. DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_27 Run by Klaudia at 9:03:39 on 2011-09-15 Microsoft Windows XP Home Edition 5.1.2600.3.1250.48.1045.18.1013.615 [GMT 2:00] . AV: ESET NOD32 Antivirus 5.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE svchost.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\WINDOWS\System32\svchost.exe -k HTTPFilter . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.pl/ uURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - Conduit Engine BHO: WormRadar.com IESiteBlocker.NavFilter: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - AVG Safe Search BHO: uTorrentBar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll BHO: IEPluginBHO: {f5cc7f02-6f4e-4462-b5b1-394a57fd3e0d} - IEPluginBHO Class TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File TB: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - TB: Conduit Engine : {30f9b915-b755-4826-820b-08fba6bd249d} - uRun: [Google Update] "c:\documents and settings\klaudia\ustawienia lokalne\dane aplikacji\google\update\GoogleUpdate.exe" /c mRun: [RTHDCPL] RTHDCPL.EXE mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE mPolicies-system: EnableLUA = 0 (0x0) IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe DPF: {00000055-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/A/7/D/A7D1EBE3-8E78-4CBE-B22B-EEECF9E3A1BC/fhg.CAB DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{3DB03BC9-BCC1-4F75-9397-1F2052052C42} : DhcpNameServer = 192.168.1.1 Notify: igfxcui - igfxdev.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll . ============= SERVICES / DRIVERS =============== . R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2011-8-4 118104] R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2011-8-4 103112] R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2011-9-6 974944] S3 abp470n5;abp470n5;\??\c:\windows\system32\drivers\ptrmon.sys --> c:\windows\system32\drivers\ptrmon.sys [?] S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-6-7 1684736] S3 RTLWUSB;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187.sys [2011-8-20 332928] . =============== Created Last 30 ================ . 2011-09-13 15:20:54 -------- d-----w- c:\documents and settings\klaudia\dane aplikacji\LibreOffice 2011-09-13 15:18:42 -------- d-----w- c:\windows\ShellNew 2011-09-13 15:15:03 -------- d-----w- c:\program files\LibreOffice 3.4 2011-09-13 15:13:24 167704 ----a-w- c:\program files\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll 2011-09-13 15:13:04 -------- d-----w- c:\program files\Tracker Software 2011-09-13 15:12:24 73728 ----a-w- c:\windows\system32\javacpl.cpl 2011-09-13 15:12:23 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-09-13 15:08:30 -------- d-----w- c:\program files\Real Alternative 2011-09-13 15:04:03 -------- d-----w- c:\program files\The KMPlayer 2011-09-13 14:13:46 -------- d-----w- c:\program files\ESET 2011-09-13 13:26:29 -------- d-----w- c:\windows\system32\NtmsData 2011-09-13 11:59:54 -------- d-----w- c:\program files\Windows Media Connect 2 2011-09-13 11:46:57 -------- d-----w- c:\program files\CCleaner 2011-09-13 11:37:55 -------- d--h--w- c:\windows\$hf_mig$ 2011-09-13 11:31:42 -------- d-sh--w- c:\documents and settings\klaudia\UserData 2011-09-13 11:31:26 -------- d-sh--w- c:\documents and settings\klaudia\PrivacIE 2011-09-13 11:23:05 -------- d-----w- c:\documents and settings\klaudia\dane aplikacji\GHISLER 2011-09-13 10:56:09 -------- d-----w- c:\documents and settings\klaudia\ustawienia lokalne\dane aplikacji\GHISLER 2011-09-13 10:55:23 545 ----a-w- c:\windows\UC.PIF 2011-09-13 10:55:23 545 ----a-w- c:\windows\RAR.PIF 2011-09-13 10:55:23 545 ----a-w- c:\windows\PKZIP.PIF 2011-09-13 10:55:23 545 ----a-w- c:\windows\PKUNZIP.PIF 2011-09-13 10:55:23 545 ----a-w- c:\windows\NOCLOSE.PIF 2011-09-13 10:55:23 545 ----a-w- c:\windows\LHA.PIF 2011-09-13 10:55:23 545 ----a-w- c:\windows\ARJ.PIF 2011-09-13 10:55:22 -------- d-----w- C:\totalcmd 2011-09-13 10:41:42 -------- d-sh--w- c:\documents and settings\klaudia\IETldCache 2011-09-13 10:36:42 7680 ------w- c:\windows\system32\dllcache\iecompat.dll 2011-09-13 10:36:21 -------- d-----w- c:\windows\ie8updates 2011-09-13 10:36:12 602112 ------w- c:\windows\system32\dllcache\msfeeds.dll 2011-09-13 10:36:12 55296 ------w- c:\windows\system32\dllcache\msfeedsbs.dll 2011-09-13 10:36:12 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll 2011-09-13 10:36:12 1991680 ------w- c:\windows\system32\dllcache\iertutil.dll 2011-09-13 10:36:12 12800 ------w- c:\windows\system32\dllcache\xpshims.dll 2011-09-13 10:36:11 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll 2011-09-13 10:36:11 11081728 ------w- c:\windows\system32\dllcache\ieframe.dll 2011-09-13 10:34:43 -------- d--h--w- c:\windows\ie8 2011-09-13 06:05:11 617472 ------w- c:\windows\system32\dllcache\comctl32.dll 2011-09-13 06:04:32 40960 ------w- c:\windows\system32\dllcache\ndproxy.sys 2011-09-13 06:04:24 953856 ------w- c:\windows\system32\dllcache\mfc40u.dll 2011-09-13 06:03:56 744448 ------w- c:\windows\system32\dllcache\helpsvc.exe 2011-09-13 06:03:32 471552 ------w- c:\windows\system32\dllcache\aclayers.dll 2011-09-13 06:03:13 456320 ------w- c:\windows\system32\dllcache\mrxsmb.sys 2011-09-13 06:02:58 1439744 ------w- c:\windows\system32\dllcache\query.dll 2011-09-13 06:02:01 81920 ------w- c:\windows\system32\dllcache\fontsub.dll 2011-09-13 06:02:01 119808 ------w- c:\windows\system32\dllcache\t2embed.dll 2011-09-13 06:01:44 153088 ------w- c:\windows\system32\dllcache\triedit.dll 2011-09-13 06:01:22 227840 ------w- c:\windows\system32\dllcache\wmiprvse.exe 2011-09-13 06:01:21 401408 ------w- c:\windows\system32\dllcache\rpcss.dll 2011-09-13 06:01:21 285696 ------w- c:\windows\system32\dllcache\pdh.dll 2011-09-13 06:01:21 111104 ------w- c:\windows\system32\dllcache\services.exe 2011-09-13 06:01:20 686592 ------w- c:\windows\system32\dllcache\advapi32.dll 2011-09-13 06:01:20 473600 ------w- c:\windows\system32\dllcache\fastprox.dll 2011-09-13 06:01:20 453120 ------w- c:\windows\system32\dllcache\wmiprvsd.dll 2011-09-13 06:01:02 203136 ------w- c:\windows\system32\dllcache\rmcast.sys 2011-09-13 06:00:35 139656 ------w- c:\windows\system32\dllcache\rdpwd.sys 2011-09-13 06:00:31 3558912 ------w- c:\windows\system32\dllcache\moviemk.exe 2011-09-13 05:59:34 105472 ------w- c:\windows\system32\dllcache\mup.sys 2011-09-13 05:59:20 692736 ------w- c:\windows\system32\dllcache\inetcomm.dll 2011-09-13 05:58:45 1172480 ------w- c:\windows\system32\dllcache\msxml3.dll 2011-09-13 05:58:32 331776 ------w- c:\windows\system32\dllcache\msadce.dll 2011-09-13 05:57:53 357888 ------w- c:\windows\system32\dllcache\srv.sys 2011-09-13 05:56:20 135680 ------w- c:\windows\system32\dllcache\shsvcs.dll 2011-09-13 05:56:19 8491008 ------w- c:\windows\system32\dllcache\shell32.dll 2011-09-13 05:56:02 978944 ------w- c:\windows\system32\dllcache\mfc42.dll 2011-09-13 05:56:02 974848 ------w- c:\windows\system32\dllcache\mfc42u.dll 2011-09-13 05:53:14 590848 ------w- c:\windows\system32\dllcache\rpcrt4.dll 2011-09-13 05:52:15 220672 ------w- c:\windows\system32\dllcache\wordpad.exe 2011-09-13 05:51:49 -------- d-----w- c:\windows\system32\PreInstall 2011-09-13 05:49:25 354816 ------w- c:\windows\system32\dllcache\winhttp.dll 2011-09-13 05:49:21 273024 ------w- c:\windows\system32\dllcache\bthport.sys 2011-09-13 05:48:37 758784 ----a-w- c:\windows\system32\dllcache\vgx.dll 2011-09-13 05:41:14 45568 ------w- c:\windows\system32\dllcache\wab.exe 2011-09-13 04:52:20 293376 ------w- c:\windows\system32\browserchoice.exe 2011-09-13 04:52:18 337408 ------w- c:\windows\system32\dllcache\netapi32.dll 2011-09-12 21:38:19 89600 ------w- c:\windows\system32\msxml6r.dll 2011-09-12 21:38:19 89600 ------w- c:\windows\system32\dllcache\msxml6r.dll 2011-09-12 21:38:19 1372672 ------w- c:\windows\system32\msxml6.dll 2011-09-12 21:38:19 1372672 ------w- c:\windows\system32\dllcache\msxml6.dll 2011-09-12 21:38:18 221184 ------w- c:\program files\windows media player\wmpns.dll 2011-09-12 21:38:17 786432 ------w- c:\program files\windows media player\migrate.exe 2011-09-12 21:38:17 33792 ------w- c:\program files\messenger\custsat.dll 2011-09-12 21:38:17 244224 ------w- c:\program files\windows media player\mpvis.dll 2011-09-12 21:38:17 -------- d-----w- c:\program files\Messenger 2011-09-12 21:33:45 -------- d-----w- c:\windows\ServicePackFiles 2011-09-12 21:33:24 4639 ------w- c:\program files\windows media player\mplayer2.exe 2011-09-12 21:33:24 364544 ------w- c:\program files\windows media player\npdsplay.dll 2011-09-12 21:33:24 294912 ------w- c:\program files\windows media player\dlimport.exe 2011-09-12 21:33:24 226816 ------w- c:\program files\windows media player\npdrmv2.dll 2011-09-12 21:33:24 1677824 ------w- c:\program files\windows media player\setup_wm.exe 2011-09-12 21:33:23 64000 ------w- c:\program files\windows media player\wmplayer.exe 2011-09-12 21:33:17 294912 ------w- c:\windows\system32\dllcache\dlimport.exe 2011-09-12 21:26:59 19569 ----a-w- c:\windows\002542_.tmp 2011-09-12 21:23:19 -------- d-----w- c:\windows\EHome 2011-09-12 16:14:54 -------- d-sh--w- C:\$RECYCLE.BIN 2011-09-03 10:17:23 602624 ------w- c:\windows\system32\dllcache\crypt32.dll 2011-08-20 08:02:35 332928 ----a-w- c:\windows\system32\drivers\RTL8187.sys . ==================== Find3M ==================== . 2011-09-12 15:53:30 524288 ----a-r- c:\windows\system32\igfxcfg.exe 2011-09-12 15:53:12 159744 ----a-w- c:\windows\system32\hkcmd.exe 2011-09-03 10:17:23 602624 ----a-w- c:\windows\system32\crypt32.dll 2011-08-16 00:26:22 76 ----a-w- c:\windows\system32\net32gdilib.dll 2011-08-09 11:57:10 154136 ----a-w- c:\windows\system32\drivers\eamon.sys 2011-08-04 07:20:38 103112 ----a-w- c:\windows\system32\drivers\epfwtdir.sys 2011-08-04 07:20:36 118104 ----a-w- c:\windows\system32\drivers\ehdrv.sys 2011-07-15 13:29:31 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys 2011-07-06 18:52:42 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-06 18:52:42 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-06-29 18:20:11 0 ----a-w- c:\windows\system32\ConduitEngine.tmp 2011-06-24 14:10:39 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2011-06-23 18:30:56 916480 ----a-w- c:\windows\system32\wininet.dll 2011-06-23 18:30:56 43520 ------w- c:\windows\system32\licmgr10.dll 2011-06-23 18:30:56 1469440 ------w- c:\windows\system32\inetcpl.cpl 2011-06-23 12:05:34 385024 ------w- c:\windows\system32\html.iec 2011-06-20 17:44:52 293888 ----a-w- c:\windows\system32\winsrv.dll . ============= FINISH: 9:04:04,48 ===============