Thank you for your help, Reid!
I ran ComboFix and somehow closed the text window while trying to save it. Ooops. So, I ran it again--I hope that is alright. I haven't had a pop-up since writing this and my screen looks normal, so hopefully the ComboFix did something good.
Here is the ComboFix.txt from the second run & the new HijackThis log:
ComboFix 08-01-07.5 - Jessica Holbrook 2008-01-07 11:35:23.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.659 [GMT -5:00]
Running from: C:\Documents and Settings\Jessica Holbrook\Desktop\ComboFix.exe
.
((((((((((((((((((((((((( Files Created from 2007-12-07 to 2008-01-07 )))))))))))))))))))))))))))))))
.
2008-01-07 11:18 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe
2008-01-07 06:40 . 2008-01-07 06:40 <DIR> d-------- C:\Program Files\Enigma Software Group
2008-01-05 16:16 . 2008-01-05 16:18 2,996 --a------ C:\WINDOWS\system32\tmp.reg
2008-01-05 16:04 . 2007-09-05 23:22 289,144 --a------ C:\WINDOWS\system32\VCCLSID.exe
2008-01-05 16:04 . 2006-04-27 16:49 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe
2008-01-05 16:04 . 2007-12-20 23:11 81,920 --a------ C:\WINDOWS\system32\IEDFix.exe
2008-01-05 16:04 . 2003-06-05 20:13 53,248 --a------ C:\WINDOWS\system32\Process.exe
2008-01-05 16:04 . 2004-07-31 17:50 51,200 --a------ C:\WINDOWS\system32\dumphive.exe
2008-01-05 16:04 . 2007-10-03 23:36 25,600 --a------ C:\WINDOWS\system32\WS2Fix.exe
2008-01-05 12:11 . 2008-01-05 12:11 <DIR> d-------- C:\Deckard
2008-01-05 11:58 . 2008-01-05 11:58 15,360 --a------ C:\WINDOWS\system32\ctfmon .exe
2008-01-05 11:25 . 2008-01-05 11:25 <DIR> d-------- C:\ie-spyad_zo
2008-01-05 11:01 . 2007-06-05 10:56 44,928 --a------ C:\WINDOWS\system32\drivers\SDTHOOK.SYS
2008-01-05 11:00 . 2007-06-08 09:44 8,576 --a------ C:\WINDOWS\system32\drivers\dcnmvxaqmrrt.sys
2008-01-05 00:07 . 2008-01-05 00:53 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-01-04 23:40 . 2007-06-08 09:44 8,576 --a------ C:\WINDOWS\system32\drivers\bydgmoohxubv.sys
2008-01-04 23:24 . 2008-01-05 11:00 <DIR> d-------- C:\WINDOWS\system32\ActiveScan
2008-01-04 23:24 . 2008-01-05 10:55 30,590 --a------ C:\WINDOWS\system32\pavas.ico
2008-01-04 23:24 . 2008-01-05 10:55 2,550 --a------ C:\WINDOWS\system32\Uninstall.ico
2008-01-04 23:24 . 2008-01-05 10:55 1,406 --a------ C:\WINDOWS\system32\Help.ico
2008-01-04 22:56 . 2008-01-04 22:56 <DIR> d-------- C:\Program Files\Trend Micro
2008-01-04 20:32 . 2008-01-04 20:32 <DIR> d-------- C:\Program Files\Lavasoft
2008-01-04 20:32 . 2008-01-04 20:32 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-01-04 20:26 . 2008-01-04 20:26 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-01-03 20:20 . 2008-01-03 20:20 4,331 --a------ C:\Bringing Baby Home.MDS
2008-01-03 20:08 . 2008-01-03 20:20 2,859,270,144 --a------ C:\Bringing Baby Home.ISO
2008-01-01 22:54 . 2008-01-01 22:54 <DIR> d-------- C:\Program Files\Windows Sidebar
2008-01-01 22:54 . 2008-01-04 23:59 <DIR> d-------- C:\Program Files\Norton AntiVirus
2008-01-01 22:52 . 2008-01-02 06:15 123,952 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2008-01-01 22:52 . 2008-01-02 06:15 60,800 --a------ C:\WINDOWS\system32\S32EVNT1.DLL
2008-01-01 22:52 . 2008-01-02 06:15 10,740 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.CAT
2008-01-01 22:52 . 2008-01-02 06:15 805 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.INF
2008-01-01 22:50 . 2008-01-02 06:15 <DIR> d-------- C:\Program Files\Symantec
2008-01-01 22:50 . 2008-01-01 23:48 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Symantec
2008-01-01 22:40 . 2008-01-04 23:56 <DIR> d-------- C:\Program Files\Common Files\Symantec Shared
2008-01-01 22:30 . 2008-01-01 22:48 159,744 --a------ C:\WINDOWS\system32\hkcmd .exe
2008-01-01 22:30 . 2008-01-01 22:48 135,168 --a------ C:\WINDOWS\system32\igfxtray .exe
2008-01-01 22:30 . 2008-01-01 22:49 131,072 --a------ C:\WINDOWS\system32\igfxpers .exe
2008-01-01 22:15 . 2008-01-03 11:39 <DIR> d-------- C:\Program Files\kernel
2008-01-01 22:15 . 2008-01-01 22:15 147,456 --a------ C:\WINDOWS\system32\vbzip10.dll
2008-01-01 22:13 . 2008-01-01 22:13 134 --a------ C:\n.bat
2008-01-01 22:12 . 2008-01-01 23:03 <DIR> d-------- C:\WINDOWS\system32\mr9
2008-01-01 22:12 . 2008-01-01 23:06 <DIR> d-------- C:\WINDOWS\system32\ardCo18
2008-01-01 22:12 . 2008-01-05 00:05 <DIR> d-------- C:\WINDOWS\system32\aj2
2008-01-01 22:12 . 2008-01-02 14:01 <DIR> d--hs---- C:\WINDOWS\SmVzc2ljYSBIb2xicm9vaw
2008-01-01 22:12 . 2008-01-01 22:12 <DIR> d-------- C:\Temp\cEeer12
2008-01-01 22:12 . 2008-01-07 11:22 <DIR> d-------- C:\Temp
2008-01-01 22:12 . 2008-01-01 22:12 <DIR> d-------- C:\Program Files\CloneDVD
2008-01-01 22:12 . 2008-01-01 22:13 <DIR> d-------- C:\Documents and Settings\Jessica Holbrook\Application Data\Vso
2008-01-01 22:12 . 2008-01-01 22:12 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\DVDXStudio
2008-01-01 22:12 . 2008-01-01 22:12 81,920 --a------ C:\Documents and Settings\Jessica Holbrook\Application Data\ezpinst.exe
2008-01-01 22:12 . 2008-01-01 22:12 47,360 --a------ C:\WINDOWS\system32\drivers\pcouffin.sys
2008-01-01 22:12 . 2008-01-01 22:12 47,360 --a------ C:\Documents and Settings\Jessica Holbrook\Application Data\pcouffin.sys
2008-01-01 22:12 . 2008-01-02 14:05 39,936 --a------ C:\WINDOWS\mrofinu1000106.exe.tmp
2008-01-01 22:10 . 2008-01-02 13:28 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-01-01 21:58 . 2008-01-01 23:17 <DIR> d-------- C:\Program Files\LimeWire
2008-01-01 21:53 . 2008-01-01 21:53 <DIR> d-------- C:\Program Files\DVD Decrypter
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-05 16:00 --------- d-----w C:\Program Files\Google
2008-01-05 16:00 --------- d-----w C:\Program Files\Clipmarks
2008-01-05 00:58 --------- d-----w C:\Program Files\Windows Defender
2008-01-03 16:39 --------- d-----w C:\Program Files\Microsoft Works
2008-01-03 16:39 --------- d-----w C:\Program Files\Lexmark 1200 Series
2008-01-02 18:34 --------- d-----w C:\Documents and Settings\Jessica Holbrook\Application Data\LimeWire
2007-12-03 19:18 --------- d-----w C:\Program Files\CONEXANT
2007-12-03 18:41 --------- d-----w C:\Program Files\Windows Media Connect 2
2007-12-01 04:57 43,696 ----a-w C:\WINDOWS\system32\drivers\srtspx.sys
2007-12-01 04:57 317,616 ----a-w C:\WINDOWS\system32\drivers\srtspl.sys
2007-12-01 04:57 279,088 ----a-w C:\WINDOWS\system32\drivers\srtsp.sys
2007-12-01 04:57 10,549 ----a-w C:\WINDOWS\system32\drivers\srtspx.cat
2007-12-01 04:57 10,549 ----a-w C:\WINDOWS\system32\drivers\srtspl.cat
2007-12-01 04:57 10,545 ----a-w C:\WINDOWS\system32\drivers\srtsp.cat
2007-12-01 04:57 1,430 ----a-w C:\WINDOWS\system32\drivers\srtspl.inf
2007-12-01 04:57 1,421 ----a-w C:\WINDOWS\system32\drivers\srtspx.inf
2007-12-01 04:57 1,415 ----a-w C:\WINDOWS\system32\drivers\srtsp.inf
2007-11-27 19:36 374 ----a-w C:\Documents and Settings\Jessica Holbrook\Application Data\internaldb6334.dat
2007-11-27 19:32 555 ----a-w C:\Documents and Settings\Jessica Holbrook\Application Data\internaldb8467.dat
2007-11-27 19:32 18,432 ----a-w C:\Documents and Settings\Jessica Holbrook\Application Data\internaldb41.dat
2007-11-26 19:48 --------- d-----w C:\Documents and Settings\Jessica Holbrook\Application Data\ieSpell
2007-11-26 19:46 --------- d-----w C:\Program Files\ieSpell
2007-11-25 02:56 29,832 ----a-w C:\Documents and Settings\Jessica Holbrook\Application Data\GDIPFONTCACHEV1.DAT
2007-11-23 19:24 675,579 ----a-w C:\WINDOWS\PROGRAM.exe
2007-11-21 14:51 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-11-21 14:51 --------- d-----w C:\Program Files\Canon
2007-11-21 14:48 --------- d-----w C:\Program Files\Common Files\Canon
2007-11-18 21:51 --------- d-----w C:\Program Files\Common Files\Adobe
2007-11-18 03:19 --------- d-----w C:\Program Files\SigmaTel
2007-11-17 13:23 --------- d-----w C:\Program Files\MSXML 6.0
2007-11-16 23:18 --------- d-----w C:\Program Files\FaxTools
2007-11-16 23:18 --------- d-----w C:\Program Files\ABBYY FineReader 6.0
2007-11-16 23:18 --------- d-----w C:\Documents and Settings\All Users\Application Data\BVRP Software
2007-11-16 18:35 --------- d-----w C:\Program Files\Microsoft ActiveSync
2007-11-16 18:28 --------- d-----w C:\Program Files\Microsoft Works Suite 2002
2007-11-16 14:52 --------- d-----w C:\Documents and Settings\All Users\Application Data\Adobe Systems
2007-11-16 14:48 --------- d-----w C:\Program Files\Common Files\Adobe Systems Shared
2007-11-16 01:26 --------- d-----w C:\Program Files\SystemRequirementsLab
2007-11-16 01:19 356,352 ----a-w C:\WINDOWS\system32\AegisI5Installer.exe
2007-11-16 01:19 21,393 ----a-w C:\WINDOWS\system32\drivers\AegisP.sys
2007-11-16 01:19 21,393 ----a-w C:\WINDOWS\AegisP.sys
2007-11-16 01:19 --------- d-----w C:\Documents and Settings\NetworkService\Application Data\Intel
2007-11-16 01:19 --------- d-----w C:\Documents and Settings\LocalService\Application Data\Intel
2007-11-16 01:19 --------- d-----w C:\Documents and Settings\Default User\Application Data\Intel
2007-11-16 01:18 --------- d-----w C:\Documents and Settings\Jessica Holbrook\Application Data\Intel
2007-11-16 01:18 --------- d-----w C:\Documents and Settings\All Users\Application Data\Intel
2007-11-16 01:02 --------- d-----w C:\Program Files\BlueTooth
2007-11-16 00:55 --------- d-----w C:\Program Files\Toshiba
2007-11-16 00:36 --------- d-----w C:\Documents and Settings\Jessica Holbrook\Application Data\Toshiba
2007-11-15 19:02 5 ----a-w C:\WINDOWS\system32\drivers\DELL__.MRK
2007-11-15 19:02 5 ----a-w C:\WINDOWS\system32\drivers\1028_DELL__.MRK
2007-11-15 18:57 --------- d-----w C:\Program Files\Dell
2007-11-15 18:43 5 ----a-w C:\WINDOWS\system32\drivers\DELL_XPS_MM061 .MRK
2007-11-15 18:43 5 ----a-w C:\WINDOWS\system32\drivers\1028_DELL_XPS_MM061 .MRK
2007-11-15 18:42 --------- d-----w C:\Program Files\Common Files\InstallShield
2007-11-15 18:02 --------- d-----w C:\WINDOWS\system32\config\systemprofile\Application Data\Intel
2007-11-15 18:00 --------- d-----w C:\Program Files\Intel
2007-11-15 17:58 --------- d-----w C:\Program Files\Broadcom
2007-11-15 17:21 --------- d-----w C:\Program Files\microsoft frontpage
2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-10-29 22:43 1,287,680 ----a-w C:\WINDOWS\system32\quartz.dll
2007-10-27 22:40 222,720 ----a-w C:\WINDOWS\system32\wmasf.dll
.
Code:
<pre>
----a-w 39,792 2008-01-02 03:49:15 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl .exe
----a-w 28,738 2008-01-02 03:49:08 C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind .exe
----a-w 68,856 2008-01-02 03:49:21 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier .exe
----a-w 974,848 2008-01-02 03:48:56 C:\Program Files\Intel\Wireless\Bin\ifrmewrk .exe
----a-w 823,296 2008-01-02 03:48:54 C:\Program Files\Intel\Wireless\Bin\ZCfgSvc .exe
----a-w 61,440 2008-01-02 03:49:27 C:\Program Files\kernel\kernel .exe
----a-w 57,344 2008-01-02 03:49:12 C:\Program Files\Lexmark 1200 Series\lxczbmgr .exe
----a-w 1,694,208 2008-01-02 03:49:27 C:\Program Files\Messenger\msmsgs .exe
----a-w 24,576 2008-01-02 03:49:07 C:\Program Files\Microsoft Works\wkfud .exe
----a-w 331,830 2008-01-02 03:49:05 C:\Program Files\Microsoft Works\WksSb .exe
----a-w 866,584 2008-01-02 03:49:18 C:\Program Files\Windows Defender\MSASCui .exe
----a-w 15,360 2008-01-05 16:58:12 C:\WINDOWS\system32\ctfmon .exe
----a-w 159,744 2008-01-02 03:48:58 C:\WINDOWS\system32\hkcmd .exe
----a-w 131,072 2008-01-02 03:49:01 C:\WINDOWS\system32\igfxpers .exe
----a-w 135,168 2008-01-02 03:48:55 C:\WINDOWS\system32\igfxtray .exe
</pre>
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
2008-01-01 22:59 116088 --a------ C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [ ]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 07:00 15360]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [ ]
"kernel"="C:\Program Files\kernel\kernel.exe" [ ]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 07:00 110592 C:\WINDOWS\system32\bthprops.cpl]
"IntelZeroConfig"="C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe" [ ]
"IntelWireless"="C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" [ ]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [ ]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [ ]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [ ]
"WorksFUD"="C:\Program Files\Microsoft Works\wkfud.exe" [ ]
"Microsoft Works Portfolio"="C:\Program Files\Microsoft Works\WksSb.exe" [ ]
"Lexmark 1200 Series"="C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe" [ ]
"SigmatelSysTrayApp"="stsystra.exe" [2006-03-24 17:30 282624 C:\WINDOWS\stsystra.exe]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [ ]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2007-08-25 00:07 51048]
"osCheck"="C:\Program Files\Norton AntiVirus\osCheck.exe" [2007-08-24 23:53 714608]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 19:16:50]
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2005-11-18 17:46:00]
BTTray.lnk - C:\Program Files\Dell\Bluetooth Software\BTTray.exe [2004-04-26 17:13:54]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [2000-01-21 03:15:54]
Microsoft Works Calendar Reminders.lnk - C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe [2001-08-07 18
54]
R2 LiveUpdate Notice;LiveUpdate Notice;"C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" [2007-08-25 00:07]
R3 SymIMMP;SymIMMP;C:\WINDOWS\system32\DRIVERS\SymIM.sys [2007-08-09 19:27]
S3 COH_Mon;COH_Mon;C:\WINDOWS\system32\Drivers\COH_Mon.sys [2007-05-29 13:55]
S3 SymIM;Symantec Network Security Intermediate Filter Service;C:\WINDOWS\system32\DRIVERS\SymIM.sys [2007-08-09 19:27]
.
Contents of the 'Scheduled Tasks' folder
"2008-01-02 04:11:58 C:\WINDOWS\Tasks\Norton AntiVirus - Run Full System Scan - Jessica Holbrook.job"
- C:\Program Files\Norton AntiVirus\Navw32.exeh/TASK:
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2008-01-07 11:36:18
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-01-07 11:36:45
ComboFix-quarantined-files.txt 2008-01-07 16:36:36
ComboFix2.txt 2008-01-07 16:27:22
.
2008-01-04 12:45:26 --- E O F ---
HijackThis log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:37:38 AM, on 1/7/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Program Files\Dell\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Dell\Bluetooth Software\BTTray.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Clipmarks - {1205D44C-FFD2-44E5-AA1D-929DCA37EB7A} - C:\Program Files\Clipmarks\clipmarks.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [kernel] C:\Program Files\kernel\kernel.exe
O4 - S-1-5-18 Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
O8 - Extra context menu item: &ieSpell Options - res://C:\Program Files\ieSpell\iespell.dll/SPELLOPTION.HTM
O8 - Extra context menu item: Check &Spelling - res://C:\Program Files\ieSpell\iespell.dll/SPELLCHECK.HTM
O8 - Extra context menu item: Lookup on Merriam Webster - file://C:\Program Files\ieSpell\Merriam Webster.HTM
O8 - Extra context menu item: Lookup on Wikipedia - file://C:\Program Files\ieSpell\wikipedia.HTM
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\Dell\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra 'Tools' menuitem: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra button: (no name) - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra 'Tools' menuitem: ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Dell\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Dell\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) -
http://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) -
http://www.nvidia.com/content/Driver...sysreqlab2.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.microsoft.com/micr...?1196192444765
O16 - DPF: {6F750202-1362-4815-A476-88533DE61D0C} (Kodak Gallery Easy Upload Manager Class) -
http://targetphoto.kodakgallery.com/...2/axofupld.cab
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) -
http://web1.shutterfly.com/downloads/Uploader.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://acs.pandasoftware.com/actives...ree/asinst.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) -
http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Dell\Bluetooth Software\bin\btwdins.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
--
End of file - 9966 bytes