I was using DeepBurner to burn a DVD. And as I remember it, everything was going well, until the end. The DVD locked up and would not proceed near the finish. I attempted to abort the operation by stopping the program but finally had to eject the DVD in order to get it out. At the time, I was listening to web radio, and the audio became garbled and simply began skipping liking a vinyl record.
As I remember it, I rebooted and continued on, taking note that the garbled audio seemed to come on strong when larger programs such as Photoshop and the like were used. It eventually evolved to exist virtually all the time. Right now, for example, while I am typing, I struck up the web radio and have only had Firefox and Hijackthis running. The computer is slow and the audio steadily garbled. It is quite painful on the system when I click a website's submit form. Working with various CMS websites throughout the day, my productivity is excruciating slow, as submit forms often take anywhere from 10 up to 30 or more seconds. It seems that there may also be some issues with Java / Java Script, but I am not expert.
It is worth mentioning that sometime just before the day referenced above when I used the DeepBurner DVD burner, my Trend Anti-Virus and Webroot Spyware software expired. There was a gap of several hours or a full day until I loaded AVG Free. During this time, the computer was not used very much.
The attacks on my computer may have struck and entered my system prior to the expiration date, as I noticed I was getting bounce emails from email addresses saying they do not accept spam and also that the email contains a virus. I didn't pay it much mind at the time, since I have numerous alias email addresses that are used to manage numerous sites. I assumed, at the time, there was something screwy going on with someone else who I may have included on one or more of the aliases.
FIXING THE PROBLEM
I assumed my issue was attributable to the fact that I have not defragged my computer since sometime shortly after I bought it approximately a year ago. I tried to defrag the computer using the Windows XP defrag, but after I allowed it to go on for over two days, I finally gave up. I figured it was time to began burning DVDs and freeing up space to make a defrag easier. That's when the above issue erupted. It has 46GB of used space and 27 of free space.
I then remembered this site last week and took action with the instructions listed upon the URL below. I have listed some notes regarding several of the steps that didn't go so well. I have done them each three times, dating back to last week and to today. Each time the computer improves for a while.
http://www.geekstogo...-Log-t2852.html
After the first time I performed these operations, I began installing numerous software applications that were recommended by various moderators on this forum. Those include the following:
- ATF Cleaner
- AVG Free 7.55
- AVG Anti-Spyware
- Crap Cleaner
- JKDefrag - This was the only defrag tool that worked on my comptuer and took approximately 10 hours to complete.
- SpywareBlaster
- ZoneAlarm - Excellent program. I have only allowed a few programs to transfer data.
- SUPERAntiSpyware Free Edition
- ATF Cleaner - This initially took approximately 10-20 minutes. Great tool.
- System Restore - This also took approximately 10-20 minutes.
- AVG Anti-Spyware - This took a very long time. I'd say eight hours or so. It found the attached downloader.small.ehe virus and removed it.
- SUPERAntiSpyware Home Edition - This found some spyware that was removed.
- Online - Panda Activescan - This continually crashed several hours into the exercise but did manage to find some items that may or may not have been spyware. I had to copy it down, as I was unable to save the file.
- AVG - Took a long time.
- Hijack - Attached.
In the time I have been typing this post, my used and free space on the C: drive has changed dramatically. Just in the time I typed that last list, which consumed approximately five minutes (at most), my used space jumped from 46,438,000,000 bytes to 46,441,000,000 bytes, which is 3MB. By the time I pasted that which is below, the size went to 46,445,000,000 bytes. I don't have any other operations going on my computer than FireFox.
HI JACK THIS LOG
Logfile of HijackThis v1.99.1Scan saved at 9:28:38 PM, on 9/17/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\WINDOWS\system32\ZoneLabs\vsmon.exeC:\WINDOWS\system32\LEXBCES.EXEC:\WINDOWS\system32\LEXPPS.EXEC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exeC:\PROGRA~1\Grisoft\AVG7\avgamsvr.exeC:\PROGRA~1\Grisoft\AVG7\avgupsvc.exeC:\PROGRA~1\Grisoft\AVG7\avgemc.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exeC:\Program Files\Intel\Wireless\Bin\RegSrvc.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\svchost.exeC:\Program Files\Sony\VAIO Event Service\VESMgr.exeC:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exeC:\WINDOWS\system32\CAPM3RSK.EXEC:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exeC:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exeC:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exeC:\Program Files\Lexmark 1200 Series\lxczbmgr.exeC:\Program Files\QuickTime\qttask.exeC:\Program Files\Lexmark 1200 Series\lxczbmon.exeC:\Program Files\Java\jre1.6.0\bin\jusched.exeC:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exeC:\PROGRA~1\Grisoft\AVG7\avgcc.exeC:\Program Files\Zone Labs\ZoneAlarm\zlclient.exeC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exeC:\Program Files\Windows Media Player\WMPNSCFG.exeC:\WINDOWS\system32\wscntfy.exeC:\WINDOWS\system32\spool\drivers\w32x86\3\CAPM3LAK.EXEC:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exeC:\WINDOWS\system32\spool\drivers\w32x86\3\CAPM3SWK.EXEC:\PROGRA~1\Grisoft\AVG7\avgw.exeC:\Program Files\OpenOffice.org 2.2\program\soffice.exeC:\Program Files\OpenOffice.org 2.2\program\soffice.BINC:\Program Files\Mozilla Firefox\firefox.exeC:\Program Files\Hijackthis\HijackThis.exeR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://www.sony.com/vaiopeople"]http://www.sony.com/vaiopeople[/url]R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dllR3 - URLSearchHook: AOLSearchHook Class - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AOL\AOL Search Enhancement\AOLSearch.dllR3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)O2 - BHO: (no name) - {00D0E786-A9E4-4EC5-82BA-E4E57D285B83} - (no file)O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: AOLSearchHook Class - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AOL\AOL Search Enhancement\AOLSearch.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dllO2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dllO2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dllO4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottimeO4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exeO4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimizedO4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUPO4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exeO4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exeO4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exeO4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exeO4 - Global Startup: Canon PC1200 iC D700 Status Window.LNK = C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPM3LAK.EXEO4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXEO4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exeO8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 3.0\resources\en-US\local\search.htmlO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Transfer by Image Converter 2 Plus - C:\Program Files\Sony\Image Converter 2\menu.htmO9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dllO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeopleO16 - DPF: {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1) - [url="http://support.f-secure.com/ols/fscax.cab"]http://support.f-secure.com/ols/fscax.cab[/url]O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - [url="http://a516.g.akamai.net/f/516/25175/7d/runaware.download.akamai.com/25175/citrix/wficat-no-eula"]http://a516.g.akamai.net/f/516/25175/7d/ru.../wficat-no-eula[/url].cabO16 - DPF: {9059F30F-4EB1-4BD2-9FDC-36F43A218F4A} (Microsoft RDP Client Control (redist)) - [url="http://69.213.66.54/TSWEB/msrdp.cab"]http://69.213.66.54/TSWEB/msrdp.cab[/url]O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - [url="http://acs.pandasoftware.com/activescan/as5free/asinst.cab"]http://acs.pandasoftware.com/activescan/as5free/asinst.cab[/url]O16 - DPF: {FFBB3F3B-0A5A-4106-BE53-DFE1E2340CB1} (DownloadManager Control) - [url="http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.1.6.cab"]http://dlm.tools.akamai.com/dlmanager/vers...vex-2.2.1.6.cab[/url]O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLLO20 - Winlogon Notify: geeby - C:\WINDOWS\system32\geeby.dll (file missing)O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dllO20 - Winlogon Notify: VESWinlogon - C:\WINDOWS\SYSTEM32\VESWinlogon.dllO20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dllO20 - Winlogon Notify: winjvd32 - winjvd32.dll (file missing)O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)O20 - Winlogon Notify: xxyvurq - xxyvurq.dll (file missing)O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dllO23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exeO23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exeO23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exeO23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exeO23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 2\IcVzMon.exeO23 - Service: iPod Service - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXEO23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exeO23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exeO23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exeO23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exeO23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\CompuPicPro\ScsiAccess.exe (file missing)O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exeO23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exeO23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exeO23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exeO23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exeO23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exeO23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP (file missing)O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exeO23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing)O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exeO23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exeO23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exeO23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
SUPER ANTI SPYWARE LOG
SUPERAntiSpyware Scan Log[url="http://www.superantispyware.com"]http://www.superantispyware.com[/url]Generated 09/17/2007 at 09:24 AMApplication Version : 3.9.1008Core Rules Database Version : 3306Trace Rules Database Version: 1312Scan type : Complete ScanTotal Scan Time : 05:03:34Memory items scanned : 523Memory threats detected : 0Registry items scanned : 6564Registry threats detected : 4File items scanned : 35774File threats detected : 1Trojan.WinFixer HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10FC1CC8-9B06-4E5D-91F3-937B8BE48C4E} HKCR\CLSID\{10FC1CC8-9B06-4E5D-91F3-937B8BE48C4E} HKCR\CLSID\{10FC1CC8-9B06-4E5D-91F3-937B8BE48C4E}\InprocServer32 HKCR\CLSID\{10FC1CC8-9B06-4E5D-91F3-937B8BE48C4E}\InprocServer32#ThreadingModel C:\WINDOWS\SYSTEM32\GEEBY.DLL
AVG LOG
Trojan horse PSW.Generic4.WYX C:\WINDOWS\system32\iphelp.dll 9/17/2007 13:38 iphelp.dll 8 KBTrojan horse Downloader.Generic6.AUK C:\WINDOWS\system32\mscert.dll 9/17/2007 13:38 mscert.dll 4 KBTrojan horse PSW.Generic4.WYG C:\WINDOWS\system32\netd.dll 9/17/2007 13:38 netd.dll 6 KBTrojan horse PSW.Generic4.ZLK C:\WINDOWS\system32\psx.dll 9/17/2007 13:38 psx.dll 4.5 KBTrojan horse PSW.Generic4.ZLK C:\WINDOWS\system32\psx.dll 9/17/2007 13:38 psx.dll 4.5 KB
PANDA SCAN LOG
Incident Status Location Potentially unwanted tool:application/mywebsearch Not disinfected hkey_classes_root\clsid\{147A976F-EEE1-4377-8EA7-4716E4CDD239} Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.tribalfusion.com/] Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.2o7.net/] Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.fastclick.net/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.advertising.com/] Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/Clickbank Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.clickbank.net/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.bs.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.serving-sys.com/] Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.trafficmp.com/] Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.realmedia.com/] Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.ads.pointroll.com/] Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.zedo.com/] Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.casalemedia.com/] Spyware:Cookie/WebtrendsLive Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[statse.webtrendslive.com/] Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.perf.overture.com/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.com.com/] Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.toplist.cz/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.adrevolver.com/] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[server.iad.liveperson.net/hc/42100874] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[server.iad.liveperson.net/] Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.atwola.com/] Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.xiti.com/] Spyware:Cookie/DomainSponsor Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[landing.domainsponsor.com/] Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\cookies.txt[.bravenet.com/] Virus:Trj/Alanchum.NX!CME-711 Disinfected C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\Local Folders\Inbox[Read More.exe] Virus:W32/Nuwar.D.worm Disinfected C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\Local Folders\Inbox[Video.exe] Virus:Trj/Alanchum.OO Disinfected C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\Local Folders\Inbox[postcard.exe] Virus:Trj/Alanchum.PW Disinfected C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\Local Folders\Inbox[greeting card.exe] Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\User\Cookies\user@2o7[1].txt
JKDEFRAG LOG
22:35:04 JkDefrag v3.2422:35:05 Date: 2007/09/1422:35:05 NtfsDisableLastAccessUpdate is inactive, using LastAccessTime for SpaceHogs.22:35:05 Analyzing disk 'C:\'22:35:06 Starting JkDefrag for 'C:\'22:35:14 Phase 1: Analyze22:40:26 Phase 2: Fixup00:36:03 Zone 1: Fast Optimize00:41:16 Zone 2: Fast Optimize07:26:17 Zone 3: Fast Optimize10:12:35 Finished.10:12:35 - Total disk space: 73575129088 bytes (68.52 gigabytes), 17962678 clusters10:12:35 - Bytes per cluster: 4096 bytes10:12:35 - Number of files: 12170910:12:35 - Number of directories: 1319610:12:35 - Total size of analyzed items: 45741236224 bytes, 11167294 clusters10:12:35 - Number of fragmented items: 3, 0.00% of all items10:12:35 - Total size of fragmented items: 143360 bytes, 35 clusters, 0.00% of all items, 0.00% of disk10:12:35 - Free disk space: 26293346304 bytes, 6419274 clusters, 35.74% of disk10:12:35 - Number of gaps: 87110:12:35 - Number of small gaps: 234, 26.87% of all gaps10:12:35 - Size of small gaps: 6762496 bytes, 1651 clusters, 0.03% of free disk space10:12:35 - Number of big gaps: 637 (73.13% of all gaps)10:12:35 - Size of big gaps: 26286583808 bytes, 6417623 clusters, 99.97% of free disk space10:12:35 - Average gap size: 7370.00 clusters10:12:35 - Biggest gap: 2169380864 bytes, 529634 clusters, 8.25% of free disk space10:12:35 These items could not be moved:10:12:35 Fragments Bytes Clusters Name10:12:35 1 4096 1 C:\$MFTMirr10:12:35 1 67108864 16384 C:\$LogFile10:12:35 1 4144 2 C:\.::$SECURITY_DESCRIPTOR10:12:35 1 2245336 549 C:\$Bitmap10:12:35 2 65536 16 C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb10:12:35 397 2146456872 25664 C:\$Extend\$UsnJrnl:$J:$DATA10:12:35 13 54984 14 C:\$MFT::$BITMAP10:12:35 1 106752 25 C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\q9pf7xvd.default\flashgot.log10:12:35 --------- ----------- --------- -----10:12:35 417 2216046584 42655 Total10:12:35 These items are still fragmented:10:12:35 Fragments Bytes Clusters Name10:12:35 2 45056 12 C:\WINDOWS\SoftwareDistribution\EventCache10:12:35 3 450428928 109968 C:\$MFT10:12:35 2 65536 16 C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb10:12:35 397 2146456872 25664 C:\$Extend\$UsnJrnl:$J:$DATA10:12:35 13 54984 14 C:\$MFT::$BITMAP10:12:35 4 1024 7 C:\WINDOWS\system32\config\SECURITY.LOG10:12:35 --------- ----------- --------- -----10:12:35 421 2597052400 135681 Total10:12:35 The 25 largest items on disk:10:12:35 Fragments Bytes Clusters Name10:12:35 1 1598029824 390144 C:\pagefile.sys10:12:35 1 1066369820 260345 C:\movies\Underworld.wmv10:12:35 1 782985038 191159 C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\Local Folders\Inbox10:12:35 3 450428928 109968 C:\$MFT10:12:35 1 419464317 102409 C:\Documents and Settings\User\Local Settings\Application Data\Google\GoogleEarth\dbCache.dat10:12:35 1 399726074 97590 C:\Program Files\Intuit\QuickBooks 2006\Components\PConfig\Data1.cab10:12:35 1 255758336 62441 C:\Documents and Settings\User\Local Settings\Temp\~PST9105.tmp10:12:35 1 163647488 39953 C:\movies\TDVC\VIDEO_TS\VTS_01_1.VOB10:12:35 1 124288367 30344 C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\Local Folders\Sent10:12:35 397 2146456872 25664 C:\$Extend\$UsnJrnl:$J:$DATA10:12:35 1 94636486 23105 C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\mail.unlimiteddynamics.com\Inbox10:12:35 1 94449612 23059 C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\Local Folders\Drafts10:12:35 1 92262400 22525 C:\Documents and Settings\User\Local Settings\Temp\~PST3160.tmp10:12:35 1 72576436 17719 C:\Documents and Settings\User\My Documents\Morpheus Shared\Downloads\LAURAINE\Phil Collins - Genesis - Land Of Confusion.mpg10:12:35 1 67108864 16384 C:\$LogFile10:12:35 1 66934961 16342 C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\Local Folders\Inbox.sbd\PR_DIRT10:12:35 1 64118784 15654 C:\Documents and Settings\All Users\Application Data\Sony Corporation\VAIO Sample\VAIO Sample.mpeg10:12:35 1 63044788 15392 C:\WINDOWS\Driver Cache\i386\driver.cab10:12:35 1 63044788 15392 C:\WINDOWS\I386\DRIVER.CAB10:12:35 1 62210650 15189 C:\WINDOWS\system32\ActiveScan\pav.sig10:12:35 1 58408960 14260 C:\Program Files\Sony\Click to DVD 2\TransitionPlugins\gmCelebrateRes.dll10:12:35 1 53137653 12974 C:\101\WEB_SITES\ROLL\GRAPHICS\ROTATOR\ROTATOR_01.png10:12:35 1 50870409 12420 C:\Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\mail.unlimited_REMOVED-FOR-PRIVACY.com\Trash10:12:35 1 49880152 12178 C:\101\WEB_SITES\ROLL\PHOTOS\PARTS_20070422_BURNED\Ellis_ACP.tif10:12:35 Analyzing disk 'D:\'10:12:35 Ignoring disk 'D:\' because it is a removable disk.10:12:35 Analyzing disk 'E:\'10:12:35 Ignoring disk 'E:\' because it is a removable disk.10:12:35 Finished.
PREVIOUS DEFRAG LOG - I'm not sure if this is relevant, but this is a defrag attempt or a full defrag log from something, possibly the Windows Defrag attempt. This took place prior deleting files and also loading files via FTP to a server in order to eliminate used space.
Volume (C:) Volume size = 68.52 GB Cluster size = 4 KB Used space = 51.38 GB Free space = 17.14 GB Percent free space = 25 %Volume fragmentation Total fragmentation = 1 % File fragmentation = 3 % Free space fragmentation = 0 %File fragmentation Total files = 226,306 Average file size = 348 KB Total fragmented files = 29 Total excess fragments = 21,469 Average fragments per file = 1.09Pagefile fragmentation Pagefile size = 1.49 GB Total fragments = 1Folder fragmentation Total folders = 21,772 Fragmented folders = 1 Excess folder fragments = 0Master File Table (MFT) fragmentation Total MFT size = 430 MB MFT record count = 249,217 Percent MFT in use = 56 % Total MFT fragments = 4--------------------------------------------------------------------------------Fragments File Size Files that cannot be defragmented2 141 KB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055821.com3 544 KB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055790.com3 719 KB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055792.com3 801 KB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055778.com3 810 KB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055768.com3 816 KB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055779.com4 1,021 KB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055742.com4 1 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055789.com4 1 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055744.com4 1 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055781.com4 1 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055717.com5 2 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055724.com5 3 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055757.com5 3 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055758.com5 3 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055809.com5 3 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055723.com8 8 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP269\A0055722.com12,297 734 MB \Documents and Settings\User\Application Data\Thunderbird\Profiles\gmyfu5k6.default\Mail\Local Folders\Inbox8,750 758 MB \System Volume Information\_restore{85D8F67A-9556-4D4D-A80C-B684FCCBE8C6}\RP307\A0110966.exe
HIJACK THIS ADD/REMOVE PROGRAMS LIST - There were some programs I removed recently due to non use, but here is the latest list as requested. I noticed Firefox and HiJackThis is referenced twice. Which ones, if any, can I safely remove without encountering issues?
7-Zip 4.42ABBYY FineReader 5.0 SprintAdobe After Effects 5.5Adobe Flash Player 9 ActiveXAdobe Illustrator 10Adobe Photoshop 7.0Adobe Premiere 6.0Adobe Reader 7.0.8Adobe Shockwave PlayerAdobe SVG Viewer 3.0Adobe® Photoshop® Album Starter Edition 3.0Advanced RealMedia Export Plug-in for Premiere 6.0AIM 6AOL ExplorerAOL Uninstaller (Choose which Products to Remove)Apple Software UpdateAVG 7.5AVG Anti-Spyware 7.5Canon PC1200/iC D700CCleaner (remove only)Cleaner 5 EZClick to DVD 2.0.03 Menu DataClick to DVD 2.5.20DeepBurner v1.8.0.224DVgate PlusEssentialPIMFastStone Capture 3.9FaxToolsFile Renamer - BasicFileZilla (remove only)FreeMindGoogle EarthHDAUDIO SoftV92 Data Fax Modem with SmartCPHigh Definition Audio Driver Package - KB835221Hijackthis 1.99.1HijackThis 1.99.1Hotfix for Windows Media Format 11 SDK (KB929399)Hotfix for Windows Media Player 11 (KB939683)Hotfix for Windows XP (KB909667)Hotfix for Windows XP (KB910728)Hotfix for Windows XP (KB914440)Hotfix for Windows XP (KB915865)Hotfix for Windows XP (KB926239)Hotfix for Windows XP (KB935448)Image Converter 2 PlusInfraRecorderIntel® Graphics Media Accelerator Driver for MobileIntel® PRO Network Connections 12.1.12.0Intel® PROSet/Wireless SoftwareInterVideo WinDVD for VAIOJ2SE Runtime Environment 5.0 Update 6Java™ SE Runtime Environment 6KPT Vector Effects 1.5LAN-Express AS IEEE 802.11 Wireless LANLexmark 1200 SeriesLexmark Z700-P700 SeriesMacromedia Dreamweaver MXMacromedia Extension ManagerMacromedia Fireworks MXMacromedia Flash MXMacromedia Flash Player 8mCoremDriverMemory Stick FormatterMetaFrame Presentation Server Web Client for Win32Microsoft .NET Framework 1.1Microsoft .NET Framework 1.1Microsoft .NET Framework 1.1 Hotfix (KB928366)Microsoft Compression Client Pack 1.0 for Windows XPMicrosoft Data Access Components KB870669Microsoft Digital Image Starter Edition 2006Microsoft Internationalized Domain Names Mitigation APIsMicrosoft National Language Support Downlevel APIsMicrosoft Office XP Professional with FrontPageMicrosoft SQL Server Desktop Engine (VAIO_VEDB)Microsoft User-Mode Driver Framework Feature Pack 1.0Microsoft WorksmMHouseMozilla Firefox (2.0.0.4)Mozilla Firefox (2.0.0.6)Mozilla Thunderbird (2.0.0.6)mPfMgrmProSafeMSXML 4.0 SP2 (KB927978)MSXML 4.0 SP2 (KB936181)mWlsSafemXMLMy Photo Calendars & CardsNetscape Browser (remove only)Office 2003 Trial AssistantOpenMG Secure Module 4.4.00OpenOffice.org 2.2Panda ActiveScanPC Inspector smart recoveryPrimoPDFPrimoPDF Redistribution PackageQuickBooks Pro 2006Quicken 2006QuickTimeRealPlayerRealtek High Definition Audio DriverRoxio DigitalMedia AudioRoxio DigitalMedia CopyRoxio DigitalMedia DataSearch Enhancement by AOL SearchSecurity Update for Step By Step Interactive Training (KB898458)Security Update for Step By Step Interactive Training (KB923723)Security Update for Windows Media Player 10 (KB917734)Security Update for Windows Media Player 11 (KB936782)Security Update for Windows Media Player 6.4 (KB925398)Security Update for Windows XP (KB890046)Security Update for Windows XP (KB893066)Security Update for Windows XP (KB893756)Security Update for Windows XP (KB896358)Security Update for Windows XP (KB896422)Security Update for Windows XP (KB896423)Security Update for Windows XP (KB896424)Security Update for Windows XP (KB896428)Security Update for Windows XP (KB896688)Security Update for Windows XP (KB899587)Security Update for Windows XP (KB899588)Security Update for Windows XP (KB899589)Security Update for Windows XP (KB899591)Security Update for Windows XP (KB900725)Security Update for Windows XP (KB901017)Security Update for Windows XP (KB901214)Security Update for Windows XP (KB902400)Security Update for Windows XP (KB903235)Security Update for Windows XP (KB904706)Security Update for Windows XP (KB905414)Security Update for Windows XP (KB905749)Security Update for Windows XP (KB905915)Security Update for Windows XP (KB908519)Security Update for Windows XP (KB911562)Security Update for Windows XP (KB911567)Security Update for Windows XP (KB912919)Security Update for Windows XP (KB913580)Security Update for Windows XP (KB914388)Security Update for Windows XP (KB914389)Security Update for Windows XP (KB916281)Security Update for Windows XP (KB917159)Security Update for Windows XP (KB917344)Security Update for Windows XP (KB917422)Security Update for Windows XP (KB917953)Security Update for Windows XP (KB918118)Security Update for Windows XP (KB918439)Security Update for Windows XP (KB918899)Security Update for Windows XP (KB919007)Security Update for Windows XP (KB920213)Security Update for Windows XP (KB920214)Security Update for Windows XP (KB920670)Security Update for Windows XP (KB920683)Security Update for Windows XP (KB920685)Security Update for Windows XP (KB921398)Security Update for Windows XP (KB921503)Security Update for Windows XP (KB921883)Security Update for Windows XP (KB922616)Security Update for Windows XP (KB922760)Security Update for Windows XP (KB922819)Security Update for Windows XP (KB923191)Security Update for Windows XP (KB923414)Security Update for Windows XP (KB923689)Security Update for Windows XP (KB923694)Security Update for Windows XP (KB923980)Security Update for Windows XP (KB924191)Security Update for Windows XP (KB924270)Security Update for Windows XP (KB924496)Security Update for Windows XP (KB924667)Security Update for Windows XP (KB925454)Security Update for Windows XP (KB925486)Security Update for Windows XP (KB925902)Security Update for Windows XP (KB926255)Security Update for Windows XP (KB926436)Security Update for Windows XP (KB927779)Security Update for Windows XP (KB927802)Security Update for Windows XP (KB928090)Security Update for Windows XP (KB928255)Security Update for Windows XP (KB928843)Security Update for Windows XP (KB929123)Security Update for Windows XP (KB929969)Security Update for Windows XP (KB930178)Security Update for Windows XP (KB931261)Security Update for Windows XP (KB931768)Security Update for Windows XP (KB931784)Security Update for Windows XP (KB932168)Security Update for Windows XP (KB933566)Security Update for Windows XP (KB935839)Security Update for Windows XP (KB935840)Security Update for Windows XP (KB936021)Security Update for Windows XP (KB937143)Security Update for Windows XP (KB938127)Security Update for Windows XP (KB938829)Setting Utility SeriesSonicStage 3.4Sony Certificate PCHSony MP4 Shared LibrarySony Utilities DLLSony Video Shared LibrarySpywareBlaster v3.5.1SUPERAntiSpyware Free EditionUpdate for Windows XP (KB894391)Update for Windows XP (KB896727)Update for Windows XP (KB898461)Update for Windows XP (KB900485)Update for Windows XP (KB904942)Update for Windows XP (KB908531)Update for Windows XP (KB911280)Update for Windows XP (KB916595)Update for Windows XP (KB920872)Update for Windows XP (KB922582)Update for Windows XP (KB927891)Update for Windows XP (KB929338)Update for Windows XP (KB930916)Update for Windows XP (KB931836)Update for Windows XP (KB933360)Update for Windows XP (KB936357)Update for Windows XP (KB938828)VAIO Breeze WallpaperVAIO CentralVAIO Entertainment PlatformVAIO Event ServiceVAIO Light Flo WallpaperVAIO Media 5.0VAIO Media AC3 Decoder 1.0VAIO Media Integrated Server 5.0VAIO Media Redistribution 5.0VAIO Media Registration Tool 5.0VAIO Original Screen SaverVAIO Original Screen Saver VAIO Cozy Screen SD Wide ContentsVAIO Power ManagementVAIO RegistrationVAIO Security CenterVAIO Support CentralVAIO Update 2VAIO Wireless LAN Setup UtilityVAIOSurveySAVoice EditingWinamp (remove only)Windows Backup UtilityWindows Installer 3.1 (KB893803)Windows Live MessengerWindows Live Sign-in AssistantWindows Media Format 11 runtimeWindows Media Format 11 runtimeWindows Media Player 10 Hotfix [See KB886612 for more information]Windows Media Player 11Windows Media Player 11Windows XP Hotfix - KB307154Windows XP Hotfix - KB873339Windows XP Hotfix - KB884575Windows XP Hotfix - KB885250Windows XP Hotfix - KB885835Windows XP Hotfix - KB885836Windows XP Hotfix - KB885884Windows XP Hotfix - KB886185Windows XP Hotfix - KB887472Windows XP Hotfix - KB887742Windows XP Hotfix - KB888113Windows XP Hotfix - KB888239Windows XP Hotfix - KB888302Windows XP Hotfix - KB890859Windows XP Hotfix - KB891781WinSCP 3.8.2ZoneAlarm
Edited by FidelGonzales, 18 September 2007 - 12:22 AM.