setup
RP506: 4/11/2012 3:01:03 AM - Software Distribution Service 3.0
RP507: 4/12/2012 5:53:48 AM - System Checkpoint
RP508: 4/13/2012 4:11:40 AM - Removed Google Earth.
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Community Help
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Photoshop 7.0
Adobe Reader X
Advanced Zip Repair v1.6
Akamai NetSession Interface
Akamai NetSession Interface Service
AMD APP SDK Runtime
AMD Catalyst Install Manager
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Audacity 1.2.6
avast! Pro Antivirus
Bass Audio Decoder (remove only)
Bonjour
Canon CanoScan Toolbox 4.9
Canon ScanGear Starter
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
ccc-utility
CCC Help English
CD Audio Reader Filter (remove only)
Color Cop 5.4.3
DCoder Image Source (remove only)
DirectVobSub (remove only)
DivX Setup
DScaler 5 Mpeg Decoders
EASEUS Todo Backup 1.1
EasyBCD 2.0
eReg
ExtractNow
ffdshow [rev 2527] [2008-12-19]
Gabest MPEG Splitter (remove only)
Google Update Helper
Hi-Rez Studios Authenticate and Update Service
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Format 11 SDK (KB973442)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB932716-v2)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
IDT Audio
Internet Download Manager
Ipswitch WS_FTP 12
Java Auto Updater
Java(TM) 6 Update 18
LAME v3.98.2 for Audacity
LG USB Modem driver
Logitech SetPoint 6.32
Malwarebytes Anti-Malware version 1.61.0.1400
MediaInfo 0.7.50
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft IntelliPoint 7.0
Microsoft IntelliType Pro 8.2
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.9
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft WinUsb 1.0
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
MONOGRAM AMR Splitter/Decoder (remove only)
Moyea FLV Editor Lite version: 1.0.1.0
Moyea FLV Player version: 2.0.2.96
Mozilla Firefox (3.5.16)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 6 Ultra Edition
NetWorx 5.1.7
NVIDIA Drivers
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.10.0514
OpenSource DTS/AC3/DD+ Source Filter (remove only)
OpenSource Flash Video Splitter (remove only)
QuickTime
Recuva
Registry Mechanic v9.0
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 7 (KB2183461)
Security Update for Windows Internet Explorer 7 (KB2360131)
Security Update for Windows Internet Explorer 7 (KB2416400)
Security Update for Windows Internet Explorer 7 (KB2482017)
Security Update for Windows Internet Explorer 7 (KB2497640)
Security Update for Windows Internet Explorer 7 (KB2530548)
Security Update for Windows Internet Explorer 7 (KB2544521)
Security Update for Windows Internet Explorer 7 (KB2559049)
Security Update for Windows Internet Explorer 7 (KB2586448)
Security Update for Windows Internet Explorer 7 (KB2618444)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB976325)
Security Update for Windows Internet Explorer 7 (KB978207)
Security Update for Windows Internet Explorer 7 (KB982381)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371-v2)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB976325)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
SlimDrivers
SpeeDefrag 5.2.1
Subtitles 1.1.0.0
SUPER © v2011.build.49 (July 1st, 2011) version v2011.build.49
SUPERAntiSpyware
System Requirements Lab
Trend Micro™ Titanium™ Internet Security
Tribes Ascend Closed Beta
TuneUp Utilities 2009
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 7 (KB980182)
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2616676-v2)
Update for Windows XP (KB2641690)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
VC80CRTRedist - 8.0.50727.6195
VLC media player 1.1.11
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer Clean Up
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Media Encoder 9 Series SDK
Windows Media Format 11 runtime
Windows Media Player 11
Windows Mobile Device Updater Component
Windows XP Service Pack 3
WinPcap 4.1.1
WinRAR archiver
Xvid Video Codec
Zune
Zune Language Pack (DEU)
Zune Language Pack (ESP)
Zune Language Pack (FRA)
Zune Language Pack (ITA)
Zune Language Pack (NLD)
Zune Language Pack (PTB)
Zune Language Pack (PTG)
.
==== Event Viewer Messages From Past Week ========
.
4/12/2012 2:05:29 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Aavmker4 AswRdr aswSnx aswSP aswTdi Fips intelppm IPSec MRxSmb NetBIOS NetBT networx RasAcd Rdbss SASDIFSV SASKUTIL Tcpip WS2IFSL
4/12/2012 2:05:29 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
4/12/2012 2:05:29 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
4/12/2012 2:05:29 AM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
4/12/2012 2:05:29 AM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
4/12/2012 2:04:16 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
4/11/2012 3:12:53 AM, error: Service Control Manager [7003] - The Network Location Awareness (NLA) service depends on the following nonexistent service: Afd
4/11/2012 3:12:42 AM, error: Service Control Manager [7024] - The Background Intelligent Transfer Service service terminated with service-specific error 2147952450 (0x80072742).
4/11/2012 3:12:42 AM, error: Service Control Manager [7023] - The Windows Firewall/Internet Connection Sharing (ICS) service terminated with the following error: A socket operation encountered a dead network.
4/11/2012 3:12:42 AM, error: Service Control Manager [7023] - The Automatic Updates service terminated with the following error: %%2147952450
4/11/2012 3:12:42 AM, error: Service Control Manager [7003] - The TCP/IP NetBIOS Helper service depends on the following nonexistent service: Afd
4/11/2012 3:12:42 AM, error: Service Control Manager [7003] - The DHCP Client service depends on the following nonexistent service: Afd
4/11/2012 2:57:46 AM, error: Service Control Manager [7023] - The Cwafrmiregistry service terminated with the following error: The specified module could not be found.
4/11/2012 2:42:40 AM, error: Service Control Manager [7023] - The Smwdm service terminated with the following error: The specified module could not be found.
4/11/2012 2:27:26 AM, error: Service Control Manager [7023] - The Was service terminated with the following error: The specified module could not be found.
4/11/2012 2:12:23 AM, error: Service Control Manager [7023] - The Adpu320 service terminated with the following error: The specified module could not be found.
4/11/2012 12:57:09 AM, error: Service Control Manager [7023] - The DS1410D service terminated with the following error: The specified module could not be found.
4/11/2012 12:56:18 AM, error: Service Control Manager [7023] - The Gv3 service terminated with the following error: The specified module could not be found.
4/11/2012 12:53:36 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Hi-Rez Studios Authenticate and Update Service service to connect.
4/11/2012 12:42:38 AM, error: Service Control Manager [7023] - The Issm service terminated with the following error: The specified module could not be found.
4/11/2012 12:41:39 AM, error: Service Control Manager [7023] - The Olcamsrv service terminated with the following error: The specified module could not be found.
4/11/2012 12:28:11 AM, error: Service Control Manager [7023] - The HSX_DP service terminated with the following error: The specified module could not be found.
4/11/2012 12:28:11 AM, error: Service Control Manager [7023] - The CTEDSPFX.DLL service terminated with the following error: The specified module could not be found.
4/11/2012 12:28:11 AM, error: Service Control Manager [7023] - The Awservice service terminated with the following error: The specified module could not be found.
4/11/2012 12:12:36 AM, error: Service Control Manager [7023] - The HSX_DP service terminated with the following error: Access is denied.
4/11/2012 1:57:17 AM, error: Service Control Manager [7023] - The Tomcatcws3 service terminated with the following error: The specified module could not be found.
4/11/2012 1:42:18 AM, error: Service Control Manager [7023] - The Radiosvr service terminated with the following error: The specified module could not be found.
4/11/2012 1:27:17 AM, error: Service Control Manager [7023] - The Se45obex service terminated with the following error: The specified module could not be found.
4/11/2012 1:12:17 AM, error: Service Control Manager [7023] - The IAimFP6 service terminated with the following error: The specified module could not be found.
4/10/2012 8:58:34 PM, error: Service Control Manager [7023] - The Isdrv120 service terminated with the following error: Access is denied.
4/10/2012 8:43:34 PM, error: Service Control Manager [7023] - The Camdrl service terminated with the following error: Access is denied.
4/10/2012 8:28:35 PM, error: Service Control Manager [7023] - The SNDO763 service terminated with the following error: Access is denied.
4/10/2012 8:13:34 PM, error: Service Control Manager [7023] - The Ifxtcs service terminated with the following error: Access is denied.
4/10/2012 7:58:34 PM, error: Service Control Manager [7023] - The LEX_AS_NIC_SERVICE_YNOS service terminated with the following error: Access is denied.
4/10/2012 7:57:34 PM, error: Service Control Manager [7023] - The Mclserviceatl service terminated with the following error: Access is denied.
4/10/2012 7:54:31 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Winmtsrv service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The W55U01 service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The TPECioCtl service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Symantecantibotfilter service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The OEM02Vfx service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The IAimFP5 service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Help and Support service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Emu10k service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Dlcc_device service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Cwafnotesservice service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Bthmodem service terminated with the following error: The specified module could not be found.
4/10/2012 7:44:04 PM, error: Service Control Manager [7023] - The Netdetect service terminated with the following error: Access is denied.
4/10/2012 7:29:04 PM, error: Service Control Manager [7023] - The Se58obex service terminated with the following error: Access is denied.
4/10/2012 7:28:04 PM, error: Service Control Manager [7023] - The W200mgmt service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Us30service service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Symantecantibotfilter service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Npkcusb service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Mssql$sony_mediamgr service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Mrvw245 service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Mbmiodrvr service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The IAimFP5 service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Emu10k service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Dlcc_device service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Cwafnotesservice service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Crystalaps service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Bthmodem service terminated with the following error: Access is denied.
4/10/2012 5:14:29 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
4/10/2012 5:12:42 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Avgldx86 Avgmfx86 Fips intelppm SASDIFSV SASKUTIL
4/10/2012 5:00:32 PM, error: Service Control Manager [7023] - The W55U01 service terminated with the following error: Access is denied.
4/10/2012 4:45:34 PM, error: Service Control Manager [7023] - The OEM02Vfx service terminated with the following error: Access is denied.
4/10/2012 4:30:32 PM, error: Service Control Manager [7023] - The Winmtsrv service terminated with the following error: Access is denied.
4/10/2012 4:29:38 PM, error: Service Control Manager [7023] - The TPECioCtl service terminated with the following error: Access is denied.
4/10/2012 4:16:11 PM, error: Service Control Manager [7023] - The AlteraByteBlaster service terminated with the following error: Access is denied.
4/10/2012 4:01:12 PM, error: Service Control Manager [7023] - The SWNC8U51 service terminated with the following error: Access is denied.
4/10/2012 3:46:12 PM, error: Service Control Manager [7023] - The Clsched service terminated with the following error: Access is denied.
4/10/2012 3:31:11 PM, error: Service Control Manager [7023] - The Hidgame service terminated with the following error: Access is denied.
4/10/2012 3:16:13 PM, error: Service Control Manager [7023] - The SMNDIS5 service terminated with the following error: Access is denied.
4/10/2012 3:01:13 PM, error: Service Control Manager [7023] - The Upnp service terminated with the following error: Access is denied.
4/10/2012 2:53:11 PM, error: Service Control Manager [7023] - The S616mdfl service terminated with the following error: Access is denied.
4/10/2012 2:46:12 PM, error: Service Control Manager [7023] - The BLKWGU(Belkin) service terminated with the following error: Access is denied.
4/10/2012 2:31:15 PM, error: Service Control Manager [7023] - The NMSSvc service terminated with the following error: Access is denied.
4/10/2012 2:16:11 PM, error: Service Control Manager [7023] - The Mmc_2K service terminated with the following error: Access is denied.
4/10/2012 2:15:20 PM, error: Service Control Manager [7023] - The Se45nd5 service terminated with the following error: The specified module could not be found.
4/10/2012 2:15:20 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Apple Mobile Device service to connect.
4/10/2012 2:15:20 PM, error: Service Control Manager [7000] - The Apple Mobile Device service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
4/10/2012 2:14:17 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
4/10/2012 11:57:36 PM, error: Service Control Manager [7023] - The Awservice service terminated with the following error: Access is denied.
4/10/2012 11:56:37 PM, error: Service Control Manager [7023] - The CTEDSPFX.DLL service terminated with the following error: Access is denied.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The SNDO763 service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The Mclserviceatl service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The LEX_AS_NIC_SERVICE_YNOS service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The Isdrv120 service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The Ifxtcs service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The Camdrl service terminated with the following error: The specified module could not be found.
4/10/2012 10:09:56 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service BITS with arguments "" in order to run the server: {4991D34B-80A1-4291-83B6-3328366B9097}
4/10/2012 1:25:55 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
4/10/2012 1:06:56 PM, error: Service Control Manager [7023] - The Se45nd5 service terminated with the following error: Access is denied.
.
==== End Of File ==========================
Once again, the recently long period of relatively safe, problem-free websurfing also led me to be more aggressive, upon learning this bug had actually evaded AVG's defense, and before I realized the potential of it's insidious nature, I had chased it down all the predictable routes, lesser trojans survive, while THIS beast only morphed complexity, and as I continued to wrestle with it, more broken furniture strewn in its wake.
As it stands, my IE settings are in shambles, consequently no connection to speak of, Firewall MIA, a new install (naive on my part, to replace AVG) of "Avast" currently sits, crouched in a corner, blind and defenseless without a connection to phone home, and seemingly scared of its own shadow. Malwarebytes which early on, had chomped on it, no longer see's anything, while I have a strong hunch, it's still here.
via my backup machine:
Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org
Database version: v2012.04.11.01
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Master Blaster :: ENDLESS [administrator]
Protection: Enabled
4/13/2012 1:43:06 AM
mbam-log-2012-04-13 (01-43-06).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 212146
Time elapsed: 10 minute(s), 22 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
=============================================================
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-04-13 02:41:17
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e WDC_WD7500AADS-00L5B1 rev.01.01A01
Running: gmer.exe; Driver: C:\DOCUME~1\MASTER~1\LOCALS~1\Temp\uwldapod.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xA564728E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xA56470F9]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xA56BCD92]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject
---- Devices - GMER 1.0.15 ----
Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
---- EOF - GMER 1.0.15 ----
=================================================================
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 12/10/2009 8:41:39 PM
System Uptime: 4/13/2012 4:42:39 AM (0 hours ago)
.
Motherboard: ECS | | GF7050VT-M
Processor: Intel Pentium III Xeon processor | CPU 1 | 2533/267mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 128 GiB total, 6.329 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 149 GiB total, 1.759 GiB free.
F: is FIXED (NTFS) - 149 GiB total, 0.24 GiB free.
G: is FIXED (NTFS) - 571 GiB total, 7.327 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP498: 4/7/2012 12:40:44 AM - System Checkpoint
RP499: 4/8/2012 12:53:15 AM - System Checkpoint
RP500: 4/9/2012 1:12:55 AM - System Checkpoint
RP501: 4/10/2012 1:51:23 AM - Removed Google Earth.
RP502: 4/10/2012 4:22:19 PM - Restore Operation
RP503: 4/11/2012 12:24:13 AM - Removed AVG 2012
RP504: 4/11/2012 12:25:52 AM - Removed AVG 2012
RP505: 4/11/2012 12:31:19 AM - avast! Pro Antivirus Setup
RP506: 4/11/2012 3:01:03 AM - Software Distribution Service 3.0
RP507: 4/12/2012 5:53:48 AM - System Checkpoint
RP508: 4/13/2012 4:11:40 AM - Removed Google Earth.
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Community Help
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Photoshop 7.0
Adobe Reader X
Advanced Zip Repair v1.6
Akamai NetSession Interface
Akamai NetSession Interface Service
AMD APP SDK Runtime
AMD Catalyst Install Manager
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Audacity 1.2.6
avast! Pro Antivirus
Bass Audio Decoder (remove only)
Bonjour
Canon CanoScan Toolbox 4.9
Canon ScanGear Starter
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
ccc-utility
CCC Help English
CD Audio Reader Filter (remove only)
Color Cop 5.4.3
DCoder Image Source (remove only)
DirectVobSub (remove only)
DivX Setup
DScaler 5 Mpeg Decoders
EASEUS Todo Backup 1.1
EasyBCD 2.0
eReg
ExtractNow
ffdshow [rev 2527] [2008-12-19]
Gabest MPEG Splitter (remove only)
Google Update Helper
Hi-Rez Studios Authenticate and Update Service
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Format 11 SDK (KB973442)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB932716-v2)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
IDT Audio
Internet Download Manager
Ipswitch WS_FTP 12
Java Auto Updater
Java(TM) 6 Update 18
LAME v3.98.2 for Audacity
LG USB Modem driver
Logitech SetPoint 6.32
Malwarebytes Anti-Malware version 1.61.0.1400
MediaInfo 0.7.50
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft IntelliPoint 7.0
Microsoft IntelliType Pro 8.2
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.9
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft WinUsb 1.0
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
MONOGRAM AMR Splitter/Decoder (remove only)
Moyea FLV Editor Lite version: 1.0.1.0
Moyea FLV Player version: 2.0.2.96
Mozilla Firefox (3.5.16)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 6 Ultra Edition
NetWorx 5.1.7
NVIDIA Drivers
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.10.0514
OpenSource DTS/AC3/DD+ Source Filter (remove only)
OpenSource Flash Video Splitter (remove only)
QuickTime
Recuva
Registry Mechanic v9.0
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 7 (KB2183461)
Security Update for Windows Internet Explorer 7 (KB2360131)
Security Update for Windows Internet Explorer 7 (KB2416400)
Security Update for Windows Internet Explorer 7 (KB2482017)
Security Update for Windows Internet Explorer 7 (KB2497640)
Security Update for Windows Internet Explorer 7 (KB2530548)
Security Update for Windows Internet Explorer 7 (KB2544521)
Security Update for Windows Internet Explorer 7 (KB2559049)
Security Update for Windows Internet Explorer 7 (KB2586448)
Security Update for Windows Internet Explorer 7 (KB2618444)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB976325)
Security Update for Windows Internet Explorer 7 (KB978207)
Security Update for Windows Internet Explorer 7 (KB982381)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371-v2)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB976325)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
SlimDrivers
SpeeDefrag 5.2.1
Subtitles 1.1.0.0
SUPER © v2011.build.49 (July 1st, 2011) version v2011.build.49
SUPERAntiSpyware
System Requirements Lab
Trend Micro™ Titanium™ Internet Security
Tribes Ascend Closed Beta
TuneUp Utilities 2009
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 7 (KB980182)
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2616676-v2)
Update for Windows XP (KB2641690)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
VC80CRTRedist - 8.0.50727.6195
VLC media player 1.1.11
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer Clean Up
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Media Encoder 9 Series SDK
Windows Media Format 11 runtime
Windows Media Player 11
Windows Mobile Device Updater Component
Windows XP Service Pack 3
WinPcap 4.1.1
WinRAR archiver
Xvid Video Codec
Zune
Zune Language Pack (DEU)
Zune Language Pack (ESP)
Zune Language Pack (FRA)
Zune Language Pack (ITA)
Zune Language Pack (NLD)
Zune Language Pack (PTB)
Zune Language Pack (PTG)
.
==== Event Viewer Messages From Past Week ========
.
4/12/2012 2:05:29 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Aavmker4 AswRdr aswSnx aswSP aswTdi Fips intelppm IPSec MRxSmb NetBIOS NetBT networx RasAcd Rdbss SASDIFSV SASKUTIL Tcpip WS2IFSL
4/12/2012 2:05:29 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
4/12/2012 2:05:29 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
4/12/2012 2:05:29 AM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
4/12/2012 2:05:29 AM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
4/12/2012 2:04:16 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
4/11/2012 3:12:53 AM, error: Service Control Manager [7003] - The Network Location Awareness (NLA) service depends on the following nonexistent service: Afd
4/11/2012 3:12:42 AM, error: Service Control Manager [7024] - The Background Intelligent Transfer Service service terminated with service-specific error 2147952450 (0x80072742).
4/11/2012 3:12:42 AM, error: Service Control Manager [7023] - The Windows Firewall/Internet Connection Sharing (ICS) service terminated with the following error: A socket operation encountered a dead network.
4/11/2012 3:12:42 AM, error: Service Control Manager [7023] - The Automatic Updates service terminated with the following error: %%2147952450
4/11/2012 3:12:42 AM, error: Service Control Manager [7003] - The TCP/IP NetBIOS Helper service depends on the following nonexistent service: Afd
4/11/2012 3:12:42 AM, error: Service Control Manager [7003] - The DHCP Client service depends on the following nonexistent service: Afd
4/11/2012 2:57:46 AM, error: Service Control Manager [7023] - The Cwafrmiregistry service terminated with the following error: The specified module could not be found.
4/11/2012 2:42:40 AM, error: Service Control Manager [7023] - The Smwdm service terminated with the following error: The specified module could not be found.
4/11/2012 2:27:26 AM, error: Service Control Manager [7023] - The Was service terminated with the following error: The specified module could not be found.
4/11/2012 2:12:23 AM, error: Service Control Manager [7023] - The Adpu320 service terminated with the following error: The specified module could not be found.
4/11/2012 12:57:09 AM, error: Service Control Manager [7023] - The DS1410D service terminated with the following error: The specified module could not be found.
4/11/2012 12:56:18 AM, error: Service Control Manager [7023] - The Gv3 service terminated with the following error: The specified module could not be found.
4/11/2012 12:53:36 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Hi-Rez Studios Authenticate and Update Service service to connect.
4/11/2012 12:42:38 AM, error: Service Control Manager [7023] - The Issm service terminated with the following error: The specified module could not be found.
4/11/2012 12:41:39 AM, error: Service Control Manager [7023] - The Olcamsrv service terminated with the following error: The specified module could not be found.
4/11/2012 12:28:11 AM, error: Service Control Manager [7023] - The HSX_DP service terminated with the following error: The specified module could not be found.
4/11/2012 12:28:11 AM, error: Service Control Manager [7023] - The CTEDSPFX.DLL service terminated with the following error: The specified module could not be found.
4/11/2012 12:28:11 AM, error: Service Control Manager [7023] - The Awservice service terminated with the following error: The specified module could not be found.
4/11/2012 12:12:36 AM, error: Service Control Manager [7023] - The HSX_DP service terminated with the following error: Access is denied.
4/11/2012 1:57:17 AM, error: Service Control Manager [7023] - The Tomcatcws3 service terminated with the following error: The specified module could not be found.
4/11/2012 1:42:18 AM, error: Service Control Manager [7023] - The Radiosvr service terminated with the following error: The specified module could not be found.
4/11/2012 1:27:17 AM, error: Service Control Manager [7023] - The Se45obex service terminated with the following error: The specified module could not be found.
4/11/2012 1:12:17 AM, error: Service Control Manager [7023] - The IAimFP6 service terminated with the following error: The specified module could not be found.
4/10/2012 8:58:34 PM, error: Service Control Manager [7023] - The Isdrv120 service terminated with the following error: Access is denied.
4/10/2012 8:43:34 PM, error: Service Control Manager [7023] - The Camdrl service terminated with the following error: Access is denied.
4/10/2012 8:28:35 PM, error: Service Control Manager [7023] - The SNDO763 service terminated with the following error: Access is denied.
4/10/2012 8:13:34 PM, error: Service Control Manager [7023] - The Ifxtcs service terminated with the following error: Access is denied.
4/10/2012 7:58:34 PM, error: Service Control Manager [7023] - The LEX_AS_NIC_SERVICE_YNOS service terminated with the following error: Access is denied.
4/10/2012 7:57:34 PM, error: Service Control Manager [7023] - The Mclserviceatl service terminated with the following error: Access is denied.
4/10/2012 7:54:31 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Winmtsrv service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The W55U01 service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The TPECioCtl service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Symantecantibotfilter service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The OEM02Vfx service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The IAimFP5 service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Help and Support service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Emu10k service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Dlcc_device service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Cwafnotesservice service terminated with the following error: The specified module could not be found.
4/10/2012 7:53:46 PM, error: Service Control Manager [7023] - The Bthmodem service terminated with the following error: The specified module could not be found.
4/10/2012 7:44:04 PM, error: Service Control Manager [7023] - The Netdetect service terminated with the following error: Access is denied.
4/10/2012 7:29:04 PM, error: Service Control Manager [7023] - The Se58obex service terminated with the following error: Access is denied.
4/10/2012 7:28:04 PM, error: Service Control Manager [7023] - The W200mgmt service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Us30service service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Symantecantibotfilter service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Npkcusb service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Mssql$sony_mediamgr service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Mrvw245 service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Mbmiodrvr service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The IAimFP5 service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Emu10k service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Dlcc_device service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Cwafnotesservice service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Crystalaps service terminated with the following error: Access is denied.
4/10/2012 7:22:59 PM, error: Service Control Manager [7023] - The Bthmodem service terminated with the following error: Access is denied.
4/10/2012 5:14:29 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
4/10/2012 5:12:42 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Avgldx86 Avgmfx86 Fips intelppm SASDIFSV SASKUTIL
4/10/2012 5:00:32 PM, error: Service Control Manager [7023] - The W55U01 service terminated with the following error: Access is denied.
4/10/2012 4:45:34 PM, error: Service Control Manager [7023] - The OEM02Vfx service terminated with the following error: Access is denied.
4/10/2012 4:30:32 PM, error: Service Control Manager [7023] - The Winmtsrv service terminated with the following error: Access is denied.
4/10/2012 4:29:38 PM, error: Service Control Manager [7023] - The TPECioCtl service terminated with the following error: Access is denied.
4/10/2012 4:16:11 PM, error: Service Control Manager [7023] - The AlteraByteBlaster service terminated with the following error: Access is denied.
4/10/2012 4:01:12 PM, error: Service Control Manager [7023] - The SWNC8U51 service terminated with the following error: Access is denied.
4/10/2012 3:46:12 PM, error: Service Control Manager [7023] - The Clsched service terminated with the following error: Access is denied.
4/10/2012 3:31:11 PM, error: Service Control Manager [7023] - The Hidgame service terminated with the following error: Access is denied.
4/10/2012 3:16:13 PM, error: Service Control Manager [7023] - The SMNDIS5 service terminated with the following error: Access is denied.
4/10/2012 3:01:13 PM, error: Service Control Manager [7023] - The Upnp service terminated with the following error: Access is denied.
4/10/2012 2:53:11 PM, error: Service Control Manager [7023] - The S616mdfl service terminated with the following error: Access is denied.
4/10/2012 2:46:12 PM, error: Service Control Manager [7023] - The BLKWGU(Belkin) service terminated with the following error: Access is denied.
4/10/2012 2:31:15 PM, error: Service Control Manager [7023] - The NMSSvc service terminated with the following error: Access is denied.
4/10/2012 2:16:11 PM, error: Service Control Manager [7023] - The Mmc_2K service terminated with the following error: Access is denied.
4/10/2012 2:15:20 PM, error: Service Control Manager [7023] - The Se45nd5 service terminated with the following error: The specified module could not be found.
4/10/2012 2:15:20 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Apple Mobile Device service to connect.
4/10/2012 2:15:20 PM, error: Service Control Manager [7000] - The Apple Mobile Device service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
4/10/2012 2:14:17 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
4/10/2012 11:57:36 PM, error: Service Control Manager [7023] - The Awservice service terminated with the following error: Access is denied.
4/10/2012 11:56:37 PM, error: Service Control Manager [7023] - The CTEDSPFX.DLL service terminated with the following error: Access is denied.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The SNDO763 service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The Mclserviceatl service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The LEX_AS_NIC_SERVICE_YNOS service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The Isdrv120 service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The Ifxtcs service terminated with the following error: The specified module could not be found.
4/10/2012 11:54:17 PM, error: Service Control Manager [7023] - The Camdrl service terminated with the following error: The specified module could not be found.
4/10/2012 10:09:56 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service BITS with arguments "" in order to run the server: {4991D34B-80A1-4291-83B6-3328366B9097}
4/10/2012 1:25:55 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
4/10/2012 1:06:56 PM, error: Service Control Manager [7023] - The Se45nd5 service terminated with the following error: Access is denied.
.
==== End Of File ==========================