Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- DDS (Ver_2012-11-20.01) - NTFS_x86
- Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.51.2
- Run by Gia at 13:34:25 on 2014-02-19
- Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.446.72 [GMT -7:00]
- .
- AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
- .
- ============== Running Processes ================
- .
- C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
- C:\WINDOWS\System32\WLTRYSVC.EXE
- C:\WINDOWS\System32\bcmwltry.exe
- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
- C:\WINDOWS\system32\spoolsv.exe
- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
- C:\Program Files\Java\jre7\bin\jqs.exe
- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
- C:\WINDOWS\System32\alg.exe
- C:\WINDOWS\Explorer.EXE
- C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe
- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
- C:\WINDOWS\system32\WLTRAY.exe
- C:\WINDOWS\stsystra.exe
- C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
- C:\Program Files\AVAST Software\Avast\AvastUI.exe
- C:\Program Files\Common Files\Java\Java Update\jusched.exe
- C:\WINDOWS\system32\ctfmon.exe
- C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe
- C:\Program Files\Mozilla Firefox\firefox.exe
- C:\WINDOWS\system32\wbem\wmiprvse.exe
- C:\WINDOWS\System32\svchost.exe -k netsvcs
- C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
- C:\WINDOWS\system32\svchost.exe -k NetworkService
- C:\WINDOWS\system32\svchost.exe -k LocalService
- C:\WINDOWS\system32\svchost.exe -k imgsvc
- C:\WINDOWS\System32\svchost.exe -k HTTPFilter
- .
- ============== Pseudo HJT Report ===============
- .
- BHO: ExplorerWnd Helper: {10921475-03CE-4E04-90CE-E2E7EF20C814} - c:\program files\iobit\iobit uninstaller\UninstallExplorer32.dll
- BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
- BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
- BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
- BHO: {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} - <orphaned>
- BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
- BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
- BHO: Advanced SystemCare Browser Protection: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - c:\program files\iobit\surfing protection\browerprotect\ASCPlugin_Protection.dll
- BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
- TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - c:\program files\avast software\avast\aswWebRepIE.dll
- TB: ExplorerWnd Helper: {10921475-03CE-4E04-90CE-E2E7EF20C814} - c:\program files\iobit\iobit uninstaller\UninstallExplorer32.dll
- uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
- uRun: [Advanced SystemCare 7] "c:\program files\iobit\advanced systemcare 7\ASCTray.exe" /Auto
- mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
- mRun: [SigmatelSysTrayApp] stsystra.exe
- mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
- mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
- mRun: [DVDLauncher] "c:\program files\cyberlink\powerdvd\DVDLauncher.exe"
- mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui
- mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
- uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
- mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
- mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
- IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
- IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
- IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
- IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
- IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
- .
- INFO: HKCU has more than 50 listed domains.
- If you wish to scan all of them, select the 'Force scan all domains' option.
- .
- DPF: {8FA2192F-B95D-40E3-898F-8D7ABB8E00D0} - hxxp://download-games.pogo.com/online2/pogo/mahjong_escape_ancient_japan/SpinTopGamesLauncher.cab
- DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
- DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
- DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - hxxp://games.pogo.com/online2/pogo/bejeweled2/popcaploader_v6.cab
- DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
- TCP: NameServer = 192.168.0.1 205.171.2.25
- TCP: Interfaces\{EE19877B-C2E5-43FF-8B5E-787F1E716225} : DHCPNameServer = 192.168.0.1 205.171.2.25
- Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
- SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
- .
- ================= FIREFOX ===================
- .
- FF - ProfilePath - c:\documents and settings\gia\application data\mozilla\firefox\profiles\5es4s4cr.default\
- FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll
- FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
- FF - plugin: c:\program files\microsoft silverlight\5.1.20913.0\npctrlui.dll
- FF - plugin: c:\program files\microsoft\office live\npOLW.dll
- FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
- FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
- FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_44.dll
- FF - ExtSQL: 2014-02-18 10:46; ascsurfingprotection@iobit.com; c:\documents and settings\gia\application data\mozilla\firefox\profiles\5es4s4cr.default\extensions\ascsurfingprotection@iobit.com
- .
- ---- FIREFOX POLICIES ----
- FF - user.js: network.http.pipelining.maxrequests - 8
- FF - user.js: network.http.request.max-start-delay - 0
- FF - user.js: network.http.max-connections - 48
- FF - user.js: network.http.max-connections-per-server - 16
- FF - user.js: network.http.max-persistent-connections-per-proxy - 16
- FF - user.js: network.http.max-persistent-connections-per-server - 8
- FF - user.js: browser.turbo.enabled - true
- FF - user.js: browser.display.show_image_placeholders - true
- FF - user.js: browser.chrome.favicons - false
- FF - user.js: browser.urlbar.autocomplete.enabled - true
- FF - user.js: browser.cache.memory.capacity - 16000
- FF - user.js: content.notify.ontimer - true
- FF - user.js: content.maxtextrun - 4095
- FF - user.js: content.max.tokenizing.time - 3000000
- FF - user.js: content.switch.threshold - 1000000
- FF - user.js: plugin.expose_full_path - true
- FF - user.js: ui.submenuDelay - 0
- FF - user.js: dom.disable_window_status_change - true
- .
- ============= SERVICES / DRIVERS ===============
- .
- R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-2-18 49944]
- R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-2-18 180248]
- R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-2-18 775952]
- R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-2-18 410784]
- R2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files\iobit\advanced systemcare 7\ASCService.exe [2014-2-18 881952]
- R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswmonflt.sys [2014-2-18 67824]
- R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2014-2-18 50344]
- R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2014-2-17 418376]
- R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2009-10-12 29208]
- R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-2-17 22856]
- S2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2014-2-17 701512]
- S2 MyWebSearchService;My Web Search Service;c:\progra~1\mywebs~1\bar\1.bin\mwssvc.exe --> c:\progra~1\mywebs~1\bar\1.bin\mwssvc.exe [?]
- S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2009-10-12 29208]
- S3 PTDMBus;PANTECH USB Modem Composite Device Driver ;c:\windows\system32\drivers\PTDMBus.sys [2009-12-26 55056]
- S3 PTDMMdm;PANTECH USB Modem Drivers ;c:\windows\system32\drivers\PTDMMdm.sys [2009-12-26 160912]
- S3 PTDMVsp;PANTECH USB Modem Serial Port ;c:\windows\system32\drivers\PTDMVsp.sys [2009-12-26 160912]
- S3 PTDMWFLT;PTDMWWAN Filter Driver;c:\windows\system32\drivers\PTDMWFLT.sys [2009-12-26 13456]
- S3 PTDMWWAN;PANTECH USB Modem WWAN Driver;c:\windows\system32\drivers\PTDMWWAN.sys [2009-12-26 118800]
- S3 SMSIVZAM5;SMSIVZAM5 NDIS Protocol Driver;c:\progra~1\verizo~1\vzacce~1\SMSIVZAM5.SYS [2009-5-25 32408]
- .
- =============== Created Last 30 ================
- .
- 2014-02-19 09:12:48 -------- d-----w- c:\program files\SystemRequirementsLab
- 2014-02-19 09:05:41 -------- d-----w- c:\documents and settings\gia\local settings\application data\Sun
- 2014-02-19 08:56:49 145408 ----a-w- c:\windows\system32\javacpl.cpl
- 2014-02-19 08:55:50 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
- 2014-02-19 07:57:17 74752 -c----w- c:\windows\system32\dllcache\cryptdlg.dll
- 2014-02-19 07:50:21 -------- d-----w- c:\windows\system32\winrm
- 2014-02-19 07:50:21 -------- d-----w- c:\windows\system32\GroupPolicy
- 2014-02-19 07:50:12 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
- 2014-02-19 03:06:54 -------- d-----w- c:\documents and settings\gia\application data\MSNInstaller
- 2014-02-19 01:34:04 24384 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
- 2014-02-19 00:46:21 -------- d-----w- c:\documents and settings\gia\AppData
- 2014-02-19 00:46:10 -------- d-----w- c:\documents and settings\all users\application data\ProductData
- 2014-02-19 00:43:15 -------- d-----w- c:\documents and settings\all users\application data\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
- 2014-02-19 00:24:19 27904 ----a-w- c:\windows\system32\drivers\risdptsk.sys
- 2014-02-19 00:24:19 -------- d-----w- C:\DrvInstall
- 2014-02-19 00:23:29 36864 ----a-w- c:\windows\system32\drivers\AmdK8.sys
- 2014-02-18 23:33:00 -------- d-----w- c:\documents and settings\gia\application data\IObit
- 2014-02-18 23:32:59 -------- d-----w- c:\documents and settings\all users\application data\IObit
- 2014-02-18 23:32:43 -------- d-----w- c:\program files\IObit
- 2014-02-18 13:54:46 -------- d-----w- c:\documents and settings\gia\local settings\application data\Adobe
- 2014-02-18 13:16:08 -------- d-sh--w- c:\documents and settings\gia\IECompatCache
- 2014-02-18 13:13:43 -------- d-sh--w- c:\documents and settings\gia\PrivacIE
- 2014-02-18 12:09:45 -------- d-----w- c:\documents and settings\gia\application data\AVAST Software
- 2014-02-18 11:40:36 180248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
- 2014-02-18 11:40:35 775952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
- 2014-02-18 11:40:33 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
- 2014-02-18 11:40:32 67824 ----a-w- c:\windows\system32\drivers\aswmonflt.sys
- 2014-02-18 11:40:08 43152 ----a-w- c:\windows\avastSS.scr
- 2014-02-18 11:37:17 -------- d-----w- c:\program files\AVAST Software
- 2014-02-18 11:35:45 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
- 2014-02-18 10:54:45 -------- d-----w- c:\documents and settings\gia\local settings\application data\Google
- 2014-02-18 10:10:56 -------- d-----w- c:\documents and settings\gia\local settings\application data\Mozilla
- 2014-02-18 10:02:36 -------- d-----w- c:\documents and settings\gia\application data\Malwarebytes
- 2014-02-18 07:35:44 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes' Anti-Malware (portable)
- 2014-02-18 07:31:39 52312 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
- 2014-02-18 06:16:32 -------- d-----w- c:\windows\pss
- 2014-02-18 03:51:27 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
- 2014-02-18 03:50:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
- 2014-02-18 03:50:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
- 2014-02-18 03:39:43 -------- d-----w- c:\documents and settings\all users\application data\Promote Installer
- .
- ==================== Find3M ====================
- .
- 2014-02-18 23:51:01 1952512 ----a-w- c:\windows\system32\drivers\BCMWL5.SYS
- 2014-02-18 06:15:21 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
- 2014-02-18 06:15:19 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
- 2014-02-05 23:26:52 920064 ----a-w- c:\windows\system32\wininet.dll
- 2014-02-05 23:26:43 43520 ----a-w- c:\windows\system32\licmgr10.dll
- 2014-02-05 23:26:42 1469440 ------w- c:\windows\system32\inetcpl.cpl
- 2014-02-05 23:26:37 18944 ----a-w- c:\windows\system32\corpol.dll
- 2014-02-05 22:24:05 385024 ----a-w- c:\windows\system32\html.iec
- 2014-01-19 07:32:23 231584 ------w- c:\windows\system32\MpSigStub.exe
- 2014-01-16 00:40:14 487016 ----a-w- C:\SecurityScanner.dll
- 2014-01-04 03:13:05 420864 ----a-w- c:\windows\system32\vbscript.dll
- 2013-12-05 11:26:06 1172992 ----a-w- c:\windows\system32\SET1A7.tmp
- 2013-12-05 11:26:06 1172992 ----a-w- c:\windows\system32\msxml3.dll
- 2013-11-27 20:21:06 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
- .
- ============= FINISH: 13:35:45.73 ===============
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement