Sony VAIO Shut Down Today...Help

Hey, happy holidays.  Don't know if this question goes here on the Computer Hardware so feel free to relocate it as needed.

Today, on my SONY VAIO VGN-CR190, all was fine, until I got a blue screen and it shut down.
It's back and up running, but I don't know what to do or if I got issues.

On my icon tray, there is an icon asking me if I want to fix it.
I opened it, and here is the message attached (I did a print screen capture).

So my question, should I disregard or what?
Thanks folks.

Suggest you read this.
http://www.wiki-errors.com/wiki-errors.php?wiki=c0000005
truenorth
P.S. Your post is Not on the hardware forum by the way. At this point it would have probably have been more appropriate to have posted it on the `software forum``

SO, as a novice, just do this

Novice Computer User Solution (completely automated):

1) Download (c0000005) repair utility.

2) Install program and click Scan button.

3) Click the Fix Errors button when scan is completed.

4) Restart your computer.

and do not follow the prompts from the picture I gave you, just shut that down, and do the above?

I wanted to confirm it with you before I do anything.

I cannot testify to the safety of the site i linked nor as to the advice given. At this point as you seem to indicate that the problem was a one time thing that is not present currently. You asked for seemed to be more toward what caused it and why therefore my link sheds light on that aspect of it. I would either await another member`s knowledge of advice given on that site (if known) or do some research on them myself BEFORE doing any of their recommendations. Plus if the problem is non existent at the moment and hopefully does not recur then let sleeping dogs lie would be my advice. truenorth

I mean, I'm on the PC now, I just have no idea if the error has been fixed or not.
I definitely want to the right thing, it'd be easier to just let it die, but I have no clue if it will linger.

I'll just for Dave or someone else to give me their opinion before I do anything.

[Malware Removal Specialist]

Download BlueScreenView to your desktop.
BlueScreenView
unzip downloaded file and double click on BlueScreenView.exe to run the program.
when scanning is done, go to EDIT - Select All
Go to FILE - SAVE Selected Items, and save the report as BSOD.txt
Open BSOD.txt in Notepad, copy all of the content, and paste it into your next reply.

Well, I hope I downloaded it correctly, it didn't really scan, as soon as I opened it populated.

I wasn't sure if you wanted the top or bottom portion of items, so I copied both to text files.
Let me know what you need from me.
Thanks Dave.

[Malware Removal Specialist]

No. The logs are not correct. Please try it again.

OK Dave, which version should I download, I am offered TWO choices:


Download BlueScreenView (in Zip file)
(When I try it here, it says I can open with Windows Explorer, I can't find anything in desktop to open it; I can also save file should I do this?
OR

Download BlueScreenView with full install/uninstall support
(When I do this, it says the file is bluescreenview_setup.exe   and that it is a binary file (127 KB) from htt://www.nirosoft.net   and I can only save it).

[Malware Removal Specialist]

Download BlueScreenView (in Zip file)
(When I try it here, it says I can open with Windows Explorer, I can't find anything in desktop to open it; I can also save file should I do this?

First, download the first one and save it  to your desktop. Double click on it to unzip it.

Alright, this is getting a bit frustrating.

I downloaded the first file, it downloads to "my downloads" which I then send to my desktop (sorry when I download it at first I cannot specify it to my desktop).
So after I send it to my desktop, all it is is a short cut.
I click, I have the option to run or extract, I extract, and then all bluescreen files go on to my desktop:

Bluescreen view (application)
Blueescreen view (HTML help file)
read me

I the application, it opens, there is not one option to scan, all it does is open to this screen which I print screen captured.

So, I don;t what to do, I can't download it directly to my desktop and I can't see any way to run it scan, when opened this all I get

[Malware Removal Specialist]

So after I send it to my desktop, all it is is a short cut.

Yes. When you send any program to the desktop you are indeed creating a shortcut. What you need to do is highlight the file and then copy or cut the file to your desktop.

SUPERAntiSpyware

If you already have SUPERAntiSpyware be sure to check for updates before scanning!

Download SuperAntispyware Free Edition (SAS)
* Double-click the icon on your desktop to run the installer.
* When asked to Update the program definitions, click Yes
* If you encounter any problems while downloading the updates, manually download and unzip them from here
* Next click the Preferences button.

•Under Start-Up Options uncheck Start SUPERAntiSpyware when Windows starts
* Click the Scanning Control tab.
* Under Scanner Options make sure only the following are checked:

•Close browsers before scanning
•Scan for tracking cookies
•Terminate memory threats before quarantining
•Please leave the others unchecked

•Click the Close button to leave the control center screen.

* On the main screen click Scan your computer
* On the left check the box for the drive you are scanning.
* On the right choose Perform Complete Scan
* Click Next to start the scan. Please be patient while it scans your computer.
* After the scan is complete a summary box will appear. Click OK
* Make sure everything in the white box has a check next to it, then click Next
* It will quarantine what it found and if it asks if you want to reboot, click Yes

•To retrieve the removal information please do the following:
•After reboot, double-click the SUPERAntiSpyware icon on your desktop.
•Click Preferences. Click the Statistics/Logs tab.

•Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.

•It will open in your default text editor (preferably Notepad).
•Save the notepad file to your desktop by clicking (in notepad) File > Save As...

* Save the log somewhere you can easily find it. (normally the desktop)
* Click close and close again to exit the program.
*Copy and Paste the log in your post.
*********************************************
Please download Malwarebytes Anti-Malware from here.
Double Click mbam-setup.exe to install the application.

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select "Perform Full Scan", then click Scan.
  
• The scan may take some time to finish,so please be patient.
• When the scan is complete, click OK, then Show Results to view the results.
• Make sure that everything is checked, and click Remove Selected.
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
• Please save the log to a location you will remember.
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Copy and paste the entire report in your next reply.

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
*************************************************
Download DDS from HERE or HERE and save it to your desktop.

Vista users right click on dds and select Run as administrator (you will receive a UAC prompt, please allow it)

* XP users Double click on dds to run it.
* If your antivirus or firewall try to block DDS then please allow it to run.
* When finished DDS will open two (2) logs.
* Save both reports to your desktop.
* The instructions here ask you to attach the Attach.txt.



1) DDS.txt
2) Attach.txt
Instead of attaching, please copy/past both logs into your Thread

Note: DDS will instruct you to post the Attach.txt log as an attachment.
Please just post it as you would any other log by copying and pasting it into the reply.

•Close the program window, and delete the program from your desktop.

Please note: You may have to disable any script protection running if the scan fails to run.
After downloading the tool, disconnect from the internet and disable all antivirus protection.
Run the scan, enable your A/V and reconnect to the internet.
Information on A/V control HERE .Then post your DDS logs. (DDS.txt and Attach.txt )

I'm very confused with bluescreen, should I just skip it and do SAS, MBAM, and DDS for now?

[Malware Removal Specialist]

If you can't get it run, just skip it.

Yea, I would like to do bluescreen but am having problems.

I ran the other three and have them posted, please let me know what needs to be done next.
I should not, with SAS, it did not ask to quarantine, it just asked and I did remove it.  Also it never asked so I never did reboot.  Is this ok?

SAS

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/29/2011 at 02:14 AM

Application Version : 5.0.1142

Core Rules Database Version : 8089
Trace Rules Database Version: 5901

Scan type       : Complete Scan
Total Scan Time : 01:23:33

Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 2 (Build 6.00.6002)
UAC On - Limited User (Administrator User)

Memory items scanned      : 757
Memory threats detected   : 0
Registry items scanned    : 38584
Registry threats detected : 0
File items scanned        : 128512
File threats detected     : 9

Adware.Tracking Cookie
   .revsci.net [ C:\USERS\JOHNNY OLA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3YU3MJE6.DEFAULT\COOKIES.SQLITE ]
   .imrworldwide.com [ C:\USERS\JOHNNY OLA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3YU3MJE6.DEFAULT\COOKIES.SQLITE ]
   .imrworldwide.com [ C:\USERS\JOHNNY OLA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3YU3MJE6.DEFAULT\COOKIES.SQLITE ]
   .revsci.net [ C:\USERS\JOHNNY OLA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3YU3MJE6.DEFAULT\COOKIES.SQLITE ]
   .revsci.net [ C:\USERS\JOHNNY OLA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3YU3MJE6.DEFAULT\COOKIES.SQLITE ]
   .revsci.net [ C:\USERS\JOHNNY OLA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3YU3MJE6.DEFAULT\COOKIES.SQLITE ]
   accounts.google.com [ C:\USERS\JOHNNY OLA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3YU3MJE6.DEFAULT\COOKIES.SQLITE ]
   accounts.google.com [ C:\USERS\JOHNNY OLA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3YU3MJE6.DEFAULT\COOKIES.SQLITE ]
   accounts.google.com [ C:\USERS\JOHNNY OLA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3YU3MJE6.DEFAULT\COOKIES.SQLITE ]

MBAM

Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2011.12.29.01

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Johnny Ola :: JOHNNYOLA-PC [administrator]

12/29/2011 2:24:19 AM
mbam-log-2011-12-29 (02-24-19).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 313508
Time elapsed: 53 minute(s), 32 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

DDS log 1

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421  BrowserJavaVersion: 1.6.0_29
Run by Johnny Ola at 3:25:15 on 2011-12-29
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.2038.616 [GMT -5:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: COMODO Defense+ *Enabled/Updated* {CE351521-78FA-2048-BB22-B68A4A5CA7EC}
FW: COMODO Firewall *Enabled* {4D6F75E0-14AF-2E9E-AACD-24CDCF08AA2A}
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Google\Update\1.3.21.79\GoogleCrashHandler.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe
C:\Program Files\Sony\VAIO Center Access Bar\VCAB.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Users\Johnny Ola\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\sdclt.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2818425
mDefault_Page_URL = hxxp://www.sony.com/vaiopeople
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: H - No File
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Complitly: {d27fc31c-6e3d-4305-8d53-acdaefa5f862} - c:\users\johnny ola\appdata\roaming\complitly\Complitly.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
uRun: [iCloudServices] c:\program files\common files\apple\internet services\iCloudServices.exe
uRun: [ApplePhotoStreams] c:\program files\common files\apple\internet services\ApplePhotoStreams.exe
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [ISBMgr.exe] "c:\program files\sony\isb utility\ISBMgr.exe"
mRun: [VAIOCameraUtility] "c:\program files\sony\vaio camera utility\VCUServe.exe"
mRun: [VAIO Center Access Bar] "c:\program files\sony\vaio center access bar\VCAB.exe"
mRun: [VAIOSecurity] "c:\program files\sony\vaio security center\VSC.exe" 1
mRun: [<NO NAME>]
mRun: [VAIOSurvey] "c:\program files\sony\vaio survey\Vista VAIO Survey.exe"
mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"
mRun: [COMODO Internet Security] "c:\program files\comodo\comodo internet security\cfp.exe" -h
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: c:\users\johnny~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\johnny ola\appdata\roaming\dropbox\bin\Dropbox.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\toshiba\bluetooth toshiba stack\TosBtMng.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~4\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office12\REFIEBAR.DLL
TCP: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
TCP: Interfaces\{20DA44BE-98A1-475D-B8AC-88DF3AD26CDD} : NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{D83D5627-FB49-437C-B3E7-C61C85550B27} : NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{D83D5627-FB49-437C-B3E7-C61C85550B27} : DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: igfxcui - igfxdev.dll
Notify: VESWinlogon - VESWinlogon.dll
AppInit_DLLs: c:\windows\system32\guard32.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\johnny ola\appdata\roaming\mozilla\firefox\profiles\3yu3mje6.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2818425&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/
FF - plugin: c:\program files\google\update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnu.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnupdater2.dll
FF - plugin: c:\program files\veetle\player\npvlc.dll
FF - plugin: c:\program files\veetle\plugins\npVeetle.dll
FF - plugin: c:\users\johnny ola\appdata\local\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\users\johnny ola\appdata\roaming\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\users\johnny ola\appdata\roaming\mozilla\plugins\npgtpo3dautoplugin.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.protocol-handler.warn-external.dnupdate - false
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-7-11 23120]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-9-13 32592]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-10-7 230608]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-8-8 40016]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 295248]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdGuard.sys [2011-10-7 491816]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2011-10-7 38616]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2011-8-2 192776]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2011-10-15 21504]
R2 MSSQL$VAIO_VEDB;SQL Server (VAIO_VEDB);c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe [2010-12-10 29293408]
R2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-1-3 11032]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-7-11 134736]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-7-11 24272]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-10-4 16720]
R3 R5U870FLx86;R5U870 UVC Lower Filter  ;c:\windows\system32\drivers\R5U870FLx86.sys [2007-5-3 73472]
R3 R5U870FUx86;R5U870 UVC Upper Filter  ;c:\windows\system32\drivers\R5U870FUx86.sys [2007-5-3 43904]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [2007-5-3 31104]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2007-5-3 807424]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-10-11 136176]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-10-11 136176]
S3 ICScsiSV;Image Converter SCSI Service;c:\program files\sony\image converter 3\ICScsiSV.exe [2005-1-1 75952]
S3 IcVzMonLauncher;IcVzMonLauncher;c:\program files\sony\image converter 3\IcVzMonLauncher.exe [2005-1-1 67760]
S3 VAIOMediaPlatform-UCLS-AppServer;VAIO Media Content Collection;c:\program files\sony\vaio media integrated server\UCLS.exe [2005-1-1 745472]
S3 VAIOMediaPlatform-UCLS-HTTP;VAIO Media Content Collection (HTTP);c:\program files\sony\vaio media integrated server\platform\SV_Httpd.exe [2005-1-1 397312]
S3 VAIOMediaPlatform-UCLS-UPnP;VAIO Media Content Collection (UPnP);c:\program files\sony\vaio media integrated server\platform\UPnPFramework.exe [2005-1-1 1089536]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2011-12-29 07:24:06   40776   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2011-12-21 04:56:09   --------   d-----w-   c:\program files\iPod
2011-12-21 04:56:05   --------   d-----w-   c:\program files\iTunes
2011-12-15 01:33:25   2043904   ----a-w-   c:\windows\system32\win32k.sys
2011-12-15 01:33:23   2409784   ----a-w-   c:\program files\windows mail\OESpamFilter.dat
2011-12-15 01:33:19   3602816   ----a-w-   c:\windows\system32\ntkrnlpa.exe
2011-12-15 01:33:19   3550080   ----a-w-   c:\windows\system32\ntoskrnl.exe
2011-12-15 01:33:16   429056   ----a-w-   c:\windows\system32\EncDec.dll
2011-12-15 01:33:14   49152   ----a-w-   c:\windows\system32\csrsrv.dll
2011-12-15 01:33:06   2048   ----a-w-   c:\windows\system32\tzres.dll
2011-12-08 18:02:44   --------   d-----w-   C:\Temp
2011-12-08 17:29:27   --------   d-----w-   c:\users\johnny ola\appdata\local\LogMeIn Rescue Applet
2011-11-29 18:41:44   --------   d-----w-   c:\users\johnny ola\appdata\local\Microsoft Help
.
==================== Find3M  ====================
.
2011-12-19 18:59:04   38616   ----a-w-   c:\windows\system32\drivers\cmdhlp.sys
2011-12-19 18:59:03   491816   ----a-w-   c:\windows\system32\drivers\cmdGuard.sys
2011-12-19 18:59:02   19600   ----a-w-   c:\windows\system32\drivers\cmderd.sys
2011-12-19 18:58:56   33984   ----a-w-   c:\windows\system32\cmdcsr.dll
2011-12-19 18:58:55   301224   ----a-w-   c:\windows\system32\guard32.dll
2011-12-10 20:24:06   20464   ----a-w-   c:\windows\system32\drivers\mbam.sys
2011-11-19 21:24:02   414368   ----a-w-   c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-03 22:47:42   1798144   ----a-w-   c:\windows\system32\jscript9.dll
2011-11-03 22:40:21   1427456   ----a-w-   c:\windows\system32\inetcpl.cpl
2011-11-03 22:39:47   1127424   ----a-w-   c:\windows\system32\wininet.dll
2011-11-03 22:31:57   2382848   ----a-w-   c:\windows\system32\mshtml.tlb
2011-10-29 23:10:47   0   ----a-w-   c:\windows\system32\ConduitEngine.tmp
2011-10-26 06:48:33   979456   ----a-w-   c:\windows\system32\MFH264Dec.dll
2011-10-26 06:47:45   4096   ----a-w-   c:\windows\system32\drivers\en-us\dxgkrnl.sys.mui
2011-10-26 06:47:44   369664   ----a-w-   c:\windows\system32\WMPhoto.dll
2011-10-26 06:47:44   252928   ----a-w-   c:\windows\system32\dxdiag.exe
2011-10-26 06:47:44   195584   ----a-w-   c:\windows\system32\dxdiagn.dll
2011-10-26 06:47:43   974848   ----a-w-   c:\windows\system32\WindowsCodecs.dll
2011-10-26 06:47:43   519680   ----a-w-   c:\windows\system32\d3d11.dll
2011-10-26 06:47:43   321024   ----a-w-   c:\windows\system32\PhotoMetadataHandler.dll
2011-10-26 06:47:43   189440   ----a-w-   c:\windows\system32\WindowsCodecsExt.dll
2011-10-17 05:25:13   101888   ----a-w-   c:\windows\system32\ifxcardm.dll
2011-10-17 05:25:10   82432   ----a-w-   c:\windows\system32\axaltocm.dll
2011-10-14 07:04:56   377344   ----a-w-   c:\windows\system32\winhttp.dll
2011-10-14 07:02:46   36864   ----a-w-   c:\windows\system32\drivers\en-us\http.sys.mui
2011-10-13 08:09:12   23552   ----a-w-   c:\windows\system32\lpk.dll
2011-10-13 08:09:12   10240   ----a-w-   c:\windows\system32\dciman32.dll
2011-10-13 08:05:54   61440   ----a-w-   c:\windows\system32\winipsec.dll
2011-10-13 08:05:54   272896   ----a-w-   c:\windows\system32\polstore.dll
2011-10-13 08:02:27   9728   ----a-w-   c:\windows\system32\TCPSVCS.EXE
2011-10-13 08:02:27   8704   ----a-w-   c:\windows\system32\HOSTNAME.EXE
2011-10-13 08:02:27   11264   ----a-w-   c:\windows\system32\MRINFO.EXE
2011-10-13 08:02:27   105984   ----a-w-   c:\windows\system32\netiohlp.dll
2011-10-13 08:02:27   10240   ----a-w-   c:\windows\system32\finger.exe
2011-10-13 08:02:26   27136   ----a-w-   c:\windows\system32\NETSTAT.EXE
2011-10-13 08:02:26   19968   ----a-w-   c:\windows\system32\ARP.EXE
2011-10-13 08:02:26   17920   ----a-w-   c:\windows\system32\ROUTE.EXE
2011-10-13 07:59:44   65024   ----a-w-   c:\windows\system32\wlanapi.dll
2011-10-13 07:59:44   127488   ----a-w-   c:\windows\system32\L2SecHC.dll
2011-10-13 07:59:43   68096   ----a-w-   c:\windows\system32\wlanhlp.dll
2011-10-13 07:59:43   513536   ----a-w-   c:\windows\system32\wlansvc.dll
2011-10-13 07:59:43   302592   ----a-w-   c:\windows\system32\wlansec.dll
2011-10-13 07:59:43   293376   ----a-w-   c:\windows\system32\wlanmsm.dll
2011-10-13 07:59:40   15181   ----a-w-   c:\windows\system32\gatherWirelessInfo.vbs
2011-10-13 07:58:49   1401856   ----a-w-   c:\windows\system32\msxml6.dll
2011-10-13 07:58:48   2048   ----a-w-   c:\windows\system32\msxml6r.dll
2011-10-13 07:58:48   2048   ----a-w-   c:\windows\system32\msxml3r.dll
2011-10-13 07:57:56   218624   ----a-w-   c:\windows\system32\msv1_0.dll
2011-10-13 07:55:55   53248   ----a-w-   c:\windows\system32\rrinstaller.exe
2011-10-13 07:55:55   24576   ----a-w-   c:\windows\system32\mfpmp.exe
2011-10-13 07:55:55   2048   ----a-w-   c:\windows\system32\mferror.dll
2011-10-13 07:52:06   71680   ----a-w-   c:\windows\system32\atl.dll
2011-10-13 07:47:20   160256   ----a-w-   c:\windows\system32\wkssvc.dll
2011-10-13 07:46:35   53248   ----a-w-   c:\windows\system32\tsgqec.dll
2011-10-13 07:46:35   136192   ----a-w-   c:\windows\system32\aaclient.dll
2011-10-13 07:44:17   714240   ----a-w-   c:\windows\system32\timedate.cpl
2011-10-13 07:36:10   623616   ----a-w-   c:\windows\system32\localspl.dll
2011-10-13 07:33:58   499712   ----a-w-   c:\windows\system32\kerberos.dll
2011-10-13 07:33:58   175104   ----a-w-   c:\windows\system32\wdigest.dll
2011-10-13 07:33:57   9728   ----a-w-   c:\windows\system32\lsass.exe
2011-10-13 07:33:57   72704   ----a-w-   c:\windows\system32\secur32.dll
2011-10-13 07:33:57   439864   ----a-w-   c:\windows\system32\drivers\ksecdd.sys
2011-10-13 07:33:57   1259008   ----a-w-   c:\windows\system32\lsasrv.dll
2011-10-13 07:31:14   6656   ----a-w-   c:\windows\system32\kbd106n.dll
2011-10-13 07:29:02   62464   ----a-w-   c:\windows\system32\l3codeca.acm
2011-10-13 07:29:02   220672   ----a-w-   c:\windows\system32\l3codecp.acm
2011-10-13 07:27:57   30720   ----a-w-   c:\windows\system32\drivers\tcpipreg.sys
2011-10-13 07:27:57   25088   ----a-w-   c:\windows\system32\drivers\tunnel.sys
2011-10-13 07:27:57   200704   ----a-w-   c:\windows\system32\iphlpsvc.dll
2011-10-13 07:27:56   15360   ----a-w-   c:\windows\system32\drivers\TUNMP.SYS
2011-10-13 07:24:02   37888   ----a-w-   c:\windows\system32\printcom.dll
2011-10-13 07:22:58   14848   ----a-w-   c:\windows\system32\wshrm.dll
2011-10-13 07:22:18   43520   ----a-w-   c:\windows\system32\msdxm.tlb
2011-10-13 07:22:18   313344   ----a-w-   c:\windows\system32\wmpdxm.dll
2011-10-13 07:22:18   18432   ----a-w-   c:\windows\system32\amcompat.tlb
2011-10-13 07:22:15   7680   ----a-w-   c:\windows\system32\spwmp.dll
2011-10-13 07:22:15   4096   ----a-w-   c:\windows\system32\msdxm.ocx
2011-10-13 07:22:15   4096   ----a-w-   c:\windows\system32\dxmasf.dll
2011-10-13 07:20:51   332288   ----a-w-   c:\windows\system32\msdrm.dll
2011-10-13 07:20:50   347136   ----a-w-   c:\windows\system32\RMActivate_ssp.exe
2011-10-13 07:20:49   152064   ----a-w-   c:\windows\system32\secproc_ssp.dll
2011-10-13 07:20:48   152576   ----a-w-   c:\windows\system32\secproc_ssp_isv.dll
2011-10-13 07:20:47   346624   ----a-w-   c:\windows\system32\RMActivate_ssp_isv.exe
2011-10-13 07:20:44   471552   ----a-w-   c:\windows\system32\secproc.dll
2011-10-13 07:20:41   518144   ----a-w-   c:\windows\system32\RMActivate.exe
2011-10-13 07:20:34   526336   ----a-w-   c:\windows\system32\RMActivate_isv.exe
2011-10-13 07:20:32   471552   ----a-w-   c:\windows\system32\secproc_isv.dll
2011-10-13 07:15:48   2560   ----a-w-   c:\windows\apppatch\AcRes.dll
2011-10-13 07:13:48   84480   ----a-w-   c:\windows\system32\INETRES.dll
2011-10-13 07:13:21   60928   ----a-w-   c:\windows\system32\msasn1.dll
2011-10-13 07:12:10   784896   ----a-w-   c:\windows\system32\rpcrt4.dll
2011-10-13 07:11:12   411648   ----a-w-   c:\windows\system32\drivers\http.sys
2011-10-13 07:11:12   30720   ----a-w-   c:\windows\system32\httpapi.dll
2011-10-13 07:11:12   24064   ----a-w-   c:\windows\system32\nshhttp.dll
2011-10-13 07:08:27   243712   ----a-w-   c:\windows\system32\rastls.dll
2011-10-13 07:08:03   355328   ----a-w-   c:\windows\system32\WSDApi.dll
2011-10-13 07:05:27   65024   ----a-w-   c:\windows\system32\avicap32.dll
2011-10-13 07:05:27   123904   ----a-w-   c:\windows\system32\msvfw32.dll
2011-10-13 07:05:26   91136   ----a-w-   c:\windows\system32\avifil32.dll
2011-10-13 07:05:26   82944   ----a-w-   c:\windows\system32\mciavi32.dll
.
============= FINISH:  3:26:55.50 ===============

DDS attach

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 1/1/2005 3:07:20 AM
System Uptime: 12/28/2011 11:13:56 PM (4 hours ago)
.
Motherboard: Sony Corporation |  | VAIO
Processor: Intel(R) Core(TM)2 Duo CPU     T7100  @ 1.80GHz | N/A | 1801/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 291 GiB total, 196.24 GiB free.
D: is Removable
E: is Removable
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
 Update for Microsoft Office 2007 (KB2508958)
Activation Assistant for the 2007 Microsoft Office suites
Adobe Flash Player 11 Plugin
Adobe Flash Player 9 ActiveX
Adobe Reader 8
AIM 7
Apple Application Support
Apple Mobile Device Support
Apple Software Update
AVG 2012
AVG PC Tuneup 2011
Battery Care Function
BitLord 2.0
Bluetooth Stack for Windows by Toshiba
Bonjour
Canon Camera Access Library
Canon Camera Support Core Library
Canon Camera Window DC_DV 5 for ZoomBrowser EX
Canon Camera Window DC_DV 6 for ZoomBrowser EX
Canon Camera Window MC 6 for ZoomBrowser EX
Canon G.726 WMP-Decoder
Canon MovieEdit Task for ZoomBrowser EX
Canon RAW Image Task for ZoomBrowser EX
Canon RemoteCapture Task for ZoomBrowser EX
Canon Utilities EOS Utility
Canon Utilities PhotoStitch
Canon Utilities ZoomBrowser EX
CCleaner
Click to DVD 2.0.05 Menu Data
Click to DVD 2.6.00
COMODO Internet Security
Complitly
Download Updater (AOL LLC)
Dropbox
DSD Direct
DSD Playback Plug-in
Google Chrome
Google Cloud Connect for Microsoft Office
Google Talk Plugin
Google Update Helper
Grouper Screen Saver 1.0
HDAUDIO SoftV92 Data Fax Modem with SmartCP
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
iCloud
Image Converter 3
Instant Mode
Intel(R) Graphics Media Accelerator Driver
iTunes
Java Auto Updater
Java(TM) 6 Update 29
Java(TM) SE Runtime Environment 6
LocationFree Player
Malwarebytes Anti-Malware version 1.60.0.1800
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (VAIO_VEDB)
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
Mozilla Firefox 8.0 (x86 en-US)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
OpenMG Limited Patch 4.7-07-13-24-01
OpenMG Secure Module 4.7.00
QuickBooks Product Listing Service
QuickBooks Simple Start Free Starter Edition
Realtek High Definition Audio Driver
Roxio Easy Media Creator Home
Safari
SeaTools for Windows
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2553089)
Security Update for 2007 Microsoft Office System (KB2553090)
Security Update for 2007 Microsoft Office System (KB2584063)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Setting Utility Series
Simple Start Entice
Skype Click to Call
Skype™ 5.5
SonicStage 4.3
SonicStage Mastering Studio
SonicStage Mastering Studio Audio Filter
SonicStage Mastering Studio Audio Filter Custom Preset
SonicStage Mastering Studio Plugins
Sony Utilities DLL
Sony Video Shared Library
Spiderman 3 XXXX
SpywareBlaster 4.5
SUPERAntiSpyware
SupportSoft Assisted Service
Synaptics Pointing Device Driver
TeamSpeak 3 Client
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VAIO AV Mode Launcher
VAIO Azure Float Wallpaper
VAIO Camera Capture Utility
VAIO Camera Utility
VAIO Center Access Bar
VAIO Central
VAIO Entertainment Center
VAIO Entertainment Platform
VAIO Event Service
VAIO Floral Dusk Wallpaper
VAIO Help And Support
VAIO Media
VAIO Media 6.0
VAIO Media AC3 Decoder 1.0
VAIO Media Content Collection 6.0
VAIO Media Integrated Server 6.0
VAIO Media Redistribution 6.0
VAIO Media Registration Tool
VAIO Media Registration Tool 6.0
VAIO OOBE
VAIO Photo 2007
VAIO Power Management
VAIO Productivity Center
VAIO Security Center
VAIO Service Utility
VAIO Survey
VAIO Teal Whisper Wallpaper
VAIO Update 3
VAIO Video & Photo  Suite
Veetle TV
WinDVD for VAIO
Wireless Switch Setting Utility
.
==== Event Viewer Messages From Past Week ========
.
12/28/2011 3:14:46 PM, Error: Service Control Manager [7000]  - The Parallel port driver service failed to start due to the following error:  The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
12/28/2011 12:00:18 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the VzCdbSvc service.
12/27/2011 3:01:39 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the PlugPlay service.
12/26/2011 4:11:56 PM, Error: EventLog [6008]  - The previous system shutdown at 3:48:28 PM on 12/26/2011 was unexpected.
12/23/2011 11:24:03 AM, Error: Server [2505]  - The server could not bind to the transport \Device\NetBT_Tcpip_{D83D5627-FB49-437C-B3E7-C61C85550B27} because another computer on the network has the same name.  The server could not start.
12/23/2011 11:24:03 AM, Error: netbt [4321]  - The name "JOHNNYOLA-PC   :20" could not be registered on the interface with IP address 0.0.0.0. The computer with the IP address 192.168.1.102 did not allow the name to be claimed by this computer.
12/23/2011 1:00:29 AM, Error: netbt [4311]  - Initialization failed because the driver device could not be created. Use the string "0013E8354465" to identify the interface for which initialization failed. It represents the MAC address of the failed interface or the  Globally Unique Interface Identifier (GUID) if NetBT was unable to  map from GUID to MAC address. If neither the MAC address nor the GUID were  available, the string represents a cluster device name.
12/22/2011 3:28:02 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Schedule service.
.
==== End Of File ===========================

[Malware Removal Specialist]

Also it never asked so I never did reboot.  Is this ok?

Yup, that's ok.

P2P - I see you have P2P software installed on your machine. (BitLord 2.0) We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It is certainly contributing to your current situation.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.
**************************************************
Update Your Java (JRE)

Old versions of Java have vulnerabilities that malware can use to infect your system.

First Verify your Java Version

If there are any other version(s) installed then update now.

Get the new version (if needed)

If your version is out of date install the newest version of the Sun Java Runtime Environment.

Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Be sure to close ALL open web browsers before starting the installation.

Remove any old versions

1. Download JavaRa and unzip the file to your Desktop.
2. Open JavaRA.exe and choose Remove Older Versions
3. Once complete exit JavaRA.

Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and reboot your computer.
***************************************************
Download OTL to your desktop.

* Open OTL
* Copy and Paste the following text in the codebox into the Custom Scans/Fixes window.

Code: [Select]

:OTL

uURLSearchHooks: H - No File
BHO: Complitly: {d27fc31c-6e3d-4305-8d53-acdaefa5f862} - c:\users\johnny ola\appdata\roaming\complitly\Complitly.dll
mRun: [<NO NAME>]

:COMMANDS
[resethosts]
[purity]
[start explorer]

* Click Run Fix
* OTLI2 may ask to reboot the machine. Please do so if asked.
* Click OK
* A report will open. Copy and Paste that report in your next reply.
****************************************************************
Download ComboFix by sUBs from one of the below links.  Be sure to save it to the Desktop.

link # 1
Link # 2
If you are using Firefox, make sure that your download settings are as follows:

* Tools->Options->Main tab
* Set to "Always ask me where to Save the files".

Close any open web browsers (Firefox, Internet Explorer, etc) before starting ComboFix.

Temporarily disable your anti-virus, and any anti-spyware real-time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them.

Right-click combofix.exe and select Run as Administrator and follow the prompts.
When finished, ComboFix will produce a log for you.
Post the ComboFix login your next reply.

NOTE: Do not mouseclick ComboFix's window while it is running. That may cause it to stall.

Remember to re-enable your anti-virus and anti-spyware protection when ComboFix is complete.

OK Dave, few things:

1) PC has been running fine until the issue this week, since, it has been slower and I have heard more grinding, so once we fix this issue, I'd like to know if the PC is fine or if it needs work.

2) Checked Java, was out of date, now it is up to date. 

3) So can I delete:
-Java RA
-OTL
-Combo fix?

4) Logs

OTL

========== OTL ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.31.0 log created on 12292011_141813

Combofix

ComboFix 11-12-29.04 - Johnny Ola 12/29/2011  14:31:52.1.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.2038.1055 [GMT -5:00]
Running from: c:\users\Johnny Ola\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: COMODO Firewall *Enabled* {4D6F75E0-14AF-2E9E-AACD-24CDCF08AA2A}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: COMODO Defense+ *Enabled/Updated* {CE351521-78FA-2048-BB22-B68A4A5CA7EC}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\programdata\pswi_preloaded.exe
c:\users\Johnny Ola\AppData\Local\assembly\tmp
.
.
(((((((((((((((((((((((((   Files Created from 2011-11-28 to 2011-12-29  )))))))))))))))))))))))))))))))
.
.
2011-12-29 20:18 . 2011-12-29 20:21   --------   d-----w-   c:\users\Johnny Ola\AppData\Local\temp
2011-12-29 20:18 . 2011-12-29 20:18   --------   d-----w-   c:\users\Guest\AppData\Local\temp
2011-12-29 20:18 . 2011-12-29 20:18   --------   d-----w-   c:\users\Default\AppData\Local\temp
2011-12-29 19:18 . 2011-12-29 19:18   --------   d-----w-   C:\_OTL
2011-12-21 04:56 . 2011-12-21 04:56   --------   d-----w-   c:\program files\iPod
2011-12-21 04:56 . 2011-12-21 04:56   --------   d-----w-   c:\program files\iTunes
2011-12-15 01:33 . 2011-11-23 13:37   2043904   ----a-w-   c:\windows\system32\win32k.sys
2011-12-15 01:33 . 2011-11-08 12:10   2409784   ----a-w-   c:\program files\Windows Mail\OESpamFilter.dat
2011-12-15 01:33 . 2011-10-27 08:01   3602816   ----a-w-   c:\windows\system32\ntkrnlpa.exe
2011-12-15 01:33 . 2011-10-27 08:01   3550080   ----a-w-   c:\windows\system32\ntoskrnl.exe
2011-12-15 01:33 . 2011-10-14 16:02   429056   ----a-w-   c:\windows\system32\EncDec.dll
2011-12-15 01:33 . 2011-10-25 15:56   49152   ----a-w-   c:\windows\system32\csrsrv.dll
2011-12-15 01:33 . 2011-11-08 14:42   2048   ----a-w-   c:\windows\system32\tzres.dll
2011-12-08 18:02 . 2011-12-08 18:02   --------   d-----w-   C:\Temp
2011-12-08 17:29 . 2011-12-15 18:06   --------   d-----w-   c:\users\Johnny Ola\AppData\Local\LogMeIn Rescue Applet
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-29 19:05 . 2011-10-17 04:18   472808   ----a-w-   c:\windows\system32\deployJava1.dll
2011-12-19 18:59 . 2011-10-07 22:47   82400   ----a-w-   c:\windows\system32\drivers\inspect.sys
2011-12-19 18:59 . 2011-10-07 22:47   38616   ----a-w-   c:\windows\system32\drivers\cmdhlp.sys
2011-12-19 18:59 . 2011-10-07 22:47   491816   ----a-w-   c:\windows\system32\drivers\cmdGuard.sys
2011-12-19 18:59 . 2011-10-07 22:47   19600   ----a-w-   c:\windows\system32\drivers\cmderd.sys
2011-12-19 18:58 . 2011-10-07 22:47   33984   ----a-w-   c:\windows\system32\cmdcsr.dll
2011-12-19 18:58 . 2011-10-07 22:47   301224   ----a-w-   c:\windows\system32\guard32.dll
2011-12-10 20:24 . 2011-10-11 20:06   20464   ----a-w-   c:\windows\system32\drivers\mbam.sys
2011-11-19 21:24 . 2011-10-11 18:18   414368   ----a-w-   c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-05 17:47 . 2011-11-05 17:47   11264   ----a-r-   c:\users\Johnny Ola\AppData\Roaming\Microsoft\Installer\{98613C99-1399-416C-A07C-1EE1C585D872}\Icon98613C992.exe
2011-10-29 23:10 . 2011-10-29 23:10   0   ----a-w-   c:\windows\system32\ConduitEngine.tmp
2011-10-26 06:49 . 2011-10-26 06:49   86528   ----a-w-   c:\windows\system32\iesysprep.dll
2011-10-26 06:49 . 2011-10-26 06:49   76800   ----a-w-   c:\windows\system32\SetIEInstalledDate.exe
2011-10-26 06:49 . 2011-10-26 06:49   74752   ----a-w-   c:\windows\system32\RegisterIEPKEYs.exe
2011-10-26 06:49 . 2011-10-26 06:49   48640   ----a-w-   c:\windows\system32\mshtmler.dll
2011-10-26 06:49 . 2011-10-26 06:49   161792   ----a-w-   c:\windows\system32\msls31.dll
2011-10-26 06:49 . 2011-10-26 06:49   63488   ----a-w-   c:\windows\system32\tdc.ocx
2011-10-26 06:49 . 2011-10-26 06:49   367104   ----a-w-   c:\windows\system32\html.iec
2011-10-26 06:49 . 2011-10-26 06:49   74752   ----a-w-   c:\windows\system32\iesetup.dll
2011-10-26 06:49 . 2011-10-26 06:49   23552   ----a-w-   c:\windows\system32\licmgr10.dll
2011-10-26 06:49 . 2011-10-26 06:49   420864   ----a-w-   c:\windows\system32\vbscript.dll
2011-10-26 06:49 . 2011-10-26 06:49   152064   ----a-w-   c:\windows\system32\wextract.exe
2011-10-26 06:49 . 2011-10-26 06:49   150528   ----a-w-   c:\windows\system32\iexpress.exe
2011-10-26 06:49 . 2011-10-26 06:49   142848   ----a-w-   c:\windows\system32\ieUnatt.exe
2011-10-26 06:49 . 2011-10-26 06:49   35840   ----a-w-   c:\windows\system32\imgutil.dll
2011-10-26 06:49 . 2011-10-26 06:49   11776   ----a-w-   c:\windows\system32\mshta.exe
2011-10-26 06:49 . 2011-10-26 06:49   110592   ----a-w-   c:\windows\system32\IEAdvpack.dll
2011-10-26 06:49 . 2011-10-26 06:49   101888   ----a-w-   c:\windows\system32\admparse.dll
2011-10-26 06:48 . 2011-10-26 06:48   979456   ----a-w-   c:\windows\system32\MFH264Dec.dll
2011-10-26 06:48 . 2011-10-26 06:48   357376   ----a-w-   c:\windows\system32\MFHEAACdec.dll
2011-10-26 06:48 . 2011-10-26 06:48   302592   ----a-w-   c:\windows\system32\mfmp4src.dll
2011-10-26 06:48 . 2011-10-26 06:48   98816   ----a-w-   c:\windows\system32\mfps.dll
2011-10-26 06:48 . 2011-10-26 06:48   2873344   ----a-w-   c:\windows\system32\mf.dll
2011-10-26 06:48 . 2011-10-26 06:48   261632   ----a-w-   c:\windows\system32\mfreadwrite.dll
2011-10-26 06:48 . 2011-10-26 06:48   209920   ----a-w-   c:\windows\system32\mfplat.dll
2011-10-26 06:48 . 2011-10-26 06:48   586240   ----a-w-   c:\windows\system32\stobject.dll
2011-10-26 06:48 . 2011-10-26 06:48   667648   ----a-w-   c:\windows\system32\printfilterpipelinesvc.exe
2011-10-26 06:48 . 2011-10-26 06:48   638336   ----a-w-   c:\windows\system32\drivers\dxgkrnl.sys
2011-10-26 06:48 . 2011-10-26 06:48   478720   ----a-w-   c:\windows\system32\dxgi.dll
2011-10-26 06:48 . 2011-10-26 06:48   37376   ----a-w-   c:\windows\system32\cdd.dll
2011-10-26 06:48 . 2011-10-26 06:48   26112   ----a-w-   c:\windows\system32\printfilterpipelineprxy.dll
2011-10-26 06:48 . 2011-10-26 06:48   258048   ----a-w-   c:\windows\system32\winspool.drv
2011-10-26 06:48 . 2011-10-26 06:48   135680   ----a-w-   c:\windows\system32\XpsRasterService.dll
2011-10-26 06:47 . 2011-10-26 06:47   4096   ----a-w-   c:\windows\system32\drivers\en-US\dxgkrnl.sys.mui
2011-10-26 06:47 . 2011-10-26 06:47   369664   ----a-w-   c:\windows\system32\WMPhoto.dll
2011-10-26 06:47 . 2011-10-26 06:47   252928   ----a-w-   c:\windows\system32\dxdiag.exe
2011-10-26 06:47 . 2011-10-26 06:47   195584   ----a-w-   c:\windows\system32\dxdiagn.dll
2011-10-26 06:47 . 2011-10-26 06:47   974848   ----a-w-   c:\windows\system32\WindowsCodecs.dll
2011-10-26 06:47 . 2011-10-26 06:47   519680   ----a-w-   c:\windows\system32\d3d11.dll
2011-10-26 06:47 . 2011-10-26 06:47   321024   ----a-w-   c:\windows\system32\PhotoMetadataHandler.dll
2011-10-26 06:47 . 2011-10-26 06:47   189440   ----a-w-   c:\windows\system32\WindowsCodecsExt.dll
2011-10-17 05:25 . 2006-11-02 10:32   101888   ----a-w-   c:\windows\system32\ifxcardm.dll
2011-10-17 05:25 . 2006-11-02 10:32   82432   ----a-w-   c:\windows\system32\axaltocm.dll
2011-10-14 07:04 . 2011-10-14 07:04   377344   ----a-w-   c:\windows\system32\winhttp.dll
2011-10-14 07:02 . 2011-10-14 07:02   36864   ----a-w-   c:\windows\system32\drivers\en-US\http.sys.mui
2011-10-13 08:09 . 2011-10-13 08:09   23552   ----a-w-   c:\windows\system32\lpk.dll
2011-10-13 08:09 . 2011-10-13 08:09   10240   ----a-w-   c:\windows\system32\dciman32.dll
2011-10-13 08:05 . 2011-10-13 08:05   61440   ----a-w-   c:\windows\system32\winipsec.dll
2011-10-13 08:05 . 2011-10-13 08:05   272896   ----a-w-   c:\windows\system32\polstore.dll
2011-10-13 08:02 . 2011-10-13 08:02   9728   ----a-w-   c:\windows\system32\TCPSVCS.EXE
2011-10-13 08:02 . 2011-10-13 08:02   8704   ----a-w-   c:\windows\system32\HOSTNAME.EXE
2011-10-13 08:02 . 2011-10-13 08:02   11264   ----a-w-   c:\windows\system32\MRINFO.EXE
2011-10-13 08:02 . 2011-10-13 08:02   105984   ----a-w-   c:\windows\system32\netiohlp.dll
2011-10-13 08:02 . 2011-10-13 08:02   10240   ----a-w-   c:\windows\system32\finger.exe
2011-10-13 08:02 . 2011-10-13 08:02   27136   ----a-w-   c:\windows\system32\NETSTAT.EXE
2011-10-13 08:02 . 2011-10-13 08:02   19968   ----a-w-   c:\windows\system32\ARP.EXE
2011-10-13 08:02 . 2011-10-13 08:02   17920   ----a-w-   c:\windows\system32\ROUTE.EXE
2011-10-13 07:59 . 2011-10-13 07:59   65024   ----a-w-   c:\windows\system32\wlanapi.dll
2011-10-13 07:59 . 2011-10-13 07:59   127488   ----a-w-   c:\windows\system32\L2SecHC.dll
2011-10-13 07:59 . 2011-10-13 07:59   68096   ----a-w-   c:\windows\system32\wlanhlp.dll
2011-10-13 07:59 . 2011-10-13 07:59   513536   ----a-w-   c:\windows\system32\wlansvc.dll
2011-10-13 07:59 . 2011-10-13 07:59   302592   ----a-w-   c:\windows\system32\wlansec.dll
2011-10-13 07:59 . 2011-10-13 07:59   293376   ----a-w-   c:\windows\system32\wlanmsm.dll
2011-10-13 07:59 . 2011-10-13 07:59   15181   ----a-w-   c:\windows\system32\gatherWirelessInfo.vbs
2011-10-13 07:58 . 2011-10-13 07:58   1401856   ----a-w-   c:\windows\system32\msxml6.dll
2011-10-13 07:58 . 2011-10-13 07:58   2048   ----a-w-   c:\windows\system32\msxml3r.dll
2011-10-13 07:58 . 2011-10-13 07:58   2048   ----a-w-   c:\windows\system32\msxml6r.dll
2011-10-13 07:57 . 2011-10-13 07:57   218624   ----a-w-   c:\windows\system32\msv1_0.dll
2011-10-13 07:55 . 2011-10-13 07:55   53248   ----a-w-   c:\windows\system32\rrinstaller.exe
2011-10-13 07:55 . 2011-10-13 07:55   24576   ----a-w-   c:\windows\system32\mfpmp.exe
2011-10-13 07:55 . 2011-10-13 07:55   2048   ----a-w-   c:\windows\system32\mferror.dll
2011-10-13 07:52 . 2011-10-13 07:52   71680   ----a-w-   c:\windows\system32\atl.dll
2011-10-13 07:47 . 2011-10-13 07:47   160256   ----a-w-   c:\windows\system32\wkssvc.dll
2011-10-13 07:46 . 2011-10-13 07:46   53248   ----a-w-   c:\windows\system32\tsgqec.dll
2011-10-13 07:46 . 2011-10-13 07:46   136192   ----a-w-   c:\windows\system32\aaclient.dll
2011-10-13 07:44 . 2011-10-13 07:44   714240   ----a-w-   c:\windows\system32\timedate.cpl
2011-10-13 07:36 . 2011-10-13 07:36   623616   ----a-w-   c:\windows\system32\localspl.dll
2011-10-13 07:33 . 2011-10-13 07:33   499712   ----a-w-   c:\windows\system32\kerberos.dll
2011-10-13 07:33 . 2011-10-13 07:33   175104   ----a-w-   c:\windows\system32\wdigest.dll
2011-10-13 07:33 . 2011-10-13 07:33   9728   ----a-w-   c:\windows\system32\lsass.exe
2011-10-13 07:33 . 2011-10-13 07:33   72704   ----a-w-   c:\windows\system32\secur32.dll
2011-10-13 07:33 . 2011-10-13 07:33   439864   ----a-w-   c:\windows\system32\drivers\ksecdd.sys
2011-10-13 07:33 . 2011-10-13 07:33   1259008   ----a-w-   c:\windows\system32\lsasrv.dll
2011-10-13 07:31 . 2011-10-13 07:31   6656   ----a-w-   c:\windows\system32\kbd106n.dll
2011-10-13 07:29 . 2011-10-13 07:29   62464   ----a-w-   c:\windows\system32\l3codeca.acm
2011-10-13 07:29 . 2011-10-13 07:29   220672   ----a-w-   c:\windows\system32\l3codecp.acm
2011-10-13 07:27 . 2011-10-13 07:27   30720   ----a-w-   c:\windows\system32\drivers\tcpipreg.sys
2011-10-13 07:27 . 2011-10-13 07:27   25088   ----a-w-   c:\windows\system32\drivers\tunnel.sys
2011-10-13 07:27 . 2011-10-13 07:27   200704   ----a-w-   c:\windows\system32\iphlpsvc.dll
2011-10-13 07:27 . 2011-10-13 07:27   15360   ----a-w-   c:\windows\system32\drivers\TUNMP.SYS
2011-11-09 16:37 . 2011-10-11 17:40   134104   ----a-w-   c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-10-31 21:02   94208   ----a-w-   c:\users\Johnny Ola\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-10-31 21:02   94208   ----a-w-   c:\users\Johnny Ola\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-10-31 21:02   94208   ----a-w-   c:\users\Johnny Ola\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"="c:\program files\Common Files\Apple\Internet Services\iCloudServices.exe" [2011-11-11 59240]
"ApplePhotoStreams"="c:\program files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2011-11-11 59240]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2007-04-06 4423680]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-03-24 138008]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-03-24 154392]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-03-24 133912]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-03-08 835584]
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2007-04-17 321656]
"VAIOCameraUtility"="c:\program files\Sony\VAIO Camera Utility\VCUServe.exe" [2007-04-02 411768]
"VAIO Center Access Bar"="c:\program files\sony\VAIO Center Access Bar\VCAB.exe" [2007-03-06 36864]
"VAIOSecurity"="c:\program files\Sony\VAIO Security Center\VSC.exe" [2007-03-14 2322432]
"VAIOSurvey"="c:\program files\Sony\VAIO Survey\Vista VAIO Survey.exe" [2006-12-07 577536]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2011-12-03 2415456]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2011-12-21 6676808]
.
c:\users\Johnny Ola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Johnny Ola\AppData\Roaming\Dropbox\bin\Dropbox.exe [2011-12-5 24242056]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-2-3 2756608]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54   551296   ----a-w-   c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2007-04-24 00:19   98304   ----a-w-   c:\windows\System32\VESWinlogon.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute   REG_MULTI_SZ      autocheck autochk *\0SsiEfr.exe\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk
backup=c:\windows\pss\Adobe Reader Synchronizer.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^QuickBooks Update Agent.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
backup=c:\windows\pss\QuickBooks Update Agent.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim]
2011-05-03 15:43   4321112   ----a-w-   c:\program files\AIM\aim.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2011-11-02 04:25   59240   ----a-w-   c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\com.apple.dav.bookmarks.daemon]
2011-11-16 02:52   59240   ----a-w-   c:\program files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2011-10-11 20:04   136176   ----atw-   c:\users\Johnny Ola\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2011-12-08 06:36   421736   ----a-w-   c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware (reboot)]
2011-12-24 22:50   981680   ----a-w-   c:\program files\Malwarebytes' Anti-Malware\mbam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickBooks Simple Start]
2007-01-31 05:59   371712   ----a-w-   c:\program files\Intuit\SimpleStartEntice\entice.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RunSpySweeperScheduleAtStartup]
2011-10-26 06:49   10752   ----a-w-   c:\windows\System32\msfeedssync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]
2007-04-06 18:18   1822720   ----a-w-   c:\windows\SkyTel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2008-01-19 07:38   1008184   ----a-w-   c:\program files\Windows Defender\MSASCui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WindowsWelcomeCenter]
2009-04-11 06:28   2153472   ----a-w-   c:\windows\System32\oobefldr.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-10-11 136176]
R3 DIRECTIO;DIRECTIO;T:\DirectIo.sys

R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-10-11 136176]
R3 ICScsiSV;Image Converter SCSI Service;c:\program files\Sony\Image Converter 3\ICScsiSV.exe [2007-01-26 75952]
R3 IcVzMonLauncher;IcVzMonLauncher;c:\program files\Sony\Image Converter 3\IcVzMonLauncher.exe [2007-01-26 67760]
R3 VAIOMediaPlatform-UCLS-AppServer;VAIO Media Content Collection;c:\program files\Sony\VAIO Media Integrated Server\UCLS.exe [2007-01-11 745472]
R3 VAIOMediaPlatform-UCLS-HTTP;VAIO Media Content Collection (HTTP);c:\program files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [2007-01-09 397312]
R3 VAIOMediaPlatform-UCLS-UPnP;VAIO Media Content Collection (UPnP);c:\program files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [2007-01-16 1089536]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-11 23120]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2011-09-13 32592]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2011-10-07 230608]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2011-07-11 295248]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2011-12-19 491816]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2011-12-19 38616]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-08-11 116608]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S2 MSSQL$VAIO_VEDB;SQL Server (VAIO_VEDB);c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-01-03 11032]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-11 134736]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-11 24272]
S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-10-04 16720]
S3 R5U870FLx86;R5U870 UVC Lower Filter  ;c:\windows\system32\Drivers\R5U870FLx86.sys [2007-04-04 73472]
S3 R5U870FUx86;R5U870 UVC Upper Filter  ;c:\windows\system32\Drivers\R5U870FUx86.sys [2007-04-04 43904]
S3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\DRIVERS\SonyImgF.sys [2007-04-05 31104]
S3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2007-02-08 807424]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation   REG_MULTI_SZ      FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2011-12-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-11 19:59]
.
2011-12-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-11 19:59]
.
2011-12-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-463125951-12254502-3284758742-1005Core.job
- c:\users\Johnny Ola\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-11 20:04]
.
2011-12-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-463125951-12254502-3284758742-1005UA.job
- c:\users\Johnny Ola\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-11 20:04]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2818425
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
TCP: Interfaces\{20DA44BE-98A1-475D-B8AC-88DF3AD26CDD}: NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{D83D5627-FB49-437C-B3E7-C61C85550B27}: NameServer = 8.26.56.26,156.154.70.22
FF - ProfilePath - c:\users\Johnny Ola\AppData\Roaming\Mozilla\Firefox\Profiles\3yu3mje6.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2818425&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/
FF - user.js: network.protocol-handler.warn-external.dnupdate - false
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{7aeb3efd-e564-43f1-b658-5058a7c5743b} - (no file)
HKLM-Run-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
MSConfigStartUp-COMODO - c:\program files\COMODO\COMODO GeekBuddy\CLPSLA.exe
MSConfigStartUp-CPA - c:\program files\COMODO\COMODO GeekBuddy\VALA.exe
MSConfigStartUp-NapsterShell - c:\program files\Napster\napster.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-12-29 15:21
Windows 6.0.6002 Service Pack 2 NTFS
.
detected NTDLL code modification:
ZwClose
.
scanning hidden processes ... 
.
scanning hidden autostart entries ...
.
scanning hidden files ... 
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1112)
c:\windows\system32\guard32.dll
.
- - - - - - - > 'lsass.exe'(1060)
c:\windows\system32\guard32.dll
.
Completion time: 2011-12-29  15:26:46
ComboFix-quarantined-files.txt  2011-12-29 20:26
.
Pre-Run: 208,664,760,320 bytes free
Post-Run: 207,876,616,192 bytes free
.
- - End Of File - - 5F749A562566151542C7F28A2F0CEFC5

[Malware Removal Specialist]

I have heard more grinding

That sounds like either your hard drive or one of the fans.

Java RA
-OTL
-Combo fix?

You can uninstall/ delete Java RA. We'll remove the others when we're finished.

SysProt Antirootkit

Download
SysProt Antirootkit from the link below (you will find it at the bottom
of the page under attachments, or you can get it from one of the
mirrors).

http://sites.google.com/site/sysprotantirootkit/

Unzip it into a folder on your desktop.

• Double click Sysprot.exe to start the program.
• Click on the Log tab.
• In the Write to log box select the following items.
• Process << Selected
  
• Kernel Modules << Selected
  
• SSDT << Selected
  
• Kernel Hooks << Selected
  
• IRP Hooks << NOT Selected
  
• Ports << NOT Selected
  
• Hidden Files << Selected
  
• At the bottom of the page
• Hidden Objects Only << Selected
  
• Click on the Create Log button on the bottom right.
• After a few seconds a new window should appear.
• Select Scan Root Drive. Click on the Start button.
• When it is complete a new window will appear to indicate that the scan is finished.
• The log will be saved automatically in the same folder Sysprot.exe was extracted to. Open the text file and copy/paste the log here.

1) PC tonight has been weird, at times very slow and uncharaterisitcally unresponsive, hope we find out why and stop it.

2) Scan:

SysProt AntiRootkit v1.0.1.0
by swatkat

******************************************************************************************
******************************************************************************************

No Hidden Processes found

******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \SystemRoot\System32\Drivers\dump_dumpata.sys
Service Name: ---
Module Base: 8C9F0000
Module End: 8C9FB000
Hidden: Yes

Module Name: \SystemRoot\System32\Drivers\dump_atapi.sys
Service Name: ---
Module Base: 8E3F8000
Module End: 8E400000
Hidden: Yes

******************************************************************************************
******************************************************************************************
SSDT:
Function Name: ZwAdjustPrivilegesToken
Address: 8E6E0F60
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwAlpcConnectPort
Address: 8E6E114C
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwConnectPort
Address: 8E6E02C0
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwCreateFile
Address: 8E6E0BC6
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwCreateSection
Address: 8E6E097A
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwCreateSymbolicLinkObject
Address: 8E6E1CC4
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwCreateThread
Address: 8E6DFCAC
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwLoadDriver
Address: 8E6E16F6
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwMakeTemporaryObject
Address: 8E6E0588
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwOpenFile
Address: 8E6E0DA2
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwOpenProcess
Address: AC925F3C
Driver Base: AC925000
Driver End: AC928000
Driver Name: \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys

Function Name: ZwOpenSection
Address: 8E6E0822
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwSetSystemInformation
Address: 8E6E19E2
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwShutdownSystem
Address: 8E6E04F2
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwSystemDebugControl
Address: 8E6E070E
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwTerminateProcess
Address: AC925FE4
Driver Base: AC925000
Driver End: AC928000
Driver Name: \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys

Function Name: ZwTerminateThread
Address: AC926080
Driver Base: AC925000
Driver End: AC928000
Driver Name: \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys

Function Name: ZwWriteVirtualMemory
Address: AC92611C
Driver Base: AC925000
Driver End: AC928000
Driver Name: \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys

Function Name: ZwCreateThreadEx
Address: 8E6E137A
Driver Base: 8E6D3000
Driver End: 8E74E000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

******************************************************************************************
******************************************************************************************
No Kernel Hooks found

******************************************************************************************
******************************************************************************************
Hidden files/folders:
Object: C:\Qoobox\BackEnv\AppData.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Cache.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Cookies.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Desktop.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Favorites.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\History.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\LocalAppData.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\LocalSettings.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Music.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\NetHood.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Personal.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Pictures.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\PrintHood.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Profiles.Folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Profiles.Folder.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Programs.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Recent.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SendTo.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SetPath.bat
Status: Access denied

Object: C:\Qoobox\BackEnv\StartMenu.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\StartUp.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SysPath.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Templates.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\VikPev00
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl
Status: Access denied

[Malware Removal Specialist]

See Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.

I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

• Click on to download the ESET Smart Installer. Save it to your desktop.
  
• Double click on the icon on your desktop.
  

•Check
•Click the button.
•Accept any security warnings from your browser.
•Check
•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push
•Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the button.
•Push
A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

I unchecked remove found threats, is that ok?

I just ran it, found nothing, but it didn't open any log, when I was done it asked if I wanted the 30 day trial.

[Malware Removal Specialist]

So, how's your computer running now?

Pretty good, it got better last Friday.
Can we call it clear, or is there another scan, any, we can do, just to be sure?

[Malware Removal Specialist]

Pretty good, it got better last Friday.
Can we call it clear, or is there another scan, any, we can do, just to be sure?

No. That's it. Your computer is clean. We can now do some cleanup.

Update Your Java (JRE)

Old versions of Java have vulnerabilities that malware can use to infect your system.

First Verify your Java Version

If there are any other version(s) installed then update now.

Get the new version (if needed)

If your version is out of date install the newest version of the Sun Java Runtime Environment.

Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Be sure to close ALL open web browsers before starting the installation.

Remove any old versions

1. Download JavaRa and unzip the file to your Desktop.
2. Open JavaRA.exe and choose Remove Older Versions
3. Once complete exit JavaRA.

Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and reboot your computer.
*******************************************************
To uninstall ComboFix

• Click the Start button. Click Run. For Vista: type in Run in the Start search, and click on Run in the results pane.
  
• In the field, type in ComboFix /uninstall
  

(Note: Make sure there's a space between the word ComboFix and the forward-slash.)

• Then, press Enter, or click OK.
  
• This will uninstall ComboFix, delete its folders and files, hides System files and folders, and resets System Restore.
  

*************************************************
To remove all of the tools we used and the files and folders they created do the following:
Double click OTL.exe.

• Click the CleanUp button.
  
• Select Yes when the "Begin cleanup Process?" prompt appears.
  
• If you are prompted to Reboot during the cleanup, select Yes.
  
• The tool will delete itself once it finishes.

Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.
***************************************************
Clean out your temporary internet files and temp files.

Download TFC by OldTimer to your desktop.

Double-click TFC.exe to run it.

Note: If you are running on Vista, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin.

* Click the Start button to begin the cleaning process.
* Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
* Please let TFC run uninterrupted until it is finished.

Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
**********************************************
Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing!

1) Java is up to date
2) Typed in combofix as you requested, could not find anything
3) Ran OTL, cleared a few things, but had to go into downloads, program files, and uninstall to remove everything
4) TFC problems, first downloaded it, but had an error.  Then downloaded it, get it to run, took nearly 10 minutes, did not finish, due to error.

Question:
1) Is my PC safe, and clear?
2) Do I really need TFC, or can I just use CC Cleaner.
Is it alarming that it did not work?

[Malware Removal Specialist]

Is my PC safe, and clear?

Yes.

Do I really need TFC, or can I just use CC Cleaner.

Yes, you can use CCleaner and also do a disk clean up occasionally on your harddrive

Is it alarming that it did not work?

Not really.
I will lock this thread. If you need it re-opened, please send me a pm.