ComboScan v20070306.20 run by B Gollub on 2007-03-24 at 11:03:13
Supplementary logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Professional (build 2600) SP 1.0
Architecture: X86; Language: English
CPU 0: AMD Athlon(tm) XP 2600+
Percentage of Memory in Use: 48%
Physical Memory (total/avail): 511.48 MiB / 263.3 MiB
Pagefile Memory (total/avail): 1250.53 MiB / 1012.43 MiB
Virtual Memory (total/avail): 2047.88 MiB / 2006.49 MiB
A: is Removable (No Media)
C: is Fixed (FAT32) - 12.11 GiB total, 4.55 GiB free.
D: is CDROM (No Media)
E: is CDROM (No Media)
F: is Fixed (NTFS) - 74.55 GiB total, 57.24 GiB free.
-- Security Center -------------------------------------------------------------
AUOptions is set to notify before install.
Windows Internal Firewall is enabled.
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=F:\Documents and Settings\All Users
APPDATA=F:\Documents and Settings\B Gollub\Application Data
BLASTER=A220 I7 D1 H7 P330 T6
CLASSPATH=.;F:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip
CLIENTNAME=Console
CommonProgramFiles=F:\Program Files\Common Files
COMPUTERNAME=BRUCE-KAYLG7MIJ
ComSpec=F:\WINDOWS\system32\cmd.exe
HOMEDRIVE=F:
HOMEPATH=\Documents and Settings\B Gollub
LOGONSERVER=\\BRUCE-KAYLG7MIJ
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=F:\Program Files\Internet Explorer;;F:\WINDOWS\system32;F:\WINDOWS;F:\WINDOWS\System32\Wbem;F:\Program Files\Sonic\MyDVD;;F:\Program Files\Sonic\MyDVD;F:\Program Files\QuickTime\QTSystem\;C:\BITWARE\;C:\PAGEMGR;c:\bitware
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 10 Stepping 0, AuthenticAMD
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0a00
ProgramFiles=F:\Program Files
PROMPT=$P$G
QTJAVA=F:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip
SBPCI=C:\AUDIOPCI
SESSIONNAME=Console
SystemDrive=F:
SystemRoot=F:\WINDOWS
TEMP=F:\DOCUME~1\BGOLLU~1\LOCALS~1\Temp
TMP=F:\DOCUME~1\BGOLLU~1\LOCALS~1\Temp
USERDOMAIN=BRUCE-KAYLG7MIJ
USERNAME=B Gollub
USERPROFILE=F:\Documents and Settings\B Gollub
windir=F:\WINDOWS
-- User Profiles ---------------------------------------------------------------
Isis
(admin)B Gollub
(admin)-- Add/Remove Programs ---------------------------------------------------------
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
-->
--> F:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
--> MsiExec.exe /I{F543B12A-13F5-487E-9314-F7D25E1BBE3E}
--> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{F445476A-42DE-11D4-80D0-00C04F2750A6}\Setup.exe" -u -uninst -fUninst.isu -c"F:\Program Files\Epocrates\Suite\Win32\Win32_Dll\AupdUnInstall.dll"
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 F:\WINDOWS\INF\PCHealth.inf
ABBYY FineReader 5.0 Sprint --> MsiExec.exe /X{D1696920-9794-4BBC-8A30-7A88763DE5A2}
ACDSee for PENTAX --> MsiExec.exe /I{EED5156C-4BA8-4105-A506-DB9D00F8B68D}
Adobe Flash Player 9 ActiveX --> F:\WINDOWS\System32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe InDesign 2.0.2 --> F:\WINDOWS\ISUNINST.EXE -f"F:\Program Files\Adobe\InDesign 2.0\Uninst.isu" -c"F:\Program Files\Adobe\InDesign 2.0\Uninst.dll"
Adobe Photoshop CS --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime701\Intel32\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x9
Adobe Photoshop v4.0 --> F:\WINDOWS\uninst.exe -fC:\Adobe\Photoshop\DeIsL1.isu
Adobe Reader 8 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A80000000002}
Adobe SVG Viewer 3.0 --> F:\Program Files\Common Files\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fF:\Program Files\Common Files\Adobe\SVG Viewer 3.0\Uninstall\Install.log
Adobe® Photoshop® Album Starter Edition 3.0 --> MsiExec.exe /I{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}
Agere Systems PCI Soft Modem --> agrsmdel
Apple Software Update --> MsiExec.exe /I{A50C25D7-62E9-4511-AD70-8E2DA5E79B7D}
Autodesk DWF Viewer --> F:\PROGRA~1\Autodesk\AUTODE~1\Setup.exe /remove /q0
Belkin Bulldog --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{32256A06-DE8F-11D5-B829-004033AA2C09}\Setup.exe" -l0x9
BootSkin --> F:\PROGRA~1\Stardock\WINCUS~1\BootSkin\UNWISE.EXE F:\PROGRA~1\Stardock\WINCUS~1\BootSkin\INSTALL.LOG
CCleaner (remove only) --> "F:\Program Files\CCleaner\uninst.exe"
CleanUp! --> F:\Program Files\CleanUp!\uninstall.exe
Desktop Weather by The Weather Channel --> C:\Program Files\The Weather Channel FW\Desktop Weather\TheWeatherChannelCustomUninstall.exe
Epocrates Essentials --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{F445476A-42DE-11D4-80D0-00C04F2750A6}\Setup.exe" -u
EPSON Perf 4870 Reference Guide --> F:\Program Files\epson\guide\perf4870_e\uninstall.exe
EPSON Scan --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{0E0131B2-CF18-40D9-A331-60A3746C1204}\Setup.exe" -l0x9 UNINSTALL
ewido security suite --> F:\Program Files\ewido\security suite\Uninstall.exe
FreeZip --> rundll32.exe advpack.dll,LaunchINFSection F:\WINDOWS\INF\freezip.inf,Uninstall
Google Earth --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\101\Intel32\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}\setup.exe" -l0x9 -removeonly
Google Toolbar for Internet Explorer --> regsvr32 /u /s "f:\program files\google\googletoolbar1.dll"
GoToMeeting/GoToWebinar 3.0.0.190 --> F:\Program Files\Citrix\GoToMeeting\190\G2MUninstall.exe /uninstall
HijackThis 1.99.1 --> F:\Documents and Settings\B Gollub\Desktop\HijackThis.exe /uninstall
ItsDeductible Express --> MsiExec.exe /X{36495C59-089C-49D1-BD15-9E5BD86DC9A1}
iTunes --> MsiExec.exe /I{446DBFFA-4088-48E3-8932-74316BA4CAE4}
J2SE Runtime Environment 5.0 Update 6 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
LiveUpdate 3.0 (Symantec Corporation) --> "F:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LogonStudio --> F:\PROGRA~1\WINCUS~1\LOGONS~1\UNWISE.EXE F:\PROGRA~1\WINCUS~1\LOGONS~1\INSTALL.LOG
Macromedia Flash Player --> MsiExec.exe /X{0456ebd7-5f67-4ab6-852e-63781e3f389c}
McAfee SecurityCenter --> F:\Program Files\McAfee\MSC\mcuninst.exe
Microsoft Office XP Media Content --> MsiExec.exe /I{90300409-6000-11D3-8CFE-0050048383C9}
Microsoft Office XP Professional --> MsiExec.exe /I{91110409-6000-11D3-8CFE-0050048383C9}
Mozilla Firefox (2.0.0.3) --> F:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (1.0.7) --> F:\WINDOWS\UninstallThunderbird.exe /ua "1.0.7 (en)"
MSI MSIDVD --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{C1939820-A945-11D4-86F6-0001031E5712}\setup.exe" REMOVEALL
MSN Music Assistant --> rundll32 advpack.dll,LaunchINFSection F:\WINDOWS\INF\msninst.inf,Uninstall
MyDVD --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{5E835305-63BB-4E55-BBB7-EEBBE67774DB}\SETUP.EXE" -l0x9 -L0x9 /SMAINT
Nero OEM --> F:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
NVIDIA Drivers --> F:\WINDOWS\System32\nvudisp.exe UninstallGUI
Palm --> MsiExec.exe /X{D2DEA1ED-F9D0-401D-9714-6FA8E89EF9D7}
PowerDVD --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall
QuickBooks Pro 2005 --> msiexec.exe /I {F543B12A-13F5-487E-9314-F7D25E1BBE3E} UNIQUE_NAME="pro" QBFULLNAME="QuickBooks Pro 2005" ADDREMOVE=1
Quicken 2005 -->
Quicken 2005 --> F:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{2DBE41DD-2129-4C65-A3D3-5647236A60F3} anything
QuickTime --> MsiExec.exe /I{50D8FFDD-90CD-4859-841F-AA1961C7767A}
RealPlayer --> F:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
ShowBiz --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{07295ABF-1245-415A-BE06-863271753443}\setup.exe" -l0x9
SilverFast Epson --> "F:\Program Files\LaserSoft\SilverFast Epson\unins000.exe"
SilverFast SE CD Documentation 6.1.1 --> "F:\Program Files\LaserSoft\unins000.exe"
Spybot - Search & Destroy 1.4 --> "F:\Program Files\Spybot - Search & Destroy\unins000.exe"
SpywareBlaster v3.4 --> "F:\Program Files\SpywareBlaster\unins000.exe"
TurboTax Deluxe 2004 --> F:\Program Files\TurboTax\Deluxe 2004\TaxUnst.EXE "F:\Program Files\TurboTax\Deluxe 2004\Uninstall.log" -NoGui
TurboTax Deluxe 2005 --> F:\Program Files\TurboTax\Deluxe 2005\TaxUnst.EXE "F:\Program Files\TurboTax\Deluxe 2005\Uninstall.log" -NoGui
TurboTax Deluxe Deduction Maximizer 2006 --> F:\Program Files\TurboTax\Deluxe 2006\TaxUnst.EXE "F:\Program Files\TurboTax\Deluxe 2006\Uninstall.log" -NoGui
TurboTax ItsDeductible 2005 --> MsiExec.exe /X{2E7595EC-4FB1-4E29-93D4-9083C8A9B107}
TurboTax ItsDeductible 2006 --> MsiExec.exe /X{AFF1EA96-9C23-4249-B7D4-CD4B54D4582F}
Tweak UI --> "F:\WINDOWS\System32\mshta.exe" "res://F:\WINDOWS\System32\TweakUI.exe/uninstall.hta"
VIA Rhine-Family Fast Ethernet Adapter --> Rundll32.exe vuins32.dll,vuins32Ex $Rhine $VIA
Weather Services --> F:\WINDOWS\System32\control.exe F:\WINDOWS\System32\wxfw.cpl,4
WebEx --> F:\PROGRA~1\MOZILL~1\plugins\atcliun.exe
WebFldrs XP -->
WexTech AnswerWorks --> RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime701\Intel32\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{EA2BEBD6-87B9-41E5-95AC-7E4C165A9475}\SETUP.EXE" -l0x9 -eliminate
WinZip --> "F:\Program Files\WinZip\WINZIP32.EXE" /uninstall
-- End of ComboScan: finished at 2007-03-24 at 11:04:01 ------------------------
I think this is a more complete file of the combo scan than the first one I submitted
ComboScan v20070306.20 run by B Gollub on 2007-03-24 at 11:03:13
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created ComboScan Restore Point.
-- Last 5 Restore Point(s) --
66: 2007-03-24 18:03:24 UTC - RP223 - ComboScan Restore Point
65: 2007-03-23 19:05:45 UTC - RP222 - System Checkpoint
64: 2007-03-22 01:43:40 UTC - RP221 - System Checkpoint
63: 2007-03-21 01:24:39 UTC - RP220 - System Checkpoint
62: 2007-03-20 00:24:50 UTC - RP219 - System Checkpoint
-- First Restore Point --
1: 2006-12-27 17:44:34 UTC - RP158 - System Checkpoint
Performed disk cleanup.
-- HijackThis (run as B Gollub.exe) --------------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 11:03:41 AM, on 3/24/2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\spoolsv.exe
F:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
F:\Program Files\ewido\security suite\ewidoctrl.exe
F:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
F:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
f:\program files\common files\mcafee\mna\mcnasvc.exe
F:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
F:\PROGRA~1\McAfee\MSC\mcpromgr.exe
f:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
F:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
F:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
F:\Program Files\McAfee\MPF\MPFSrv.exe
F:\WINDOWS\System32\nvsvc32.exe
F:\WINDOWS\System32\svchost.exe
F:\Program Files\Belkin Bulldog\upsd.exe
F:\WINDOWS\Explorer.EXE
F:\WINDOWS\System32\rundll32.exe
F:\WINDOWS\System32\RUNDLL32.EXE
F:\WINDOWS\SOUNDMAN.EXE
F:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
F:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
F:\WINDOWS\AGRSMMSG.exe
F:\Program Files\QuickTime\qttask.exe
F:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE
C:\BITWARE\NT\bwprnmon.exe
F:\Program Files\Common Files\Real\Update_OB\realsched.exe
F:\WINDOWS\system32\ntvdm.exe
F:\PROGRA~1\mcafee.com\agent\mcagent.exe
F:\Program Files\iTunes\iTunesHelper.exe
F:\Program Files\Messenger\msmsgs.exe
F:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
F:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
F:\Program Files\WinZip\WZQKPICK.EXE
F:\Program Files\palmOne\Hotsync.exe
F:\Program Files\iPod\bin\iPodService.exe
F:\WINDOWS\System32\wuauclt.exe
F:\PROGRA~1\mcafee\msc\mcuimgr.exe
F:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
F:\Documents and Settings\B Gollub\Desktop\comboscan.exe
F:\DOCUME~1\BGOLLU~1\Desktop\B Gollub.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com/O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - F:\Program Files\SiteAdvisor\6021\SiteAdv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - f:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - F:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - F:\Program Files\SiteAdvisor\6021\SiteAdv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE F:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Adobe Photo Downloader] "F:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [LogonStudio] "F:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" /RANDOM
O4 - HKLM\..\Run: [SunJavaUpdateSched] F:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NeroFilterCheck] F:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Camera Detector] F:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun
O4 - HKLM\..\Run: [bwprnmon.exe] C:\BITWARE\NT\bwprnmon.exe
O4 - HKLM\..\Run: [TkBellExe] "F:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [iTunesHelper] "F:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [MSMSGS] "F:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [updateMgr] F:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_5
O4 - HKCU\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Startup: HotSync Manager.LNK = F:\Program Files\palmOne\Hotsync.exe
O4 - Startup: palmOne Registration.lnk = F:\Program Files\palmOne\register.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = F:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = F:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = F:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: HOTSYNCSHORTCUTNAME.lnk = F:\Program Files\palmOne\Hotsync.exe
O4 - Global Startup: Microsoft Office.lnk = F:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: QuickBooks Update Agent.lnk = F:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
O4 - Global Startup: WinZip Quick Pick.lnk = F:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://F:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - F:\Program Files\SiteAdvisor\6021\SiteAdv.dll
O23 - Service: Adobe LM Service - Unknown owner - F:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - F:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - F:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
O23 - Service: ewido security suite control - ewido networks - F:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: Google Updater Service (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - F:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - F:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - F:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - F:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - F:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - f:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - F:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - F:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - f:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - F:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - F:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - F:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\System32\nvsvc32.exe
O23 - Service: UPS - UPSlim Service (UPSlim) - Delta - F:\Program Files\Belkin Bulldog\upsd.exe
-- File Associations -----------------------------------------------------------
.bat - batfile - "%1" %*
.chm - chm.file - "F:\WINDOWS\hh.exe" %1
.cmd - cmdfile - "%1" %*
.com - comfile - "%1" %*
.exe - exefile - "%1" %*
.hlp - hlpfile - %SystemRoot%\System32\winhlp32.exe %1
.inf - inffile - %SystemRoot%\System32\NOTEPAD.EXE %1
.ini - inifile - %SystemRoot%\System32\NOTEPAD.EXE %1
.js - JSFile - %SystemRoot%\System32\WScript.exe "%1" %*
.lnk - lnkfile - {00021401-0000-0000-C000-000000000046}
.pif - piffile - "%1" %*
.reg - regfile - regedit.exe "%1"
.scr - scrfile - "%1" /S
.txt - txtfile - %SystemRoot%\system32\NOTEPAD.EXE %1
.vbs - VBSFile - %SystemRoot%\System32\WScript.exe "%1" %*
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
3R AgereSoftModem (Agere Systems Soft Modem) - F:\WINDOWS\system32\drivers\AGRSM.sys
3R ALCXSENS (Service for WDM 3D Audio Driver) - F:\WINDOWS\system32\drivers\ALCXSENS.SYS
3R ALCXWDM (Service for Realtek AC97 Audio (WDM)) - F:\WINDOWS\system32\drivers\ALCXWDM.SYS
2R Aspi32 - F:\WINDOWS\system32\drivers\ASPI32.SYS
1R eeCtrl (Symantec Eraser Control driver) - F:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
1R ewido security suite driver - F:\Program Files\ewido\security suite\guard.sys
3R FETND5BV (VIA Rhine-Family Fast Ethernet Adapter Driver Service) - F:\WINDOWS\system32\drivers\fetnd5bv.sys
3S FETNDIS (VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver) - F:\WINDOWS\system32\drivers\fetnd5.sys
3S FETNDISB (VIA Rhine Family Fast Ethernet Adapter Driver Service) - F:\WINDOWS\system32\drivers\fetnd5b.sys
3R GEARAspiWDM - F:\WINDOWS\system32\drivers\GEARAspiWDM.sys
3S GMSIPCI - D:\INSTALL\GMSIPCI.SYS (not found)
3R mfeavfk (McAfee Inc.) - F:\WINDOWS\system32\drivers\mfeavfk.sys
3R mfebopk (McAfee Inc.) - F:\WINDOWS\system32\drivers\mfebopk.sys
3R mfehidk (McAfee Inc.) - F:\WINDOWS\system32\drivers\mfehidk.sys
3S mferkdk (McAfee Inc.) - F:\WINDOWS\system32\drivers\mferkdk.sys
3R mfesmfk (McAfee Inc.) - F:\WINDOWS\system32\drivers\mfesmfk.sys
1R MPFP - F:\WINDOWS\system32\drivers\Mpfp.sys
3R nv - F:\WINDOWS\system32\drivers\nv4_mini.sys
3S PalmUSBD - F:\WINDOWS\system32\drivers\PalmUSBD.sys
3R pfc (Padus ASPI Shell) - F:\WINDOWS\system32\drivers\pfc.sys
3R rtl8139 (Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver) - F:\WINDOWS\system32\drivers\RTL8139.sys
3R usbehci (Microsoft USB 2.0 Enhanced Host Controller Miniport Driver) - F:\WINDOWS\system32\drivers\usbehci.sys
3R usbscan (USB Scanner Driver) - F:\WINDOWS\system32\drivers\usbscan.sys
3S USBSTOR (USB Mass Storage Driver) - F:\WINDOWS\system32\drivers\USBSTOR.SYS
0R viaagp1 (VIA AGP Filter) - F:\WINDOWS\system32\drivers\VIAAGP1.SYS
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
3S Adobe LM Service - "F:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"
3S aspnet_state (ASP.NET State Service) - F:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
2R Automatic LiveUpdate Scheduler - "F:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe"
3S Emproxy (McAfee E-mail Proxy) - F:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
2R ewido security suite control - F:\Program Files\ewido\security suite\ewidoctrl.exe
4S ewido security suite guard - F:\Program Files\ewido\security suite\ewidoguard.exe
3S gusvc (Google Updater Service) - "F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"
3S IDriverT (InstallDriver Table Manager) - "F:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"
3R iPod Service - "F:\Program Files\iPod\bin\iPodService.exe"
3S LiveUpdate - "F:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE"
2R McAfee HackerWatch Service - "F:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe"
3S mcmispupdmgr (McAfee Update Manager) - F:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
2R mcmscsvc (McAfee Services) - F:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
2R McNASvc (McAfee Network Agent) - "f:\program files\common files\mcafee\mna\mcnasvc.exe"
2R McODS (McAfee Scanner) - F:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
2R mcpromgr (McAfee Protection Manager) - F:\PROGRA~1\McAfee\MSC\mcpromgr.exe
2R McRedirector (McAfee Redirector Service) - f:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
2R McShield (McAfee Real-time Scanner) - F:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
2R McSysmon (McAfee SystemGuards) - F:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
2R MpfService (McAfee Personal Firewall Service) - "F:\Program Files\McAfee\MPF\MPFSrv.exe"
2R NVSvc (NVIDIA Display Driver Service) - F:\WINDOWS\System32\nvsvc32.exe
3S SCardDrv (Smart Card Helper) - F:\WINDOWS\System32\SCardSvr.exe
2R UMWdf (Windows User Mode Driver Framework) - F:\WINDOWS\System32\wdfmgr.exe
2R uploadmgr (Upload Manager) - F:\WINDOWS\System32\svchost.exe -k netsvcs
2R UPSlim (UPS - UPSlim Service) - "F:\Program Files\Belkin Bulldog\upsd.exe"
4S Vormde - F:\WINDOWS\System32\drivers\serial.sys
-- Scheduled Tasks -------------------------------------------------------------
2007-03-01 01:00:30 362 --a------ F:\WINDOWS\Tasks\McQcTask.job
2007-02-15 02:02:56 270 --a------ F:\WINDOWS\Tasks\McDefragTask.job<MCDEFR~1.JOB>
-- Files created between 2007-02-24 and 2007-03-24 -----------------------------
2007-03-15 19:07:21 0 d-------- F:\Program Files\Citrix
-- Find3M Report ---------------------------------------------------------------
2007-03-24 11:01:53 0 d-------- F:\Documents and Settings\B Gollub\Application Data\SiteAdvisor<SITEAD~1>
2007-03-24 10:57:12 0 d-------- F:\Program Files\Mozilla Firefox<MOZILL~1>
2007-03-24 09:05:39 0 d-------- F:\Program Files\palmOne
2007-03-23 16:54:39 0 d-------- F:\Documents and Settings\B Gollub\Application Data\Adobe
2007-03-23 14:48:16 0 d-------- F:\Documents and Settings\B Gollub\Application Data\Lasersoft Imaging<LASERS~1>
2007-03-23 11:15:11 0 d-------- F:\Program Files\McAfee
2007-02-17 13:17:28 0 d---s---- F:\Documents and Settings\B Gollub\Application Data\Microsoft<MICROS~1>
2007-02-17 13:14:39 0 d-------- F:\Program Files\Common Files\AnswerWorks 4.0<ANSWER~1.0>
2007-02-17 09:38:28 0 d-------- F:\Program Files\ItsDeductible2006<ITSDED~3>
2007-02-17 09:37:13 0 d-------- F:\Program Files\Quicken
2007-02-17 09:33:36 0 d-------- F:\Documents and Settings\B Gollub\Application Data\InstallShield<INSTAL~1>
2007-02-16 06:44:07 0 d-------- F:\Program Files\Google
2007-02-15 07:08:46 0 d-------- F:\Program Files\TurboTax
2007-02-10 22:17:59 0 d-------- F:\Program Files\Common Files\Adobe
2007-02-10 14:03:45 0 d-------- F:\Documents and Settings\B Gollub\Application Data\AdobeUM
2007-02-09 19:53:28 0 d-------- F:\Program Files\SiteAdvisor<SITEAD~1>
2007-02-08 07:25:18 0 d-------- F:\Documents and Settings\B Gollub\Application Data\Google
2007-02-03 07:52:59 0 d-------- F:\Program Files\Common Files\McAfee
2007-02-03 07:52:26 0 d-------- F:\Program Files\McAfee.com
2007-02-03 07:22:38 0 d-------- F:\Program Files\Lavasoft
2007-02-03 06:56:15 0 d-------- F:\Documents and Settings\B Gollub\Application Data\Lavasoft
2007-02-02 23:27:34 0 d-------- F:\Program Files\Symantec
2007-02-02 23:27:34 0 d-------- F:\Program Files\Common Files\Symantec Shared<SYMANT~1>
2007-01-29 08:20:42 0 d-------- F:\Program Files\SpywareBlaster<SPYWAR~1>
2007-01-27 15:18:27 0 d-------- F:\Program Files\QuickTime<QUICKT~1>
2007-01-27 15:17:06 0 d-------- F:\Program Files\Apple Software Update<APPLES~1>
-- Registry Dump ---------------------------------------------------------------
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"MSMSGS"="\"F:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"DW4"=""
"updateMgr"="F:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe AcRdB7_0_5"
"swg"="F:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.1128.5462\\GoogleToolbarNotifier.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"NvCplDaemon"="RUNDLL32.EXE F:\\WINDOWS\\System32\\NvCpl.dll,NvStartup"
"nwiz"="nwiz.exe /install"
"NvMediaCenter"="RUNDLL32.EXE F:\\WINDOWS\\System32\\NvMcTray.dll,NvTaskbarInit"
"SoundMan"="SOUNDMAN.EXE"
"Adobe Photo Downloader"="\"F:\\Program Files\\Adobe\\Photoshop Album Starter Edition\\3.0\\Apps\\apdproxy.exe\""
"LogonStudio"="\"F:\\Program Files\\WinCustomize\\LogonStudio\\logonstudio.exe\" /RANDOM"
"SunJavaUpdateSched"="F:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe"
"NeroFilterCheck"="F:\\WINDOWS\\system32\\NeroCheck.exe"
"AGRSMMSG"="AGRSMMSG.exe"
"QuickTime Task"="\"F:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"Camera Detector"="F:\\PROGRA~1\\ACDSYS~1\\DEVDET~1\\DEVDET~1.EXE -autorun"
"bwprnmon.exe"="C:\\BITWARE\\NT\\bwprnmon.exe"
"TkBellExe"="\"F:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"
"iTunesHelper"="\"F:\\Program Files\\iTunes\\iTunesHelper.exe\""
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{54D9498B-CF93-414F-8984-8CE7FDE0D391}"="ewido shell guard"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoTrayItemsDisplay"=hex:01,00,00,00
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\MCODS
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService REG_MULTI_SZ AlerterWebClientLmHostsRemoteRegistryupnphostSSDPSRV
NetworkService REG_MULTI_SZ DnsCache
rpcss REG_MULTI_SZ RpcSs
imgsvc REG_MULTI_SZ StiSvc
termsvcs REG_MULTI_SZ TermService
-- End of ComboScan: finished at 2007-03-24 at 11:04:01 ------------------------
I don't think I have any symantec programs anymore. I uninstalled norton.
Thanks,
Bruce
