DDS (Ver_09-02-01.01) - NTFSx86
Run by Miriam Emma Lank at 22:33:56.20 on Fri 03/06/2009
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.639.295 [GMT -8:00]
AV: McAfee VirusScan Enterprise *On-access scanning enabled* (Updated)
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Network Associates\Common Framework\UdaterUI.exe
C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Network Associates\Common Framework\McTray.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\Documents and Settings\Miriam Emma Lank\Desktop\computer tools\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.google.ca/
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar2.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar2.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
mRun: [McAfeeUpdaterUI] "c:\program files\network associates\common framework\UdaterUI.exe" /StartedFromRunKey
mRun: [ShStatEXE] "c:\program files\mcafee\virusscan enterprise\SHSTAT.EXE" /STANDALONE
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [LVCOMSX] c:\windows\system32\LVCOMSX.EXE
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
StartupFolder: c:\docume~1\alluse~1.win\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office10\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab
DPF: Microsoft XML Parser for Java
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/templates/ieawsdc.cab
DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1205851300394
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1205851434928
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\miriam~1\applic~1\mozilla\firefox\profiles\wl2f0p18.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.ca/
============= SERVICES / DRIVERS ===============
R1 mferkdk;VSCore mferkdk;c:\program files\mcafee\virusscan enterprise\mferkdk.sys [2006-11-30 31944]
R2 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\aawservice.exe [2008-7-7 611664]
R2 McAfeeFramework;McAfee Framework Service;c:\program files\network associates\common framework\FrameworkService.exe [2006-3-13 104000]
R2 McShield;McAfee McShield;c:\program files\mcafee\virusscan enterprise\Mcshield.exe [2006-11-30 144960]
R2 McTaskManager;McAfee Task Manager;c:\program files\mcafee\virusscan enterprise\VsTskMgr.exe [2006-11-30 54872]
R3 mfeavfk;McAfee Inc.;c:\windows\system32\drivers\mfeavfk.sys [2008-3-17 72264]
R3 mfebopk;McAfee Inc.;c:\windows\system32\drivers\mfebopk.sys [2008-3-17 34152]
R3 mfehidk;McAfee Inc.;c:\windows\system32\drivers\mfehidk.sys [2008-3-17 168776]
=============== Created Last 30 ================
2009-03-06 15:09 <DIR> a-dshr-- C:\cmdcons
2009-03-06 14:57 161,792 a------- c:\windows\SWREG.exe
2009-03-06 14:57 98,816 a------- c:\windows\sed.exe
2009-03-03 21:15 <DIR> --d----- c:\program files\Trend Micro
2009-03-03 15:14 5,449 a------- C:\mooo.exe
2009-03-03 09:20 <DIR> --d----- c:\program files\common files\Wise Installation Wizard
2009-03-03 09:09 151 a------- c:\windows\wininit.ini
2009-03-02 23:32 244 a---h--- C:\sqmnoopt19.sqm
2009-03-02 23:32 232 a---h--- C:\sqmdata19.sqm
2009-03-02 23:26 244 a---h--- C:\sqmnoopt18.sqm
2009-03-02 23:26 232 a---h--- C:\sqmdata18.sqm
2009-03-02 23:22 244 a---h--- C:\sqmnoopt17.sqm
2009-03-02 23:22 232 a---h--- C:\sqmdata17.sqm
2009-03-02 23:19 244 a---h--- C:\sqmnoopt16.sqm
2009-03-02 23:19 232 a---h--- C:\sqmdata16.sqm
2009-03-02 23:12 244 a---h--- C:\sqmnoopt15.sqm
2009-03-02 23:12 232 a---h--- C:\sqmdata15.sqm
2009-03-02 23:06 232 a---h--- C:\sqmdata14.sqm
2009-03-02 23:06 244 a---h--- C:\sqmnoopt14.sqm
2009-03-02 22:59 244 a---h--- C:\sqmnoopt13.sqm
2009-03-02 22:59 232 a---h--- C:\sqmdata13.sqm
2009-03-02 22:53 244 a---h--- C:\sqmnoopt12.sqm
2009-03-02 22:53 232 a---h--- C:\sqmdata12.sqm
2009-03-02 22:52 244 a---h--- C:\sqmnoopt11.sqm
2009-03-02 22:52 232 a---h--- C:\sqmdata11.sqm
2009-03-02 22:47 232 a---h--- C:\sqmdata10.sqm
2009-03-02 22:47 244 a---h--- C:\sqmnoopt10.sqm
2009-03-02 22:43 244 a---h--- C:\sqmnoopt09.sqm
2009-03-02 22:43 232 a---h--- C:\sqmdata09.sqm
2009-03-02 22:40 232 a---h--- C:\sqmdata08.sqm
2009-03-02 22:40 244 a---h--- C:\sqmnoopt08.sqm
2009-03-02 22:33 244 a---h--- C:\sqmnoopt07.sqm
2009-03-02 22:33 232 a---h--- C:\sqmdata07.sqm
2009-03-02 22:27 244 a---h--- C:\sqmnoopt06.sqm
2009-03-02 22:27 232 a---h--- C:\sqmdata06.sqm
2009-03-02 22:21 232 a---h--- C:\sqmdata05.sqm
2009-03-02 22:21 244 a---h--- C:\sqmnoopt05.sqm
2009-03-02 22:15 232 a---h--- C:\sqmdata04.sqm
2009-03-02 22:15 244 a---h--- C:\sqmnoopt04.sqm
2009-03-02 20:26 48,640 a------- C:\2l.exe
2009-03-02 20:25 191,488 a------- C:\1l.exe
2009-03-02 20:10 32,200 a------- C:\spal.exe
2009-03-02 19:44 1,025 a------- C:\istal.exe
2009-03-02 19:26 48,690 ---sh--- c:\windows\fxsteller.exe
2009-03-02 19:26 102,912 a------- C:\xx.exe
==================== Find3M ====================
2008-12-17 20:57 410,984 a------- c:\windows\system32\deploytk.dll
2008-10-21 17:45 17,144 a------- c:\docume~1\miriam~1\applic~1\GDIPFONTCACHEV1.DAT
2006-02-22 06:36 21,952 ac--h--- c:\program files\folder.htt
2006-02-22 06:36 271 ---sh--- c:\program files\desktop.ini
============= FINISH: 22:36:10.80 ===============