Intercannizzole Posted October 20, 2010 ID:330525 Share Posted October 20, 2010 Logfile of Trend Micro HijackThis v2.0.4Scan saved at 3:21:25 PM, on 10/20/2010Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.18702)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Avira\AntiVir Desktop\sched.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\hkcmd.exeC:\WINDOWS\BCMSMMSG.exeC:\Program Files\Analog Devices\Core\smax4pnp.exeC:\WINDOWS\system32\dla\tfswctrl.exeC:\Program Files\LiveUpdate\LiveUpdate.exeC:\WINDOWS\system32\kmw_run.exeC:\Program Files\Windows Defender\MSASCui.exeC:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exeC:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exeC:\Program Files\Hp\HP Software Update\HPWuSchd2.exeC:\Program Files\Logitech\Logitech WebCam Software\LWS.exeC:\Program Files\Avira\AntiVir Desktop\avgnt.exeC:\Program Files\iTunes\iTunesHelper.exeC:\WINDOWS\system32\KMW_SHOW.EXEC:\Program Files\Common Files\Java\Java Update\jusched.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\HP\Digital Imaging\bin\hpqtra08.exeC:\Program Files\Mimeo.com\Mimeo Printing Service for NT\ECSTray.exeC:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exeC:\Program Files\Avira\AntiVir Desktop\avguard.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Avira\AntiVir Desktop\avshadow.exeC:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exeC:\Program Files\Common Files\Motive\McciCMService.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Nikon\WT-4 Setup Utility\NkPtpEnum.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\wuauclt.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exeC:\Program Files\HP\Digital Imaging\bin\hpqbam08.exeC:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exeC:\WINDOWS\system32\wscntfy.exeF:\HijackThis.exeR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localO2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dllO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dllO2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dllO2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dllO4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exeO4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exeO4 - HKLM\..\Run: [bCMSMMSG] BCMSMMSG.exeO4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exeO4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exeO4 - HKLM\..\Run: [storageGuard] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /rO4 - HKLM\..\Run: [MsgCenterExe] "C:\Program Files\Common Files\Real\Update_OB\RealOneMessageCenter.exe" -osbootO4 - HKLM\..\Run: [Openwares LiveUpdate] C:\Program Files\LiveUpdate\LiveUpdate.exeO4 - HKLM\..\Run: [kmw_run.exe] kmw_run.exeO4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hideO4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exeO4 - HKLM\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -schedulerO4 - HKLM\..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exeO4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exeO4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hideO4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /minO4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottimeO4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKUS\S-1-5-18\..\Run: [Windows IP Security Service] ipsecs.exe (User 'SYSTEM')O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')O4 - HKUS\S-1-5-18\..\RunServices: [Windows IP Security Service] ipsecs.exe (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [Windows IP Security Service] ipsecs.exe (User 'Default user')O4 - HKUS\.DEFAULT\..\RunServices: [Windows IP Security Service] ipsecs.exe (User 'Default user')O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exeO4 - Global Startup: Mimeo Quick Start.lnk = C:\Program Files\Mimeo.com\Mimeo Printing Service for NT\ECSTray.exeO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLLO9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dllO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO15 - Trusted Zone: http://*.mcafee.comO16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cabO16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocxO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLLO22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dllO22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dllO23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exeO23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exeO23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeO23 - Service: Automatic LiveUpdate Scheduler - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: Intuit Update Service (IntuitUpdateService) - Intuit Inc. - C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exeO23 - Service: LiveUpdate - Unknown owner - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE (file missing)O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exeO23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exeO23 - Service: NkPtpEnumWT3 - Nikon Corporation - C:\Program Files\Nikon\WT-4 Setup Utility\NkPtpEnum.exe--End of file - 9869 bytes Link to post Share on other sites More sharing options...
MrCharlie Posted October 21, 2010 ID:330663 Share Posted October 21, 2010 Welcome to the forum.Please do this:Download TFC to your desktop, it will clean out all the temp files on your system.Open the file and close any other windows.It will close all programs itself when run, make sure to let it run uninterrupted.Click the Start button to begin the process. The program should not take long to finish its jobOnce its finished it should reboot your machine, if not, do this yourself to ensure a complete clean------------------Next....Scan for malware:Please download Malwarebytes' Anti-Malware from HereDouble Click mbam-setup.exe to install the application.Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.If an update is found, it will download and install the latest version.Once the program has loaded, select "Perform Quick Scan", then click Scan.Note: -->Do not run a full scan with MBAM. It is not required or needed.The scan may take some time to finish,so please be patient.When the scan is complete, click OK, then Show Results to view the results.Make sure that everything is checked, and click Remove Selected.When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.Copy&Paste the entire report in your next reply along with a fresh HJT log.Note:If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediatly.MrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 21, 2010 Author ID:330724 Share Posted October 21, 2010 Welcome to the forum.Please do this:Download TFC to your desktop, it will clean out all the temp files on your system.Open the file and close any other windows.It will close all programs itself when run, make sure to let it run uninterrupted.Click the Start button to begin the process. The program should not take long to finish its jobOnce its finished it should reboot your machine, if not, do this yourself to ensure a complete clean------------------Next....Scan for malware:Please download Malwarebytes' Anti-Malware from HereDouble Click mbam-setup.exe to install the application.Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.If an update is found, it will download and install the latest version.Once the program has loaded, select "Perform Quick Scan", then click Scan.Note: -->Do not run a full scan with MBAM. It is not required or needed.The scan may take some time to finish,so please be patient.When the scan is complete, click OK, then Show Results to view the results.Make sure that everything is checked, and click Remove Selected.When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.Copy&Paste the entire report in your next reply along with a fresh HJT log.Note:If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediatly.MrCThank you for the much needed assistance. Please find the 2 requested logs. Additionally, now I cannot access the internet. Windows Firewall and ICS file is missing. TCIP config is unavailable also.hijackthis.logmbam_log_2010_10_20__21_39_03_.txt Link to post Share on other sites More sharing options...
MrCharlie Posted October 21, 2010 ID:330750 Share Posted October 21, 2010 OK, please do this: (I'm gone for tonight...be back tomorrow am)Please download and run ComboFix:A few notes first:ComboFix is compatible exclusively with W2K, XP, Vista, and Windows 7 (32-bit only). ComboFix must be run from an Administrative account.Vista and W7 users - Right click, choose "Run as Administrator"It must be downloaded to and run from your desktop.Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can and will interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".ComboFix Guide <---please read!---------------------------Download ComboFix from one of these locations:Link 1Link 2 * IMPORTANT !!! Save ComboFix.exe to your DesktopDisable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon and choose disable/exit. More info HERE<-------They may interfere with the running of ComboFix.Double click on ComboFix.exe & follow the prompts.Notes: Combofix will run without the Recovery Console installed. Skip the Recovery Console part if you're running Vista or Windows 7. Note: If you have SP3, use the SP2 package.If Vista or Windows 7, skip the Recovery Console partComboFix will check to see if the Microsoft Windows Recovery Console is installed. It's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:Click on Yes, to continue scanning for malware.When finished, it shall produce a log for you. Please include the C:\ComboFix.txt using Copy / Paste in your next reply.Notes:1.Do not mouse-click Combofix's window while it is running. That may cause it to stall.2. ComboFix may reset a number of Internet Explorer's settings, including making I-E the default browser.3. Combofix permanently prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security.Keeping Autorun enabled on USB and other removable drives has become a significant security risk due to the increasing number of malware variants that can infect them and transfer the infection to your computer. Read USB-Based Malware Attacks and Please disable Autorun ASAP!. 4. CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.If a reboot doesn't restore your connection, please try this:Check HEREFor XP systems download and run WinSockFixVista users: Check HERE Windows 7 systems: Download and run this Winsockfix.bat5.Give ComboFix at least 20-30 minutes to finish if needed.MrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 21, 2010 Author ID:330924 Share Posted October 21, 2010 OK, please do this: (I'm gone for tonight...be back tomorrow am)Please download and run ComboFix:A few notes first:ComboFix is compatible exclusively with W2K, XP, Vista, and Windows 7 (32-bit only). ComboFix must be run from an Administrative account.Vista and W7 users - Right click, choose "Run as Administrator"It must be downloaded to and run from your desktop.Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can and will interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".ComboFix Guide <---please read!---------------------------Download ComboFix from one of these locations:Link 1Link 2 * IMPORTANT !!! Save ComboFix.exe to your DesktopDisable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon and choose disable/exit. More info HERE<-------They may interfere with the running of ComboFix.Double click on ComboFix.exe & follow the prompts.Notes: Combofix will run without the Recovery Console installed. Skip the Recovery Console part if you're running Vista or Windows 7. Note: If you have SP3, use the SP2 package.If Vista or Windows 7, skip the Recovery Console partComboFix will check to see if the Microsoft Windows Recovery Console is installed. It's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:Click on Yes, to continue scanning for malware.When finished, it shall produce a log for you. Please include the C:\ComboFix.txt using Copy / Paste in your next reply.Notes:1.Do not mouse-click Combofix's window while it is running. That may cause it to stall.2. ComboFix may reset a number of Internet Explorer's settings, including making I-E the default browser.3. Combofix permanently prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security.Keeping Autorun enabled on USB and other removable drives has become a significant security risk due to the increasing number of malware variants that can infect them and transfer the infection to your computer. Read USB-Based Malware Attacks and Please disable Autorun ASAP!. 4. CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.If a reboot doesn't restore your connection, please try this:Check HEREFor XP systems download and run WinSockFixVista users: Check HERE Windows 7 systems: Download and run this Winsockfix.bat5.Give ComboFix at least 20-30 minutes to finish if needed.MrCThank you MrC. Have a good night.I installed CF and got to the prompt where it read that I need an active internet connection. So I clicked NO as I have no internet access.Should I run it anyway? My proxy is unchecked and I do have wireless connection. I have uninstalled my Broadcom NIC and rebooted. Windows Firewall and ISC Service is not started and cannot be started manually. Additionally, when I try to repair the connection it says "it could not query TCP/IP" Link to post Share on other sites More sharing options...
MrCharlie Posted October 21, 2010 ID:330936 Share Posted October 21, 2010 OK, you don't have to quote my posts, just use the add reply button at the bottom of my posts:------------------------------Try to run WinSockFix that's in my post.Let me know, MrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 21, 2010 Author ID:330990 Share Posted October 21, 2010 Thank you. Sorry about the protocol breach I will try this later today and get back to you. Thanks again Link to post Share on other sites More sharing options...
MrCharlie Posted October 21, 2010 ID:331005 Share Posted October 21, 2010 OK.....MrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 21, 2010 Author ID:331176 Share Posted October 21, 2010 MrC,Ran Combo Fix (see attached log)Still no connection to internet. Ran Winsock fix, no joy either.Still showing alert that windows firewall is disabled.Thanks.ComboFixlog.txt Link to post Share on other sites More sharing options...
Intercannizzole Posted October 21, 2010 Author ID:331179 Share Posted October 21, 2010 MrCAlso tried to "repair" the connection. Recieved the following:"Windows could not finish repairing the problem because the following action cannot be completed:Failed to query TCP/IP settings of the connection. Cannot proceed.ThanksIntercannizzole Link to post Share on other sites More sharing options...
MrCharlie Posted October 21, 2010 ID:331225 Share Posted October 21, 2010 Please run MBAM again:You can download the latest MBAM definitions hereMore info herePost the log.MrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 22, 2010 Author ID:331411 Share Posted October 22, 2010 MrC,Update MAB with the latest rules and ran. See attached Log file.I am also attaching a file from the 15th. I noticed that a TCP/IP file was infected and deleted. Could this be the problem? Please advise. Thank you again for all of your efforts.mbam_log_2010_10_21__20_44_41_.txtmbam_log_2010_10_15__16_42_51_.txt Link to post Share on other sites More sharing options...
MrCharlie Posted October 22, 2010 ID:331416 Share Posted October 22, 2010 No that's not the problem.Please try this:Download and run this fileReboot and try it, MrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 22, 2010 Author ID:331446 Share Posted October 22, 2010 MrC,Thanks. Downloaded and ran. No joy unfortunately. Thanks. Link to post Share on other sites More sharing options...
MrCharlie Posted October 22, 2010 ID:331451 Share Posted October 22, 2010 Download and run the file at the link blow:http://www.microsoft.com/downloads/en/deta...;displaylang=enReboot and try it, MrC Link to post Share on other sites More sharing options...
MrCharlie Posted October 22, 2010 ID:331468 Share Posted October 22, 2010 Another one to try:http://go.microsoft.com/?linkid=9662461I'm gone for tonight...be back tomorrow MrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 22, 2010 Author ID:331568 Share Posted October 22, 2010 MrC,Thanks. Still no luck. Link to post Share on other sites More sharing options...
MrCharlie Posted October 22, 2010 ID:331612 Share Posted October 22, 2010 Try repair your connection again, record any error message and post it.---------------------------------Take a look in your device manager for any red or yellow checks next to any devicesStart > Run > copy and paste this in > devmgmt.msc > OK------------------------------Go to Start > Run > copy and paste this in > Eventvwr.msc > OKTake a look under "system" and look through them and see if you can spot and error concerning your connection-----------------------------------Go to Start > Run > copy and paste this in netsh.exe diag gui > OKUnder scanning options > under categories > make sure all boxes are checkedNow click "Scan your system"When done > expand any items that have failed and copy and paste them back here.----------------------------Go to Start . Run > copy and paste this in:C:\WINDOWS\system32\cmd.exe /k C:\WINDOWS\system32\ipconfig.exeClick OKRight click on the window and choose select all > use Ctrl + C to copy and paste it into word > post it back here.MrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 23, 2010 Author ID:332055 Share Posted October 23, 2010 MrC,Tried all suggestions and ran commands. Here are the results. ThanksRepair Connection Error Message:Windows could not finish repairing the problem because the action cannot be completed:Failed to query TCP/IP settings of the connection Cannot proceedRan the C:\WINDOWS\system32\cmd.exe /k C:\WINDOWS\system32\ipconfig.exe No data came back.Event Viewer LogThe IP Network Address Translator service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: The dependency service or group failed to start. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.2 Errors in the Device Manager:IP Network Address TranslatorThis device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Click Troubleshoot to start the troubleshooter for this device.IPSEC driverThis device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Click Troubleshoot to start the troubleshooter for this device.NETDIALOGInternet Service Default Outlook Express Mail Not Configured Default Outlook Express News Not Configured Internet Explorer Web Proxy Not Configured Computer Information + Computer System TONYANDT-2YVEZK AdminPasswordStatus = 1 AutomaticResetBootOption = TRUE AutomaticResetCapability = TRUE BootOptionOnLimit = (empty) BootOptionOnWatchDog = (empty) BootROMSupported = TRUE BootupState = Normal boot Caption = TONYANDT-2YVEZK ChassisBootupState = 3 CreationClassName = Win32_ComputerSystem CurrentTimeZone = -240 DaylightInEffect = TRUE Description = AT/AT COMPATIBLE Domain = TANDTHOME DomainRole = 0 EnableDaylightSavingsTime = TRUE FrontPanelResetStatus = 2 InfraredSupported = FALSE InitialLoadInfo = (empty) InstallDate = (empty) KeyboardPasswordStatus = 2 LastLoadInfo = (empty) Manufacturer = Dell Computer Corporation Model = Dimension 2400 Name = TONYANDT-2YVEZK NameFormat = (empty) NetworkServerModeEnabled = TRUE NumberOfLogicalProcessors = 1 NumberOfProcessors = 1 OEMStringArray = www.dell.com PartOfDomain = FALSE PauseAfterReset = -1 PowerManagementCapabilities = (empty) PowerManagementSupported = (empty) PowerOnPasswordStatus = 1 PowerState = 0 PowerSupplyState = 3 PrimaryOwnerContact = (empty) PrimaryOwnerName = TonyandTracey ResetCapability = 1 ResetCount = -1 ResetLimit = -1 + Roles LM_Workstation LM_Server Print NT Status = OK SupportContactDescription = (empty) SystemStartupDelay = 30 + SystemStartupOptions "Microsoft Windows XP Professional" /fastdetect /noexecute=optin "Microsoft Windows XP Home Edition" /fastdetect SystemStartupSetting = 0 SystemType = X86-based PC ThermalState = 3 TotalPhysicalMemory = 803209216 UserName = TONYANDT-2YVEZK\Owner WakeUpType = 3 Workgroup = (empty) + Operating System Microsoft Windows XP Professional BootDevice = \Device\HarddiskVolume1 BuildNumber = 2600 BuildType = Uniprocessor Free Caption = Microsoft Windows XP Professional CodeSet = 1252 CountryCode = 1 CreationClassName = Win32_OperatingSystem CSCreationClassName = Win32_ComputerSystem CSDVersion = Service Pack 3 CSName = TONYANDT-2YVEZK CurrentTimeZone = -240 DataExecutionPrevention_32BitApplications = FALSE DataExecutionPrevention_Available = FALSE DataExecutionPrevention_Drivers = FALSE DataExecutionPrevention_SupportPolicy = 2 Debug = FALSE Description = Office Computer Distributed = FALSE EncryptionLevel = 168 ForegroundApplicationBoost = 2 FreePhysicalMemory = 401252 FreeSpaceInPagingFiles = 1478604 FreeVirtualMemory = 2053888 InstallDate = 9:50:50 AM 12/16/2006 LargeSystemCache = 0 LastBootUpTime = 9:02:22 PM 10/22/2010 LocalDateTime = 9:21:25 PM 10/22/2010 Locale = 0409 Manufacturer = Microsoft Corporation MaxNumberOfProcesses = -1 MaxProcessMemorySize = 2097024 Name = Microsoft Windows XP Professional|C:\WINDOWS|\Device\Harddisk0\Partition1 NumberOfLicensedUsers = (empty) NumberOfProcesses = 53 NumberOfUsers = 2 Organization = (empty) OSLanguage = 1033 OSProductSuite = (empty) OSType = 18 OtherTypeDescription = (empty) PlusProductID = (empty) PlusVersionNumber = (empty) Primary = TRUE ProductType = 1 QuantumLength = 0 QuantumType = 0 RegisteredUser = TonyandTracey SerialNumber = 76487-337-8312322-22896 ServicePackMajorVersion = 3 ServicePackMinorVersion = 0 SizeStoredInPagingFiles = 1920168 Status = OK SuiteMask = 272 SystemDevice = \Device\HarddiskVolume1 SystemDirectory = C:\WINDOWS\system32 SystemDrive = C: TotalSwapSpaceSize = (empty) TotalVirtualMemorySize = 2097024 TotalVisibleMemorySize = 784384 Version = 5.1.2600 WindowsDirectory = C:\WINDOWS + Version 5.1.2600 Version = 5.1.2600 BuildVersion = 2600.0000 Modems and Network Adapters + Modems + BCM V.92 56K Modem AnswerMode = (empty) AttachedTo = COM3 Availability = (empty) BlindOff = X4 BlindOn = X3 Caption = BCM V.92 56K Modem CompatibilityFlags = (empty) CompressionInfo = (empty) CompressionOff = %C0 CompressionOn = %C3 ConfigManagerErrorCode = 0 ConfigManagerUserConfig = FALSE ConfigurationDialog = modemui.dll CountriesSupported = (empty) CountrySelected = United States CreationClassName = Win32_PotsModem CurrentPasswords = (empty) + DCB 28 0 0 0 0 194 1 0 21 32 0 0 0 0 + Default 60 0 0 0 0 0 0 0 0 0 Description = BCM V.92 56K Modem DeviceID = PCI\VEN_14E4&DEV_4212&SUBSYS_00011028&REV_02\4&3B1CAF2B&0&28F0 DeviceLoader = (empty) DeviceType = Internal Modem DialType = (empty) DriverDate = 8:00:00 PM 8/26/2003 ErrorCleared = (empty) ErrorControlForced = \N2 ErrorControlInfo = (empty) ErrorControlOff = \N0 ErrorControlOn = \N3 ErrorDescription = (empty) FlowControlHard = &K3 FlowControlOff = &K0 FlowControlSoft = &K4 InactivityScale = "0a000000" InactivityTimeout = 0 Index = 0 InstallDate = (empty) LastErrorCode = (empty) MaxBaudRateToPhone = (empty) MaxBaudRateToSerialPort = 115200 MaxNumberOfPasswords = (empty) Model = BCM V.92 56K Modem ModemInfPath = oem20.inf ModemInfSection = BCM4211.Modem ModulationBell = B1 ModulationCCITT = B0 ModulationScheme = (empty) Name = BCM V.92 56K Modem PNPDeviceID = PCI\VEN_14E4&DEV_4212&SUBSYS_00011028&REV_02\4&3B1CAF2B&0&28F0 PortSubClass = "02" PowerManagementCapabilities = (empty) PowerManagementSupported = FALSE Prefix = AT + Properties 192 1 0 0 255 0 0 0 255 0 0 0 7 0 0 0 ProviderName = Broadcom Corporation Pulse = P Reset = AT&F ResponsesKeyName = BCM V.92 56K Modem::Broadcom Corporation::Broadcom Corporation RingsBeforeAnswer = (empty) SpeakerModeDial = M1 SpeakerModeOff = M0 SpeakerModeOn = M2 SpeakerModeSetup = M3 SpeakerVolumeHigh = L3 SpeakerVolumeInfo = (empty) SpeakerVolumeLow = L0 SpeakerVolumeMed = L2 Status = OK StatusInfo = 3 StringFormat = (empty) SupportsCallback = (empty) SupportsSynchronousConnect = (empty) SystemCreationClassName = Win32_ComputerSystem SystemName = TONYANDT-2YVEZK Terminator = TimeOfLastReset = (empty) Tone = T VoiceSwitchFeature = (empty) + Motorola Usb Modem AnswerMode = (empty) AttachedTo = COM4 Availability = (empty) BlindOff = (empty) BlindOn = (empty) Caption = Motorola Usb Modem CompatibilityFlags = (empty) CompressionInfo = (empty) CompressionOff = (empty) CompressionOn = (empty) ConfigManagerErrorCode = (empty) ConfigManagerUserConfig = (empty) ConfigurationDialog = modemui.dll CountriesSupported = (empty) CountrySelected = United States CreationClassName = Win32_PotsModem CurrentPasswords = (empty) + DCB 28 0 0 0 0 132 3 0 21 32 0 0 0 + Default 60 0 0 0 0 0 0 0 0 0 Description = Motorola Usb Modem DeviceID = Modem0 DeviceLoader = (empty) DeviceType = External Modem DialType = (empty) DriverDate = 8:00:00 PM 8/11/2005 ErrorCleared = (empty) ErrorControlForced = (empty) ErrorControlInfo = (empty) ErrorControlOff = (empty) ErrorControlOn = (empty) ErrorDescription = (empty) FlowControlHard = +IFC=2,2 FlowControlOff = +IFC=0,0 FlowControlSoft = +IFC=1,1 InactivityScale = "3c000000" InactivityTimeout = (empty) Index = 1 InstallDate = (empty) LastErrorCode = (empty) MaxBaudRateToPhone = (empty) MaxBaudRateToSerialPort = 115200 MaxNumberOfPasswords = (empty) Model = Motorola Usb Modem ModemInfPath = oem28.inf ModemInfSection = MADEVICE ModulationBell = (empty) ModulationCCITT = (empty) ModulationScheme = (empty) Name = Motorola Usb Modem PNPDeviceID = (empty) PortSubClass = "02" PowerManagementCapabilities = (empty) PowerManagementSupported = FALSE Prefix = AT + Properties 8 1 0 0 255 0 0 0 255 0 0 0 7 0 0 0 ProviderName = MobileAction Pulse = P Reset = ATZ ResponsesKeyName = Motorola Usb Modem::Mobile Action Technology Inc.::MobileAction RingsBeforeAnswer = (empty) SpeakerModeDial = (empty) SpeakerModeOff = (empty) SpeakerModeOn = (empty) SpeakerModeSetup = (empty) SpeakerVolumeHigh = (empty) SpeakerVolumeInfo = (empty) SpeakerVolumeLow = (empty) SpeakerVolumeMed = (empty) Status = Unknown StatusInfo = 2 StringFormat = (empty) SupportsCallback = (empty) SupportsSynchronousConnect = (empty) SystemCreationClassName = Win32_ComputerSystem SystemName = TONYANDT-2YVEZK Terminator = TimeOfLastReset = (empty) Tone = T VoiceSwitchFeature = (empty) + Nokia 6500 classic USB Modem AnswerMode = (empty) AttachedTo = COM6 Availability = (empty) BlindOff = X5 BlindOn = X3 Caption = Nokia 6500 classic USB Modem CompatibilityFlags = (empty) CompressionInfo = (empty) CompressionOff = +DS=0,0; CompressionOn = +DS=3,0; ConfigManagerErrorCode = (empty) ConfigManagerUserConfig = (empty) ConfigurationDialog = modemui.dll CountriesSupported = (empty) CountrySelected = United States CreationClassName = Win32_PotsModem CurrentPasswords = (empty) + DCB 28 0 0 0 0 8 7 0 21 32 0 0 0 0 + Default 60 0 0 0 0 0 0 0 0 0 Description = Nokia 6500 classic USB Modem DeviceID = Modem1 DeviceLoader = (empty) DeviceType = External Modem DialType = (empty) DriverDate = 8:00:00 PM 5/19/2009 ErrorCleared = (empty) ErrorControlForced = (empty) ErrorControlInfo = (empty) ErrorControlOff = (empty) ErrorControlOn = (empty) ErrorDescription = (empty) FlowControlHard = &K3 FlowControlOff = &K0 FlowControlSoft = &K4 InactivityScale = (empty) InactivityTimeout = (empty) Index = 2 InstallDate = (empty) LastErrorCode = (empty) MaxBaudRateToPhone = (empty) MaxBaudRateToSerialPort = 115200 MaxNumberOfPasswords = (empty) Model = Nokia 6500 classic USB Modem ModemInfPath = oem71.inf ModemInfSection = ModemDeviceInstall6500classic ModulationBell = B1 ModulationCCITT = B0 ModulationScheme = (empty) Name = Nokia 6500 classic USB Modem PNPDeviceID = (empty) PortSubClass = "02" PowerManagementCapabilities = (empty) PowerManagementSupported = FALSE Prefix = AT + Properties 128 0 0 0 255 0 0 0 0 0 0 0 0 0 0 0 ProviderName = Nokia Pulse = P Reset = ATZ ResponsesKeyName = Nokia 6500 classic USB Modem::Nokia::Nokia RingsBeforeAnswer = (empty) SpeakerModeDial = (empty) SpeakerModeOff = (empty) SpeakerModeOn = (empty) SpeakerModeSetup = (empty) SpeakerVolumeHigh = (empty) SpeakerVolumeInfo = (empty) SpeakerVolumeLow = (empty) SpeakerVolumeMed = (empty) Status = Unknown StatusInfo = 2 StringFormat = (empty) SupportsCallback = (empty) SupportsSynchronousConnect = (empty) SystemCreationClassName = Win32_ComputerSystem SystemName = TONYANDT-2YVEZK Terminator = TimeOfLastReset = (empty) Tone = T VoiceSwitchFeature = (empty) + Network Adapters + [00000001] RAS Async Adapter ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000001] RAS Async Adapter DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = RAS Async Adapter DHCPEnabled = FALSE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 1 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = (empty) MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = AsyncMac SettingID = {97E9E90E-2199-4B0D-BE0B-27BB3B2C5D7C} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) + [00000002] WAN Miniport (L2TP) ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000002] WAN Miniport (L2TP) DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = WAN Miniport (L2TP) DHCPEnabled = FALSE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 2 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = (empty) MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = Rasl2tp SettingID = {7A161491-7F7E-482F-A978-B4C02968869A} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) + [00000003] WAN Miniport (PPTP) ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000003] WAN Miniport (PPTP) DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = WAN Miniport (PPTP) DHCPEnabled = FALSE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 3 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = 50:50:54:50:30:30 MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = PptpMiniport SettingID = {A7F8CBDC-48F0-4924-A530-08ADF0CD476E} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) + [00000004] WAN Miniport (PPPOE) ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000004] WAN Miniport (PPPOE) DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = WAN Miniport (PPPOE) DHCPEnabled = FALSE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 4 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = 33:50:6F:45:30:30 MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = RasPppoe SettingID = {712BD10A-1C8E-42EB-9AF1-8E899E769779} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) + [00000005] Direct Parallel ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000005] Direct Parallel DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = Direct Parallel DHCPEnabled = FALSE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 5 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = (empty) MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = Raspti SettingID = {0175B268-4081-480A-B7A6-F83373EC9C23} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) + [00000006] WAN Miniport (IP) ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000006] WAN Miniport (IP) DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = WAN Miniport (IP) DHCPEnabled = FALSE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 6 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = (empty) MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = NdisWan SettingID = {E6D0BE6A-CDE8-4108-8B8B-9DFA68B03F33} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) + [00000007] Packet Scheduler Miniport ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000007] Packet Scheduler Miniport DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = Packet Scheduler Miniport DHCPEnabled = FALSE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 7 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = 20:99:20:52:41:53 MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = (empty) SettingID = {9D19F670-3F2F-4C94-A991-E2F1AB0429D3} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) - [00000008] Broadcom 440x 10/100 Integrated Controller ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000008] Broadcom 440x 10/100 Integrated Controller DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = Broadcom 440x 10/100 Integrated Controller DHCPEnabled = TRUE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 8 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = 00:0D:56:5B:9D:E3 MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = bcm4sbxp SettingID = {085F0718-C6F3-4374-8CE1-D88641CCFA50} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) + [00000009] Packet Scheduler Miniport ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000009] Packet Scheduler Miniport DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = Packet Scheduler Miniport DHCPEnabled = FALSE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 9 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = 00:0D:56:5B:9D:E3 MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = (empty) SettingID = {CD733FCA-F92D-4A96-80AC-F2FCEC65166C} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) + [00000010] Microsoft TV/Video Connection ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000010] Microsoft TV/Video Connection DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = Microsoft TV/Video Connection DHCPEnabled = TRUE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 10 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = (empty) MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = NdisIP SettingID = {BA503DF1-F352-48BD-909E-3A16C8A1B619} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) + [00000011] Microsoft Tun Miniport Adapter ArpAlwaysSourceRoute = (empty) ArpUseEtherSNAP = (empty) Caption = [00000011] Microsoft Tun Miniport Adapter DatabasePath = (empty) DeadGWDetectEnabled = (empty) DefaultTOS = (empty) DefaultTTL = (empty) Description = Microsoft Tun Miniport Adapter DHCPEnabled = FALSE DHCPLeaseExpires = (empty) DHCPLeaseObtained = (empty) DNSDomain = (empty) DNSDomainSuffixSearchOrder = (empty) DNSEnabledForWINSResolution = (empty) DNSHostName = (empty) DomainDNSRegistrationEnabled = (empty) ForwardBufferMemory = (empty) FullDNSRegistrationEnabled = (empty) GatewayCostMetric = (empty) IGMPLevel = (empty) Index = 11 IPConnectionMetric = (empty) IPEnabled = FALSE IPFilterSecurityEnabled = (empty) IPPortSecurityEnabled = (empty) IPSecPermitIPProtocols = (empty) IPSecPermitTCPPorts = (empty) IPSecPermitUDPPorts = (empty) IPSubnet = (empty) IPUseZeroBroadcast = (empty) IPXAddress = (empty) IPXEnabled = FALSE IPXFrameType = (empty) IPXMediaType = (empty) IPXNetworkNumber = (empty) IPXVirtualNetNumber = (empty) KeepAliveInterval = (empty) KeepAliveTime = (empty) MACAddress = 02:00:54:55:4E:01 MTU = (empty) NumForwardPackets = (empty) PMTUBHDetectEnabled = (empty) PMTUDiscoveryEnabled = (empty) ServiceName = tunmp SettingID = {71DEC8AB-7B2B-4458-99EB-E26CD770E61E} TcpipNetbiosOptions = (empty) TcpMaxConnectRetransmissions = (empty) TcpMaxDataRetransmissions = (empty) TcpNumConnections = (empty) TcpUseRFC1122UrgentPointer = (empty) TcpWindowSize = (empty) WINSEnableLMHostsLookup = (empty) WINSHostLookupFile = (empty) WINSScopeID = (empty) DNS Servers Default Gateways DHCP Servers IP Address WINS Servers + Network Clients + Microsoft Terminal Services Caption = (empty) Description = RDPNP InstallDate = (empty) Manufacturer = Microsoft Corporation Name = Microsoft Terminal Services Status = Unknown + Microsoft Windows Network Caption = Workstation Description = Creates and maintains client network connections to remote servers. If this service is stopped, these connections will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start. InstallDate = (empty) Manufacturer = Microsoft Corporation Name = Microsoft Windows Network Status = OK + Web Client Network Caption = WebClient Description = Enables Windows-based programs to create, access, and modify Internet-based files. If this service is stopped, these functions will not be available. If this service is disabled, any services that explicitly depend on it will fail to start. InstallDate = (empty) Manufacturer = Microsoft Corporation Name = Web Client Network Status = Unknown Link to post Share on other sites More sharing options...
MrCharlie Posted October 23, 2010 ID:332063 Share Posted October 23, 2010 Start with these:2 Errors in the Device Manager:IP Network Address TranslatorThis device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Click Troubleshoot to start the troubleshooter for this device. <---run thisIPSEC driverThis device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Click Troubleshoot to start the troubleshooter for this device. <----run thisLet me know, MrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 23, 2010 Author ID:332316 Share Posted October 23, 2010 There also was an IP Protocol Driver that was not functioning properly.I tried to troubleshoot and start the service, would not start.I tried to "uninstall" and think this was a major mistake as they are not plug and play.Now none of the 3 entries appear in the list.Should I throw in the towel and reformat or recover?Thanks. Link to post Share on other sites More sharing options...
MrCharlie Posted October 23, 2010 ID:332387 Share Posted October 23, 2010 Sometimes that's the best and quickest solution.Try running the system file checker and see what happens:http://www.updatexp.com/scannow-sfc.htmlMrC Link to post Share on other sites More sharing options...
Intercannizzole Posted October 28, 2010 Author ID:335129 Share Posted October 28, 2010 MrCThanks for all of your help. I had to format to get everything back working.You can close this case.CheersIntercannizzole Link to post Share on other sites More sharing options...
MrCharlie Posted October 28, 2010 ID:335184 Share Posted October 28, 2010 OK, thanks for letting me know.Take a look at My Preventive Maintenance to avoid being infected again.Good Luck and Thanks for using the forum, MrC Link to post Share on other sites More sharing options...
LDTate Posted October 31, 2010 ID:337339 Share Posted October 31, 2010 Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts