Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: anti-spyware?

  1. #1
    Join Date
    May 2006
    Malvern, PA
    6,721 anti-spyware?

    This Vista machine comes up and I'm getting a notice in the bottom right that anti-spyware has missed a scan and wants to run a scan now. I don't see that program in Programs and Features so I'm leary about it. Otherwise the machine is running well. The Norton subscription has expired so I need to deal with that. Malwarebytes says the machine is clean, although it was infected with Vista AntiVirus Pro 2010 when I got it.

    DDS (Ver_09-12-01.01) - NTFSx86
    Run by James at 17:19:49.14 on Tue 03/09/2010
    Internet Explorer: 7.0.6001.18000
    Microsoft® Windows Vista™ Home Basic 6.0.6001.1.1252.1.1033.18.1978.983 [GMT -5:00]

    AV: Norton Internet Security *On-access scanning enabled* (Outdated) {E10A9785-9598-4754-B552-92431C1C35F8}
    SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
    SP: Norton Internet Security *enabled* (Outdated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A}
    FW: Norton Internet Security *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

    ============== Running Processes ===============

    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyS ervice.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\Viewpoint\Common\ViewpointService.exe
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\HP\QuickPlay\QPService.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
    C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
    C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
    c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
    C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files\Internet Explorer\ieuser.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil10c.ex e
    C:\Program Files\comcasttb\CIDGlobalLight.exe
    C:\Users\James Houghton\Desktop\dds.scr

    ============== Pseudo HJT Report ===============

    uStart Page = hxxp://
    uDefault_Page_URL = hxxp:// &pf=cnnb
    uSearch Bar =
    mStart Page = hxxp:// &pf=cnnb
    mDefault_Page_URL = hxxp:// &pf=cnnb
    uInternet Settings,ProxyOverride = *.local
    uURLSearchHooks: H - No File
    uURLSearchHooks: SearchHelper Class: {91c18ed5-5e1c-4ae5-a148-a861de8c8e16} - c:\program files\sgpsa\mtwb3sh.dll
    BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
    BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
    BHO: {3806b089-6759-411d-b2c3-b7995a9f34d7} - No File
    BHO: NCO 2.0 IE BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\common files\symantec shared\coshared\browser\2.5\coIEPlg.dll
    BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\progra~1\common~1\symant~1\ids\IPSBHO.dll
    BHO: Comcast Toolbar: {79ceea4e-c231-4614-9e3b-53b2a02f39b7} - c:\program files\comcasttb\comcastdx.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
    BHO: {F0626A63-410B-45E2-99A1-3F2475B2D695} - No File
    BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
    TB: Show Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\common files\symantec shared\coshared\browser\2.5\CoIEPlg.dll
    TB: Comcast Toolbar: {79ceea4e-c231-4614-9e3b-53b2a02f39b7} - c:\program files\comcasttb\comcastdx.dll
    TB: {A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - No File
    TB: {D0523BB4-21E7-11DD-9AB7-415B56D89593} - No File
    uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
    uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
    uRun: [Aim6] "c:\program files\aim6\aim6.exe" /d locale=en-US ee://aol/imApp
    uRun: [Google Update] "c:\users\james houghton\appdata\local\google\update\GoogleUpdate. exe" /c
    uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
    uRun: [Weather] c:\program files\aws\weatherbug\Weather.exe 1
    uRun: [ComcastAntispyClient] "c:\program files\comcasttb\comcastspywarescan\ComcastAntispy. exe" /hide
    mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
    mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
    mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
    mRun: [Persistence] c:\windows\system32\igfxpers.exe
    mRun: [QPService] "c:\program files\hp\quickplay\QPService.exe"
    mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
    mRun: [QlbCtrl.exe] c:\program files\hewlett-packard\hp quick launch buttons\QlbCtrl.exe /Start
    mRun: [hpqSRMon] c:\program files\hp\digital imaging\bin\hpqSRMon.exe
    mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
    mRun: [HP Health Check Scheduler] c:\program files\hewlett-packard\hp health check\HPHC_Scheduler.exe
    mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
    mRun: [hpWirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\HPWAMain.exe
    mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
    mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
    mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
    mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
    StartupFolder: c:\users\jamesh~1\appdata\roaming\micros~1\windows \startm~1\programs\startup\imvu.lnk - c:\users\james houghton\appdata\roaming\imvuclient\IMVUQualityAge nt.exe
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
    IE: {53F6FCCD-9E22-4d71-86EA-6E43136192AB}
    IE: {925DAB62-F9AC-4221-806A-057BFB1014AA}
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
    IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://
    DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} - hxxp://
    DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://
    DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://
    Notify: igfxcui - igfxdev.dll

    ============= SERVICES / DRIVERS ===============

    R1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\symantec\defini~1\symcdata\ipsd efs\20090129.001\IDSvix86.sys [2009-2-7 270384]
    R2 AntiSpywareService;Comcast AntiSpyware;c:\program files\comcasttb\comcastspywarescan\ComcastAntiSpyS ervice.exe [2009-6-17 616408]
    R2 LiveUpdate Notice;LiveUpdate Notice;c:\program files\common files\symantec shared\CCSVCHST.EXE [2008-2-6 149352]
    R2 Recovery Service for Windows;Recovery Service for Windows;c:\windows\sminst\BLService.exe [2008-7-26 361808]
    R3 Com4QLBEx;Com4QLBEx;c:\program files\hewlett-packard\hp quick launch buttons\Com4QLBEx.exe [2008-7-26 193840]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-1-6 99376]
    R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2008-6-4 113664]
    R3 SYMNDISV;SYMNDISV;c:\windows\system32\drivers\symn disv.sys [2009-2-19 41008]
    S3 COH_Mon;COH_Mon;c:\windows\system32\drivers\COH_Mo n.sys [2008-1-12 23888]

    =============== Created Last 30 ================

    2010-03-09 21:45:36 2421760 ----a-w- c:\windows\system32\wucltux.dll
    2010-03-09 21:44:31 33792 ----a-w- c:\windows\system32\wuapp.exe
    2010-03-09 21:44:31 171608 ----a-w- c:\windows\system32\wuwebv.dll
    2010-03-09 19:34:27 0 d-----w- c:\users\jamesh~1\appdata\roaming\Auslogics
    2010-03-09 19:34:18 0 d-----w- c:\program files\Auslogics
    2010-03-09 19:26:04 0 d-----w- c:\program files\CCleaner
    2010-03-09 19:08:52 181632 ------w- c:\windows\system32\MpSigStub.exe
    2010-03-09 16:54:17 0 d-----w- c:\users\jamesh~1\appdata\roaming\Malwarebytes
    2010-03-09 16:54:04 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2010-03-09 16:53:59 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
    2010-03-09 16:53:59 0 d-----w- c:\programdata\Malwarebytes
    2010-03-09 16:53:58 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
    2010-02-18 05:42:45 0 d-----w- c:\programdata\Norton
    2010-02-10 02:06:08 0 d-----w- c:\program files\Ventrilo
    2010-02-10 02:05:56 262 ----a-w- c:\windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
    2010-02-10 02:02:45 0 d-----w- c:\program files\common files\Wise Installation Wizard

    ==================== Find3M ====================

    2010-01-27 01:19:49 39 ----a-w- c:\users\james houghton\jagex_runescape_preferences.dat
    2010-01-27 01:13:58 69 ----a-w- c:\users\james houghton\jagex_runescape_preferences2.dat
    2009-08-29 00:53:22 86016 ----a-w- c:\windows\inf\infstor.dat
    2009-08-29 00:53:22 51200 ----a-w- c:\windows\inf\infpub.dat
    2009-08-29 00:53:21 86016 ----a-w- c:\windows\inf\infstrng.dat
    2008-07-26 03:46:06 665600 ----a-w- c:\windows\inf\drvindex.dat
    2008-01-21 02:57:01 174 --sha-w- c:\program files\desktop.ini
    2006-11-02 12:39:34 30674 ----a-w- c:\windows\inf\perflib\0409\perfd.dat
    2006-11-02 12:39:34 30674 ----a-w- c:\windows\inf\perflib\0409\perfc.dat
    2006-11-02 12:39:34 287440 ----a-w- c:\windows\inf\perflib\0409\perfi.dat
    2006-11-02 12:39:34 287440 ----a-w- c:\windows\inf\perflib\0409\perfh.dat
    2006-11-02 09:20:21 287440 ----a-w- c:\windows\inf\perflib\0000\perfi.dat
    2006-11-02 09:20:21 287440 ----a-w- c:\windows\inf\perflib\0000\perfh.dat
    2006-11-02 09:20:19 30674 ----a-w- c:\windows\inf\perflib\0000\perfd.dat
    2006-11-02 09:20:19 30674 ----a-w- c:\windows\inf\perflib\0000\perfc.dat
    2008-07-26 03:45:41 8192 --sha-w- c:\windows\users\default\NTUSER.DAT

    ============= FINISH: 17:20:57.61 ===============

  2. #2
    Join Date
    May 2006
    Malvern, PA

    Re: anti-spyware?

    DDS (Ver_09-12-01.01)

    Microsoft® Windows Vista™ Home Basic
    Boot Device: \Device\HarddiskVolume1
    Install Date: 8/30/2008 12:17:15 PM
    System Uptime: 3/9/2010 4:37:14 PM (1 hours ago)

    Motherboard: Wistron | | 360B
    Processor: Genuine Intel(R) CPU 575 @ 2.00GHz | CPU | 997/667mhz

    ==== Disk Partitions =========================

    C: is FIXED (NTFS) - 140 GiB total, 82.122 GiB free.
    D: is FIXED (NTFS) - 9 GiB total, 1.697 GiB free.
    E: is CDROM ()

    ==== Disabled Device Manager Items =============

    ==== System Restore Points ===================

    ==== Installed Programs ======================

    2007 Microsoft Office Suite Service Pack 1 (SP1)
    7-Zip 4.57
    Able MIDI Editor 1.32 (remove only)
    Activation Assistant for the 2007 Microsoft Office suites
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Reader 8.1.2
    Adobe Shockwave Player
    Adobe Shockwave Player 11.5
    AIM 6
    Apple Mobile Device Support
    Apple Software Update
    Atheros Driver Installation Program
    Auslogics Disk Defrag
    AVS Audio Editor version 4.2
    AVS4YOU Software Navigator 1.3
    CA Pest Patrol Realtime Protection
    CCG Maker
    Cisco EAP-FAST Module
    Cisco LEAP Module
    Cisco PEAP Module
    Comcast Toolbar 3.0
    Compatibility Pack for the 2007 Office system
    Component Framework
    Conexant HD Audio
    Cricket EVDO Modem
    CyberLink DVD Suite
    EA Download Manager
    ESU for Microsoft Vista
    Fast Browser Search (My Web Tattoo)
    Free Realms Installer
    Google Chrome
    HDAUDIO Soft Data Fax Modem with SmartCP
    Hewlett-Packard Active Check for Health Check
    Hewlett-Packard Asset Agent for Health Check
    HP Active Support Library
    HP Customer Experience Enhancements
    HP Doc Viewer
    HP DVD Play 3.7
    HP Help and Support
    HP Photosmart Essential 2.5
    HP Quick Launch Buttons 6.40 F1
    HP Smart Web Printing
    HP Total Care Advisor
    HP Update
    HP User Guides 0121
    HP Wireless Assistant
    Intel(R) Graphics Media Accelerator Driver
    Java(TM) 6 Update 15
    Java(TM) 6 Update 5
    Jenkat Games Arcade
    LEGO Digital Designer
    LiveUpdate (Symantec Corporation)
    Malwarebytes' Anti-Malware
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office Home and Student 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office PowerPoint Viewer 2007 (English)
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Works
    Microsoft WSE 3.0 Runtime
    Move Media Player
    MSXML 4.0 SP2 (KB954430)
    muvee autoProducer 6.1
    My HP Games
    Norton AntiVirus
    Norton AntiVirus Help
    Norton Confidential Core
    Norton Internet Security
    Norton Internet Security (Symantec Corporation)
    Norton Protection Center
    QuickPlay SlingPlayer 0.4.6
    Realtek 8169 8168 8101E 8102E Ethernet Driver
    Roblox for James
    RS2Bot 1.00
    Security Update for 2007 Microsoft Office System (KB951550)
    Security Update for 2007 Microsoft Office System (KB951944)
    Security Update for 2007 Microsoft Office System (KB958439)
    Security Update for Microsoft Office Excel 2007 (KB958437)
    Security Update for Microsoft Office OneNote 2007 (KB950130)
    Security Update for Microsoft Office PowerPoint 2007 (KB951338)
    Security Update for Microsoft Office system 2007 (KB954326)
    Security Update for Microsoft Office system 2007 (KB956828)
    Security Update for Microsoft Office Word 2007 (KB956358)
    SPBBC 32bit
    Symantec Real Time Storage Protection Component
    Synaptics Pointing Device Driver
    The Sims™ 3
    The Sims™ 3 World Adventures
    Update for Microsoft Office 2007 Help for Common Features (KB957244)
    Update for Microsoft Office Excel 2007 Help (KB957242)
    Update for Microsoft Office OneNote 2007 Help (KB957245)
    Update for Microsoft Office PowerPoint 2007 Help (KB957247)
    Update for Microsoft Office Word 2007 Help (KB957252)
    Update for Microsoft Script Editor Help (KB957253)
    Update for Office 2007 (KB946691)
    Ventrilo Client
    Viewpoint Media Player
    vSide Beta
    Winferno Registry Power Cleaner
    World of Kaneva v3.2

    ==== End Of File ===========================

  3. #3
    Join Date
    Apr 2009
    USA SC

    Re: anti-spyware?

    Hi kelly

    Thats ComcastAntispyClient/CA Pest Patrol Realtime Protection that comes with Comcast Toolbar 3.0. Trying to do a scan. Other than this logs looks fine.

  4. #4
    Join Date
    May 2006
    Malvern, PA

    Re: anti-spyware?

    Kenny - that's great news!! This is the first I've seen the alert. I saw the toolbar was installed, but didn't think a toolbar would try to do a scan.

  5. #5
    Join Date
    Apr 2009
    USA SC

    Re: anti-spyware?

    There should be a Security tab on the toolbar that you can click on. I think there's one. I'm not familar with Comcast toolbar.

  6. #6
    Join Date
    May 2006
    Malvern, PA

    Re: anti-spyware?

    Comcast used to offer McAfee protection. Looks like they've changed. This may be worse than even the McAfee.

  7. #7
    Join Date
    Apr 2009
    USA SC

    Re: anti-spyware?

    Yeah there with CA.....

  8. #8

    Re: anti-spyware?

    Ca is the worst paid for product out there I know of. And that is a shame as years ago I loved an Antivirus of theirs called InnoculateIT.

  9. #9
    Join Date
    May 2006
    Malvern, PA

    Re: anti-spyware?

    So pull the Comcast - install Malwarebytes and Kapersky (or NOD32)? Is that the current recipe? There have been several iterations that I've lost track.

  10. #10

    Re: anti-spyware?

    Quote Originally Posted by kelly View Post
    So pull the Comcast - install Malwarebytes and Kapersky (or NOD32)? Is that the current recipe? There have been several iterations that I've lost track.
    Yep I would.


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts