Bazooka Adware and Spyware Scanner Log 55

****************************************
Bazooka Adware and Spyware Scanner v1.10
Log created 22:07:37.
OS: Windows NT 5.1
Database version: 1.710000
Database format version: 1.020000
Database date: 20040209
Current date: 2004-02-11 22:07

****************************************
Auto start entries:
C:\PROGRA~1\adobe\ACROBA~1.0\Distillr\AcroTray.exe
C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini
C:\PROGRA~1\MICROS~2\Office10\OSA.EXE
C:\PROGRA~1\POWERP~1\Program\PcfMgr.exe
C:\PROGRA~1\CLOUDN~1\TOPIT!~1\Topit.exe
C:\slicnic\WinZip\WZQKPICK.EXE
C:\PROGRA~1\adobe\ACROBA~1.0\Distillr\AcroTray.exe
C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini
C:\PROGRA~1\MICROS~2\Office10\OSA.EXE
C:\PROGRA~1\POWERP~1\Program\PcfMgr.exe
C:\PROGRA~1\CLOUDN~1\TOPIT!~1\Topit.exe
C:\slicnic\WinZip\WZQKPICK.EXE
C:\Documents and Settings\Brent at Home\Start Menu\Programs\Startup\desktop.ini
C:\Documents and Settings\Brent at Home\Start Menu\Programs\Startup\desktop.ini

****************************************
Run entries:
ATIModeChange Ati2mdxx.exe
AtiPTA atiptaxx.exe
SynTPLpr C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
SynTPEnh C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
HKSERV.EXE C:\Program Files\Sony\HotKey Utility\HKserv.exe
TkBellExe C:\Program Files\Common Files\Real\Update_OB\evntsvc.exe -osboot
ezShieldProtector for Px C:\WINDOWS\System32\ezSP_Px.exe
ZTgServerSwitch c:\program files\support.com\client\lserver\server.vbs
vptray C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe
WService WService.EXE
HPDJ Taskbar Utility C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb07.exe

StatusClient C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe /auto
TomcatStartup C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe
HPLJ Config C:\Program Files\Hewlett-Packard\hp LaserJet 1010 Series\SetConfig.exe -c Direct -p DOT4_001 -pn "hp LaserJet 1010 Series Driver" -n 0 -l 1033 -sl 120000
Omnipage C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
Image rundll32 C:\WINDOWS\image.dll,Install
MSMSGS "C:\Program Files\Messenger\msmsgs.exe" /background
CUCore Agent "C:\Program Files\Common Files\First Virtual Communications\ConfAgent.exe" /minimize

****************************************
Browser helper objects:

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} not set C:\Program Files\adobe\acrobat 5.0\Acrobat\ActiveX\AcroIEHelper.ocx
{587DBF2D-9145-4c9e-92C2-1F953DA73773} . C:\Documents and Settings\Brent at Home\Application Data\mskz\mskz.dll
{E2DDF680-9905-4dee-8C64-0A5DE7FE133C} ShowSearch module C:\Documents and Settings\Brent at Home\Application Data\mskz\mssearch.dll
{FD9BC004-8331-4457-B830-4759FF704C22} C:\Documents and Settings\Brent at Home\Application Data\mskz\msiesh.dll

****************************************
Toolbars:

{8E718888-423F-11D2-876E-00A0C9082467} C:\WINDOWS\System32\msdxm.ocx
{01E04581-4EEE-11D0-BFE9-00AA005B4383} C:\WINDOWS\System32\browseui.dll
{0E5CBF21-D15F-11D0-8301-00AA005B4383} C:\WINDOWS\system32\SHELL32.dll
{01E04581-4EEE-11D0-BFE9-00AA005B4383} C:\WINDOWS\System32\browseui.dll
{0E5CBF21-D15F-11D0-8301-00AA005B4383} C:\WINDOWS\system32\SHELL32.dll
{4D5C8C25-D075-11d0-B416-00C04FB90376} C:\WINDOWS\System32\shdocvw.dll
{32683183-48a0-441b-a342-7c2a440a9478} C:\WINDOWS\System32\browseui.dll
{C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1} C:\WINDOWS\system32\SHELL32.dll
{EFA24E62-B078-11D0-89E4-00C04FC9E26E} C:\WINDOWS\System32\shdocvw.dll
{EFA24E64-B078-11D0-89E4-00C04FC9E26E} C:\WINDOWS\System32\shdocvw.dll

****************************************
All processes:

0 [System Process]
4 System
588 smss.exe
636 csrss.exe
664 winlogon.exe
708 services.exe
720 lsass.exe
888 svchost.exe
1000 svchost.exe
1208 svchost.exe
1252 svchost.exe
1392 spoolsv.exe
1528 alg.exe
1540 ati2evxx.exe
1560 DefWatch.exe
1644 Rtvscan.exe
1796 svchost.exe
1824 SSSvr.exe
192 PicAppSrv.exe
216 sv_httpd.exe
276 WtSrv.exe
360 sv_httpd.exe
380 UPnPFramework.exe
404 UPnPFramework.exe
424 explorer.exe
1308 atiptaxx.exe
640 SynTPLpr.exe
1692 SynTPEnh.exe
1724 HKServ.exe
756 evntsvc.exe
1804 ezSP_Px.exe
1916 wscript.exe
2060 VPTray.exe
2108 WService.exe
2112 hpztsb07.exe
2128 StatusClient.exe
2180 opware32.exe
2232 msmsgs.exe
2312 AcroTray.exe
2412 PcfMgr.exe
2432 CUCore.exe
2456 Topit.exe
2464 WZQKPICK.EXE
2652 javaw.exe
4056 tgcmd.exe
3988 spywarescanner.exe
3616 wuauclt.exe

****************************************
Result when scanning:

CoolWebSearch.iefeatsl 454.000.000 {587DBF2D-9145-4c9e-92C2-1F953DA73773}
CoolWebSearch.iefeatsl 454.000.000 {FD9BC004-8331-4457-B830-4759FF704C22}
CoolWebSearch.mssearch 044.000.000 {E2DDF680-9905-4dee-8C64-0A5DE7FE133C}

***************************************




Related links

Bazooka - Free scan for spyware, adware, trojan horses, keyloggers, etc. Detects more than 500 potentially unwanted applications. Freeware!

The File Database - Search the file database for more information. Free!

PopUp Blocker Test - Find out if your pop-up killer can handle all pop-ups. Free!

Kephyr Labs - Find out what is going on at Kephyr. Try products in an early stage of development.




FreeFixer
I'm working on a new spyware removal tool. Would you like to help me with the testing?
Koffix Blocker - Block bad web sites.
Home & Products |  Legal |  Search

© Kephyr, 2003-2006. HtmlTidy, HTML 4.01, CSS andy@kephyr.com