Am running XP Pro SP3 on a small platform Dell Optiplex P4, 1-GB ram, 160-GB HDD, and 80-GB external HDD.
I've run both "MalWareBytes" (in Safe Mode with Networking - did not have the mouse) and also "Ad-aware Anniversary Edition" in regular mode.
Have disabled both AVG (for the moment) and Ad-aware.
Attached are the 2 DDS scan files:
DDS file:
DDS (Ver_09-05-14.01) - NTFSx86
Run by Goodwill at 17:59:17.75 on Thu 06/04/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.421 [GMT -7:00]
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\2Wire\2PortalMon.exe
C:\PROGRA~1\DATACA~1\FLashKsk.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Documents and Settings\Goodwill\Local Settings\Temporary Internet Files\Content.IE5\M1RJMIFH\dds[1].scr
============== Pseudo HJT Report ===============
uLocal Page = \blank.htm
uStart Page = hxxp://www.yahoo.com/
uInternet Connection Wizard,ShellNext = iexplore
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office12\GRA8E1~1.DLL
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [PRISMSVR.EXE] "c:\windows\system32\PRISMSVR.EXE" /APPLY
mRun: [2wSysTray] c:\program files\2wire\2PortalMon.exe
mRun: [DataCaching] c:\progra~1\dataca~1\FLashKsk.exe
mRun: [Ad-Watch] c:\program files\lavasoft\ad-aware\AAWTray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1234398951794
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~2\office12\GR99D3~1.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: igfxcui - igfxsrvc.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office12\GRA8E1~1.DLL
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\goodwill\applic~1\mozilla\firefox\profiles\n2k0j9kl.default\
============= SERVICES / DRIVERS ===============
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-6-3 64160]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-2-14 325896]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-2-14 27784]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-2-14 108552]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-2-14 298776]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-3-9 1005904]
=============== Created Last 30 ================
2009-06-04 17:20 <DIR> --d----- c:\program files\Trend Micro
2009-06-04 00:37 15,688 a------- c:\windows\system32\lsdelete.exe
2009-06-03 23:48 64,160 a------- c:\windows\system32\drivers\Lbd.sys
2009-06-03 23:44 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
2009-06-03 23:44 <DIR> --d----- c:\program files\Lavasoft
2009-06-03 23:31 <DIR> --d----- c:\windows\system32\appmgmt
2009-06-03 23:27 <DIR> --d----- c:\program files\Adware Professional
2009-06-03 16:18 <DIR> --d----- c:\docume~1\goodwill\applic~1\Malwarebytes
2009-06-03 16:18 40,160 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-06-03 16:18 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-06-03 16:18 19,096 a------- c:\windows\system32\drivers\mbam.sys
2009-06-03 16:18 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-06-03 16:06 <DIR> --d----- c:\windows\pss
2009-05-31 13:28 <DIR> --d----- c:\program files\Yahoo!
2009-05-24 07:15 <DIR> --d----- c:\program files\IrfanView
2009-05-23 19:07 <DIR> --d----- c:\docume~1\goodwill\applic~1\Windows Search
2009-05-23 19:07 <DIR> --d----- c:\docume~1\goodwill\applic~1\Windows Desktop Search
2009-05-23 19:06 <DIR> --d----- c:\program files\Windows Desktop Search
2009-05-23 19:06 <DIR> --d----- c:\windows\system32\GroupPolicy
2009-05-23 19:06 192,000 -c------ c:\windows\system32\dllcache\offfilt.dll
2009-05-23 19:06 98,304 -c------ c:\windows\system32\dllcache\nlhtml.dll
2009-05-23 19:06 29,696 -c------ c:\windows\system32\dllcache\mimefilt.dll
2009-05-21 12:03 <DIR> --d-h--- C:\$AVG8.VAULT$
2009-05-21 10:14 <DIR> --d----- c:\program files\att-prt22
2009-05-21 10:13 <DIR> --d----- c:\program files\common files\Motive
2009-05-21 10:13 <DIR> --d----- c:\program files\ATT-PRT22-WISE
2009-05-21 00:47 <DIR> --dsh--- c:\documents and settings\goodwill\PrivacIE
2009-05-20 17:05 <DIR> --dsh--- c:\documents and settings\goodwill\IETldCache
2009-05-20 16:43 <DIR> -cd-h--- c:\windows\ie8
2009-05-20 16:20 <DIR> --d----- C:\Downloaded Vis Basic
2009-05-20 16:15 <DIR> --d----- C:\Downloaded Pgms
2009-05-20 16:14 <DIR> --d----- C:\Downloaded Other
2009-05-20 15:54 <DIR> --d----- c:\program files\Cobian Backup 9
2009-05-20 15:41 13,312 a------- c:\windows\system32\DEVLOAD.EXE
2009-05-20 15:41 4,608 a------- c:\windows\DelShell.exe
2009-05-20 15:41 1,233 a------- c:\windows\Sdcache.ini
2009-05-20 15:41 22 a------- c:\windows\FLASHKSK.INI
2009-05-20 15:41 <DIR> --d----- c:\program files\Data Caching
2009-05-20 15:41 37,781 a------- c:\windows\system32\drivers\SDSTOR2K.SYS
2009-05-20 15:41 2,204 a------- c:\windows\system32\drivers\UNINST2K.SYS
2009-05-20 15:41 <DIR> --d----- c:\program files\SanDisk
2009-05-20 15:41 2,974 a------- c:\windows\system32\SDUSBPDR.INI
2009-05-20 15:41 306,688 a------- c:\windows\IsUninst.exe
2009-05-20 15:37 105,984 a------- c:\windows\system32\CNMLM5c.DLL
2009-05-20 15:37 6,656 a------- c:\windows\system32\CNMVS5c.DLL
2009-05-20 15:37 86,016 a------- c:\windows\system32\CNMCP5c.exe
2009-05-20 15:37 <DIR> --d-h--- C:\BJPrinter
2009-05-20 15:21 929,792 a----r-- c:\windows\system32\PRISME5.dll
2009-05-20 15:21 15,781 a----r-- c:\windows\system32\drivers\mdc8021x.sys
2009-05-20 15:20 <DIR> --d----- c:\program files\2Wire
2009-05-20 15:13 25,856 ac------ c:\windows\system32\dllcache\usbprint.sys
2009-05-20 15:13 25,856 a------- c:\windows\system32\drivers\usbprint.sys
2009-05-20 15:13 17,664 ac------ c:\windows\system32\dllcache\sermouse.sys
2009-05-20 15:13 17,664 a------- c:\windows\system32\drivers\sermouse.sys
==================== Find3M ====================
2009-05-20 15:34 325,896 a------- c:\windows\system32\drivers\avgldx86.sys
2009-05-20 15:34 11,952 a------- c:\windows\system32\avgrsstx.dll
2009-05-20 15:34 108,552 a------- c:\windows\system32\drivers\avgtdix.sys
2009-03-08 04:34 914,944 a------- c:\windows\system32\wininet.dll
2009-03-08 04:34 43,008 a------- c:\windows\system32\licmgr10.dll
2009-03-08 04:33 18,944 a------- c:\windows\system32\corpol.dll
2009-03-08 04:33 420,352 a------- c:\windows\system32\vbscript.dll
2009-03-08 04:32 72,704 a------- c:\windows\system32\admparse.dll
2009-03-08 04:32 71,680 a------- c:\windows\system32\iesetup.dll
2009-03-08 04:31 34,816 a------- c:\windows\system32\imgutil.dll
2009-03-08 04:31 48,128 a------- c:\windows\system32\mshtmler.dll
2009-03-08 04:31 45,568 a------- c:\windows\system32\mshta.exe
2009-03-08 04:22 156,160 a------- c:\windows\system32\msls31.dll
============= FINISH: 18:01:22.96 ===============