Jump to content

Hapilli Infection - Please help


Recommended Posts

Hi I seemed to be infected with the Google Re-Direct Hapilli.

I have ran a deep scan in MWBytes

I am wondering what to do next.

Any help would be greatly appreciated.

Thanks in advance.

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26

Run by Administrator at 17:50:46 on 2012-04-09

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2013.1269 [GMT -4:00]

.

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\spoolsv.exe

svchost.exe

C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

C:\Program Files\Microsoft\BingBar\SeaPort.EXE

C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\DefWatch.exe

C:\Program Files\HP\HP LaserJet M1319 MFP Series\ReceiveFaxUtility.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe

C:\Program Files\LogMeIn\x86\RaMaint.exe

C:\Program Files\LogMeIn\x86\LogMeIn.exe

C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Rtvscan.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe

C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

C:\Program Files\LogMeIn\x86\LogMeInSystray.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe

C:\Program Files\Windows Desktop Search\WindowsSearch.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\Program Files\LogMeIn\x86\LogMeIn.exe

.

============== Pseudo HJT Report ===============

.

uSearch Page = hxxp://www.live.com

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "c:\program files\microsoft\bingbar\BingExt.dll"

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

TB: The Weather Channel Toolbar: {2e5e800e-6ac0-411e-940a-369530a35e43} - c:\windows\system32\TwcToolbarIe7.dll

TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "c:\program files\microsoft\bingbar\BingExt.dll"

TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

mRun: [RTHDCPL] RTHDCPL.EXE

mRun: [Alcmtr] ALCMTR.EXE

mRun: [PDVDDXSrv] "c:\program files\cyberlink\powerdvd dx\PDVDDXSrv.exe"

mRun: [vptray] c:\progra~1\symant~1\symant~1\vptray.exe

mRun: [iAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe

mRun: [EPSS] c:\program files\software tools\enterprise pro surveillance system(basic)\EPSS.exe

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe

mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime

mRun: [LogMeIn GUI] "c:\program files\logmein\x86\LogMeInSystray.exe"

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\kodake~1.lnk - c:\program files\kodak\kodak easyshare software\bin\EasyShare.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe

uPolicies-system: Wallpaper = \\hunter-dc2\public\05newlogo.jpg

uPolicies-system: WallpaperStyle = 2

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL

IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll

DPF: {108D3206-846A-4A93-BACB-F0572D043ED7} - hxxp://192.168.10.222/dvrweb.cab

DPF: {41861299-EAB2-4DCC-986C-802AE12AC499} - hxxp://ppo.matthewsbronze.com/Reserved.ReportViewerWebControl.axd?ReportSession=fdnlsl55vzc3qp2ttxxdsau4&ControlID=7ea9a9b983a74eff85bf7f1fafe173e3&Culture=1033&UICulture=1033&ReportStack=1&OpType=PrintCab

DPF: {46D8BEE7-0B27-4466-ABA2-A5F1E157971C} - hxxp://70.46.174.74:8080/RemoteWeb.cab

DPF: {5FFDFC21-AE40-4C7C-955C-415A1ACE01C8} - hxxp://70.46.174.74:8080/VideoViewer.cab

DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} - hxxps://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab

DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.1.66.0.cab

DPF: {E87A4CD6-BA5F-4552-BC4F-8EC240A2755C} - hxxp://192.168.10.230/webrec.cab

TCP: Interfaces\{D311C08F-18CE-4D0C-B84A-1B5604DA0E32} : NameServer = 192.168.1.11,192.168.1.55

Notify: igfxcui - igfxdev.dll

Notify: LMIinit - LMIinit.dll

Notify: NavLogon - c:\windows\system32\NavLogon.dll

SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\documents and settings\administrator.fredhunters\application data\mozilla\firefox\profiles\5h0q3q5j.default\

FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll

FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll

FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\program files\microsoft silverlight\4.1.10111.0\npctrlui.dll

FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll

FF - plugin: c:\program files\mozilla firefox\plugins\npicaN.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

.

============= SERVICES / DRIVERS ===============

.

R2 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\SeaPort.EXE [2011-6-15 249648]

R2 HPM1319RcvFaxSrvc;HP M1319 Receive Fax Service;c:\program files\hp\hp laserjet m1319 mfp series\ReceiveFaxUtility.exe [2008-12-16 348160]

R2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\logmein\x86\LMIGuardianSvc.exe [2010-10-5 374152]

R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\logmein\x86\rainfo.sys [2010-1-27 12856]

R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2010-6-7 47640]

R2 NAVAPEL;NAVAPEL;c:\program files\symantec_client_security\symantec antivirus\Navapel.sys [2002-6-19 29184]

R2 Norton AntiVirus Server;Symantec AntiVirus Client;c:\program files\symantec_client_security\symantec antivirus\Rtvscan.exe [2002-7-30 573440]

R2 RtNdPt5x;Realtek NDIS Protocol Driver;c:\windows\system32\drivers\RtNdPt5x.sys [2010-2-11 22016]

R3 NAVAP;NAVAP;c:\program files\symantec_client_security\symantec antivirus\Navap.sys [2002-6-19 218112]

R3 NAVENG;NAVENG;c:\progra~1\common~1\symant~1\virusd~1\20101018.002\NAVENG.sys [2010-10-22 86064]

R3 NAVEX15;NAVEX15;c:\progra~1\common~1\symant~1\virusd~1\20101018.002\NAVEX15.sys [2010-10-22 1371184]

S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-4-16 136176]

S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-7-7 195336]

S3 cpudrv;cpudrv;c:\program files\systemrequirementslab\cpudrv.sys [2009-12-18 11336]

S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-4-16 136176]

S3 HP1319EWS;HP1319EWS;c:\windows\system32\drivers\HP1319EWS.sys [2010-2-26 12800]

S3 HP1319FAX;HP1319MFP FAX;c:\windows\system32\drivers\HP1319FAX.sys [2010-2-26 13824]

S3 RTLTEAMING;Realtek Intermediate Driver for Ethernet Extended Features;c:\windows\system32\drivers\RTLTEAMING.SYS [2010-2-11 28800]

S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [2010-2-11 17536]

S3 Samsung UPD Service;Samsung UPD Service;c:\windows\system32\SUPDSvc.exe [2011-4-8 131888]

S4 LMIRfsClientNP;LMIRfsClientNP; [x]

.

=============== Created Last 30 ================

.

2012-04-09 21:01:24 -------- d-----w- c:\documents and settings\administrator.fredhunters\local settings\application data\Mozilla

2012-04-09 20:52:18 -------- d-----w- c:\windows\system32\wbem\repository\FS

2012-04-09 20:52:18 -------- d-----w- c:\windows\system32\wbem\Repository

2012-04-09 20:07:50 711240 ----a-w- c:\windows\is-KPJ3H.exe

2012-04-09 19:50:45 16824 ----a-w- c:\program files\mozilla firefox\plugin-container.exe

2012-04-03 13:11:56 418464 ----a-w- c:\windows\system32\FlashPlayerApp.exe

.

==================== Find3M ====================

.

2012-04-04 19:56:40 22344 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-04-03 13:11:56 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-02-07 11:17:07 83360 ----a-w- c:\windows\system32\LMIRfsClientNP.dll

2012-02-07 11:17:07 52096 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\LMIproc.dll

2012-02-07 11:17:06 87424 ----a-w- c:\windows\system32\LMIinit.dll

2012-02-07 11:17:06 30592 ----a-w- c:\windows\system32\LMIport.dll

2012-02-03 09:26:17 1869184 ----a-w- c:\windows\system32\win32k.sys

2012-01-11 19:06:47 3072 ------w- c:\windows\system32\iacenc.dll

.

============= FINISH: 17:51:07.26 ===============

Attach.txt

Link to post
Share on other sites

Hello cardy_c and :welcome:! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at support@malwarebytes.org or here (http://helpdesk.malwarebytes.org/home). If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

If you still have a problem, please try to re-install Mozilla Firefox and let me know.

Link to post
Share on other sites

Hi Maniac, thank you for the reply.

I hate to admint but I got a little impatient waiting for a reply and I was under pressure to get this running so I did a few things since posting the log.

But here is the log from MiniToolBox

MiniToolBox by Farbar Version: 18-01-2012

Ran by Administrator (administrator) on 10-04-2012 at 11:44:36

Microsoft Windows XP Professional Service Pack 3 (X86)

Boot Mode: Normal

***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.

No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)

# ----------------------------------

# Interface IP Configuration

# ----------------------------------

pushd interface ip

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp

set dns name="Local Area Connection" source=dhcp register=PRIMARY

set wins name="Local Area Connection" source=dhcp

popd

# End of interface IP configuration

Windows IP Configuration

Host Name . . . . . . . . . . . . : JCASEYDESKTOP

Primary Dns Suffix . . . . . . . : fredhunters.com

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : fredhunters.com

fredhunters.com

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : fredhunters.com

Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller

Physical Address. . . . . . . . . : 00-25-64-F8-54-34

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.146

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.11

DNS Servers . . . . . . . . . . . : 192.168.1.11

Primary WINS Server . . . . . . . : 192.168.1.11

Lease Obtained. . . . . . . . . . : Tuesday, April 10, 2012 11:38:44 AM

Lease Expires . . . . . . . . . . : Wednesday, April 11, 2012 11:38:44 AM

Server: fhms.fredhunters.com

Address: 192.168.1.11

DNS request timed out.

timeout was 2 seconds.

Ping request could not find host google.com. Please check the name and try again.

Server: fhms.fredhunters.com

Address: 192.168.1.11

Name: yahoo.com

Addresses: 98.139.183.24, 209.191.122.70, 72.30.38.140

Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=11ms TTL=52

Reply from 209.191.122.70: bytes=32 time=22ms TTL=52

Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 11ms, Maximum = 22ms, Average = 16ms

Server: fhms.fredhunters.com

Address: 192.168.1.11

Name: bleepingcomputer.com

Address: 208.43.87.2

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================

Interface List

0x1 ........................... MS TCP Loopback interface

0x2 ...00 25 64 f8 54 34 ...... Realtek PCIe GBE Family Controller - Packet Scheduler Miniport

===========================================================================

===========================================================================

Active Routes:

Network Destination Netmask Gateway Interface Metric

0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.146 20

127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1

192.168.1.0 255.255.255.0 192.168.1.146 192.168.1.146 20

192.168.1.146 255.255.255.255 127.0.0.1 127.0.0.1 20

192.168.1.255 255.255.255.255 192.168.1.146 192.168.1.146 20

208.43.120.24 255.255.255.255 192.168.1.254 192.168.1.146 1

224.0.0.0 240.0.0.0 192.168.1.146 192.168.1.146 20

255.255.255.255 255.255.255.255 192.168.1.146 192.168.1.146 1

Default Gateway: 192.168.1.1

===========================================================================

Persistent Routes:

None

========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)

Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)

Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)

Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)

Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:

==================

Error: (04/10/2012 11:38:36 AM) (Source: AutoEnrollment) (User: )

Description: Automatic certificate enrollment for local system failed to contact the active directory (0x8007054b). The specified domain either does not exist or could not be contacted.

Enrollment will not be performed.

Error: (04/10/2012 11:38:35 AM) (Source: Userenv) (User: SYSTEM)SYSTEM

Description: Windows cannot obtain the domain controller name for your computer network. (The specified domain either does not exist or could not be contacted. ). Group Policy processing aborted.

Error: (04/10/2012 10:33:41 AM) (Source: Windows Search Service) (User: )

Description: The update cannot be started because the content sources cannot be accessed. Fix the errors and try the update again.

Context: Application, SystemIndex Catalog

Error: (04/10/2012 09:06:11 AM) (Source: LoadPerf) (User: )

Description: The performance counter name string value in the registry is incorrectly

formatted. The bogus string is 13882, the bogus index value is the first

DWORD in Data section while the last valid index values are the second and

third DWORD in Data section.

Error: (04/10/2012 09:06:07 AM) (Source: LoadPerf) (User: )

Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The

Error code is the first DWORD in Data section.

Error: (04/10/2012 09:06:07 AM) (Source: LoadPerf) (User: )

Description: The performance counter name string value in the registry is incorrectly

formatted. The bogus string is 13882, the bogus index value is the first

DWORD in Data section while the last valid index values are the second and

third DWORD in Data section.

Error: (04/10/2012 09:04:39 AM) (Source: Windows Search Service) (User: )

Description: The application cannot be initialized.

Context: Windows Application

Details:

The content index metadata cannot be read. (0xc0041801)

Error: (04/10/2012 09:04:39 AM) (Source: Windows Search Service) (User: )

Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:

The content index metadata cannot be read. (0xc0041801)

Error: (04/10/2012 09:04:39 AM) (Source: Windows Search Service) (User: )

Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:

Element not found. (0x80070490)

Error: (04/10/2012 09:04:38 AM) (Source: Windows Search Service) (User: )

Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:

The content index metadata cannot be read. (0xc0041801)

System errors:

=============

Error: (04/10/2012 11:39:41 AM) (Source: Service Control Manager) (User: )

Description: The Google Update Service (gupdate) service failed to start due to the following error:

%%1053

Error: (04/10/2012 11:39:41 AM) (Source: Service Control Manager) (User: )

Description: Timeout (30000 milliseconds) waiting for the Google Update Service (gupdate) service to connect.

Error: (04/10/2012 11:38:38 AM) (Source: W32Time) (User: )

Description: The time provider NtpClient is configured to acquire time from one or more

time sources, however none of the sources are currently accessible.

No attempt to contact a source will be made for 15 minutes.

NtpClient has no source of accurate time.

Error: (04/10/2012 11:38:37 AM) (Source: W32Time) (User: )

Description: The time provider NtpClient is configured to acquire time from one or more

time sources, however none of the sources are currently accessible.

No attempt to contact a source will be made for 15 minutes.

NtpClient has no source of accurate time.

Error: (04/10/2012 11:38:37 AM) (Source: W32Time) (User: )

Description: The time provider NtpClient is configured to acquire time from one or more

time sources, however none of the sources are currently accessible.

No attempt to contact a source will be made for 15 minutes.

NtpClient has no source of accurate time.

Error: (04/10/2012 11:38:35 AM) (Source: NETLOGON) (User: )

Description: No Domain Controller is available for domain FREDHUNTERS due to the following:

%%1311.

Make sure that the computer is connected to the network and try

again. If the problem persists, please contact your domain administrator.

Error: (04/10/2012 10:45:48 AM) (Source: DCOM) (User: Administrator)

Description: The server {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C} did not register with DCOM within the required timeout.

Error: (04/10/2012 10:22:58 AM) (Source: 0) (User: )

Description: \Device\Ide\iaStor0

Error: (04/10/2012 10:05:48 AM) (Source: Service Control Manager) (User: )

Description: The Google Update Service (gupdate) service failed to start due to the following error:

%%1053

Error: (04/10/2012 10:05:48 AM) (Source: Service Control Manager) (User: )

Description: Timeout (30000 milliseconds) waiting for the Google Update Service (gupdate) service to connect.

Microsoft Office Sessions:

=========================

=========================== Installed Programs ============================

Acrobat.com (Version: 0.0.0)

Acrobat.com (Version: 1.1.377)

Adobe AIR (Version: 1.0.4990)

Adobe AIR (Version: 1.0.8.4990)

Adobe Reader 9.2 (Version: 9.2.0)

ArcSoft Print Creations - Album Page

ArcSoft Print Creations - Funhouse

ArcSoft Print Creations - Greeting Card

ArcSoft Print Creations - Photo Book

ArcSoft Print Creations - Photo Calendar

ArcSoft Print Creations - Scrapbook

ArcSoft Print Creations - Slimline Card

ArcSoft Print Creations (Version: 2.8.255.384)

Avira Free Antivirus (Version: 12.0.0.898)

Bing Bar (Version: 7.0.822.0)

BlackBerry Desktop Software 6.0 (Version: 6.0.0.43)

CCleaner (Version: 3.17)

CCScore (Version: 8.02.0000.0001)

Citrix Presentation Server Client - Web Only (Version: 10.200.2650)

Compatibility Pack for the 2007 Office system (Version: 12.0.6514.5001)

Dell Backup and Recovery Manager (Version: 1.2.0)

DesignBook

Diagnostic Utility (Version: 1.00.0000)

DoorsNXT version 2.4 (Version: 2.4)

Enterprise Pro Surveillance System(Basic)

ESSBrwr (Version: 8.02.0000.0001)

ESSCDBK (Version: 8.02.0000.0001)

ESScore (Version: 8.02.0000.0001)

ESSgui (Version: 8.02.0000.0001)

ESSini (Version: 8.02.0000.0001)

ESSPCD (Version: 8.02.0000.0001)

ESSPDock (Version: 6.03.0001.0004)

ESSTOOLS (Version: 5.00.0000.0004)

essvatgt (Version: 8.00.0000.0001)

exacqVision Client (Version: 4.0.11.20210)

FaxSendInstaller (Version: 1.0.1)

FaxSetupInstaller (Version: 1.0.1)

fflink (Version: 6.02.1001.0001)

Google Update Helper (Version: 1.3.21.79)

HP LaserJet M1319 MFP Series

HP LaserJet M1319 MFP Series Toolbox (Version: 1.0.11)

HP LaserJet Toolbox (Version: 1.0.61)

hppusgM1310 (Version: 000.000.00004)

Intel® Graphics Media Accelerator Driver

Intel® Graphics Media Accelerator Driver (Version: 6.14.10.5225)

Intel® Matrix Storage Manager

Java Auto Updater (Version: 2.0.5.1)

Java 6 Update 26 (Version: 6.0.260)

KeyView for Lotus 97

Kodak EasyShare software

LiveUpdate 1.7 (Symantec Corporation)

LogMeIn (Version: 4.1.1310)

Malwarebytes' Anti-Malware

MarketResearch (Version: 100.0.170.000)

Memorial Designer 4.1 (Version: 4.1.0081)

MessageStudio 3.0

Microsoft .NET Framework 1.1 (Version: 1.1.4322)

Microsoft .NET Framework 1.1 Security Update (KB2656353)

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)

Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)

Microsoft .NET Framework 3.5 SP1

Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)

Microsoft Application Error Reporting (Version: 12.0.6012.5000)

Microsoft Kernel-Mode Driver Framework Feature Pack 1.5

Microsoft Office 2007 Service Pack 2 (SP2)

Microsoft Office Basic 2007 (Version: 12.0.6425.1000)

Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)

Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)

Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)

Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)

Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)

Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)

Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)

Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)

Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)

Microsoft Silverlight (Version: 4.1.10111.0)

Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6425.1000)

Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)

Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

Mozilla Firefox (3.6) (Version: 3.6 (en-US))

MrvlUsgTracking (Version: 1.0.7)

MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)

MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)

MSXML 6.0 Parser (KB927977) (Version: 6.00.3890.0)

netbrdg (Version: 7.01.0000.0001)

NVIDIA PhysX (Version: 9.09.0203)

OfotoXMI (Version: 8.02.1000.0001)

OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)

PowerDVD DX (Version: 8.2.5024)

QuickTime (Version: 7.50.61.0)

Realtek High Definition Audio Driver

ReceiveInstaller (Version: 1.0.1)

Roxio Creator Audio (Version: 3.7.0)

Roxio Creator Copy (Version: 3.7.0)

Roxio Creator Data (Version: 3.7.0)

Roxio Creator DE 10.3 (Version: 10.3)

Roxio Creator DE 10.3 (Version: 3.7.0)

Roxio Creator Tools (Version: 3.7.0)

Roxio Express Labeler 3 (Version: 3.2.2)

Roxio Update Manager (Version: 6.0.0)

Samsung Universal Print Driver (Version: 2.02.05.00:24)

Scan To (Version: 1.0.1)

SFR (Version: 8.01.0000.0001)

SHASTA (Version: 7.01.0000.0001)

skin0001 (Version: 8.02.0000.0001)

SKINXSDK (Version: 8.02.0000.0001)

Spybot - Search & Destroy (Version: 1.6.2)

staticcr (Version: 8.02.0000.0001)

System Requirements Lab for Intel (Version: 4.1.66.0)

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)

Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2597970) 32-Bit Edition

Update for Microsoft Office 2007 System (KB2539530)

Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition

Update for Microsoft Office Outlook 2007 (KB2583910)

Update for Windows Internet Explorer 8 (KB976662) (Version: 1)

Update for Windows Internet Explorer 8 (KB978506) (Version: 1)

Update for Windows Internet Explorer 8 (KB980182) (Version: 1)

Update for Windows XP (KB2141007) (Version: 1)

Update for Windows XP (KB2345886) (Version: 1)

Update for Windows XP (KB2467659) (Version: 1)

Update for Windows XP (KB2541763) (Version: 1)

Update for Windows XP (KB2607712) (Version: 1)

Update for Windows XP (KB2616676-v2) (Version: 2)

Update for Windows XP (KB2641690) (Version: 1)

Update for Windows XP (KB898461) (Version: 1)

Update for Windows XP (KB951618-v2) (Version: 2)

Update for Windows XP (KB951978) (Version: 1)

Update for Windows XP (KB955759) (Version: 1)

Update for Windows XP (KB961503) (Version: 1)

Update for Windows XP (KB967715) (Version: 1)

Update for Windows XP (KB968389) (Version: 1)

Update for Windows XP (KB971029) (Version: 1)

Update for Windows XP (KB971737) (Version: 1)

Update for Windows XP (KB973687) (Version: 1)

Update for Windows XP (KB973815) (Version: 1)

Update for Windows XP (KB978207) (Version: 1)

VPRINTOL (Version: 8.02.0000.0001)

WebFldrs XP (Version: 9.50.7523)

WinDirStat 1.1.2

Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)

Windows Genuine Advantage Validation Tool (KB892130)

Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)

Windows Internet Explorer 8 (Version: 20090308.140743)

Windows Live Sync (Version: 14.0.8089.726)

Windows Live Upload Tool (Version: 14.0.8014.1029)

Windows Presentation Foundation (Version: 3.0.6920.0)

Windows Search 4.0 (Version: 04.00.6001.503)

WIRELESS (Version: 8.02.0000.0001)

XML Paper Specification Shared Components Pack 1.0

========================= Devices: ================================

========================= Memory info: ===================================

Percentage of memory in use: 26%

Total physical RAM: 2012.91 MB

Available physical RAM: 1488.89 MB

Total Pagefile: 3905.39 MB

Available Pagefile: 3379 MB

Total Virtual: 2047.88 MB

Available Virtual: 1970.96 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:232.78 GB) (Free:197.97 GB) NTFS

2 Drive d: (matt) (CDROM) (Total:0.63 GB) (Free:0 GB) CDFS

3 Drive h: (272_GB) (Network) (Total:272.2 GB) (Free:125.71 GB) NTFS

4 Drive p: (272_GB) (Network) (Total:272.2 GB) (Free:125.71 GB) NTFS

5 Drive s: (272_GB) (Network) (Total:272.2 GB) (Free:125.71 GB) NTFS

6 Drive u: (272_GB) (Network) (Total:272.2 GB) (Free:125.71 GB) NTFS

7 Drive x: (Storage01) (Network) (Total:3725.93 GB) (Free:1106.46 GB) NTFS

========================= Users: ========================================

User accounts for \\JCASEYDESKTOP

Administrator Guest HelpAssistant

SUPPORT_388945a0

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

Link to post
Share on other sites

I hate to admint but I got a little impatient waiting for a reply and I was under pressure to get this running so I did a few things since posting the log.

What did you do?

Please note:

If you still have a problem, please try to re-install Mozilla Firefox and let me know.
Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.