Inactive [InActive] Winlognn.exe Infection

Hi, I have the exact same problem as scorpion657 (http://www.windowsbbs.com/malware-virus-removal/81624-active-warning-flashing-desktop-winlognn-exe.html). My desktop has been replaced by a flashing warning about malware infection, the task manager has been disabled, and my browser is periodically hijacked to display advertisements for bunk anti-spyware programs. I have run both Ad-Aware Free Edition and ClamWin Free Antivirus multiple times. AAW quarantined a file, winlognn.exe, along with many random alpha-numeric files that had suspicious startup entries. They all originated from the Local Settings\Temp folder. However, these scans have had no effect; task manager is still disabled and the popups persist, so I need some outside help.

The DDS logs follow:


DDS (Ver_09-02-01.01) - NTFSx86
Run by Steven at 13:34:02.96 on Sun 02/22/2009
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2032.1324 [GMT -5:00]


============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\IRW.exe
C:\WINDOWS\system32\Brightness.exe
C:\Program Files\Boot Camp\KbdMgr.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ClamWin\bin\ClamTray.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\OCZ Technology\Mouse\Amoumain.exe
C:\WINDOWS\system32\frmwrk32.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\WINDOWS\TEMP\5C5F.tmp
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\WINDOWS\system32\ntdll64.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\AppleTimeSrv.exe
C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
C:\Program Files\Bonjour\mDNSResponder.exe
svchost.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Program Files\Opera\Opera.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\ClamWin\bin\ClamWin.exe
C:\Program Files\ClamWin\bin\clamscan.exe
C:\WINDOWS\system32\ntdll64.exe
C:\Documents and Settings\Steven\Desktop\dds.scr
C:\Documents and Settings\Steven\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://kzoo.edu/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uRun: [Aim6]
uRun: [AlcoholAutomount] "c:\program files\alcohol soft\alcohol 120\axcmd.exe" /automount
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\daemon.exe" -autorun
mRun: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
mRun: [IRW] c:\windows\system32\IRW.exe
mRun: [Brightness] c:\windows\system32\Brightness.exe
mRun: [Apple_KbdMgr] c:\program files\boot camp\KbdMgr.exe
mRun: [SigmatelSysTrayApp] sttray.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe "
mRun: [ClamWin] "c:\program files\clamwin\bin\ClamTray.exe" --logon
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe "
mRun: [AtiPTA] atiptaxx.exe
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\bin\AppleSyncNotifier.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe "
mRun: [WheelMouse] c:\program files\ocz technology\mouse\Amoumain.exe
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [Framework Windows] frmwrk32.exe
mRun: [Ad-Watch] c:\program files\lavasoft\ad-aware\AAWTray.exe
dRun: [Picasa Media Detector] c:\program files\picasa2\PicasaMediaDetector.exe
StartupFolder: c:\docume~1\steven\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\steven\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
uPolicies-explorer: NoFolderOptions = 1 (0x1)
uPolicies-explorer: NoSetActiveDesktop = 1 (0x1)
uPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
uPolicies-system: DisableTaskMgr = 1 (0x1)
uPolicies-system: DisableRegistryTools = 1 (0x1)
mPolicies-explorer: NoSetActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {7F9DB11C-E358-4ca6-A83D-ACC663939424} - {9999A076-A9E2-4C99-8A2B-632FC9429223} - c:\program files\bonjour\ExplorerPlugin.dll
DPF: {843EE768-3A97-455C-9076-741BA3AD7B62} - hxxps://accounting.quickbooks.com/c9/v22.158/qboax10.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Notify: Antiwpa - antiwpa.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: crypt - crypts.dll
LSA: Authentication Packages = msv1_0 c:\windows\system32\ljJBqoPf

============= SERVICES / DRIVERS ===============

R1 appdrv01;Application Driver (01);c:\windows\system32\drivers\appdrv01.sys [2008-9-9 2915944]
R2 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-1-18 950096]
R2 AppleTimeSrv;Apple Time Service;c:\windows\system32\AppleTimeSrv.exe [2007-6-4 95824]
R2 KeyAgent;KeyAgent;c:\windows\system32\drivers\KeyAgent.sys [2007-6-4 4864]
R2 MacHALDriver;Mac HAL;c:\windows\system32\drivers\MacHALDriver.sys [2007-6-4 5632]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2007-11-16 24652]
R3 aapltctp;Apple Trackpad Enabler;c:\windows\system32\drivers\aapltctp.sys [2007-8-8 4224]
R3 aapltp;Apple Trackpad;c:\windows\system32\drivers\aapltp.sys [2007-8-8 35072]
R3 applebt;Apple Built-in Bluetooth;c:\windows\system32\drivers\applebt.sys [2007-8-8 8064]
R3 IRRemoteFlt;IR Receiver Filter Driver;c:\windows\system32\drivers\IRFilter.sys [2007-8-8 16512]
R3 KeyMagic;USB Keyboard HID Filter;c:\windows\system32\drivers\KeyMagic.sys [2007-8-8 10752]
S2 appdrvrem01;Application Driver Auto Removal Service (01);c:\windows\system32\appdrvrem01.exe svc --> c:\windows\system32\appdrvrem01.exe svc [?]
S3 BthKicker;Apple Bluetooth Device Driver;c:\windows\system32\drivers\BthKicker.sys [2007-8-8 7424]
S3 iSightUpdate;iSight Update Driver;c:\windows\system32\drivers\iSightUP.sys [2007-8-8 18304]

=============== Created Last 30 ================

2009-02-21 18:30 104,960 a------- c:\windows\system32\ntdll64.exe
2009-02-21 13:17 23,077 a------- c:\windows\system32\AAWService_2009_02_21_13_17_17.dmp
2009-02-21 13:13 15,688 a------- c:\windows\system32\lsdelete.exe
2009-02-21 12:55 64,160 a------- c:\windows\system32\drivers\Lbd.sys
2009-02-21 12:50 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{83C91755-2546-441D-AC40-9A6B4B860800}
2009-02-21 12:26 725 a------- c:\windows\system32\test.ttt
2009-02-21 12:26 1 a------- c:\windows\system32\uniq.tll
2009-02-21 12:26 2 a------- C:\1006952418
2009-02-21 12:26 27,136 a------- c:\windows\system32\frmwrk32.exe
2009-02-21 12:26 72,704 a------- c:\windows\system32\pdmfrnrt.dll
2009-02-21 12:23 129,024 a------- c:\windows\system32\zjjqhn.dll
2009-02-21 12:23 129,024 a------- c:\windows\system32\rklsysfy.dll
2009-02-20 19:47 129,024 a------- c:\windows\system32\wpysnz.dll
2009-02-20 19:47 129,024 a------- c:\windows\system32\axrlggyk.dll
2009-02-20 19:44 1,637,773 a--sh--- c:\windows\system32\bsutciya.ini
2009-02-20 07:46 1,618,159 ---sh--- c:\windows\system32\txonyhdc.ini
2009-02-20 07:44 129,024 a------- c:\windows\system32\bqjdrh.dll
2009-02-20 07:44 129,024 a------- c:\windows\system32\nfdnjmvg.dll
2009-02-19 10:42 129,024 a------- c:\windows\system32\gpsika.dll
2009-02-19 10:42 129,024 a------- c:\windows\system32\xsxyabcf.dll
2009-02-19 10:40 1,613,275 ---sh--- c:\windows\system32\xmxekqix.ini
2009-02-18 21:28 129,024 a------- c:\windows\system32\emvoxc.dll
2009-02-18 21:28 129,024 a------- c:\windows\system32\ewmcyafs.dll
2009-02-18 21:25 1,611,600 ---sh--- c:\windows\system32\wsjfjkec.ini
2009-02-18 09:25 1,609,336 ---sh--- c:\windows\system32\qagaerti.ini
2009-02-18 09:24 129,024 a------- c:\windows\system32\gwrtxj.dll
2009-02-18 09:24 129,024 a------- c:\windows\system32\bpuglstl.dll
2009-02-17 18:45 <DIR> --d----- c:\docume~1\steven\applic~1\Mount&Blade
2009-02-17 18:44 <DIR> --d----- c:\program files\Mount&Blade
2009-02-17 17:22 1,603,855 ---sh--- c:\windows\system32\jvmngoeg.ini
2009-02-17 17:20 129,024 a------- c:\windows\system32\kmmfir.dll
2009-02-17 17:20 129,024 a------- c:\windows\system32\qmjhhakp.dll
2009-02-15 21:36 1,603,855 ---sh--- c:\windows\system32\topsohrb.ini
2009-02-14 21:36 1,583,467 ---sh--- c:\windows\system32\rtjaqrpo.ini
2009-02-14 21:33 129,024 a------- c:\windows\system32\ynbmph.dll
2009-02-14 21:33 129,024 a------- c:\windows\system32\axsdyfxf.dll
2009-02-14 21:33 2,497 a--sh--- c:\windows\system32\fPoqBJjl.ini2
2009-02-14 21:33 2,497 a--sh--- c:\windows\system32\fPoqBJjl.ini
2009-02-14 21:33 302,592 a------- c:\windows\system32\ljJBqoPf.dll.vir
2009-02-10 20:28 410,984 a------- c:\windows\system32\deploytk.dll
2009-02-08 20:23 <DIR> --d----- C:\Westwood
2009-02-08 20:23 299,520 a------- c:\windows\uninst.exe
2009-02-01 00:45 <DIR> --d----- c:\program files\OCZ Technology

==================== Find3M ====================

2009-02-21 18:24 100,590 a------- c:\windows\system32\drivers\73228878.sys
2009-02-21 12:27 5,189 a------- c:\windows\system32\uacinit.dll
2009-02-21 12:27 81,408 a------- c:\windows\system32\UAClntwxsaj.dll
2009-02-21 12:27 31,232 a------- c:\windows\system32\UACkppxrtey.dll
2009-02-21 12:27 27,136 a------- c:\windows\system32\UACbcrhptov.dll
2009-02-21 12:27 24,576 a------- c:\windows\system32\UACskactubn.dll
2009-02-21 12:27 65,536 a------- c:\windows\system32\drivers\UACrckllolw.sys
2009-02-21 12:27 32,256 a------- c:\windows\system32\crypts.dll
2009-02-21 12:26 104,960 a------- c:\windows\system32\userinit.exe
2008-12-03 01:37 49,480 a------- c:\windows\system32\sirenacm.dll
2008-11-25 16:54 86,327 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-07-16 20:07 23 a------- c:\documents and settings\steven\jagex_runescape_preferences.dat
2007-12-10 21:29 22,328 a------- c:\docume~1\steven\applic~1\PnkBstrK.sys

============= FINISH: 13:34:54.12 ===============


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-02-01.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 8/8/2007 8:59:47 PM
System Uptime: 2/22/2009 12:55:39 PM (1 hours ago)

Motherboard: Apple Computer, Inc. | | Mac-F42187C8
Processor: Intel(R) Core(TM)2 CPU T7600 @ 2.33GHz | U2E1 | 1326/166mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 56 GiB total, 6.777 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is CDROM ()
G: is FIXED (FAT32) - 233 GiB total, 106.208 GiB free.
H: is FIXED (NTFS) - 75 GiB total, 31.293 GiB free.
J: is Removable

==== Disabled Device Manager Items =============

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Atheros AR5008 Wireless Network Adapter
Device ID: PCI\VEN_168C&DEV_0024&SUBSYS_0087106B&REV_01\4&20975680&0&00E1
Manufacturer: Atheros
Name: Atheros AR5008 Wireless Network Adapter
PNP Device ID: PCI\VEN_168C&DEV_0024&SUBSYS_0087106B&REV_01\4&20975680&0&00E1
Service: AR5416

==== System Restore Points ===================

RP370: 2/14/2009 9:33:20 PM - Software Distribution Service 3.0
RP371: 2/14/2009 9:33:20 PM - System Checkpoint
RP372: 2/14/2009 9:33:20 PM - System Checkpoint
RP373: 2/14/2009 9:33:20 PM - System Checkpoint
RP374: 2/14/2009 9:33:21 PM - System Checkpoint
RP375: 2/14/2009 9:33:21 PM - Installed Mojo
RP376: 2/14/2009 9:33:21 PM - System Checkpoint
RP377: 2/14/2009 9:33:21 PM - System Checkpoint
RP378: 2/14/2009 9:33:21 PM - System Checkpoint
RP379: 2/14/2009 9:33:21 PM - System Checkpoint
RP380: 2/14/2009 9:33:21 PM - System Checkpoint
RP381: 2/14/2009 9:33:21 PM - Installed DirectX
RP382: 2/14/2009 9:33:21 PM - Software Distribution Service 3.0
RP383: 2/14/2009 9:33:22 PM - System Checkpoint
RP384: 2/14/2009 9:33:22 PM - System Checkpoint
RP385: 2/14/2009 9:33:22 PM - System Checkpoint
RP386: 2/14/2009 9:33:22 PM - System Checkpoint
RP387: 2/14/2009 9:33:22 PM - System Checkpoint
RP388: 2/14/2009 9:33:22 PM - System Checkpoint
RP389: 2/14/2009 9:33:22 PM - System Checkpoint
RP390: 2/14/2009 9:33:23 PM - System Checkpoint
RP391: 2/14/2009 9:33:23 PM - System Checkpoint
RP392: 2/14/2009 9:33:23 PM - System Checkpoint
RP393: 2/14/2009 9:33:23 PM - System Checkpoint
RP394: 2/14/2009 9:33:23 PM - System Checkpoint
RP395: 2/14/2009 9:33:23 PM - System Checkpoint
RP396: 2/14/2009 9:33:23 PM - System Checkpoint
RP397: 2/14/2009 9:33:23 PM - System Checkpoint
RP398: 2/14/2009 9:33:24 PM - System Checkpoint
RP399: 2/14/2009 9:33:24 PM - System Checkpoint
RP400: 2/14/2009 9:33:24 PM - System Checkpoint
RP401: 2/14/2009 9:33:24 PM - System Checkpoint
RP402: 2/14/2009 9:33:24 PM - System Checkpoint
RP403: 2/14/2009 9:33:24 PM - System Checkpoint
RP404: 2/14/2009 9:33:24 PM - System Checkpoint
RP405: 2/14/2009 9:33:24 PM - System Checkpoint
RP406: 2/14/2009 9:33:24 PM - System Checkpoint
RP407: 2/14/2009 9:33:25 PM - System Checkpoint
RP408: 2/14/2009 9:33:25 PM - System Checkpoint
RP409: 2/14/2009 9:33:25 PM - System Checkpoint
RP410: 2/14/2009 9:33:25 PM - System Checkpoint
RP411: 2/14/2009 9:33:25 PM - System Checkpoint
RP412: 2/14/2009 9:33:25 PM - System Checkpoint
RP413: 2/14/2009 9:33:26 PM - System Checkpoint
RP414: 2/14/2009 9:33:26 PM - System Checkpoint
RP415: 2/14/2009 9:33:26 PM - System Checkpoint
RP416: 2/14/2009 9:33:26 PM - System Checkpoint
RP417: 2/14/2009 9:33:26 PM - System Checkpoint
RP418: 2/14/2009 9:33:26 PM - System Checkpoint
RP419: 2/14/2009 9:33:26 PM - Software Distribution Service 3.0
RP420: 2/14/2009 9:33:27 PM - Installed Java(TM) 6 Update 11
RP421: 2/14/2009 9:33:27 PM - System Checkpoint
RP422: 2/14/2009 9:33:27 PM - System Checkpoint
RP423: 2/14/2009 9:33:27 PM - System Checkpoint
RP424: 2/14/2009 9:33:33 PM - Last known good configuration
RP425: 2/18/2009 9:56:22 AM - System Checkpoint
RP426: 2/19/2009 12:50:56 PM - System Checkpoint
RP427: 2/21/2009 4:31:32 AM - System Checkpoint

==== Installed Programs ======================

Ad-Aware
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Help Center 1.0
Adobe Photoshop CS2
Adobe Reader 8.1.2
Adobe Reader 8.1.2 Security Update 1 (KB403742)
Adobe Stock Photos 1.0
AGEIA PhysX v7.07.24
AIM 6
AiO_Scan_CDA
AiOSoftwareNPI
Apple Mobile Device Support
Apple Software Update
Armageddon
ATI - Software Uninstall Utility
ATI Display Driver (Omega 3.8.442)
Audiosurf
Azureus Vuze
Bioshock
Bonjour
Boot Camp Services
BufferChm
C5100
c5100_Help
CCleaner (remove only)
Choice Guard
ClamWin Free Antivirus 0.94.1
Company of Heroes
CP_CalendarTemplates1
cp_OnlineProjectsConfig
CP_Package_Basic1
CP_Panorama1Config
cp_PosterPrintConfig
Crysis(R)
CueTour
CustomerResearchQFolder
Defcon
Destinations
DeviceManagementQFolder
DocProc
DocProcQFolder
DocumentViewer
DocumentViewerQFolder
Drive Manager
Dune 2000
eSupportQFolder
EVE-ONLINE (remove only)
EVEMon
Fallout 3
Fax_CDA
FullDPAppQFolder
GIMPshop 2.2.8
Google Earth
Google Updater
Half-Life 2
Hamachi 1.0.2.5
Hearts of Iron 2
HOI2 Doomsday Armageddon 1.2
Hotfix for Windows XP (KB952287)
HP Customer Participation Program 7.0
HP Document Viewer 7.0
HP Imaging Device Functions 7.0
HP Photosmart Premier Software 6.5
HP Photosmart, Officejet and Deskjet 7.0.A
HP Product Assistant
HP Solution Center 7.0
HP Update
HPPhotoSmartExpress
HPProductAssistant
Indeo® XP Software
InstantShareDevices
InstantShareDevicesMFC
iTunes
Java(TM) 6 Update 11
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Java(TM) SE Runtime Environment 6
Left 4 Dead
MarketResearch
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 1
Microsoft .NET Framework 3.0
Microsoft Application Error Reporting
Microsoft Games for Windows - LIVE Redistributable
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Visual C++ 2005 Redistributable
MobileMe Control Panel
Mojo
Mount&Blade
MSVCRT
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 6 Service Pack 2 (KB954459)
MSXML4 Parser
NewCopy_CDA
NVIDIA Drivers
OCR Software by I.R.I.S 7.0
OCZ Technology Laser Gaming Mouse
oggcodecs 0.71.0946
OpenAL
OpenOffice.org 3.0
Opera 9.62
PanoStandAlone
PhotoGallery
Picasa 2
Planescape - Torment
ProductContextNPI
PunkBuster Services
QuickTime
Radeon Omega Drivers v4.8.442 Setup Files and Tools
RandMap
Readme
Realtek High Definition Audio Driver
S.T.A.L.K.E.R. - Clear Sky [v1.0004]
Scan
ScannerCopy
Security Update for Windows Media Player (KB952069)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953838)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB960714)
Segoe UI
SigmaTel Audio
Sins of a Solar Empire
SkinsHP1
SlideShow
SolutionCenter
Sonic_PrimoSDK
Source SDK Base
SpeechRedist
Status
Steam
TeamSpeak 2 RC2
Toolbox
TrayApp
Unload
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Ventrilo Client
VideoLAN VLC media player 0.8.6c
Viewpoint Media Player
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
WebFldrs XP
WebReg
Westwood Shared Internet Components
Windows Communication Foundation
Windows Driver Package - Apple Inc. (applebt) Bluetooth (05/08/2007 1.3.0.12)
Windows Driver Package - Apple Inc. Apple Bluetooth Enabler (05/07/2007 1.3.0.10)
Windows Driver Package - Apple Inc. Apple Built-in iSight (04/09/2007 1.3.0.0)
Windows Driver Package - Apple Inc. Apple IR Receiver (04/18/2007 1.3.0.9)
Windows Driver Package - Apple Inc. Apple Keyboard (04/19/2007 1.3.0.7)
Windows Driver Package - Apple Inc. Apple Trackpad (04/19/2007 1.3.0.2)
Windows Driver Package - Apple Inc. Apple Trackpad Enabler (04/19/2007 1.3.0.2)
Windows Driver Package - Apple Inc. System (04/25/2007 1.3.0.4)
Windows Driver Package - Atheros (AR5211) Net (04/05/2007 5.3.0.35)
Windows Driver Package - Atheros (AR5416) Net (04/03/2007 6.0.3.62)
Windows Driver Package - Broadcom (BCM43XX) Net (01/08/2007 4.80.75.0)
Windows Driver Package - Intel (E1000) Net (01/06/2006 8.6.17.0)
Windows Driver Package - Intel (e1express) Net (04/03/2006 9.3.39.0)
Windows Driver Package - Marvell (yukonwxp) Net (03/23/2007 10.12.7.3)
Windows Imaging Component
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Presentation Foundation
Windows Workflow Foundation
Windows XP Service Pack 3
WinRAR archiver
XML Paper Specification Shared Components Pack 1.0

==== Event Viewer Messages From Past Week ========

2/17/2009 9:01:56 PM, error: NetBT [4321] - The name "WORKGROUP :1d" could not be registered on the Interface with IP address 146.113.66.194. The machine with the IP address 146.113.66.194 did not allow the name to be claimed by this machine.
2/17/2009 5:38:25 PM, error: BROWSER [8019] - The browser was unable to promote itself to master browser. The browser will continue to attempt to promote itself to the master browser, but will no longer log any events in the event log in Event Viewer.
2/17/2009 5:33:47 PM, error: BROWSER [8020] - The browser was unable to promote itself to master browser. The computer that currently believes it is the master browser is unknown.
2/17/2009 5:32:48 PM, error: NetBT [4321] - The name "WORKGROUP :1d" could not be registered on the Interface with IP address 146.113.66.194. The machine with the IP address 146.113.67.178 did not allow the name to be claimed by this machine.
2/17/2009 5:20:41 PM, error: MRxSmb [8003] - The master browser has received a server announcement from the computer HERZOG-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{DF7B94B1-3B26-4AB5. The master browser is stopping or an election is being forced.
2/15/2009 6:49:36 PM, error: BTHUSB [17] - The local Bluetooth radio has failed in an undetermined manner and will be unloaded.
2/18/2009 3:10:02 AM, error: Dhcp [1001] - Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 7A7905DA27E1. The following error occurred: The operation was canceled by the user. . Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.
2/19/2009 10:39:04 AM, error: ACPIEC [1] - \Device\ACPIEC: The embedded controller (EC) hardware didn't respond within the timeout period. This may indicate an error in the EC hardware or firmware, or possibly a poorly designed BIOS which accesses the EC in an unsafe manner. The EC driver will retry the failed transaction if possible.
2/19/2009 10:53:11 PM, error: MRxSmb [8003] - The master browser has received a server announcement from the computer DANE-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{DF7B94B1-3B26-4AB5-8. The master browser is stopping or an election is being forced.
2/19/2009 10:53:36 PM, error: NetBT [4321] - The name "WORKGROUP :1d" could not be registered on the Interface with IP address 146.113.66.194. The machine with the IP address 146.113.68.228 did not allow the name to be claimed by this machine.
2/21/2009 12:25:34 PM, error: MRxSmb [8003] - The master browser has received a server announcement from the computer TREY-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{DF7B94B1-3B26-4AB5-8. The master browser is stopping or an election is being forced.
2/21/2009 12:37:14 PM, error: NetBT [4321] - The name "WORKGROUP :1d" could not be registered on the Interface with IP address 146.113.66.194. The machine with the IP address 146.113.66.251 did not allow the name to be claimed by this machine.
2/21/2009 1:04:13 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
2/21/2009 1:04:13 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
2/21/2009 1:04:13 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
2/21/2009 1:04:13 PM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
2/21/2009 1:04:13 PM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
2/21/2009 1:04:13 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
2/21/2009 1:04:13 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD appdrv01 Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip WS2IFSL
2/21/2009 1:04:54 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2/21/2009 1:05:04 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments " " in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
2/21/2009 1:15:58 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments " " in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
2/21/2009 1:32:05 PM, error: MRxSmb [8003] - The master browser has received a server announcement from the computer MAC001FF35BE30A that believes that it is the master browser for the domain on transport NetBT_Tcpip_{DF7B94B1-3B2. The master browser is stopping or an election is being forced.
2/21/2009 9:58:06 PM, error: MRxSmb [8003] - The master browser has received a server announcement from the computer MAC0016CB8E1A3E that believes that it is the master browser for the domain on transport NetBT_Tcpip_{DF7B94B1-3B2. The master browser is stopping or an election is being forced.

==== End Of File ===========================

 

Nevermind, I fixed it myself.

 

How did you fix it?

 

Comprehensive scans by Malwarebytes' Malware Removal and Spybot Search & Destroy eliminated it.