DDS (Ver_09-12-01.01) - NTFSx86 Run by Srdjan at 21:52:55.00 on Tue 02/16/2010 Internet Explorer: 6.0.2900.5512 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.511.226 [GMT 1:00] AV: avast! antivirus 4.8.1368 [VPS 100216-1] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} ============== Running Processes =============== C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\WINDOWS\Mixer.exe C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\DAEMON Tools Lite\DTLite.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\GIGABYTE\Common\GNConfig.exe C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe C:\WINDOWS\system32\FsUsbExService.Exe C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe C:\WINDOWS\System32\svchost.exe -k imgsvc C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\System32\svchost.exe -k HTTPFilter C:\Program Files\BitTorrent\bittorrent.exe C:\Documents and Settings\Srdjan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Srdjan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Srdjan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Srdjan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Srdjan\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Srdjan\My Documents\Downloads\dds.com ============== Pseudo HJT Report =============== uStart Page = hxxp://eu.ask.com?o=15458&l=dis BHO: FGCatchUrl: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} - c:\program files\flashget\jccatch.dll BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: FlashGet GetFlash Class: {f156768e-81ef-470c-9057-481ba8380dba} - c:\program files\flashget\getflash.dll TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File uRun: [Google Update] "c:\documents and settings\srdjan\local settings\application data\google\update\GoogleUpdate.exe" /c uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background uRun: [AutoStartNPSAgent] c:\program files\samsung\samsung new pc studio\NPSAgent.exe uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe mRun: [SoundMan] SOUNDMAN.EXE mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot mRun: [NPSStartup] mRun: [C-Media Mixer] Mixer.exe /startup mRun: [OrderReminder] c:\program files\hewlett-packard\orderreminder\OrderReminder.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\gigaby~1.lnk - c:\program files\gigabyte\common\GNConfig.exe IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\program files\flashget\FlashGet.exe IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab DPF: {31435657-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab TCP: {CA6EC135-2FB1-42FD-B46F-E637165D31D5} = 194.106.162.2 194.106.162.10 Notify: AtiExtEvent - Ati2evxx.dll ============= SERVICES / DRIVERS =============== R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-12-23 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-12-23 20560] R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast4\ashServ.exe [2009-12-23 138680] R2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files\common files\magix services\database\bin\FABS.exe [2009-8-27 1253376] R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2010-1-13 233472] R2 NIHardwareService;NIHardwareService;c:\program files\common files\native instruments\hardware\NIHardwareService.exe [2009-7-17 3576320] R3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast4\ashMaiSv.exe [2009-12-23 254040] R3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast4\ashWebSv.exe [2009-12-23 352920] R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2010-1-13 36608] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\common files\magix services\database\bin\fbserver.exe [2008-8-7 3276800] S3 SetupNTGLM7X;SetupNTGLM7X;d:\install\maticna ploca msi kt4v\NTGLM7X.SYS [2008-11-1 22439] S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2010-1-13 90112] S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2010-1-13 14976] S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2010-1-13 121856] ============== File Associations =============== regfile="regedit.exe" "%1" =============== Created Last 30 ================ 2010-02-16 14:01:38 0 d-----w- c:\program files\Mixxx 2010-02-15 14:07:33 166980 ----a-w- c:\windows\system32\x 2010-02-12 23:49:03 0 d-----w- c:\docume~1\srdjan\applic~1\Toon Boom Animation 2010-02-12 23:34:00 0 d-----w- c:\program files\common files\Macrovision Shared 2010-02-11 20:32:10 165 ----a-w- C:\.persist 2010-02-11 20:28:42 0 d-----w- c:\docume~1\srdjan\applic~1\Scirra 2010-02-11 20:28:14 74072 ----a-w- c:\windows\system32\XAPOFX1_4.dll 2010-02-11 20:28:14 528216 ----a-w- c:\windows\system32\XAudio2_6.dll 2010-02-11 20:28:12 238936 ----a-w- c:\windows\system32\xactengine3_6.dll 2010-02-11 20:28:11 22360 ----a-w- c:\windows\system32\X3DAudio1_7.dll 2010-02-11 20:28:10 515416 ----a-w- c:\windows\system32\XAudio2_5.dll 2010-02-11 20:28:08 238936 ----a-w- c:\windows\system32\xactengine3_5.dll 2010-02-11 20:28:07 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll 2010-02-11 20:28:06 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll 2010-02-11 20:28:04 235344 ----a-w- c:\windows\system32\d3dx11_42.dll 2010-02-11 20:28:03 453456 ----a-w- c:\windows\system32\d3dx10_42.dll 2010-02-11 20:28:02 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll 2010-02-11 20:19:24 0 d--h--w- c:\windows\msdownld.tmp 2010-02-11 20:17:48 0 d-----w- c:\program files\Scirra 2010-02-09 16:53:06 8628 ---ha-w- c:\windows\system32\ZSHP1020.GID 2010-02-08 21:07:55 1529 ----a-w- c:\documents and settings\srdjan\.recently-used.xbel 2010-02-08 10:24:43 143360 ----a-r- c:\windows\apptune1020.exe 2010-02-08 10:24:30 0 d--h--w- c:\program files\Zenographics 2010-02-08 10:23:58 86016 ----a-w- c:\windows\system32\ZSPOOL.DLL 2010-02-08 10:23:58 86016 ----a-w- c:\windows\system32\ZLhp1020.dll 2010-02-08 10:23:58 7294 ----a-r- c:\windows\system32\ZSHP1020.HLP 2010-02-08 10:23:58 574100 ----a-r- c:\windows\system32\hp1022n.img 2010-02-08 10:23:58 397312 ----a-r- c:\windows\system32\ZSHP1020.EXE 2010-02-08 10:23:58 28672 ----a-w- c:\windows\system32\zlm.dll 2010-02-08 10:23:58 28672 ----a-w- c:\windows\system32\IMF32.DLL 2010-02-08 10:23:58 24576 ----a-w- c:\windows\system32\ZTAG32.DLL 2010-02-08 10:23:58 206768 ----a-r- c:\windows\system32\hp1022.img 2010-02-08 10:23:58 128612 ----a-r- c:\windows\system32\hp1020.img 2010-02-08 10:23:58 106496 ----a-r- c:\windows\system32\VSHP1020.DLL 2010-02-08 10:19:55 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys 2010-02-07 23:04:27 56 ----a-w- c:\windows\cdplayer.ini 2010-02-07 13:02:42 0 d-----w- c:\docume~1\srdjan\applic~1\ICSharpCode 2010-02-07 13:01:33 0 d-----w- c:\docume~1\srdjan\applic~1\codeblocks 2010-02-07 13:00:46 0 d-----w- c:\program files\CodeBlocks 2010-02-07 12:44:49 2292 ----a-w- c:\documents and settings\srdjan\.lmmsrc.xml 2010-02-07 12:44:07 0 d-----w- c:\documents and settings\srdjan\lmms 2010-02-07 12:43:07 0 d-----w- c:\program files\LMMS 0.4.6 2010-02-07 12:24:54 0 d-----w- c:\program files\SharpDevelop 2010-02-07 11:51:08 0 d-----w- c:\program files\Paint.NET 2010-02-07 11:48:13 0 d-----w- c:\windows\system32\XPSViewer 2010-02-07 11:47:03 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2010-02-07 11:47:03 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2010-02-07 11:47:03 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll 2010-02-07 11:47:03 575488 ------w- c:\windows\system32\xpsshhdr.dll 2010-02-07 11:47:03 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll 2010-02-07 11:47:03 1676288 ------w- c:\windows\system32\xpssvcs.dll 2010-02-07 11:47:03 117760 ------w- c:\windows\system32\prntvpt.dll 2010-02-07 11:47:02 0 d-----w- C:\e5922119756c8c43e23248957802 2010-02-06 23:53:24 0 d--h--r- C:\AHCache 2010-02-06 19:54:06 7168 --sha-w- c:\windows\Thumbs.db 2010-02-06 19:54:00 16896 --sha-w- C:\Thumbs.db 2010-02-04 23:24:56 0 d-----w- c:\program files\Convert MP4 to MP3 2010-02-02 23:03:51 114962 ----a-w- C:\crna_rupa.gif 2010-02-01 20:32:28 0 d-----w- c:\docume~1\srdjan\applic~1\PowerRangers 2010-02-01 20:12:53 107888 ----a-w- c:\windows\system32\CmdLineExt.dll 2010-02-01 19:44:00 1221 ----a-w- c:\windows\disney.ini 2010-02-01 19:43:51 192 ----a-w- c:\windows\disneysy.ini 2010-01-30 15:11:01 0 d-----w- c:\program files\Alex Feinman 2010-01-30 12:17:56 10624 -c--a-w- c:\windows\system32\dllcache\gameenum.sys 2010-01-30 12:17:56 10624 ----a-w- c:\windows\system32\drivers\gameenum.sys 2010-01-30 12:17:34 25 ----a-w- c:\windows\mixerdef.ini 2010-01-30 12:14:57 135168 ----a-r- c:\windows\cmuninst.exe 2010-01-30 12:14:57 135168 ----a-r- c:\windows\cmuninst.dat 2010-01-30 12:14:55 32768 ----a-r- c:\windows\system32\cmnprop.dll 2010-01-30 12:14:55 1228800 ----a-r- c:\windows\mixer.exe 2010-01-30 12:14:50 370382 ----a-r- c:\windows\system32\drivers\cmaudio.sys 2010-01-30 01:21:51 0 d-----w- c:\program files\PowerQuest 2010-01-29 09:14:08 0 d-----w- c:\program files\d-lusion 2010-01-26 09:40:25 0 d-----w- C:\askola 2010-01-26 09:40:24 0 d-----w- c:\program files\aSkola 2010-01-26 09:40:21 299520 ----a-w- c:\windows\uninst.exe 2010-01-24 15:23:09 0 d-sh--w- c:\windows\ftpcache 2010-01-24 15:15:04 396 ----a-w- c:\windows\system32\InTLub1.sys 2010-01-23 12:15:35 0 d-----w- c:\program files\Spybot - Search & Destroy 2010-01-23 12:15:35 0 d-----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy 2010-01-23 10:25:59 0 d-----w- c:\windows\SHELLNEW 2010-01-23 09:52:36 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-01-23 09:52:27 0 d-----w- c:\program files\DAEMON Tools Lite 2010-01-23 09:50:10 0 d-----w- c:\docume~1\srdjan\applic~1\DAEMON Tools Lite 2010-01-23 09:50:08 0 d-----w- c:\docume~1\alluse~1\applic~1\DAEMON Tools Lite 2010-01-23 09:47:35 0 d-----w- c:\windows\system32\appmgmt 2010-01-21 00:43:34 0 d-----w- c:\docume~1\srdjan\applic~1\GetRightToGo 2010-01-21 00:12:53 53760 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll 2010-01-21 00:12:53 53760 ----a-w- c:\windows\system32\vfwwdm32.dll 2010-01-21 00:11:48 122928 ----a-w- c:\windows\system32\drivers\SPCA561.SYS 2010-01-21 00:11:46 14336 ----a-w- c:\windows\system32\dshow508.ax 2010-01-20 18:13:18 229888 ----a-w- c:\windows\system32\bc520rtl.dll ==================== Find3M ==================== 2009-12-23 23:34:04 4096 ----a-w- c:\windows\d3dx.dat 2009-12-23 21:24:01 21419 ----a-w- c:\windows\system32\drivers\AegisP.sys 2009-12-23 21:07:05 21640 ----a-w- c:\windows\system32\emptyregdb.dat ============= FINISH: 21:53:36.32 ===============