Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- DDS (Ver_09-09-29.01) - NTFSx86
- Run by Kacper at 23:56:55,71 on 30.01.2010
- Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_17
- Microsoft Windows 7 Enterprise 6.1.7600.0.1250.48.1033.18.1791.947 [GMT 1:00]
- ============== Running Processes ===============
- C:\Windows\system32\wininit.exe
- C:\Windows\system32\lsm.exe
- C:\Windows\system32\svchost.exe -k DcomLaunch
- C:\Windows\system32\svchost.exe -k RPCSS
- C:\Windows\system32\atiesrxx.exe
- C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
- C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
- C:\Windows\system32\svchost.exe -k netsvcs
- C:\Windows\system32\svchost.exe -k LocalService
- C:\Windows\system32\svchost.exe -k NetworkService
- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
- C:\Program Files\Alwil Software\Avast4\ashServ.exe
- C:\Windows\system32\atieclxx.exe
- C:\Windows\System32\spoolsv.exe
- C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
- C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
- C:\Windows\system32\srvany.exe
- C:\Windows\system32\mkcp32\mkcp32.exe
- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
- C:\Windows\system32\svchost.exe -k imgsvc
- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
- C:\Windows\system32\SearchIndexer.exe
- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
- C:\Windows\system32\taskhost.exe
- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
- C:\Windows\system32\Dwm.exe
- C:\Windows\Explorer.EXE
- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
- C:\Program Files\Java\jre6\bin\jusched.exe
- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
- C:\Program Files\Windows Sidebar\sidebar.exe
- C:\Program Files\WapSter\WapSter AQQ\AQQ.exe
- C:\Windows\system32\wbem\wmiprvse.exe
- C:\Program Files\Windows Media Player\wmpnetwk.exe
- C:\Program Files\Mozilla Firefox\firefox.exe
- C:\Windows\System32\svchost.exe -k secsvcs
- C:\Windows\notepad.exe
- C:\Windows\system32\DllHost.exe
- C:\Windows\system32\DllHost.exe
- C:\Users\Kacper\Desktop\dds.com
- C:\Windows\system32\conhost.exe
- ============== Pseudo HJT Report ===============
- BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
- BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
- BHO: Expressivo: {85f685c3-20d9-4943-95e4-eb4224056c3f} - c:\program files\ivo\expressivo\integr\ih-iexplorer\IH_iexplorer.dll
- BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
- BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
- BHO: IEPluginBHO Class: {f5cc7f02-6f4e-4462-b5b1-394a57fd3e0d} - c:\users\kacper\appdata\roaming\gadu-gadu 10\_userdata\ggbho.2.dll
- TB: Expressivo: {85f685c3-20d9-4943-95e4-eb4224056c3f} - c:\program files\ivo\expressivo\integr\ih-iexplorer\IH_iexplorer.dll
- uRun: [Sony Ericsson PC Suite] "c:\program files\sony ericsson\sony ericsson pc suite\SEPCSuite.exe" /systray /nologon
- uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
- uRun: [Google Update] "c:\users\kacper\appdata\local\google\update\GoogleUpdate.exe" /c
- mRun: [avast!] "c:\program files\alwil software\avast4\ashDisp.exe"
- mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
- mRun: [<NO NAME>]
- mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
- mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
- mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
- StartupFolder: c:\users\kacper\appdata\roaming\micros~1\windows\startm~1\programs\startup\aqq.lnk - c:\program files\wapster\wapster aqq\AQQ.exe
- mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
- mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
- mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
- IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000
- IE: E&xport to Microsoft Excel - c:\progra~1\mic30f~1\office14\EXCEL.EXE/3000
- IE: Se&nd to OneNote - /105
- IE: {2670000A-7350-4f3c-8081-5663EE0C6C49}
- IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office12\REFIEBAR.DLL
- DPF: {62789780-B744-11D0-986B-00609731A21D} - hxxp://mapa.lodz.pl/VIEWERS/mgaxctrl.cab
- DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
- DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
- DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
- DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
- Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} -
- Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
- SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
- ================= FIREFOX ===================
- FF - ProfilePath - c:\users\kacper\appdata\roaming\mozilla\firefox\profiles\2yoj79em.domyślny użytkownik\
- FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
- FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
- FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
- ---- FIREFOX POLICIES ----
- c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
- c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
- c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
- c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
- c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
- c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
- c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
- c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
- c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
- c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
- c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
- c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
- c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
- c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
- c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
- c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
- c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
- c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
- c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
- c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
- c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
- c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
- ============= SERVICES / DRIVERS ===============
- R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-9-4 114768]
- R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-8-18 176128]
- R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-9-4 20560]
- R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2009-9-4 53328]
- R2 mkcp32;mkcp32;c:\windows\system32\srvany.exe [2003-4-18 8192]
- R2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\sony ericsson\sony ericsson pc suite\SupServ.exe [2009-11-10 90112]
- R2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\common files\microsoft shared\windows live\WLIDSVC.EXE [2009-3-30 1533808]
- R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-3-1 139776]
- R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [2009-11-10 27632]
- R3 Stmatm;ATM/ADSL miniport;c:\windows\system32\drivers\stmatm.sys [2009-10-13 60533]
- S2 WLMS;Windows Licensing Monitoring Service;c:\windows\system32\wlms\wlms.exe [2009-7-14 17920]
- S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
- S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2009-9-10 54632]
- S3 fsssvc;Funkcja Bezpieczeństwo rodzinne usługi Windows Live;c:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864]
- S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [2009-11-10 89256]
- S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [2009-11-10 15016]
- S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [2009-11-10 120744]
- S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [2009-11-10 114216]
- S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [2009-11-10 25512]
- S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [2009-11-10 110632]
- S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [2009-11-10 115752]
- S3 StorSvc;Usługa magazynu;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
- S3 TaurusUsb;ADSL Modem USB Service;c:\windows\system32\drivers\torususb.sys [2009-10-13 684672]
- =============== Created Last 30 ================
- 2010-01-30 19:52 <DIR> --d----- c:\program files\SlySoft
- 2010-01-29 23:31 <DIR> --d----- c:\users\kacper\.VirtualBox
- 2010-01-29 23:30 123,280 a------- c:\windows\system32\drivers\VBoxDrv.sys
- 2010-01-29 23:30 41,616 a------- c:\windows\system32\drivers\VBoxUSBMon.sys
- 2010-01-29 23:30 <DIR> --d----- c:\program files\Sun
- 2010-01-29 23:03 <DIR> --d----- C:\FPC
- 2010-01-27 16:58 2,614,272 a------- c:\windows\explorer.exe
- 2010-01-27 16:58 285,696 a------- c:\windows\system32\winlogon.exe
- 2010-01-26 21:00 <DIR> --d----- c:\program files\nLite
- 2010-01-22 20:11 977,920 a------- c:\windows\system32\wininet.dll
- 2010-01-19 22:02 <DIR> --d----- c:\users\kacper\appdata\roaming\.links
- 2010-01-19 22:02 <DIR> --d----- c:\program files\Links
- 2010-01-17 19:44 27,672 a----r-- c:\windows\system32\drivers\Entech.sys
- 2010-01-17 19:44 <DIR> --d----- c:\windows\system32\Futuremark
- 2010-01-17 19:44 <DIR> --d----- c:\program files\common files\Futuremark Shared
- 2010-01-16 10:57 <DIR> --d----- c:\windows\system32\mkcp32
- 2010-01-13 15:02 108,544 a------- c:\windows\system32\t2embed.dll
- 2010-01-13 15:02 70,656 a------- c:\windows\system32\fontsub.dll
- 2010-01-04 17:41 <DIR> --d----- c:\program files\KidsAdmin
- 2010-01-04 17:32 <DIR> --d----- c:\program files\Marxio Timer
- 2010-01-03 20:51 <DIR> --d----- c:\users\kacper\appdata\roaming\FastStone
- 2010-01-03 20:51 <DIR> --d----- c:\program files\FastStone Image Viewer
- ==================== Find3M ====================
- 2010-01-18 17:17 687,590 a------- c:\windows\system32\perfh015.dat
- 2010-01-18 17:17 131,176 a------- c:\windows\system32\perfc015.dat
- 2010-01-14 11:12 181,120 -------- c:\windows\system32\MpSigStub.exe
- 2009-12-31 22:10 56 a---h--- c:\programdata\ezsidmv.dat
- 2009-12-31 22:10 56 a---h--- c:\progra~2\ezsidmv.dat
- 2009-12-17 15:02 133,648 a------- c:\windows\system32\VBoxNetFltNotify.dll
- 2009-12-17 15:02 110,096 a------- c:\windows\system32\drivers\VBoxNetFlt.sys
- 2009-12-17 15:02 99,152 a------- c:\windows\system32\drivers\VBoxNetAdp.sys
- 2009-11-10 16:37 148,736 a------- c:\programdata\hpeDCC.dll
- 2009-11-10 16:37 148,736 a------- c:\progra~2\hpeDCC.dll
- 2009-09-04 16:38 337,158 a------- c:\windows\inf\perflib\0415\perfi.dat
- 2009-09-04 16:38 337,158 a------- c:\windows\inf\perflib\0415\perfh.dat
- 2009-09-04 16:38 38,710 a------- c:\windows\inf\perflib\0415\perfd.dat
- 2009-09-04 16:38 38,710 a------- c:\windows\inf\perflib\0415\perfc.dat
- 2009-07-14 05:56 291,294 a------- c:\windows\inf\perflib\0409\perfi.dat
- 2009-07-14 05:56 291,294 a------- c:\windows\inf\perflib\0409\perfh.dat
- 2009-07-14 05:56 31,548 a------- c:\windows\inf\perflib\0409\perfd.dat
- 2009-07-14 05:56 31,548 a------- c:\windows\inf\perflib\0409\perfc.dat
- 2009-07-14 05:41 174 a--sh--- c:\program files\desktop.ini
- 2009-07-14 01:34 291,294 a------- c:\windows\inf\perflib\0000\perfi.dat
- 2009-07-14 01:34 291,294 a------- c:\windows\inf\perflib\0000\perfh.dat
- 2009-07-14 01:34 31,548 a------- c:\windows\inf\perflib\0000\perfd.dat
- 2009-07-14 01:34 31,548 a------- c:\windows\inf\perflib\0000\perfc.dat
- 2009-06-10 22:26 9,633,792 a--shr-- c:\windows\fonts\StaticCache.dat
- 2009-09-04 16:19 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\history\history.ie5\index.dat
- 2009-09-04 16:19 32,768 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat
- 2009-09-04 16:19 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\cookies\index.dat
- 2009-09-04 16:19 245,760 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat
- ============= FINISH: 23:57:15,91 ===============
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement