Explorer.exe keeps jamming - Stroage protector virus?

BullGuard Antivirus Forum > Virus Removal > Removal Tools > Explorer.exe keeps jamming - Stroage protector virus?

Forum Quick Jump

[ << Previous Thread | Next Thread >> ]

andy2008
New Member

Date Joined Jan 2008
Total Posts : 1

Posted 1-11-2008 12:20 (GMT +1)

My laptop has suddenly been overcome by a virus which jams explorer.exe. thus not being able to open My Computer, My Documents, Recyling bin etc. I am recieving regular meaages saying my computer may be at risk and maybe unstable. these are presented in windows error boxes but are definatly fake. The messages told me to download a file called Storage Protector, which i think was the virus. The whole system has slowed down majorly, and i have to regularly restart the laptop manually each day due to programes 'Not Responding'. on the desktop, top icons have appeard, one called Windows Update, and the other called Help and Support. these are both fake as they lead to the storage protector website and prompt you to downboad.

Norton and Mcaffee do not pick up anything when scanned and neither does Ad-aware. i update all of these everday.

if anyone has heard of this Virus or can help me remove it, it would be greatly appriciated!

cheers! andy2008

tiffany_gaf
New Member

Date Joined Oct 2007
Total Posts : 9

Posted 1-11-2008 3:35 (GMT +1)

Try avast

Touch
Forum Moderator

Date Joined Jun 2004
Total Posts : 13642

Posted 1-11-2008 3:43 (GMT +1)

Hi andy2008 smile

Let´s see what´s running on Your computer -

Click here - ->> Before posting a log

After You have run the scan tools -

Reboot normally

Post Hijackthis log along with AVG Anti-Spyware log, C: Rootlog TXT, C: combofix txt in this topic

NB. We ask that you remove any P2P file sharing programs you have installed before we clean your computer. We do not clean logs that have P2P applications installed as this can cause reinfection during your cleaning

Do NOT post your problem in someone elses thread.

Member of - Alliance of Security Analysis Professionals

andy2008
New Member

Date Joined Jan 2008
Total Posts : 1

Posted 1-12-2008 9:43 (GMT +1)

i ran the two scanning tools. anything here that is unusual?

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 22:31:02 11/01/2008

+ Scan result:

HKLM\SYSTEM\ControlSet001\Enum\STORAGE\RemovableMedia\7&111b843c&0&RM -> Proxy.Small : Cleaned with backup (quarantined).
HKLM\SYSTEM\ControlSet001\Enum\STORAGE\RemovableMedia\7&111b843c&0&RM\LogConf -> Proxy.Small : Cleaned with backup (quarantined).
:mozilla.178:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.22:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.23:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.24:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.25:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.196:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.197:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.198:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.199:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.200:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.201:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.202:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.261:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.159:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.160:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.161:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.162:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.214:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Adviva : Cleaned.
:mozilla.18:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.841:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.839:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.840:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.299:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Clickbank : Cleaned.
:mozilla.585:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Connextra : Cleaned.
:mozilla.586:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Connextra : Cleaned.
:mozilla.587:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Connextra : Cleaned.
:mozilla.588:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Connextra : Cleaned.
:mozilla.717:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Connextra : Cleaned.
:mozilla.55:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.300:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.284:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.285:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.286:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.468:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.469:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.292:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.297:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.488:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.489:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.21:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.370:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.371:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.372:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.373:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.374:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.375:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.376:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.842:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Skype : Cleaned.
:mozilla.843:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Skype : Cleaned.
:mozilla.846:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Skype : Cleaned.
:mozilla.298:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.343:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.344:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.345:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.346:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.128:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.129:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.130:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.16:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.211:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Webtrends : Cleaned.
:mozilla.274:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.275:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.358:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.359:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.360:C:\Documents and Settings\Andrew Leeson\Application Data\Mozilla\Firefox\Profiles\c99jsl4j.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.

::Report end

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:40:38, on 12/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\Network Associates\VirusScan\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Documents and Settings\Andrew Leeson\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.play.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: ZoneAlarm Spy Blocker - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\ZoneAlarmSB\bar\1.bin\SPYBLOCK.DLL
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [SonyPowerCfg] C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
O4 - HKLM\..\Run: [Switcher.exe] C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [Network Associates Error Reporting Service] "C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [] C:\Program Files\StorageProtector\SysRep.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [54a58e5f] rundll32.exe "C:\WINDOWS\system32\odoantgg.dll",b
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Transfer by Image Converter 2 Plus - C:\Program Files\Sony\Image Converter 2\menu.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker\RunApp.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/en/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by103w.bay103.mail.live.com/mail/resources/MsnPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-GB/a-UNO1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\__c00ED524.dat
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DomainService - Unknown owner - C:\WINDOWS\system32\clthkuiu.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 2\IcVzMon.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe
O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe

--
End of file - 13970 bytes

Forum Information

Currently it is Saturday, November 22, 2008 1:17 PM (GMT +1)
There are a total of 64.046 posts in 15.836 threads.
In the last 3 days there were 26 new threads and 155 reply posts. View Active Threads