everything is Super Slow...Please Help
Page 4 of 4
Page 4 of 4 • 1, 2, 3, 4
- raydan01Novice
-
OS : xp pro version 2002 service pack 3
Posts : 20
Rubies : 2754
Likes : 0
Antivirus Version Last Update Result
AhnLab-V3 2011.09.17.00 2011.09.17 -
AntiVir 7.11.14.223 2011.09.16 -
Antiy-AVL 2.0.3.7 2011.09.17 -
Avast 4.8.1351.0 2011.09.17 -
Avast5 5.0.677.0 2011.09.17 -
AVG 10.0.0.1190 2011.09.17 -
BitDefender 7.2 2011.09.17 -
ByteHero 1.0.0.1 2011.09.13 -
CAT-QuickHeal 11.00 2011.09.16 -
ClamAV 0.97.0.0 2011.09.17 -
Commtouch 5.3.2.6 2011.09.17 -
Comodo 10147 2011.09.17 -
DrWeb 5.0.2.03300 2011.09.17 -
Emsisoft 5.1.0.11 2011.09.17 -
eSafe 7.0.17.0 2011.09.15 -
eTrust-Vet 36.1.8566 2011.09.17 -
F-Prot 4.6.2.117 2011.09.17 -
F-Secure 9.0.16440.0 2011.09.17 -
Fortinet 4.3.370.0 2011.09.17 -
GData 22 2011.09.17 -
Ikarus T3.1.1.107.0 2011.09.17 -
Jiangmin 13.0.900 2011.09.17 -
K7AntiVirus 9.113.5150 2011.09.17 -
Kaspersky 9.0.0.837 2011.09.17 -
McAfee 5.400.0.1158 2011.09.17 -
McAfee-GW-Edition 2010.1D 2011.09.17 -
Microsoft 1.7604 2011.09.17 -
NOD32 6472 2011.09.17 -
Norman 6.07.11 2011.09.17 -
nProtect 2011-09-17.01 2011.09.17 -
Panda 10.0.3.5 2011.09.17 -
PCTools 8.0.0.5 2011.09.17 -
Prevx 3.0 2011.09.17 -
Rising 23.75.04.02 2011.09.16 -
Sophos 4.69.0 2011.09.17 -
SUPERAntiSpyware 4.40.0.1006 2011.09.17 -
Symantec 20111.2.0.82 2011.09.17 -
TheHacker 6.7.0.1.298 2011.09.17 -
TrendMicro 9.500.0.1008 2011.09.17 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.17 -
VBA32 3.12.16.4 2011.09.16 -
VIPRE 10504 2011.09.17 -
ViRobot 2011.9.17.4674 2011.09.17 -
VirusBuster 14.0.218.0 2011.09.17 -
Additional information
MD5 : 2b2c280c9da8b3a014f21ba1be3ed522
SHA1 : abe275bed3f49af85ba37a3f46166b3224d1a077
SHA256: 1c6c0e73cf2a38964a61e4bb373984f851089a1b9b6262a2c07f4cae1cbf3b32
AhnLab-V3 2011.09.17.00 2011.09.17 -
AntiVir 7.11.14.223 2011.09.16 -
Antiy-AVL 2.0.3.7 2011.09.17 -
Avast 4.8.1351.0 2011.09.17 -
Avast5 5.0.677.0 2011.09.17 -
AVG 10.0.0.1190 2011.09.17 -
BitDefender 7.2 2011.09.17 -
ByteHero 1.0.0.1 2011.09.13 -
CAT-QuickHeal 11.00 2011.09.16 -
ClamAV 0.97.0.0 2011.09.17 -
Commtouch 5.3.2.6 2011.09.17 -
Comodo 10147 2011.09.17 -
DrWeb 5.0.2.03300 2011.09.17 -
Emsisoft 5.1.0.11 2011.09.17 -
eSafe 7.0.17.0 2011.09.15 -
eTrust-Vet 36.1.8566 2011.09.17 -
F-Prot 4.6.2.117 2011.09.17 -
F-Secure 9.0.16440.0 2011.09.17 -
Fortinet 4.3.370.0 2011.09.17 -
GData 22 2011.09.17 -
Ikarus T3.1.1.107.0 2011.09.17 -
Jiangmin 13.0.900 2011.09.17 -
K7AntiVirus 9.113.5150 2011.09.17 -
Kaspersky 9.0.0.837 2011.09.17 -
McAfee 5.400.0.1158 2011.09.17 -
McAfee-GW-Edition 2010.1D 2011.09.17 -
Microsoft 1.7604 2011.09.17 -
NOD32 6472 2011.09.17 -
Norman 6.07.11 2011.09.17 -
nProtect 2011-09-17.01 2011.09.17 -
Panda 10.0.3.5 2011.09.17 -
PCTools 8.0.0.5 2011.09.17 -
Prevx 3.0 2011.09.17 -
Rising 23.75.04.02 2011.09.16 -
Sophos 4.69.0 2011.09.17 -
SUPERAntiSpyware 4.40.0.1006 2011.09.17 -
Symantec 20111.2.0.82 2011.09.17 -
TheHacker 6.7.0.1.298 2011.09.17 -
TrendMicro 9.500.0.1008 2011.09.17 -
TrendMicro-HouseCall 9.500.0.1008 2011.09.17 -
VBA32 3.12.16.4 2011.09.16 -
VIPRE 10504 2011.09.17 -
ViRobot 2011.9.17.4674 2011.09.17 -
VirusBuster 14.0.218.0 2011.09.17 -
Additional information
MD5 : 2b2c280c9da8b3a014f21ba1be3ed522
SHA1 : abe275bed3f49af85ba37a3f46166b3224d1a077
SHA256: 1c6c0e73cf2a38964a61e4bb373984f851089a1b9b6262a2c07f4cae1cbf3b32
- Dr JayHead Admin
-
Power of Youth!
OS : Windows 10 Home & Pro, Android, Linux
Arch. : x64 (64-bit)
Anti-Malware : Bitdefender Total Security
Posts : 15182
Rubies : 289573
Likes : 162
Please download SINO by Artellos.
Note: If you try to interact with the program once it’s started scanning it might appear to hang. The scan however will continue.
- Save SINO to a place you can remember and run SINO.exe. (If you downloaded the ZIP version you will need to extract it first)
- Then please check the following checkboxes:
- Code:
System Info
Services
Boot Check
Tasklist
Startup Items
Event Log
Ipconfig
Ping
Netstat
Hosts file
Shares
Routing Table
- Once checked, hit the Run Scan! button and wait for the program to finish the scan.
- A notepad window will pop up. Please copy all of the content into your next reply.
Note: If you try to interact with the program once it’s started scanning it might appear to hang. The scan however will continue.
- raydan01Novice
-
OS : xp pro version 2002 service pack 3
Posts : 20
Rubies : 2754
Likes : 0
System Investigator by Olrik
Log Created On: 1843_19-09-2011
SINO Version: 3.1.0.0
Total RAM: 1015 MB | Free RAM: 129 MB | Pagefile Size: 1678 MB
C: | 20979 MB out of 38154 MB Free | Local Fixed Disk
D: | None | CD-ROM Disc
<<<< System Information >>>>
Computer Name: OFFICE
Username: Administrator
Language Setting: ENU
Windows Directory: C:\WINDOWS
Windows Version: Windows XP Service Pack 3
Windows Mode: Normal
<<<< Tasklist >>>>
[System Idle Process] - Process ID: 0
[System] - Process ID: 4
[C:\WINDOWS\System32\smss.exe] - Process ID: 676
[csrss.exe] - Process ID: 764
[C:\WINDOWS\system32\winlogon.exe] - Process ID: 788
[C:\WINDOWS\system32\services.exe] - Process ID: 832
[C:\WINDOWS\system32\lsass.exe] - Process ID: 844
[C:\WINDOWS\system32\svchost.exe] - Process ID: 1012
[svchost.exe] - Process ID: 1116
[C:\WINDOWS\System32\svchost.exe] - Process ID: 1236
[C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe] - Process ID: 1272
[C:\WINDOWS\Explorer.EXE] - Process ID: 1552
[svchost.exe] - Process ID: 1576
[svchost.exe] - Process ID: 1692
[C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe] - Process ID: 1744
[C:\WINDOWS\system32\spoolsv.exe] - Process ID: 124
[svchost.exe] - Process ID: 1444
[C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe] - Process ID: 208
[C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe] - Process ID: 412
[C:\Program Files\LogMeIn\x86\RaMaint.exe] - Process ID: 280
[C:\Program Files\LogMeIn\x86\LogMeIn.exe] - Process ID: 2020
[C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe] - Process ID: 1952
[C:\Program Files\Spybot - Search & Destroy 2\SDHookSvc.exe] - Process ID: 760
[C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] - Process ID: 956
[C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe] - Process ID: 2168
[C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] - Process ID: 2316
[C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe] - Process ID: 3520
[alg.exe] - Process ID: 3608
[C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe] - Process ID: 2404
[C:\Program Files\LogMeIn\x86\LogMeInSystray.exe] - Process ID: 2412
[C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe] - Process ID: 2420
[C:\Program Files\Common Files\Symantec Shared\ccApp.exe] - Process ID: 1284
[C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] - Process ID: 2476
[C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] - Process ID: 2496
[C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe] - Process ID: 2836
[C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe] - Process ID: 2936
[C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\CalleridM.exe] - Process ID: 3096
[C:\Program Files\TouchKit\xTouchMon.exe] - Process ID: 3764
[C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe] - Process ID: 2600
[PresentationFontCache.exe] - Process ID: 3808
[C:\WINDOWS\system32\ctfmon.exe] - Process ID: 3208
[C:\Program Files\Microsoft Office\Office12\EXCEL.EXE] - Process ID: 2444
[C:\Program Files\Mozilla Firefox\firefox.exe] - Process ID: 1520
[C:\Program Files\Mozilla Firefox\plugin-container.exe] - Process ID: 2548
[C:\Program Files\Intuit\QuickBooks 2010\qbw32.exe] - Process ID: 2788
[C:\PROGRA~1\Intuit\QUICKB~1\QBDBMgr.exe] - Process ID: 1752
[C:\Program Files\Common Files\Intuit\QuickBooks\axlbridge.exe] - Process ID: 3824
[C:\PROGRA~1\Intuit\QUICKB~1\dbextclr11.exe] - Process ID: 2708
[C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SINO\SINO.exe] - Process ID: 3116
[wmiprvse.exe] - Process ID: 2432
<<<< Startup Items >>>>
[CalleridM.exe] - - C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\CalleridM.exe
[Xcharge.exe] - - C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Xcharge.exe
[Event Reminder.lnk.disabled] - - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Event Reminder.lnk.disabled
[LaunchTouchMon.lnk] - - C:\Program Files\TouchKit\LaunchTouchMon.exe
[McAfee Security Scan Plus.lnk] - - C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
[QuickBooks Update Agent.lnk] - - C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
[TotalMedia Backup Monitor.lnk.disabled] - - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\TotalMedia Backup Monitor.lnk.disabled
[ClearTKHandle] - - C:\Program Files\TouchKit\ClearTKHandle.exe
[Intuit SyncManager] - - C:\Program Files\Common Files\Intuit\Sync\IntuitSyncManager.exe startup
[Acrobat Assistant 8.0] - - "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
[LogMeIn GUI] - - "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
[ArcSoft Connection Service] - - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
[ccApp] - - "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
[SDTray] - - "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
[Adobe ARM] - - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
[ctfmon.exe] - - C:\WINDOWS\system32\ctfmon.exe
[FlashPlayerUpdate] - - C:\WINDOWS\system32\Macromed\Flash\FlashUtil10t_Plugin.exe -update plugin
<<<< MS Services >>>>
Application Layer Gateway Service (ALG) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\System32\alg.exe
Windows Audio (AudioSrv) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Background Intelligent Transfer Service (BITS) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Computer Browser (Browser) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
CryptSvc (CryptSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
DCOM Server Process Launcher (DcomLaunch) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k DcomLaunch
DHCP Client (Dhcp) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Logical Disk Manager (dmserver) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
DNS Client (Dnscache) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k NetworkService
Error Reporting Service (ERSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Event Log (Eventlog) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\services.exe
COM+ Event System (EventSystem) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Fast User Switching Compatibility (FastUserSwitchingCompatibility) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
Help and Support (helpsvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
HID Input Service (HidServ) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Server (LanmanServer) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Workstation (lanmanworkstation) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
TCP/IP NetBIOS Helper (LmHosts) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Network Connections (Netman) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Network Location Awareness (NLA) (Nla) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Plug and Play (PlugPlay) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\services.exe
IPSEC Services (PolicyAgent) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Protected Storage (ProtectedStorage) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Remote Access Connection Manager (RasMan) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Remote Registry (RemoteRegistry) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Remote Procedure Call (RPC) (RpcSs) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k rpcss
Security Accounts Manager (SamSs) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Task Scheduler (Schedule) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Secondary Logon (seclogon) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
System Event Notification (SENS) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Windows Firewall/Internet Connection Sharing (ICS) (SharedAccess) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Shell Hardware Detection (ShellHWDetection) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Print Spooler (Spooler) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\spoolsv.exe
System Restore Service (srservice) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
SSDP Discovery Service (SSDPSRV) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Telephony (TapiSrv) - Running [Manual | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Terminal Services (TermService) - Running [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k DComLaunch
Themes (Themes) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Distributed Link Tracking Client (TrkWks) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Windows Time (W32Time) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
WebClient (WebClient) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Windows Management Instrumentation (winmgmt) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Security Center (wscsvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Automatic Updates (wuauserv) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Wireless Zero Configuration (WZCSVC) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Alerter (Alerter) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Application Management (AppMgmt) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
ASP.NET State Service (aspnet_state) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
Indexing Service (CiSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\cisvc.exe
ClipBook (ClipSrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\clipsrv.exe
.NET Runtime Optimization Service v2.0.50727_X86 (clr_optimization_v2.0.50727_32) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
COM+ System Application (COMSysApp) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Logical Disk Manager Administrative Service (dmadmin) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\dmadmin.exe /com
Wired AutoConfig (Dot3svc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k dot3svc
Extensible Authentication Protocol Service (EapHost) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k eapsvcs
Health Key and Certificate Management Service (hkmsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
HTTP SSL (HTTPFilter) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k HTTPFilter
Windows CardSpace (idsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"
IMAPI CD-Burning COM Service (ImapiService) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\imapi.exe
Messenger (Messenger) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Microsoft Office Groove Audit Service (Microsoft Office Groove Audit Service) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe"
NetMeeting Remote Desktop Sharing (mnmsrvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\mnmsrvc.exe
Distributed Transaction Coordinator (MSDTC) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\msdtc.exe
Windows Installer (MSIServer) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\msiexec.exe /V
Network Access Protection Agent (napagent) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Network DDE (NetDDE) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\netdde.exe
Network DDE DSDM (NetDDEdsdm) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\netdde.exe
Net Logon (Netlogon) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Net.Tcp Port Sharing Service (NetTcpPortSharing) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"
NT LM Security Support Provider (NtLmSsp) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Removable Storage (NtmsSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Microsoft Office Diagnostics Service (odserv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE"
Office Source Engine (ose) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
Remote Access Auto Connection Manager (RasAuto) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Remote Desktop Help Session Manager (RDSessMgr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\sessmgr.exe
Routing and Remote Access (RemoteAccess) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Remote Procedure Call (RPC) Locator (RpcLocator) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\locator.exe
QoS RSVP (RSVP) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\rsvp.exe
Smart Card (SCardSvr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\SCardSvr.exe
Windows Image Acquisition (WIA) (stisvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k imgsvc
MS Software Shadow Copy Provider (SwPrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\dllhost.exe /Processid:{9DCE98EB-472F-4120-B366-02445F538216}
Performance Logs and Alerts (SysmonLog) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\smlogsvc.exe
Telnet (TlntSvr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\tlntsvr.exe
Universal Plug and Play Device Host (upnphost) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Uninterruptible Power Supply (UPS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\ups.exe
Volume Shadow Copy (VSS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\vssvc.exe
Portable Media Serial Number Service (WmdmPmSN) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Windows Management Instrumentation Driver Extensions (Wmi) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
WMI Performance Adapter (WmiApSrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\wbem\wmiapsrv.exe
Network Provisioning Service (xmlprov) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
<<<< Non-MS Services >>>>
ArcSoft Connect Daemon (ACDaemon) - Running [Auto | Stoppable | Pausable] - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
Symantec Event Manager (ccEvtMgr) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon
Symantec Settings Manager (ccSetMgr) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon
FLEXnet Licensing Service (FLEXnet Licensing Service) - Running [Manual | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"
LMIGuardianSvc (LMIGuardianSvc) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe"
LogMeIn Maintenance Service (LMIMaint) - Running [Auto | Stoppable | Pausable] - "C:\Program Files\LogMeIn\x86\RaMaint.exe"
LogMeIn (LogMeIn) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\LogMeIn\x86\LogMeIn.exe"
QBCFMonitorService (QBCFMonitorService) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe"
Spybot-S&D 2 Hooks Service (SDHookService) - Running [Auto | Stoppable | Not_Pausable] - C:\Program Files\Spybot - Search & Destroy 2\SDHookSvc.exe
Spybot-S&D 2 Scanner Service (SDScannerService) - Running [Auto | Stoppable | Pausable] - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
Spybot-S&D 2 Updating Service (SDUpdateService) - Running [Auto | Stoppable | Pausable] - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
Symantec Management Client (SmcService) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe"
Symantec Endpoint Protection (Symantec AntiVirus) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe"
Google Update Service (gupdate) (gupdate) - Stopped [Auto | Not_Stoppable | Not_Pausable] - C:\Program Files\Google\Update\GoogleUpdate.exe /svc
Google Update Service (gupdatem) (gupdatem) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc
LiveUpdate (LiveUpdate) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE"
McAfee Security Scan Component Host Service (McComponentHostService) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe"
Intuit QuickBooks FCS (QBFCService) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe"
Symantec Network Access Control (SNAC) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE"
<<<< Boot.ini >>>>
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
[spybotsd]
timeout.old=30
<<<< Last 5 Application Errors or Warnings >>>>
Computer Name: OFFICE | ID: 4 | Source: QuickBooks | Type: Error | Date: 19-9-11 12:33:31 | Log: Application
Message: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Computer Name: OFFICE | ID: 4 | Source: QuickBooks | Type: Error | Date: 19-9-11 12:33:31 | Log: Application
Message: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Computer Name: OFFICE | ID: 4 | Source: QuickBooks | Type: Error | Date: 19-9-11 12:33:31 | Log: Application
Message: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Computer Name: OFFICE | ID: 74 | Source: Symantec AntiVirus | Type: Error | Date: 16-9-11 21:41:8 | Log: Application
Message:
TruScan has generated an error: code 14: description: CAL Failure
Computer Name: OFFICE | ID: 4 | Source: QuickBooks | Type: Error | Date: 16-9-11 16:53:47 | Log: Application
Message: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
<<<< Last 5 System Errors or Warnings >>>>
Computer Name: OFFICE | ID: 36 | Source: W32Time | Type: Warning | Date: 17-9-11 6:21:45 | Log: System
Message: The time service has not been able to synchronize the system time
for 49152 seconds because none of the time providers has been able to
provide a usable time stamp. The system clock is unsynchronized.
Computer Name: OFFICE | ID: 8021 | Source: BROWSER | Type: Warning | Date: 16-9-11 23:20:10 | Log: System
Message: The browser was unable to retrieve a list of servers from the browser master \\POSXP1 on the network \Device\NetBT_Tcpip_{83E2CACF-F68C-4646-9912-70C5311AC567}.
The data is the error code.
Computer Name: OFFICE | ID: 8003 | Source: MRxSmb | Type: Error | Date: 16-9-11 20:55:41 | Log: System
Message: The master browser has received a server announcement from the computer POSXP1
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{83E2CACF-F68C-4646-99.
The master browser is stopping or an election is being forced.
Computer Name: OFFICE | ID: 8021 | Source: BROWSER | Type: Warning | Date: 16-9-11 18:19:19 | Log: System
Message: The browser was unable to retrieve a list of servers from the browser master \\POSXP1 on the network \Device\NetBT_Tcpip_{83E2CACF-F68C-4646-9912-70C5311AC567}.
The data is the error code.
Computer Name: OFFICE | ID: 4 | Source: b57w2k | Type: Warning | Date: 16-9-11 16:22:40 | Log: System
Message: Broadcom NetXtreme Gigabit Ethernet for hp: The network link is down. Check to make sure the network cable is properly connected.
<<<< Special Events >>>>
There were no special events found
<<<< Ipconfig >>>>
Windows IP Configuration
Host Name . . . . . . . . . . . . : Office
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet for hp
Physical Address. . . . . . . . . : 00-11-85-F0-EC-90
Dhcp Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.2.150
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.2.1
DNS Servers . . . . . . . . . . . : 192.168.2.1
<<<< Pinging >>>>
OpenDNS Domain Test
Pinging to www.opendns.com [208.69.38.150]:
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 92ms - Maximum = 110ms
OpenDNS IP Test
Pinging to 208.69.38.150 [208.69.38.150]:
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 78ms - Maximum = 94ms
Kaspersky Domain Test
Pinging to www.kaspersky.com [195.27.252.18]:
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 92ms - Maximum = 110ms
Kaspersky IP Test
Pinging to 195.27.181.10 [195.27.181.10]:
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 93ms - Maximum = 108ms
YouTube Domain Test
Pinging to www.youtube.com [74.125.226.137]:
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 0ms - Maximum = 16ms
YouTube IP Test
Pinging to 66.102.9.136 [66.102.9.136]:
Packets: Sent = 4, Received = 0, Lost = 4
Minimum = 0ms - Maximum = 0ms
localhost Test
Pinging to 127.0.0.1 [127.0.0.1]:
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 0ms - Maximum = 0ms
<<<< Netstat >>>>
Active Connections
Proto Local Address Foreign Address State PID
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 1116
c:\windows\system32\WS2_32.dll
C:\WINDOWS\system32\RPCRT4.dll
c:\windows\system32\rpcss.dll
C:\WINDOWS\system32\svchost.exe
-- unknown component(s) --
[svchost.exe]
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4
[System]
TCP 0.0.0.0:2002 0.0.0.0:0 LISTENING 2020
[LogMeIn.exe]
TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING 1012
-- unknown component(s) --
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\RPCRT4.dll
C:\WINDOWS\system32\ole32.dll
[svchost.exe]
TCP 0.0.0.0:8019 0.0.0.0:0 LISTENING 1952
[QBCFMonitorService.exe]
TCP 0.0.0.0:21321 0.0.0.0:0 LISTENING 2316
[SDUpdSvc.exe]
TCP 0.0.0.0:21322 0.0.0.0:0 LISTENING 956
[SDFSSvc.exe]
TCP 0.0.0.0:21323 0.0.0.0:0 LISTENING 956
[SDFSSvc.exe]
TCP 0.0.0.0:21324 0.0.0.0:0 LISTENING 2476
[SDTray.exe]
TCP 127.0.0.1:1033 0.0.0.0:0 LISTENING 3608
[alg.exe]
TCP 127.0.0.1:1067 0.0.0.0:0 LISTENING 1284
[ccApp.exe]
TCP 192.168.2.150:139 0.0.0.0:0 LISTENING 4
[System]
TCP 127.0.0.1:1038 127.0.0.1:2002 ESTABLISHED 2412
[LogMeInSystray.exe]
TCP 127.0.0.1:2002 127.0.0.1:1038 ESTABLISHED 2020
[LogMeIn.exe]
TCP 127.0.0.1:3703 127.0.0.1:3704 ESTABLISHED 1520
[firefox.exe]
TCP 127.0.0.1:3704 127.0.0.1:3703 ESTABLISHED 1520
[firefox.exe]
TCP 127.0.0.1:3705 127.0.0.1:3706 ESTABLISHED 1520
[firefox.exe]
TCP 127.0.0.1:3706 127.0.0.1:3705 ESTABLISHED 1520
[firefox.exe]
TCP 192.168.2.150:1026 64.94.18.142:443 ESTABLISHED 2020
[LogMeIn.exe]
TCP 192.168.2.150:1828 74.125.226.149:443 ESTABLISHED 1520
[firefox.exe]
TCP 192.168.2.150:1979 74.125.226.149:443 ESTABLISHED 1520
[firefox.exe]
TCP 127.0.0.1:2123 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2124 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2125 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2126 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2127 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2128 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2129 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2130 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2131 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2132 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2133 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2134 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2135 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2136 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2137 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2138 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2139 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2140 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2141 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2142 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2143 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2144 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2145 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2146 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2147 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2148 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2149 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2150 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2151 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2152 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2153 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2154 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2155 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2156 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2157 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2158 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2159 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2160 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2161 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2162 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2163 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2164 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2165 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2166 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2167 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2168 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2169 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2170 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2171 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2172 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2174 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2175 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2176 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2177 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2178 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2179 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2180 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2181 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2182 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2183 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2184 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2185 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2186 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2187 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2188 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2189 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2190 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2191 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2192 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2193 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2194 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2195 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2196 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2197 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2198 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2199 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2200 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2201 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2202 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2203 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2204 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2205 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2206 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2207 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2208 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2210 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2212 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2213 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2214 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2215 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2217 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2218 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2219 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2220 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2221 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2222 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2223 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2224 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2225 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2226 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2227 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2228 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2229 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2230 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2231 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2232 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2233 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2234 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2235 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2236 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2237 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2238 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2239 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2240 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2241 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2242 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2243 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:21322 127.0.0.1:2211 TIME_WAIT 0
TCP 127.0.0.1:21322 127.0.0.1:2216 TIME_WAIT 0
TCP 127.0.0.1:21324 127.0.0.1:2209 TIME_WAIT 0
TCP 192.168.2.150:2000 74.125.226.149:443 TIME_WAIT 0
TCP 192.168.2.150:2005 74.125.226.128:80 TIME_WAIT 0
TCP 192.168.2.150:2010 65.55.8.8:80 TIME_WAIT 0
TCP 192.168.2.150:2011 74.125.226.155:80 TIME_WAIT 0
TCP 192.168.2.150:2012 96.17.10.41:80 TIME_WAIT 0
TCP 192.168.2.150:2014 204.144.140.26:80 TIME_WAIT 0
TCP 192.168.2.150:2043 74.125.226.146:80 TIME_WAIT 0
TCP 192.168.2.150:2044 74.125.226.141:443 TIME_WAIT 0
TCP 192.168.2.150:2069 72.14.204.141:80 TIME_WAIT 0
TCP 192.168.2.150:2070 72.247.147.51:80 TIME_WAIT 0
TCP 192.168.2.150:2073 74.125.226.156:80 TIME_WAIT 0
TCP 192.168.2.150:2074 74.125.226.133:443 TIME_WAIT 0
TCP 192.168.2.150:2076 74.125.226.153:80 TIME_WAIT 0
TCP 192.168.2.150:2080 74.125.226.153:80 TIME_WAIT 0
TCP 192.168.2.150:2082 74.125.226.156:80 TIME_WAIT 0
TCP 192.168.2.150:2109 74.125.226.140:80 TIME_WAIT 0
TCP 192.168.2.150:2110 72.14.204.113:80 TIME_WAIT 0
TCP 192.168.2.150:2121 69.163.167.204:80 TIME_WAIT 0
TCP 192.168.2.150:2173 69.163.234.194:80 TIME_WAIT 0
UDP 0.0.0.0:500 *:* 844
[lsass.exe]
UDP 0.0.0.0:1028 *:* 956
[SDFSSvc.exe]
UDP 0.0.0.0:4500 *:* 844
[lsass.exe]
UDP 0.0.0.0:21328 *:* 956
[SDFSSvc.exe]
UDP 0.0.0.0:445 *:* 4
[System]
UDP 127.0.0.1:123 *:* 1236
c:\windows\system32\WS2_32.dll
c:\windows\system32\w32time.dll
ntdll.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]
UDP 127.0.0.1:1900 *:* 1692
c:\windows\system32\WS2_32.dll
c:\windows\system32\ssdpsrv.dll
C:\WINDOWS\system32\ADVAPI32.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]
UDP 127.0.0.1:4107 *:* 2788
[qbw32.exe]
UDP 192.168.2.150:1900 *:* 1692
c:\windows\system32\WS2_32.dll
c:\windows\system32\ssdpsrv.dll
C:\WINDOWS\system32\ADVAPI32.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]
UDP 192.168.2.150:138 *:* 4
[System]
UDP 192.168.2.150:137 *:* 4
[System]
UDP 192.168.2.150:123 *:* 1236
c:\windows\system32\WS2_32.dll
c:\windows\system32\w32time.dll
ntdll.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]
<<<< Routing Table >>>>
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 11 85 f0 ec 90 ...... Broadcom NetXtreme Gigabit Ethernet for hp - Teefer2 Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.150 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.2.0 255.255.255.0 192.168.2.150 192.168.2.150 20
192.168.2.150 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.2.255 255.255.255.255 192.168.2.150 192.168.2.150 20
224.0.0.0 240.0.0.0 192.168.2.150 192.168.2.150 20
255.255.255.255 255.255.255.255 192.168.2.150 192.168.2.150 1
Default Gateway: 192.168.2.1
===========================================================================
Persistent Routes:
None
Route Table
<<<< Hosts File >>>>
The HOSTS file is 27 Bytes in size.
There were 0 lines which refer to an external IP address.
<<<< Active Shares >>>>
Share: IPC$ - Path:
Share: print$ - Path: C:\WINDOWS\system32\spool\drivers
Share: C - Path: C:\
Share: ADMIN$ - Path: C:\WINDOWS
Share: C$ - Path: C:\
Share: Office My Documents - Path: C:\Documents and Settings\Administrator\My Documents
------ End of File ------
Log Created On: 1843_19-09-2011
SINO Version: 3.1.0.0
Total RAM: 1015 MB | Free RAM: 129 MB | Pagefile Size: 1678 MB
C: | 20979 MB out of 38154 MB Free | Local Fixed Disk
D: | None | CD-ROM Disc
<<<< System Information >>>>
Computer Name: OFFICE
Username: Administrator
Language Setting: ENU
Windows Directory: C:\WINDOWS
Windows Version: Windows XP Service Pack 3
Windows Mode: Normal
<<<< Tasklist >>>>
[System Idle Process] - Process ID: 0
[System] - Process ID: 4
[C:\WINDOWS\System32\smss.exe] - Process ID: 676
[csrss.exe] - Process ID: 764
[C:\WINDOWS\system32\winlogon.exe] - Process ID: 788
[C:\WINDOWS\system32\services.exe] - Process ID: 832
[C:\WINDOWS\system32\lsass.exe] - Process ID: 844
[C:\WINDOWS\system32\svchost.exe] - Process ID: 1012
[svchost.exe] - Process ID: 1116
[C:\WINDOWS\System32\svchost.exe] - Process ID: 1236
[C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe] - Process ID: 1272
[C:\WINDOWS\Explorer.EXE] - Process ID: 1552
[svchost.exe] - Process ID: 1576
[svchost.exe] - Process ID: 1692
[C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe] - Process ID: 1744
[C:\WINDOWS\system32\spoolsv.exe] - Process ID: 124
[svchost.exe] - Process ID: 1444
[C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe] - Process ID: 208
[C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe] - Process ID: 412
[C:\Program Files\LogMeIn\x86\RaMaint.exe] - Process ID: 280
[C:\Program Files\LogMeIn\x86\LogMeIn.exe] - Process ID: 2020
[C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe] - Process ID: 1952
[C:\Program Files\Spybot - Search & Destroy 2\SDHookSvc.exe] - Process ID: 760
[C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] - Process ID: 956
[C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe] - Process ID: 2168
[C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] - Process ID: 2316
[C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe] - Process ID: 3520
[alg.exe] - Process ID: 3608
[C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe] - Process ID: 2404
[C:\Program Files\LogMeIn\x86\LogMeInSystray.exe] - Process ID: 2412
[C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe] - Process ID: 2420
[C:\Program Files\Common Files\Symantec Shared\ccApp.exe] - Process ID: 1284
[C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] - Process ID: 2476
[C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] - Process ID: 2496
[C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe] - Process ID: 2836
[C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe] - Process ID: 2936
[C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\CalleridM.exe] - Process ID: 3096
[C:\Program Files\TouchKit\xTouchMon.exe] - Process ID: 3764
[C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe] - Process ID: 2600
[PresentationFontCache.exe] - Process ID: 3808
[C:\WINDOWS\system32\ctfmon.exe] - Process ID: 3208
[C:\Program Files\Microsoft Office\Office12\EXCEL.EXE] - Process ID: 2444
[C:\Program Files\Mozilla Firefox\firefox.exe] - Process ID: 1520
[C:\Program Files\Mozilla Firefox\plugin-container.exe] - Process ID: 2548
[C:\Program Files\Intuit\QuickBooks 2010\qbw32.exe] - Process ID: 2788
[C:\PROGRA~1\Intuit\QUICKB~1\QBDBMgr.exe] - Process ID: 1752
[C:\Program Files\Common Files\Intuit\QuickBooks\axlbridge.exe] - Process ID: 3824
[C:\PROGRA~1\Intuit\QUICKB~1\dbextclr11.exe] - Process ID: 2708
[C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\SINO\SINO.exe] - Process ID: 3116
[wmiprvse.exe] - Process ID: 2432
<<<< Startup Items >>>>
[CalleridM.exe] -
[Xcharge.exe] -
[Event Reminder.lnk.disabled] -
[LaunchTouchMon.lnk] -
[McAfee Security Scan Plus.lnk] -
[QuickBooks Update Agent.lnk] -
[TotalMedia Backup Monitor.lnk.disabled] -
[ClearTKHandle] -
[Intuit SyncManager] -
[Acrobat Assistant 8.0] -
[LogMeIn GUI] -
[ArcSoft Connection Service] -
[ccApp] -
[SDTray] -
[Adobe ARM] -
[ctfmon.exe] -
[FlashPlayerUpdate] -
<<<< MS Services >>>>
Application Layer Gateway Service (ALG) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\System32\alg.exe
Windows Audio (AudioSrv) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Background Intelligent Transfer Service (BITS) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Computer Browser (Browser) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
CryptSvc (CryptSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
DCOM Server Process Launcher (DcomLaunch) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k DcomLaunch
DHCP Client (Dhcp) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Logical Disk Manager (dmserver) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
DNS Client (Dnscache) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k NetworkService
Error Reporting Service (ERSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Event Log (Eventlog) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\services.exe
COM+ Event System (EventSystem) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Fast User Switching Compatibility (FastUserSwitchingCompatibility) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
Help and Support (helpsvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
HID Input Service (HidServ) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Server (LanmanServer) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Workstation (lanmanworkstation) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
TCP/IP NetBIOS Helper (LmHosts) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Network Connections (Netman) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Network Location Awareness (NLA) (Nla) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Plug and Play (PlugPlay) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\services.exe
IPSEC Services (PolicyAgent) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Protected Storage (ProtectedStorage) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Remote Access Connection Manager (RasMan) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Remote Registry (RemoteRegistry) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Remote Procedure Call (RPC) (RpcSs) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k rpcss
Security Accounts Manager (SamSs) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Task Scheduler (Schedule) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Secondary Logon (seclogon) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
System Event Notification (SENS) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Windows Firewall/Internet Connection Sharing (ICS) (SharedAccess) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Shell Hardware Detection (ShellHWDetection) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Print Spooler (Spooler) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\spoolsv.exe
System Restore Service (srservice) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
SSDP Discovery Service (SSDPSRV) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Telephony (TapiSrv) - Running [Manual | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Terminal Services (TermService) - Running [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k DComLaunch
Themes (Themes) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Distributed Link Tracking Client (TrkWks) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Windows Time (W32Time) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
WebClient (WebClient) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Windows Management Instrumentation (winmgmt) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Security Center (wscsvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Automatic Updates (wuauserv) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Wireless Zero Configuration (WZCSVC) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Alerter (Alerter) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Application Management (AppMgmt) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
ASP.NET State Service (aspnet_state) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
Indexing Service (CiSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\cisvc.exe
ClipBook (ClipSrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\clipsrv.exe
.NET Runtime Optimization Service v2.0.50727_X86 (clr_optimization_v2.0.50727_32) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
COM+ System Application (COMSysApp) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Logical Disk Manager Administrative Service (dmadmin) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\dmadmin.exe /com
Wired AutoConfig (Dot3svc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k dot3svc
Extensible Authentication Protocol Service (EapHost) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k eapsvcs
Health Key and Certificate Management Service (hkmsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
HTTP SSL (HTTPFilter) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k HTTPFilter
Windows CardSpace (idsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"
IMAPI CD-Burning COM Service (ImapiService) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\imapi.exe
Messenger (Messenger) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Microsoft Office Groove Audit Service (Microsoft Office Groove Audit Service) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe"
NetMeeting Remote Desktop Sharing (mnmsrvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\mnmsrvc.exe
Distributed Transaction Coordinator (MSDTC) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\msdtc.exe
Windows Installer (MSIServer) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\msiexec.exe /V
Network Access Protection Agent (napagent) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Network DDE (NetDDE) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\netdde.exe
Network DDE DSDM (NetDDEdsdm) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\netdde.exe
Net Logon (Netlogon) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Net.Tcp Port Sharing Service (NetTcpPortSharing) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"
NT LM Security Support Provider (NtLmSsp) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Removable Storage (NtmsSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Microsoft Office Diagnostics Service (odserv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE"
Office Source Engine (ose) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
Remote Access Auto Connection Manager (RasAuto) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Remote Desktop Help Session Manager (RDSessMgr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\sessmgr.exe
Routing and Remote Access (RemoteAccess) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Remote Procedure Call (RPC) Locator (RpcLocator) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\locator.exe
QoS RSVP (RSVP) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\rsvp.exe
Smart Card (SCardSvr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\SCardSvr.exe
Windows Image Acquisition (WIA) (stisvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k imgsvc
MS Software Shadow Copy Provider (SwPrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\dllhost.exe /Processid:{9DCE98EB-472F-4120-B366-02445F538216}
Performance Logs and Alerts (SysmonLog) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\smlogsvc.exe
Telnet (TlntSvr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\tlntsvr.exe
Universal Plug and Play Device Host (upnphost) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Uninterruptible Power Supply (UPS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\ups.exe
Volume Shadow Copy (VSS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\vssvc.exe
Portable Media Serial Number Service (WmdmPmSN) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Windows Management Instrumentation Driver Extensions (Wmi) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
WMI Performance Adapter (WmiApSrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\wbem\wmiapsrv.exe
Network Provisioning Service (xmlprov) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
<<<< Non-MS Services >>>>
ArcSoft Connect Daemon (ACDaemon) - Running [Auto | Stoppable | Pausable] - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
Symantec Event Manager (ccEvtMgr) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon
Symantec Settings Manager (ccSetMgr) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon
FLEXnet Licensing Service (FLEXnet Licensing Service) - Running [Manual | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"
LMIGuardianSvc (LMIGuardianSvc) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe"
LogMeIn Maintenance Service (LMIMaint) - Running [Auto | Stoppable | Pausable] - "C:\Program Files\LogMeIn\x86\RaMaint.exe"
LogMeIn (LogMeIn) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\LogMeIn\x86\LogMeIn.exe"
QBCFMonitorService (QBCFMonitorService) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe"
Spybot-S&D 2 Hooks Service (SDHookService) - Running [Auto | Stoppable | Not_Pausable] - C:\Program Files\Spybot - Search & Destroy 2\SDHookSvc.exe
Spybot-S&D 2 Scanner Service (SDScannerService) - Running [Auto | Stoppable | Pausable] - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
Spybot-S&D 2 Updating Service (SDUpdateService) - Running [Auto | Stoppable | Pausable] - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
Symantec Management Client (SmcService) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe"
Symantec Endpoint Protection (Symantec AntiVirus) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe"
Google Update Service (gupdate) (gupdate) - Stopped [Auto | Not_Stoppable | Not_Pausable] - C:\Program Files\Google\Update\GoogleUpdate.exe /svc
Google Update Service (gupdatem) (gupdatem) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc
LiveUpdate (LiveUpdate) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE"
McAfee Security Scan Component Host Service (McComponentHostService) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe"
Intuit QuickBooks FCS (QBFCService) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe"
Symantec Network Access Control (SNAC) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE"
<<<< Boot.ini >>>>
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
[spybotsd]
timeout.old=30
<<<< Last 5 Application Errors or Warnings >>>>
Computer Name: OFFICE | ID: 4 | Source: QuickBooks | Type: Error | Date: 19-9-11 12:33:31 | Log: Application
Message: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Computer Name: OFFICE | ID: 4 | Source: QuickBooks | Type: Error | Date: 19-9-11 12:33:31 | Log: Application
Message: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Computer Name: OFFICE | ID: 4 | Source: QuickBooks | Type: Error | Date: 19-9-11 12:33:31 | Log: Application
Message: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Computer Name: OFFICE | ID: 74 | Source: Symantec AntiVirus | Type: Error | Date: 16-9-11 21:41:8 | Log: Application
Message:
TruScan has generated an error: code 14: description: CAL Failure
Computer Name: OFFICE | ID: 4 | Source: QuickBooks | Type: Error | Date: 16-9-11 16:53:47 | Log: Application
Message: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
<<<< Last 5 System Errors or Warnings >>>>
Computer Name: OFFICE | ID: 36 | Source: W32Time | Type: Warning | Date: 17-9-11 6:21:45 | Log: System
Message: The time service has not been able to synchronize the system time
for 49152 seconds because none of the time providers has been able to
provide a usable time stamp. The system clock is unsynchronized.
Computer Name: OFFICE | ID: 8021 | Source: BROWSER | Type: Warning | Date: 16-9-11 23:20:10 | Log: System
Message: The browser was unable to retrieve a list of servers from the browser master \\POSXP1 on the network \Device\NetBT_Tcpip_{83E2CACF-F68C-4646-9912-70C5311AC567}.
The data is the error code.
Computer Name: OFFICE | ID: 8003 | Source: MRxSmb | Type: Error | Date: 16-9-11 20:55:41 | Log: System
Message: The master browser has received a server announcement from the computer POSXP1
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{83E2CACF-F68C-4646-99.
The master browser is stopping or an election is being forced.
Computer Name: OFFICE | ID: 8021 | Source: BROWSER | Type: Warning | Date: 16-9-11 18:19:19 | Log: System
Message: The browser was unable to retrieve a list of servers from the browser master \\POSXP1 on the network \Device\NetBT_Tcpip_{83E2CACF-F68C-4646-9912-70C5311AC567}.
The data is the error code.
Computer Name: OFFICE | ID: 4 | Source: b57w2k | Type: Warning | Date: 16-9-11 16:22:40 | Log: System
Message: Broadcom NetXtreme Gigabit Ethernet for hp: The network link is down. Check to make sure the network cable is properly connected.
<<<< Special Events >>>>
There were no special events found
<<<< Ipconfig >>>>
Windows IP Configuration
Host Name . . . . . . . . . . . . : Office
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet for hp
Physical Address. . . . . . . . . : 00-11-85-F0-EC-90
Dhcp Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.2.150
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.2.1
DNS Servers . . . . . . . . . . . : 192.168.2.1
<<<< Pinging >>>>
OpenDNS Domain Test
Pinging to www.opendns.com [208.69.38.150]:
- Response - 110ms
Response - 92ms
Response - 94ms
Response - 93ms
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 92ms - Maximum = 110ms
OpenDNS IP Test
Pinging to 208.69.38.150 [208.69.38.150]:
- Response - 78ms
Response - 93ms
Response - 94ms
Response - 78ms
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 78ms - Maximum = 94ms
Kaspersky Domain Test
Pinging to www.kaspersky.com [195.27.252.18]:
- Response - 108ms
Response - 110ms
Response - 92ms
Response - 94ms
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 92ms - Maximum = 110ms
Kaspersky IP Test
Pinging to 195.27.181.10 [195.27.181.10]:
- Response - 93ms
Response - 108ms
Response - 94ms
Response - 108ms
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 93ms - Maximum = 108ms
YouTube Domain Test
Pinging to www.youtube.com [74.125.226.137]:
- Response - 16ms
Response - 14ms
Response - 16ms
Response - 0ms
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 0ms - Maximum = 16ms
YouTube IP Test
Pinging to 66.102.9.136 [66.102.9.136]:
- Response - None
Response - None
Response - None
Response - None
Packets: Sent = 4, Received = 0, Lost = 4
Minimum = 0ms - Maximum = 0ms
localhost Test
Pinging to 127.0.0.1 [127.0.0.1]:
- Response - 0ms
Response - 0ms
Response - 0ms
Response - 0ms
Packets: Sent = 4, Received = 4, Lost = 0
Minimum = 0ms - Maximum = 0ms
<<<< Netstat >>>>
Active Connections
Proto Local Address Foreign Address State PID
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 1116
c:\windows\system32\WS2_32.dll
C:\WINDOWS\system32\RPCRT4.dll
c:\windows\system32\rpcss.dll
C:\WINDOWS\system32\svchost.exe
-- unknown component(s) --
[svchost.exe]
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4
[System]
TCP 0.0.0.0:2002 0.0.0.0:0 LISTENING 2020
[LogMeIn.exe]
TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING 1012
-- unknown component(s) --
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\RPCRT4.dll
C:\WINDOWS\system32\ole32.dll
[svchost.exe]
TCP 0.0.0.0:8019 0.0.0.0:0 LISTENING 1952
[QBCFMonitorService.exe]
TCP 0.0.0.0:21321 0.0.0.0:0 LISTENING 2316
[SDUpdSvc.exe]
TCP 0.0.0.0:21322 0.0.0.0:0 LISTENING 956
[SDFSSvc.exe]
TCP 0.0.0.0:21323 0.0.0.0:0 LISTENING 956
[SDFSSvc.exe]
TCP 0.0.0.0:21324 0.0.0.0:0 LISTENING 2476
[SDTray.exe]
TCP 127.0.0.1:1033 0.0.0.0:0 LISTENING 3608
[alg.exe]
TCP 127.0.0.1:1067 0.0.0.0:0 LISTENING 1284
[ccApp.exe]
TCP 192.168.2.150:139 0.0.0.0:0 LISTENING 4
[System]
TCP 127.0.0.1:1038 127.0.0.1:2002 ESTABLISHED 2412
[LogMeInSystray.exe]
TCP 127.0.0.1:2002 127.0.0.1:1038 ESTABLISHED 2020
[LogMeIn.exe]
TCP 127.0.0.1:3703 127.0.0.1:3704 ESTABLISHED 1520
[firefox.exe]
TCP 127.0.0.1:3704 127.0.0.1:3703 ESTABLISHED 1520
[firefox.exe]
TCP 127.0.0.1:3705 127.0.0.1:3706 ESTABLISHED 1520
[firefox.exe]
TCP 127.0.0.1:3706 127.0.0.1:3705 ESTABLISHED 1520
[firefox.exe]
TCP 192.168.2.150:1026 64.94.18.142:443 ESTABLISHED 2020
[LogMeIn.exe]
TCP 192.168.2.150:1828 74.125.226.149:443 ESTABLISHED 1520
[firefox.exe]
TCP 192.168.2.150:1979 74.125.226.149:443 ESTABLISHED 1520
[firefox.exe]
TCP 127.0.0.1:2123 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2124 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2125 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2126 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2127 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2128 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2129 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2130 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2131 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2132 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2133 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2134 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2135 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2136 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2137 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2138 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2139 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2140 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2141 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2142 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2143 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2144 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2145 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2146 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2147 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2148 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2149 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2150 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2151 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2152 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2153 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2154 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2155 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2156 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2157 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2158 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2159 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2160 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2161 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2162 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2163 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2164 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2165 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2166 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2167 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2168 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2169 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2170 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2171 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2172 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2174 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2175 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2176 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2177 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2178 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2179 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2180 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2181 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2182 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2183 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2184 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2185 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2186 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2187 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2188 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2189 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2190 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2191 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2192 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2193 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2194 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2195 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2196 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2197 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2198 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2199 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2200 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2201 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2202 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2203 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2204 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2205 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2206 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2207 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2208 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2210 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2212 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2213 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2214 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2215 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2217 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2218 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2219 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2220 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2221 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2222 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2223 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2224 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2225 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2226 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2227 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2228 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2229 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2230 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2231 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2232 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2233 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2234 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2235 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2236 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2237 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2238 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2239 127.0.0.1:21324 TIME_WAIT 0
TCP 127.0.0.1:2240 127.0.0.1:21321 TIME_WAIT 0
TCP 127.0.0.1:2241 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:2242 127.0.0.1:21323 TIME_WAIT 0
TCP 127.0.0.1:2243 127.0.0.1:21322 TIME_WAIT 0
TCP 127.0.0.1:21322 127.0.0.1:2211 TIME_WAIT 0
TCP 127.0.0.1:21322 127.0.0.1:2216 TIME_WAIT 0
TCP 127.0.0.1:21324 127.0.0.1:2209 TIME_WAIT 0
TCP 192.168.2.150:2000 74.125.226.149:443 TIME_WAIT 0
TCP 192.168.2.150:2005 74.125.226.128:80 TIME_WAIT 0
TCP 192.168.2.150:2010 65.55.8.8:80 TIME_WAIT 0
TCP 192.168.2.150:2011 74.125.226.155:80 TIME_WAIT 0
TCP 192.168.2.150:2012 96.17.10.41:80 TIME_WAIT 0
TCP 192.168.2.150:2014 204.144.140.26:80 TIME_WAIT 0
TCP 192.168.2.150:2043 74.125.226.146:80 TIME_WAIT 0
TCP 192.168.2.150:2044 74.125.226.141:443 TIME_WAIT 0
TCP 192.168.2.150:2069 72.14.204.141:80 TIME_WAIT 0
TCP 192.168.2.150:2070 72.247.147.51:80 TIME_WAIT 0
TCP 192.168.2.150:2073 74.125.226.156:80 TIME_WAIT 0
TCP 192.168.2.150:2074 74.125.226.133:443 TIME_WAIT 0
TCP 192.168.2.150:2076 74.125.226.153:80 TIME_WAIT 0
TCP 192.168.2.150:2080 74.125.226.153:80 TIME_WAIT 0
TCP 192.168.2.150:2082 74.125.226.156:80 TIME_WAIT 0
TCP 192.168.2.150:2109 74.125.226.140:80 TIME_WAIT 0
TCP 192.168.2.150:2110 72.14.204.113:80 TIME_WAIT 0
TCP 192.168.2.150:2121 69.163.167.204:80 TIME_WAIT 0
TCP 192.168.2.150:2173 69.163.234.194:80 TIME_WAIT 0
UDP 0.0.0.0:500 *:* 844
[lsass.exe]
UDP 0.0.0.0:1028 *:* 956
[SDFSSvc.exe]
UDP 0.0.0.0:4500 *:* 844
[lsass.exe]
UDP 0.0.0.0:21328 *:* 956
[SDFSSvc.exe]
UDP 0.0.0.0:445 *:* 4
[System]
UDP 127.0.0.1:123 *:* 1236
c:\windows\system32\WS2_32.dll
c:\windows\system32\w32time.dll
ntdll.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]
UDP 127.0.0.1:1900 *:* 1692
c:\windows\system32\WS2_32.dll
c:\windows\system32\ssdpsrv.dll
C:\WINDOWS\system32\ADVAPI32.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]
UDP 127.0.0.1:4107 *:* 2788
[qbw32.exe]
UDP 192.168.2.150:1900 *:* 1692
c:\windows\system32\WS2_32.dll
c:\windows\system32\ssdpsrv.dll
C:\WINDOWS\system32\ADVAPI32.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]
UDP 192.168.2.150:138 *:* 4
[System]
UDP 192.168.2.150:137 *:* 4
[System]
UDP 192.168.2.150:123 *:* 1236
c:\windows\system32\WS2_32.dll
c:\windows\system32\w32time.dll
ntdll.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]
<<<< Routing Table >>>>
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 11 85 f0 ec 90 ...... Broadcom NetXtreme Gigabit Ethernet for hp - Teefer2 Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.150 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.2.0 255.255.255.0 192.168.2.150 192.168.2.150 20
192.168.2.150 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.2.255 255.255.255.255 192.168.2.150 192.168.2.150 20
224.0.0.0 240.0.0.0 192.168.2.150 192.168.2.150 20
255.255.255.255 255.255.255.255 192.168.2.150 192.168.2.150 1
Default Gateway: 192.168.2.1
===========================================================================
Persistent Routes:
None
Route Table
<<<< Hosts File >>>>
The HOSTS file is 27 Bytes in size.
There were 0 lines which refer to an external IP address.
<<<< Active Shares >>>>
Share: IPC$ - Path:
Share: print$ - Path: C:\WINDOWS\system32\spool\drivers
Share: C - Path: C:\
Share: ADMIN$ - Path: C:\WINDOWS
Share: C$ - Path: C:\
Share: Office My Documents - Path: C:\Documents and Settings\Administrator\My Documents
------ End of File ------
- Dr JayHead Admin
-
Power of Youth!
OS : Windows 10 Home & Pro, Android, Linux
Arch. : x64 (64-bit)
Anti-Malware : Bitdefender Total Security
Posts : 15182
Rubies : 289573
Likes : 162
Nothing points to a slowdown issue. 
Please download Speccy and save to your Desktop.

Please download Speccy and save to your Desktop.
- Double-click on setup file and install Speccy on your computer.
- Start Speccy and give it 30 seconds to 1 minute to load.
- Then, click File > Save as Text file...
- Save the report to your Desktop or other location you can remember.
- Find the report and attach it to your next reply.
Page 4 of 4 • 1, 2, 3, 4
Similar topics
Create an account or log in to leave a reply
You need to be a member in order to leave a reply.
Page 4 of 4
Permissions in this forum:
You cannot reply to topics in this forum