All,
I'm trying to help out a friend with a pretty bad computer. I'm not sure if he has ever updated a program and probably doesn't follow safe surfing practices. It had broken .exe registry entries, redirect problems, ping virus, and a pretty good amount of malware. I've received excellent help via this forum before and would appreciate it again if possible. Thanks!
v/r,
Bmerk
Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org
Database version: v2012.01.08.04
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
07 :: B893D7C217924A2 [administrator]
1/8/2012 5:06:32 PM
mbam-log-2012-01-08 (17-06-32).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 211329
Time elapsed: 25 minute(s), 22 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 1
C:\WINDOWS\system32\Iasex.dll (Backdoor.Bot) -> Delete on reboot.
Registry Keys Detected: 1
HKCR\AH (Rogue.MultipleAV) -> Quarantined and deleted successfully.
Registry Values Detected: 1
HKCR\ah|Content Type (Rogue.MultipleAV) -> Data: application/x-msdownload -> Quarantined and deleted successfully.
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 7
C:\WINDOWS\Temp\81.88649.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\fsdfdsf0.5524026049045493.exe (Trojan.FakeAV) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\oiu0.40183710072282397.exe (Trojan.FakeAV) -> Quarantined and deleted successfully.
C:\Documents and Settings\07\Local Settings\Application Data\gyb.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\Iasex.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\0.9559459239642334.exe (Exploit.Drop.2) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\slp2541467069594085652.tmp (Exploit.Drop.3) -> Quarantined and deleted successfully.
(end)
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-08 19:37:59
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 Intel___ rev.1.0.
Running: p5v0j4ls.exe; Driver: C:\DOCUME~1\07\LOCALS~1\Temp\fgwdiaow.sys
---- Kernel code sections - GMER 1.0.15 ----
? bnmt.sys The system cannot find the file specified. !
.text mrxsmb.sys AF5B6000 13 Bytes JMP AF5B6C0D \SystemRoot\system32\DRIVERS\mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)
.text mrxsmb.sys AF5B600E 32 Bytes [28, 1A, 5D, AF, 8B, 0D, F4, ...]
.text mrxsmb.sys AF5B6030 87 Bytes JMP AF5C463C \SystemRoot\system32\DRIVERS\mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)
.text mrxsmb.sys AF5B6088 276 Bytes CALL AF5B554F \SystemRoot\system32\DRIVERS\mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)
.text mrxsmb.sys AF5B619D 125 Bytes [25, 9C, 19, 5D, AF, 90, 90, ...]
.text ...
? C:\WINDOWS\system32\DRIVERS\mrxsmb.sys suspicious PE modification
---- User code sections - GMER 1.0.15 ----
.text C:\WINDOWS\System32\svchost.exe[1792] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 00F4000A
.text C:\WINDOWS\System32\svchost.exe[1792] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 00F5000A
.text C:\WINDOWS\System32\svchost.exe[1792] ntdll.dll!KiUserExceptionDispatcher 7C90E47C 5 Bytes JMP 00F3000C
.text C:\WINDOWS\system32\SearchIndexer.exe[3048] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 00585C0C C:\WINDOWS\system32\MSSRCH.DLL (mssrch.dll/Microsoft Corporation)
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs SiWinAcc.sys (Windows Accelerator Driver/Silicon Image, Inc.)
---- Modules - GMER 1.0.15 ----
Module (noname) (*** hidden *** ) B621D000-B6237000 (106496 bytes)
---- Files - GMER 1.0.15 ----
File C:\WINDOWS\$NtUninstallKB24024$\4080384461 0 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536 0 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\@ 2048 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\bckfg.tmp 928 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\cfg.ini 206 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\Desktop.ini 4608 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\keywords 216 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\kwrd.dll 223744 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\L 0 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\L\frmovfwd 456320 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\lsflt7.ver 5176 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U 0 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\00000001.@ 2048 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\00000002.@ 224768 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\00000004.@ 1024 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\80000000.@ 11264 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\80000004.@ 12800 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\80000032.@ 77312 bytes
---- EOF - GMER 1.0.15 ----
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_17
Run by 07 at 19:58:43 on 2012-01-08
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.93 [GMT -6:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\ActivIdentity\ActivClient\accoca.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\lxdecoms.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\svcs.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\Program Files\Lexmark 4800 Series\lxdemon.exe
C:\Program Files\Lexmark 4800 Series\lxdeamon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\ActivIdentity\ActivClient\acsagent.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\System32\ping.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://mysearch.myway.com/jsp/sonysidebar.jsp?p=SY
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: N/A: {f0f8c2b6-a911-4b4e-b2ae-89b82dc81f15} - c:\program files\sonysa\srchas\sySrcAs.dll
BHO: : {f0f8c2b1-a911-4b4e-b2ae-89b82dc81f15} - c:\program files\sonysa\srchas\sySrcAs.dll
TB: Lexmark Toolbar: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - c:\program files\lexmark toolbar\toolband.dll
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
TB: {C4069E3A-68F1-403E-B40E-20066696354B} - No File
EB: &Research: {ff059e31-cc5a-4e2e-bf3b-96e929d65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [H/PC Connection Agent] "c:\program files\microsoft activesync\wcescomm.exe"
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [EOUApp] "c:\program files\intel\wireless\bin\EOUWiz.exe"
mRun: [AzMixerSel] c:\program files\realtek\installshield\AzMixerSel.exe
mRun: [SonyPowerCfg] "c:\program files\sony\vaio power management\SPMgr.exe"
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\Iaanotif.exe
mRun: [VAIO Update 2] "c:\program files\sony\vaio update 2\VAIOUpdt.exe" /Stationary
mRun: [ATICCC] "c:\program files\ati technologies\ati.ace\cli.exe" runtime -Delay
mRun: [Switcher.exe] c:\program files\sony\wireless switch setting utility\Switcher.exe
mRun: [masqform.exe] c:\program files\pureedge\viewer 6.5\masqform.exe -RunOnce
mRun: [FaxCenterServer] "c:\program files\lexmark fax solutions\fm3032.exe" /s
mRun: [lxdemon.exe] "c:\program files\lexmark 4800 series\lxdemon.exe"
mRun: [lxdeamon] "c:\program files\lexmark 4800 series\lxdeamon.exe"
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
dRun: [MySpaceIM] c:\program files\myspace\im\MySpaceIM.exe
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\activc~1.lnk - c:\program files\actividentity\activclient\acsagent.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\blueto~1.lnk - c:\program files\toshiba\bluetooth toshiba stack\TosBtMng.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\micros~4\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\micros~4\INetRepl.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
LSP: mswsock.dll
Trusted Zone: microsoft.com\www.update
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 24.159.64.23 24.217.201.67 66.189.0.100
TCP: Interfaces\{22F9290B-C50C-4A8A-9986-F1111CAA48EF} : DhcpNameServer = 24.159.64.23 24.217.201.67 66.189.0.100
Notify: ackpbsc - c:\windows\system32\ackpbsc.dll
Notify: acunlock - c:\program files\actividentity\activclient\acunlock.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: igfxcui - igfxdev.dll
Notify: psfus - fusstub.dll
Notify: VESWinlogon - VESWinlogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
LSA: Notification Packages = scecli fusstub
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\07\application data\mozilla\firefox\profiles\u50u0zei.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.campbellyardsales.com/index.jsp
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\documents and settings\07\application data\mozilla\firefox\profiles\u50u0zei.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp071303000006.dll
FF - plugin: c:\progra~1\gradke~1\dbsign~1\lib\npDBsignWeb.dll
FF - plugin: c:\progra~1\mozill~1\plugins\npnul32.dll
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npDBsignWeb.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npMozCouponPrinter.dll
FF - Ext: ScribeFire Classic: {F807FACD-E46A-4793-B345-D58CB177673C} - %profile%\extensions\{F807FACD-E46A-4793-B345-D58CB177673C}
FF - Ext: Move Media Player: moveplayer@movenetworks.com - %profile%\extensions\moveplayer@movenetworks.com
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
.
============= SERVICES / DRIVERS ===============
.
R2 accoca;ActivClient Middleware Service;c:\program files\actividentity\activclient\accoca.exe [2007-5-15 182576]
R2 FdRedir;FdRedir;c:\program files\common files\protector suite ql\drivers\FdRedir.sys [2006-2-22 13440]
R2 FileDisk2;FileDisk Protector Kernel Driver;c:\program files\common files\protector suite ql\drivers\filedisk.sys [2006-2-22 33024]
R2 lxde_device;lxde_device;c:\windows\system32\lxdecoms.exe -service --> c:\windows\system32\lxdecoms.exe -service [?]
R2 NetworkLog;NetworkLog;c:\windows\svcs.exe [2011-12-22 508928]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [2006-8-1 36352]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [2006-8-1 29184]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2006-8-1 226304]
S1 MpKsl019a6e6b;MpKsl019a6e6b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{76a190e3-b14d-4de5-bea6-70afedeb80a8}\mpksl019a6e6b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{76a190e3-b14d-4de5-bea6-70afedeb80a8}\MpKsl019a6e6b.sys [?]
S1 MpKsl131410d0;MpKsl131410d0;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d60a8d37-4836-4f76-9a33-875aedc743bf}\mpksl131410d0.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d60a8d37-4836-4f76-9a33-875aedc743bf}\MpKsl131410d0.sys [?]
S1 MpKsl1a78d91a;MpKsl1a78d91a;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a69c6c3c-1fdf-48a4-823b-174054361975}\mpksl1a78d91a.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a69c6c3c-1fdf-48a4-823b-174054361975}\MpKsl1a78d91a.sys [?]
S1 MpKsl2b90e025;MpKsl2b90e025;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e0650c73-8aaa-412e-89ef-d4a561a484fb}\mpksl2b90e025.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e0650c73-8aaa-412e-89ef-d4a561a484fb}\MpKsl2b90e025.sys [?]
S1 MpKsl2fc94a6c;MpKsl2fc94a6c;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0dccb799-df38-4522-b961-8885aa985070}\mpksl2fc94a6c.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0dccb799-df38-4522-b961-8885aa985070}\MpKsl2fc94a6c.sys [?]
S1 MpKsl4b77b9d9;MpKsl4b77b9d9;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{2abb11ac-cd85-4da4-b0ef-0ec8c3e75268}\mpksl4b77b9d9.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{2abb11ac-cd85-4da4-b0ef-0ec8c3e75268}\MpKsl4b77b9d9.sys [?]
S1 MpKsl5ccde7cd;MpKsl5ccde7cd;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f7822d26-1749-4a2e-aceb-97ad64a6b3fb}\mpksl5ccde7cd.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f7822d26-1749-4a2e-aceb-97ad64a6b3fb}\MpKsl5ccde7cd.sys [?]
S1 MpKsl5d449601;MpKsl5d449601;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{05e2b939-f63d-4caf-bc74-9810caf4beca}\mpksl5d449601.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{05e2b939-f63d-4caf-bc74-9810caf4beca}\MpKsl5d449601.sys [?]
S1 MpKsl77922ea0;MpKsl77922ea0;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7f58eee0-3c90-4c11-bb5a-c5678f362c3c}\mpksl77922ea0.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7f58eee0-3c90-4c11-bb5a-c5678f362c3c}\MpKsl77922ea0.sys [?]
S1 MpKsl9cf991ff;MpKsl9cf991ff;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6c29e250-50d2-4bab-bddd-d3e0f4f916c7}\mpksl9cf991ff.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6c29e250-50d2-4bab-bddd-d3e0f4f916c7}\MpKsl9cf991ff.sys [?]
S1 MpKsla2e9d872;MpKsla2e9d872;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d38fbcf1-5be2-4822-9a21-08fab42fd631}\mpksla2e9d872.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d38fbcf1-5be2-4822-9a21-08fab42fd631}\MpKsla2e9d872.sys [?]
S1 MpKslbc212727;MpKslbc212727;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4fddf741-06e1-4a7a-885f-baabf1579592}\mpkslbc212727.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4fddf741-06e1-4a7a-885f-baabf1579592}\MpKslbc212727.sys [?]
S1 MpKslc17de5a7;MpKslc17de5a7;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{ee2c6e03-1d2e-4377-84db-a9fedd4767e5}\mpkslc17de5a7.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{ee2c6e03-1d2e-4377-84db-a9fedd4767e5}\MpKslc17de5a7.sys [?]
S1 MpKslcc512366;MpKslcc512366;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0f376aeb-ef6e-4888-bb00-06991eae7858}\mpkslcc512366.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0f376aeb-ef6e-4888-bb00-06991eae7858}\MpKslcc512366.sys [?]
S1 MpKsle3be4c89;MpKsle3be4c89;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f90ebf98-267c-4ca0-a566-258dd7786a28}\mpksle3be4c89.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f90ebf98-267c-4ca0-a566-258dd7786a28}\MpKsle3be4c89.sys [?]
S1 MpKsleaa17a74;MpKsleaa17a74;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{aee360c6-7f3c-479c-b190-c92fd0075732}\mpksleaa17a74.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{aee360c6-7f3c-479c-b190-c92fd0075732}\MpKsleaa17a74.sys [?]
S1 MpKslf22f3505;MpKslf22f3505;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6c29e250-50d2-4bab-bddd-d3e0f4f916c7}\mpkslf22f3505.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6c29e250-50d2-4bab-bddd-d3e0f4f916c7}\MpKslf22f3505.sys [?]
S1 MpKslf50ea28f;MpKslf50ea28f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a53ffd0a-a11d-4f56-b3b6-4a9640ed43a5}\mpkslf50ea28f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a53ffd0a-a11d-4f56-b3b6-4a9640ed43a5}\MpKslf50ea28f.sys [?]
S2 Ias;MicroSoft Team Info;c:\windows\system32\svchost.exe -k netsvcs [2006-8-1 14336]
S2 lxdeCATSCustConnectService;lxdeCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdeserv.exe [2010-1-30 99248]
S3 IO;IO;\??\h:\smap\tools32\io.sys --> h:\smap\tools32\IO.SYS [?]
S3 PTDUBus;PANTECH UM175 Composite Device Driver ;c:\windows\system32\drivers\PTDUBus.sys [2009-9-18 33024]
S3 PTDUMdm;PANTECH UM175 Drivers;c:\windows\system32\drivers\PTDUMdm.sys [2009-9-18 41344]
S3 PTDUVsp;PANTECH UM175 Diagnostic Port;c:\windows\system32\drivers\PTDUVsp.sys [2009-9-18 39936]
S3 PTDUWWAN;PANTECH UM175 WWAN Driver;c:\windows\system32\drivers\PTDUWWAN.sys [2009-9-18 59904]
S3 SCRx31 USB Reader;SCRx31 USB Reader;c:\windows\system32\drivers\stc2.sys [2002-8-22 57088]
S3 SiDocFil;Silicon Image 3112 Docking Station Filter;c:\windows\system32\drivers\SiDocFil.sys [2006-8-1 4224]
S3 SWNC8U80;Sierra Wireless MUX NDIS Driver (UMTS80);c:\windows\system32\drivers\swnc8u80.sys [2008-1-10 165248]
S3 SWUMX80;Sierra Wireless USB MUX Driver (UMTS80);c:\windows\system32\drivers\swumx80.sys [2008-1-10 142976]
S3 Symantec Core LC;Symantec Core LC;c:\program files\common files\symantec shared\ccpd-lc\symlcsvc.exe [2007-2-1 1120960]
.
=============== Created Last 30 ================
.
2011-12-22 14:59:45 508928 ----a-w- c:\windows\svcs.exe
2011-12-16 15:06:34 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-12-16 15:01:18 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-12-16 15:01:07 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-12-16 15:01:07 2027008 ----a-w- c:\windows\system32\ntkrnlpa.exe
.
==================== Find3M ====================
.
2011-12-10 21:24:06 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-04 19:20:51 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:20:51 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-11-04 19:20:51 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23:59 385024 ----a-w- c:\windows\system32\html.iec
.
============= FINISH: 20:00:01.73 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 8/2/2007 8:51:59 PM
System Uptime: 1/8/2012 7:42:13 PM (1 hours ago)
.
Motherboard: Sony Corporation | | VAIO
Processor: Intel(R) Core(TM)2 CPU T7200 @ 2.00GHz | N/A | 1660/167mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 143 GiB total, 75.663 GiB free.
D: is Removable
E: is Removable
G: is CDROM (UDF1.02)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP743: 1/8/2012 7:27:17 PM - System Checkpoint
.
==== Installed Programs ======================
.
ABBYY FineReader 6.0 Sprint
ActivClient CAC 6.1 x86
ActiveSpeed
Adobe Flash Player 10 ActiveX
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ATI Catalyst Control Center
ATI Display Driver
BlackBerry Desktop Software 6.0.1
Bluetooth Stack for Windows by Toshiba
Choice Guard
Click to DVD 2.0.03 Menu Data
Click to DVD 2.5.20
Coupon Printer for Windows
Critical Update for Windows Media Player 11 (KB959772)
DBsign Web Signer
Driver Installer
Fingerprint Tutorial
Google Update Helper
High Definition Audio Driver Package - KB835221
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
Intel(R) Graphics Media Accelerator Driver
Intel(R) Matrix Storage Manager
Intel(R) PROSet/Wireless Software
InterActual Player
InterVideo WinDVD for VAIO
ISScript
iTunes
J2SE Runtime Environment 5.0 Update 7
Java(TM) 6 Update 17
Java(TM) 6 Update 2
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
LAN Setting Utility
Lexmark 4800 Series
Lexmark Fax Solutions
Lexmark Software Uninstall
Lexmark Toolbar
LiveUpdate 2.7 (Symantec Corporation)
Macromedia Flash Player 8
Macromedia Flash Player 8 Plugin
Malwarebytes Anti-Malware version 1.60.0.1800
mCore
mDriver
mDrWiFi
Memory Stick Formatter
mEoU
mHelp
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft ActiveSync 4.0
Microsoft Application Error Reporting
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Digital Image Library 9 - Blocker
Microsoft Digital Image Starter Edition 2006
Microsoft Digital Image Starter Edition 2006 Editor
Microsoft Digital Image Starter Edition 2006 Library
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Plus 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Software Update for Web Folders (English) 12
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
mIWA
mLogView
mMHouse
MobileMe Control Panel
Motorola Driver Installation
Move Networks Media Player for Internet Explorer
Mozilla Firefox (3.6.25)
mPfMgr
mPfWiz
mProSafe
MSVCRT
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
MSXML 6 Service Pack 2 (KB973686)
mWlsSafe
mXML
MySpaceIM
mZConfig
Nokia Connectivity Adapter Cable DKU-5
Office 2003 Trial Assistant
OGA Notifier 2.0.0048.0
OpenMG Secure Module 4.4.00
OpenOffice.org Installer 1.0
PANTECH UM175 Driver
PC ScanAndSweep
PC SpeedScan Pro
PowerTeacher Gradebook
Protector Suite QL 5.3
Punch! Home Design - Platinum
PureEdge Viewer 6.5
QuickBooks Pro 2007
QuickBooks Product Listing Service
QuickTime
Realtek High Definition Audio Driver
Roxio Activation Module
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Drag-to-Disc
Roxio Express Labeler 3
Roxio Media Manager
Roxio Update Manager
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2553089)
Security Update for 2007 Microsoft Office System (KB2553090)
Security Update for 2007 Microsoft Office System (KB2584063)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office InfoPath 2007 (KB2510061)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Microsoft Windows (KB2564958)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953838)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB963027)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969897)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972260)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB976325)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Segoe UI
Setting Utility Series
Soft Data Fax Modem with SmartCP
Sonic CinePlayer Decoder Pack
Sony Browser Search
Sony Certificate PCH
Sony MP4 Shared Library
Sony Utilities DLL
Sony Video Shared Library
SupportSoft Assisted Service
Symantec KB-DocID:2003093015493306
TPM Tutorial
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Windows (KB971513)
Update for Outlook 2007 Junk Email Filter (KB2596560)
Update for Windows Internet Explorer 8 (KB975364)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB2641690)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB976749)
VAIO Backup Utility
VAIO Camera Utility
VAIO Central
VAIO Event Service
VAIO Light Flo Wallpaper
VAIO Long Battery Life Wallpaper
VAIO Original Screen Saver
VAIO Original Screen Saver VAIO Cozy Screen SD Wide Contents
VAIO Power Management
VAIO Registration
VAIO Security Center
VAIO Support Central
VAIO Update 2
VAIO Wireless LAN Setup Utility
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Media Format 11 runtime
Windows Media Player 10 Hotfix - KB894476
Windows Media Player 10 Hotfix [See KB886612 for more information]
Windows Media Player 11
Windows PowerShell(TM) 1.0
Windows Search 4.0
Windows XP Service Pack 3
Wireless Switch Setting Utility
.
==== Event Viewer Messages From Past Week ========
.
1/8/2012 5:37:01 PM, error: Service Control Manager [7023] - The MicroSoft Team Info service terminated with the following error: The specified module could not be found.
1/8/2012 4:58:43 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the JavaQuickStarterService service.
1/5/2012 5:22:59 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
1/5/2012 5:22:36 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Roxio Hard Drive Watcher 9 service to connect.
1/5/2012 5:22:36 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the lxdeCATSCustConnectService service to connect.
1/5/2012 5:22:36 PM, error: Service Control Manager [7000] - The lxdeCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
.
==== End Of File ===========================
I'm trying to help out a friend with a pretty bad computer. I'm not sure if he has ever updated a program and probably doesn't follow safe surfing practices. It had broken .exe registry entries, redirect problems, ping virus, and a pretty good amount of malware. I've received excellent help via this forum before and would appreciate it again if possible. Thanks!
v/r,
Bmerk
Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org
Database version: v2012.01.08.04
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
07 :: B893D7C217924A2 [administrator]
1/8/2012 5:06:32 PM
mbam-log-2012-01-08 (17-06-32).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 211329
Time elapsed: 25 minute(s), 22 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 1
C:\WINDOWS\system32\Iasex.dll (Backdoor.Bot) -> Delete on reboot.
Registry Keys Detected: 1
HKCR\AH (Rogue.MultipleAV) -> Quarantined and deleted successfully.
Registry Values Detected: 1
HKCR\ah|Content Type (Rogue.MultipleAV) -> Data: application/x-msdownload -> Quarantined and deleted successfully.
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 7
C:\WINDOWS\Temp\81.88649.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\fsdfdsf0.5524026049045493.exe (Trojan.FakeAV) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\oiu0.40183710072282397.exe (Trojan.FakeAV) -> Quarantined and deleted successfully.
C:\Documents and Settings\07\Local Settings\Application Data\gyb.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\Iasex.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\0.9559459239642334.exe (Exploit.Drop.2) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\slp2541467069594085652.tmp (Exploit.Drop.3) -> Quarantined and deleted successfully.
(end)
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-08 19:37:59
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 Intel___ rev.1.0.
Running: p5v0j4ls.exe; Driver: C:\DOCUME~1\07\LOCALS~1\Temp\fgwdiaow.sys
---- Kernel code sections - GMER 1.0.15 ----
? bnmt.sys The system cannot find the file specified. !
.text mrxsmb.sys AF5B6000 13 Bytes JMP AF5B6C0D \SystemRoot\system32\DRIVERS\mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)
.text mrxsmb.sys AF5B600E 32 Bytes [28, 1A, 5D, AF, 8B, 0D, F4, ...]
.text mrxsmb.sys AF5B6030 87 Bytes JMP AF5C463C \SystemRoot\system32\DRIVERS\mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)
.text mrxsmb.sys AF5B6088 276 Bytes CALL AF5B554F \SystemRoot\system32\DRIVERS\mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)
.text mrxsmb.sys AF5B619D 125 Bytes [25, 9C, 19, 5D, AF, 90, 90, ...]
.text ...
? C:\WINDOWS\system32\DRIVERS\mrxsmb.sys suspicious PE modification
---- User code sections - GMER 1.0.15 ----
.text C:\WINDOWS\System32\svchost.exe[1792] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 00F4000A
.text C:\WINDOWS\System32\svchost.exe[1792] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 00F5000A
.text C:\WINDOWS\System32\svchost.exe[1792] ntdll.dll!KiUserExceptionDispatcher 7C90E47C 5 Bytes JMP 00F3000C
.text C:\WINDOWS\system32\SearchIndexer.exe[3048] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 00585C0C C:\WINDOWS\system32\MSSRCH.DLL (mssrch.dll/Microsoft Corporation)
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs SiWinAcc.sys (Windows Accelerator Driver/Silicon Image, Inc.)
---- Modules - GMER 1.0.15 ----
Module (noname) (*** hidden *** ) B621D000-B6237000 (106496 bytes)
---- Files - GMER 1.0.15 ----
File C:\WINDOWS\$NtUninstallKB24024$\4080384461 0 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536 0 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\@ 2048 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\bckfg.tmp 928 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\cfg.ini 206 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\Desktop.ini 4608 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\keywords 216 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\kwrd.dll 223744 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\L 0 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\L\frmovfwd 456320 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\lsflt7.ver 5176 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U 0 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\00000001.@ 2048 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\00000002.@ 224768 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\00000004.@ 1024 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\80000000.@ 11264 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\80000004.@ 12800 bytes
File C:\WINDOWS\$NtUninstallKB24024$\599293536\U\80000032.@ 77312 bytes
---- EOF - GMER 1.0.15 ----
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_17
Run by 07 at 19:58:43 on 2012-01-08
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.93 [GMT -6:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\ActivIdentity\ActivClient\accoca.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\lxdecoms.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\svcs.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\Program Files\Lexmark 4800 Series\lxdemon.exe
C:\Program Files\Lexmark 4800 Series\lxdeamon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\ActivIdentity\ActivClient\acsagent.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\System32\ping.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://mysearch.myway.com/jsp/sonysidebar.jsp?p=SY
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: N/A: {f0f8c2b6-a911-4b4e-b2ae-89b82dc81f15} - c:\program files\sonysa\srchas\sySrcAs.dll
BHO: : {f0f8c2b1-a911-4b4e-b2ae-89b82dc81f15} - c:\program files\sonysa\srchas\sySrcAs.dll
TB: Lexmark Toolbar: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - c:\program files\lexmark toolbar\toolband.dll
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
TB: {C4069E3A-68F1-403E-B40E-20066696354B} - No File
EB: &Research: {ff059e31-cc5a-4e2e-bf3b-96e929d65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [H/PC Connection Agent] "c:\program files\microsoft activesync\wcescomm.exe"
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [EOUApp] "c:\program files\intel\wireless\bin\EOUWiz.exe"
mRun: [AzMixerSel] c:\program files\realtek\installshield\AzMixerSel.exe
mRun: [SonyPowerCfg] "c:\program files\sony\vaio power management\SPMgr.exe"
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\Iaanotif.exe
mRun: [VAIO Update 2] "c:\program files\sony\vaio update 2\VAIOUpdt.exe" /Stationary
mRun: [ATICCC] "c:\program files\ati technologies\ati.ace\cli.exe" runtime -Delay
mRun: [Switcher.exe] c:\program files\sony\wireless switch setting utility\Switcher.exe
mRun: [masqform.exe] c:\program files\pureedge\viewer 6.5\masqform.exe -RunOnce
mRun: [FaxCenterServer] "c:\program files\lexmark fax solutions\fm3032.exe" /s
mRun: [lxdemon.exe] "c:\program files\lexmark 4800 series\lxdemon.exe"
mRun: [lxdeamon] "c:\program files\lexmark 4800 series\lxdeamon.exe"
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
dRun: [MySpaceIM] c:\program files\myspace\im\MySpaceIM.exe
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\activc~1.lnk - c:\program files\actividentity\activclient\acsagent.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\blueto~1.lnk - c:\program files\toshiba\bluetooth toshiba stack\TosBtMng.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\micros~4\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\micros~4\INetRepl.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
LSP: mswsock.dll
Trusted Zone: microsoft.com\www.update
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 24.159.64.23 24.217.201.67 66.189.0.100
TCP: Interfaces\{22F9290B-C50C-4A8A-9986-F1111CAA48EF} : DhcpNameServer = 24.159.64.23 24.217.201.67 66.189.0.100
Notify: ackpbsc - c:\windows\system32\ackpbsc.dll
Notify: acunlock - c:\program files\actividentity\activclient\acunlock.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: igfxcui - igfxdev.dll
Notify: psfus - fusstub.dll
Notify: VESWinlogon - VESWinlogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
LSA: Notification Packages = scecli fusstub
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\07\application data\mozilla\firefox\profiles\u50u0zei.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.campbellyardsales.com/index.jsp
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\documents and settings\07\application data\mozilla\firefox\profiles\u50u0zei.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp071303000006.dll
FF - plugin: c:\progra~1\gradke~1\dbsign~1\lib\npDBsignWeb.dll
FF - plugin: c:\progra~1\mozill~1\plugins\npnul32.dll
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npDBsignWeb.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npMozCouponPrinter.dll
FF - Ext: ScribeFire Classic: {F807FACD-E46A-4793-B345-D58CB177673C} - %profile%\extensions\{F807FACD-E46A-4793-B345-D58CB177673C}
FF - Ext: Move Media Player: moveplayer@movenetworks.com - %profile%\extensions\moveplayer@movenetworks.com
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
.
============= SERVICES / DRIVERS ===============
.
R2 accoca;ActivClient Middleware Service;c:\program files\actividentity\activclient\accoca.exe [2007-5-15 182576]
R2 FdRedir;FdRedir;c:\program files\common files\protector suite ql\drivers\FdRedir.sys [2006-2-22 13440]
R2 FileDisk2;FileDisk Protector Kernel Driver;c:\program files\common files\protector suite ql\drivers\filedisk.sys [2006-2-22 33024]
R2 lxde_device;lxde_device;c:\windows\system32\lxdecoms.exe -service --> c:\windows\system32\lxdecoms.exe -service [?]
R2 NetworkLog;NetworkLog;c:\windows\svcs.exe [2011-12-22 508928]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [2006-8-1 36352]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [2006-8-1 29184]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2006-8-1 226304]
S1 MpKsl019a6e6b;MpKsl019a6e6b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{76a190e3-b14d-4de5-bea6-70afedeb80a8}\mpksl019a6e6b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{76a190e3-b14d-4de5-bea6-70afedeb80a8}\MpKsl019a6e6b.sys [?]
S1 MpKsl131410d0;MpKsl131410d0;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d60a8d37-4836-4f76-9a33-875aedc743bf}\mpksl131410d0.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d60a8d37-4836-4f76-9a33-875aedc743bf}\MpKsl131410d0.sys [?]
S1 MpKsl1a78d91a;MpKsl1a78d91a;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a69c6c3c-1fdf-48a4-823b-174054361975}\mpksl1a78d91a.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a69c6c3c-1fdf-48a4-823b-174054361975}\MpKsl1a78d91a.sys [?]
S1 MpKsl2b90e025;MpKsl2b90e025;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e0650c73-8aaa-412e-89ef-d4a561a484fb}\mpksl2b90e025.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e0650c73-8aaa-412e-89ef-d4a561a484fb}\MpKsl2b90e025.sys [?]
S1 MpKsl2fc94a6c;MpKsl2fc94a6c;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0dccb799-df38-4522-b961-8885aa985070}\mpksl2fc94a6c.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0dccb799-df38-4522-b961-8885aa985070}\MpKsl2fc94a6c.sys [?]
S1 MpKsl4b77b9d9;MpKsl4b77b9d9;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{2abb11ac-cd85-4da4-b0ef-0ec8c3e75268}\mpksl4b77b9d9.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{2abb11ac-cd85-4da4-b0ef-0ec8c3e75268}\MpKsl4b77b9d9.sys [?]
S1 MpKsl5ccde7cd;MpKsl5ccde7cd;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f7822d26-1749-4a2e-aceb-97ad64a6b3fb}\mpksl5ccde7cd.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f7822d26-1749-4a2e-aceb-97ad64a6b3fb}\MpKsl5ccde7cd.sys [?]
S1 MpKsl5d449601;MpKsl5d449601;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{05e2b939-f63d-4caf-bc74-9810caf4beca}\mpksl5d449601.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{05e2b939-f63d-4caf-bc74-9810caf4beca}\MpKsl5d449601.sys [?]
S1 MpKsl77922ea0;MpKsl77922ea0;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7f58eee0-3c90-4c11-bb5a-c5678f362c3c}\mpksl77922ea0.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7f58eee0-3c90-4c11-bb5a-c5678f362c3c}\MpKsl77922ea0.sys [?]
S1 MpKsl9cf991ff;MpKsl9cf991ff;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6c29e250-50d2-4bab-bddd-d3e0f4f916c7}\mpksl9cf991ff.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6c29e250-50d2-4bab-bddd-d3e0f4f916c7}\MpKsl9cf991ff.sys [?]
S1 MpKsla2e9d872;MpKsla2e9d872;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d38fbcf1-5be2-4822-9a21-08fab42fd631}\mpksla2e9d872.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d38fbcf1-5be2-4822-9a21-08fab42fd631}\MpKsla2e9d872.sys [?]
S1 MpKslbc212727;MpKslbc212727;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4fddf741-06e1-4a7a-885f-baabf1579592}\mpkslbc212727.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4fddf741-06e1-4a7a-885f-baabf1579592}\MpKslbc212727.sys [?]
S1 MpKslc17de5a7;MpKslc17de5a7;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{ee2c6e03-1d2e-4377-84db-a9fedd4767e5}\mpkslc17de5a7.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{ee2c6e03-1d2e-4377-84db-a9fedd4767e5}\MpKslc17de5a7.sys [?]
S1 MpKslcc512366;MpKslcc512366;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0f376aeb-ef6e-4888-bb00-06991eae7858}\mpkslcc512366.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0f376aeb-ef6e-4888-bb00-06991eae7858}\MpKslcc512366.sys [?]
S1 MpKsle3be4c89;MpKsle3be4c89;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f90ebf98-267c-4ca0-a566-258dd7786a28}\mpksle3be4c89.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f90ebf98-267c-4ca0-a566-258dd7786a28}\MpKsle3be4c89.sys [?]
S1 MpKsleaa17a74;MpKsleaa17a74;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{aee360c6-7f3c-479c-b190-c92fd0075732}\mpksleaa17a74.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{aee360c6-7f3c-479c-b190-c92fd0075732}\MpKsleaa17a74.sys [?]
S1 MpKslf22f3505;MpKslf22f3505;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6c29e250-50d2-4bab-bddd-d3e0f4f916c7}\mpkslf22f3505.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6c29e250-50d2-4bab-bddd-d3e0f4f916c7}\MpKslf22f3505.sys [?]
S1 MpKslf50ea28f;MpKslf50ea28f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a53ffd0a-a11d-4f56-b3b6-4a9640ed43a5}\mpkslf50ea28f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a53ffd0a-a11d-4f56-b3b6-4a9640ed43a5}\MpKslf50ea28f.sys [?]
S2 Ias;MicroSoft Team Info;c:\windows\system32\svchost.exe -k netsvcs [2006-8-1 14336]
S2 lxdeCATSCustConnectService;lxdeCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdeserv.exe [2010-1-30 99248]
S3 IO;IO;\??\h:\smap\tools32\io.sys --> h:\smap\tools32\IO.SYS [?]
S3 PTDUBus;PANTECH UM175 Composite Device Driver ;c:\windows\system32\drivers\PTDUBus.sys [2009-9-18 33024]
S3 PTDUMdm;PANTECH UM175 Drivers;c:\windows\system32\drivers\PTDUMdm.sys [2009-9-18 41344]
S3 PTDUVsp;PANTECH UM175 Diagnostic Port;c:\windows\system32\drivers\PTDUVsp.sys [2009-9-18 39936]
S3 PTDUWWAN;PANTECH UM175 WWAN Driver;c:\windows\system32\drivers\PTDUWWAN.sys [2009-9-18 59904]
S3 SCRx31 USB Reader;SCRx31 USB Reader;c:\windows\system32\drivers\stc2.sys [2002-8-22 57088]
S3 SiDocFil;Silicon Image 3112 Docking Station Filter;c:\windows\system32\drivers\SiDocFil.sys [2006-8-1 4224]
S3 SWNC8U80;Sierra Wireless MUX NDIS Driver (UMTS80);c:\windows\system32\drivers\swnc8u80.sys [2008-1-10 165248]
S3 SWUMX80;Sierra Wireless USB MUX Driver (UMTS80);c:\windows\system32\drivers\swumx80.sys [2008-1-10 142976]
S3 Symantec Core LC;Symantec Core LC;c:\program files\common files\symantec shared\ccpd-lc\symlcsvc.exe [2007-2-1 1120960]
.
=============== Created Last 30 ================
.
2011-12-22 14:59:45 508928 ----a-w- c:\windows\svcs.exe
2011-12-16 15:06:34 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-12-16 15:01:18 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-12-16 15:01:07 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-12-16 15:01:07 2027008 ----a-w- c:\windows\system32\ntkrnlpa.exe
.
==================== Find3M ====================
.
2011-12-10 21:24:06 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-04 19:20:51 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:20:51 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-11-04 19:20:51 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23:59 385024 ----a-w- c:\windows\system32\html.iec
.
============= FINISH: 20:00:01.73 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 8/2/2007 8:51:59 PM
System Uptime: 1/8/2012 7:42:13 PM (1 hours ago)
.
Motherboard: Sony Corporation | | VAIO
Processor: Intel(R) Core(TM)2 CPU T7200 @ 2.00GHz | N/A | 1660/167mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 143 GiB total, 75.663 GiB free.
D: is Removable
E: is Removable
G: is CDROM (UDF1.02)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP743: 1/8/2012 7:27:17 PM - System Checkpoint
.
==== Installed Programs ======================
.
ABBYY FineReader 6.0 Sprint
ActivClient CAC 6.1 x86
ActiveSpeed
Adobe Flash Player 10 ActiveX
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ATI Catalyst Control Center
ATI Display Driver
BlackBerry Desktop Software 6.0.1
Bluetooth Stack for Windows by Toshiba
Choice Guard
Click to DVD 2.0.03 Menu Data
Click to DVD 2.5.20
Coupon Printer for Windows
Critical Update for Windows Media Player 11 (KB959772)
DBsign Web Signer
Driver Installer
Fingerprint Tutorial
Google Update Helper
High Definition Audio Driver Package - KB835221
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
Intel(R) Graphics Media Accelerator Driver
Intel(R) Matrix Storage Manager
Intel(R) PROSet/Wireless Software
InterActual Player
InterVideo WinDVD for VAIO
ISScript
iTunes
J2SE Runtime Environment 5.0 Update 7
Java(TM) 6 Update 17
Java(TM) 6 Update 2
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
LAN Setting Utility
Lexmark 4800 Series
Lexmark Fax Solutions
Lexmark Software Uninstall
Lexmark Toolbar
LiveUpdate 2.7 (Symantec Corporation)
Macromedia Flash Player 8
Macromedia Flash Player 8 Plugin
Malwarebytes Anti-Malware version 1.60.0.1800
mCore
mDriver
mDrWiFi
Memory Stick Formatter
mEoU
mHelp
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft ActiveSync 4.0
Microsoft Application Error Reporting
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Digital Image Library 9 - Blocker
Microsoft Digital Image Starter Edition 2006
Microsoft Digital Image Starter Edition 2006 Editor
Microsoft Digital Image Starter Edition 2006 Library
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Plus 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Software Update for Web Folders (English) 12
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
mIWA
mLogView
mMHouse
MobileMe Control Panel
Motorola Driver Installation
Move Networks Media Player for Internet Explorer
Mozilla Firefox (3.6.25)
mPfMgr
mPfWiz
mProSafe
MSVCRT
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
MSXML 6 Service Pack 2 (KB973686)
mWlsSafe
mXML
MySpaceIM
mZConfig
Nokia Connectivity Adapter Cable DKU-5
Office 2003 Trial Assistant
OGA Notifier 2.0.0048.0
OpenMG Secure Module 4.4.00
OpenOffice.org Installer 1.0
PANTECH UM175 Driver
PC ScanAndSweep
PC SpeedScan Pro
PowerTeacher Gradebook
Protector Suite QL 5.3
Punch! Home Design - Platinum
PureEdge Viewer 6.5
QuickBooks Pro 2007
QuickBooks Product Listing Service
QuickTime
Realtek High Definition Audio Driver
Roxio Activation Module
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Drag-to-Disc
Roxio Express Labeler 3
Roxio Media Manager
Roxio Update Manager
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2553089)
Security Update for 2007 Microsoft Office System (KB2553090)
Security Update for 2007 Microsoft Office System (KB2584063)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office InfoPath 2007 (KB2510061)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Microsoft Windows (KB2564958)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953838)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB963027)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969897)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972260)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB976325)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Segoe UI
Setting Utility Series
Soft Data Fax Modem with SmartCP
Sonic CinePlayer Decoder Pack
Sony Browser Search
Sony Certificate PCH
Sony MP4 Shared Library
Sony Utilities DLL
Sony Video Shared Library
SupportSoft Assisted Service
Symantec KB-DocID:2003093015493306
TPM Tutorial
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Windows (KB971513)
Update for Outlook 2007 Junk Email Filter (KB2596560)
Update for Windows Internet Explorer 8 (KB975364)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB2641690)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB976749)
VAIO Backup Utility
VAIO Camera Utility
VAIO Central
VAIO Event Service
VAIO Light Flo Wallpaper
VAIO Long Battery Life Wallpaper
VAIO Original Screen Saver
VAIO Original Screen Saver VAIO Cozy Screen SD Wide Contents
VAIO Power Management
VAIO Registration
VAIO Security Center
VAIO Support Central
VAIO Update 2
VAIO Wireless LAN Setup Utility
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Media Format 11 runtime
Windows Media Player 10 Hotfix - KB894476
Windows Media Player 10 Hotfix [See KB886612 for more information]
Windows Media Player 11
Windows PowerShell(TM) 1.0
Windows Search 4.0
Windows XP Service Pack 3
Wireless Switch Setting Utility
.
==== Event Viewer Messages From Past Week ========
.
1/8/2012 5:37:01 PM, error: Service Control Manager [7023] - The MicroSoft Team Info service terminated with the following error: The specified module could not be found.
1/8/2012 4:58:43 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the JavaQuickStarterService service.
1/5/2012 5:22:59 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
1/5/2012 5:22:36 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Roxio Hard Drive Watcher 9 service to connect.
1/5/2012 5:22:36 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the lxdeCATSCustConnectService service to connect.
1/5/2012 5:22:36 PM, error: Service Control Manager [7000] - The lxdeCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
.
==== End Of File ===========================