Logfile of Trend Micro HijackThis v2.0.4Scan saved at 10:35:37 PM, on 4/19/201

1. Logfile of Trend Micro HijackThis v2.0.4
2. Scan saved at 10:35:37 PM, on 4/19/2012
3. Platform: Windows 7 SP1 (WinNT 6.00.3505)
4. MSIE: Unable to get Internet Explorer version!
5. Boot mode: Normal
6.  
7. Running processes:
8. C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
9. C:\Program Files (x86)\Internet Download Manager\IDMan.exe
10. C:\Program Files (x86)\Launchy\Launchy.exe
11. D:\Downloads\Firefox\DotaToolKit v3.3c\DotaToolKit.exe
12. C:\Users\Aurum\AppData\Roaming\Dropbox\bin\Dropbox.exe
13. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
14. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
15. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
16. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
17. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
18. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
19. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
20. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
21. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
22. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
23. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
24. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
25. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
26. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
27. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
28. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
29. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
30. C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe
31. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
32. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
33. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
34. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
35. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
36. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
37. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
38. C:\Windows\SysWOW64\rundll32.exe
39. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
40. C:\Program Files (x86)\Pidgin\pidgin.exe
41. C:\Program Files (x86)\Skype\Phone\Skype.exe
42. C:\Program Files (x86)\uTorrent\uTorrent.exe
43. C:\Program Files (x86)\Vidalia Bundle\Vidalia\vidalia.exe
44. C:\Program Files (x86)\Vidalia Bundle\Tor\tor.exe
45. C:\Users\Aurum\AppData\Local\Google\Chrome\Application\chrome.exe
46. D:\Downloads\Firefox\HijackThis.exe
47.  
48. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
49. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
50. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
51. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
52. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
53. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
54. R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
55. F2 - REG:system.ini: UserInit=userinit.exe,
56. O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
57. O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
58. O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
59. O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
60. O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
61. O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
62. O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
63. O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
64. O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
65. O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
66. O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
67. O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
68. O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
69. O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
70. O4 - HKUS\S-1-5-21-216677174-2672513004-2765404853-1011\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
71. O4 - Startup: DotaToolKit.lnk = D:\Downloads\Firefox\DotaToolKit v3.3c\DotaToolKit.exe
72. O4 - Startup: Dropbox.lnk = C:\Users\Aurum\AppData\Roaming\Dropbox\bin\Dropbox.exe
73. O4 - Global Startup: Launchy.lnk = C:\Program Files (x86)\Launchy\Launchy.exe
74. O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
75. O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
76. O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
77. O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
78. O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
79. O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
80. O10 - Unknown file in Winsock LSP: c:\windows\system32\prxernsp.dll
81. O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
82. O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
83. O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
84. O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
85. O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
86. O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
87. O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
88. O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
89. O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
90. O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
91. O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
92. O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
93. O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
94. O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
95. O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
96. O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
97. O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
98. O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
99. O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
100. O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
101. O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
102. O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
103. O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
104. O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
105. O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
106. O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
107. O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
108. O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
109. O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
110. O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
111. O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
112. O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
113. O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
114. O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
115. O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
116. O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
117. O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
118. O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
119. O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
120. O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
121. O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
122. O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
123. O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
124. O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
125. O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
126. O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
127. O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
128. O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
129.  
130. --
131. End of file - 12361 bytes