API tools faq
paste
Advertisement
Guest User

Kpc21

a guest
Jan 30th, 2010
453
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 15.78 KB | None | 0 0
raw download clone embed print report
  1.  
  2. DDS (Ver_09-09-29.01) - NTFSx86
  3. Run by Kacper at 23:56:55,71 on 30.01.2010
  4. Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_17
  5. Microsoft Windows 7 Enterprise 6.1.7600.0.1250.48.1033.18.1791.947 [GMT 1:00]
  6.  
  7.  
  8. ============== Running Processes ===============
  9.  
  10. C:\Windows\system32\wininit.exe
  11. C:\Windows\system32\lsm.exe
  12. C:\Windows\system32\svchost.exe -k DcomLaunch
  13. C:\Windows\system32\svchost.exe -k RPCSS
  14. C:\Windows\system32\atiesrxx.exe
  15. C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
  16. C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
  17. C:\Windows\system32\svchost.exe -k netsvcs
  18. C:\Windows\system32\svchost.exe -k LocalService
  19. C:\Windows\system32\svchost.exe -k NetworkService
  20. C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
  21. C:\Program Files\Alwil Software\Avast4\ashServ.exe
  22. C:\Windows\system32\atieclxx.exe
  23. C:\Windows\System32\spoolsv.exe
  24. C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
  25. C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
  26. C:\Windows\system32\srvany.exe
  27. C:\Windows\system32\mkcp32\mkcp32.exe
  28. C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
  29. C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
  30. C:\Windows\system32\svchost.exe -k imgsvc
  31. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
  32. C:\Windows\system32\SearchIndexer.exe
  33. C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
  34. C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
  35. C:\Windows\system32\taskhost.exe
  36. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
  37. C:\Windows\system32\Dwm.exe
  38. C:\Windows\Explorer.EXE
  39. C:\Program Files\Alwil Software\Avast4\ashDisp.exe
  40. C:\Program Files\Java\jre6\bin\jusched.exe
  41. C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
  42. C:\Program Files\Windows Sidebar\sidebar.exe
  43. C:\Program Files\WapSter\WapSter AQQ\AQQ.exe
  44. C:\Windows\system32\wbem\wmiprvse.exe
  45. C:\Program Files\Windows Media Player\wmpnetwk.exe
  46. C:\Program Files\Mozilla Firefox\firefox.exe
  47. C:\Windows\System32\svchost.exe -k secsvcs
  48. C:\Windows\notepad.exe
  49. C:\Windows\system32\DllHost.exe
  50. C:\Windows\system32\DllHost.exe
  51. C:\Users\Kacper\Desktop\dds.com
  52. C:\Windows\system32\conhost.exe
  53.  
  54. ============== Pseudo HJT Report ===============
  55.  
  56. BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
  57. BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
  58. BHO: Expressivo: {85f685c3-20d9-4943-95e4-eb4224056c3f} - c:\program files\ivo\expressivo\integr\ih-iexplorer\IH_iexplorer.dll
  59. BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
  60. BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
  61. BHO: IEPluginBHO Class: {f5cc7f02-6f4e-4462-b5b1-394a57fd3e0d} - c:\users\kacper\appdata\roaming\gadu-gadu 10\_userdata\ggbho.2.dll
  62. TB: Expressivo: {85f685c3-20d9-4943-95e4-eb4224056c3f} - c:\program files\ivo\expressivo\integr\ih-iexplorer\IH_iexplorer.dll
  63. uRun: [Sony Ericsson PC Suite] "c:\program files\sony ericsson\sony ericsson pc suite\SEPCSuite.exe" /systray /nologon
  64. uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
  65. uRun: [Google Update] "c:\users\kacper\appdata\local\google\update\GoogleUpdate.exe" /c
  66. mRun: [avast!] "c:\program files\alwil software\avast4\ashDisp.exe"
  67. mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
  68. mRun: [<NO NAME>]
  69. mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
  70. mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
  71. mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
  72. StartupFolder: c:\users\kacper\appdata\roaming\micros~1\windows\startm~1\programs\startup\aqq.lnk - c:\program files\wapster\wapster aqq\AQQ.exe
  73. mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
  74. mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
  75. mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
  76. IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000
  77. IE: E&xport to Microsoft Excel - c:\progra~1\mic30f~1\office14\EXCEL.EXE/3000
  78. IE: Se&nd to OneNote - /105
  79. IE: {2670000A-7350-4f3c-8081-5663EE0C6C49}
  80. IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office12\REFIEBAR.DLL
  81. DPF: {62789780-B744-11D0-986B-00609731A21D} - hxxp://mapa.lodz.pl/VIEWERS/mgaxctrl.cab
  82. DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
  83. DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
  84. DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
  85. DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
  86. Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} -
  87. Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
  88. SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
  89.  
  90. ================= FIREFOX ===================
  91.  
  92. FF - ProfilePath - c:\users\kacper\appdata\roaming\mozilla\firefox\profiles\2yoj79em.domy&#347;lny u&#380;ytkownik\
  93. FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
  94. FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
  95. FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
  96.  
  97. ---- FIREFOX POLICIES ----
  98. c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
  99. c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
  100. c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
  101. c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
  102. c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
  103. c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
  104. c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
  105. c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
  106. c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
  107. c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
  108. c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
  109. c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
  110. c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
  111. c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
  112. c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
  113. c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
  114. c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
  115. c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
  116. c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
  117. c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
  118. c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
  119. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
  120. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
  121. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
  122. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
  123. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
  124. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
  125. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
  126. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
  127. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
  128. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
  129. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
  130. c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
  131.  
  132. ============= SERVICES / DRIVERS ===============
  133.  
  134. R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-9-4 114768]
  135. R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-8-18 176128]
  136. R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-9-4 20560]
  137. R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2009-9-4 53328]
  138. R2 mkcp32;mkcp32;c:\windows\system32\srvany.exe [2003-4-18 8192]
  139. R2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\sony ericsson\sony ericsson pc suite\SupServ.exe [2009-11-10 90112]
  140. R2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\common files\microsoft shared\windows live\WLIDSVC.EXE [2009-3-30 1533808]
  141. R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-3-1 139776]
  142. R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [2009-11-10 27632]
  143. R3 Stmatm;ATM/ADSL miniport;c:\windows\system32\drivers\stmatm.sys [2009-10-13 60533]
  144. S2 WLMS;Windows Licensing Monitoring Service;c:\windows\system32\wlms\wlms.exe [2009-7-14 17920]
  145. S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
  146. S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2009-9-10 54632]
  147. S3 fsssvc;Funkcja Bezpiecze&#324;stwo rodzinne us&#322;ugi Windows Live;c:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864]
  148. S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [2009-11-10 89256]
  149. S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [2009-11-10 15016]
  150. S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [2009-11-10 120744]
  151. S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [2009-11-10 114216]
  152. S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [2009-11-10 25512]
  153. S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [2009-11-10 110632]
  154. S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [2009-11-10 115752]
  155. S3 StorSvc;Us&#322;uga magazynu;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
  156. S3 TaurusUsb;ADSL Modem USB Service;c:\windows\system32\drivers\torususb.sys [2009-10-13 684672]
  157.  
  158. =============== Created Last 30 ================
  159.  
  160. 2010-01-30 19:52 <DIR> --d----- c:\program files\SlySoft
  161. 2010-01-29 23:31 <DIR> --d----- c:\users\kacper\.VirtualBox
  162. 2010-01-29 23:30 123,280 a------- c:\windows\system32\drivers\VBoxDrv.sys
  163. 2010-01-29 23:30 41,616 a------- c:\windows\system32\drivers\VBoxUSBMon.sys
  164. 2010-01-29 23:30 <DIR> --d----- c:\program files\Sun
  165. 2010-01-29 23:03 <DIR> --d----- C:\FPC
  166. 2010-01-27 16:58 2,614,272 a------- c:\windows\explorer.exe
  167. 2010-01-27 16:58 285,696 a------- c:\windows\system32\winlogon.exe
  168. 2010-01-26 21:00 <DIR> --d----- c:\program files\nLite
  169. 2010-01-22 20:11 977,920 a------- c:\windows\system32\wininet.dll
  170. 2010-01-19 22:02 <DIR> --d----- c:\users\kacper\appdata\roaming\.links
  171. 2010-01-19 22:02 <DIR> --d----- c:\program files\Links
  172. 2010-01-17 19:44 27,672 a----r-- c:\windows\system32\drivers\Entech.sys
  173. 2010-01-17 19:44 <DIR> --d----- c:\windows\system32\Futuremark
  174. 2010-01-17 19:44 <DIR> --d----- c:\program files\common files\Futuremark Shared
  175. 2010-01-16 10:57 <DIR> --d----- c:\windows\system32\mkcp32
  176. 2010-01-13 15:02 108,544 a------- c:\windows\system32\t2embed.dll
  177. 2010-01-13 15:02 70,656 a------- c:\windows\system32\fontsub.dll
  178. 2010-01-04 17:41 <DIR> --d----- c:\program files\KidsAdmin
  179. 2010-01-04 17:32 <DIR> --d----- c:\program files\Marxio Timer
  180. 2010-01-03 20:51 <DIR> --d----- c:\users\kacper\appdata\roaming\FastStone
  181. 2010-01-03 20:51 <DIR> --d----- c:\program files\FastStone Image Viewer
  182.  
  183. ==================== Find3M ====================
  184.  
  185. 2010-01-18 17:17 687,590 a------- c:\windows\system32\perfh015.dat
  186. 2010-01-18 17:17 131,176 a------- c:\windows\system32\perfc015.dat
  187. 2010-01-14 11:12 181,120 -------- c:\windows\system32\MpSigStub.exe
  188. 2009-12-31 22:10 56 a---h--- c:\programdata\ezsidmv.dat
  189. 2009-12-31 22:10 56 a---h--- c:\progra~2\ezsidmv.dat
  190. 2009-12-17 15:02 133,648 a------- c:\windows\system32\VBoxNetFltNotify.dll
  191. 2009-12-17 15:02 110,096 a------- c:\windows\system32\drivers\VBoxNetFlt.sys
  192. 2009-12-17 15:02 99,152 a------- c:\windows\system32\drivers\VBoxNetAdp.sys
  193. 2009-11-10 16:37 148,736 a------- c:\programdata\hpeDCC.dll
  194. 2009-11-10 16:37 148,736 a------- c:\progra~2\hpeDCC.dll
  195. 2009-09-04 16:38 337,158 a------- c:\windows\inf\perflib\0415\perfi.dat
  196. 2009-09-04 16:38 337,158 a------- c:\windows\inf\perflib\0415\perfh.dat
  197. 2009-09-04 16:38 38,710 a------- c:\windows\inf\perflib\0415\perfd.dat
  198. 2009-09-04 16:38 38,710 a------- c:\windows\inf\perflib\0415\perfc.dat
  199. 2009-07-14 05:56 291,294 a------- c:\windows\inf\perflib\0409\perfi.dat
  200. 2009-07-14 05:56 291,294 a------- c:\windows\inf\perflib\0409\perfh.dat
  201. 2009-07-14 05:56 31,548 a------- c:\windows\inf\perflib\0409\perfd.dat
  202. 2009-07-14 05:56 31,548 a------- c:\windows\inf\perflib\0409\perfc.dat
  203. 2009-07-14 05:41 174 a--sh--- c:\program files\desktop.ini
  204. 2009-07-14 01:34 291,294 a------- c:\windows\inf\perflib\0000\perfi.dat
  205. 2009-07-14 01:34 291,294 a------- c:\windows\inf\perflib\0000\perfh.dat
  206. 2009-07-14 01:34 31,548 a------- c:\windows\inf\perflib\0000\perfd.dat
  207. 2009-07-14 01:34 31,548 a------- c:\windows\inf\perflib\0000\perfc.dat
  208. 2009-06-10 22:26 9,633,792 a--shr-- c:\windows\fonts\StaticCache.dat
  209. 2009-09-04 16:19 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\history\history.ie5\index.dat
  210. 2009-09-04 16:19 32,768 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat
  211. 2009-09-04 16:19 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\cookies\index.dat
  212. 2009-09-04 16:19 245,760 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat
  213.  
  214. ============= FINISH: 23:57:15,91 ===============
  215.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!