API tools faq
paste
Guest User

Untitled

a guest
Oct 16th, 2011
157
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.86 KB | None | 0 0
raw download clone embed print report
  1. .
  2. DDS (Ver_2011-08-26.01) - NTFSx86
  3. Internet Explorer: 6.0.2900.5512
  4. Run by Aca at 20:12:19 on 2011-10-16
  5. Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1279.599 [GMT 2:00]
  6. .
  7. .
  8. ============== Running Processes ===============
  9. .
  10. C:\WINDOWS\system32\Ati2evxx.exe
  11. C:\WINDOWS\system32\svchost -k DcomLaunch
  12. svchost.exe
  13. C:\WINDOWS\System32\svchost.exe -k netsvcs
  14. svchost.exe
  15. svchost.exe
  16. C:\WINDOWS\system32\Ati2evxx.exe
  17. C:\WINDOWS\Explorer.EXE
  18. C:\WINDOWS\system32\spoolsv.exe
  19. C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
  20. C:\Program Files\VIAudioi\SBADeck\ADeck.exe
  21. C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
  22. C:\WINDOWS\system32\ctfmon.exe
  23. C:\Program Files\Skype\Phone\Skype.exe
  24. svchost.exe
  25. C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
  26. C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
  27. C:\Program Files\Opera\Opera.exe
  28. .
  29. ============== Pseudo HJT Report ===============
  30. .
  31. uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
  32. uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe" /MINIMIZED
  33. uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
  34. mRun: [ATICCC] "c:\program files\ati technologies\ati.ace\cli.exe" runtime -Delay
  35. mRun: [AudioDeck] c:\program files\viaudioi\sbadeck\ADeck.exe 1
  36. mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
  37. dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
  38. uPolicies-system: DisableTaskMgr = 1 (0x1)
  39. uPolicies-system: DisableRegistryTools = 1 (0x1)
  40. mPolicies-system: EnableLUA = 0 (0x0)
  41. IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
  42. IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
  43. TCP: DhcpNameServer = 89.216.1.40 89.216.1.50
  44. TCP: Interfaces\{155A3783-273F-4069-8256-25276BAC954B} : DhcpNameServer = 89.216.1.40 89.216.1.50
  45. Notify: AtiExtEvent - Ati2evxx.dll
  46. .
  47. ================= FIREFOX ===================
  48. .
  49. FF - ProfilePath - c:\documents and settings\aca\application data\mozilla\firefox\profiles\mwccdpf8.default\
  50. .
  51. ============= SERVICES / DRIVERS ===============
  52. .
  53. R0 a347bus;a347bus;c:\windows\system32\drivers\a347bus.sys [2011-10-16 160640]
  54. R0 a347scsi;a347scsi;c:\windows\system32\drivers\a347scsi.sys [2011-10-16 5248]
  55. R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-10-16 366152]
  56. R3 abp470n5;abp470n5;\??\c:\windows\system32\drivers\gmmqkn.sys --> c:\windows\system32\drivers\gmmqkn.sys [?]
  57. R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-10-16 22216]
  58. R4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-10-16 41272]
  59. S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\wpffontcache_v0400.exe --> c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [?]
  60. .
  61. =============== Created Last 30 ================
  62. .
  63. 2011-10-16 17:57:59 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
  64. 2011-10-16 17:39:56 -------- d-----w- c:\documents and settings\aca\application data\Malwarebytes
  65. 2011-10-16 17:39:50 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
  66. 2011-10-16 17:39:47 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
  67. 2011-10-16 17:39:47 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
  68. 2011-10-16 17:23:02 -------- d-----w- c:\documents and settings\all users\application data\Sports Interactive
  69. 2011-10-16 17:22:07 -------- d-----w- c:\documents and settings\aca\local settings\application data\Sports Interactive
  70. 2011-10-16 17:22:07 -------- d-----w- c:\documents and settings\aca\application data\Sports Interactive
  71. 2011-10-16 17:15:05 -------- d--h--w- c:\program files\Zero G Registry
  72. 2011-10-16 17:14:28 -------- d--h--w- c:\documents and settings\aca\InstallAnywhere
  73. 2011-10-16 17:09:32 5248 ----a-w- c:\windows\system32\drivers\a347scsi.sys
  74. 2011-10-16 17:09:32 160640 ----a-w- c:\windows\system32\drivers\a347bus.sys
  75. 2011-10-16 17:09:30 -------- d-----w- c:\program files\Alcohol Soft
  76. 2011-10-16 13:53:30 -------- d-----w- C:\Temp
  77. 2011-10-16 13:53:09 665424 ----a-w- c:\windows\system32\wmv8dmoe.dll
  78. 2011-10-16 13:53:09 572752 ----a-w- c:\windows\system32\wmvdmoe.dll
  79. 2011-10-16 13:53:09 438608 ----a-w- c:\windows\system32\wmv8dmod.dll
  80. 2011-10-16 13:53:09 285184 ----a-w- c:\windows\system32\wmidx2.ocx
  81. 2011-10-16 13:53:09 1683792 ----a-w- c:\windows\system32\wmvcore2.dll
  82. 2011-10-16 13:51:43 -------- d-----w- c:\program files\coolpro2
  83. 2011-10-16 13:49:45 -------- d-----w- C:\games
  84. 2011-10-16 12:20:13 -------- d-----r- c:\program files\Skype
  85. 2011-10-16 12:14:17 -------- d-sh--w- C:\found.000
  86. .
  87. ==================== Find3M ====================
  88. .
  89. 2011-10-16 10:56:35 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
  90. .
  91. ============= FINISH: 20:13:37.01 ===============
  92.  
  93.  
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!