Solved

Problem but cannot find it, to fix it

Posted on 2004-08-19
6
519 Views
Last Modified: 2013-12-04
Have had problems for about a year now and am tired of searching. I have tried to reformat and still have the same problems. computer is a toshiba laptop pIII 650. Problems I am haveing and this only a few.
No antivirus program finds anything. Have tried (norton,mcaffee,spybot,adaware and several others)
all icons on desk top are have arrows
I have a Local disk C drive and a Local Hard disk C drive when I do a search
only able to use 5 fonts.
StartupList report, 8/19/2004, 11:40:31 PM
StartupList version: 1.52
Started from : C:\Program Files\HijackThis.EXE
Detected: Windows XP SP1 (WinNT 5.01.2600)
Detected: Internet Explorer v6.00 SP1 (6.00.2800.1106)
* Including empty and uninteresting sections
* Forcing include of all possible sections
* Showing rarely important sections
==================================================

Running processes:

[Using Win9x method]

C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\spoolsv.exe
?:\?\pcbodyguard.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wpabaln.exe
?:\?\nppagent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ntvdm.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\cmd.exe
C:\Program Files\HijackThis.exe

[Using WinNT method]

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\INTRIG~1\pcbodyguard.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\System32\wpabaln.exe
C:\WINDOWS\system32\npp\nppagent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ntvdm.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\cmd.exe
C:\Program Files\HijackThis.exe

--------------------------------------------------

Listing of startup folders:

Shell folders Startup:
[C:\Documents and Settings\Larry Miller\Start Menu\Programs\Startup]
*No files*

Shell folders AltStartup:
*Folder not found*

User shell folders Startup:
*Folder not found*

User shell folders AltStartup:
*Folder not found*

Shell folders Common Startup:
[C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup]
*No files*

Shell folders Common AltStartup:
*Folder not found*

User shell folders Common Startup:
*Folder not found*

User shell folders Alternate Common Startup:
*Folder not found*

--------------------------------------------------

Checking Windows NT UserInit:

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
UserInit = C:\WINDOWS\system32\userinit.exe,

[HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon]
*Registry key not found*

[HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
*Registry value not found*

[HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon]
*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run

PCBG = C:\PROGRA~1\INTRIG~1\pcbodyguard.exe /start

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices
*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices
*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run
*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run
*Registry key not found*

--------------------------------------------------

File association entry for .EXE:
HKEY_CLASSES_ROOT\exefile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .COM:
HKEY_CLASSES_ROOT\comfile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .BAT:
HKEY_CLASSES_ROOT\batfile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .PIF:
HKEY_CLASSES_ROOT\piffile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .SCR:
HKEY_CLASSES_ROOT\scrfile\shell\open\command

(Default) = "%1" /S

--------------------------------------------------

File association entry for .HTA:
HKEY_CLASSES_ROOT\htafile\shell\open\command

(Default) = C:\WINDOWS\System32\mshta.exe "%1" %*

--------------------------------------------------

Enumerating Active Setup stub paths:
HKLM\Software\Microsoft\Active Setup\Installed Components
(* = disabled by HKCU twin)

[>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP

[>{26923b43-4d38-484f-9b9e-de460746276c}] *
StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE

[>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] *
StubPath = RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP

[>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] *
StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

[{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] *
StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\mplayer2.inf,PerUserStub.NT

[{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] *
StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll

[{306D6C21-C1B6-4629-986C-E59E1875B8AF}]
StubPath = "C:\WINDOWS\System32\rundll32.exe" "C:\Program Files\Messenger\msgsc.dll",ShowIconsUser

[{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] *
StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install

[{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] *
StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT

[{5945c046-1e7d-11d1-bc44-00c04fd912be}] *
StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.Install.PerUser

[{6BF52A52-394A-11d3-B153-00C04F79FAA6}] *
StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub

[{7790769C-0471-11d2-AF11-00C04FA35D02}] *
StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install

[{89820200-ECBD-11cf-8B85-00AA005B4340}] *
StubPath = regsvr32.exe /s /n /i:U shell32.dll

[{89820200-ECBD-11cf-8B85-00AA005B4383}] *
StubPath = %SystemRoot%\system32\ie4uinit.exe

--------------------------------------------------

Enumerating ICQ Agent Autostart apps:
HKCU\Software\Mirabilis\ICQ\Agent\Apps

*Registry key not found*

--------------------------------------------------

Load/Run keys from C:\WINDOWS\WIN.INI:

load=*INI section not found*
run=*INI section not found*

Load/Run keys from Registry:

HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*
HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*
HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*
HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*
HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*
HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*
HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*
HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*
HKCU\..\Windows NT\CurrentVersion\Windows: load=
HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found*
HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found*
HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found*
HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs=

--------------------------------------------------

Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:

Shell=*INI section not found*
SCRNSAVE.EXE=*INI section not found*
drivers=*INI section not found*

Shell & screensaver key from Registry:

Shell=Explorer.exe
SCRNSAVE.EXE=C:\WINDOWS\System32\logon.scr
drivers=*Registry value not found*

Policies Shell key:

HKCU\..\Policies: Shell=*Registry key not found*
HKLM\..\Policies: Shell=*Registry value not found*

--------------------------------------------------

Checking for EXPLORER.EXE instances:

C:\WINDOWS\Explorer.exe: PRESENT!

C:\Explorer.exe: not present
C:\WINDOWS\Explorer\Explorer.exe: not present
C:\WINDOWS\System\Explorer.exe: not present
C:\WINDOWS\System32\Explorer.exe: not present
C:\WINDOWS\Command\Explorer.exe: not present
C:\WINDOWS\Fonts\Explorer.exe: not present

--------------------------------------------------

C:\WINDOWS\WININIT.INI listing:

*File not found*

--------------------------------------------------

C:\WINDOWS\WININIT.BAK listing:

*File not found*

--------------------------------------------------

C:\AUTOEXEC.BAT listing:

ECHO OFF
path=c:\windows;c:\windows\command
\hibinv.exe
call \checksr.bat
IF "%config%"=="QUICK" GOTO QUICK
set EXPAND=YES
SET DIRCMD=/O:N
set LglDrv=27 * 26 Z 25 Y 24 X 23 W 22 V 21 U 20 T 19 S 18 R 17 Q 16 P 15
set LglDrv=%LglDrv% O 14 N 13 M 12 L 11 K 10 J 9 I 8 H 7 G 6 F 5 E 4 D 3 C
cls
call setramd.bat %LglDrv%
set temp=c:\
set tmp=c:\
path=%RAMD%:\;a:\;%path%;%CDROM%:\
copy command.com %RAMD%:\ > NUL
set comspec=%RAMD%:\command.com
copy extract.exe %RAMD%:\ > NUL
copy readme.txt %RAMD%:\ > NUL
:ERROR
IF EXIST ebd.cab GOTO EXT
echo Please insert Windows Millennium Edition Startup Disk 2
echo.
pause
GOTO ERROR
:EXT
%RAMD%:\extract /y /e /l %RAMD%: ebd.cab > NUL
echo The diagnostic tools were successfully loaded to drive %RAMD%.
echo.
IF "%config%"=="NOCD" GOTO QUIT
IF "%config%"=="HELP" GOTO HELP
LH %ramd%:\MSCDEX.EXE /D:mscd001 /L:%CDROM%
::If MSCDEX doesn't find a drive...
IF ERRORLEVEL 1 SET CDPROB=1
::
GOTO QUIT
:HELP
LH %ramd%:\MSCDEX.EXE /D:mscd001 /L:%CDROM%
::If MSCDEX doesn't find a drive...
IF ERRORLEVEL 1 SET CDPROB=1
cls
call help.bat
::
GOTO QUIT
:QUIT
call fixit.bat
rem clean up environment variables
set CDPROB=
set CDROM=
set LglDrv=
GOTO QUICK
:QUICK

--------------------------------------------------

C:\CONFIG.SYS listing:

[menu]
menuitem=HELP, Help
menuitem=CD, Start computer with CD-ROM support.
menuitem=NOCD, Start computer without CD-ROM support.
menuitem=QUICK, Minimal Boot
menudefault=HELP,30
menucolor=7,0
[HELP]
device=oakcdrom.sys /D:mscd001
device=btdosm.sys
device=flashpt.sys
device=btcdrom.sys /D:mscd001
device=aspi2dos.sys
device=aspi8dos.sys
device=aspi4dos.sys
device=aspi8u2.sys
device=aspicd.sys /D:mscd001
devicehigh=ramdrive.sys /E 2048
[CD]
device=oakcdrom.sys1
device=btdosm.sys
device=flashpt.sys
device=btcdrom.sys
device=aspi2dos.sys
device=aspi8dos.sys
device=aspi4dos.sys
device=aspi8u2.sys
device=aspicd.sys
devicehigh=ramdrive.sys /E 2048
[NOCD]
devicehigh=ramdrive.sys /E 2048
[QUICK]
[COMMON]
files=30
buffers=30
dos=high,umb
stacks=9,256
lastdrive=z

--------------------------------------------------

C:\WINDOWS\WINSTART.BAT listing:

*File not found*

--------------------------------------------------

C:\WINDOWS\DOSSTART.BAT listing:

*File not found*

--------------------------------------------------

Checking for superhidden extensions:

.lnk: HIDDEN! (arrow overlay: yes)
.pif: HIDDEN! (arrow overlay: yes)
.exe: not hidden
.com: not hidden
.bat: not hidden
.hta: not hidden
.scr: not hidden
.shs: HIDDEN!
.shb: HIDDEN!
.vbs: not hidden
.vbe: not hidden
.wsh: not hidden
.scf: HIDDEN! (arrow overlay: NO!)
.url: HIDDEN! (arrow overlay: yes)
.js: not hidden
.jse: not hidden

--------------------------------------------------

Verifying REGEDIT.EXE integrity:

- Regedit.exe found in C:\WINDOWS
- .reg open command is normal (regedit.exe %1)
- Company name OK: 'Microsoft Corporation'
- Original filename OK: 'REGEDIT.EXE'
- File description: 'Registry Editor'

Registry check passed

--------------------------------------------------

Enumerating Browser Helper Objects:

*No BHO's found*

--------------------------------------------------

Enumerating Task Scheduler jobs:

*No jobs found*

--------------------------------------------------

Enumerating Download Program Files:

[{33564D57-9980-0010-8000-00AA00389B71}]
CODEBASE = http://codecs.microsoft.com/codecs/i386/wmv9dmo.cab

[{DC187740-46A9-11D5-A815-00B0D0428C0C}]
CODEBASE = http://ds1.downloadtech.net/cn1060/pcpowerscan.cab

--------------------------------------------------

Enumerating Winsock LSP files:

NameSpace #1: C:\WINDOWS\System32\mswsock.dll
NameSpace #2: C:\WINDOWS\System32\winrnr.dll
NameSpace #3: C:\WINDOWS\System32\mswsock.dll
Protocol #1: C:\WINDOWS\system32\mswsock.dll
Protocol #2: C:\WINDOWS\system32\mswsock.dll
Protocol #3: C:\WINDOWS\system32\mswsock.dll
Protocol #4: C:\WINDOWS\system32\rsvpsp.dll
Protocol #5: C:\WINDOWS\system32\rsvpsp.dll
Protocol #6: C:\WINDOWS\system32\mswsock.dll
Protocol #7: C:\WINDOWS\system32\mswsock.dll
Protocol #8: C:\WINDOWS\system32\mswsock.dll
Protocol #9: C:\WINDOWS\system32\mswsock.dll
Protocol #10: C:\WINDOWS\system32\mswsock.dll
Protocol #11: C:\WINDOWS\system32\mswsock.dll

--------------------------------------------------

Enumerating Windows NT/2000/XP services

Microsoft ACPI Driver: System32\DRIVERS\ACPI.sys (system)
Microsoft Kernel Acoustic Echo Canceller: system32\drivers\aec.sys (manual start)
AFD Networking Support Environment: \SystemRoot\System32\drivers\afd.sys (autostart)
Intel AGP Bus Filter: System32\DRIVERS\agp440.sys (system)
Alerter: %SystemRoot%\System32\svchost.exe -k LocalService (manual start)
Application Layer Gateway Service: %SystemRoot%\System32\alg.exe (manual start)
Application Management: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)
RAS Asynchronous Media Driver: System32\DRIVERS\asyncmac.sys (manual start)
Standard IDE/ESDI Hard Disk Controller: System32\DRIVERS\atapi.sys (system)
ATM ARP Client Protocol: System32\DRIVERS\atmarpc.sys (manual start)
Windows Audio: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Audio Stub Driver: System32\DRIVERS\audstub.sys (manual start)
Background Intelligent Transfer Service: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Computer Browser: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
CD-ROM Driver: System32\DRIVERS\cdrom.sys (system)
Indexing Service: %SystemRoot%\system32\cisvc.exe (manual start)
ClipBook: %SystemRoot%\system32\clipsrv.exe (manual start)
Microsoft AC Adapter Driver: System32\DRIVERS\CmBatt.sys (manual start)
Microsoft Composite Battery Driver: System32\DRIVERS\compbatt.sys (system)
COM+ System Application: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} (manual start)
Cryptographic Services: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)
DHCP Client: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Disk Driver: System32\DRIVERS\disk.sys (system)
Logical Disk Manager Administrative Service: %SystemRoot%\System32\dmadmin.exe /com (manual start)
dmboot: System32\drivers\dmboot.sys (disabled)
dmio: System32\drivers\dmio.sys (disabled)
dmload: System32\drivers\dmload.sys (disabled)
Logical Disk Manager: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Microsoft Kernel DLS Syntheiszer: system32\drivers\DMusic.sys (manual start)
DNS Client: %SystemRoot%\System32\svchost.exe -k NetworkService (autostart)
Microsoft Kernel DRM Audio Descrambler: system32\drivers\drmkaud.sys (manual start)
Yamaha DS1 Audio Driver (WDM): system32\drivers\ds1wdm.sys (manual start)
Intel(R) PRO Adapter Driver: System32\DRIVERS\e100b325.sys (manual start)
Error Reporting Service: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Event Log: %SystemRoot%\system32\services.exe (autostart)
COM+ Event System: C:\WINDOWS\System32\svchost.exe -k netsvcs (manual start)
Fast User Switching Compatibility: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Floppy Disk Controller Driver: System32\DRIVERS\fdc.sys (manual start)
Floppy Disk Driver: System32\DRIVERS\flpydisk.sys (manual start)
Volume Manager Driver: System32\DRIVERS\ftdisk.sys (system)
Game port for Yamaha DS1: system32\drivers\gameenum.sys (manual start)
Generic Packet Classifier: System32\DRIVERS\msgpc.sys (manual start)
Help and Support: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Human Interface Device Access: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled)
Microsoft HID Class Driver: System32\DRIVERS\hidusb.sys (manual start)
i8042 Keyboard and PS/2 Mouse Port Driver: System32\DRIVERS\i8042prt.sys (system)
CD-Burning Filter Driver: System32\DRIVERS\imapi.sys (system)
IMAPI CD-Burning COM Service: C:\WINDOWS\System32\imapi.exe (manual start)
IntelIde: System32\DRIVERS\intelide.sys (system)
IP Traffic Filter Driver: System32\DRIVERS\ipfltdrv.sys (manual start)
IP in IP Tunnel Driver: System32\DRIVERS\ipinip.sys (manual start)
IP Network Address Translator: System32\DRIVERS\ipnat.sys (manual start)
IPSEC driver: System32\DRIVERS\ipsec.sys (system)
IR Enumerator Service: System32\DRIVERS\irenum.sys (manual start)
PnP ISA/EISA Bus Driver: System32\DRIVERS\isapnp.sys (system)
Keyboard Class Driver: System32\DRIVERS\kbdclass.sys (system)
Microsoft Kernel Wave Audio Mixer: system32\drivers\kmixer.sys (manual start)
Server: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Workstation: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
TCP/IP NetBIOS Helper: %SystemRoot%\System32\svchost.exe -k LocalService (autostart)
Xircom MPCI Modem 56 Driver: System32\DRIVERS\ltck000c.sys (manual start)
Messenger: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
NetMeeting Remote Desktop Sharing: C:\WINDOWS\System32\mnmsrvc.exe (manual start)
Mouse Class Driver: System32\DRIVERS\mouclass.sys (system)
Mouse HID Driver: System32\DRIVERS\mouhid.sys (manual start)
WebDav Client Redirector: System32\DRIVERS\mrxdav.sys (manual start)
MRXSMB: System32\DRIVERS\mrxsmb.sys (system)
Distributed Transaction Coordinator: C:\WINDOWS\System32\msdtc.exe (manual start)
Windows Installer: C:\WINDOWS\System32\msiexec.exe /V (manual start)
Microsoft Streaming Service Proxy: system32\drivers\MSKSSRV.sys (manual start)
Microsoft Streaming Clock Proxy: system32\drivers\MSPCLOCK.sys (manual start)
Microsoft Streaming Quality Manager Proxy: system32\drivers\MSPQM.sys (manual start)
Remote Access NDIS TAPI Driver: System32\DRIVERS\ndistapi.sys (manual start)
NDIS Usermode I/O Protocol: System32\DRIVERS\ndisuio.sys (manual start)
Remote Access NDIS WAN Driver: System32\DRIVERS\ndiswan.sys (manual start)
NetBIOS Interface: System32\DRIVERS\netbios.sys (system)
NetBios over Tcpip: System32\DRIVERS\netbt.sys (system)
Network DDE: %SystemRoot%\system32\netdde.exe (manual start)
Network DDE DSDM: %SystemRoot%\system32\netdde.exe (manual start)
Net Logon: %SystemRoot%\System32\lsass.exe (manual start)
Network Connections: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Network Location Awareness (NLA): %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
NT LM Security Support Provider: %SystemRoot%\System32\lsass.exe (manual start)
Removable Storage: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)
IPX Traffic Filter Driver: System32\DRIVERS\nwlnkflt.sys (manual start)
IPX Traffic Forwarder Driver: System32\DRIVERS\nwlnkfwd.sys (manual start)
Intel PentiumIII Processor Driver: System32\DRIVERS\p3.sys (system)
Parallel port driver: System32\DRIVERS\parport.sys (manual start)
PCI Bus Driver: System32\DRIVERS\pci.sys (system)
Pcmcia: System32\DRIVERS\pcmcia.sys (system)
Plug and Play: %SystemRoot%\system32\services.exe (autostart)
IPSEC Services: %SystemRoot%\System32\lsass.exe (autostart)
WAN Miniport (PPTP): System32\DRIVERS\raspptp.sys (manual start)
Protected Storage: %SystemRoot%\system32\lsass.exe (autostart)
QoS Packet Scheduler: System32\DRIVERS\psched.sys (manual start)
Direct Parallel Link Driver: System32\DRIVERS\ptilink.sys (manual start)
Remote Access Auto Connection Driver: System32\DRIVERS\rasacd.sys (system)
Remote Access Auto Connection Manager: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
WAN Miniport (L2TP): System32\DRIVERS\rasl2tp.sys (manual start)
Remote Access Connection Manager: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Remote Access PPPOE Driver: System32\DRIVERS\raspppoe.sys (manual start)
Direct Parallel: System32\DRIVERS\raspti.sys (manual start)
Rdbss: System32\DRIVERS\rdbss.sys (system)
RDPCDD: System32\DRIVERS\RDPCDD.sys (system)
Remote Desktop Help Session Manager: C:\WINDOWS\system32\sessmgr.exe (manual start)
Digital CD Audio Playback Filter Driver: System32\DRIVERS\redbook.sys (system)
Routing and Remote Access: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled)
Remote Procedure Call (RPC) Locator: %SystemRoot%\System32\locator.exe (manual start)
Remote Procedure Call (RPC): %SystemRoot%\system32\svchost -k rpcss (autostart)
QoS RSVP: %SystemRoot%\System32\rsvp.exe (manual start)
S3SavageMX: System32\DRIVERS\s3savmxm.sys (manual start)
Security Accounts Manager: %SystemRoot%\system32\lsass.exe (autostart)
Smart Card Helper: %SystemRoot%\System32\SCardSvr.exe (manual start)
Smart Card: %SystemRoot%\System32\SCardSvr.exe (manual start)
Task Scheduler: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Secdrv: System32\DRIVERS\secdrv.sys (manual start)
Secondary Logon: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
System Event Notification: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)
Internet Connection Firewall (ICF) / Internet Connection Sharing (ICS): %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Shell Hardware Detection: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Microsoft Kernel Audio Splitter: system32\drivers\splitter.sys (manual start)
Print Spooler: %SystemRoot%\system32\spoolsv.exe (autostart)
System Restore Filter Driver: System32\DRIVERS\sr.sys (system)
System Restore Service: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Srv: System32\DRIVERS\srv.sys (manual start)
SSDP Discovery Service: %SystemRoot%\System32\svchost.exe -k LocalService (manual start)
Windows Image Acquisition (WIA): %SystemRoot%\System32\svchost.exe -k imgsvc (manual start)
Software Bus Driver: System32\DRIVERS\swenum.sys (manual start)
Microsoft Kernel GS Wavetable Synthesizer: system32\drivers\swmidi.sys (manual start)
MS Software Shadow Copy Provider: C:\WINDOWS\System32\dllhost.exe /Processid:{C72233B0-19BE-4224-820B-3C68B4785909} (manual start)
Microsoft Kernel System Audio Device: system32\drivers\sysaudio.sys (manual start)
Performance Logs and Alerts: %SystemRoot%\system32\smlogsvc.exe (manual start)
Telephony: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
TCP/IP Protocol Driver: System32\DRIVERS\tcpip.sys (system)
Terminal Device Driver: System32\DRIVERS\termdd.sys (system)
Terminal Services: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Themes: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Distributed Link Tracking Client: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)
Microcode Update Driver: System32\DRIVERS\update.sys (manual start)
Upload Manager: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Universal Plug and Play Device Host: %SystemRoot%\System32\svchost.exe -k LocalService (manual start)
Uninterruptible Power Supply: %SystemRoot%\System32\ups.exe (manual start)
USB2 Enabled Hub: System32\DRIVERS\usbhub.sys (manual start)
Microsoft USB Universal Host Controller Miniport Driver: System32\DRIVERS\usbuhci.sys (manual start)
VgaSave: \SystemRoot\System32\drivers\vga.sys (system)
Volume Shadow Copy: %SystemRoot%\System32\vssvc.exe (manual start)
Windows Time: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Remote Access IP ARP Driver: System32\DRIVERS\wanarp.sys (manual start)
Microsoft WINMM WDM Audio Compatibility Driver: system32\drivers\wdmaud.sys (manual start)
WebClient: %SystemRoot%\System32\svchost.exe -k LocalService (autostart)
Windows Management Instrumentation: %systemroot%\system32\svchost.exe -k netsvcs (autostart)
Portable Media Serial Number: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
WMI Performance Adapter: C:\WINDOWS\System32\wbem\wmiapsrv.exe (manual start)
Automatic Updates: %systemroot%\system32\svchost.exe -k netsvcs (autostart)
Wireless Zero Configuration: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Enumerating Win9x VxD services:

*Registry key not found*

--------------------------------------------------

Enumerating Windows NT logon/logoff scripts:
*No scripts set to run*

Windows NT checkdisk command:
BootExecute = autocheck autochk *

Windows NT 'Wininit.ini':
PendingFileRenameOperations: *Registry value not found*

--------------------------------------------------

Enumerating ShellServiceObjectDelayLoad items:

PostBootReminder: C:\WINDOWS\system32\SHELL32.dll
CDBurn: C:\WINDOWS\system32\SHELL32.dll
WebCheck: C:\WINDOWS\System32\webcheck.dll
SysTray: C:\WINDOWS\System32\stobject.dll

--------------------------------------------------
End of report, 30,375 bytes
Report generated in 0.160 seconds

Command line options:
   /verbose  - to add additional info on each section
   /complete - to include empty sections and unsuspicious data
   /full     - to include several rarely-important sections
   /force9x  - to include Win9x-only startups even if running on WinNT
   /forcent  - to include WinNT-only startups even if running on Win9x
   /forceall - to include all Win9x and WinNT startups, regardless of platform
   /history  - to list version history only

hear is a list of system drivers
abiosdsk      Abiosdsk      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Ignore      No      No
abp480n5      abp480n5      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
acpi      Microsoft ACPI Driver      c:\windows\system32\drivers\acpi.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
acpiec      ACPIEC      c:\windows\system32\drivers\acpiec.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
adpu160m      adpu160m      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
aec      Microsoft Kernel Acoustic Echo Canceller      c:\windows\system32\drivers\aec.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
afd      AFD Networking Support Environment      c:\windows\system32\drivers\afd.sys      Kernel Driver      Yes      Auto      Running      OK      Normal      No      Yes
agp440      Intel AGP Bus Filter      c:\windows\system32\drivers\agp440.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
aha154x      Aha154x      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
aic78u2      aic78u2      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
aic78xx      aic78xx      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
aliide      AliIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
amsint      amsint      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
asc      asc      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
asc3350p      asc3350p      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
asc3550      asc3550      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
asyncmac      RAS Asynchronous Media Driver      c:\windows\system32\drivers\asyncmac.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
atapi      Standard IDE/ESDI Hard Disk Controller      c:\windows\system32\drivers\atapi.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
atdisk      Atdisk      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Ignore      No      No
atmarpc      ATM ARP Client Protocol      c:\windows\system32\drivers\atmarpc.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
audstub      Audio Stub Driver      c:\windows\system32\drivers\audstub.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
beep      Beep      c:\windows\system32\drivers\beep.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
cbidf2k      cbidf2k      c:\windows\system32\drivers\cbidf2k.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
cd20xrnt      cd20xrnt      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
cdaudio      Cdaudio      c:\windows\system32\drivers\cdaudio.sys      Kernel Driver      No      System      Stopped      OK      Ignore      No      No
cdfs      Cdfs      c:\windows\system32\drivers\cdfs.sys      File System Driver      Yes      Disabled      Running      OK      Normal      No      Yes
cdrom      CD-ROM Driver      c:\windows\system32\drivers\cdrom.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
changer      Changer      Not Available      Kernel Driver      No      System      Stopped      OK      Ignore      No      No
cmbatt      Microsoft AC Adapter Driver      c:\windows\system32\drivers\cmbatt.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
cmdide      CmdIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
compbatt      Microsoft Composite Battery Driver      c:\windows\system32\drivers\compbatt.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
cpqarray      Cpqarray      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
dac960nt      dac960nt      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
disk      Disk Driver      c:\windows\system32\drivers\disk.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
dmboot      dmboot      c:\windows\system32\drivers\dmboot.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
dmio      dmio      c:\windows\system32\drivers\dmio.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
dmload      dmload      c:\windows\system32\drivers\dmload.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
dmusic      Microsoft Kernel DLS Syntheiszer      c:\windows\system32\drivers\dmusic.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
dpti2o      dpti2o      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
drmkaud      Microsoft Kernel DRM Audio Descrambler      c:\windows\system32\drivers\drmkaud.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
ds1      Yamaha DS1 Audio Driver (WDM)      c:\windows\system32\drivers\ds1wdm.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
e100b      Intel(R) PRO Adapter Driver      c:\windows\system32\drivers\e100b325.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
fastfat      Fastfat      c:\windows\system32\drivers\fastfat.sys      File System Driver      Yes      Disabled      Running      OK      Normal      No      Yes
fdc      Floppy Disk Controller Driver      c:\windows\system32\drivers\fdc.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
fips      Fips      c:\windows\system32\drivers\fips.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
flpydisk      Floppy Disk Driver      c:\windows\system32\drivers\flpydisk.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
ftdisk      Volume Manager Driver      c:\windows\system32\drivers\ftdisk.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
gameenum      Game port for Yamaha DS1      c:\windows\system32\drivers\gameenum.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
gpc      Generic Packet Classifier      c:\windows\system32\drivers\msgpc.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
hidusb      Microsoft HID Class Driver      c:\windows\system32\drivers\hidusb.sys      Kernel Driver      Yes      Manual      Running      OK      Ignore      No      Yes
hpn      hpn      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
i2omgmt      i2omgmt      Not Available      Kernel Driver      No      System      Stopped      OK      Normal      No      No
i2omp      i2omp      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
i8042prt      i8042 Keyboard and PS/2 Mouse Port Driver      c:\windows\system32\drivers\i8042prt.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
imapi      CD-Burning Filter Driver      c:\windows\system32\drivers\imapi.sys      Kernel Driver      No      System      Stopped      OK      Normal      No      No
ini910u      ini910u      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
intelide      IntelIde      c:\windows\system32\drivers\intelide.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
ipfilterdriver      IP Traffic Filter Driver      c:\windows\system32\drivers\ipfltdrv.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
ipinip      IP in IP Tunnel Driver      c:\windows\system32\drivers\ipinip.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
ipnat      IP Network Address Translator      c:\windows\system32\drivers\ipnat.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
ipsec      IPSEC driver      c:\windows\system32\drivers\ipsec.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
irenum      IR Enumerator Service      c:\windows\system32\drivers\irenum.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
isapnp      PnP ISA/EISA Bus Driver      c:\windows\system32\drivers\isapnp.sys      Kernel Driver      Yes      Boot      Running      OK      Critical      No      Yes
kbdclass      Keyboard Class Driver      c:\windows\system32\drivers\kbdclass.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
kmixer      Microsoft Kernel Wave Audio Mixer      c:\windows\system32\drivers\kmixer.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
ksecdd      KSecDD      c:\windows\system32\drivers\ksecdd.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
lbrtfdc      lbrtfdc      Not Available      Kernel Driver      No      System      Stopped      OK      Ignore      No      No
ltck000c      Xircom MPCI Modem 56 Driver      c:\windows\system32\drivers\ltck000c.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
mnmdd      mnmdd      c:\windows\system32\drivers\mnmdd.sys      Kernel Driver      Yes      System      Running      OK      Ignore      No      Yes
modem      Modem      c:\windows\system32\drivers\modem.sys      Kernel Driver      Yes      Manual      Running      OK      Ignore      No      Yes
mouclass      Mouse Class Driver      c:\windows\system32\drivers\mouclass.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
mouhid      Mouse HID Driver      c:\windows\system32\drivers\mouhid.sys      Kernel Driver      Yes      Manual      Running      OK      Ignore      No      Yes
mountmgr      MountMgr      c:\windows\system32\drivers\mountmgr.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
mraid35x      mraid35x      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
mrxdav      WebDav Client Redirector      c:\windows\system32\drivers\mrxdav.sys      File System Driver      Yes      Manual      Running      OK      Normal      No      Yes
mrxsmb      MRXSMB      c:\windows\system32\drivers\mrxsmb.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes
msfs      Msfs      c:\windows\system32\drivers\msfs.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes
mskssrv      Microsoft Streaming Service Proxy      c:\windows\system32\drivers\mskssrv.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
mspclock      Microsoft Streaming Clock Proxy      c:\windows\system32\drivers\mspclock.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
mspqm      Microsoft Streaming Quality Manager Proxy      c:\windows\system32\drivers\mspqm.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
mup      Mup      c:\windows\system32\drivers\mup.sys      File System Driver      Yes      Boot      Running      OK      Normal      No      Yes
ndis      NDIS System Driver      c:\windows\system32\drivers\ndis.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
ndistapi      Remote Access NDIS TAPI Driver      c:\windows\system32\drivers\ndistapi.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
ndisuio      NDIS Usermode I/O Protocol      c:\windows\system32\drivers\ndisuio.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
ndiswan      Remote Access NDIS WAN Driver      c:\windows\system32\drivers\ndiswan.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
ndproxy      NDIS Proxy      c:\windows\system32\drivers\ndproxy.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
netbios      NetBIOS Interface      c:\windows\system32\drivers\netbios.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes
netbt      NetBios over Tcpip      c:\windows\system32\drivers\netbt.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
npfs      Npfs      c:\windows\system32\drivers\npfs.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes
ntfs      Ntfs      c:\windows\system32\drivers\ntfs.sys      File System Driver      Yes      Disabled      Running      OK      Normal      No      Yes
null      Null      c:\windows\system32\drivers\null.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
nwlnkflt      IPX Traffic Filter Driver      c:\windows\system32\drivers\nwlnkflt.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
nwlnkfwd      IPX Traffic Forwarder Driver      c:\windows\system32\drivers\nwlnkfwd.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
p3      Intel PentiumIII Processor Driver      c:\windows\system32\drivers\p3.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
parport      Parallel port driver      c:\windows\system32\drivers\parport.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
partmgr      PartMgr      c:\windows\system32\drivers\partmgr.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
parvdm      ParVdm      c:\windows\system32\drivers\parvdm.sys      Kernel Driver      Yes      Auto      Running      OK      Ignore      No      Yes
pci      PCI Bus Driver      c:\windows\system32\drivers\pci.sys      Kernel Driver      Yes      Boot      Running      OK      Critical      No      Yes
pcidump      PCIDump      Not Available      Kernel Driver      No      System      Stopped      OK      Ignore      No      No
pciide      PCIIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
pcmcia      Pcmcia      c:\windows\system32\drivers\pcmcia.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
pdcomp      PDCOMP      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No
pdframe      PDFRAME      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No
pdreli      PDRELI      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No
pdrframe      PDRFRAME      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No
perc2      perc2      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
perc2hib      perc2hib      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
pptpminiport      WAN Miniport (PPTP)      c:\windows\system32\drivers\raspptp.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
psched      QoS Packet Scheduler      c:\windows\system32\drivers\psched.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
ptilink      Direct Parallel Link Driver      c:\windows\system32\drivers\ptilink.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
ql1080      ql1080      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
ql10wnt      Ql10wnt      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
ql12160      ql12160      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
ql1240      ql1240      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
ql1280      ql1280      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
rasacd      Remote Access Auto Connection Driver      c:\windows\system32\drivers\rasacd.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
rasl2tp      WAN Miniport (L2TP)      c:\windows\system32\drivers\rasl2tp.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
raspppoe      Remote Access PPPOE Driver      c:\windows\system32\drivers\raspppoe.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
raspti      Direct Parallel      c:\windows\system32\drivers\raspti.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
rdbss      Rdbss      c:\windows\system32\drivers\rdbss.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes
rdpcdd      RDPCDD      c:\windows\system32\drivers\rdpcdd.sys      Kernel Driver      Yes      System      Running      OK      Ignore      No      Yes
rdpwd      RDPWD      c:\windows\system32\drivers\rdpwd.sys      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No
redbook      Digital CD Audio Playback Filter Driver      c:\windows\system32\drivers\redbook.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
s3savagemx      S3SavageMX      c:\windows\system32\drivers\s3savmxm.sys      Kernel Driver      Yes      Manual      Running      OK      Ignore      No      Yes
secdrv      Secdrv      c:\windows\system32\drivers\secdrv.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
serial      Serial      c:\windows\system32\drivers\serial.sys      Kernel Driver      No      Auto      Stopped      OK      Ignore      No      No
sfloppy      Sfloppy      c:\windows\system32\drivers\sfloppy.sys      Kernel Driver      No      System      Stopped      OK      Ignore      No      No
simbad      Simbad      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
sparrow      Sparrow      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
splitter      Microsoft Kernel Audio Splitter      c:\windows\system32\drivers\splitter.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
sr      System Restore Filter Driver      c:\windows\system32\drivers\sr.sys      File System Driver      Yes      Boot      Running      OK      Normal      No      Yes
srv      Srv      c:\windows\system32\drivers\srv.sys      File System Driver      Yes      Manual      Running      OK      Normal      No      Yes
swenum      Software Bus Driver      c:\windows\system32\drivers\swenum.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
swmidi      Microsoft Kernel GS Wavetable Synthesizer      c:\windows\system32\drivers\swmidi.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No
sym_hi      sym_hi      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
sym_u3      sym_u3      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
symc810      symc810      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
symc8xx      symc8xx      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
sysaudio      Microsoft Kernel System Audio Device      c:\windows\system32\drivers\sysaudio.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
tcpip      TCP/IP Protocol Driver      c:\windows\system32\drivers\tcpip.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
tdpipe      TDPIPE      c:\windows\system32\drivers\tdpipe.sys      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No
tdtcp      TDTCP      c:\windows\system32\drivers\tdtcp.sys      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No
termdd      Terminal Device Driver      c:\windows\system32\drivers\termdd.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes
toside      TosIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
udfs      Udfs      c:\windows\system32\drivers\udfs.sys      File System Driver      No      Disabled      Stopped      OK      Normal      No      No
ultra      ultra      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
update      Microcode Update Driver      c:\windows\system32\drivers\update.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
usbhub      USB2 Enabled Hub      c:\windows\system32\drivers\usbhub.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
usbuhci      Microsoft USB Universal Host Controller Miniport Driver      c:\windows\system32\drivers\usbuhci.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
vgasave      VgaSave      c:\windows\system32\drivers\vga.sys      Kernel Driver      Yes      System      Running      OK      Ignore      No      Yes
viaide      ViaIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No
volsnap      VolSnap      c:\windows\system32\drivers\volsnap.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes
wanarp      Remote Access IP ARP Driver      c:\windows\system32\drivers\wanarp.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
wdica      WDICA      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No
wdmaud      Microsoft WINMM WDM Audio Compatibility Driver      c:\windows\system32\drivers\wdmaud.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes
0
Comment
Question by:Dadedog1922
  • 2
6 Comments
 
LVL 12

Expert Comment

by:rossfingal
ID: 11859045
Hi!  Dadedog1922

It appears that you have the latest version of HijackThis (version 1.98.2) -
however, I'm not completely sure.
If you do not - download the latest version from:
http://www.subratam.org/?page=removal
Or:
http://www.zerosrealm.com/downloads/hjt.zip

Install it into a permanent folder of it's own - something like:
C:\Program Files\HJT\HijackThis.exe

With all browser windows closed - run it and post a log file here (not a Startuplist log!)

Good luck!
RF
0
 

Author Comment

by:Dadedog1922
ID: 11918259
sorry it took so long is this what you needed?

Logfile of HijackThis v1.98.2
Scan saved at 5:40:15 PM, on 8/27/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\INTRIG~1\pcbodyguard.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\System32\wpabaln.exe
C:\Documents and Settings\Larry Miller\Local Settings\Temp\Temporary Directory 1 for hjt.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
O4 - HKLM\..\Run: [PCBG] C:\PROGRA~1\INTRIG~1\pcbodyguard.exe /start
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O16 - DPF: {DC187740-46A9-11D5-A815-00B0D0428C0C} - http://ds1.downloadtech.net/cn1060/pcpowerscan.cab

0
 
LVL 12

Accepted Solution

by:
rossfingal earned 500 total points
ID: 11921972
Hi!

The presence of arrows on your desktop shortcuts is not an indicator of a problem.
Here a couple of ways to remove the arrows.

Download and install TweakUI:
http://download.microsoft.com/download/f/c/a/fca6767b-9ed9-45a6-b352-839afb2a2679/TweakUiPowertoySetup.exe
Click on the TweakUI icon in Control Panel and select the "Explorer" tab -
under "Shortcut overlay" choose "None".
Restart your computer for the change to take effect.
--------------------------------------------------------------
Or you can edit the registry (Use Caution!)
Backup any keys you change!
Here's a relatively, safe method:

Submitted by Michael (mm45@bellsouth.net).

"To safely hack the Registry to permanently remove those funky little shortcut arrows, without adversely affecting your program shortcuts in any way, start Regedit and go to:

HKEY_CLASSES_ROOT\Lnkfile

and to:

HKEY_CLASSES_ROOT\Piffile

In each of these folders the right hand pane has the "IsShortcut" String Value. Right-click on it, select Rename, and change it to read "IsNotShortcut" (no quotes).
Close Regedit and reboot.
The arrows are gone now, but Windows still sees all the affected icons as shortcuts and treats them accordingly. :)"

It's preferable to use TweakUI - unless you're comfortable with editing the registry!
------------------------------------------------------------------------

As far as your problem with Fonts -
navigate to the C:\WINDOWS\System32\Fonts folder, open it and note how many fonts you have listed.

Here's some information on fonts:
Installing and adding fonts -
http://support.microsoft.com/default.aspx?scid=kb;en-us;314960&Product=winxp

As far as your HijackThis log is concerned -
I don't see any problems evident.
When you ran it did you have "Show all Files and Folders", including hidden and system, turned on?
If not - do so, and then post a new HijackThis log here.

Good luck!
RF

0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Article by: btan
The intent is not to repeat what many has know about Ransomware but more to join its dots of what is it, who are the victims, why it exists, when and how we respond on infection. Lastly, sum up in a glance to share such information with more to help…
Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now