API tools faq
paste
Advertisement
Guest User

DDS Log

a guest
Nov 15th, 2010
138
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 15.04 KB | None | 0 0
raw download clone embed print report
  1.  
  2. DDS (Ver_10-11-10.01) - NTFSx86
  3. Run by Uzair at 23:55:23.23 on 15/11/2010
  4. Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_22
  5. Microsoft Windows 7 Ultimate 6.1.7600.0.1252.44.1033.18.2010.825 [GMT 0:00]
  6.  
  7.  
  8. ============== Running Processes ===============
  9.  
  10. C:\Windows\system32\wininit.exe
  11. C:\Windows\system32\lsm.exe
  12. C:\Windows\system32\svchost.exe -k DcomLaunch
  13. C:\Windows\system32\svchost.exe -k RPCSS
  14. C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
  15. C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
  16. C:\Windows\system32\svchost.exe -k netsvcs
  17. C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_028821c569ae5894\STacSV.exe
  18. C:\Windows\system32\svchost.exe -k LocalService
  19. C:\Windows\system32\svchost.exe -k NetworkService
  20. C:\Windows\System32\spoolsv.exe
  21. C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
  22. C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_028821c569ae5894\aestsrv.exe
  23. C:\Windows\System32\svchost.exe -k Akamai
  24. C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  25. C:\Program Files\Bonjour\mDNSResponder.exe
  26. C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
  27. C:\Program Files\ICQ6Toolbar\ICQ Service.exe
  28. C:\Program Files\Microsoft LifeCam\MSCamS32.exe
  29. c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
  30. c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
  31. C:\Windows\system32\svchost.exe -k imgsvc
  32. C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
  33. C:\Windows\system32\WUDFHost.exe
  34. C:\Windows\system32\Dwm.exe
  35. C:\Windows\system32\taskhost.exe
  36. C:\Program Files\IDT\WDM\sttray.exe
  37. C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
  38. C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
  39. C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
  40. C:\Windows\system32\SearchIndexer.exe
  41. C:\Program Files\Windows Media Player\wmpnetwk.exe
  42. C:\Program Files\Common Files\Java\Java Update\jusched.exe
  43. C:\Program Files\DivX\DivX Update\DivXUpdate.exe
  44. C:\Program Files\Creative\Creative Live! Cam\Live! Central 2\CTLVCentral2.exe
  45. C:\Windows\V0640Mon.exe
  46. C:\Windows\System32\igfxpers.exe
  47. C:\Program Files\iTunes\iTunesHelper.exe
  48. C:\Program Files\iPod\bin\iPodService.exe
  49. C:\Windows\System32\svchost.exe -k LocalServicePeerNet
  50. C:\Windows\system32\svchost.exe -k SDRSVC
  51. C:\Windows\system32\wuauclt.exe
  52. C:\Windows\system32\notepad.exe
  53. C:\Windows\explorer.exe
  54. C:\Users\Uzair\AppData\Local\Google\Chrome\Application\chrome.exe
  55. C:\Users\Uzair\AppData\Local\Google\Chrome\Application\chrome.exe
  56. C:\Users\Uzair\AppData\Local\Google\Chrome\Application\chrome.exe
  57. C:\Users\Uzair\AppData\Local\Google\Chrome\Application\chrome.exe
  58. C:\Users\Uzair\AppData\Local\Google\Chrome\Application\chrome.exe
  59. C:\Program Files\iTunes\iTunes.exe
  60. C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
  61. C:\Windows\system32\conhost.exe
  62. C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
  63. C:\Windows\system32\conhost.exe
  64. C:\Users\Uzair\AppData\Local\Google\Chrome\Application\chrome.exe
  65. C:\Program Files\VideoLAN\VLC\vlc.exe
  66. C:\Windows\system32\NOTEPAD.EXE
  67. C:\Users\Uzair\Desktop\dds.scr
  68. C:\Windows\system32\conhost.exe
  69. C:\Windows\system32\wbem\wmiprvse.exe
  70.  
  71. ============== Pseudo HJT Report ===============
  72.  
  73. uInternet Settings,ProxyOverride = *.local
  74. uURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
  75. mURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
  76. mURLSearchHooks: H - No File
  77. mURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
  78. mURLSearchHooks: H - No File
  79. BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
  80. BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
  81. BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
  82. BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
  83. BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
  84. TB: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
  85. uRun: [Google Update] "c:\users\uzair\appdata\local\google\update\GoogleUpdate.exe" /c
  86. uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
  87. uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
  88. uRun: [ICQ] "c:\program files\icq7.2\ICQ.exe" silent loginmode=4
  89. mRun: [SysTrayApp] c:\program files\idt\wdm\sttray.exe
  90. mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup
  91. mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
  92. mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
  93. mRun: [openvpn-gui] c:\program files\ultravpn\bin\openvpn-gui.exe
  94. mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe"
  95. mRun: [SwitchBoard] c:\program files\common files\adobe\switchboard\SwitchBoard.exe
  96. mRun: [AdobeCS5ServiceManager] "c:\program files\common files\adobe\cs5servicemanager\CS5ServiceManager.exe" -launchedbylogin
  97. mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe"
  98. mRun: [itype] "c:\program files\microsoft intellitype pro\itype.exe"
  99. mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
  100. mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
  101. mRun: [Live! Central 2] "c:\program files\creative\creative live! cam\live! central 2\CTLVCentral2.exe" /mode2
  102. mRun: [V0640Mon.exe] c:\windows\V0640Mon.exe
  103. mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
  104. mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
  105. mRun: [Persistence] c:\windows\system32\igfxpers.exe
  106. mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
  107. mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
  108. mRun: [V0640Pin.dll] RunDLL32.exe V0640Pin.dll,RunDLL32EP 514,/d:2
  109. mRun: [VX1000] c:\windows\vVX1000.exe
  110. mRun: [LifeCam] "c:\program files\microsoft lifecam\LifeExp.exe"
  111. mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
  112. mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
  113. mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
  114. IE: E&xport to Microsoft Excel - c:\progra~1\mif5ba~1\office12\EXCEL.EXE/3000
  115. IE: Free YouTube Download - c:\users\uzair\appdata\roaming\dvdvideosoftiehelpers\youtubedownload.htm
  116. IE: Free YouTube to Mp3 Converter - c:\users\uzair\appdata\roaming\dvdvideosoftiehelpers\youtubetomp3.htm
  117. IE: {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - c:\program files\icq7.2\ICQ.exe
  118. IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
  119. IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mif5ba~1\office12\REFIEBAR.DLL
  120. DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
  121. DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
  122. DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
  123. DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
  124. DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab
  125. Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
  126. Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
  127. Notify: igfxcui - igfxdev.dll
  128. AppInit_DLLs: c:\progra~1\google\google~1\GoogleDesktopNetwork3.dll
  129. STS: FencesShlExt Class: {1984dd45-52cf-49cd-ab77-18f378fea264} - c:\program files\stardock\fences\FencesMenu.dll
  130.  
  131. ================= FIREFOX ===================
  132.  
  133. FF - ProfilePath - c:\users\uzair\appdata\roaming\mozilla\firefox\profiles\vvf95d25.default\
  134. FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
  135. FF - component: c:\users\uzair\appdata\roaming\mozilla\firefox\profiles\vvf95d25.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
  136. FF - component: c:\users\uzair\appdata\roaming\mozilla\firefox\profiles\vvf95d25.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\components\FFExternalAlert.dll
  137. FF - component: c:\users\uzair\appdata\roaming\mozilla\firefox\profiles\vvf95d25.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\components\RadioWMPCore.dll
  138. FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
  139. FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
  140. FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
  141.  
  142. ---- FIREFOX POLICIES ----
  143. c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
  144. c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
  145.  
  146. ============= SERVICES / DRIVERS ===============
  147.  
  148. R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
  149. R2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\driverstore\filerepository\stwrt.inf_x86_neutral_028821c569ae5894\AEstSrv.exe [2010-6-27 81920]
  150. R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2009-7-13 20992]
  151. R2 ICQ Service;ICQ Service;c:\program files\icq6toolbar\ICQ Service.exe [2010-6-27 246520]
  152. R2 WinFLdrv;WinFLdrv;c:\windows\system32\WinFLdrv.sys [2010-11-10 17984]
  153. R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-13 14336]
  154. R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\drivers\yk62x86.sys [2009-7-13 311296]
  155. S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
  156. S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-8-9 136176]
  157. S2 mi-raysat_3dsmax2011_32;mental ray 3.8 Satellite for Autodesk 3ds Max 2011 32-bit 32-bit;c:\program files\autodesk\3ds max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe [2010-3-10 86016]
  158. S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
  159. S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\drivers\CtClsFlt.sys [2010-10-6 143936]
  160. S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\google\google desktop search\GoogleDesktop.exe [2010-6-27 30192]
  161. S3 SwitchBoard;SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
  162. S3 V0640Vid;Creative Live! Cam Socialize (VF0640) Driver;c:\windows\system32\drivers\V0640Vid.sys [2010-10-6 273760]
  163. S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2009-7-23 47128]
  164. S4 RsFx0103;RsFx0103 Driver;c:\windows\system32\drivers\RsFx0103.sys [2009-3-30 239336]
  165. S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\SQLAGENT.EXE [2009-3-30 366936]
  166.  
  167. =============== Created Last 30 ================
  168.  
  169. 2010-11-15 15:21:27 -------- d-sh--w- C:\$RECYCLE.BIN
  170. 2010-11-15 14:39:58 -------- d-----w- c:\windows\system32\appmgmt
  171. 2010-11-14 11:22:14 98816 ----a-w- c:\windows\sed.exe
  172. 2010-11-14 11:22:14 89088 ----a-w- c:\windows\MBR.exe
  173. 2010-11-14 11:22:14 256512 ----a-w- c:\windows\PEV.exe
  174. 2010-11-14 11:22:14 161792 ----a-w- c:\windows\SWREG.exe
  175. 2010-11-13 23:34:58 -------- d-----w- c:\program files\Microsoft LifeCam
  176. 2010-11-13 23:34:49 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
  177. 2010-11-13 23:34:49 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
  178. 2010-11-13 22:18:30 -------- d-----w- c:\program files\Veetle
  179. 2010-11-11 16:17:26 105984 --sha-r- c:\windows\system32\msvbvm60O.dll
  180. 2010-11-10 15:38:00 180224 ----a-w- c:\windows\system32\WinVd32.sys
  181. 2010-11-10 15:37:49 7680 ----a-w- c:\windows\system32\WinFLsrv.exe
  182. 2010-11-10 15:37:42 -------- d-----w- c:\program files\Folder Lock 6
  183. 2010-11-09 20:54:32 6146896 ----a-w- c:\progra~2\microsoft\windows defender\definition updates\{1aac5ffb-72a4-40f8-99c5-1551f7210ed5}\mpengine.dll
  184. 2010-11-08 07:05:46 -------- d-----w- C:\found.001
  185. 2010-11-06 11:44:49 -------- d-----w- c:\program files\iPod
  186. 2010-11-06 11:39:58 -------- d-----w- c:\program files\Bonjour
  187. 2010-11-03 21:53:03 -------- d-----w- c:\users\uzair\Incomplete
  188. 2010-11-03 21:49:42 -------- d-----w- c:\users\uzair\appdata\roaming\FrostWire
  189. 2010-11-03 21:47:49 -------- d-----w- c:\program files\FrostWire
  190. 2010-10-27 09:41:57 641536 ----a-w- c:\windows\system32\CPFilters.dll
  191. 2010-10-27 09:41:57 417792 ----a-w- c:\windows\system32\msdri.dll
  192. 2010-10-27 09:41:57 204288 ----a-w- c:\windows\system32\MSNP.ax
  193. 2010-10-27 09:41:57 199680 ----a-w- c:\windows\system32\mpg2splt.ax
  194. 2010-10-27 09:41:49 26504 ----a-w- c:\windows\system32\drivers\Diskdump.sys
  195.  
  196. ==================== Find3M ====================
  197.  
  198. 2010-10-19 10:41:44 222080 ------w- c:\windows\system32\MpSigStub.exe
  199. 2010-09-15 04:50:37 472808 ----a-w- c:\windows\system32\deployJava1.dll
  200. 2010-09-08 11:17:46 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
  201. 2010-09-08 11:17:46 69632 ----a-w- c:\windows\system32\QuickTime.qts
  202. 2010-09-08 04:30:04 978432 ----a-w- c:\windows\system32\wininet.dll
  203. 2010-09-08 04:28:15 44544 ----a-w- c:\windows\system32\licmgr10.dll
  204. 2010-09-08 03:22:31 386048 ----a-w- c:\windows\system32\html.iec
  205. 2010-09-08 02:48:16 1638912 ----a-w- c:\windows\system32\mshtml.tlb
  206. 2010-09-01 04:23:49 12625408 ----a-w- c:\windows\system32\wmploc.DLL
  207. 2010-09-01 02:34:52 2327552 ----a-w- c:\windows\system32\win32k.sys
  208. 2010-08-31 04:32:30 954752 ----a-w- c:\windows\system32\mfc40.dll
  209. 2010-08-31 04:32:30 954288 ----a-w- c:\windows\system32\mfc40u.dll
  210. 2010-08-27 05:46:48 168448 ----a-w- c:\windows\system32\srvsvc.dll
  211. 2010-08-26 04:39:58 109056 ----a-w- c:\windows\system32\t2embed.dll
  212. 2010-08-21 05:36:33 738816 ----a-w- c:\windows\system32\wmpmde.dll
  213. 2010-08-21 05:36:24 224256 ----a-w- c:\windows\system32\schannel.dll
  214. 2010-08-21 05:33:24 530432 ----a-w- c:\windows\system32\comctl32.dll
  215. 2010-08-21 05:32:37 316928 ----a-w- c:\windows\system32\spoolsv.exe
  216.  
  217. ============= FINISH: 0:00:10.46 ===============
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!