DDS (Ver_09-02-01.01) - NTFSx86 Run by Jeff Hall at 20:30:42.93 on Wed 02/11/2009 Internet Explorer: 7.0.6000.16809 Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1033.18.1014.143 [GMT -5:00] AV: AVG *On-access scanning disabled* (Outdated) ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\System32\WLTRAY.EXE C:\Program Files\Dell\QuickSet\quickset.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Common Files\AOL\1170288085\ee\aolsoftware.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Dell\MediaDirect\PCMService.exe C:\Windows\stsystra.exe C:\Program Files\TurboHddUsb\TurboHddUsb.exe C:\Windows\System32\mobsync.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\System32\ctfmon.exe C:\Program Files\Dell Support\DSAgnt.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Luxor BEAM\luxor.exe C:\Program Files\AOL 9.1\waol.exe C:\Program Files\Nikon\NkView5\NkvMon.exe C:\Program Files\ArcSoft\TotalMedia Backup & Record\uBBMonitor.exe C:\Program Files\Southwest Airlines\Ding\Ding.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\WINDOWS\wanmpsvc.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\WINDOWS\System32\WLTRYSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\WINDOWS\System32\bcmwltry.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\AOL 9.1\shellmon.exe C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe C:\Windows\system32\wuauclt.exe C:\Windows\Explorer.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Common Files\AOL\Topspeed\3.0\aoltpsd3.exe C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe C:\Windows\system32\WUDFHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Users\Jeff Hall\Desktop\dds.scr C:\Windows\system32\SearchFilterHost.exe ============== Pseudo HJT Report =============== mDefault_Page_URL = hxxp://www.dell.com mStart Page = hxxp://www.dell.com uInternet Settings,ProxyOverride = *.local mSearchAssistant = hxxp://www.google.com/hws/sb/dell-usuk-rel/en/side.html?channel=us BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.5.0_06\bin\ssv.dll BHO: AOL Toolbar Launcher: {7c554162-8cb7-45a4-b8f4-8ea1c75885f9} - c:\program files\aol\aol toolbar 5.0\aoltb.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar2.dll BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\bae\BAE.dll TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar2.dll TB: AOL Toolbar: {de9c389f-3316-41a7-809b-aa305ed9d922} - c:\program files\aol\aol toolbar 5.0\aoltb.dll uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [DellSupport] "c:\program files\dell support\DSAgnt.exe" /startup uRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe uRun: [Yahoo! Pager] "c:\program files\yahoo!\messenger\YahooMessenger.exe" -quiet uRun: [Luxor Beam] c:\program files\luxor beam\luxor.exe uRun: [Aim6] uRun: [AOL Fast Start] "c:\program files\aol 9.1\AOL.EXE" -b mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide mRun: [AOLDialer] c:\program files\common files\aol\acs\AOLDial.exe mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe mRun: [Dell QuickSet] c:\program files\dell\quickset\quickset.exe mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup mRun: [HostManager] c:\program files\common files\aol\1170288085\ee\AOLSoftware.exe mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe" mRun: [HP Software Update] "c:\program files\hewlett-packard\hp software update\HPWuSchd2.exe" mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb10.exe mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start mRun: [PCMService] "c:\program files\dell\mediadirect\PCMService.exe" mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup mRun: [SigmatelSysTrayApp] stsystra.exe mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe mRun: [TurboHddUsb] c:\program files\turbohddusb\TurboHddUsb.exe mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe" mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe" StartupFolder: c:\users\jeffha~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\ding!.lnk - c:\program files\southwest airlines\ding\Ding.exe StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\nkvmon~1.lnk - c:\program files\nikon\nkview5\NkvMon.exe StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\totalm~1.lnk - c:\program files\arcsoft\totalmedia backup & record\uBBMonitor.exe IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC} - c:\program files\java\jre1.5.0_06\bin\ssv.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~4\office12\ONBttnIE.dll IE: {3369AF0D-62E9-4bda-8103-B4C75499B578} - {DE9C389F-3316-41A7-809B-AA305ED9D922} - c:\program files\aol\aol toolbar 5.0\aoltb.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office12\REFIEBAR.DLL DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll AppInit_DLLs: c:\progra~1\google\google~1\GOEC62~1.DLL,avgrsstx.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll ================= FIREFOX =================== FF - ProfilePath - c:\users\jeffha~1\appdata\roaming\mozilla\firefox\profiles\gkxvrjhc.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.ebay.com/ FF - plugin: c:\program files\java\jre1.5.0_06\bin\NPJava11.dll FF - plugin: c:\program files\java\jre1.5.0_06\bin\NPJava12.dll FF - plugin: c:\program files\java\jre1.5.0_06\bin\NPJava13.dll FF - plugin: c:\program files\java\jre1.5.0_06\bin\NPJava14.dll FF - plugin: c:\program files\java\jre1.5.0_06\bin\NPJava32.dll FF - plugin: c:\program files\java\jre1.5.0_06\bin\NPJPI150_06.dll FF - plugin: c:\program files\java\jre1.5.0_06\bin\NPOJI610.dll FF - plugin: c:\program files\mozilla firefox\plugins\npViewpoint.dll FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll FF - plugin: c:\users\jeff hall\appdata\roaming\mozilla\firefox\profiles\gkxvrjhc.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp07076007.dll ============= SERVICES / DRIVERS =============== R1 FNETURPX;FNETURPX;c:\windows\system32\drivers\FNETURPX.SYS [2008-9-22 7040] R2 avg8wd;AVG8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2008-3-22 282904] R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2007-2-15 24652] S3 FNETTBOH;FNETTBOH;c:\windows\system32\drivers\FNETTBOH.SYS [2008-9-22 17792] =============== Created Last 30 ================ 2009-02-10 23:12 --d----- c:\program files\Trend Micro 2009-01-31 12:35 92,735,930 a------- c:\windows\MEMORY.DMP 2009-01-30 23:42 97,800 a------- c:\windows\system32\infocardapi.dll 2009-01-30 23:42 105,016 a------- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll 2009-01-30 23:41 37,384 a------- c:\windows\system32\infocardcpl.cpl 2009-01-30 23:41 622,080 a------- c:\windows\system32\icardagt.exe 2009-01-30 23:41 43,544 a------- c:\windows\system32\PresentationHostProxy.dll 2009-01-30 23:41 11,264 a------- c:\windows\system32\icardres.dll 2009-01-30 23:41 781,344 a------- c:\windows\system32\PresentationNative_v0300.dll 2009-01-30 23:41 326,160 a------- c:\windows\system32\PresentationHost.exe 2009-01-30 23:37 49,152 a------- c:\windows\ocsetup_cbs_install_NetFx3.perf 2009-01-30 23:37 16,384 a------- c:\windows\ocsetup_cbs_install_NetFx3.dpx 2009-01-30 23:37 33,996,800 a------- c:\windows\ocsetup_install_NetFx3.etl 2009-01-30 23:25 96,760 a------- c:\windows\system32\dfshim.dll 2009-01-30 23:25 282,112 a------- c:\windows\system32\mscoree.dll 2009-01-30 23:25 41,984 a------- c:\windows\system32\netfxperf.dll 2009-01-30 23:25 158,720 a------- c:\windows\system32\mscorier.dll 2009-01-30 23:24 83,968 a------- c:\windows\system32\mscories.dll 2009-01-28 20:40 --d----- c:\programdata\NOS 2009-01-14 19:44 290,304 a------- c:\windows\system32\drivers\srv.sys ==================== Find3M ==================== 2009-01-14 23:16 826,368 a------- c:\windows\system32\wininet.dll 2009-01-14 23:16 56,320 a------- c:\windows\system32\iesetup.dll 2009-01-14 23:16 52,736 a------- c:\windows\apppatch\iebrshim.dll 2009-01-14 23:15 26,624 a------- c:\windows\system32\ieUnatt.exe 2008-12-10 18:15 174 a--sh--- c:\program files\desktop.ini 2008-12-02 22:09 86,016 a------- c:\windows\inf\infstor.dat 2008-12-02 22:09 51,200 a------- c:\windows\inf\infpub.dat 2008-12-02 22:09 86,016 a------- c:\windows\inf\infstrng.dat 2008-09-17 21:29 55,156 a------- c:\users\jeff hall\CP3.zip 2008-06-12 01:03 665,600 a------- c:\windows\inf\drvindex.dat 2008-03-05 22:58 6,029,648 a------- c:\users\jeff hall\Firefox Setup 2.0.0.12.exe 2008-01-02 19:56 2,879,421 a------- c:\users\jeff hall\simtower.zip 2007-12-21 23:22 1,660,378 a------- c:\users\jeff hall\SimCity Classic.zip 2007-10-31 21:10 9,525,699 a------- c:\users\jeff hall\95_logos.zip 2006-11-02 07:42 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat 2006-11-02 07:42 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat 2006-11-02 07:42 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat 2006-11-02 07:42 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat 2006-11-02 04:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat 2006-11-02 04:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat 2006-11-02 04:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat 2006-11-02 04:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat 2007-09-12 22:23 16,384 a--sh--- c:\windows\serviceprofiles\localservice\appdata\local\microsoft\windows\history\history.ie5\index.dat 2007-09-12 22:23 32,768 a--sh--- c:\windows\serviceprofiles\localservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat 2007-09-12 22:23 16,384 a--sh--- c:\windows\serviceprofiles\localservice\appdata\roaming\microsoft\windows\cookies\index.dat 2007-04-01 23:51 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007040220070403\index.dat 2007-06-17 22:15 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007061720070618\index.dat 2007-06-23 22:28 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007062320070624\index.dat 2007-06-29 21:08 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007062920070630\index.dat 2007-07-08 00:28 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007070820070709\index.dat 2007-07-13 20:47 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007071320070714\index.dat 2007-07-25 17:37 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007072520070726\index.dat 2007-10-11 20:13 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007101120071012\index.dat 2007-10-20 20:44 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007102020071021\index.dat 2007-10-27 19:06 32,768 a--sh--- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012007102720071028\index.dat 2007-01-05 15:20 8,192 a--sh--- c:\windows\users\default\NTUSER.DAT ============= FINISH: 20:32:50.07 ===============