Solved USB Drives/Devices Disappearing with Vista

[Resolved] USB Drives/Devices Disappearing with Vista

I have a Dell Studio notebook. A few weeks ago it stopped recognizing the USB Scanner (CanoScan8400F) and integrated webcam. After trying multiple fixed (drivers, deleting/reinstalling USB roots, reinstalling Vista, etc) I sent it back to Dell. I got it back on Tuesday (they swapped the motherboard) and it seemed to work OK. This morning it can't identify the scanner, USB drives, or integrated webcam again (note, it used all of them just fine yesterday and even this morning BEFORE it decided it couldn't find them.) Again, rebooting and so forth fails to address anything. (Also note: A USB printer and mouse are both working fine.)

Last night, having finally got everything reinstalled ont he notebook and working like I want, I set a restore point. Going back to that restore point this morning failed to fix anything.

While the notebook was in repairs, I was using my old desktop, which itself stopped recognizing USB drives. It had a drive on it that had been used by the notebook.

This makes me wonder if I have a virus being spread by the USB devices that is nailing them after a time. I've been trying to get advice, but I can't find anything other than "scan your USB drives" which I no longer have access to and which I don't want to plug into, say, my wife's computer if they ARE spreading some malware.

My warrantee with Dell expires on 9/24, so I'm hoping to get this figured out before then. Any help is greatly appreciated.

Below is the log I just got from DDS. If you want to see the "attach.txt" log, it is here (zipped):
http://dl.getdropbox.com/u/1732496/Attach.zip

Thanks,
Dave

DDS (Ver_09-07-30.01) - NTFSx86
Run by Dave at 11:15:52.69 on Thu 09/17/2009
Internet Explorer: 8.0.6001.18813 BrowserJavaVersion: 1.6.0_16
Microsoft® Windows Vistaâ„¢ Home Premium 6.0.6002.2.1252.1.1033.18.3061.1358 [GMT -4:00]

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\STacSV.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\aestsrv.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\opwareSE2.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Users\Dave\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\AVG\AVG8\avgui.exe
C:\Program Files\AVG\AVG8\avgscanx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Pidgin\pidgin.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Dave\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\TextPad 5\TextPad.exe
C:\Windows\system32\CMMON32.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Dave\Downloads\dds.pif
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=0080920
uWindow Title = Internet Explorer provided by Dell
uDefault_Page_URL = hxxp://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=0080920
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\dell\bae\BAE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
uRun: [DellSupportCenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P DellSupportCenter
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe "
uRun: [Google Update] "c:\users\dave\appdata\local\google\update\GoogleUpdate.exe" /c
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [ECenter] c:\dell\e-center\EULALauncher.exe
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [IAAnotif] "c:\program files\intel\intel matrix storage manager\Iaanotif.exe "
mRun: [dscactivate] "c:\program files\dell support center\gs_agent\custom\dsca.exe "
mRun: [Dell Webcam Central] "c:\program files\dell webcam\dell webcam central\WebcamDell.exe" /mode2
mRun: [PCMService] "c:\program files\dell\mediadirect\PCMService.exe "
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe "
mRun: [DellSupportCenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [OpwareSE2] "c:\program files\scansoft\omnipagese2.0\OpwareSE2.exe "
mRun: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe "
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe "
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
StartupFolder: c:\users\dave\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\dave\appdata\roaming\dropbox\bin\Dropbox.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickset.lnk - c:\program files\dell\quickset\quickset.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
TCP: {BFD08628-8E39-4D89-8606-216E25118929} = 140.177.10.1 140.177.10.65
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: avgrsstx.dll

================= FIREFOX ===================

FF - ProfilePath - c:\users\dave\appdata\roaming\mozilla\firefox\profiles\tmem4prr.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?hl=en
FF - prefs.js: keyword.URL - hxxp://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_us&p=
FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll
FF - plugin: c:\users\dave\appdata\local\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\users\dave\appdata\roaming\mozilla\plugins\npgoogletalk.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.enforce_same_site_origin ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.cache_size ", 51200);
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.ogg.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.wave.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "media.autoplay.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.urlbar.autocomplete.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "capability.policy.mailnews.*.wholeText ", "noAccess ");
c:\program files\mozilla firefox\greprefs\all.js - pref( "dom.storage.default_quota ", 5120);
c:\program files\mozilla firefox\greprefs\all.js - pref( "content.sink.event_probe_rate ", 3);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.http.prompt-temp-redirect ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "layout.css.dpi ", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref( "layout.css.devPixelsPerPx ", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref( "gestures.enable_single_finger_input ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "dom.max_chrome_script_run_time ", 0);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.tcp.sendbuffer ", 131072);
c:\program files\mozilla firefox\greprefs\all.js - pref( "geo.enabled ", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.remember_cert_checkbox_default_setting ", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "browser.search.param.yahoo-fr ", "moz35 ");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "browser.search.param.yahoo-fr-cjkt ", "moz35 ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "extensions.blocklist.level ", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.urlbar.restrict.typed ", "~ ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.urlbar.default.behavior ", 0);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.history ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.formdata ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.passwords ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.downloads ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.cookies ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.cache ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.sessions ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.offlineApps ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.clearOnShutdown.siteSettings ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.history ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.formdata ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.passwords ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.downloads ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.cookies ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.cache ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.sessions ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.offlineApps ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.cpd.siteSettings ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "privacy.sanitize.migrateFx3Prefs ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.ssl_override_behavior ", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "security.alternate_certificate_error_page ", "certerror ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.privatebrowsing.autostart ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.privatebrowsing.dont_prompt_on_enter ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "geo.wifi.uri ", "https://www.google.com/loc/json ");

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-9-17 335240]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-9-17 108552]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\driverstore\filerepository\stwrt.inf_238116a1\AEstSrv.exe [2008-9-20 73728]
R2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2008-5-2 161048]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [2008-9-20 111616]
R3 itecir;ITECIR Infrared Receiver;c:\windows\system32\drivers\itecir.sys [2008-9-20 54784]
R3 k57nd60x;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\k57nd60x.sys [2008-9-20 203264]
S3 OA001Ufd;Creative Camera OA001 Upper Filter Driver;c:\windows\system32\drivers\OA001Ufd.sys [2008-9-20 144672]
S3 OA001Vid;Creative Camera OA001 Function Driver;c:\windows\system32\drivers\OA001Vid.sys [2008-9-20 277504]

=============== Created Last 30 ================

2009-09-17 11:12 <DIR> --d----- c:\program files\Trend Micro
2009-09-17 10:39 <DIR> --d-h--- C:\$AVG8.VAULT$
2009-09-17 10:33 108,552 a------- c:\windows\system32\drivers\avgtdix.sys
2009-09-17 10:33 11,952 a------- c:\windows\system32\avgrsstx.dll
2009-09-17 10:33 335,240 a------- c:\windows\system32\drivers\avgldx86.sys
2009-09-17 10:33 <DIR> --d----- c:\windows\system32\drivers\Avg
2009-09-17 10:33 <DIR> --d----- c:\programdata\AVG Security Toolbar
2009-09-17 10:33 <DIR> --d----- c:\progra~2\AVG Security Toolbar
2009-09-17 10:32 <DIR> --d----- c:\program files\AVG
2009-09-17 10:32 <DIR> --d----- c:\programdata\avg8
2009-09-17 10:32 <DIR> --d----- c:\progra~2\avg8
2009-09-17 10:30 <DIR> --d----- c:\users\dave\appdata\roaming\AVG8
2009-09-16 14:32 <DIR> --d----- c:\program files\JRE
2009-09-16 10:30 <DIR> --d----- c:\program files\common files\Jasc Software Inc
2009-09-16 10:30 <DIR> --d----- c:\program files\Jasc Software Inc
2009-09-16 09:33 <DIR> --d----- c:\program files\WinSCP
2009-09-16 09:10 <DIR> --d----- c:\program files\uTorrent
2009-09-16 09:10 <DIR> --d----- c:\users\dave\appdata\roaming\uTorrent
2009-09-16 09:01 <DIR> --d----- c:\programdata\Apple Computer
2009-09-16 09:00 <DIR> --d----- c:\programdata\Apple
2009-09-16 08:10 210,975,029 a------- c:\windows\MEMORY.DMP
2009-09-15 21:13 <DIR> --d----- c:\program files\Drivers
2009-09-15 21:00 <DIR> --d----- c:\program files\Pidgin
2009-09-15 20:48 <DIR> --d----- c:\users\dave\appdata\roaming\OpenOffice.org
2009-09-15 20:36 995,383 a------- c:\windows\system32\temp.004
2009-09-15 20:36 69,632 a------- c:\windows\system32\temp.005
2009-09-15 20:36 278,581 a------- c:\windows\system32\temp.003
2009-09-15 20:31 995,383 a------- c:\windows\system32\temp.001
2009-09-15 20:31 378,880 a------- c:\windows\system32\KXauth.dll
2009-09-15 20:31 135,168 a------- c:\windows\system32\KXproc.dll
2009-09-15 20:31 69,632 a------- c:\windows\system32\temp.002
2009-09-15 20:31 24,576 a------- c:\windows\system32\KXAdapter.dll
2009-09-15 20:31 278,581 a------- c:\windows\system32\temp.000
2009-09-15 20:30 <DIR> --d----- c:\program files\Quest Software
2009-09-15 20:28 <DIR> --d----- C:\ORANT
2009-09-15 20:26 <DIR> --d----- c:\program files\Oracle
2009-09-15 18:59 <DIR> --d----- C:\open
2009-09-05 01:54 94,208 a------- c:\windows\system32\QuickTimeVR.qtx
2009-09-05 01:54 69,632 a------- c:\windows\system32\QuickTime.qts
2009-08-27 12:02 <DIR> --d----- c:\users\dave\appdata\roaming\MySQL
2009-08-27 12:01 <DIR> --d----- c:\program files\CDisplay
2009-08-27 11:59 <DIR> --d----- c:\program files\MySQL
2009-08-27 10:35 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2009-08-27 10:33 <DIR> --d----- c:\users\dave\appdata\roaming\Dropbox
2009-08-27 01:21 <DIR> --d----- c:\users\dave\appdata\roaming\FastStone
2009-08-27 01:16 <DIR> --d----- c:\program files\OpenOffice.org 3
2009-08-27 01:15 411,368 a------- c:\windows\system32\deploytk.dll
2009-08-27 00:59 <DIR> --d----- c:\program files\FastStone Image Viewer
2009-08-27 00:25 <DIR> --d----- c:\programdata\WindowsSearch
2009-08-26 23:55 <DIR> --d----- c:\users\dave\appdata\roaming\.purple
2009-08-26 23:54 <DIR> --d----- c:\program files\common files\GTK
2009-08-26 23:40 <DIR> --d----- c:\users\dave\appdata\roaming\Helios
2009-08-26 23:39 <DIR> --d----- c:\program files\TextPad 5
2009-08-26 23:24 <DIR> --d----- c:\program files\MozBackup
2009-08-26 23:04 <DIR> --d----- c:\program files\Canon
2009-08-26 23:03 <DIR> --d----- c:\programdata\SSScanWizard
2009-08-26 23:03 <DIR> --d----- c:\programdata\SSScanAppDataDir
2009-08-26 23:03 <DIR> --d----- c:\progra~2\SSScanWizard
2009-08-26 23:03 <DIR> --d----- c:\progra~2\SSScanAppDataDir
2009-08-26 23:03 532 a------- c:\windows\MAXLINK.INI
2009-08-26 23:02 <DIR> --d----- c:\program files\ScanSoft
2009-08-26 23:02 <DIR> --d----- c:\program files\common files\ScanSoft Shared
2009-08-26 22:52 <DIR> --d----- c:\windows\system32\vi-VN
2009-08-26 22:52 <DIR> --d----- c:\windows\system32\eu-ES
2009-08-26 22:52 <DIR> --d----- c:\windows\system32\ca-ES
2009-08-26 22:49 <DIR> --d----- c:\windows\system32\SPReview
2009-08-26 22:41 928,768 a------- c:\windows\system32\scavenge.dll
2009-08-26 22:39 183,808 a------- c:\windows\system32\eapphost.dll
2009-08-26 22:38 56,320 a------- c:\windows\system32\xmlfilter.dll
2009-08-26 22:36 <DIR> --d----- c:\windows\system32\EventProviders
2009-08-26 22:29 0 a------- c:\windows\system32\null
2009-08-26 22:21 72,704 a------- c:\windows\system32\admparse.dll
2009-08-26 22:00 2,048 a------- c:\windows\system32\tzres.dll
2009-08-26 21:55 389,180 a------- c:\windows\system32\UCS32P.DLL
2009-08-26 21:55 327,680 a------- c:\windows\system32\CNQL3202.dll
2009-08-26 21:55 69,632 a------- c:\windows\system32\CNQU102.DLL
2009-08-26 21:55 69,632 a------- c:\windows\system32\CNQA3202.dll
2009-08-26 21:55 <DIR> --d-h--- C:\CanoScan
2009-08-26 21:38 41,984 a------- c:\windows\system32\netfxperf.dll
2009-08-26 21:37 2,034,688 a------- c:\windows\system32\win32k.sys
2009-08-26 21:28 1,524,736 a------- c:\windows\system32\wucltux.dll
2009-08-26 21:27 83,456 a------- c:\windows\system32\wudriver.dll
2009-08-26 21:27 162,064 a------- c:\windows\system32\wuwebv.dll
2009-08-26 21:27 31,232 a------- c:\windows\system32\wuapp.exe
2009-08-26 21:25 <DIR> --d----- c:\users\dave\appdata\roaming\Dell
2009-08-26 21:25 <DIR> --d----- c:\users\Dave
2009-08-26 21:22 <DIR> --dsh--- c:\programdata\Documents
2009-08-26 21:22 <DIR> --dsh--- C:\Documents and Settings

==================== Find3M ====================

2009-08-26 22:56 143,360 a------- c:\windows\inf\infstrng.dat
2009-08-26 22:56 86,016 a------- c:\windows\inf\infstor.dat
2009-08-26 22:56 51,200 a------- c:\windows\inf\infpub.dat
2009-08-26 22:52 665,600 a------- c:\windows\inf\drvindex.dat
2009-08-14 12:27 904,776 a------- c:\windows\system32\drivers\tcpip.sys
2009-08-14 11:53 17,920 a------- c:\windows\system32\netevent.dll
2009-08-14 09:49 9,728 a------- c:\windows\system32\TCPSVCS.EXE
2009-08-14 09:49 17,920 a------- c:\windows\system32\ROUTE.EXE
2009-08-14 09:49 11,264 a------- c:\windows\system32\MRINFO.EXE
2009-08-14 09:49 27,136 a------- c:\windows\system32\NETSTAT.EXE
2009-08-14 09:49 19,968 a------- c:\windows\system32\ARP.EXE
2009-08-14 09:49 8,704 a------- c:\windows\system32\HOSTNAME.EXE
2009-08-14 09:49 10,240 a------- c:\windows\system32\finger.exe
2009-08-14 09:48 30,720 a------- c:\windows\system32\drivers\tcpipreg.sys
2009-08-14 09:48 105,984 a------- c:\windows\system32\netiohlp.dll
2009-07-21 17:52 915,456 a------- c:\windows\system32\wininet.dll
2009-07-21 17:47 109,056 a------- c:\windows\system32\iesysprep.dll
2009-07-21 17:47 71,680 a------- c:\windows\system32\iesetup.dll
2009-07-21 16:13 133,632 a------- c:\windows\system32\ieUnatt.exe
2009-07-17 09:54 71,680 a------- c:\windows\system32\atl.dll
2009-07-15 08:40 8,147,456 a------- c:\windows\system32\wmploc.DLL
2009-07-15 08:39 313,344 a------- c:\windows\system32\wmpdxm.dll
2009-07-15 08:39 4,096 a------- c:\windows\system32\dxmasf.dll
2009-07-15 08:39 7,680 a------- c:\windows\system32\spwmp.dll
2009-07-11 15:01 513,536 a------- c:\windows\system32\wlansvc.dll
2009-07-11 15:01 302,592 a------- c:\windows\system32\wlansec.dll
2009-07-11 15:01 293,376 a------- c:\windows\system32\wlanmsm.dll
2009-07-11 15:01 65,024 a------- c:\windows\system32\wlanapi.dll
2009-07-11 13:03 127,488 a------- c:\windows\system32\L2SecHC.dll
2008-01-20 22:43 174 a--sh--- c:\program files\desktop.ini
2006-11-02 08:42 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 08:42 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 08:42 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 08:42 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 05:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 05:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 05:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 05:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2008-09-20 14:57 76 a--shr-- c:\windows\CT4CET.bin

============= FINISH: 11:16:46.29 ===============

 

DDS "Attach" log:

DDS (Ver_09-07-30.01)

Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume3
Install Date: 9/20/2008 9:39:39 AM
System Uptime: 9/17/2009 10:22:37 AM (1 hours ago)

Motherboard: Dell Inc. | |
Processor: Intel(R) Core(TM)2 Duo CPU T5750 @ 2.00GHz | Microprocessor | 2000/166mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 223 GiB total, 105.052 GiB free.
D: is FIXED (NTFS) - 10 GiB total, 5.42 GiB free.
E: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP38: 9/15/2009 8:30:43 PM - Installed Toad for Oracle Read Only
RP39: 9/15/2009 8:33:43 PM - Removed Toad for Oracle Read Only
RP40: 9/15/2009 8:35:43 PM - Installed Toad for Oracle Read Only
RP41: 9/15/2009 10:12:46 PM - Windows Update
RP42: 9/16/2009 9:00:42 AM - Installed QuickTime
RP43: 9/16/2009 9:40:32 AM - Installed Opera 10.00.
RP44: 9/16/2009 10:30:05 AM - Installed Jasc Paint Shop Pro 9
RP45: 9/16/2009 10:32:15 AM - Installed Jasc Animation Shop 3
RP46: 9/16/2009 1:52:59 PM - Installed Java(TM) 6 Update 15
RP47: 9/16/2009 1:58:13 PM - Removed OpenOffice.org 3.1
RP48: 9/16/2009 2:30:25 PM - Installed Java(TM) 6 Update 16
RP49: 9/16/2009 2:31:45 PM - Installed OpenOffice.org 3.1
RP50: 9/16/2009 7:08:05 PM - Windows Update
RP51: 9/16/2009 9:57:02 PM - mackboop_return
RP52: 9/17/2009 10:20:33 AM - Restore Operation
RP53: 9/17/2009 10:27:47 AM - Windows Update
RP54: 9/17/2009 10:32:15 AM - Installed AVG Free 8.5

==== Installed Programs ======================

µTorrent
Acrobat.com
Adobe AIR
Adobe Flash Player 10 Plugin
Adobe Flash Player ActiveX
Adobe Reader 9
Advanced Audio FX Engine
Apple Application Support
Apple Software Update
Aspell English Dictionary-0.50-2
AVG Free 8.5
Browser Address Error Redirector
CanoScan Toolbox Ver4.8
CDisplay 1.8
Dell Best of Web
Dell Dock
Dell Getting Started Guide
Dell Support Center (Support Software)
Dell Touchpad
Dell Video Chat (remove only)
Dell Webcam Central
Dropbox
EDocs
FastStone Image Viewer 3.9
GNU Aspell 0.50-3
Google Talk Plugin
Google Toolbar for Internet Explorer
GoToAssist 8.0.0.514
GTK+ Runtime 2.14.7 rev a (remove only)
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Integrated Webcam Driver (1.02.02.0603)
Intel(R) Matrix Storage Manager
ITECIR Driver
Jasc Animation Shop 3
Jasc Paint Shop Pro 9
Java(TM) 6 Update 16
Java(TM) 6 Update 5
Knowledge Xpert for PLSQL V9.1
Live! Cam Avatar Creator
MediaDirect
Microsoft .NET Framework 3.5 SP1
Microsoft Visual C++ 2005 Redistributable
MozBackup 1.4.9
Mozilla Firefox (3.5.3)
Mozilla Thunderbird (2.0.0.23)
MySQL Tools for 5.0
OmniPage SE 2.0
OpenOffice.org 3.1
Opera 10.00
Pidgin
QuickSet
QuickTime
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Express Labeler 3
Roxio Update Manager
TextPad 5
Toad for Oracle Read Only
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Winamp
WinSCP 4.1.9

==== Event Viewer Messages From Past Week ========

9/17/2009 11:09:56 AM, Error: Server [2505] - The server could not bind to the transport \Device\NetBT_Tcpip_{BFD08628-8E39-4D89-8606-216E25118929} because another computer on the network has the same name. The server could not start.

==== End Of File ===========================

 

Okay, folks, I really do appreciate your help with this one. I'm happy to confirm that it is NOT a malware issue. I figured out last night and confirmed this morning what the problem has been all aloong:

The USB Printer.

It's an HP LaserJet 1020 that has been working fine this whole time. When I posted yesterday that nothing had changed between the devices working and then not working, I realized later that wasn't true: I had moved the printer from the desktop (where USB devices had stopped working) to the notebook (where USB devices then stopped working). I can now replicate the issue. If the printer is plugged in, it kills drives and the scanner (and, eventually, the webcam). If it's not, everything works fine.

I feel stupid not noticing this earlier. I guess I was using the printer as a test on the USB hub, since I could just send a print job to it. And the printer itself never failed, it was just killing the other devices.

Still, I'm glad to find out there are no threats on my machine. Me and the printer and an aluminum bat will now have a discussion out back.

Thank you all for your help. This issue is now resolved.