Repeated system alerts about virus, tries connecting to internet

Hello...Visiting my dad and trying to fix a virus he got recently. (Hopefully you can help soon while I'm still here!) Clicked on something wrong and has had problems ever since with his desktop background changing, lots of popups about security warnings, viruses need to be removed, it tries to connect to the internet (but i unplug it most of the time). the web site it tries to open is safenavweb.com with a longer extension that was pretty random. Some other things I've noticed were "Worm.Win32.NetSky" when one of the boxes popped up and "LUCOMS~1.exe" in the task manager whenever spyware alert boxes popped up. I've had him do various scans with combofix, superantispyware, and dr. web cureit but no sucess yet. the desktop background has changed back to normal though. below is my DSS scan, and i've attached the extra file.


Deckard's System Scanner v20071014.68
Run by Dan on 2008-03-21 15:20:12
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
40: 2008-03-21 19:20:18 UTC - RP901 - Deckard's System Scanner Restore Point
39: 2008-03-21 18:57:03 UTC - RP900 - Software Distribution Service 3.0
38: 2008-03-17 21:55:12 UTC - RP899 - Installed SUPERAntiSpyware Professional
37: 2008-03-17 00:02:18 UTC - RP898 - ComboFix created restore point
36: 2008-03-14 17:06:40 UTC - RP897 - Software Distribution Service 3.0


-- First Restore Point --
1: 2008-02-09 15:34:25 UTC - RP862 - System Checkpoint


Backed up registry hives.
Performed disk cleanup.

System Drive C: has 2.29 GiB (less than 15%) free.


-- HijackThis (run as Dan.exe) -------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:38:50 PM, on 3/21/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\hpppt.exe
C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\HPLamp.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Documents and Settings\Dan\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Dan.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php?wmid=6010&mid=MjI6Ojg5&lid=2
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: GNX Rolex - {864C6115-9FB8-46F9-9E8C-157F4F6FCCA3} - C:\WINDOWS\drnpfdxrqv.dll
O3 - Toolbar: etlrlws - {FD858878-29E2-4129-831C-06A61C344E15} - C:\WINDOWS\etlrlws.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [ConMgr.exe] "C:\Program Files\EarthLink 5.0\ConMgr.exe"
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [hpppt] C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\hpppt.exe /ICON
O4 - HKLM\..\Run: [HP Lamp] C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\HPLamp.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Event Planner Reminders Tray Icon.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1202248546343
O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) - http://www.kodakgallery.com/downloads/BUM/BUM_WIN_IE_1/axofupld.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game06.zylom.com/activex/zylomgamesplayer.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O21 - SSODL: altvxvm - {5AAEA5C5-BC6C-4B2D-9B9D-BEEDCDB43880} - C:\WINDOWS\altvxvm.dll
O21 - SSODL: bokpkov - {A1CABD9B-502F-4D84-BE2E-BCF3BCEFCE94} - C:\WINDOWS\bokpkov.dll
O21 - SSODL: CDService - {010081d3-1b06-43a7-92e7-fc748287a16b} - C:\WINDOWS\Installer\{010081d3-1b06-43a7-92e7-fc748287a16b}\CDService.dll (file missing)
O21 - SSODL: KbdRunOnce - {37af2fc3-0fb0-4c62-bfa6-a74d2382b6e3} - C:\WINDOWS\Installer\{37af2fc3-0fb0-4c62-bfa6-a74d2382b6e3}\KbdRunOnce.dll (file missing)
O21 - SSODL: MonDrv - {91f6d323-d3da-4e6b-8868-e2d91044cfee} - C:\WINDOWS\Installer\{91f6d323-d3da-4e6b-8868-e2d91044cfee}\MonDrv.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

--
End of file - 9658 bytes

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R1 ATMhelpr - c:\windows\system32\drivers\atmhelpr.sys <Not Verified; Adobe Systems Incorporated; Adobe Type Manager Deluxe>
R1 OMCI - c:\windows\system32\drivers\omci.sys <Not Verified; Dell Computer Corporation; OMCI Driver>

S0 epstwnt - c:\windows\system32\drivers\epstwnt.mpd <Not Verified; Shuttle Technology.; Shuttle Miniport Driver for SCSI Devices>
S2 SHARSHTL (Shuttle Sharer) - c:\windows\system32\drivers\sharshtl.sys <Not Verified; Shuttle Technology; Shuttle Printer Sharer for Windows NT>
S3 NMSCFG (NIC Management Service Configuration Driver) - c:\windows\system32\drivers\nmscfg.sys <Not Verified; Intel Corporation; Intel(R) NMSCFG Driver>
S3 SASENUM - c:\program files\superantispyware\sasenum.sys <Not Verified; SuperAdBlocker, Inc.; SuperAntiSpyware>
S3 suscom (Susteen Serial port driver) - c:\windows\system32\drivers\suscom.sys <Not Verified; Susteen Inc.; Susteen USB-to-Serial Bridge Cable>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 Viewpoint Manager Service - "c:\program files\viewpoint\common\viewpointservice.exe" <Not Verified; Viewpoint Corporation; Viewpoint Manager>

S3 gusvc (Google Updater Service) - "c:\program files\google\common\google updater\googleupdaterservice.exe" (file missing)
S3 NMSSvc (Intel(R) NMS) - c:\windows\system32\nmssvc.exe <Not Verified; Intel Corporation; NMS>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Scheduled Tasks -------------------------------------------------------------

2008-03-17 20:52:15 552 --a------ C:\WINDOWS\Tasks\Norton AntiVirus - Run Full System Scan - Tom.job
2007-12-21 14:14:37 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job


-- Files created between 2008-02-21 and 2008-03-21 -----------------------------

2008-03-21 15:19:22 0 d-------- C:\Program Files\Trend Micro
2008-03-21 15:10:30 0 d-------- C:\Program Files\SpywareBlaster
2008-03-17 19:25:11 0 dr-h----- C:\Documents and Settings\Tom\Recent
2008-03-17 17:50:18 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-03-17 16:57:51 3514 --a------ C:\Start_.cmd
2008-03-17 16:55:24 0 d-------- C:\327882R2FWJFW
2008-03-17 15:15:09 0 d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-03-16 21:03:24 0 d-------- C:\Documents and Settings\Tom\DoctorWeb
2008-03-16 20:50:27 0 d-------- C:\Program Files\CCleaner
2008-03-16 19:55:28 68096 --a------ C:\WINDOWS\system32\zip.exe
2008-03-16 19:55:28 98816 --a------ C:\WINDOWS\system32\sed.exe
2008-03-16 19:55:28 80412 --a------ C:\WINDOWS\system32\grep.exe
2008-03-16 19:55:28 73728 --a------ C:\WINDOWS\system32\fdsv.exe <Not Verified; Smallfrogs Studio; >
2008-03-14 13:51:54 0 d--h----- C:\Documents and Settings\Administrator\Templates
2008-03-14 13:51:54 0 dr------- C:\Documents and Settings\Administrator\Start Menu
2008-03-14 13:51:54 0 dr-h----- C:\Documents and Settings\Administrator\SendTo
2008-03-14 13:51:54 0 d--h----- C:\Documents and Settings\Administrator\Recent
2008-03-14 13:51:54 0 d--h----- C:\Documents and Settings\Administrator\PrintHood
2008-03-14 13:51:54 0 d--h----- C:\Documents and Settings\Administrator\NetHood
2008-03-14 13:51:54 0 d-------- C:\Documents and Settings\Administrator\My Documents
2008-03-14 13:51:54 0 d--h----- C:\Documents and Settings\Administrator\Local Settings
2008-03-14 13:51:54 0 d-------- C:\Documents and Settings\Administrator\Favorites
2008-03-14 13:51:54 0 d-------- C:\Documents and Settings\Administrator\Desktop
2008-03-14 13:51:54 0 d---s---- C:\Documents and Settings\Administrator\Cookies
2008-03-14 13:51:54 0 dr-h----- C:\Documents and Settings\Administrator\Application Data
2008-03-14 13:51:54 0 d---s---- C:\Documents and Settings\Administrator\Application Data\Microsoft
2008-03-14 13:51:53 524288 --ah----- C:\Documents and Settings\Administrator\NTUSER.DAT
2008-03-13 20:56:50 94208 --a------ C:\WINDOWS\fmsxwqs.exe
2008-03-13 20:56:50 221184 --a------ C:\WINDOWS\etlrlws.dll
2008-03-13 20:56:50 249856 --a------ C:\WINDOWS\drnpfdxrqv.dll
2008-03-13 20:56:50 323584 --a------ C:\WINDOWS\bokpkov.dll
2008-03-13 20:56:50 241664 --a------ C:\WINDOWS\altvxvm.dll
2008-02-22 16:02:03 0 d-------- C:\Documents and Settings\Tom\Application Data\Help


-- Find3M Report ---------------------------------------------------------------

2008-03-17 17:55:17 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-03-17 17:50:18 0 d-------- C:\Program Files\Common Files
2008-03-16 20:50:37 0 d-------- C:\Program Files\Yahoo!
2008-03-11 17:11:49 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-02-27 17:22:36 1080 --a------ C:\WINDOWS\AUTOLNCH.REG
2008-02-05 17:51:53 0 d-------- C:\Program Files\Comcast Play Games
2008-02-05 14:48:59 0 d-------- C:\Program Files\Google
2008-02-04 14:24:51 0 d-------- C:\Program Files\MSN Games
2007-12-24 10:29:00 99965 --a------ C:\WINDOWS\UninstallFirefox.exe
2007-12-24 10:28:58 4256 --a----c- C:\WINDOWS\mozver.dat


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{864C6115-9FB8-46F9-9E8C-157F4F6FCCA3}]
03/13/2008 12:34 PM 249856 --a------ C:\WINDOWS\drnpfdxrqv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ConMgr.exe"="C:\Program Files\EarthLink 5.0\ConMgr.exe" []
"AdaptecDirectCD"="C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe" [04/10/2002 04:44 PM]
"WorksFUD"="C:\Program Files\Microsoft Works\wkfud.exe" [10/05/2001 08:34 PM]
"Microsoft Works Portfolio"="C:\Program Files\Microsoft Works\WksSb.exe" [08/23/2001 05:52 PM]
"Microsoft Works Update Detection"="C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe" [08/17/2001 12:41 AM]
"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" [12/22/2003 08:38 AM]
"HPDJ Taskbar Utility"="C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb10.exe" [03/04/2004 11:46 AM]
"hpppt"="C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\hpppt.exe" [11/24/1998 02:00 AM]
"HP Lamp"="C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\HPLamp.exe" [11/24/1998 02:00 AM]
"HP Software Update"="C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" [02/16/2005 11:11 PM]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [01/10/2007 01:59 AM]
"osCheck"="C:\Program Files\Norton AntiVirus\osCheck.exe" [01/14/2007 03:11 AM]
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [11/28/2007 08:51 PM]
"UserFaultCheck"="C:\WINDOWS\system32\dumprep 0 -u" []
"MSConfig"="C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.exe" [08/04/2004 03:56 AM]

C:\Documents and Settings\Dan\Start Menu\Programs\Startup\
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [8/23/2005 5:04:48 PM]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [8/23/2005 5:04:48 PM]
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe [8/16/2005 7:33:42 PM]
Event Planner Reminders Tray Icon.lnk - C:\Program Files\Sierra\Planner\Plnrnote.exe [12/19/2005 11:01:03 PM]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2/13/2001 1:01:04 AM]
Microsoft Works Calendar Reminders.lnk - C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe [8/7/2001 7:06:54 PM]
QuickBooks Update Agent.lnk - C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [10/2/2007 10:03:35 PM]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [12/20/2006 12:55 PM 77824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"altvxvm"= {5AAEA5C5-BC6C-4B2D-9B9D-BEEDCDB43880} - C:\WINDOWS\altvxvm.dll [03/13/2008 12:34 PM 241664]
"bokpkov"= {A1CABD9B-502F-4D84-BE2E-BCF3BCEFCE94} - C:\WINDOWS\bokpkov.dll [03/13/2008 12:34 PM 323584]
"CDService"= {010081d3-1b06-43a7-92e7-fc748287a16b} - C:\WINDOWS\Installer\{010081d3-1b06-43a7-92e7-fc748287a16b}\CDService.dll [ ]
"KbdRunOnce"= {37af2fc3-0fb0-4c62-bfa6-a74d2382b6e3} - C:\WINDOWS\Installer\{37af2fc3-0fb0-4c62-bfa6-a74d2382b6e3}\KbdRunOnce.dll [ ]
"MonDrv"= {91f6d323-d3da-4e6b-8868-e2d91044cfee} - C:\WINDOWS\Installer\{91f6d323-d3da-4e6b-8868-e2d91044cfee}\MonDrv.dll [ ]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 04/19/2007 12:41 PM 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim6]
"C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp /HIDEBL

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
"C:\Program Files\Ares\Ares.exe" -h

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eTrustPPAP]
"C:\Program Files\CA\eTrust Internet Security Suite\eTrust PestPatrol Anti-Spyware\PPActiveDetection.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask]
"C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray]
"C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PopUpStopperFreeEdition]
"C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\qttask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
"C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"




-- End of Deckard's System Scanner: finished at 2008-03-21 15:39:50 ------------