pot1234Dreadlox
Posts: 106 +0
Broni,
Thanks for your help previously. Have this XP machine (SP3) running slow...on the network of a previously infected machine... have posted logs below. Look forward to hearing from you...DL
Malwarebytes Log
Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org
Database version: v2012.06.18.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Administrator :: SOUTH [administrator]
Protection: Enabled
18-Jun-12 4:39:41 PM
mbam-log-2012-06-18 (16-39-41).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 210493
Time elapsed: 19 minute(s), 26 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 3
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
GMER log
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-06-18 17:06:20
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-12 ST3320620AS rev.3.AAC
Running: pu82zy4i.exe; Driver: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\fgtdypow.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
Device \Driver\Tcpip \Device\Ip 87C7C6D0
Device \Driver\Tcpip \Device\Ip 88840AF8
Device \Driver\Tcpip \Device\Tcp 87C7C6D0
Device \Driver\Tcpip \Device\Tcp 88840AF8
Device \Driver\Tcpip \Device\Udp 87C7C6D0
Device \Driver\Tcpip \Device\Udp 88840AF8
Device \Driver\Tcpip \Device\RawIp 87C7C6D0
Device \Driver\Tcpip \Device\RawIp 88840AF8
---- EOF - GMER 1.0.15 ----
DDS log
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Administrator at 17:06:35 on 2012-06-18
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1237 [GMT 8:00]
.
AV: Total Defense Anti-Virus Plus *Disabled/Updated* {6B98D35F-BB76-41C0-876B-A50645ED099A}
FW: Total Defense Personal Firewall *Enabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\caamsvc.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\isafe.exe
C:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe
C:\Program Files\SuperFlexible\ExtremeVSS.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\CA\SharedComponents\TMEngine\UmxEngine.exe
C:\Program Files\CA\CA Internet Security Suite\ccevtmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\CA\CA Internet Security Suite\casc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAC9SWK.EXE
C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.iinet.net.au/
uInternet Settings,ProxyServer = proxy.austin.local:8080
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Total Defense Anti-Phishing Toolbar Helper: {45011cf5-e4a9-4f13-9093-f30a784eb9b2} - c:\program files\ca\ca internet security suite\ca anti-phishing\toolbar\caIEToolbar.dll
TB: Total Defense Anti-Phishing Toolbar: {0123b506-0ad9-43aa-b0cf-916c122ad4c5} - c:\program files\ca\ca internet security suite\ca anti-phishing\toolbar\caIEToolbar.dll
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [CNAP2 Launcher] c:\windows\system32\spool\drivers\w32x86\3\CNAP2LAK.EXE
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [cctray] "c:\program files\ca\ca internet security suite\casc.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
LSP: c:\windows\system32\VetRedir.dll
AppInit_DLLs: UmxSbxExw.dll
.
============= SERVICES / DRIVERS ===============
.
R0 KmxAMRT;KmxAMRT;c:\windows\system32\drivers\KmxAMRT.sys [2011-10-27 170064]
R0 KmxStart;KmxStart;c:\windows\system32\drivers\KmxStart.sys [2011-9-6 123984]
R1 KmxAgent;KmxAgent;c:\windows\system32\drivers\KmxAgent.sys [2011-10-26 83536]
R1 KmxFile;KmxFile;c:\windows\system32\drivers\KmxFile.sys [2011-9-6 63056]
R1 KmxFw;KmxFw;c:\windows\system32\drivers\KmxFw.sys [2011-7-28 116304]
R2 CAAMSvc;CAAMSvc;c:\program files\ca\ca internet security suite\ca anti-virus plus\CAAMSvc.exe [2012-2-10 206152]
R2 CAISafe;CAISafe;c:\program files\ca\ca internet security suite\ca anti-virus plus\isafe.exe [2012-2-10 222544]
R2 ccSchedulerSVC;CA Common Scheduler Service;c:\program files\ca\ca internet security suite\ccschedulersvc.exe [2012-2-10 207920]
R2 ExtremeVSSService;Extreme VSS Service;c:\program files\superflexible\ExtremeVSS.exe [2012-2-4 3196800]
R2 KmxCF;KmxCF;c:\windows\system32\drivers\KmxCF.sys [2011-9-6 150608]
R2 KmxSbx;KmxSbx;c:\windows\system32\drivers\KmxSbx.sys [2011-9-6 81488]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-6-18 654408]
R2 UmxEngine;TM Engine;c:\program files\ca\sharedcomponents\tmengine\UmxEngine.exe [2011-4-4 662096]
R3 KmxCfg;KmxCfg;c:\windows\system32\drivers\KmxCfg.sys [2011-9-6 331344]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-6-18 22344]
S3 14214;14214;c:\windows\system32\drivers\14214 --> c:\windows\system32\drivers\14214 [?]
S3 PCPitstop Scheduling;PCPitstop Scheduling;c:\program files\ca\PCPitstopScheduleService.exe [2012-2-5 90864]
.
=============== Created Last 30 ================
.
2012-06-18 08:38:14 -------- d-----w- c:\documents and settings\administrator\application data\Malwarebytes
2012-06-18 08:38:07 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2012-06-18 08:38:06 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-18 08:38:06 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-06-13 09:43:33 521728 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
.
==================== Find3M ====================
.
2012-05-31 13:22:09 599040 ----a-w- c:\windows\system32\crypt32.dll
2012-05-16 15:08:26 916992 ----a-w- c:\windows\system32\wininet.dll
2012-05-15 13:20:33 1863168 ----a-w- c:\windows\system32\win32k.sys
2012-05-11 14:42:33 43520 ------w- c:\windows\system32\licmgr10.dll
2012-05-11 14:42:33 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-05-11 11:38:02 385024 ------w- c:\windows\system32\html.iec
2012-05-04 13:16:13 2148352 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-04 12:32:19 2026496 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-02 13:46:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
.
============= FINISH: 17:07:49.42 ===============
ATTACH LOG
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 02-Feb-12 1:42:23 PM
System Uptime: 18-Jun-12 3:09:30 PM (2 hours ago)
.
Motherboard: MSI | | MS-7260
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ | CPU 1 | 2010/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 298 GiB total, 222.894 GiB free.
D: is Removable
E: is Removable
F: is Removable
G: is Removable
H: is Removable
I: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: NVIDIA nForce Networking Controller
Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&E0244F4&0&00
Manufacturer: NVIDIA
Name: NVIDIA nForce Networking Controller
PNP Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&E0244F4&0&00
Service: NVENETFD
.
==== System Restore Points ===================
.
RP45: 21-Mar-12 12:59:44 PM - System Checkpoint
RP46: 22-Mar-12 1:50:06 PM - System Checkpoint
RP47: 23-Mar-12 2:00:07 PM - System Checkpoint
RP48: 24-Mar-12 2:56:14 PM - System Checkpoint
RP49: 25-Mar-12 4:32:07 PM - System Checkpoint
RP50: 26-Mar-12 6:12:28 PM - System Checkpoint
RP51: 27-Mar-12 6:51:20 PM - System Checkpoint
RP52: 29-Mar-12 3:03:30 PM - System Checkpoint
RP53: 30-Mar-12 5:15:31 PM - System Checkpoint
RP54: 31-Mar-12 5:27:03 PM - System Checkpoint
RP55: 02-Apr-12 6:46:24 AM - System Checkpoint
RP56: 03-Apr-12 7:56:11 AM - System Checkpoint
RP57: 04-Apr-12 8:49:52 AM - System Checkpoint
RP58: 05-Apr-12 9:56:14 AM - System Checkpoint
RP59: 06-Apr-12 10:02:26 AM - System Checkpoint
RP60: 10-Apr-12 9:06:02 AM - System Checkpoint
RP61: 10-Apr-12 5:49:30 PM - Installed Windows XP WgaNotify.
RP62: 11-Apr-12 6:25:00 PM - System Checkpoint
RP63: 12-Apr-12 6:34:44 PM - System Checkpoint
RP64: 13-Apr-12 3:00:13 AM - Software Distribution Service 3.0
RP65: 14-Apr-12 11:56:54 AM - System Checkpoint
RP66: 15-Apr-12 12:54:37 PM - System Checkpoint
RP67: 16-Apr-12 2:00:24 PM - System Checkpoint
RP68: 17-Apr-12 2:44:22 PM - System Checkpoint
RP69: 18-Apr-12 3:54:26 PM - System Checkpoint
RP70: 19-Apr-12 4:59:00 PM - System Checkpoint
RP71: 20-Apr-12 5:33:38 PM - System Checkpoint
RP72: 21-Apr-12 6:20:21 PM - System Checkpoint
RP73: 22-Apr-12 9:33:38 PM - System Checkpoint
RP74: 24-Apr-12 7:05:40 AM - System Checkpoint
RP75: 25-Apr-12 10:00:34 AM - System Checkpoint
RP76: 26-Apr-12 10:30:17 AM - System Checkpoint
RP77: 27-Apr-12 11:50:17 AM - System Checkpoint
RP78: 30-Apr-12 11:00:23 AM - System Checkpoint
RP79: 01-May-12 11:22:50 AM - System Checkpoint
RP80: 02-May-12 12:49:12 PM - System Checkpoint
RP81: 03-May-12 1:16:25 PM - System Checkpoint
RP82: 04-May-12 1:31:30 PM - System Checkpoint
RP83: 05-May-12 1:35:19 PM - System Checkpoint
RP84: 06-May-12 2:13:52 PM - System Checkpoint
RP85: 07-May-12 2:54:49 PM - System Checkpoint
RP86: 08-May-12 3:41:52 PM - System Checkpoint
RP87: 09-May-12 3:47:54 PM - System Checkpoint
RP88: 10-May-12 4:31:42 PM - System Checkpoint
RP89: 11-May-12 5:18:32 PM - System Checkpoint
RP90: 12-May-12 12:43:44 PM - Software Distribution Service 3.0
RP91: 14-May-12 5:19:26 PM - System Checkpoint
RP92: 15-May-12 6:22:19 PM - System Checkpoint
RP93: 17-May-12 7:30:26 AM - System Checkpoint
RP94: 18-May-12 7:57:42 AM - System Checkpoint
RP95: 21-May-12 4:00:02 PM - System Checkpoint
RP96: 22-May-12 4:19:52 PM - System Checkpoint
RP97: 23-May-12 5:21:23 PM - System Checkpoint
RP98: 25-May-12 7:52:03 AM - System Checkpoint
RP99: 28-May-12 10:30:01 AM - System Checkpoint
RP100: 29-May-12 1:16:07 PM - System Checkpoint
RP101: 30-May-12 1:59:51 PM - System Checkpoint
RP102: 31-May-12 2:29:47 PM - System Checkpoint
RP103: 01-Jun-12 4:07:56 PM - System Checkpoint
RP104: 03-Jun-12 10:58:41 AM - System Checkpoint
RP105: 04-Jun-12 11:04:46 AM - System Checkpoint
RP106: 05-Jun-12 3:00:13 AM - Software Distribution Service 3.0
RP107: 06-Jun-12 7:28:19 AM - System Checkpoint
RP108: 07-Jun-12 1:36:00 PM - System Checkpoint
RP109: 08-Jun-12 2:12:14 PM - System Checkpoint
RP110: 11-Jun-12 12:30:07 PM - System Checkpoint
RP111: 12-Jun-12 12:50:58 PM - System Checkpoint
RP112: 13-Jun-12 1:07:04 PM - System Checkpoint
RP113: 13-Jun-12 10:49:44 PM - Software Distribution Service 3.0
RP114: 15-Jun-12 9:04:42 AM - System Checkpoint
RP115: 16-Jun-12 9:58:42 AM - System Checkpoint
RP116: 17-Jun-12 10:58:42 AM - System Checkpoint
RP117: 18-Jun-12 12:10:42 PM - System Checkpoint
.
==== Installed Programs ======================
.
.
Adobe AIR
Adobe Reader X (10.1.3)
Anti-Phishing
Anti-Virus Plus
APH placeholder
Backup and Migration
CA Anti-Virus Plus
CA PC Tune-Up 3.0.0.2
Camera Support Core Library
Camera Window
Canon Camera Support Core Library
Canon Camera Window for ZoomBrowser EX
Canon LBP7200C
Canon MovieEdit Task for ZoomBrowser EX
Canon PhotoRecord
Canon RAW Image Task for ZoomBrowser EX
Canon RemoteCapture Task for ZoomBrowser EX
Canon Utilities PhotoStitch 3.1
Canon Utilities ZoomBrowser EX
DNAMigrator
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB952287)
Malwarebytes Anti-Malware version 1.61.0.1400
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
MovieEdit Task
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NVIDIA Control Panel 266.58
NVIDIA Drivers
NVIDIA Graphics Driver 266.58
NVIDIA Install Application
NVIDIA nView 135.50
NVIDIA nView Desktop Manager
Parental Controls
Personal Firewall
PhotoStitch
Qurb
RAW Image Task 1.1
Realtek High Definition Audio Driver
RemoteCapture Task 1.0.3
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB2675157)
Security Update for Windows Internet Explorer 8 (KB2699988)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544521)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618444)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2685939)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2709162)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Super Flexible File Synchronizer 5.64
Total Defense Internet Security Suite
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2641690)
Update for Windows XP (KB2718704)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Internet Explorer 8
.
==== Event Viewer Messages From Past Week ========
.
18-Jun-12 5:06:39 PM, error: Service Control Manager [7016] - The SmartLinkService service has reported an invalid current state 0.
.
==== End Of File ===========================
Thanks for your help previously. Have this XP machine (SP3) running slow...on the network of a previously infected machine... have posted logs below. Look forward to hearing from you...DL
Malwarebytes Log
Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org
Database version: v2012.06.18.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Administrator :: SOUTH [administrator]
Protection: Enabled
18-Jun-12 4:39:41 PM
mbam-log-2012-06-18 (16-39-41).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 210493
Time elapsed: 19 minute(s), 26 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 3
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
GMER log
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-06-18 17:06:20
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-12 ST3320620AS rev.3.AAC
Running: pu82zy4i.exe; Driver: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\fgtdypow.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
Device \Driver\Tcpip \Device\Ip 87C7C6D0
Device \Driver\Tcpip \Device\Ip 88840AF8
Device \Driver\Tcpip \Device\Tcp 87C7C6D0
Device \Driver\Tcpip \Device\Tcp 88840AF8
Device \Driver\Tcpip \Device\Udp 87C7C6D0
Device \Driver\Tcpip \Device\Udp 88840AF8
Device \Driver\Tcpip \Device\RawIp 87C7C6D0
Device \Driver\Tcpip \Device\RawIp 88840AF8
---- EOF - GMER 1.0.15 ----
DDS log
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Administrator at 17:06:35 on 2012-06-18
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1237 [GMT 8:00]
.
AV: Total Defense Anti-Virus Plus *Disabled/Updated* {6B98D35F-BB76-41C0-876B-A50645ED099A}
FW: Total Defense Personal Firewall *Enabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\caamsvc.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\isafe.exe
C:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe
C:\Program Files\SuperFlexible\ExtremeVSS.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\CA\SharedComponents\TMEngine\UmxEngine.exe
C:\Program Files\CA\CA Internet Security Suite\ccevtmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\CA\CA Internet Security Suite\casc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAC9SWK.EXE
C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.iinet.net.au/
uInternet Settings,ProxyServer = proxy.austin.local:8080
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Total Defense Anti-Phishing Toolbar Helper: {45011cf5-e4a9-4f13-9093-f30a784eb9b2} - c:\program files\ca\ca internet security suite\ca anti-phishing\toolbar\caIEToolbar.dll
TB: Total Defense Anti-Phishing Toolbar: {0123b506-0ad9-43aa-b0cf-916c122ad4c5} - c:\program files\ca\ca internet security suite\ca anti-phishing\toolbar\caIEToolbar.dll
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [CNAP2 Launcher] c:\windows\system32\spool\drivers\w32x86\3\CNAP2LAK.EXE
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [cctray] "c:\program files\ca\ca internet security suite\casc.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
LSP: c:\windows\system32\VetRedir.dll
AppInit_DLLs: UmxSbxExw.dll
.
============= SERVICES / DRIVERS ===============
.
R0 KmxAMRT;KmxAMRT;c:\windows\system32\drivers\KmxAMRT.sys [2011-10-27 170064]
R0 KmxStart;KmxStart;c:\windows\system32\drivers\KmxStart.sys [2011-9-6 123984]
R1 KmxAgent;KmxAgent;c:\windows\system32\drivers\KmxAgent.sys [2011-10-26 83536]
R1 KmxFile;KmxFile;c:\windows\system32\drivers\KmxFile.sys [2011-9-6 63056]
R1 KmxFw;KmxFw;c:\windows\system32\drivers\KmxFw.sys [2011-7-28 116304]
R2 CAAMSvc;CAAMSvc;c:\program files\ca\ca internet security suite\ca anti-virus plus\CAAMSvc.exe [2012-2-10 206152]
R2 CAISafe;CAISafe;c:\program files\ca\ca internet security suite\ca anti-virus plus\isafe.exe [2012-2-10 222544]
R2 ccSchedulerSVC;CA Common Scheduler Service;c:\program files\ca\ca internet security suite\ccschedulersvc.exe [2012-2-10 207920]
R2 ExtremeVSSService;Extreme VSS Service;c:\program files\superflexible\ExtremeVSS.exe [2012-2-4 3196800]
R2 KmxCF;KmxCF;c:\windows\system32\drivers\KmxCF.sys [2011-9-6 150608]
R2 KmxSbx;KmxSbx;c:\windows\system32\drivers\KmxSbx.sys [2011-9-6 81488]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-6-18 654408]
R2 UmxEngine;TM Engine;c:\program files\ca\sharedcomponents\tmengine\UmxEngine.exe [2011-4-4 662096]
R3 KmxCfg;KmxCfg;c:\windows\system32\drivers\KmxCfg.sys [2011-9-6 331344]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-6-18 22344]
S3 14214;14214;c:\windows\system32\drivers\14214 --> c:\windows\system32\drivers\14214 [?]
S3 PCPitstop Scheduling;PCPitstop Scheduling;c:\program files\ca\PCPitstopScheduleService.exe [2012-2-5 90864]
.
=============== Created Last 30 ================
.
2012-06-18 08:38:14 -------- d-----w- c:\documents and settings\administrator\application data\Malwarebytes
2012-06-18 08:38:07 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2012-06-18 08:38:06 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-18 08:38:06 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-06-13 09:43:33 521728 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
.
==================== Find3M ====================
.
2012-05-31 13:22:09 599040 ----a-w- c:\windows\system32\crypt32.dll
2012-05-16 15:08:26 916992 ----a-w- c:\windows\system32\wininet.dll
2012-05-15 13:20:33 1863168 ----a-w- c:\windows\system32\win32k.sys
2012-05-11 14:42:33 43520 ------w- c:\windows\system32\licmgr10.dll
2012-05-11 14:42:33 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-05-11 11:38:02 385024 ------w- c:\windows\system32\html.iec
2012-05-04 13:16:13 2148352 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-04 12:32:19 2026496 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-02 13:46:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
.
============= FINISH: 17:07:49.42 ===============
ATTACH LOG
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 02-Feb-12 1:42:23 PM
System Uptime: 18-Jun-12 3:09:30 PM (2 hours ago)
.
Motherboard: MSI | | MS-7260
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ | CPU 1 | 2010/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 298 GiB total, 222.894 GiB free.
D: is Removable
E: is Removable
F: is Removable
G: is Removable
H: is Removable
I: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: NVIDIA nForce Networking Controller
Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&E0244F4&0&00
Manufacturer: NVIDIA
Name: NVIDIA nForce Networking Controller
PNP Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&E0244F4&0&00
Service: NVENETFD
.
==== System Restore Points ===================
.
RP45: 21-Mar-12 12:59:44 PM - System Checkpoint
RP46: 22-Mar-12 1:50:06 PM - System Checkpoint
RP47: 23-Mar-12 2:00:07 PM - System Checkpoint
RP48: 24-Mar-12 2:56:14 PM - System Checkpoint
RP49: 25-Mar-12 4:32:07 PM - System Checkpoint
RP50: 26-Mar-12 6:12:28 PM - System Checkpoint
RP51: 27-Mar-12 6:51:20 PM - System Checkpoint
RP52: 29-Mar-12 3:03:30 PM - System Checkpoint
RP53: 30-Mar-12 5:15:31 PM - System Checkpoint
RP54: 31-Mar-12 5:27:03 PM - System Checkpoint
RP55: 02-Apr-12 6:46:24 AM - System Checkpoint
RP56: 03-Apr-12 7:56:11 AM - System Checkpoint
RP57: 04-Apr-12 8:49:52 AM - System Checkpoint
RP58: 05-Apr-12 9:56:14 AM - System Checkpoint
RP59: 06-Apr-12 10:02:26 AM - System Checkpoint
RP60: 10-Apr-12 9:06:02 AM - System Checkpoint
RP61: 10-Apr-12 5:49:30 PM - Installed Windows XP WgaNotify.
RP62: 11-Apr-12 6:25:00 PM - System Checkpoint
RP63: 12-Apr-12 6:34:44 PM - System Checkpoint
RP64: 13-Apr-12 3:00:13 AM - Software Distribution Service 3.0
RP65: 14-Apr-12 11:56:54 AM - System Checkpoint
RP66: 15-Apr-12 12:54:37 PM - System Checkpoint
RP67: 16-Apr-12 2:00:24 PM - System Checkpoint
RP68: 17-Apr-12 2:44:22 PM - System Checkpoint
RP69: 18-Apr-12 3:54:26 PM - System Checkpoint
RP70: 19-Apr-12 4:59:00 PM - System Checkpoint
RP71: 20-Apr-12 5:33:38 PM - System Checkpoint
RP72: 21-Apr-12 6:20:21 PM - System Checkpoint
RP73: 22-Apr-12 9:33:38 PM - System Checkpoint
RP74: 24-Apr-12 7:05:40 AM - System Checkpoint
RP75: 25-Apr-12 10:00:34 AM - System Checkpoint
RP76: 26-Apr-12 10:30:17 AM - System Checkpoint
RP77: 27-Apr-12 11:50:17 AM - System Checkpoint
RP78: 30-Apr-12 11:00:23 AM - System Checkpoint
RP79: 01-May-12 11:22:50 AM - System Checkpoint
RP80: 02-May-12 12:49:12 PM - System Checkpoint
RP81: 03-May-12 1:16:25 PM - System Checkpoint
RP82: 04-May-12 1:31:30 PM - System Checkpoint
RP83: 05-May-12 1:35:19 PM - System Checkpoint
RP84: 06-May-12 2:13:52 PM - System Checkpoint
RP85: 07-May-12 2:54:49 PM - System Checkpoint
RP86: 08-May-12 3:41:52 PM - System Checkpoint
RP87: 09-May-12 3:47:54 PM - System Checkpoint
RP88: 10-May-12 4:31:42 PM - System Checkpoint
RP89: 11-May-12 5:18:32 PM - System Checkpoint
RP90: 12-May-12 12:43:44 PM - Software Distribution Service 3.0
RP91: 14-May-12 5:19:26 PM - System Checkpoint
RP92: 15-May-12 6:22:19 PM - System Checkpoint
RP93: 17-May-12 7:30:26 AM - System Checkpoint
RP94: 18-May-12 7:57:42 AM - System Checkpoint
RP95: 21-May-12 4:00:02 PM - System Checkpoint
RP96: 22-May-12 4:19:52 PM - System Checkpoint
RP97: 23-May-12 5:21:23 PM - System Checkpoint
RP98: 25-May-12 7:52:03 AM - System Checkpoint
RP99: 28-May-12 10:30:01 AM - System Checkpoint
RP100: 29-May-12 1:16:07 PM - System Checkpoint
RP101: 30-May-12 1:59:51 PM - System Checkpoint
RP102: 31-May-12 2:29:47 PM - System Checkpoint
RP103: 01-Jun-12 4:07:56 PM - System Checkpoint
RP104: 03-Jun-12 10:58:41 AM - System Checkpoint
RP105: 04-Jun-12 11:04:46 AM - System Checkpoint
RP106: 05-Jun-12 3:00:13 AM - Software Distribution Service 3.0
RP107: 06-Jun-12 7:28:19 AM - System Checkpoint
RP108: 07-Jun-12 1:36:00 PM - System Checkpoint
RP109: 08-Jun-12 2:12:14 PM - System Checkpoint
RP110: 11-Jun-12 12:30:07 PM - System Checkpoint
RP111: 12-Jun-12 12:50:58 PM - System Checkpoint
RP112: 13-Jun-12 1:07:04 PM - System Checkpoint
RP113: 13-Jun-12 10:49:44 PM - Software Distribution Service 3.0
RP114: 15-Jun-12 9:04:42 AM - System Checkpoint
RP115: 16-Jun-12 9:58:42 AM - System Checkpoint
RP116: 17-Jun-12 10:58:42 AM - System Checkpoint
RP117: 18-Jun-12 12:10:42 PM - System Checkpoint
.
==== Installed Programs ======================
.
.
Adobe AIR
Adobe Reader X (10.1.3)
Anti-Phishing
Anti-Virus Plus
APH placeholder
Backup and Migration
CA Anti-Virus Plus
CA PC Tune-Up 3.0.0.2
Camera Support Core Library
Camera Window
Canon Camera Support Core Library
Canon Camera Window for ZoomBrowser EX
Canon LBP7200C
Canon MovieEdit Task for ZoomBrowser EX
Canon PhotoRecord
Canon RAW Image Task for ZoomBrowser EX
Canon RemoteCapture Task for ZoomBrowser EX
Canon Utilities PhotoStitch 3.1
Canon Utilities ZoomBrowser EX
DNAMigrator
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB952287)
Malwarebytes Anti-Malware version 1.61.0.1400
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
MovieEdit Task
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NVIDIA Control Panel 266.58
NVIDIA Drivers
NVIDIA Graphics Driver 266.58
NVIDIA Install Application
NVIDIA nView 135.50
NVIDIA nView Desktop Manager
Parental Controls
Personal Firewall
PhotoStitch
Qurb
RAW Image Task 1.1
Realtek High Definition Audio Driver
RemoteCapture Task 1.0.3
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB2675157)
Security Update for Windows Internet Explorer 8 (KB2699988)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544521)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618444)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2685939)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2709162)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Super Flexible File Synchronizer 5.64
Total Defense Internet Security Suite
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2641690)
Update for Windows XP (KB2718704)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Internet Explorer 8
.
==== Event Viewer Messages From Past Week ========
.
18-Jun-12 5:06:39 PM, error: Service Control Manager [7016] - The SmartLinkService service has reported an invalid current state 0.
.
==== End Of File ===========================