Bazooka Adware and Spyware Scanner Log 936

****************************************
Bazooka Adware and Spyware Scanner v1.12
Log created 14:19:09.
OS: Windows NT 5.0
Database version: 1.490000
Database format version: 1.020000
Database date: 20031211
Current date: 2003-12-13 14:19

****************************************
Auto start entries:
C:\PROGRA~1\COMMON~1\MICROS~1\WORKSS~1\wkcalrem.exe
C:\PROGRA~1\SMARTD~1\FLASHP~1\sdstat.exe
C:\PROGRA~1\MI1933~1\Office\OSA9.EXE -b -l
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Search.vbs
C:\PROGRA~1\AMERIC~2.0\aoltray.exe -check
C:\PROGRA~1\COMMON~1\MICROS~1\WORKSS~1\wkcalrem.exe
C:\PROGRA~1\SMARTD~1\FLASHP~1\sdstat.exe
C:\PROGRA~1\MI1933~1\Office\OSA9.EXE -b -l
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Search.vbs
C:\PROGRA~1\AMERIC~2.0\aoltray.exe -check
C:\Documents and Settings\Default\Start Menu\Programs\Startup\Norton Disk Doctor.LNK
C:\Documents and Settings\Default\Start Menu\Programs\Startup\Norton Disk Doctor.LNK

****************************************
Run entries:
SystemTray SysTray.Exe
HP CD-Writer C:\Program Files\HP CD-Writer\Mmenu\hpcdtray.exe
LVCOMS C:\Program Files\Common Files\Logitech\QCDriver\LVCOMS.EXE
TkBellExe C:\Program Files\Common Files\Real\Update_OB\realsched.exe -osboot
PCTVOICE pctspk.exe
HPDJ Taskbar Utility C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe
NeroCheck C:\WINDOWS\System32\NeroCheck.exe
KAZAA C:\Program Files\Kazaa\kazaa.exe /SYSTRAY
tgcmd "C:\Program Files\Support.com\bin\tgcmd.exe" /server
msbb C:\windows\msbb.exe
ADKORU C:\WINDOWS\ADKORU.exe
MSMGT C:\WINDOWS\MSMGT.exe
MyWebSearch Email Plugin C:\PROGRA~1\MYWEBS~1\bar\5.bin\mwsoemon.exe
SpyHunter C:\Program Files\SpyHunter\SpyHunter.exe
Explkw C:\WINDOWS\system32\expup.exe
OFZNO C:\WINDOWS\OFZNO.exe
SAHAgent C:\WINDOWS\system32\SahAgent.exe
Belt C:\WINDOWS\Belt.exe
RFAVJR C:\WINDOWS\RFAVJR.exe
TKYJXFWN C:\WINDOWS\TKYJXFWN.exe
QuickTime Task "C:\Program Files\QuickTime\qttask.exe" -atboottime
SymTray - Norton SystemWorks C:\Program Files\Common Files\Symantec Shared\Symtray.exe SetReg
ccApp "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
GhostStartTrayApp C:\Program Files\Norton SystemWorks\Norton Ghost\GhostStartTrayApp.exe
AcctMgr C:\Program Files\Norton SystemWorks\Password Manager\AcctMgr.exe /startup
SymTray - Norton SystemWorks C:\Program Files\Common Files\Symantec Shared\Symtrdr.exe
WebCamRT.exe
ClockSync C:\PROGRA~1\CLOCKS~1\Sync.exe /q
PopUpStopperCompanion "C:\PROGRA~1\PANICW~1\POP-UP~1\PSCOMP.EXE"

****************************************
Browser helper objects:

{000006B1-19B5-414A-849F-2A3C64AE6939} not set C:\WINDOWS\bi.dll
{00000762-3965-4A1A-98CE-3D4BF457D4C8} not set C:\Program Files\Lycos\Sidesearch\sidesearch1311.dll
{00000EF1-0786-4633-87C6-1AA7A44296DA} not set C:\WINDOWS\system32\w3th3rb.dll
{02478D38-C3F9-4efb-9B51-7695ECA05670} not set C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_3_10_0.dll
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} not set C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
{07B18EA1-A523-4961-B6BB-170DE4475CCA} mwsBar BHO C:\Program Files\MyWebSearch\bar\5.bin\MWSBAR.DLL
{0CF0B8EE-6596-11D5-A98E-0003470BB48E} CCHelper C:\Program Files\Panicware\Pop-Up Stopper Companion\CCHelper.dll
{18B79968-1A76-4953-9EBB-B651407F8998} not set C:\WINDOWS\system32\windec32.dll
{23BC1CCF-4BE7-497F-B154-6ADA68425FBB} not set C:\WINDOWS\system32\expext.dll
{707E6F76-9FFB-4920-A976-EA101271BC25} C:\WINDOWS\jeired.dll
{753AA023-02D1-447D-8B55-53A91A5ABF18} not set C:\WINDOWS\system32\bmeb.dll
{8A0DCBDA-6E20-489C-9041-C1E8A0352E75} not set C:\WINDOWS\system32\NN_Bar31.dll
{947E6D5A-4B9F-4CF4-91B3-562CA8D03313} Clear Search C:\Program Files\ClearSearch\IE_ClrSch.DLL
{BDF3E430-B101-42AD-A544-FADC6B084872} NAV Helper C:\Program Files\Norton SystemWorks\Norton Antivirus\NavShExt.dll
{CE31A1F7-3D90-4874-8FBE-A5D97F8BC8F1} Url Catcher C:\PROGRA~1\BARGAI~1\bin2\apuc.dll
{D5C778F1-CF13-4E70-ADF0-45A953E7CB8B} not set C:\Program Files\Network Essentials\v11\NE.DLL

****************************************
Toolbars:

{179E4B4A-76C3-4F65-BCED-C9FA1A28D2EF} C:\WINDOWS\system32\NN_Bar31.dll
{EF99BD32-C1FB-11D2-892F-0090271D4F88} C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_3_10_0.dll
{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} C:\Program Files\Norton SystemWorks\Norton Antivirus\NavShExt.dll
{8F05B1A8-9D77-4B8F-AF54-6B2202066F95} C:\Program Files\Panicware\Pop-Up Stopper Companion\popupus.dll
{01E04581-4EEE-11D0-BFE9-00AA005B4383} C:\WINDOWS\System32\browseui.dll
{0E5CBF21-D15F-11D0-8301-00AA005B4383} C:\WINDOWS\System32\browseui.dll
{07B18EA9-A523-4961-B6BB-170DE4475CCA} Error when opening a registry key, the key doesn't exist. Key: HKEY_CLASSES_ROOT\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}\InprocServer32

System error message: The system cannot find the file specified.

{179E4B4A-76C3-4F65-BCED-C9FA1A28D2EF} C:\WINDOWS\system32\NN_Bar31.dll
{01E04581-4EEE-11D0-BFE9-00AA005B4383} C:\WINDOWS\System32\browseui.dll
{0E5CBF21-D15F-11D0-8301-00AA005B4383} C:\WINDOWS\System32\browseui.dll
{179E4B4A-76C3-4F65-BCED-C9FA1A28D2EF} C:\WINDOWS\system32\NN_Bar31.dll
{EF99BD32-C1FB-11D2-892F-0090271D4F88} C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_3_10_0.dll
{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} C:\Program Files\Norton SystemWorks\Norton Antivirus\NavShExt.dll
{F3DF2532-A2CC-48D8-8643-A033AE4FC313} Error when opening a registry key, the key doesn't exist. Key: HKEY_CLASSES_ROOT\CLSID\{F3DF2532-A2CC-48D8-8643-A033AE4FC313}\InprocServer32

System error message: The system cannot find the file specified.

{000007AB-7059-463E-BD44-101A1750D732} C:\Program Files\Lycos\Sidesearch\sidesearch1311.dll
{4528BBE0-4E08-11D5-AD55-00010333D0AD} C:\Program Files\Yahoo!\Messenger\yhexbmes0819.dll
{4D5C8C25-D075-11d0-B416-00C04FB90376} C:\WINDOWS\System32\shdocvw.dll
{FE54FA40-D68C-11d2-98FA-00C0F0318AFE} C:\WINDOWS\System32\Shdocvw.dll
{1E0DE227-5CE4-4EA3-AB0C-8B03E1AA76BC} C:\WINDOWS\system32\shdocvw.dll
{30D02401-6A81-11D0-8274-00C04FD5AE38} C:\WINDOWS\System32\browseui.dll
{32683183-48a0-441b-a342-7c2a440a9478} C:\WINDOWS\System32\browseui.dll
{4528BBE0-4E08-11D5-AD55-00010333D0AD} C:\Program Files\Yahoo!\Messenger\yhexbmes0819.dll
{C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1} C:\WINDOWS\system32\shell32.dll
{EFA24E61-B078-11D0-89E4-00C04FC9E26E} C:\WINDOWS\System32\shdocvw.dll
{EFA24E62-B078-11D0-89E4-00C04FC9E26E} C:\WINDOWS\System32\shdocvw.dll
{EFA24E64-B078-11D0-89E4-00C04FC9E26E} C:\WINDOWS\System32\shdocvw.dll

****************************************
All processes:

0 [System Process]
8 System
132 smss.exe
160 csrss.exe
156 winlogon.exe
208 services.exe
220 lsass.exe
396 svchost.exe
436 ccSetMgr.exe
472 ccEvtMgr.exe
600 spoolsv.exe
628 acsd.exe
672 svchost.exe
688 GhostStartServi
716 hidserv.exe
744 navapsvc.exe
764 NPROTECT.EXE
840 SAVScan.exe
884 MSTask.exe
1012 stisvc.exe
1052 symlcsvc.exe
1072 wanmpsvc.exe
1104 WinMgmt.exe
1136 MsPMSPSv.exe
1148 svchost.exe
1192 Explorer.EXE
1212 SymTray.exe
1340 ntvdm.exe
1368 hpcdtray.exe
1388 LVCOMS.EXE
1488 pctspk.exe
912 hpztsb05.exe
1516 kazaa.exe
1532 ocrawr32.exe
1552 tgcmd.exe
1628 MSMGT.exe
1664 mwsoemon.exe
1756 qttask.exe
1296 ccApp.exe
1384 GhostStartTrayA
1800 AcctMgr.exe
1844 Sync.exe
1848 wkcalrem.exe
1576 sdstat.exe
1908 aoltray.exe
2008 rnathchk.exe
2384 ClrSchP034.exe
3252 msbb.exe
3352 realsched.exe
2532 PSCOMP.EXE
2480 iexplore.exe
3488 NE.EXE
2904 spywarescanner.

****************************************
Result when scanning:

A Better Internet 777.777.000 bi.dll
A Better Internet 777.777.001 {000006B1-19B5-414A-849F-2A3C64AE6939}
A Better Internet.B 778.000.000 %WinDir%\Belt.exe
A Better Internet.B 778.000.001 Belt
Bargain Buddy 102.498.947
Bargain Buddy 102.997.949 %ProgramsDir%\Bargain Buddy\
Bargain Buddy 102.997.950 {CE31A1F7-3D90-4874-8FBE-A5D97F8BC8F1}
ClockSync 847.700.000 ClockSync
ClockSync 847.700.001 %ProgramsDir%\ClockSync\
Cydoor 399.000.000 %SystemDir%\AdCache\
Cydoor 399.000.001 Cd_clint.dll
DownloadWare 825.997.949 %ProgramsDir%\DownloadWare\
ExPup 234.300.000 Explkw
ExpExt 342.200.000 {23BC1CCF-4BE7-497F-B154-6ADA68425FBB}
Favoriteman 692.118.339 {00000EF1-0786-4633-87C6-1AA7A44296DA}
IGetNet 692.118.540 %ProgramsDir%\ClearSearch\
IGetNet 692.118.541 {947E6D5A-4B9F-4CF4-91B3-562CA8D03313}
ILookup 545.000.000 bmeb.dll
ILookup 545.000.001 {753AA023-02D1-447D-8B55-53A91A5ABF18}
Instant Access Dialer 847.000.001 %ProgramsDir%\Instant Access\
Instant Access Dialer.B 848.000.000 EGDial.dll
Instant Access Dialer.C 849.000.001 EGDial.dll
ISTBar 122.122.007 %ProgramsDir%\ISTsvc\
Mirar Toolbar 927.700.000 {179E4B4A-76C3-4F65-BCED-C9FA1A28D2EF}
Mirar Toolbar.B 928.700.000 {8A0DCBDA-6E20-489C-9041-C1E8A0352E75}
Mirar Toolbar.B 928.700.001 NN_Bar31.dll
n-CASE 098.098.098 msbb
n-CASE 102.165.198 ncmyb.dll
n-CASE 102.165.199 %ProgramsDir%\nCase\
SaveNow 090.090.091 %ProgramsDir%\Save\
ShopAtHomeSelect 111.777.666 SAHAgent
ShopAtHomeSelect 123.000.444
ShopAtHomeSelect 123.000.445 %SystemDir%\SahAgent.exe
ShopForGood 639.000.000 {00000762-3965-4A1A-98CE-3D4BF457D4C8}
SideSearch 695.000.000 {00000762-3965-4A1A-98CE-3D4BF457D4C8}
SmartPops 434.900.000 {D5C778F1-CF13-4E70-ADF0-45A953E7CB8B}
Transponder 616.000.000 BI.dll
Transponder 616.000.002 {000006B1-19B5-414A-849F-2A3C64AE6939}
TV Hijacker 666.555.001 MSMGT
TV Hijacker 666.555.002 MSMGT.exe
TV Hijacker 666.555.003
TV Hijacker 666.555.004 %WinDir%\MSMGT.exe
Viewpoint Media Player 666.555.444
WebSearch Toolbar.Emailplug 474.900.000 MyWebSearch Email Plugin
WebSearch Toolbar.bho2 476.900.000 {07B18EA1-A523-4961-B6BB-170DE4475CCA}
WebSearch Toolbar.b 477.900.000 {07B18EA9-A523-4961-B6BB-170DE4475CCA}

***************************************




Related links

Bazooka - Free scan for spyware, adware, trojan horses, keyloggers, etc. Detects more than 500 potentially unwanted applications. Freeware!

The File Database - Search the file database for more information. Free!

PopUp Blocker Test - Find out if your pop-up killer can handle all pop-ups. Free!

Kephyr Labs - Find out what is going on at Kephyr. Try products in an early stage of development.



FreeFixer
Read more about FreeFixer, Kephyr's latest spyware removal tool.
Home & Products |  Legal |  Privacy |  Search

© Kephyr, 2003-2012. HtmlTidy, HTML 4.01, CSS andy@kephyr.com