Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Someone has penetrated my firewall with ease

Started by notsosmart1 , Dec 21 2006 01:51 PM

  • Please log in to reply

#1
notsosmart1
Posted 21 December 2006 - 01:51 PM

notsosmart1

    Member

  • Member
  • PipPip
  • 56 posts
First, I wish to refer you to the following on Geeks to Go url in order to obtain a background on the matter. Obviously, originally I had no idea this was malware until today. The messages will explain. I don't know much, but someone very very good is doing this for unknown reasons. Since I know little, I dont't know what other information to provide other than what's in url. So I'll wait for questions.


http://www.geekstogo...s...=141632&hl=


I am having a hard time copying the url. Please, if this does not work, do a search for "Legitimate Folders and Files" under XP. i am truly grateful.

Edited by MFDnSC, 21 December 2006 - 04:35 PM.

  • 0

Advertisements

#2
notsosmart1
Posted 23 December 2006 - 10:07 AM

notsosmart1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 56 posts
Here is the log from Hijackthis: One more piece of interesting information. I am visiting my parents and using their router for my wiresless connection. NONE of the suspected files show up under "My Network Places". Router issue?

Below the Hijackthis logs, I am providing a System Info. Log. If not needed, please ignore. Thank you.

Logfile of HijackThis v1.99.1
Scan saved at 11:03:50 AM, on 12/23/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\pccguide.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
C:\Program Files\Apoint\Apntex.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe
C:\Program Files\Outlook Express\MSIMN.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Sam Sabella\Desktop\hijackthis\HijackThis.exe
C:\WINDOWS\system32\NOTEPAD.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = "C:\Program Files\Outlook Express\msimn.exe"
O2 - BHO: (no name) - {06647158-359E-4D10-A8DE-E6145DA90BE9} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [pccguide.exe] C:\PROGRA~1\TRENDM~1\INTERN~2\pccguide.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ClearAllHistory] C:\Program Files\ClearAllHistory\cah.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?LinkID=39204
O16 - DPF: {1EF9F042-C2EB-4293-8213-474CAEEF531D} (TmHcmsX Control) - http://www.trendsecu...vex/TmHcmsX.CAB
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1155060554797
O18 - Protocol: x-atng - {7E8717B0-D862-11D5-8C9E-00010304F989} - C:\Program Files\Fidelity Investments\Fidelity Active Trader\System\atngprot.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
O23 - Service: Trend Micro Protection Against Spyware (PcScnSrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe


System Info. Logs:

System Information report written at: 12/21/06 18:19:20
System Name: SMARTONE
[System Summary]

Item Value
OS Name Microsoft Windows XP Professional
Version 5.1.2600 Service Pack 2 Build 2600
OS Manufacturer Microsoft Corporation
System Name SMARTONE
System Manufacturer Dell Inc.
System Model Inspiron 9200
System Type X86-based PC
Processor x86 Family 6 Model 13 Stepping 6 GenuineIntel ~1594 Mhz
BIOS Version/Date Dell Inc. A00, 10/8/2004
SMBIOS Version 2.3
Windows Directory C:\WINDOWS
System Directory C:\WINDOWS\system32
Boot Device \Device\HarddiskVolume2
Locale United States
Hardware Abstraction Layer Version = "5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)"
User Name SMARTONE\Sam Sabella
Time Zone Eastern Standard Time
Total Physical Memory 1,024.00 MB
Available Physical Memory 409.08 MB
Total Virtual Memory 2.00 GB
Available Virtual Memory 1.96 GB
Page File Space 1.65 GB
Page File C:\pagefile.sys

[Hardware Resources]



[Conflicts/Sharing]

Resource Device
Memory Address 0xF0000000-0xF7FFFFFF Intel® 82855PM Processor to AGP Controller - 3341
Memory Address 0xF0000000-0xF7FFFFFF ATI MOBILITY RADEON 9700 Series

I/O Port 0x00000000-0x00000CF7 PCI bus
I/O Port 0x00000000-0x00000CF7 Direct memory access controller

I/O Port 0x000003C0-0x000003DF Intel® 82855PM Processor to AGP Controller - 3341
I/O Port 0x000003C0-0x000003DF ATI MOBILITY RADEON 9700 Series

IRQ 5 SDA Standard Compliant SD Host Controller
IRQ 5 Intel® PRO/Wireless 2200BG Network Connection
IRQ 5 SigmaTel C-Major Audio
IRQ 5 Conexant D110 MDC V.9x Modem

IRQ 11 ATI MOBILITY RADEON 9700 Series
IRQ 11 Intel® 82801DB/DBM USB Universal Host Controller - 24C2
IRQ 11 Intel® 82801DB/DBM USB Universal Host Controller - 24C4
IRQ 11 Intel® 82801DB/DBM USB Universal Host Controller - 24C7
IRQ 11 Intel® 82801DB/DBM USB 2.0 Enhanced Host Controller - 24CD
IRQ 11 Broadcom 440x 10/100 Integrated Controller
IRQ 11 Ricoh R/RL/5C476(II) or Compatible CardBus Controller
IRQ 11 OHCI Compliant IEEE 1394 Host Controller

Memory Address 0xA0000-0xBFFFF PCI bus
Memory Address 0xA0000-0xBFFFF Intel® 82855PM Processor to AGP Controller - 3341
Memory Address 0xA0000-0xBFFFF ATI MOBILITY RADEON 9700 Series

I/O Port 0x000003B0-0x000003BB Intel® 82855PM Processor to AGP Controller - 3341
I/O Port 0x000003B0-0x000003BB ATI MOBILITY RADEON 9700 Series

I/O Port 0x0000C000-0x0000CFFF Intel® 82855PM Processor to AGP Controller - 3341
I/O Port 0x0000C000-0x0000CFFF ATI MOBILITY RADEON 9700 Series


[DMA]

Resource Device Status
Channel 4 Direct memory access controller OK

[Forced Hardware]

Device PNP Device ID

[I/O]

Resource Device Status
0x00000000-0x00000CF7 PCI bus OK
0x00000000-0x00000CF7 Direct memory access controller OK
0x00000D00-0x0000FFFF PCI bus OK
0x0000C000-0x0000CFFF Intel® 82855PM Processor to AGP Controller - 3341 OK
0x0000C000-0x0000CFFF ATI MOBILITY RADEON 9700 Series OK
0x000003B0-0x000003BB Intel® 82855PM Processor to AGP Controller - 3341 OK
0x000003B0-0x000003BB ATI MOBILITY RADEON 9700 Series OK
0x000003C0-0x000003DF Intel® 82855PM Processor to AGP Controller - 3341 OK
0x000003C0-0x000003DF ATI MOBILITY RADEON 9700 Series OK
0x0000BF80-0x0000BF9F Intel® 82801DB/DBM USB Universal Host Controller - 24C2 OK
0x0000BF40-0x0000BF5F Intel® 82801DB/DBM USB Universal Host Controller - 24C4 OK
0x0000BF20-0x0000BF3F Intel® 82801DB/DBM USB Universal Host Controller - 24C7 OK
0x0000FE00-0x0000FEFF Ricoh R/RL/5C476(II) or Compatible CardBus Controller OK
0x0000FD00-0x0000FDFF Ricoh R/RL/5C476(II) or Compatible CardBus Controller OK
0x00000A79-0x00000A79 ISAPNP Read Data Port OK
0x00000279-0x00000279 ISAPNP Read Data Port OK
0x00000274-0x00000277 ISAPNP Read Data Port OK
0x00000060-0x00000060 Standard 101/102-Key or Microsoft Natural PS/2 Keyboard OK
0x00000064-0x00000064 Standard 101/102-Key or Microsoft Natural PS/2 Keyboard OK
0x00000070-0x00000071 System CMOS/real time clock OK
0x00000072-0x00000077 System CMOS/real time clock OK
0x00000040-0x00000043 System timer OK
0x00000050-0x00000053 System timer OK
0x00000061-0x00000061 System speaker OK
0x00000063-0x00000063 System speaker OK
0x00000065-0x00000065 System speaker OK
0x00000067-0x00000067 System speaker OK
0x0000002E-0x0000002F System board OK
0x00000900-0x0000097F System board OK
0x00000024-0x00000025 Programmable interrupt controller OK
0x00000028-0x00000029 Programmable interrupt controller OK
0x0000002C-0x0000002D Programmable interrupt controller OK
0x00000030-0x00000031 Programmable interrupt controller OK
0x00000034-0x00000035 Programmable interrupt controller OK
0x00000038-0x00000039 Programmable interrupt controller OK
0x0000003C-0x0000003D Programmable interrupt controller OK
0x000000A4-0x000000A5 Programmable interrupt controller OK
0x000000A8-0x000000A9 Programmable interrupt controller OK
0x000000AC-0x000000AD Programmable interrupt controller OK
0x000000B0-0x000000B1 Programmable interrupt controller OK
0x000000B4-0x000000B5 Programmable interrupt controller OK
0x000000B8-0x000000B9 Programmable interrupt controller OK
0x000000BC-0x000000BD Programmable interrupt controller OK
0x00000080-0x00000085 Direct memory access controller OK
0x00000087-0x0000008F Direct memory access controller OK
0x000000C0-0x000000DF Direct memory access controller OK
0x00000010-0x0000001F Direct memory access controller OK
0x00000090-0x00000091 Direct memory access controller OK
0x00000093-0x0000009F Direct memory access controller OK
0x000000F0-0x000000FF Numeric data processor OK
0x0000BFA0-0x0000BFAF Intel® 82801DBM Ultra ATA Storage Controller - 24CA OK
0x000001F0-0x000001F7 Primary IDE Channel OK
0x000003F6-0x000003F6 Primary IDE Channel OK
0x00000170-0x00000177 Secondary IDE Channel OK
0x00000376-0x00000376 Secondary IDE Channel OK
0x0000D800-0x0000D8FF SigmaTel C-Major Audio OK
0x0000DC40-0x0000DC7F SigmaTel C-Major Audio OK
0x0000D400-0x0000D4FF Conexant D110 MDC V.9x Modem OK
0x0000D080-0x0000D0FF Conexant D110 MDC V.9x Modem OK
0x00000092-0x00000092 System board OK
0x000000B2-0x000000B2 System board OK
0x00000020-0x00000021 System board OK
0x000000A0-0x000000A1 System board OK
0x000004D0-0x000004D1 System board OK
0x00000800-0x00000805 System board OK
0x00000808-0x0000080F System board OK
0x0000F400-0x0000F4FE System board OK
0x00000086-0x00000086 System board OK
0x000000B3-0x000000B3 System board OK
0x00000806-0x00000807 System board OK
0x00000810-0x0000085F System board OK
0x00000860-0x0000087F System board OK
0x00000880-0x000008BF System board OK
0x000008C0-0x000008DF System board OK
0x000008E0-0x000008FF System board OK

[IRQs]

Resource Device Status
IRQ 9 Microsoft ACPI-Compliant System OK
IRQ 11 ATI MOBILITY RADEON 9700 Series OK
IRQ 11 Intel® 82801DB/DBM USB Universal Host Controller - 24C2 OK
IRQ 11 Intel® 82801DB/DBM USB Universal Host Controller - 24C4 OK
IRQ 11 Intel® 82801DB/DBM USB Universal Host Controller - 24C7 OK
IRQ 11 Intel® 82801DB/DBM USB 2.0 Enhanced Host Controller - 24CD OK
IRQ 11 Broadcom 440x 10/100 Integrated Controller OK
IRQ 11 Ricoh R/RL/5C476(II) or Compatible CardBus Controller OK
IRQ 11 OHCI Compliant IEEE 1394 Host Controller OK
IRQ 5 SDA Standard Compliant SD Host Controller OK
IRQ 5 Intel® PRO/Wireless 2200BG Network Connection OK
IRQ 5 SigmaTel C-Major Audio OK
IRQ 5 Conexant D110 MDC V.9x Modem OK
IRQ 12 Alps Touch Pad OK
IRQ 1 Standard 101/102-Key or Microsoft Natural PS/2 Keyboard OK
IRQ 8 System CMOS/real time clock OK
IRQ 0 System timer OK
IRQ 13 Numeric data processor OK
IRQ 14 Primary IDE Channel OK
IRQ 15 Secondary IDE Channel OK
IRQ 2 System board OK

[Memory]

Resource Device Status
0x0000-0x9FBFF System board OK
0x9FC00-0x9FFFF System board OK
0xC0000-0xCFFFF System board OK
0xE0000-0xFFFFF System board OK
0x100000-0x3FFEFFFF System board OK
0x3FFF0000-0x3FFFFFFF System board OK
0xFEDA0000-0xFEDFFFFF System board OK
0xFFB00000-0xFFBFFFFF System board OK
0xA0000-0xBFFFF PCI bus OK
0xA0000-0xBFFFF Intel® 82855PM Processor to AGP Controller - 3341 OK
0xA0000-0xBFFFF ATI MOBILITY RADEON 9700 Series OK
0xD0000-0xDFFFF PCI bus OK
0x40000000-0xFED9FFFF PCI bus OK
0xFEE00000-0xFFAFFFFF PCI bus OK
0xFC000000-0xFDFFFFFF Intel® 82855PM Processor to AGP Controller - 3341 OK
0xF0000000-0xF7FFFFFF Intel® 82855PM Processor to AGP Controller - 3341 OK
0xF0000000-0xF7FFFFFF ATI MOBILITY RADEON 9700 Series OK
0xE8000000-0xEFFFFFFF Intel® 82855PM Processor to AGP Controller - 3341 OK
0xFCFF0000-0xFCFFFFFF ATI MOBILITY RADEON 9700 Series OK
0xF8FFFC00-0xF8FFFFFF Intel® 82801DB/DBM USB 2.0 Enhanced Host Controller - 24CD OK
0xFAFFE000-0xFAFFFFFF Broadcom 440x 10/100 Integrated Controller OK
0xFFAFE000-0xFFAFEFFF Ricoh R/RL/5C476(II) or Compatible CardBus Controller OK
0xFFAFD000-0xFFAFDFFF Ricoh R/RL/5C476(II) or Compatible CardBus Controller OK
0xE4000000-0xE7FFFFFF Ricoh R/RL/5C476(II) or Compatible CardBus Controller OK
0xDF000-0xDFFFF Ricoh R/RL/5C476(II) or Compatible CardBus Controller OK
0xFAFFD800-0xFAFFDFFF OHCI Compliant IEEE 1394 Host Controller OK
0xFAFFD400-0xFAFFD4FF SDA Standard Compliant SD Host Controller OK
0xFAFFC000-0xFAFFCFFF Intel® PRO/Wireless 2200BG Network Connection OK
0xFFAFFC00-0xFFAFFFFF Intel® 82801DBM Ultra ATA Storage Controller - 24CA OK
0xF8FFF800-0xF8FFF9FF SigmaTel C-Major Audio OK
0xF8FFF400-0xF8FFF4FF SigmaTel C-Major Audio OK

[Components]



[Multimedia]



[Audio Codecs]

CODEC Manufacturer Description Status File Version Size Creation Date
c:\windows\system32\l3codeca.acm Fraunhofer Institut Integrierte Schaltungen IIS Fraunhofer IIS MPEG Layer-3 Codec OK C:\WINDOWS\system32\L3CODECA.ACM 1, 9, 0, 0305 284.00 KB (290,816 bytes) 8/4/2004 7:00 AM
c:\windows\system32\iac25_32.ax Intel Corporation Indeo® audio software OK C:\WINDOWS\system32\IAC25_32.AX 2.05.53 195.00 KB (199,680 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msg723.acm Microsoft Corporation OK C:\WINDOWS\system32\MSG723.ACM 4.4.3400 116.00 KB (118,784 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msaud32.acm Microsoft Corporation Windows Media Audio Codec OK C:\WINDOWS\system32\MSAUD32.ACM 8.00.00.4487 288.00 KB (294,912 bytes) 8/4/2004 7:00 AM
c:\windows\system32\sl_anet.acm Sipro Lab Telecom Inc. Sipro Lab Telecom Audio Codec OK C:\WINDOWS\system32\SL_ANET.ACM 3.02 84.00 KB (86,016 bytes) 8/4/2004 7:00 AM
c:\windows\system32\tssoft32.acm DSP GROUP, INC. OK C:\WINDOWS\system32\TSSOFT32.ACM 1.01 8.00 KB (8,192 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msg711.acm Microsoft Corporation OK C:\WINDOWS\system32\MSG711.ACM 5.1.2600.0 (xpclient.010817-1148) 9.00 KB (9,216 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msgsm32.acm Microsoft Corporation OK C:\WINDOWS\system32\MSGSM32.ACM 5.1.2600.0 (xpclient.010817-1148) 19.50 KB (19,968 bytes) 8/4/2004 7:00 AM
c:\windows\system32\imaadp32.acm Microsoft Corporation OK C:\WINDOWS\system32\IMAADP32.ACM 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) 16.00 KB (16,384 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msadp32.acm Microsoft Corporation OK C:\WINDOWS\system32\MSADP32.ACM 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) 14.50 KB (14,848 bytes) 8/4/2004 7:00 AM

[Video Codecs]

CODEC Manufacturer Description Status File Version Size Creation Date
c:\windows\system32\mpg4c32.dll Microsoft Corporation Microsoft MPEG-4 Video Codec v1 OK C:\WINDOWS\system32\MPG4C32.DLL 3.01.0.2954 248.31 KB (254,272 bytes) 10/29/1998 10:34 AM
c:\windows\system32\ir50_32.dll Intel Corporation Indeo® video 5.10 OK C:\WINDOWS\system32\IR50_32.DLL R.5.10.15.2.55 737.50 KB (755,200 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msh261.drv Microsoft Corporation OK C:\WINDOWS\system32\MSH261.DRV 5.1.2600.2180 184.00 KB (188,416 bytes) 8/4/2004 7:00 AM
c:\windows\system32\tsbyuv.dll Microsoft Corporation OK C:\WINDOWS\system32\TSBYUV.DLL 5.1.2600.0 (XPClient.010817-1148) 8.00 KB (8,192 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msyuv.dll Microsoft Corporation OK C:\WINDOWS\system32\MSYUV.DLL 5.3.2600.2180 (xpsp_sp2_rtm.040803-2158) 17.00 KB (17,408 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msvidc32.dll Microsoft Corporation OK C:\WINDOWS\system32\MSVIDC32.DLL 5.1.2600.0 (xpclient.010817-1148) 25.00 KB (25,600 bytes) 8/4/2004 7:00 AM
c:\windows\system32\iccvid.dll Radius Inc. OK C:\WINDOWS\system32\ICCVID.DLL 1.10.0.11 78.50 KB (80,384 bytes) 8/4/2004 7:00 AM
c:\windows\system32\iyuv_32.dll Microsoft Corporation OK C:\WINDOWS\system32\IYUV_32.DLL 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) 46.50 KB (47,616 bytes) 8/4/2004 7:00 AM
c:\windows\system32\ir32_32.dll Intel® Corporation OK C:\WINDOWS\system32\IR32_32.DLL Not Available 194.50 KB (199,168 bytes) 8/4/2004 7:00 AM
c:\windows\system32\ir41_32.ax Intel Corporation OK C:\WINDOWS\system32\IR41_32.AX 4.51.16.03 828.50 KB (848,384 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msh263.drv Microsoft Corporation OK C:\WINDOWS\system32\MSH263.DRV 5.1.2600.2180 288.00 KB (294,912 bytes) 8/4/2004 7:00 AM
c:\windows\system32\msrle32.dll Microsoft Corporation OK C:\WINDOWS\system32\MSRLE32.DLL 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) 11.00 KB (11,264 bytes) 8/4/2004 7:00 AM

[CD-ROM]

Item Value
Drive D:
Description CD-ROM Drive
Media Loaded No
Media Type CD-ROM
Name SONY DVD+-RW DW-D56A
Manufacturer (Standard CD-ROM drives)
Status OK
Transfer Rate Not Available
SCSI Target ID 0
PNP Device ID IDE\CDROMSONY_DVD+-RW_DW-D56A____________________PDS3____\5&229E54FC&0&0.0.0
Driver c:\windows\system32\drivers\cdrom.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 48.38 KB (49,536 bytes), 8/4/2004 7:00 AM)

[Sound Device]

Item Value
Name SigmaTel C-Major Audio
Manufacturer SigmaTel
Status OK
PNP Device ID PCI\VEN_8086&DEV_24C5&SUBSYS_01A21028&REV_01\3&61AAA01&0&FD
I/O Port 0x0000D800-0x0000D8FF
I/O Port 0x0000DC40-0x0000DC7F
Memory Address 0xF8FFF800-0xF8FFF9FF
Memory Address 0xF8FFF400-0xF8FFF4FF
IRQ Channel IRQ 5
Driver c:\windows\system32\drivers\stac97.sys (5.10.4230, 263.80 KB (270,136 bytes), 1/1/1980 1:00 AM)

[Display]

Item Value
Name ATI MOBILITY RADEON 9700 Series
PNP Device ID PCI\VEN_1002&DEV_4E50&SUBSYS_20021028&REV_00\4&1BFA44D4&0&0008
Adapter Type ATI MOBILITY RADEON 9700 AGP (0x4E50), ATI Technologies Inc. compatible
Adapter Description ATI MOBILITY RADEON 9700 Series
Adapter RAM 128.00 MB (134,217,728 bytes)
Installed Drivers ati2dvag.dll
Driver Version 6.14.10.6483
INF File oem0.inf (ati2mtag_M10 section)
Color Planes 1
Color Table Entries 4294967296
Resolution 1440 x 900 x 60 hertz
Bits/Pixel 32
Memory Address 0xF0000000-0xF7FFFFFF
I/O Port 0x0000C000-0x0000CFFF
Memory Address 0xFCFF0000-0xFCFFFFFF
IRQ Channel IRQ 11
I/O Port 0x000003B0-0x000003BB
I/O Port 0x000003C0-0x000003DF
Memory Address 0xA0000-0xBFFFF
Driver c:\windows\system32\drivers\ati2mtag.sys (6.14.10.6483, 782.00 KB (800,768 bytes), 1/1/1980 1:00 AM)

[Infrared]

Item Value

[Input]



[Keyboard]

Item Value
Description Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Name Enhanced (101- or 102-key)
Layout 00000409
PNP Device ID ACPI\PNP0303\4&61F3B4B&0
Number of Function Keys 12
I/O Port 0x00000060-0x00000060
I/O Port 0x00000064-0x00000064
IRQ Channel IRQ 1
Driver c:\windows\system32\drivers\i8042prt.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 51.50 KB (52,736 bytes), 1/1/1980 1:00 AM)

[Pointing Device]

Item Value
Hardware Type Alps Touch Pad
Number of Buttons 2
Status OK
PNP Device ID ACPI\PNP0F13\4&61F3B4B&0
Power Management Supported No
Double Click Threshold 6
Handedness Right Handed Operation
IRQ Channel IRQ 12
Driver c:\windows\system32\drivers\i8042prt.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 51.50 KB (52,736 bytes), 1/1/1980 1:00 AM)

[Modem]

Item Value
Name Conexant D110 MDC V.9x Modem
Description Conexant D110 MDC V.9x Modem
Device ID PCI\VEN_8086&DEV_24C6&SUBSYS_542314F1&REV_01\3&61AAA01&0&FE
Device Type Internal Modem
Attached To COM3
Answer Mode Not Available
PNP Device ID PCI\VEN_8086&DEV_24C6&SUBSYS_542314F1&REV_01\3&61AAA01&0&FE
Provider Name Conexant
Modem INF Path oem3.inf
Modem INF Section ModemB
Blind Off X4
Blind On X3
Compression Off +DS=0;
Compression On +DS=3;
Error Control Forced +ES=3,2,4;
Error Control Off +ES=1,0,1;
Error Control On +ES=3,0,2;
Flow Control Hard +IFC=2,2;
Flow Control Off +IFC=0,0;
Flow Control Soft +IFC=1,1;
DCB 
Default <
Inactivity Timeout Not Available
Modulation Bell Not Available
Modulation CCITT Not Available
Prefix AT
Pulse P
Reset ATZ<cr>
Responses Key Name Conexant D110 MDC V.9x Modem::Conexant::Conexant
Speaker Mode Dial M1
Speaker Mode Off M0
Speaker Mode On M2
Speaker Mode Setup M3
Speaker Volume High L3
Speaker Volume Low L1
Speaker Volume Med L2
String Format Not Available
Terminator <cr>
Tone T
I/O Port 0x0000D400-0x0000D4FF
I/O Port 0x0000D080-0x0000D0FF
IRQ Channel IRQ 5

[Network]



[Adapter]

Item Value
Name [00000001] Broadcom 440x 10/100 Integrated Controller
Adapter Type Ethernet 802.3
Product Type Broadcom 440x 10/100 Integrated Controller
Installed Yes
PNP Device ID PCI\VEN_14E4&DEV_170C&SUBSYS_01A21028&REV_02\4&39A85202&0&00F0
Last Reset 12/21/2006 3:42 PM
Index 1
Service Name bcm4sbxp
IP Address 0.0.0.0
IP Subnet
Default IP Gateway Not Available
DHCP Enabled Yes
DHCP Server 192.168.2.1
DHCP Lease Expires 10/12/2006 5:48 AM
DHCP Lease Obtained 10/11/2006 5:48 AM
MAC Address 00:12:3F:D5:EE:D4
Memory Address 0xFAFFE000-0xFAFFFFFF
IRQ Channel IRQ 11
Driver c:\windows\system32\drivers\bcm4sbxp.sys (4.23.0.0 built by: WinDDK, 43.00 KB (44,032 bytes), 1/1/1980 1:00 AM)

Name [00000002] RAS Async Adapter
Adapter Type Not Available
Product Type RAS Async Adapter
Installed Yes
PNP Device ID Not Available
Last Reset 12/21/2006 3:42 PM
Index 2
Service Name AsyncMac
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available

Name [00000003] Packet Scheduler Miniport
Adapter Type Ethernet 802.3
Product Type Packet Scheduler Miniport
Installed Yes
PNP Device ID ROOT\MS_PSCHEDMP\0000
Last Reset 12/21/2006 3:42 PM
Index 3
Service Name
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 00:12:3F:D5:EE:D4
Driver c:\windows\system32\drivers\psched.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 67.50 KB (69,120 bytes), 8/4/2004 7:00 AM)

Name [00000004] WAN Miniport (L2TP)
Adapter Type Not Available
Product Type WAN Miniport (L2TP)
Installed Yes
PNP Device ID ROOT\MS_L2TPMINIPORT\0000
Last Reset 12/21/2006 3:42 PM
Index 4
Service Name Rasl2tp
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\rasl2tp.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 50.13 KB (51,328 bytes), 8/4/2004 7:00 AM)

Name [00000005] WAN Miniport (PPTP)
Adapter Type Wide Area Network (WAN)
Product Type WAN Miniport (PPTP)
Installed Yes
PNP Device ID ROOT\MS_PPTPMINIPORT\0000
Last Reset 12/21/2006 3:42 PM
Index 5
Service Name PptpMiniport
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 50:50:54:50:30:30
Driver c:\windows\system32\drivers\raspptp.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 47.25 KB (48,384 bytes), 8/4/2004 7:00 AM)

Name [00000006] WAN Miniport (PPPOE)
Adapter Type Wide Area Network (WAN)
Product Type WAN Miniport (PPPOE)
Installed Yes
PNP Device ID ROOT\MS_PPPOEMINIPORT\0000
Last Reset 12/21/2006 3:42 PM
Index 6
Service Name RasPppoe
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 33:50:6F:45:30:30
Driver c:\windows\system32\drivers\raspppoe.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 40.50 KB (41,472 bytes), 8/4/2004 7:00 AM)

Name [00000007] Direct Parallel
Adapter Type Not Available
Product Type Direct Parallel
Installed Yes
PNP Device ID ROOT\MS_PTIMINIPORT\0000
Last Reset 12/21/2006 3:42 PM
Index 7
Service Name Raspti
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\raspti.sys (5.1.2600.0 (xpclient.010817-1148), 16.13 KB (16,512 bytes), 8/4/2004 7:00 AM)

Name [00000008] WAN Miniport (IP)
Adapter Type Not Available
Product Type WAN Miniport (IP)
Installed Yes
PNP Device ID ROOT\MS_NDISWANIP\0000
Last Reset 12/21/2006 3:42 PM
Index 8
Service Name NdisWan
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\ndiswan.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 89.63 KB (91,776 bytes), 8/4/2004 7:00 AM)

Name [00000009] Packet Scheduler Miniport
Adapter Type Ethernet 802.3
Product Type Packet Scheduler Miniport
Installed Yes
PNP Device ID ROOT\MS_PSCHEDMP\0001
Last Reset 12/21/2006 3:42 PM
Index 9
Service Name
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address FA:9D:20:52:41:53
Driver c:\windows\system32\drivers\psched.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 67.50 KB (69,120 bytes), 8/4/2004 7:00 AM)

Name [00000010] Intel® PRO/Wireless 2200BG Network Connection
Adapter Type Ethernet 802.3
Product Type Intel® PRO/Wireless 2200BG Network Connection
Installed Yes
PNP Device ID PCI\VEN_8086&DEV_4220&SUBSYS_27218086&REV_05\4&39A85202&0&18F0
Last Reset 12/21/2006 3:42 PM
Index 10
Service Name w29n51
IP Address 192.168.2.2
IP Subnet 255.255.255.0
Default IP Gateway 192.168.2.1
DHCP Enabled Yes
DHCP Server 192.168.2.1
DHCP Lease Expires 12/22/2006 5:03 PM
DHCP Lease Obtained 12/21/2006 5:03 PM
MAC Address 00:12:F0:05:70:D0
Memory Address 0xFAFFC000-0xFAFFCFFF
IRQ Channel IRQ 5
Driver c:\windows\system32\drivers\w29n51.sys (9000-61 Driver, 3.06 MB (3,210,496 bytes), 1/1/1980 1:00 AM)

Name [00000011] Intel Wireless Connection Agent Miniport
Adapter Type Ethernet 802.3
Product Type Intel Wireless Connection Agent Miniport
Installed Yes
PNP Device ID ROOT\INTEL_WCAMP\0000
Last Reset 12/21/2006 3:42 PM
Index 11
Service Name
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 00:12:F0:05:70:D0
Driver c:\windows\system32\drivers\iwca.sys (9.00.0.17 built by: WinDDK, 229.00 KB (234,496 bytes), 8/12/2004 10:44 AM)

Name [00000012] Packet Scheduler Miniport
Adapter Type Ethernet 802.3
Product Type Packet Scheduler Miniport
Installed Yes
PNP Device ID ROOT\MS_PSCHEDMP\0002
Last Reset 12/21/2006 3:42 PM
Index 12
Service Name
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 00:12:F0:05:70:D0
Driver c:\windows\system32\drivers\psched.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 67.50 KB (69,120 bytes), 8/4/2004 7:00 AM)

Name [00000013] 1394 Net Adapter
Adapter Type Not Available
Product Type 1394 Net Adapter
Installed Yes
PNP Device ID Not Available
Last Reset 12/21/2006 3:42 PM
Index 13
Service Name NIC1394
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled Yes
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available

Name [00000014] 1394 Net Adapter
Adapter Type Ethernet 802.3
Product Type 1394 Net Adapter
Installed Yes
PNP Device ID V1394\NIC1394\3FFFFFFF5B4FC000
Last Reset 12/21/2006 3:42 PM
Index 14
Service Name NIC1394
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled Yes
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address C2:0A:08:1A:0C:D6
Driver c:\windows\system32\drivers\nic1394.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 60.38 KB (61,824 bytes), 8/4/2004 7:00 AM)

Name [00000015] Trend Micro Common Firewall Miniport
Adapter Type Ethernet 802.3
Product Type Trend Micro Common Firewall Miniport
Installed Yes
PNP Device ID ROOT\TM_CFWMP\0000
Last Reset 12/21/2006 3:42 PM
Index 15
Service Name tmcfw
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 00:12:F0:05:70:D0
Driver c:\windows\system32\drivers\tm_cfw.sys (3.0.0.1060, 275.00 KB (281,600 bytes), 8/24/2006 10:58 PM)

Name [00000016] Trend Micro Common Firewall Miniport
Adapter Type Ethernet 802.3
Product Type Trend Micro Common Firewall Miniport
Installed Yes
PNP Device ID ROOT\TM_CFWMP\0001
Last Reset 12/21/2006 3:42 PM
Index 16
Service Name tmcfw
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 00:12:3F:D5:EE:D4
Driver c:\windows\system32\drivers\tm_cfw.sys (3.0.0.1060, 275.00 KB (281,600 bytes), 8/24/2006 10:58 PM)

Name [00000017] Trend Micro Common Firewall Miniport
Adapter Type Ethernet 802.3
Product Type Trend Micro Common Firewall Miniport
Installed Yes
PNP Device ID ROOT\TM_CFWMP\0002
Last Reset 12/21/2006 3:42 PM
Index 17
Service Name tmcfw
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address FA:9D:20:52:41:53
Driver c:\windows\system32\drivers\tm_cfw.sys (3.0.0.1060, 275.00 KB (281,600 bytes), 8/24/2006 10:58 PM)

[Protocol]

Item Value
Name MSAFD Tcpip [TCP/IP]
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 16 bytes
Maximum Message Size 0 bytes
Message Oriented No
Minimum Address Size 16 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data Yes
Supports Graceful Closing Yes
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD Tcpip [UDP/IP]
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 16 bytes
Maximum Message Size 63.93 KB (65,467 bytes)
Message Oriented Yes
Minimum Address Size 16 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting Yes

Name RSVP UDP Service Provider
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 16 bytes
Maximum Message Size 63.93 KB (65,467 bytes)
Message Oriented Yes
Minimum Address Size 16 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption Yes
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting Yes

Name RSVP TCP Service Provider
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 16 bytes
Maximum Message Size 0 bytes
Message Oriented No
Minimum Address Size 16 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption Yes
Supports Expedited Data Yes
Supports Graceful Closing Yes
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{E760C410-48E2-4AA3-AAEC-2A90E5C2E96A}] SEQPACKET 5
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{E760C410-48E2-4AA3-AAEC-2A90E5C2E96A}] DATAGRAM 5
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{C8F7F799-B3D0-4FA5-9B2C-D4A24B607EFD}] SEQPACKET 4
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{C8F7F799-B3D0-4FA5-9B2C-D4A24B607EFD}] DATAGRAM 4
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{FEC21074-EF41-4D4D-BEA5-187599B9B853}] SEQPACKET 3
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{FEC21074-EF41-4D4D-BEA5-187599B9B853}] DATAGRAM 3
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{2C018F47-53A0-4373-AF1B-C88C5A1E0EA9}] SEQPACKET 0
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{2C018F47-53A0-4373-AF1B-C88C5A1E0EA9}] DATAGRAM 0
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{EA219350-B25F-4304-B0A7-CA6C15D25C3F}] SEQPACKET 1
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{EA219350-B25F-4304-B0A7-CA6C15D25C3F}] DATAGRAM 1
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{C8FB8631-14EB-4BD0-9EBA-74664FE3AF1E}] SEQPACKET 2
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{C8FB8631-14EB-4BD0-9EBA-74664FE3AF1E}] DATAGRAM 2
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth Yes
Supports Multicasting No

[WinSock]

Item Value
File c:\windows\system32\winsock.dll
Size 2.80 KB (2,864 bytes)
Version 3.10

File c:\windows\system32\wsock32.dll
Size 22.00 KB (22,528 bytes)
Version 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)

[Ports]



[Serial]

Item Value
Name Conexant D110 MDC V.9x Modem
Status OK
PNP Device ID PCI\VEN_8086&DEV_24C6&SUBSYS_542314F1&REV_01\3&61AAA01&0&FE
Maximum Input Buffer Size 0
Maximum Output Buffer Size No
Settable Baud Rate Yes
Settable Data Bits Yes
Settable Flow Control Yes
Settable Parity Yes
Settable Parity Check Yes
Settable Stop Bits Yes
Settable RLSD Yes
Supports RLSD Yes
Supports 16 Bit Mode No
Supports Special Characters No
Baud Rate 9600
Bits/Byte 8
Stop Bits 1
Parity None
Busy No
Abort Read/Write on Error No
Binary Mode Enabled Yes
Continue XMit on XOff No
CTS Outflow Control Yes
Discard NULL Bytes No
DSR Outflow Control 0
DSR Sensitivity 0
DTR Flow Control Type Enable
EOF Character 0
Error Replace Character 0
Error Replacement Enabled No
Event Character 0
Parity Check Enabled No
RTS Flow Control Type Handshake
XOff Character 19
XOffXMit Threshold 10
XOn Character 17
XOnXMit Threshold 10
XOnXOff InFlow Control 0
XOnXOff OutFlow Control 0
I/O Port 0x0000D400-0x0000D4FF
I/O Port 0x0000D080-0x0000D0FF
IRQ Channel IRQ 5

[Parallel]

Item Value

[Storage]



[Drives]

Item Value
Drive C:
Description Local Fixed Disk
Compressed No
File System NTFS
Size 52.12 GB (55,964,803,072 bytes)
Free Space 40.56 GB (43,551,014,912 bytes)
Volume Name
Volume Serial Number CCF54DBF

Drive D:
Description CD-ROM Disc

[Disks]

Item Value
Description Disk drive
Manufacturer (Standard disk drives)
Model HTS726060M9AT00
Bytes/Sector 512
Media Loaded Yes
Media Type Fixed&#x0009;hard disk media
Partitions 2
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 0
SCSI Target ID 0
Sectors/Track 63
Size 55.89 GB (60,011,642,880 bytes)
Total Cylinders 7,296
Total Sectors 117,210,240
Total Tracks 1,860,480
Tracks/Cylinder 255
Partition Disk #0, Partition #0
Partition Size 47.03 MB (49,319,424 bytes)
Partition Starting Offset 32,256 bytes
Partition Disk #0, Partition #1
Partition Size 52.12 GB (55,964,805,120 bytes)
Partition Starting Offset 49,351,680 bytes

[SCSI]

Item Value

[IDE]

Item Value
Name Intel® 82801DBM Ultra ATA Storage Controller - 24CA
Manufacturer Intel
Status OK
PNP Device ID PCI\VEN_8086&DEV_24CA&SUBSYS_01A21028&REV_01\3&61AAA01&0&F9
I/O Port 0x0000BFA0-0x0000BFAF
Memory Address 0xFFAFFC00-0xFFAFFFFF
Driver c:\windows\system32\drivers\pciide.sys (5.1.2600.0 (XPClient.010817-1148), 3.25 KB (3,328 bytes), 1/1/1980 1:00 AM)

Name Primary IDE Channel
Manufacturer (Standard IDE ATA/ATAPI controllers)
Status OK
PNP Device ID PCIIDE\IDECHANNEL\4&236913F3&0&0
I/O Port 0x000001F0-0x000001F7
I/O Port 0x000003F6-0x000003F6
IRQ Channel IRQ 14
Driver c:\windows\system32\drivers\atapi.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 93.13 KB (95,360 bytes), 1/1/1980 1:00 AM)

Name Secondary IDE Channel
Manufacturer (Standard IDE ATA/ATAPI controllers)
Status OK
PNP Device ID PCIIDE\IDECHANNEL\4&236913F3&0&1
I/O Port 0x00000170-0x00000177
I/O Port 0x00000376-0x00000376
IRQ Channel IRQ 15
Driver c:\windows\system32\drivers\atapi.sys (5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), 93.13 KB (95,360 bytes), 1/1/1980 1:00 AM)

[Printing]

Name Driver Port Name Server Name
Symantec Fax Starter Edition OLFAXDRV OLFModem
Samsung ML-1200 Series (Copy 2) Samsung ML-1200 Series USB002
Samsung ML-1200 Series (Copy 1) Samsung ML-1200 Series USB001
Samsung ML-1200 Series Samsung ML-1200 Series LPT1:
Intuit Internal Printer Amyuni PDF Converter 2.07 LPT1:
Fax Microsoft Shared Fax Driver SHRFAX:

[Problem Devices]

Device PNP Device ID Error Code

[USB]

Device PNP Device ID
Intel® 82801DB/DBM USB Universal Host Controller - 24C2 PCI\VEN_8086&DEV_24C2&SUBSYS_01A21028&REV_01\3&61AAA01&0&E8
USB Root Hub USB\ROOT_HUB\4&246D6C47&0
Intel® 82801DB/DBM USB Universal Host Controller - 24C4 PCI\VEN_8086&DEV_24C4&SUBSYS_01A21028&REV_01\3&61AAA01&0&E9
USB Root Hub USB\ROOT_HUB\4&2BD9FD88&0
Intel® 82801DB/DBM USB Universal Host Controller - 24C7 PCI\VEN_8086&DEV_24C7&SUBSYS_01A21028&REV_01\3&61AAA01&0&EA
USB Root Hub USB\ROOT_HUB\4&1AB1132&0
Intel® 82801DB/DBM USB 2.0 Enhanced Host Controller - 24CD PCI\VEN_8086&DEV_24CD&SUBSYS_01A21028&REV_01\3&61AAA01&0&EF
USB Root Hub USB\ROOT_HUB20\4&99E1457&0

[Software Environment]



[System Drivers]

Name Description File Type Started Start Mode State Status Error Control Accept Pause Accept Stop
abiosdsk Abiosdsk Not Available Kernel Driver No Disabled Stopped OK Ignore No No
abp480n5 abp480n5 c:\windows\system32\drivers\abp480n5.sys Kernel Driver Yes Boot Running OK Normal No Yes
acpi Microsoft ACPI Driver c:\windows\system32\drivers\acpi.sys Kernel Driver Yes Boot Running OK Normal No Yes
acpiec ACPIEC c:\windows\system32\drivers\acpiec.sys Kernel Driver No Disabled Stopped OK Normal No No
adpu160m adpu160m c:\windows\system32\drivers\adpu160m.sys Kernel Driver Yes Boot Running OK Normal No Yes
aec Microsoft Kernel Acoustic Echo Canceller c:\windows\system32\drivers\aec.sys Kernel Driver No Manual Stopped OK Normal No No
aegisp AEGIS Protocol (IEEE 802.1x) v3.1.0.1 c:\windows\system32\drivers\aegisp.sys Kernel Driver Yes Auto Running OK Normal No Yes
afd AFD c:\windows\system32\drivers\afd.sys Kernel Driver Yes System Running OK Normal No Yes
agp440 Intel AGP Bus Filter c:\windows\system32\drivers\agp440.sys Kernel Driver Yes Boot Running OK Normal No Yes
agpcpq Compaq AGP Bus Filter c:\windows\system32\drivers\agpcpq.sys Kernel Driver Yes Boot Running OK Normal No Yes
aha154x Aha154x c:\windows\system32\drivers\aha154x.sys Kernel Driver Yes Boot Running OK Normal No Yes
aic78u2 aic78u2 c:\windows\system32\drivers\aic78u2.sys Kernel Driver Yes Boot Running OK Normal No Yes
aic78xx aic78xx c:\windows\system32\drivers\aic78xx.sys Kernel Driver Yes Boot Running OK Normal No Yes
aliide AliIde c:\windows\system32\drivers\aliide.sys Kernel Driver Yes Boot Running OK Normal No Yes
alim1541 ALI AGP Bus Filter c:\windows\system32\drivers\alim1541.sys Kernel Driver Yes Boot Running OK Normal No Yes
amdagp AMD AGP Bus Filter Driver c:\windows\system32\drivers\amdagp.sys Kernel Driver Yes Boot Running OK Normal No Yes
amsint amsint c:\windows\system32\drivers\amsint.sys Kernel Driver Yes Boot Running OK Normal No Yes
apfiltrservice Alps Touch Pad Filter Driver for Windows 2000/XP c:\windows\system32\drivers\apfiltr.sys Kernel Driver Yes Manual Running OK Ignore No Yes
appdrv APPDRV c:\windows\system32\drivers\appdrv.sys Kernel Driver Yes System Running OK Normal No Yes
arp1394 1394 ARP Client Protocol c:\windows\system32\drivers\arp1394.sys Kernel Driver Yes Manual Running OK Normal No Yes
asc asc c:\windows\system32\drivers\asc.sys Kernel Driver Yes Boot Running OK Normal No Yes
asc3350p asc3350p c:\windows\system32\drivers\asc3350p.sys Kernel Driver Yes Boot Running OK Normal No Yes
asc3550 asc3550 c:\windows\system32\drivers\asc3550.sys Kernel Driver Yes Boot Running OK Normal No Yes
asyncmac RAS Asynchronous Media Driver c:\windows\system32\drivers\asyncmac.sys Kernel Driver No Manual Stopped OK Normal No No
atapi Standard IDE/ESDI Hard Disk Controller c:\windows\system32\drivers\atapi.sys Kernel Driver Yes Boot Running OK Normal No Yes
atdisk Atdisk Not Available Kernel Driver No Disabled Stopped OK Ignore No No
ati2mtag ati2mtag c:\windows\system32\drivers\ati2mtag.sys Kernel Driver Yes Manual Running OK Ignore No Yes
atmarpc ATM ARP Client Protocol c:\windows\system32\drivers\atmarpc.sys Kernel Driver No Manual Stopped OK Normal No No
audstub Audio Stub Driver c:\windows\system32\drivers\audstub.sys Kernel Driver Yes Manual Running OK Normal No Yes
bcm4sbxp Broadcom 440x 10/100 Integrated Controller XP Driver c:\windows\system32\drivers\bcm4sbxp.sys Kernel Driver Yes Manual Running OK Normal No Yes
beep Beep c:\windows\system32\drivers\beep.sys Kernel Driver Yes System Running OK Normal No Yes
bvrp_pci bvrp_pci c:\windows\system32\drivers\bvrp_pci.sys Kernel Driver No Manual Stopped OK Normal No No
cbidf cbidf c:\windows\system32\drivers\cbidf2k.sys Kernel Driver Yes Boot Running OK Normal No Yes
cbidf2k cbidf2k c:\windows\system32\drivers\cbidf2k.sys Kernel Driver No Disabled Stopped OK Normal No No
cd20xrnt cd20xrnt c:\windows\system32\drivers\cd20xrnt.sys Kernel Driver Yes Boot Running OK Normal No Yes
cdaudio Cdaudio c:\windows\system32\drivers\cdaudio.sys Kernel Driver No System Stopped OK Ignore No No
cdfs Cdfs c:\windows\system32\drivers\cdfs.sys File System Driver Yes Disabled Running OK Normal No Yes
cdrom CD-ROM Driver c:\windows\system32\drivers\cdrom.sys Kernel Driver Yes System Running OK Normal No Yes
changer Changer Not Available Kernel Driver No System Stopped OK Ignore No No
cmbatt Microsoft ACPI Control Method Battery Driver c:\windows\system32\drivers\cmbatt.sys Kernel Driver Yes Manual Running OK Normal No Yes
cmdide CmdIde c:\windows\system32\drivers\cmdide.sys Kernel Driver Yes Boot Running OK Normal No Yes
compbatt Microsoft Composite Battery Driver c:\windows\system32\drivers\compbatt.sys Kernel Driver Yes Boot Running OK Normal No Yes
cpqarray Cpqarray c:\windows\system32\drivers\cpqarray.sys Kernel Driver Yes Boot Running OK Normal No Yes
dac2w2k dac2w2k c:\windows\system32\drivers\dac2w2k.sys Kernel Driver Yes Boot Running OK Normal No Yes
dac960nt dac960nt c:\windows\system32\drivers\dac960nt.sys Kernel Driver Yes Boot Running OK Normal No Yes
disk Disk Driver c:\windows\system32\drivers\disk.sys Kernel Driver Yes Boot Running OK Normal No Yes
dmboot dmboot c:\windows\system32\drivers\dmboot.sys Kernel Driver No Disabled Stopped OK Normal No No
dmio Logical Disk Manager Driver c:\windows\system32\drivers\dmio.sys Kernel Driver Yes Boot Running OK Normal No Yes
dmload dmload c:\windows\system32\drivers\dmload.sys Kernel Driver No Disabled Stopped OK Normal No No
dmusic Microsoft Kernel DLS Syntheiszer c:\windows\system32\drivers\dmusic.sys Kernel Driver No Manual Stopped OK Normal No No
dpti2o dpti2o c:\windows\system32\drivers\dpti2o.sys Kernel Driver Yes Boot Running OK Normal No Yes
drmkaud Microsoft Kernel DRM Audio Descrambler c:\windows\system32\drivers\drmkaud.sys Kernel Driver No Manual Stopped OK Normal No No
drvmcdb drvmcdb c:\windows\system32\drivers\drvmcdb.sys Kernel Driver Yes Boot Running OK Ignore No Yes
drvnddm drvnddm c:\windows\system32\drivers\drvnddm.sys File System Driver Yes Auto Running OK Ignore No Yes
e100b Intel® PRO Adapter Driver c:\windows\system32\drivers\e100b325.sys Kernel Driver No Manual Stopped OK Normal No No
fastfat Fastfat c:\windows\system32\drivers\fastfat.sys File System Driver No Disabled Stopped OK Normal No No
fdc Floppy Disk Controller Driver c:\windows\system32\drivers\fdc.sys Kernel Driver No Manual Stopped OK Normal No No
fip
  • 0

#3
notsosmart1
Posted 25 December 2006 - 09:39 AM

notsosmart1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 56 posts
I have been researching the topic, and found some actions that I undertook long time ago and had forgotten about them. I believe there is an 80% chance they are the cause of my problem.

1. One year ago, I dowloaded a data base application, "Microsoft data access SDK 1.5".

2. I subsequently deleted the application through "Add or Remove".

3. yesterday, I found that some files still exist of MSDA SDK", which most, cannot be deleted. Plus I don't know all the files in the application.

4. MS site showed where the application is located in registry, and I found it.

5. I tried backing up the string on my desktop, but couldn't. It was stated that path is invalid.

6. This application also has a lot to do with MySqlServer, but not sure what.

7. If the registry string has no path, does this mean that deleting the string would be of no consequense?

Thanks.
  • 0

#4
notsosmart1
Posted 28 December 2006 - 11:57 AM

notsosmart1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 56 posts
Update:

Yesterday, I bought and ran Registry First Aid Paltinum and Spybot. RFA fixed 500+ errors. Spybot ran before RFA and found 5 spyware in Registry. The spybot results are attached
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP