. DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 6.0.2900.5512 Run by Ja at 18:05:35 on 2012-04-20 . ============== Running Processes =============== . C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\sm56hlpr.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Documents and Settings\Ja\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Ja\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Ja\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Ja\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Ja\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\WINDOWS\system32\notepad.exe C:\WINDOWS\explorer.exe C:\Documents and Settings\Ja\My Documents\Downloads\dds.scr C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService . ============== Pseudo HJT Report =============== . uStart Page = about:blank mStart Page = about:blank BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [ATIPTA] c:\program files\ati technologies\ati control panel\atiptaxx.exe mRun: [SoundMan] SOUNDMAN.EXE mRun: [SMSERIAL] sm56hlpr.exe dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab TCP: DhcpNameServer = 62.179.1.62 62.179.1.63 TCP: Interfaces\{F7BDA145-5822-4141-9333-6395CF0F08FB} : DhcpNameServer = 62.179.1.62 62.179.1.63 Notify: AtiExtEvent - Ati2evxx.dll . ============= SERVICES / DRIVERS =============== . . =============== Created Last 30 ================ . 2012-04-20 16:53:48 -------- d-sha-r- C:\cmdcons 2012-04-20 16:52:09 98816 ----a-w- c:\windows\sed.exe 2012-04-20 16:52:09 518144 ----a-w- c:\windows\SWREG.exe 2012-04-20 16:52:09 256000 ----a-w- c:\windows\PEV.exe 2012-04-20 16:52:09 208896 ----a-w- c:\windows\MBR.exe 2012-04-20 16:31:22 -------- d-----w- c:\windows\system32\CatRoot2 2012-04-18 17:03:27 -------- d-----w- c:\windows\pss 2012-04-18 17:01:41 -------- d-----w- C:\dff33730f482484d164b1a2d1a0ae71b 2012-04-18 16:20:24 90112 ----a-w- c:\windows\DUMP8155.tmp 2012-04-18 16:20:24 90112 ----a-w- c:\windows\DUMP6c75.tmp 2012-04-18 16:20:24 90112 ----a-w- c:\windows\DUMP5275.tmp 2012-04-18 15:08:30 -------- d-----w- c:\windows\system32\CatRoot2old 2012-04-17 16:14:46 -------- d-----w- c:\program files\IrfanView 2012-04-17 06:37:03 -------- d-----w- C:\windows@system 2012-04-16 20:11:19 -------- d-----w- C:\Poker 2012-04-15 12:32:37 -------- d-sh--w- c:\documents and settings\ja\IETldCache 2012-04-15 12:16:29 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll 2012-04-15 12:16:02 -------- d-----w- c:\windows\ie8updates 2012-04-15 12:15:48 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll 2012-04-15 12:15:48 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll 2012-04-15 12:15:48 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll 2012-04-15 12:15:48 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll 2012-04-15 12:15:48 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll 2012-04-15 12:15:48 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll 2012-04-15 12:15:48 11082752 -c----w- c:\windows\system32\dllcache\ieframe.dll 2012-04-15 12:14:18 81920 ----a-w- c:\windows\system32\ieencode.dll 2012-04-15 12:14:18 81920 ----a-w- c:\windows\system32\dllcache\ieencode.dll 2012-04-15 12:14:18 -------- dc-h--w- c:\windows\ie8 2012-04-15 12:00:02 -------- d-----w- C:\temp 2012-04-15 11:58:50 -------- d-----w- c:\windows\tiinst 2012-04-15 11:48:36 61067 ----a-w- c:\windows\system32\drivers\ftser2k.sys 2012-04-15 11:48:36 47249 ----a-w- c:\windows\system32\drivers\ftdibus.sys 2012-04-15 11:48:36 33360 ----a-w- c:\windows\system32\ftserui2.dll 2012-04-15 11:48:36 188416 ----a-w- c:\windows\system32\ftdiunin.exe 2012-04-15 11:48:36 176128 ----a-w- c:\windows\system32\ftd2xx.dll 2012-04-15 11:48:36 106496 ----a-w- c:\windows\system32\ftbusui.dll 2012-04-15 11:48:36 102400 ----a-w- c:\windows\system32\FTLang.dll 2012-04-15 11:48:35 -------- d-----w- c:\program files\Polski VAG 4.9 2012-04-15 08:21:42 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll 2012-04-15 08:20:56 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll 2012-04-15 08:20:10 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys 2012-04-15 08:18:56 105472 -c----w- c:\windows\system32\dllcache\mup.sys 2012-04-15 08:17:34 852480 -c--a-w- c:\windows\system32\dllcache\vgx.dll 2012-04-15 08:16:43 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys 2012-04-15 08:16:36 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys 2012-04-15 08:16:35 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll 2012-04-15 08:16:35 3072 ------w- c:\windows\system32\iacenc.dll 2012-04-15 08:14:53 45568 -c----w- c:\windows\system32\dllcache\wab.exe 2012-04-14 19:50:11 -------- d-----w- c:\windows\system32\scripting 2012-04-14 19:50:11 -------- d-----w- c:\windows\l2schemas 2012-04-14 19:50:10 -------- d-----w- c:\windows\system32\en 2012-04-14 19:50:10 -------- d-----w- c:\windows\system32\bits 2012-04-14 19:45:58 -------- d-----w- c:\windows\network diagnostic 2012-04-14 19:41:48 -------- d-----w- c:\windows\EHome 2012-04-14 18:29:27 73216 ------w- c:\windows\system32\drivers\atintuxx.sys 2012-04-12 17:13:17 -------- d-----w- c:\documents and settings\ja\local settings\application data\ApplicationHistory 2012-04-12 15:19:27 -------- d-----w- c:\documents and settings\all users\application data\PITy 2012-04-12 15:15:04 -------- d-----w- c:\program files\PITy 2012-04-12 15:00:30 -------- d-----w- c:\documents and settings\ja\application data\HpUpdate 2012-04-12 15:00:14 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys 2012-04-12 15:00:10 1792872 ----a-w- c:\windows\system32\HPScanMiniDrv_DJ2050_510g.dll 2012-04-12 14:59:56 267112 ----a-w- c:\windows\system32\hpinksts8711LM.dll 2012-04-12 14:59:56 232296 ----a-w- c:\windows\system32\hpinksts8711.dll 2012-04-12 14:59:56 213864 ----a-w- c:\windows\system32\hpinkcoi8711.dll 2012-04-12 14:59:25 -------- d-----w- c:\program files\HP 2012-04-12 14:50:54 -------- d-----w- c:\documents and settings\ja\local settings\application data\HP 2012-04-12 14:46:08 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys 2012-04-12 07:58:18 -------- d-----w- C:\found.000 2012-04-11 21:51:54 -------- d-----w- c:\documents and settings\ja\local settings\application data\APN 2012-04-11 21:50:47 -------- d-----w- c:\program files\The KMPlayer 2012-04-11 20:14:09 -------- d-----w- c:\program files\JDownloader 2012-04-11 19:16:08 73728 ----a-w- c:\windows\system32\javacpl.cpl 2012-04-11 19:16:08 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-04-11 18:43:47 21504 ----a-w- c:\windows\system32\drivers\hidserv.dll 2012-04-11 18:42:11 -------- d-----w- c:\windows\ServicePackFiles . ==================== Find3M ==================== . 2012-04-17 06:33:59 90112 ----a-w- c:\windows\DUMP4f97.tmp 2012-04-14 11:54:44 94208 ----a-w- c:\windows\DUMP64f3.tmp 2012-04-12 14:42:42 94208 ----a-w- c:\windows\DUMP4788.tmp 2012-02-29 14:10:16 177664 ----a-w- c:\windows\system32\wintrust.dll 2012-02-29 14:10:16 148480 ----a-w- c:\windows\system32\imagehlp.dll 2012-02-28 18:50:30 667136 ----a-w- c:\windows\system32\wininet.dll 2012-02-28 18:50:30 61952 ----a-w- c:\windows\system32\tdc.ocx 2012-02-28 13:50:54 369664 ----a-w- c:\windows\system32\html.iec 2012-02-03 09:22:18 1860096 ----a-w- c:\windows\system32\win32k.sys . ============= FINISH: 18:05:47.18 ===============