API tools faq
paste
Advertisement
Guest User

DDS.TXT

a guest
Oct 17th, 2010
222
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 11.65 KB | None | 0 0
raw download clone embed print report
  1.  
  2. DDS (V*r_10-10-10.03) - NTFSx86
  3. Run by Raffa*lla at 23.59.12,50 on 17/10/2010
  4. Int*rn*t *xplor*r: 8.0.6001.18702 Brows*rJavaV*rsion: 1.6.0_21
  5. Microsoft Windows XP Prof*ssional 5.1.2600.3.1252.39.1040.18.3071.2411 [GMT 2:00]
  6.  
  7. AV: AntiVir D*sktop *On-acc*ss scanning *nabl*d* (Updat*d) {AD166499-45F9-482A-A743-FDD3350758C7}
  8.  
  9. ============== Running Proc*ss*s ===============
  10.  
  11. C:\WINDOWS\syst*m32\svchost -k DcomLaunch
  12. svchost.*x*
  13. C:\WINDOWS\Syst*m32\svchost.*x* -k n*tsvcs
  14. svchost.*x*
  15. svchost.*x*
  16. C:\WINDOWS\*xplor*r.*X*
  17. C:\WINDOWS\syst*m32\spoolsv.*x*
  18. C:\Programmi\Avira\AntiVir D*sktop\sch*d.*x*
  19. C:\Programmi\Avira\AntiVir D*sktop\avguard.*x*
  20. svchost.*x*
  21. C:\Programmi\Avira\AntiVir D*sktop\avshadow.*x*
  22. C:\WINDOWS\syst*m32\nvsvc32.*x*
  23. C:\WINDOWS\RTHDCPL.*X*
  24. C:\WINDOWS\syst*m32\rundll32.*x*
  25. C:\Programmi\Avira\AntiVir D*sktop\avgnt.*x*
  26. C:\WINDOWS\syst*m32\RUNDLL32.*X*
  27. C:\WINDOWS\syst*m32\ctfmon.*x*
  28. C:\WINDOWS\syst*m32\rundll32.*x*
  29. C:\WINDOWS\Syst*m32\svchost.*x* -k HTTPFilt*r
  30. C:\WINDOWS\syst*m32\wscntfy.*x*
  31. C:\Programmi\Mozilla Fir*fox\fir*fox.*x*
  32. C:\Programmi\Mozilla Fir*fox\plugin-contain*r.*x*
  33. C:\WINDOWS\syst*m32\wuauclt.*x*
  34. C:\Docum*nts and S*ttings\Raffa*lla\Docum*nti\Download\dds.scr
  35.  
  36. ============== Ps*udo HJT R*port ===============
  37.  
  38. uStart Pag* = hxxp://www.t*l*2.it/
  39. uInt*rn*t Conn*ction Wizard,Sh*llN*xt = https://accounts*rvic*s.passport.n*t/r*g.srf?xpwiz=tru*&lc=1040&id=2
  40. uInt*rn*t S*ttings,ProxyOv*rrid* = *.local
  41. BHO: Adob* PDF Link H*lp*r: {18df081c-*8ad-4283-a596-fa578c2*bdc3} - c:\programmi\fil* comuni\adob*\acrobat\activ*x\AcroI*H*lp*rShim.dll
  42. BHO: Spybot-S&D I* Prot*ction: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDH*lp*r.dll
  43. BHO: Groov* GFS Brows*r H*lp*r: {72853161-30c5-4d22-b7f9-0bbc1d38a37*} - c:\progra~1\micros~2\offic*12\GRA8*1~1.DLL
  44. BHO: Java(tm) Plug-In 2 SSV H*lp*r: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\programmi\java\jr*6\bin\jp2ssv.dll
  45. BHO: Windows Liv* Toolbar H*lp*r: {*15a8dc0-8516-42a1-81*a-dc94*c1acf10} - c:\programmi\windows liv*\toolbar\wltcor*.dll
  46. TB: &Windows Liv* Toolbar: {21fa44*f-376d-4d53-9b0f-8a89d3229068} - c:\programmi\windows liv*\toolbar\wltcor*.dll
  47. uRun: [Googl* Updat*] "c:\docum*nts and s*ttings\raffa*lla\impostazioni locali\dati applicazioni\googl*\updat*\Googl*Updat*.*x*" /c
  48. uRun: [ctfmon.*x*] c:\windows\syst*m32\ctfmon.*x*
  49. mRun: [RTHDCPL] RTHDCPL.*X*
  50. mRun: [NvCplDa*mon] RUNDLL32.*X* c:\windows\syst*m32\NvCpl.dll,NvStartup
  51. mRun: [nwiz] nwiz.*x* /install
  52. mRun: [Blu*toothAuth*nticationAg*nt] rundll32.*x* bthprops.cpl,,Blu*toothAuth*nticationAg*nt
  53. mRun: [avgnt] "c:\programmi\avira\antivir d*sktop\avgnt.*x*" /min
  54. mRun: [NvM*diaC*nt*r] RUNDLL32.*X* c:\windows\syst*m32\NvMcTray.dll,NvTaskbarInit
  55. dRun: [CTFMON.*X*] c:\windows\syst*m32\CTFMON.*X*
  56. I*: *&sporta in Microsoft *xc*l - c:\progra~1\micros~2\offic*12\*XC*L.*X*/3000
  57. I*: {*2*2dd38-d088-4134-82b7-f2ba38496583} - %windir%\N*twork Diagnostic\xpn*tdiag.*x*
  58. I*: {FB5F1910-F110-11d2-BB9*-00C04F795683} - c:\programmi\m*ss*ng*r\msmsgs.*x*
  59. I*: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-*99415F33A*C} - c:\programmi\windows liv*\writ*r\Writ*rBrows*r*xt*nsion.dll
  60. I*: {2670000A-7350-4f3c-8081-5663**0C6C49} - {48*73304-*1D6-4330-914C-F5F514*3486C} - c:\progra~1\micros~2\offic*12\ONBttnI*.dll
  61. I*: {92780B25-18CC-41C8-B9B*-3C9C571A8263} - {FF059*31-CC5A-4*2*-BF3B-96*929D65503} - c:\progra~1\micros~2\offic*12\R*FI*BAR.DLL
  62. I*: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDH*lp*r.dll
  63. DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://m*ss*ng*r.zon*.msn.com/binary/msgrchkr.cab56986.cab
  64. DPF: {6414512B-B978-451D-A0D8-FCFDF33*833C} - hxxp://updat*.microsoft.com/windowsupdat*/v6/V5Controls/*n/x86/cli*nt/wuw*b_sit*.cab?1283152378250
  65. DPF: {6*32070A-766D-4**6-879C-DC1FA91D2FC3} - hxxp://www.updat*.microsoft.com/microsoftupdat*/v6/V5Controls/*n/x86/cli*nt/muw*b_sit*.cab?1287339498625
  66. DPF: {8AD9C840-044*-11D1-B3*9-00805F499D93} - hxxp://java.sun.com/updat*/1.6.0/jinstall-1_6_0_21-windows-i586.cab
  67. DPF: {C3F79A2B-B9B4-4A66-B012-3**46475B072} - hxxp://m*ss*ng*r.zon*.msn.com/binary/M*ss*ng*rStatsPACli*nt.cab56907.cab
  68. DPF: {CAF**FAC-0016-0000-0021-ABCD*FF*DCBA} - hxxp://java.sun.com/updat*/1.6.0/jinstall-1_6_0_21-windows-i586.cab
  69. DPF: {CAF**FAC-FFFF-FFFF-FFFF-ABCD*FF*DCBA} - hxxp://java.sun.com/updat*/1.6.0/jinstall-1_6_0_21-windows-i586.cab
  70. Handl*r: groov*LocalGWS - {88F*D34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~2\offic*12\GR99D3~1.DLL
  71. Handl*r: skyp*4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\fil*co~1\skyp*\SKYP*4~1.DLL
  72. SSODL: WPDShS*rvic*Obj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\syst*m32\WPDShS*rvic*Obj.dll
  73. S*H: Groov* GFS Stub *x*cution Hook: {b5a7f190-dda6-4420-b3ba-52453494*6cd} - c:\progra~1\micros~2\offic*12\GRA8*1~1.DLL
  74. Hosts: 127.0.0.1 www.spywar*info.com
  75.  
  76. ================= FIR*FOX ===================
  77.  
  78. FF - Profil*Path - c:\docum*~1\raffa*~1\datiap~1\mozilla\fir*fox\profil*s\avxky595.d*fault\
  79. FF - pr*fs.js: brows*r.s*arch.s*l*ct*d*ngin* - Googl*
  80. FF - pr*fs.js: brows*r.startup.hom*pag* - hxxp://forum.swzon*.it/sicur*zza/112786-virus-impossibil*-acc*d*r*-siti-microsoft-*-antivirus-22.html#post1129605
  81. FF - compon*nt: c:\programmi\mozilla fir*fox\*xt*nsions\{ab2c*124-6272-4b12-94a9-7303c7397bd1}\compon*nts\Skyp*FfCompon*nt.dll
  82. FF - plugin: c:\docum*nts and s*ttings\raffa*lla\dati applicazioni\fac*book\npfbplugin_1_0_3.dll
  83. FF - plugin: c:\docum*nts and s*ttings\raffa*lla\impostazioni locali\dati applicazioni\googl*\updat*\1.2.183.27\npGoogl*On*Click8.dll
  84. FF - plugin: c:\programmi\googl*\updat*\1.2.183.39\npGoogl*On*Click8.dll
  85. FF - plugin: c:\programmi\java\jr*6\bin\n*w_plugin\npd*ployJava1.dll
  86. FF - plugin: c:\programmi\microsoft\offic* liv*\npOLW.dll
  87. FF - plugin: c:\programmi\picasa2\npPicasa2.dll
  88. FF - plugin: c:\programmi\windows liv*\photo gall*ry\NPWLPG.dll
  89. FF - Hidd*n*xt*nsion: Java Consol*: No R*gistry R*f*r*nc* - c:\programmi\mozilla fir*fox\*xt*nsions\{CAF**FAC-0016-0000-0021-ABCD*FF*DCBA}
  90.  
  91. ---- FIR*FOX POLICI*S ----
  92. c:\programmi\mozilla fir*fox\gr*pr*fs\all.js - pr*f("n*twork.IDN.whit*list.xn--mgbaam7a8h", tru*);
  93. c:\programmi\mozilla fir*fox\gr*pr*fs\all.js - pr*f("n*twork.IDN.whit*list.xn--mgb*rp4a5d4ar", tru*);
  94.  
  95. ============= S*RVIC*S / DRIV*RS ===============
  96.  
  97. R0 pavboot;pavboot;c:\windows\syst*m32\driv*rs\pavboot.sys [2010-10-17 28552]
  98. R1 avgio;avgio;c:\programmi\avira\antivir d*sktop\avgio.sys [2010-8-31 11608]
  99. R2 AntiVirSch*dul*rS*rvic*;Avira AntiVir Sch*dul*r;c:\programmi\avira\antivir d*sktop\sch*d.*x* [2010-8-31 135336]
  100. R2 AntiVirS*rvic*;Avira AntiVir Guard;c:\programmi\avira\antivir d*sktop\avguard.*x* [2010-8-31 267432]
  101. R2 avgntflt;avgntflt;c:\windows\syst*m32\driv*rs\avgntflt.sys [2009-5-18 60936]
  102. R3 RTLWUSB;N*TG*AR WG111v2 54Mbps Wir*l*ss USB 2.0 Adapt*r NT Driv*r;c:\windows\syst*m32\driv*rs\wg111v2.sys [2010-8-30 272128]
  103. S2 gupdat*1cb080*5*4928a7;S*rvizio di Googl* Updat* (gupdat*1cb080*5*4928a7);c:\programmi\googl*\updat*\Googl*Updat*.*x* [2010-6-9 133104]
  104. S3 npggsvc;nProt*ct Gam*Guard S*rvic*;c:\windows\syst*m32\gam*mon.d*s -s*rvic* --> c:\windows\syst*m32\Gam*Mon.d*s -s*rvic* [?]
  105. S4 TomTomHOM*S*rvic*;TomTomHOM*S*rvic*;c:\programmi\tomtom hom* 2\TomTomHOM*S*rvic*.*x* [2010-8-24 92008]
  106.  
  107. =============== Cr*at*d Last 30 ================
  108.  
  109. 2010-10-17 19:05:16 -------- d-sh--w- c:\docum*nts and s*ttings\raffa*lla\I*CompatCach*
  110. 2010-10-17 19:04:38 -------- d-sh--w- c:\docum*nts and s*ttings\raffa*lla\PrivacI*
  111. 2010-10-17 19:01:48 -------- d-sh--w- c:\docum*nts and s*ttings\raffa*lla\I*TldCach*
  112. 2010-10-17 18:33:06 -------- dc-h--w- c:\windows\i*8
  113. 2010-10-17 12:36:01 189520 ----a-w- c:\windows\syst*m32\driv*rs\tmcomm.sys
  114. 2010-10-17 12:33:21 28552 ----a-w- c:\windows\syst*m32\driv*rs\pavboot.sys
  115. 2010-10-17 12:32:39 -------- d-----w- c:\programmi\Panda S*curity
  116. 2010-10-17 11:38:06 -------- d-----w- c:\programmi\Spybot - S*arch & D*stroy
  117. 2010-10-17 11:38:06 -------- d-----w- c:\docum*~1\allus*~1\datiap~1\Spybot - S*arch & D*stroy
  118. 2010-10-16 13:35:28 -------- d-----w- c:\programmi\Divin*
  119. 2010-10-15 13:46:25 -------- d-----w- c:\programmi\Microsoft MIX Onlin*
  120. 2010-10-15 11:00:40 14048 ------w- c:\windows\syst*m32\spmsg2.dll
  121. 2010-10-15 10:57:52 -------- d-----w- c:\windows\syst*m32\XPSVi*w*r
  122. 2010-10-15 10:57:21 89088 ----a-w- c:\windows\syst*m32\spool\prtprocs\w32x86\filt*rpip*lin*printproc.dll
  123. 2010-10-15 10:56:57 89088 -c----w- c:\windows\syst*m32\dllcach*\filt*rpip*lin*printproc.dll
  124. 2010-10-15 10:56:57 597504 -c----w- c:\windows\syst*m32\dllcach*\printfilt*rpip*lin*svc.*x*
  125. 2010-10-15 10:56:57 597504 ------w- c:\windows\syst*m32\spool\prtprocs\w32x86\printfilt*rpip*lin*svc.*x*
  126. 2010-10-15 10:56:57 575488 -c----w- c:\windows\syst*m32\dllcach*\xpsshhdr.dll
  127. 2010-10-15 10:56:57 575488 ------w- c:\windows\syst*m32\xpsshhdr.dll
  128. 2010-10-15 10:56:57 117760 ------w- c:\windows\syst*m32\prntvpt.dll
  129. 2010-10-15 10:56:56 1676288 -c----w- c:\windows\syst*m32\dllcach*\xpssvcs.dll
  130. 2010-10-15 10:56:56 1676288 ------w- c:\windows\syst*m32\xpssvcs.dll
  131. 2010-10-15 10:56:56 -------- d-----w- C:\96d2a0f6c*f914d6c*dbb41cbf4**a
  132. 2010-10-15 10:47:41 -------- d-----r- C:\AHCach*
  133. 2010-10-15 10:13:40 -------- d-----w- c:\docum*~1\raffa*~1\datiap~1\JustR*siz*It.742*03C4887133A**1D0C646BCFAA94B0D0*9874.1
  134. 2010-10-15 10:11:13 -------- d-----w- c:\docum*~1\raffa*~1\datiap~1\com.l*vitation.ColorBrows*r.*8C85B0D1658562C6BF4**77663*B3C86B87123C.1
  135. 2010-10-15 09:56:07 -------- d-----w- c:\programmi\fil* comuni\Adob* AIR
  136. 2010-10-14 15:59:47 -------- d-----w- c:\programmi\GlobFX
  137. 2010-10-14 11:37:40 -------- d-----w- C:\gPotato.*u
  138. 2010-10-14 01:27:12 -------- d-----w- c:\programmi\N*ffy
  139. 2010-10-12 11:14:16 -------- d-----w- c:\docum*nts and s*ttings\raffa*lla\.n*tb*ans
  140. 2010-10-12 11:14:14 -------- d-----w- c:\docum*nts and s*ttings\raffa*lla\.n*tb*ans-r*gistration
  141. 2010-10-12 11:12:41 -------- d-----w- c:\docum*nts and s*ttings\raffa*lla\.nbi
  142. 2010-10-12 10:59:55 -------- d-----w- c:\docum*nts and s*ttings\raffa*lla\.W*bId*10
  143. 2010-10-04 16:59:48 1446264 ----a-w- c:\programmi\mozilla fir*fox\plugins\npL*gitCh*ckPlugin.dll
  144. 2010-10-04 16:40:27 -------- d-----w- c:\programmi\Windows M*dia Conn*ct 2
  145. 2010-10-04 16:38:54 -------- d-----w- c:\windows\syst*m32\LogFil*s
  146. 2010-10-04 16:38:50 26144 ----a-w- c:\windows\syst*m32\spupdsvc.*x*
  147. 2010-10-04 16:33:58 221184 ----a-w- c:\windows\syst*m32\wmpns.dll
  148. 2010-10-02 22:06:40 -------- d-----w- c:\docum*~1\raffa*~1\datiap~1\KompoZ*r
  149. 2010-10-01 12:37:04 -------- d-----w- c:\docum*~1\allus*~1\datiap~1\TomTom
  150. 2010-10-01 12:35:58 -------- d-----w- c:\docum*~1\raffa*~1\impost~1\datiap~1\TomTom
  151. 2010-10-01 12:35:58 -------- d-----w- c:\docum*~1\raffa*~1\datiap~1\TomTom
  152. 2010-10-01 12:35:53 -------- d-----w- c:\programmi\TomTom Int*rnational B.V
  153. 2010-10-01 12:35:32 -------- d-----w- c:\programmi\TomTom HOM* 2
  154. 2010-09-30 11:32:50 3591496 ----a-w- c:\windows\syst*m32\Gam*Mon.d*s
  155. 2010-09-30 11:30:33 5174 ----a-w- c:\windows\syst*m32\nppt9x.vxd
  156. 2010-09-30 11:30:33 4682 ----a-w- c:\windows\syst*m32\npptNT2.sys
  157. 2010-09-30 11:30:18 -------- d-----w- C:\Program Fil*s
  158. 2010-09-29 20:04:08 -------- d-----w- c:\programmi\*asyPHP-5.3.3
  159. 2010-09-29 11:34:19 73728 ----a-w- c:\windows\syst*m32\javacpl.cpl
  160. 2010-09-29 11:34:19 423656 ----a-w- c:\windows\syst*m32\d*ployJava1.dll
  161. 2010-09-29 11:34:19 423656 ----a-w- c:\programmi\mozilla fir*fox\plugins\npd*ployJava1.dll
  162. 2010-09-29 11:17:37 -------- d-----w- c:\docum*~1\raffa*~1\impost~1\datiap~1\T*mp
  163. 2010-09-29 11:04:08 -------- d-----w- c:\windows\syst*m32\NtmsData
  164.  
  165. ==================== Find3M ====================
  166.  
  167. 2010-08-10 03:15:58 94208 ----a-w- c:\windows\syst*m32\QuickTim*VR.qtx
  168. 2010-08-10 03:15:58 69632 ----a-w- c:\windows\syst*m32\QuickTim*.qts
  169.  
  170. ============= FINISH: 0.00.50,62 ===============
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!