Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Can anyone tell if anything weird is on this HiJackThis Log

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Can anyone tell if anything weird is on this HiJackThis Log

Unread postby herbhays » January 29th, 2011, 9:00 pm

Thismcomputer is running way slow all of the sudeen, can anyone tell if anything on this HIJackThis log is out of place?

Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 6:49:15 PM, on 1/29/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Sony\Giga Pocket\shwserv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe
C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
C:\Program Files\Sony\Giga Pocket\RM_SV.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\ATK0100\Hcontrol.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\system32\ICO.EXE
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Sony\HotKey Utility\HKserv.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Sony\HotKey Utility\HKWnd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\sony\usbsircs\usbsircs.exe
C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: DVDVideoSoftTB Toolbar - {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - C:\Program Files\DVDVideoSoft\tbDVD2.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [VAIO Recovery] C:\WINDOWS\Sonysys\VAIO Recovery\PartSeal.exe
O4 - HKLM\..\Run: [SonyPowerCfg] C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [HKSERV.EXE] C:\Program Files\Sony\HotKey Utility\HKserv.exe
O4 - HKLM\..\Run: [Switcher.exe] C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
O4 - HKLM\..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe
O4 - HKLM\..\Run: [SSMSAudioFilter] C:\Program Files\Sony\SonicStage Mastering Studio\Audio Filter\SSMSFilter.exe /setup
O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun
O4 - HKLM\..\Run: [VAIO Update 3] "C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe" /Stationary
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Reader Library Launcher] C:\Program Files\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Remocon Driver.lnk = ?
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra 'Tools' menuitem: &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} - https://install.charter.com/diskless/bin/tgctlcm.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} - http://aolcc.aol.com/computercheckup/qdiagcc.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.av.aol.com/molbin/share ... insctl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 3883384417
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 8361343940
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.av.aol.com/molbin/share ... cgdmgr.cab
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 1.66.0.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Giga Pocket Hardware Detector - Sony Corporation - C:\Program Files\Sony\Giga Pocket\shwserv.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\Sony\Giga Pocket\halsv.exe
O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\Sony\Giga Pocket\RM_SV.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: VAIO Entertainment Aggregation and Control Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe
O23 - Service: VAIO Entertainment File Import Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VCSW\VCSW.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe
O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

--
End of file - 14388 bytes
herbhays
Active Member
 
Posts: 8
Joined: May 2nd, 2010, 8:50 pm
Advertisement
Register to Remove

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby deltalima » February 1st, 2011, 3:31 pm

Checking your log - back soon.
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby deltalima » February 1st, 2011, 3:45 pm

Hi herbhays,

Welcome to the forum.

My nickname is deltalima and I will be helping you with your malware issue.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.


Please note the following:
  • I will be working on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for this issue on this machine.
  • Please do not run any scans or make any changes to the system unless I ask you too.
  • Please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear.
  • If after 3 days you have not responded to this topic, it will be closed, and you will need to start a new one.
  • It's often worth reading through these instructions and printing them for ease of reference.
  • If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
  • Please reply to this thread. Do not start a new topic.

Uninstall List
  • Open HijackThis.
  • Click on Open the Misc tools section.
  • Click on the Open Uninstall Manager... button.
  • Click on the Save list... button.
  • It will prompt you to save. Save this log in a convenient location. By default it's named uninstall_list.txt.
  • Notepad will open. Please copy and paste the contents of this log in your next reply.
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby herbhays » February 1st, 2011, 4:30 pm

Thanks Deltalima! I really appreciate you checking, here is the uninstall log you asked for:

Acrobat.com
Acrobat.com
Adobe AIR
Adobe AIR
Adobe Download Manager
Adobe Download Manager 2.0 (Remove Only)
Adobe Flash Player 10 ActiveX
Adobe Flash Player Plugin
Adobe Photoshop Elements 2.0
Adobe Reader 9.4.1
Adobe® Photoshop® Album Starter Edition 3.0
Amazon MP3 Downloader 1.0.9
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
ATK0100 ACPI UTILITY
avast! Free Antivirus
AVS Audio Converter version 6.2
AVS Update Manager 1.0
Bonjour
Click to DVD 2.0 Menu Data
Click to DVD 2.1.10
Content Transfer
doubleTwist
DVgate Plus
ffdshow [rev 2527] [2008-12-19]
Free Audio CD Burner version 1.2
Free Audio Editor
Free Studio version 4.3
Free YouTube Download 2.3
Free YouTube to MP3 Converter version 3.2
Giga Pocket 5.5
Giga Pocket Demo Movie
Giga Pocket Hardware Library 5.5
Google Gears
Google Toolbar for Internet Explorer
Google Toolbar for Internet Explorer
Google Update Helper
High-Speed Internet Options
HiJackThis
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HotKey Utility
HP Image Zone 4.2
HP PSC & OfficeJet 4.2
HP Software Update
HP Unload DLL Patch
Intel(R) PRO Network Adapters and Drivers
InterActual Player
InterVideo WinDVD 5 for VAIO
iTunes
Java(TM) 6 Update 21
Logitech Harmony Remote Software 7
Malwarebytes' Anti-Malware
Memory Stick Formatter
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Word 2000
Microsoft Works 6-9 Converter
Microsoft Works 7.0
MindApp
MoodLogic
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Norton WMI Update
NWZ-S540 WALKMAN Guide
OpenMG Limited Patch 4.0-04-07-14-01
OpenMG Secure Module 4.0.00
ParetoLogic Data Recovery
PictureGear Studio 2.0
PRS-500 USB driver
Quicken 2005
QuickTime
Reader Library by Sony
RealPlayer Basic
Realtek AC'97 Audio
Remote Control USB Driver
Revo Uninstaller 1.88
Scriptware for Windows
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 9 (KB911565)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961371-v2)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
SoftV92 Data Fax Modem
Sonic RecordNow!
SonicStage 2.1.00
SonicStage Mastering Studio 1.3
SonicStage Mastering Studio Audio Filter
SonicStage Mastering Studio Audio Filter Custom Preset
SonicStage Mastering Studio Plugins 1.3
Sony Certificate PCH
Sony Download Taxi 1.5.0.0
Sony Notebook Setup
Sony USB Mouse
Sony Utilities DLL
Sony Video Shared Library
Sony XBRITE Screen Saver
Switch Sound File Converter
System Requirements Lab for Intel
Uninstall 1.0.0.1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB975364)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Upgrade Link2
VAIO Entertainment Platform
VAIO Help and Support
VAIO Media 3.1
VAIO Media Integrated Server 3.1
VAIO Media Redistribution 3.1
VAIO Power Management
VAIO Registration
VAIO Remote Commander Utility 6.2
VAIO SLIT Pattern Wallpaper
VAIO SLIT-C Screen Saver
VAIO Survey Standalone
VAIO Update 3
VAIO Wireless Utility
Viewpoint Media Player
Welcome to VAIO life
Windows Driver Package - Sony Corporation (PRSUSB) USB (08/08/2006 1.0.03.08080)
Windows Genuine Advantage v1.3.0254.0
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows XP Service Pack 3
Wireless Switch Setting Utility
Wondershare Video Converter Ultimate(Build 5.5.1.0)
Yahoo! Software Update
Yahoo! Toolbar
herbhays
Active Member
 
Posts: 8
Joined: May 2nd, 2010, 8:50 pm

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby deltalima » February 1st, 2011, 4:35 pm

Hi herbhays,

Download and run OTL
Download OTL by Old Timer and save it to your Desktop.
  • Double click on OTL.exe to run it.
  • Under Output, ensure that Minimal Output is selected.
  • Under Extra Registry section, select Use SafeList.
  • Click the Scan All Users checkbox.
  • Click on Run Scan at the top left hand corner.
  • When done, two Notepad files will open.
    • OTL.txt <-- Will be opened
    • Extras.txt <-- Will be minimized
  • Please post the contents of these 2 Notepad files in your next reply.

Please download GMER Rootkit Scanner from here.
  • Double click the .exe file. If asked to allow gmer.sys driver to load, please consent
  • If it gives you a warning at program start about rootkit activity and asks if you want to run a scan...click NO.
  • Run Gmer again and click on the Rootkit tab.
  • Look at the right hand side (under Files) and uncheck all drives with the exception of your C drive.
  • Make sure all other boxes on the right of the screen are checked, EXCEPT for "Show All".
  • Click on the "Scan" and wait for the scan to finish.
    Note: Before scanning, make sure all other running programs are closed and no other actions like a scheduled antivirus scan will occur while this scan completes. Also do not use your computer during the scan.
  • When completed, click on the Copy button and right-click on your Desktop, choose "New" > Text document. Once the file is created, open it and right-click again and choose Paste or Ctrl+V. Save the file as gmer.txt and copy the information in your next reply.
  • Note: If you have any problems, try running GMER in SAFE MODE
Important! Please do not select the "Show all" checkbox during the scan..

Please post the GMER log along with OTL.txt and Extras.txt from the OTL scan into your next reply.
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby herbhays » February 3rd, 2011, 1:22 pm

Hi Deltalima! I couldn't post all three logs on one post so I have to do them individually, as always, thank you! Herb

OTL Extras logfile created on: 2/1/2011 10:46:28 PM - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\Michael Skipper\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,023.00 Mb Total Physical Memory | 268.00 Mb Available Physical Memory | 26.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 75.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 88.15 Gb Total Space | 64.53 Gb Free Space | 73.21% Space Free | Partition Type: NTFS

Computer Name: MARTY | User Name: Michael Skipper | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.scr [@ = swwin.Document] -- C:\Program Files\Scriptware for Windows\swwin32.exe ()

[HKEY_USERS\S-1-5-21-1260293167-2875088675-2085881755-1006\SOFTWARE\Classes\<extension>]
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"65533:TCP" = 65533:TCP:*:Enabled:Services
"52344:TCP" = 52344:TCP:*:Enabled:Services
"2951:TCP" = 2951:TCP:*:Enabled:Services
"4402:TCP" = 4402:TCP:*:Enabled:Services
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"65533:TCP" = 65533:TCP:*:Enabled:Services
"52344:TCP" = 52344:TCP:*:Enabled:Services
"2951:TCP" = 2951:TCP:*:Enabled:Services
"4402:TCP" = 4402:TCP:*:Enabled:Services

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:America Online 9.0
"C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe:*:Enabled:AOL
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL
"C:\Program Files\America Online 9.0a\waol.exe" = C:\Program Files\America Online 9.0a\waol.exe:*:Enabled:AOL
"C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe" = C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7 -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Common Files\Adobe\ESD\AdobeDownloadManager.exe" = C:\Program Files\Common Files\Adobe\ESD\AdobeDownloadManager.exe:*:Enabled:Adobe Download Manager -- (Adobe Systems)
"C:\Program Files\Outlook Express\msimn.exe" = C:\Program Files\Outlook Express\msimn.exe:*:Enabled:Outlook Express -- (Microsoft Corporation)
"C:\Program Files\Adobe\Acrobat_com\Acrobat_com.exe" = C:\Program Files\Adobe\Acrobat_com\Acrobat_com.exe:*:Enabled:Acrobat_com -- ()
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Documents and Settings\Michael Skipper\Local Settings\Temporary Internet Files\Content.IE5\D14POSSO\VideoConverter_Setup[1].exe" = C:\Documents and Settings\Michael Skipper\Local Settings\Temporary Internet Files\Content.IE5\D14POSSO\VideoConverter_Setup[1].exe:*:Enabled:Video Converter
"C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe" = C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7 -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00170409-78E1-11D2-B60F-006097C998E7}" = Microsoft Word 2000
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{013E1BA8-C815-4E27-BCB9-D6B1B2E24094}" = SonicStage Mastering Studio Audio Filter Custom Preset
"{01AF4645-78E6-46C4-B528-54863679CC40}" = VAIO SLIT-C Screen Saver
"{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}" = HiJackThis
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0DF00135-D5A7-476A-BFB3-EDFF2840076A}" = VAIO Wireless Utility
"{1526D87C-A955-4FAB-BF18-697BA457E352}" = Norton WMI Update
"{172423F9-522A-483A-AD65-03600CE4CA4F}" = Microsoft Works 6-9 Converter
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1EB317D8-8945-4FD6-B37F-DF470317C6AB}" = VAIO Media 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F63ED0B-EDD2-4037-B6AB-1358C624AF48}" = Scan
"{21E75254-410E-49C4-8981-2E1A2A2221F2}" = HP Diagnostic Assistant
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2405665A-16C9-4D3A-B70E-F006220E1472}" = Overland
"{266AEE68-5718-4A31-BDD3-D356B1250C70}" = VAIO SLIT Pattern Wallpaper
"{267868CE-6DFF-40F7-9C58-C01119B7B117}" = Fax
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 21
"{27337663-2619-11D4-99DC-0000F49094C7}" = Memory Stick Formatter
"{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}" = Wireless Switch Setting Utility
"{2BBC9458-07CA-4843-848B-5C8146E5EFA8}" = CreativeProjects
"{2DBE41DD-2129-4C65-A3D3-5647236A60F3}" = Quicken 2005
"{2F71F2BA-B513-4113-969C-18A84D238E27}" = 1310
"{2FA41EBB-3F5A-35C3-85D6-51EC72A11FBD}" = Google Gears
"{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support
"{315BA29D-2644-4760-B5FD-5AC04A52B8C5}" = VAIO Registration
"{34A59AC3-6C5C-4A09-A7F5-369A37176C8A}" = AiOSoftware
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3AE681E0-4E8D-453F-950A-48534D3C0724}" = Copy
"{3CF78481-FB7B-4B51-99A2-D5E0CD0B3AAF}" = HPSystemDiagnostics
"{41254D7B-EADF-4078-AE4A-BD73B300EE86}" = Unload
"{457791C5-D702-4143-A7B2-2744BE9573F2}" = HP Software Update
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}" = Adobe® Photoshop® Album Starter Edition 3.0
"{4C75086F-7753-41B9-8B4C-F38DE6CC8C20}" = VAIO Remote Commander Utility 6.2
"{55B1E4FA-F2E0-45DF-9B36-0B30A7949984}" = NWZ-S540 WALKMAN Guide
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{595D0DE8-C38A-4432-B851-47DECC1A99BD}" = HP Unload DLL Patch
"{597D73A8-5FDB-4bc1-9893-40B54459F1BC}" = ProductContext
"{5C6F884D-680C-448B-B4C9-22296EE1B206}" = Logitech Harmony Remote Software 7
"{633B7597-212C-4E79-A7C2-BFE2B82FB429}" = Upgrade Link2
"{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}" = Windows Genuine Advantage v1.3.0254.0
"{685BCC47-B8EC-45EC-BBCE-77DF2451502C}" = DVgate Plus
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6990A2BF-D1D2-11D3-81BC-00609789C908}" = Sony Video Shared Library
"{6F1974D6-4249-43B6-88B0-9A9B8A33956C}" = OpenMG Secure Module 4.0.00
"{7128C69B-8F7E-4336-8698-3FD3CDD955EC}" = VAIO Media Redistribution 3.1
"{71D6CE84-B7DC-4166-8E0D-56C1C37BFB5A}" = SonicStage 2.1.00
"{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}" = Microsoft Works 7.0
"{7A79D11B-FD82-4A5E-834F-20173515DD14}" = VAIO Media Integrated Server 3.1
"{7C2F71B2-6C73-11D6-B659-00C04F790F76}" = Click to DVD 2.1.10
"{80413011-029C-4D6B-B3AD-725DDE60B81C}" = 1310Trb
"{80F19EAA-44C4-47C2-AE87-1C7628E858D6}" = Logitech Harmony Remote Software 7
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8471021C-F529-43DE-84DF-3612E10F58C4}" = Remote Control USB Driver
"{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder
"{881F5DE8-9367-4B81-A325-E91BBC6472F9}" = iTunes
"{88DA0A52-3372-4803-971A-ADFB961707E8}" = PictureGear Studio 2.0
"{8EAF4946-66AA-434B-9D12-3FDC80D8C6B1}" = Giga Pocket Hardware Library 5.5
"{8F1338C8-CA9E-4136-928B-453243AFE8F8}" = Giga Pocket Demo Movie
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD 5 for VAIO
"{936FADC9-C609-471A-B6F2-A33E2E660D1A}" = Sony Notebook Setup
"{93B80FB1-7A23-11D3-B250-00105A1F4184}" =
"{9541FED0-327F-4DF0-8B96-EF57EF622F19}" = Sonic RecordNow!
"{981FB376-8418-4EA8-BBED-9DE5AA63E7D5}" = SkinsHP1
"{98A3A654-3AEF-42D9-BA91-DE5815EA5897}" = Click to DVD 2.0 Menu Data
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9CB2512B-3EC4-43DF-8002-46BDAB5EDD1B}" = QuickProjects
"{9E158BB9-37B9-464B-837E-CC1D5766291B}" = VAIO Update 3
"{9E319E96-ED8E-4B01-9775-C521A1869A25}" = VAIO Power Management
"{9EEBF8D5-8712-4D1D-88F4-4CDC2D270BC3}" = PrintScreen
"{A1062847-0846-427A-92A1-BB8251A91E91}" = HP PSC & OfficeJet 4.2
"{A1DCC235-DACC-4E1F-8D11-D630634B4AEF}" = PhotoGallery
"{A212E6C2-20F7-4A8E-BD8E-DC3EE7483FA2}" = PRS-500 USB driver
"{A2500497-FD32-493e-B8E5-28D6728DBEF5}" = Readme
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A4EA3AB4-E78C-4286-96DF-26035507CE55}" = AiO_Scan
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB467B85-4F52-48C2-AEED-0673D00417B0}" = SonicStage Mastering Studio Audio Filter
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.1
"{B1C2398C-6FAB-46D1-806C-5942F0829994}" = ParetoLogic Data Recovery
"{B2B30EC0-FB6A-43BB-9B38-0C3B32D75B40}_is1" = Sony Download Taxi 1.5.0.0
"{B32C75F2-7495-4D01-9431-C11E97D66F8C}" = DocProc
"{B3D5D4E0-E965-41C4-ABFD-A7B1AD0663C2}" = Director
"{B45D9FEE-1AF4-46F3-9A83-2545F81547F5}" = CreativeProjectsTemplates
"{B56D5B09-C4FB-4EA0-8EAD-7BC3E2715A2D}" = DocumentViewer
"{B70E5793-F912-4C62-AFE2-C4F0B078FD31}" = Reader Library by Sony
"{BB311F54-39D6-4A03-8E18-053D1B2833D7}" = HotKey Utility
"{BCC3369F-D347-4674-BFAB-298A91B03641}" = Giga Pocket 5.5
"{BCC992E5-5C81-4066-9B55-03DC10B24D21}" = InstantShare
"{BF018D2F-C788-4AB1-AB95-1280EAB8F13E}" = TrayApp
"{BF3B304B-8A18-452D-A19F-6012CA8418D7}" = SonicStage Mastering Studio 1.3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFADE4AF-C0CF-4A04-A776-741318F1658F}" = Content Transfer
"{D0448678-1203-4158-A58F-B3D0B616BF9E}" = Sony Certificate PCH
"{D31C357D-8E67-4AAF-8297-C6979E3D75E9}" = MindApp
"{D917FD82-6CE5-489A-AAF8-C701AAC85C4D}" = VAIO Entertainment Platform
"{E21658D0-8C83-4ADD-937B-6ED07F335ABA}" = 1310Tour
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E68B38DE-D7DD-4FB3-A453-3F03A947EA8E}" = VAIO Help and Support
"{E7C97E98-4C2D-BEAF-5D2F-CC45A2F95D90}" = Acrobat.com
"{E90BEB5B-CFA0-418E-9ABB-4C4A7B0D9483}" = 1310_Help
"{EC8673DA-F96B-497E-B2DB-BC7B029FD680}" = BufferChm
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{EE7EB179-5AA2-4B28-AC92-5CBAAF82BA7F}" = SonicStage Mastering Studio Plugins 1.3
"{EF3D45BB-2260-4008-88EA-492E7744A9DF}" = Sony Utilities DLL
"{F4F47155-5B4D-42AA-97F8-490BC52EA7F3}" = Destinations
"{F65787F3-B356-45EC-8DD0-0E6758EDBCEE}" = WebReg
"{F7FC9307-374E-4017-8E9D-DE1154780480}" = System Requirements Lab for Intel
"{FA11D5B5-7D0A-43E8-88C4-960F97B194DE}" = VAIO Survey Standalone
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}" = Bonjour
"{FF26F7EA-BCEE-478C-9A1B-6B4F88717D73}" = CueTour
"75070B1806113224B16C70296B90DD1AD8A53479" = Windows Driver Package - Sony Corporation (PRSUSB) USB (08/08/2006 1.0.03.08080)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"Adobe Photoshop Elements 2.0" = Adobe Photoshop Elements 2.0
"AdobeESD" = Adobe Download Manager 2.0 (Remove Only)
"All ATI Software" = ATI - Software Uninstall Utility
"Amazon MP3 Downloader" = Amazon MP3 Downloader 1.0.9
"ATI Display Driver" = ATI Display Driver
"avast5" = avast! Free Antivirus
"AVS Audio Converter 6.2_is1" = AVS Audio Converter version 6.2
"AVS Update Manager_is1" = AVS Update Manager 1.0
"CNXT_MODEM_PCI_VEN_8086&DEV_24C6&SUBSYS_818C104D" = SoftV92 Data Fax Modem
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"doubleTwist" = doubleTwist
"ffdshow_is1" = ffdshow [rev 2527] [2008-12-19]
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.2
"Free Audio Editor" = Free Audio Editor
"Free Studio_is1" = Free Studio version 4.3
"Free YouTube Download_is1" = Free YouTube Download 2.3
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.2
"Hcontrol" = ATK0100 ACPI UTILITY
"High-Speed Internet Options" = High-Speed Internet Options
"HP Photo & Imaging" = HP Image Zone 4.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{2DBE41DD-2129-4C65-A3D3-5647236A60F3}" = Quicken 2005
"InstallShield_{315BA29D-2644-4760-B5FD-5AC04A52B8C5}" = VAIO Registration
"InstallShield_{6F1974D6-4249-43B6-88B0-9A9B8A33956C}" = OpenMG Secure Module 4.0.00
"InstallShield_{E68B38DE-D7DD-4FB3-A453-3F03A947EA8E}" = VAIO Help and Support
"InstallShield_{FA11D5B5-7D0A-43E8-88C4-960F97B194DE}" = VAIO Survey Standalone
"InterActual Player" = InterActual Player
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MoodLogic" = MoodLogic
"MouseSuite98" = Sony USB Mouse
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"OpenMG HotFix4.0-04-06-21-01" = OpenMG Limited Patch 4.0-04-07-14-01
"PROSet" = Intel(R) PRO Network Adapters and Drivers
"RealPlayer 6.0" = RealPlayer Basic
"Revo Uninstaller" = Revo Uninstaller 1.88
"Scriptware for Windows" = Scriptware for Windows
"Sony XBRITE Screen Saver" = Sony XBRITE Screen Saver
"Switch" = Switch Sound File Converter
"Uninstall_is1" = Uninstall 1.0.0.1
"ViewpointMediaPlayer" = Viewpoint Media Player
"Welcome to VAIO life" = Welcome to VAIO life
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wondershare Video Converter Ultimate_is1" = Wondershare Video Converter Ultimate(Build 5.5.1.0)
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Software Update" = Yahoo! Software Update

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2/1/2011 8:41:06 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 7631

Error - 2/1/2011 11:12:13 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2/1/2011 11:12:13 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 1282

Error - 2/1/2011 11:12:13 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1282

Error - 2/1/2011 11:12:15 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2/1/2011 11:12:15 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2323

Error - 2/1/2011 11:12:15 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2323

Error - 2/1/2011 11:12:16 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2/1/2011 11:12:16 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 3525

Error - 2/1/2011 11:12:16 PM | Computer Name = MARTY | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3525

[ System Events ]
Error - 1/28/2011 7:32:25 PM | Computer Name = MARTY | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.0.12 on
the Network Card with network address 000E3561D6C0.

Error - 1/28/2011 7:34:42 PM | Computer Name = MARTY | Source = Dhcp | ID = 1001
Description = Your computer was not assigned an address from the network (by the
DHCP Server) for the Network Card with network address 000E3561D6C0. The following
error occurred: %%1223. Your computer will continue to try and obtain an address
on its own from the network address (DHCP) server.

Error - 1/29/2011 10:30:46 PM | Computer Name = MARTY | Source = Dhcp | ID = 1001
Description = Your computer was not assigned an address from the network (by the
DHCP Server) for the Network Card with network address 000E3561D6C0. The following
error occurred: %%1223. Your computer will continue to try and obtain an address
on its own from the network address (DHCP) server.

Error - 1/29/2011 10:30:47 PM | Computer Name = MARTY | Source = Dhcp | ID = 1001
Description = Your computer was not assigned an address from the network (by the
DHCP Server) for the Network Card with network address 000E3561D6C0. The following
error occurred: %%1223. Your computer will continue to try and obtain an address
on its own from the network address (DHCP) server.

Error - 1/30/2011 12:00:50 AM | Computer Name = MARTY | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.0.12 on
the Network Card with network address 000E3561D6C0.

Error - 1/31/2011 12:03:42 AM | Computer Name = MARTY | Source = Dhcp | ID = 1001
Description = Your computer was not assigned an address from the network (by the
DHCP Server) for the Network Card with network address 000E3561D6C0. The following
error occurred: %%1223. Your computer will continue to try and obtain an address
on its own from the network address (DHCP) server.

Error - 2/1/2011 1:27:29 AM | Computer Name = MARTY | Source = Dhcp | ID = 1001
Description = Your computer was not assigned an address from the network (by the
DHCP Server) for the Network Card with network address 000E3561D6C0. The following
error occurred: %%1223. Your computer will continue to try and obtain an address
on its own from the network address (DHCP) server.

Error - 2/1/2011 8:16:47 PM | Computer Name = MARTY | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.0.12 on
the Network Card with network address 000E3561D6C0.

Error - 2/1/2011 10:26:45 PM | Computer Name = MARTY | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.0.12 on
the Network Card with network address 000E3561D6C0.

Error - 2/2/2011 12:22:51 AM | Computer Name = MARTY | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.0.12 on
the Network Card with network address 000E3561D6C0.


< End of report >
herbhays
Active Member
 
Posts: 8
Joined: May 2nd, 2010, 8:50 pm

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby herbhays » February 3rd, 2011, 1:23 pm

OTL logfile created on: 2/3/2011 10:53:52 AM - Run 2
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\Michael Skipper\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,023.00 Mb Total Physical Memory | 295.00 Mb Available Physical Memory | 29.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 78.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 88.15 Gb Total Space | 64.61 Gb Free Space | 73.30% Space Free | Partition Type: NTFS

Computer Name: MARTY | User Name: Michael Skipper | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Michael Skipper\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\Google\Update\1.2.183.39\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe (Sony Corporation)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe (Google Inc.)
PRC - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe (Sony Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe (Symantec Corporation)
PRC - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe (Sony Corporation)
PRC - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe (Sony Corporation)
PRC - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe (Sony Corporation)
PRC - C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (Sony Corporation)
PRC - C:\Program Files\Sony\HotKey Utility\HKServ.exe (Sony Corporation)
PRC - C:\Program Files\Sony\HotKey Utility\HKWnd.exe (Sony Corporation)
PRC - C:\Program Files\Sony\usbsircs\USBsircs.exe (Sony Corporation)
PRC - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe (Sony Corporation)
PRC - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe (Sony Corporation)
PRC - C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe (Hewlett-Packard Company)
PRC - C:\Program Files\Sony\Giga Pocket\shwserv.exe (Sony Corporation)
PRC - C:\Program Files\Sony\Giga Pocket\RM_SV.exe (Sony Corporation)
PRC - C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
PRC - C:\Program Files\Apoint\Apoint.exe (Alps Electric Co., Ltd.)
PRC - C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe (Sony Corporation)
PRC - C:\WINDOWS\ATK0100\ATKOSD.exe ()
PRC - C:\WINDOWS\ATK0100\Hcontrol.exe ()
PRC - C:\Program Files\Apoint\ApntEx.exe (Alps Electric Co., Ltd.)
PRC - C:\WINDOWS\system32\ico.exe (Primax Electronics Ltd.)


========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Michael Skipper\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\Alwil Software\Avast5\snxhk.dll (AVAST Software)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (Sony SCSI Helper Service) -- C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe (Sony Corporation)
SRV - (getPlusHelper) getPlus(R) -- C:\Program Files\NOS\bin\getPlus_Helper.dll (NOS Microsystems Ltd.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (YahooAUService) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
SRV - (SymWSC) -- C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe (Symantec Corporation)
SRV - (VAIOMediaPlatform-IntegratedServer-AppServer) -- C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe (Sony Corporation)
SRV - (VAIO Entertainment Aggregation and Control Service) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe (Sony Corporation)
SRV - (VAIO Entertainment File Import Service) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe (Sony Corporation)
SRV - (VAIO Entertainment TV Device Arbitration Service) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe (Sony Corporation)
SRV - (VAIO Entertainment UPnP Client Adapter) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VCSW\VCSW.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-VideoServer-UPnP) VAIO Media Video Server (UPnP) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-IntegratedServer-UPnP) VAIO Media Integrated Server (UPnP) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-VideoServer-HTTP) VAIO Media Video Server (HTTP) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-IntegratedServer-HTTP) VAIO Media Integrated Server (HTTP) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-Mobile-Gateway) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe (Sony Corporation)
SRV - (Giga Pocket Hardware Detector) -- C:\Program Files\Sony\Giga Pocket\shwserv.exe (Sony Corporation)
SRV - (Sony TV Tuner Manager) -- C:\Program Files\Sony\Giga Pocket\RM_SV.exe (Sony Corporation)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
SRV - (Sony TV Tuner Controller) -- C:\Program Files\Sony\Giga Pocket\halsv.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-VideoServer-AppServer) -- C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe (Sony Corporation)


========== Driver Services (SafeList) ==========

DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (WsAudio_DeviceS(1)) WsAudio_DeviceS(1) -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys (Wondershare)
DRV - (iPodDrv) -- C:\WINDOWS\system32\drivers\iPodDrv.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys ()
DRV - (w29n51) Intel(R) -- C:\WINDOWS\system32\drivers\w29n51.sys (Intel® Corporation)
DRV - (ASCTRM) -- C:\WINDOWS\System32\drivers\asctrm.sys (Windows (R) 2000 DDK provider)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (SONYTVC) -- C:\WINDOWS\system32\drivers\SONYTVC.sys (Sony Corporation)
DRV - (w22n51) Intel(R) -- C:\WINDOWS\system32\drivers\w22n51.sys (Intel® Corporation)
DRV - (tifmsony) -- C:\WINDOWS\system32\drivers\tifmsony.sys (Texas Instruments)
DRV - (ALCXSENS) -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS (Sensaura)
DRV - (HSFHWICH) -- C:\WINDOWS\system32\drivers\HSFHWICH.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.)
DRV - (HSF_DP) -- C:\WINDOWS\system32\drivers\HSF_DP.sys (Conexant Systems, Inc.)
DRV - (ApfiltrService) -- C:\WINDOWS\system32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ATKACPI.sys ()
DRV - (wanatw) WAN Miniport (ATW) -- C:\WINDOWS\system32\drivers\wanatw4.sys (America Online, Inc.)
DRV - (SPI) -- C:\WINDOWS\system32\drivers\SonyPI.sys (Sony Corporation)
DRV - (pelmouse) -- C:\WINDOWS\system32\drivers\PELMOUSE.SYS (Primax Electronics Ltd.)
DRV - (pelusblf) -- C:\WINDOWS\system32\drivers\PELUSBlf.SYS (Primax Electronics Ltd.)
DRV - (DMICall) -- C:\WINDOWS\system32\drivers\DMICall.sys (Sony Corporation)
DRV - (SNC) -- C:\WINDOWS\system32\drivers\SonyNC.sys (Sony Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://my.yahoo.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://my.yahoo.com/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..network.proxy.no_proxies_on: "*.local"

FF - HKLM\software\mozilla\Firefox\Extensions\\{000a9d1c-beef-4f90-9363-039d445309b8}: C:\Program Files\Google\Google Gears\Firefox\ [2010/11/14 13:55:57 | 000,000,000 | ---D | M]

[2010/05/26 19:21:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Michael Skipper\Application Data\Mozilla\Firefox\Profiles\t0mn4tbu.default\extensions
[2010/05/26 19:21:12 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Michael Skipper\Application Data\Mozilla\Firefox\Profiles\t0mn4tbu.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}(2)

O1 HOSTS File: ([2010/02/28 06:26:20 | 000,380,253 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 13102 more lines...
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (Google Gears Helper) - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
O2 - BHO: (DVDVideoSoftTB Toolbar) - {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - C:\Program Files\DVDVideoSoft\tbDVD2.dll (Conduit Ltd.)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {E9911EC6-1BCC-40B0-9993-E0EEA7F6953F} - C:\Program Files\DVDVideoSoft\tbDVD2.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [Google Quick Search Box] C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe (Google Inc.)
O4 - HKLM..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe ()
O4 - HKLM..\Run: [HKSERV.EXE] C:\Program Files\Sony\HotKey Utility\HKServ.exe (Sony Corporation)
O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
O4 - HKLM..\Run: [Mouse Suite 98 Daemon] C:\WINDOWS\System32\ico.exe (Primax Electronics Ltd.)
O4 - HKLM..\Run: [Reader Library Launcher] C:\Program Files\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe (Sony Corporation)
O4 - HKLM..\Run: [SonyPowerCfg] C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (Sony Corporation)
O4 - HKLM..\Run: [SSMSAudioFilter] C:\Program Files\Sony\SonicStage Mastering Studio\Audio Filter\SSMSFilter.exe (Sony Corporation)
O4 - HKLM..\Run: [Switcher.exe] C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe (Sony Corporation)
O4 - HKLM..\Run: [VAIO Recovery] C:\WINDOWS\SONYSYS\VAIO Recovery\PartSeal.exe (Sony Electronics Inc)
O4 - HKLM..\Run: [VAIO Update 3] C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe (Sony Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Remocon Driver.lnk = C:\Program Files\Sony\usbsircs\USBsircs.exe (Sony Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.)
O9 - Extra 'Tools' menuitem : &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} https://install.charter.com/diskless/bin/tgctlcm.cab (Reg Error: Key error.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} http://aolcc.aol.com/computercheckup/qdiagcc.cab (Reg Error: Key error.)
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://download.av.aol.com/molbin/share ... insctl.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 3883384417 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 8361343940 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} http://download.av.aol.com/molbin/share ... cgdmgr.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.co ... 1.66.0.cab (SysInfo Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.113.206.10 24.217.0.5 24.217.201.67
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll ()
O24 - Desktop WallPaper: C:\Documents and Settings\Michael Skipper\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Michael Skipper\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/13 20:54:22 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{8bb3d9c3-fe80-11de-9e1c-000e3561d6c0}\Shell\AutoRun\command - "" = I:\Windows\bin\eblSetup.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 60 Days ==========

[2011/02/01 22:37:04 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Michael Skipper\Desktop\OTL.exe
[2011/01/29 13:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Michael Skipper\Desktop\Wondrous Love
[2011/01/28 06:40:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Remote Control USB Driver
[2011/01/28 06:34:48 | 048,357,912 | ---- | C] (Logitech Inc.) -- C:\Documents and Settings\Michael Skipper\Desktop\LogitechHarmonyRemote7.7.0-WIN-x86.exe
[2011/01/22 11:22:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Reader
[2011/01/14 20:45:46 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(1).sys
[2011/01/14 20:35:46 | 025,615,520 | ---- | C] (Wondershare Software ) -- C:\Documents and Settings\Michael Skipper\Desktop\video-converter-ultimate_full495.exe
[2011/01/14 13:43:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\xml_param
[2011/01/14 13:37:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Michael Skipper\My Documents\Wondershare Video Converter Ultimate
[2011/01/14 13:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Wondershare
[2011/01/14 13:36:45 | 000,000,000 | ---D | C] -- C:\Program Files\Wondershare
[2011/01/12 20:30:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\shctxex.vb
[2011/01/12 20:29:36 | 000,516,173 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp60d.dll
[2011/01/12 20:29:36 | 000,385,100 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVCRTD.DLL
[2011/01/12 20:29:30 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\W95INF32.DLL
[2011/01/12 20:29:30 | 000,002,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\W95INF16.DLL
[2011/01/02 19:42:45 | 000,892,928 | ---- | C] (Free Software Foundation) -- C:\WINDOWS\System32\iconv.dll
[2011/01/02 14:14:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Michael Skipper\Local Settings\Application Data\WMTools Downloaded Files
[2010/12/25 14:54:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2010/12/25 14:52:33 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2010/12/25 14:45:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\QuickTime
[2010/12/25 14:45:17 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2010/12/16 18:45:23 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2010/12/16 18:44:51 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2010/12/15 14:56:21 | 000,251,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSRD2X35.DLL
[2010/12/15 14:56:20 | 000,037,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSJINT35.DLL
[2010/12/15 14:56:20 | 000,024,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSJTER35.DLL
[2010/12/15 14:56:19 | 001,039,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSJET35.DLL
[2010/12/15 14:56:18 | 000,017,704 | ---- | C] (Btrieve Technologies, Incorporated) -- C:\WINDOWS\System32\Wbtrlocl.dll
[2010/12/15 14:56:18 | 000,016,496 | ---- | C] (Btrieve Technologies, Inc.) -- C:\WINDOWS\System32\Wbtrcall.dll
[2010/12/15 14:56:18 | 000,004,128 | ---- | C] (Btrieve Technologies, Inc.) -- C:\WINDOWS\System32\Wbtrvres.dll
[2010/12/15 14:56:17 | 000,317,116 | ---- | C] (Btrieve Technologies, Incorporated) -- C:\WINDOWS\System32\Wbtr32.exe
[2010/12/15 14:56:17 | 000,155,648 | ---- | C] (Parsons Technology, Inc.) -- C:\WINDOWS\System32\Ptsacx40.dll
[2010/12/15 14:56:17 | 000,098,304 | ---- | C] (Parsons Technology, Inc.) -- C:\WINDOWS\System32\Ptsaab32.dll
[2010/12/15 14:56:17 | 000,021,840 | ---- | C] (Parsons Technology, Inc.) -- C:\WINDOWS\System32\Ptsaab30.dll
[2010/12/15 14:56:17 | 000,004,280 | ---- | C] (Btrieve Technologies, Incorporated) -- C:\WINDOWS\System32\Wbt32res.dll
[2010/12/15 14:56:13 | 000,000,000 | ---D | C] -- C:\Program Files\Parsons Technology
[2004/08/13 20:38:00 | 000,131,072 | ---- | C] ( ) -- C:\WINDOWS\System32\ATIDEMGR.dll

========== Files - Modified Within 60 Days ==========

[2011/02/03 10:43:00 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/02/03 09:43:02 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/02/02 18:00:02 | 000,000,462 | ---- | M] () -- C:\WINDOWS\tasks\ParetoLogic Registration.job
[2011/02/01 22:51:23 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\xomt7y1e.exe
[2011/02/01 22:37:21 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Michael Skipper\Desktop\OTL.exe
[2011/02/01 18:33:56 | 002,924,704 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\boston-printer-300-8-5x11.jpg
[2011/01/29 13:45:37 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\.JavaPowUpload.properties
[2011/01/29 13:17:22 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/01/29 11:33:25 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/01/29 10:22:30 | 1072,549,888 | -HS- | M] () -- C:\hiberfil.sys
[2011/01/29 02:21:00 | 000,046,613 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\AnimalPlanetHD_us.jpg
[2011/01/29 02:21:00 | 000,030,087 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\PBSHD_us.jpg
[2011/01/29 01:31:00 | 000,064,801 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\FSNPlusHD_us.jpg
[2011/01/29 01:31:00 | 000,061,486 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\CNNHD_us.jpg
[2011/01/29 01:31:00 | 000,057,369 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\HBOHD_us.jpg
[2011/01/29 01:31:00 | 000,051,117 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\CookingChannel_us.jpg
[2011/01/29 01:31:00 | 000,046,012 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\CinemaxHD_us.jpg
[2011/01/29 01:31:00 | 000,045,127 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\NBCHD_us.jpg
[2011/01/29 01:31:00 | 000,035,088 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\SyfyChannelHD_us.jpg
[2011/01/29 01:31:00 | 000,029,688 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\FoxHD_us.jpg
[2011/01/29 01:31:00 | 000,026,767 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\CBSHD_us.jpg
[2011/01/28 20:21:07 | 000,026,761 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\icons.zip
[2011/01/28 19:32:54 | 000,020,992 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/28 19:20:47 | 000,001,035 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\gsn.gif
[2011/01/28 19:06:14 | 000,001,581 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\nbc.gif
[2011/01/28 06:34:54 | 048,357,912 | ---- | M] (Logitech Inc.) -- C:\Documents and Settings\Michael Skipper\Desktop\LogitechHarmonyRemote7.7.0-WIN-x86.exe
[2011/01/28 05:53:25 | 000,169,896 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/01/22 21:37:05 | 001,240,345 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Frey, James N.- How to Write a Damn Good Novel, I.pdf
[2011/01/22 18:06:19 | 000,001,952 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Reader Library (2).lnk
[2011/01/22 11:22:55 | 000,001,940 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Reader Library.lnk
[2011/01/22 00:17:07 | 000,072,493 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\My Documents\TaxReturn2010.pdf
[2011/01/21 23:35:18 | 000,155,804 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\ShowPDFFinal.pdf
[2011/01/20 18:30:21 | 001,166,454 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Avocado Orchard.bmp
[2011/01/20 04:33:01 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/01/16 20:37:00 | 016,159,172 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Whole Lotta Shakin'.wmv
[2011/01/16 20:28:30 | 042,006,998 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Leader Of The Pack.wmv
[2011/01/16 18:40:11 | 057,982,764 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Oklahoma.wmv
[2011/01/16 18:30:13 | 020,686,938 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\God Give Me Strength.wmv
[2011/01/16 18:27:27 | 039,526,842 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Skylark.wmv
[2011/01/16 10:07:10 | 068,536,006 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\The Bar.wmv
[2011/01/16 09:53:37 | 030,615,082 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Lunch Will Keep Us Together.wmv
[2011/01/16 09:43:46 | 028,878,626 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Glow Worm.wmv
[2011/01/16 09:39:05 | 027,623,490 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\To Deserve You 1.wmv
[2011/01/16 09:35:03 | 032,823,136 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Millworker.wmv
[2011/01/15 15:58:51 | 005,054,326 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Rainbow Sleeves.wmv
[2011/01/15 15:45:23 | 012,358,554 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Come Back Jimmy Dean(1).wmv
[2011/01/15 15:26:31 | 016,879,106 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\To Deserve You.wmv
[2011/01/15 08:11:50 | 055,032,102 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Trashy Ladies.wmv
[2011/01/15 08:00:44 | 010,079,478 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Superstar.wmv
[2011/01/14 21:11:29 | 022,301,960 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Chihuahua Puddles.wmv
[2011/01/14 20:38:29 | 000,001,068 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\Wondershare Video Converter Ultimate.lnk
[2011/01/14 20:35:48 | 025,615,520 | ---- | M] (Wondershare Software ) -- C:\Documents and Settings\Michael Skipper\Desktop\video-converter-ultimate_full495.exe
[2011/01/14 18:47:49 | 000,127,754 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\RegNow Order Form.mht
[2011/01/14 07:42:56 | 000,030,364 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/01/13 02:47:32 | 000,188,216 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/01/13 02:41:16 | 000,294,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/01/13 02:40:16 | 000,047,440 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/01/13 02:40:04 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/01/13 02:39:50 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/01/13 02:37:30 | 000,023,632 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/01/13 02:37:11 | 000,029,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/01/13 02:37:09 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/01/12 20:45:36 | 000,000,084 | ---- | M] () -- C:\WINDOWS\netdet.ini
[2011/01/08 14:41:03 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/01/01 16:13:35 | 000,004,976 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\ojobkspa.ako
[2010/12/31 14:06:36 | 000,038,848 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2010/12/26 09:45:21 | 000,015,467 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\markdoyle.jpg
[2010/12/25 14:54:06 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2010/12/25 14:45:58 | 000,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2010/12/25 11:02:57 | 000,224,256 | ---- | M] () -- C:\Documents and Settings\Michael Skipper\Desktop\His name shall be called.lbl
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/18 09:58:34 | 000,156,160 | ---- | M] () -- C:\WINDOWS\System32\WS_ContextMenu.dll
[2010/12/17 05:36:10 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK

========== Files Created - No Company Name ==========

[2011/02/01 22:51:20 | 000,296,448 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\xomt7y1e.exe
[2011/02/01 18:34:37 | 002,924,704 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\boston-printer-300-8-5x11.jpg
[2011/01/29 13:45:37 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\.JavaPowUpload.properties
[2011/01/29 01:31:02 | 000,064,801 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\FSNPlusHD_us.jpg
[2011/01/29 01:31:02 | 000,061,486 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\CNNHD_us.jpg
[2011/01/29 01:31:02 | 000,057,369 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\HBOHD_us.jpg
[2011/01/29 01:31:02 | 000,051,117 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\CookingChannel_us.jpg
[2011/01/29 01:31:02 | 000,046,012 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\CinemaxHD_us.jpg
[2011/01/29 01:31:02 | 000,045,127 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\NBCHD_us.jpg
[2011/01/29 01:31:02 | 000,035,088 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\SyfyChannelHD_us.jpg
[2011/01/29 01:31:02 | 000,029,688 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\FoxHD_us.jpg
[2011/01/29 01:31:02 | 000,026,767 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\CBSHD_us.jpg
[2011/01/28 20:21:37 | 000,046,613 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\AnimalPlanetHD_us.jpg
[2011/01/28 20:21:31 | 000,030,087 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\PBSHD_us.jpg
[2011/01/28 19:30:53 | 000,026,761 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\icons.zip
[2011/01/28 19:21:10 | 000,001,035 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\gsn.gif
[2011/01/28 19:18:29 | 000,001,581 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\nbc.gif
[2011/01/22 21:36:58 | 001,240,345 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Frey, James N.- How to Write a Damn Good Novel, I.pdf
[2011/01/22 18:06:19 | 000,001,952 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Reader Library (2).lnk
[2011/01/22 11:22:55 | 000,001,940 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Reader Library.lnk
[2011/01/22 00:17:06 | 000,072,493 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\My Documents\TaxReturn2010.pdf
[2011/01/21 23:35:18 | 000,155,804 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\ShowPDFFinal.pdf
[2011/01/20 18:30:21 | 001,166,454 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Avocado Orchard.bmp
[2011/01/16 20:34:06 | 016,159,172 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Whole Lotta Shakin'.wmv
[2011/01/16 20:25:20 | 042,006,998 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Leader Of The Pack.wmv
[2011/01/16 18:34:51 | 057,982,764 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Oklahoma.wmv
[2011/01/16 18:27:32 | 020,686,938 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\God Give Me Strength.wmv
[2011/01/16 18:22:53 | 039,526,842 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Skylark.wmv
[2011/01/16 10:00:59 | 068,536,006 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\The Bar.wmv
[2011/01/16 09:50:36 | 030,615,082 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Lunch Will Keep Us Together.wmv
[2011/01/16 09:39:12 | 028,878,626 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Glow Worm.wmv
[2011/01/16 09:35:18 | 027,623,490 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\To Deserve You 1.wmv
[2011/01/16 09:31:42 | 032,823,136 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Millworker.wmv
[2011/01/15 15:57:34 | 005,054,326 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Rainbow Sleeves.wmv
[2011/01/15 15:43:41 | 012,358,554 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Come Back Jimmy Dean(1).wmv
[2011/01/15 15:23:01 | 016,879,106 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\To Deserve You.wmv
[2011/01/15 08:06:44 | 055,032,102 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Trashy Ladies.wmv
[2011/01/15 07:57:44 | 010,079,478 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Superstar.wmv
[2011/01/14 21:08:09 | 022,301,960 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Chihuahua Puddles.wmv
[2011/01/14 20:38:21 | 000,156,160 | ---- | C] () -- C:\WINDOWS\System32\WS_ContextMenu.dll
[2011/01/14 18:47:47 | 000,127,754 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\RegNow Order Form.mht
[2011/01/14 13:37:10 | 000,001,068 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\Wondershare Video Converter Ultimate.lnk
[2011/01/12 20:45:36 | 000,000,084 | ---- | C] () -- C:\WINDOWS\netdet.ini
[2011/01/12 20:29:36 | 000,118,272 | ---- | C] () -- C:\WINDOWS\System32\vzcontextmenu.dll
[2011/01/12 20:29:30 | 000,001,069 | ---- | C] () -- C:\WINDOWS\System32\vbrun60.inf
[2011/01/02 19:42:45 | 000,675,840 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax
[2011/01/02 19:42:45 | 000,496,640 | ---- | C] () -- C:\WINDOWS\System32\xvid.ax
[2011/01/01 16:13:35 | 000,004,976 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ojobkspa.ako
[2010/12/26 09:47:59 | 000,015,467 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\markdoyle.jpg
[2010/12/25 14:54:06 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2010/12/25 14:45:58 | 000,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2010/12/25 11:02:57 | 000,224,256 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Desktop\His name shall be called.lbl
[2010/12/15 14:56:21 | 000,002,820 | ---- | C] () -- C:\WINDOWS\System32\V500001_.ttf
[2010/12/15 14:56:18 | 000,000,751 | ---- | C] () -- C:\WINDOWS\Bti.ini
[2010/12/15 14:56:17 | 000,266,240 | ---- | C] () -- C:\WINDOWS\System32\Ptsaab99.dll
[2010/12/15 14:56:17 | 000,030,080 | ---- | C] () -- C:\WINDOWS\System32\Ptabimp3.exe
[2010/11/12 18:02:24 | 000,020,992 | ---- | C] () -- C:\WINDOWS\jestertb.dll
[2010/10/22 16:54:59 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2010/07/22 18:53:25 | 000,002,485 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2010/03/15 20:51:02 | 000,004,978 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\kbkwknay.ayh
[2010/02/28 05:49:25 | 000,012,850 | -HS- | C] () -- C:\Documents and Settings\Michael Skipper\Local Settings\Application Data\ADuYn
[2010/02/03 18:49:36 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.351.32.bc
[2010/02/03 18:44:17 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009/12/21 05:14:11 | 000,000,280 | ---- | C] () -- C:\WINDOWS\MindApp.INI
[2009/12/05 10:26:49 | 000,000,000 | ---- | C] () -- C:\WINDOWS\VAIOUpdt.INI
[2009/02/16 11:46:37 | 000,000,004 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2009/02/14 11:13:56 | 000,020,992 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/08/21 22:58:47 | 000,000,029 | ---- | C] () -- C:\WINDOWS\atid.ini
[2006/08/21 13:17:22 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/08/06 23:29:49 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Application Data\dm.ini
[2005/01/19 18:33:53 | 000,000,138 | ---- | C] () -- C:\Documents and Settings\Michael Skipper\Local Settings\Application Data\fusioncache.dat
[2005/01/19 16:54:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2004/08/16 21:37:46 | 000,000,069 | ---- | C] () -- C:\WINDOWS\System32\Sony XBRITE.ini
[2004/08/16 21:35:05 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2004/08/16 21:35:05 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2004/08/16 21:35:05 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2004/08/16 21:35:05 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2004/08/16 21:35:05 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2004/08/16 21:35:05 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2004/08/16 21:28:32 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\Cpuinf32.dll
[2004/08/16 21:26:35 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/08/16 15:42:24 | 000,000,800 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/14 12:09:24 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/08/14 11:21:06 | 000,000,172 | ---- | C] () -- C:\WINDOWS\Quicken.ini
[2004/08/13 23:06:53 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2004/08/13 20:38:08 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\e1000msg.dll
[2004/08/13 20:38:07 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\e100bmsg.dll
[2004/08/13 20:38:03 | 000,005,786 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATKACPI.sys
[2004/08/13 20:38:00 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\ati2evxx.dll
[2004/08/13 20:37:55 | 000,000,724 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/08/13 13:44:42 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/06/24 14:28:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2003/04/10 14:00:06 | 000,000,092 | ---- | C] () -- C:\WINDOWS\System32\drivers\FTDIUN2K.INI
[2003/04/10 14:00:06 | 000,000,091 | ---- | C] () -- C:\WINDOWS\System32\drivers\FTDIUNIN.INI
[2002/06/12 14:21:12 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\winchip.dll
[2001/10/24 17:00:40 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\TDI-SonyOMG.dll

< End of report >
herbhays
Active Member
 
Posts: 8
Joined: May 2nd, 2010, 8:50 pm

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby herbhays » February 3rd, 2011, 1:30 pm

I couldn't post the GMER log because it was too long so I attached it, I hope that is okay. Herb
You do not have the required permissions to view the files attached to this post.
herbhays
Active Member
 
Posts: 8
Joined: May 2nd, 2010, 8:50 pm

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby deltalima » February 3rd, 2011, 2:32 pm

Hi herbhays,

MBRCheck

Please download MBRCheck.exe to your desktop.
  • Double-click on MBRCheck.exe to run it.
  • It will show a Black screen with some information.
  • if an unknown bootcode is found you will have further options available to you, at this time press N then press Enter twice.
  • If nothing unusual is found just press Enter
  • A .txt file named MBRCheck_mm.dd.yy_hh.mm.ss should appear on your desktop.
  • Please post the contents of that file in you're next reply.
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby herbhays » February 3rd, 2011, 2:41 pm

Here is the MBR txt, as always, thank you for your time!


MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows XP Home Edition
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x0000001c

Kernel Drivers (total 138):
0x804D7000 \WINDOWS\system32\ntoskrnl.exe
0x806EE000 \WINDOWS\system32\hal.dll
0xF7D22000 \WINDOWS\system32\KDCOM.DLL
0xF7C32000 \WINDOWS\system32\BOOTVID.dll
0xF77D3000 ACPI.sys
0xF7D24000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
0xF77C2000 pci.sys
0xF7822000 isapnp.sys
0xF7832000 ohci1394.sys
0xF7842000 \WINDOWS\system32\DRIVERS\1394BUS.SYS
0xF7C36000 compbatt.sys
0xF7C3A000 \WINDOWS\system32\DRIVERS\BATTC.SYS
0xF7DEA000 pciide.sys
0xF7AA2000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xF7D26000 intelide.sys
0xF77A4000 pcmcia.sys
0xF7852000 MountMgr.sys
0xF7785000 ftdisk.sys
0xF7C3E000 ACPIEC.sys
0xF7DEB000 \WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
0xF7AAA000 PartMgr.sys
0xF7862000 VolSnap.sys
0xF776D000 atapi.sys
0xF7872000 disk.sys
0xF7882000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xF774D000 fltmgr.sys
0xF773B000 sr.sys
0xF7AB2000 PxHelp20.sys
0xF7724000 KSecDD.sys
0xF7711000 WudfPf.sys
0xF7684000 Ntfs.sys
0xF7657000 NDIS.sys
0xF763D000 Mup.sys
0xF7892000 agp440.sys
0xF7932000 \SystemRoot\system32\DRIVERS\intelppm.sys
0xF5DF8000 \SystemRoot\system32\DRIVERS\ati2mtag.sys
0xF5DE4000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xF7BF2000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0xF5DC0000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xF7BFA000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xF7942000 \SystemRoot\system32\drivers\tifmsony.sys
0xF5BA2000 \SystemRoot\system32\DRIVERS\w29n51.sys
0xF5B83000 \SystemRoot\system32\DRIVERS\e1000325.sys
0xF7C12000 \SystemRoot\system32\DRIVERS\usbohci.sys
0xF7952000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xF7C22000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xF5B6C000 \SystemRoot\system32\DRIVERS\Apfiltr.sys
0xF7AFA000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xF6D06000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0xF7962000 \SystemRoot\system32\DRIVERS\SonyPI.sys
0xF7B22000 \SystemRoot\System32\Drivers\SonyNC.sys
0xF7972000 \SystemRoot\system32\DRIVERS\imapi.sys
0xF7982000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xF7992000 \SystemRoot\system32\DRIVERS\redbook.sys
0xF5B49000 \SystemRoot\system32\DRIVERS\ks.sys
0xF7B42000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0xF5AB2000 \SystemRoot\system32\drivers\ALCXWDM.SYS
0xF5A8E000 \SystemRoot\system32\drivers\portcls.sys
0xF79B2000 \SystemRoot\system32\drivers\drmk.sys
0xF5A2C000 \SystemRoot\system32\drivers\ALCXSENS.SYS
0xF59FB000 \SystemRoot\system32\DRIVERS\HSFHWICH.sys
0xF58FC000 \SystemRoot\system32\DRIVERS\HSF_DP.sys
0xF5856000 \SystemRoot\system32\DRIVERS\HSF_CNXT.sys
0xF7B6A000 \SystemRoot\System32\Drivers\Modem.SYS
0xF7D6C000 \SystemRoot\system32\DRIVERS\ATKACPI.sys
0xF79C2000 \SystemRoot\system32\drivers\WsAudio_DeviceS(1).sys
0xF5F22000 \SystemRoot\system32\DRIVERS\audstub.sys
0xF79D2000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xF7CCA000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xF583F000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xF79E2000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xF79F2000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xF7B92000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xF582E000 \SystemRoot\system32\DRIVERS\psched.sys
0xF7A02000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xF7BA2000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xF7BB2000 \SystemRoot\system32\DRIVERS\raspti.sys
0xF7A12000 \SystemRoot\system32\DRIVERS\termdd.sys
0xF7D72000 \SystemRoot\system32\DRIVERS\swenum.sys
0xF57D0000 \SystemRoot\system32\DRIVERS\update.sys
0xF7CDE000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xF7A22000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xF7A52000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xF7D76000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xF7D80000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xF7EB4000 \SystemRoot\System32\Drivers\Null.SYS
0xF7D84000 \SystemRoot\System32\Drivers\Beep.SYS
0xF7C0A000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0xF7C1A000 \SystemRoot\System32\drivers\vga.sys
0xF7D88000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xF7D8C000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xF7AD2000 \SystemRoot\System32\Drivers\Msfs.SYS
0xF7AE2000 \SystemRoot\System32\Drivers\Npfs.SYS
0xF7619000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xB2785000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xB272C000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xF7A82000 \SystemRoot\System32\Drivers\aswTdi.SYS
0xB2666000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xF7A92000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xB263E000 \SystemRoot\system32\DRIVERS\netbt.sys
0xF7B02000 \SystemRoot\System32\Drivers\aswRdr.SYS
0xB261C000 \SystemRoot\System32\drivers\afd.sys
0xF78C2000 \SystemRoot\system32\DRIVERS\netbios.sys
0xB25F1000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xB2581000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xF6E32000 \SystemRoot\System32\Drivers\Fips.SYS
0xF7EC5000 \SystemRoot\system32\DRIVERS\DMICall.sys
0xB253A000 \SystemRoot\System32\Drivers\aswSP.SYS
0xF7B2A000 \SystemRoot\System32\Drivers\Aavmker4.SYS
0xF6E02000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xB24D2000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xF7DC0000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xF7D1A000 \SystemRoot\System32\drivers\Dxapi.sys
0xF7BD2000 \SystemRoot\System32\watchdog.sys
0xBF000000 \SystemRoot\System32\drivers\dxg.sys
0xF7E37000 \SystemRoot\System32\drivers\dxgthk.sys
0xBF012000 \SystemRoot\System32\ati2dvag.dll
0xBF049000 \SystemRoot\System32\ati2cqag.dll
0xBF081000 \SystemRoot\System32\ati3duag.dll
0xBF290000 \SystemRoot\System32\ativvaxx.dll
0xBFFA0000 \SystemRoot\System32\ATMFD.DLL
0xB2532000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0xB239E000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xB219B000 \SystemRoot\System32\Drivers\aswMon2.SYS
0xB1F8E000 \SystemRoot\system32\DRIVERS\mrxdav.sys
0xF7D74000 \SystemRoot\System32\Drivers\ASCTRM.SYS
0xF7B4A000 \??\C:\WINDOWS\system32\drivers\iPodDrv.sys
0xB2097000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xB1C66000 \SystemRoot\system32\DRIVERS\srv.sys
0xB14DD000 \SystemRoot\system32\drivers\wdmaud.sys
0xB167A000 \SystemRoot\system32\drivers\sysaudio.sys
0xB123E000 \SystemRoot\System32\Drivers\HTTP.sys
0xF7DAC000 \SystemRoot\System32\Drivers\hiber_WMILIB.SYS
0xB0738000 \SystemRoot\System32\Drivers\Fastfat.SYS
0xB0587000 \??\C:\DOCUME~1\MICHAE~1\LOCALS~1\Temp\fxtdypow.sys
0xB0509000 \SystemRoot\system32\drivers\kmixer.sys
0x7C900000 \WINDOWS\system32\ntdll.dll

Processes (total 67):
0 System Idle Process
4 System
740 C:\WINDOWS\system32\smss.exe
816 csrss.exe
840 C:\WINDOWS\system32\winlogon.exe
884 C:\WINDOWS\system32\services.exe
896 C:\WINDOWS\system32\lsass.exe
1056 C:\WINDOWS\system32\ati2evxx.exe
1072 C:\WINDOWS\system32\svchost.exe
1180 svchost.exe
1232 C:\WINDOWS\system32\svchost.exe
1264 C:\WINDOWS\system32\svchost.exe
1400 svchost.exe
1460 svchost.exe
1648 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
540 C:\WINDOWS\system32\spoolsv.exe
632 svchost.exe
672 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
728 C:\Program Files\Bonjour\mDNSResponder.exe
780 svchost.exe
1412 C:\Program Files\Sony\Giga Pocket\shwserv.exe
1972 C:\Program Files\Java\jre6\bin\jqs.exe
2020 C:\Program Files\Google\Update\1.2.183.39\GoogleCrashHandler.exe
300 C:\WINDOWS\system32\svchost.exe
320 C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe
1540 C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
2008 C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe
800 C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
1432 C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
2056 C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
2080 C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
2124 C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
2176 C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
2964 C:\Program Files\Sony\Giga Pocket\RM_SV.exe
3052 alg.exe
4048 C:\WINDOWS\system32\ati2evxx.exe
3540 C:\WINDOWS\explorer.exe
2300 C:\WINDOWS\system32\wscntfy.exe
1328 C:\WINDOWS\ATK0100\Hcontrol.exe
2528 C:\Program Files\Apoint\Apoint.exe
2580 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
2588 C:\WINDOWS\system32\ico.exe
2604 C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
2892 C:\WINDOWS\system32\rundll32.exe
2856 C:\Program Files\Sony\HotKey Utility\HKServ.exe
1480 C:\Program Files\Sony\ISB Utility\ISBMgr.exe
3036 C:\WINDOWS\ATK0100\ATKOSD.exe
3164 C:\Program Files\Apoint\ApntEx.exe
3360 C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
3428 C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
3452 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
3460 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
1784 C:\Program Files\Sony\HotKey Utility\HKWnd.exe
2408 C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
1580 C:\Program Files\iTunes\iTunesHelper.exe
3016 C:\Program Files\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe
3816 C:\WINDOWS\system32\ctfmon.exe
3776 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
1560 C:\Program Files\Sony\usbsircs\USBsircs.exe
776 C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe
232 C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
1312 C:\Program Files\iPod\bin\iPodService.exe
2524 C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
5244 C:\WINDOWS\system32\svchost.exe
152 C:\Program Files\Internet Explorer\iexplore.exe
2812 C:\Program Files\Internet Explorer\iexplore.exe
3528 C:\Documents and Settings\Michael Skipper\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000001`40a21c00 (NTFS)

PhysicalDrive0 Model Number: FUJITSUMHU2100AT, Rev: 00000008

Size Device Name MBR Status
--------------------------------------------
93 GB \\.\PhysicalDrive0 Windows XP MBR code detected
SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A


Done!
herbhays
Active Member
 
Posts: 8
Joined: May 2nd, 2010, 8:50 pm

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby deltalima » February 3rd, 2011, 3:45 pm

Hi herbhays,

After a thorough check of the logs the computer looks to be fee of malware.

To help keep secure I would recommend that you upgrade
Adobe Reader 9.4.1
Java(TM) 6 Update 21

To the latest versions.

The event log shows several errors concerning the network card and so I would be looking for a faulty card / wrong driver or damaged network cable.

As you are clean, please follow these steps in order to keep your computer clean and secure.

Remove GMER

Delete the GMER icon from your desktop.

Clean up with OTL

  • Double-click OTL.exe to start the program. This will remove all the tools we used to clean your pc.
  • Close all other programs apart from OTL as this step will require a reboot
  • On the OTL main screen, press the CleanUp! button
  • Say Yes to the prompt and then allow the program to reboot your computer.

Update your AntiVirus Software and keep your other programs up-to-date
Update your Antivirus programs and other security products regularly to avoid new threats that could infect your system.
You can use one of these sites to check if any updates are needed for your pc.
Secunia Software Inspector
F-secure Health Check

Security Updates for Windows, Internet Explorer & Microsoft Office
Whenever a security problem in its software is found, Microsoft will usually create a patch so that after the patch is installed, attackers can't use the vulnerability to install malicious software on your PC. Keeping up with these patches will help to prevent malicious software being installed on your PC. Ensure you are registered for Windows updates via Start > right-click on My Computer > Properties > Automatic Updates tab or visit the Microsoft Update site on a regular basis.


Install SpywareBlaster - SpywareBlaster will added a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs.

A tutorial on installing & using this product can be found here:

Using SpywareBlaster to protect your computer from Spyware and Malware


Update all these programs regularly - Make sure you update all the programs I have listed regularly. Without regular updates you WILL NOT be protected when new malicious programs are released.Follow this list and your potential for being infected again will reduce dramatically.

Here are some additional utilities that will enhance your safety


Also, please read this great article by Tony Klein So How Did I Get Infected In First Place

Happy surfing and stay clean!
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK

Re: Can anyone tell if anything weird is on this HiJackThis

Unread postby Cypher » February 4th, 2011, 7:15 am

As this issue appears to be resolved, this topic is now closed.

We are pleased we could help you resolve your computer's malware issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see Feedback for Our Helpers - Say "Thanks" Here.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 15148
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns
Advertisement
Register to Remove


Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 390 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware