DDS (Ver_11-03-05.01) - NTFSx86
Run by Administrator at 8:59:33.90 on Thu 09/05/2013
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.7.2
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1049 [GMT -5:00]
.
AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: StopSign® Antivirus *Enabled/Updated* {3E1D4556-3240-40c8-BBED-64A8690A3FB4}
FW: StopSign® Firewall *Enabled*
.
============== Running Processes ===============
.
C:\WINDOWS\VPDAgent.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Lexmark 8300 Series\lxcjmon.exe
C:\Program Files\Lexmark 8300 Series\ezprint.exe
C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe
C:\Program Files\StopSign\OnAccess\onaccess.exe
C:\PROGRA~1\StopSign\POPUPB~1\sspopupblockerctrl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\dvd43\dvd43_tray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\EACCEL~1\FRAMEW~1\eac_productsvc.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Neat\exec\NeatStartupService.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\PROGRA~1\EACCEL~1\FRAMEW~1\eac_svc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\StopSign\Firewall\FWService.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\StopSign\ThreatScanner\engines\vipre\viprecomsvc.exe
C:\WINDOWS\system32\lxcjcoms.exe
C:\Program Files\eAcceleration\Station\station_bk.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\SeaMonkey\seamonkey.exe
C:\Program Files\SeaMonkey\plugin-container.exe
C:\Documents and Settings\Administrator\Desktop\MELWARE\dds.scr
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.iminent.com/?appId=1C89CFA ... BCFB8F4BAC
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.google.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: H - No File
mURLSearchHooks: H - No File
mWinlogon: Userinit=c:\windows\system32\Userinit.exe
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: {b753c7c5-0942-4b7f-bc27-942b52bdac66} - c:\progra~1\stopsign\popupb~1\sspopupblocker.dll
BHO: Act.UI.InternetExplorer.Plugins.AttachFile.CAttachFile: {d5233fcd-d258-4903-89b8-fb1568e7413d} - mscoree.dll
BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - No File
BHO: {E7DD70DE-3940-7EDF-BB76-1DB87353DF22} - No File
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
uRun: [Smart PC Booster Startup Dialog] "c:\program files\ask4expert\smart pc booster 7\Helper.exe" --windows-startup-nag-dialog --windows-startup
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
c:\documents and settings\administrator\local settings\temp\a.tmp\temp00
mRun: [lxcjmon.exe] "c:\program files\lexmark 8300 series\lxcjmon.exe"
mRun: [EzPrint] "c:\program files\lexmark 8300 series\ezprint.exe"
mRun: [webscan] "c:\program files\acceleration software\anti-virus\stopsignav.exe" -k
mRun: [SoftwareStation] "c:\program files\eacceleration\station\station.exe" /b Startup
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [OnAccess] "c:\program files\stopsign\onaccess\onaccess.exe" -erk
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [StopSignPopupBlocker] c:\progra~1\stopsign\popupb~1\sspopupblockerctrl.exe /Startup
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [LXCJCATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\LXCJtime.dll,_RunDLLEntry@16
mRun: [dvd43] c:\program files\dvd43\dvd43_tray.exe
c:\documents and settings\administrator\local settings\temp\a.tmp\temp00
c:\documents and settings\administrator\local settings\temp\a.tmp\temp00
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/ ... ontrol.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/microso ... 1318987109
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microso ... 0472385019
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8BBDC81D-81B3-49EE-87E8-47B7A707FAE8} - hxxps://www2.gotomeeting.com/default/ap ... 2mdlax.cab
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/s ... wflash.cab
TCP: {D9895870-0F22-417D-9EDD-62ECEFD39F4B} = 192.168.2.1
Notify: AtiExtEvent - Ati2evxx.dll
Notify: igfxcui - igfxsrvc.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: ExecuteMonitorShellHook Class: {42dd0873-5fa9-465d-90de-0826020416a5} - c:\program files\stopsign\onaccess\onaccess_hk32.dll
mASetup: Neat ADF Scanner 2008 - reg copy "HKLM\Software\The Neat Company\Neat ADF Scanner 2008" "HKCU\Software\The Neat Company\Neat ADF Scanner 2008" /s /f
mASetup: Send To Neat - reg copy "HKLM\Software\The Neat Company\Send To Neat" "HKCU\Software\The Neat Company\Send To Neat" /s /f
.
============= SERVICES / DRIVERS ===============
.
R0 fwcore;Fwcore Filter;c:\windows\system32\drivers\fwcore.sys [2013-8-21 111520]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-8-30 37664]
R1 CbFs;CbFs;c:\windows\system32\drivers\cbfs.sys [2012-4-14 146904]
R2 Agent;VPDAgent;c:\windows\VPDAgent.exe [2013-7-26 192512]
R2 DLPORTIO;DLPORTIO;c:\windows\Dlportio.sys [2009-1-18 3584]
R2 eac_notifysvc;eAcceleration Notification Service;c:\progra~1\eaccel~1\framew~1\eac_svc.exe [2013-7-26 115784]
R2 eac_productsvc;eAcceleration Product Manager Service;c:\progra~1\eaccel~1\framew~1\eac_productsvc.exe [2013-7-26 264152]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2010-3-19 54752]
R2 FWService;FWService;c:\program files\stopsign\firewall\fwservice.exe -service --> c:\program files\stopsign\firewall\FWService.exe -Service [?]
R2 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files\common files\intuit\update service v4\IntuitUpdateService.exe [2012-8-23 13672]
R2 Neat Startup Service;Neat Startup Service;c:\program files\neat\exec\NeatStartupService.exe [2013-6-26 5632]
R2 ssfwmonsvc;StopSign® Firewall Security Center Provider;c:\progra~1\eaccel~1\framew~1\eac_svc.exe [2013-7-26 115784]
R2 sstsmonsvc;StopSign® Antivirus Security Center Provider;c:\progra~1\eaccel~1\framew~1\eac_svc.exe [2013-7-26 115784]
R3 tgiul50;tgiul50;c:\windows\system32\drivers\tgiulnt5.sys [2012-4-18 138528]
R3 viprecomsvc;viprecomsvc;c:\program files\stopsign\threatscanner\engines\vipre\viprecomsvc.exe [2013-7-26 182224]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\avgidseh.sys --> c:\windows\system32\drivers\AVGIDSEH.Sys [?]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys --> c:\windows\system32\drivers\avgrkx86.sys [?]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys --> c:\windows\system32\drivers\avgldx86.sys [?]
S1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys --> c:\windows\system32\drivers\avgmfx86.sys [?]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys --> c:\windows\system32\drivers\avgtdix.sys [?]
S2 ACT! Scheduler;ACT! Scheduler;c:\program files\act\act for windows\Act.Scheduler.exe [2010-12-21 81920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-5-16 116648]
S2 Sage ACT! Scheduler;Sage ACT! Scheduler;c:\program files\act\act for windows\Act.Scheduler.exe [2010-12-21 81920]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
S2 USBDLM;USBDLM;f:\usbdlm.exe --> f:\USBDLM.exe [?]
S2 vToolbarUpdater15.5.0;vToolbarUpdater15.5.0;c:\program files\common files\avg secure search\vtoolbarupdater\15.5.0\toolbarupdater.exe --> c:\program files\common files\avg secure search\vtoolbarupdater\15.5.0\ToolbarUpdater.exe [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-1 257416]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriver.sys --> c:\windows\system32\drivers\AVGIDSDriver.Sys [?]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilter.sys --> c:\windows\system32\drivers\AVGIDSFilter.Sys [?]
S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshim.sys --> c:\windows\system32\drivers\AVGIDSShim.Sys [?]
S3 cpuz132;cpuz132;\??\c:\docume~1\admini~1\locals~1\temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\admini~1\locals~1\temp\cpuz132\cpuz132_x32.sys [?]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-4-28 704872]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-5-16 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-7-30 114144]
S3 MSSQL$ACT7;SQL Server (ACT7);c:\program files\microsoft sql server\mssql10_50.act7\mssql\binn\sqlservr.exe [2010-5-5 42884448]
S3 MusCAudio;MusCAudio;c:\windows\system32\drivers\MusCAudio.sys [2009-7-27 23096]
S3 SWDUMon;SWDUMon;c:\windows\system32\drivers\SWDUMon.sys [2013-7-2 13464]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2004-8-4 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-4-18 754856]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2010-5-5 44896]
S4 RsFx0150;RsFx0150 Driver;c:\windows\system32\drivers\RsFx0150.sys [2010-4-3 240608]
S4 SQLAgent$ACT7;SQL Server Agent (ACT7);c:\program files\microsoft sql server\mssql10_50.act7\mssql\binn\SQLAGENT.EXE [2010-5-5 367456]
.
=============== Created Last 30 ================
.
2013-09-02 20:21:11 18816 ----a-w- c:\windows\system32\drivers\dvd43llh.sys
2013-09-02 20:21:09 -------- d-----w- c:\program files\dvd43
2013-08-30 15:08:01 -------- d-----w- C:\AdwCleaner
2013-08-30 09:33:18 -------- d-----w- c:\docume~1\admini~1\locals~1\applic~1\AVG SafeGuard toolbar
2013-08-30 09:32:04 -------- d-----w- c:\docume~1\admini~1\applic~1\AVG SafeGuard toolbar
2013-08-30 09:31:13 37664 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-08-30 09:31:07 -------- d-----w- c:\docume~1\alluse~1\applic~1\AVG SafeGuard toolbar
2013-08-30 09:31:03 -------- d-----w- c:\program files\AVG SafeGuard toolbar
2013-08-22 15:33:09 -------- d-----w- c:\program files\IminentToolbar
2013-08-22 10:44:44 -------- d-----w- c:\docume~1\alluse~1\applic~1\CostMin
2013-08-21 14:29:11 -------- d-----w- c:\program files\iPod
2013-08-21 14:29:02 -------- d-----w- c:\docume~1\alluse~1\applic~1\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-21 13:46:32 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin5.dll
2013-08-21 13:46:32 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin4.dll
2013-08-21 13:46:32 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin3.dll
2013-08-21 13:46:32 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin2.dll
2013-08-21 13:46:32 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin.dll
2013-08-21 13:46:32 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2013-08-21 13:46:32 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2013-08-21 13:46:32 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2013-08-21 13:46:32 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2013-08-21 13:46:32 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2013-08-21 11:30:47 111520 ----a-w- c:\windows\system32\drivers\fwcore.sys
2013-08-21 10:43:58 -------- d-----w- c:\program files\Feven
2013-08-20 14:32:22 -------- d-----w- c:\docume~1\admini~1\locals~1\applic~1\avgchrome
2013-08-20 14:32:21 -------- d-----w- c:\docume~1\admini~1\locals~1\applic~1\DownloadTerms
2013-08-20 14:20:31 -------- d-----w- c:\docume~1\admini~1\applic~1\0F1F1C2Y1H1P1C0I0T
2013-08-20 14:16:57 -------- d-----w- c:\docume~1\admini~1\applic~1\Ask4Expert
2013-08-20 14:16:32 -------- d-----w- c:\program files\Ask4Expert
2013-08-20 14:07:44 -------- d-----w- c:\program files\Uninstaller
.
==================== Find3M ====================
.
.
============= FINISH: 9:05:04.25 ===============