Done. here is my combofix log:
ComboFix 07-10-23.1 - Justin Yurkovich 2007-10-24 10:43:00.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.252 [GMT -5:00]
Script execution time was exceeded on script "C:\ComboFix\osid.vbs".
Script execution was terminated.
Running from: C:\Documents and Settings\Justin Yurkovich\Desktop\ComboFix.exe
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\Justin Yurkovich\Desktop\Live Safety Center.lnk
C:\Documents and Settings\Justin Yurkovich\Desktop\Online Security Guide.lnk
C:\Documents and Settings\Justin Yurkovich\Favorites\Online Security Guide.lnk
C:\Temp\1cb
C:\Temp\1cb\syscheck.log
C:\Temp\xOe
C:\Temp\xOe\tOasF.log
C:\WINDOWS\cookies.ini
C:\WINDOWS\system32\abc2
C:\WINDOWS\system32\agbliepb.dll
C:\WINDOWS\system32\andylcre.dllbox
C:\WINDOWS\system32\aufqwstm.exe
C:\WINDOWS\system32\ayabqily.exe
C:\WINDOWS\system32\bjxojvxk.dll
C:\WINDOWS\system32\cbyqvkor.dll
C:\WINDOWS\system32\dcaryndv.dll
C:\WINDOWS\system32\didpjiww.dll
C:\WINDOWS\system32\dqjwrbgs.exe
C:\WINDOWS\system32\drygynhv.ini
C:\WINDOWS\system32\duehdidj.exe
C:\WINDOWS\system32\eaqprarf.dll
C:\WINDOWS\system32\entrbdwm.dll
C:\WINDOWS\system32\eoeknjag.dll
C:\WINDOWS\system32\epybxsef.dll
C:\WINDOWS\system32\fesxbype.ini
C:\WINDOWS\system32\fhikdvsp.dll
C:\WINDOWS\system32\fimgsdfr.dll
C:\WINDOWS\system32\fmlmfnpe.dllbox
C:\WINDOWS\system32\fysppbei.ini
C:\WINDOWS\system32\glblqnqy.dll
C:\WINDOWS\system32\hcrwdauq.exe
C:\WINDOWS\system32\herikots.ini
C:\WINDOWS\system32\hghqkrye.exe
C:\WINDOWS\system32\hknwlimy.exe
C:\WINDOWS\system32\hlyublku.ini
C:\WINDOWS\system32\hoestuhv.dll
C:\WINDOWS\system32\hriwvkor.dll
C:\WINDOWS\system32\huqgpunj.dll
C:\WINDOWS\system32\hvrgvptp.exe
C:\WINDOWS\system32\hxwjvjfp.exe
C:\WINDOWS\system32\hypuepmt.dll
C:\WINDOWS\system32\ibllbnrf.exe
C:\WINDOWS\system32\ideiknqr.dll
C:\WINDOWS\system32\iebppsyf.dll
C:\WINDOWS\system32\igbtpuqi.dll
C:\WINDOWS\system32\iqsaxpun.exe
C:\WINDOWS\system32\isrbaocp.dll
C:\WINDOWS\system32\iuqeokrj.ini
C:\WINDOWS\system32\jmiqstgy.dll
C:\WINDOWS\system32\jnupgquh.ini
C:\WINDOWS\system32\jptubpdq.dll
C:\WINDOWS\system32\jrkoequi.dll
C:\WINDOWS\system32\judasnlq.ini
C:\WINDOWS\system32\kawyqtoj.dll
C:\WINDOWS\system32\kwpgcqxl.exe
C:\WINDOWS\system32\lfwwmcun.exe
C:\WINDOWS\system32\lgxlcmml.dll
C:\WINDOWS\system32\lljdauso.dll
C:\WINDOWS\system32\lnmjrjhr.dll
C:\WINDOWS\system32\lptfefmy.dll
C:\WINDOWS\system32\lxjyesnp.dllbox
C:\WINDOWS\system32\mlaadqqu.dll
C:\WINDOWS\system32\mnnmp.bak1
C:\WINDOWS\system32\mnnmp.bak2
C:\WINDOWS\system32\mnnmp.ini
C:\WINDOWS\system32\mnnmp.ini2
C:\WINDOWS\system32\mnnmp.tmp
C:\WINDOWS\system32\mwdbrtne.ini
C:\WINDOWS\system32\mxukxyfc.dll
C:\WINDOWS\system32\ncbiveol.dll
C:\WINDOWS\system32\nhofrmnk.dll
C:\WINDOWS\system32\nrvraxdu.dllbox
C:\WINDOWS\system32\nunoscyy.ini
C:\WINDOWS\system32\oftqcpnf.exe
C:\WINDOWS\system32\ohwbuocu.dll
C:\WINDOWS\system32\olhwrepp.exe
C:\WINDOWS\system32\osuadjll.ini
C:\WINDOWS\system32\pac.txt
C:\WINDOWS\system32\pazkwlid.dllbox
C:\WINDOWS\system32\pcoabrsi.ini
C:\WINDOWS\system32\pmnnm.dll
C:\WINDOWS\system32\pppdnhbd.dll
C:\WINDOWS\system32\psvdkihf.ini
C:\WINDOWS\system32\pxektnwa.exe
C:\WINDOWS\system32\qkwvfuul.dll
C:\WINDOWS\system32\qlnsaduj.dll
C:\WINDOWS\system32\qxqepjxh.dll
C:\WINDOWS\system32\rev1
C:\WINDOWS\system32\rhjrjmnl.ini
C:\WINDOWS\system32\rhxfwjas.exe
C:\WINDOWS\system32\rjprbmle.exe
C:\WINDOWS\system32\rokvqybc.ini
C:\WINDOWS\system32\rokvwirh.ini
C:\WINDOWS\system32\rqqormba.dll
C:\WINDOWS\system32\rripcifg.dll
C:\WINDOWS\system32\slmmenfv.ini
C:\WINDOWS\system32\ss9
C:\WINDOWS\system32\ss9\rw1000dr.exe
C:\WINDOWS\system32\stjmojax.ini
C:\WINDOWS\system32\stokireh.dll
C:\WINDOWS\system32\swsgmjux.dll
C:\WINDOWS\system32\sxgkojyg.dll
C:\WINDOWS\system32\syrxayxa.dll
C:\WINDOWS\system32\tmpeupyh.ini
C:\WINDOWS\system32\ttbkxsrt.dll
C:\WINDOWS\system32\ucxtegif.dll
C:\WINDOWS\system32\uklbuylh.dll
C:\WINDOWS\system32\uqqdaalm.ini
C:\WINDOWS\system32\uxjmtqre.dll
C:\WINDOWS\system32\vahvxwbe.dll
C:\WINDOWS\system32\vedepcrl.dll
C:\WINDOWS\system32\vfnemmls.dll
C:\WINDOWS\system32\vhnygyrd.dll
C:\WINDOWS\system32\vMW10a
C:\WINDOWS\system32\vpygwjac.exe
C:\WINDOWS\system32\vywdimev.exe
C:\WINDOWS\system32\wdwjgqoj.dll
C:\WINDOWS\system32\wkirqulk.dll
C:\WINDOWS\system32\wnstsisv.exe
C:\WINDOWS\system32\wthnsrie.exe
C:\WINDOWS\system32\wuogwmua.dll
C:\WINDOWS\system32\xajomjts.dll
C:\WINDOWS\system32\xscmcegg.exe
C:\WINDOWS\system32\xsppohfc.exe
C:\WINDOWS\system32\ygtsqimj.ini
C:\WINDOWS\system32\yuwvpjhi.dllbox
C:\WINDOWS\system32\yvkiuhjb.dll
C:\WINDOWS\system32\ywaxokmu.exe
C:\WINDOWS\system32\yycsonun.dll
C:\WINDOWS\system32\z12
C:\WINDOWS\tsitra1000106.exe
C:\WINDOWS\tsitra77.exe
C:\WINDOWS\wbun.exe
.
((((((((((((((((((((((((( Files Created from 2007-09-24 to 2007-10-24 )))))))))))))))))))))))))))))))
.
2007-10-24 10:38 84,544 --a------ C:\WINDOWS\system32\cjtfmtsx.dll
2007-10-24 10:36 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-24 08:57 <DIR> d-------- C:\Program Files\Trend Micro
2007-10-24 06:30 340,032 --a------ C:\WINDOWS\system32\nrvraxdu.dll
2007-10-23 18:56 84,544 --a------ C:\WINDOWS\system32\ipracage.dll
2007-10-22 15:07 0 --a------ C:\WINDOWS\system32\SBRC.dat
2007-10-22 15:07 0 --a------ C:\WINDOWS\system32\SBFC.dat
2007-10-19 14:21 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2007-10-19 08:49 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-10-19 00:38 <DIR> d-------- C:\Program Files\Lavasoft
2007-10-19 00:35 <DIR> d-------- C:\Program Files\TrojanHunter 5.0
2007-10-19 00:34 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-10-16 15:46 <DIR> d-------- C:\VundoFix Backups
2007-10-16 15:07 <DIR> d-------- C:\WINDOWS\pss
2007-10-10 07:33 582,656 -----c--- C:\WINDOWS\system32\dllcache\rpcrt4.dll
2007-10-03 07:47 15,544 --a------ C:\WINDOWS\system32\drivers\sbhr.sys
2007-10-03 07:25 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Sunbelt Software
2007-10-03 07:23 <DIR> d-------- C:\Program Files\Sunbelt Software
2007-10-02 08:15 <DIR> d--hs---- C:\WINDOWS\SnVzdGluIFl1cmtvdmljaA
2007-10-02 08:14 <DIR> d-------- C:\WINDOWS\system32\ep1
2007-10-02 08:14 <DIR> d-------- C:\Temp
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-19 01:42 --------- d-----w C:\Program Files\Notebook Maximizer
2007-09-25 23:15 --------- d-----w C:\Program Files\Yahoo!
2007-09-25 23:14 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-09-25 23:12 --------- d-----w C:\Program Files\TaxCut06
2007-09-19 14:09 --------- d-----w C:\Program Files\Winamp
2007-09-14 03:30 --------- d-----w C:\Program Files\iTunes
2007-09-14 03:30 --------- d-----w C:\Program Files\iPod
2007-09-14 03:25 --------- d-----w C:\Program Files\Apple Software Update
2007-09-04 20:29 --------- d-----w C:\Program Files\Diploma 6
2007-08-27 16:26 27,120 ----a-w C:\WINDOWS\system32\SBBD.exe
2007-08-21 06:15 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-07-31 00:19 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-07-31 00:19 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-07-31 00:19 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-07-31 00:19 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
2007-07-31 00:19 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-07-31 00:19 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-07-31 00:19 1,712,984 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-07-31 00:18 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-01-22 20:20 2,295 -c--a-w C:\Documents and Settings\Justin Yurkovich\ProCSys.DAT
2005-07-29 21:24:26 472 --sha-r C:\WINDOWS\SnVzdGluIFl1cmtvdmljaA\mBpWx35RKI5YwAQSxA53uE.vbs
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0EAC9514-444E-4913-BF03-D9DF1822280F}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1D8EDA3D-51F7-4A93-8214-9D63C65EDB25}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A95B2816-1D7E-4561-A202-68C0DE02353A}]
2007-10-24 06:30 340032 --a------ C:\WINDOWS\system32\nrvraxdu.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{11A69AE4-FBED-4832-A2BF-45AF82825583}"= C:\WINDOWS\system32\nrvraxdu.dll [2007-10-24 06:30 340032]
[HKEY_CLASSES_ROOT\CLSID\{11A69AE4-FBED-4832-A2BF-45AF82825583}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-03-09 23:10]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2004-04-22 18:23]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2004-04-22 18:23]
"TPSMain"="TPSMain.exe" [2004-03-03 14:57 C:\WINDOWS\system32\TPSMain.exe]
"PadTouch"="C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe" [2004-02-03 16:47]
"Symantec NetDriver Monitor"="C:\PROGRA~1\SYMNET~1\SNDMon.exe" [2006-01-10 11:12]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2005-06-02 09:21]
"vptray"="C:\PROGRA~1\SYMANT~1\VPTray.exe" [2005-06-23 19:27]
"WinPatrol"="C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe" [2007-04-19 12:33]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 06:24]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-09-07 16:55]
"SBCSTray"="C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe" [2007-08-27 12:09]
"dla"="C:\WINDOWS\system32\dla\tfswctrl.exe" [2004-07-20 04:04]
"THGuard"="C:\Program Files\TrojanHunter 5.0\THGuard.exe" [2007-09-09 09:31]
"ATIModeChange"="Ati2mdxx.exe" [2001-09-04 16:24 C:\WINDOWS\system32\Ati2mdxx.exe]
"SpybotSnD"="C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" [2007-08-31 16:46]
"THotkey"="C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe" []
"d073512d"="C:\WINDOWS\system32\cjtfmtsx.dll" [2007-10-24 10:38]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 07:00]
"googletalk"="C:\Program Files\Google\Google Talk\googletalk.exe" [2007-01-01 16:22]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\nrvraxdu]
nrvraxdu.dll 2007-10-24 06:30 340032 C:\WINDOWS\system32\nrvraxdu.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
"Authentication Packages"= msv1_0 C:\WINDOWS\system32\pmnnm.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SmoothView"=C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
"WinampAgent"=C:\Program Files\Winamp\winampa.exe
R0 atiide;atiide;C:\WINDOWS\system32\DRIVERS\atiide.sys
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{59442b49-64f9-11da-a235-0011f50d45bf}]
AutoRun\command - G:\setupSNK.exe
*Newly Created Service* - SBAPIFS
.
Contents of the 'Scheduled Tasks' folder
"2007-10-01 18:12:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
"2006-10-31 09:30:00 C:\WINDOWS\Tasks\Disk Cleanup.job"
- C:\WINDOWS\system32\cleanmgr.exe
"2006-06-27 13:11:45 C:\WINDOWS\Tasks\Symantec NetDetect.job"
- C:\Program Files\Symantec\LiveUpdate\NDETECT.EXE
.
**************************************************************************
catchme 0.3.1232 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2007-10-24 11:21:24
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
C:\WINDOWS\system32\nrvraxdu.dllbox 17004 bytes
scan completed successfully
hidden files: 1
**************************************************************************
.
Completion time: 2007-10-24 11:29:34 - machine was rebooted
.
--- E O F ---
And the subsequent HijackThis log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:39:50 AM, on 10/24/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\TrojanHunter 5.0\THGuard.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\lotus\notes\ntmulti.exe
C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe
C:\WINDOWS\system32\svchost.exe
c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0EAC9514-444E-4913-BF03-D9DF1822280F} - (no file)
O2 - BHO: (no name) - {1D8EDA3D-51F7-4A93-8214-9D63C65EDB25} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: (no name) - {A95B2816-1D7E-4561-A202-68C0DE02353A} - C:\WINDOWS\system32\nrvraxdu.dll
O3 - Toolbar: Security Toolbar - {11A69AE4-FBED-4832-A2BF-45AF82825583} - C:\WINDOWS\system32\nrvraxdu.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SBCSTray] C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [THGuard] "C:\Program Files\TrojanHunter 5.0\THGuard.exe"
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [SpybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe"
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [d073512d] rundll32.exe "C:\WINDOWS\system32\cjtfmtsx.dll",b
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} -
http://fpdownload2.macromedia.com/get/f ... wflash.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} (Domino Web Access 7 Control) -
https://unomail3.unomaha.edu/dwa7W.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O20 - Winlogon Notify: nrvraxdu - C:\WINDOWS\SYSTEM32\nrvraxdu.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Multi-user Cleanup Service - IBM Corp - C:\Program Files\lotus\notes\ntmulti.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Sunbelt CounterSpy Antispyware (SBCSSvc) - Sunbelt Software - C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Swupdtmr - Unknown owner - c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
--
End of file - 8202 bytes