. DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 Run by mwosko at 19:41:21 on 2011-09-23 Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.2047.1230 [GMT 2:00] . AV: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . ============== Running Processes =============== . C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Documents and Settings\All Users\Dane aplikacji\EPSON\EPW!3 SSRP\E_S40ST7.EXE C:\Documents and Settings\All Users\Dane aplikacji\EPSON\EPW!3 SSRP\E_S40RP7.EXE C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe C:\Program Files\Analog Devices\SoundMAX\Smax4.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Documents and Settings\All Users\csrs.exe C:\Documents and Settings\All Users\winloqon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Pando Networks\Media Booster\PMB.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\mwosko\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Documents and Settings\mwosko\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe D:\Programy\WapSter AQQ\AQQ.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.qooqlle.com/ uInternet Settings,ProxyOverride = *.local uURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - c:\program files\utorrentbar\tbuTor.dll BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - c:\program files\utorrentbar\tbuTor.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: IplexToALLPlayer: {df925ef3-7a87-44e4-9caf-8d7b280bf616} - d:\programy\allplayer\iplex\IplexToALLPlayer.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll BHO: DownloadHelper Class: {ff2573ae-e1ed-40e1-83ba-f544cb2ee135} - c:\program files\common files\download helper\DownloadHelper.dll TB: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - c:\program files\utorrentbar\tbuTor.dll uRun: [Google Update] "c:\documents and settings\mwosko\ustawienia lokalne\dane aplikacji\google\update\GoogleUpdate.exe" /c uRun: [AQQ] d:\programy\wapste~1\AQQ.exe uRun: [ALLUpdate] "d:\programy\allplayer\ALLUpdate.exe" "sleep" uRun: [Rubin] c:\documents and settings\mwosko\ustawienia lokalne\dane aplikacji\rubin\rubin.exe silent uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [Pando Media Booster] c:\program files\pando networks\media booster\PMB.exe uRun: [PCSpeedUp] c:\program files\przyspiesz komputer\PCSpeedUp.lnk mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun mRun: [SoundMAXPnP] c:\program files\analog devices\soundmax\SMax4PNP.exe mRun: [SoundMAX] "c:\program files\analog devices\soundmax\Smax4.exe" /tray mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [QuickTime Task] "c:\program files\quicktime alternative\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k mRun: [csrs] %ALLUSERSPROFILE%\csrs.exe mRun: [svhost] %COMMONPROGRAMFILES%\svhost.exe mRun: [winloqon] %ALLUSERSPROFILE%\winloqon.exe mRun: [CanonMyPrinter] d:\programy\drukarka\BJMyPrt.exe /logon dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N dRunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N StartupFolder: c:\docume~1\mwosko\menust~1\programy\autost~1\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe uPolicies-explorer: ForceClassicControlPanel = 1 (0x1) uPolicies-explorer: NoRecentDocsNetHood = 1 (0x1) mPolicies-system: DisableCAD = 1 (0x1) dPolicies-explorer: ForceClassicControlPanel = 1 (0x1) IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {36ECAF82-3300-8F84-092E-AFF36D6C7040} - {86529161-034E-4F8A-88D2-3C625E612E04} - c:\program files\winhttrack\WinHTTrackIEBar.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab TCP: DhcpNameServer = 192.168.1.1 86.63.129.29 86.63.129.30 TCP: Interfaces\{E4EAD1C3-4B86-428D-B95B-27F4EBCE9B68} : DhcpNameServer = 192.168.1.1 86.63.129.29 86.63.129.30 Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL Notify: AtiExtEvent - Ati2evxx.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\mwosko\dane aplikacji\mozilla\firefox\profiles\acrosq7c.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.qooqlle.com/ FF - prefs.js: keyword.URL - hxxp://www.google.com/cse?cx=partner-pub-5462406484424654%3A8q0sn8-w2ss&ie=ISO-8859-1&q= FF - prefs.js: network.proxy.ftp - 127.0.0.1 FF - prefs.js: network.proxy.ftp_port - 9666 FF - prefs.js: network.proxy.gopher - 127.0.0.1 FF - prefs.js: network.proxy.gopher_port - 9666 FF - prefs.js: network.proxy.http - 127.0.0.1 FF - prefs.js: network.proxy.http_port - 9666 FF - prefs.js: network.proxy.socks - 127.0.0.1 FF - prefs.js: network.proxy.socks_port - 9666 FF - prefs.js: network.proxy.ssl - 127.0.0.1 FF - prefs.js: network.proxy.ssl_port - 9666 FF - prefs.js: network.proxy.type - 0 FF - plugin: c:\documents and settings\mwosko\ustawienia lokalne\dane aplikacji\google\update\1.3.21.69\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll FF - plugin: c:\program files\mozilla firefox\plugins\npqtplugin8.dll FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll FF - plugin: c:\program files\tracker software\pdf viewer\npPDFXCviewNPPlugin.dll . ============= SERVICES / DRIVERS =============== . R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2010-7-29 115008] R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2010-8-3 95896] R2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x32.sys [2011-1-8 20328] R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2010-11-4 810144] S2 .EsetTrialReset;Eset Trial Reset;c:\windows\system32\regedt32.exe [2006-3-2 3584] S3 cpuz135;cpuz135;\??\c:\windows\temp\cpuz135\cpuz135_x32.sys --> c:\windows\temp\cpuz135\cpuz135_x32.sys [?] S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files\common files\futuremark shared\futuremark systeminfo\FMSISvc.exe [2011-1-11 129440] S3 INQ1usbser;INQ1 USB Device for Legacy Serial Communication;c:\windows\system32\drivers\INQ1usbser.sys [2011-2-6 103680] . =============== Created Last 30 ================ . 2011-09-21 19:56:14 -------- d-----w- c:\program files\Canon 2011-09-06 14:10:51 -------- d-----w- c:\documents and settings\mwosko\riotsGamesLogs 2011-09-06 13:45:15 -------- d-----w- c:\documents and settings\mwosko\dane aplikacji\LolClient 2011-09-02 15:51:40 68616 ----a-w- c:\windows\system32\XAPOFX1_1.dll 2011-09-02 15:51:40 509448 ----a-w- c:\windows\system32\XAudio2_2.dll 2011-09-02 15:51:40 467984 ----a-w- c:\windows\system32\d3dx10_39.dll 2011-09-02 15:51:40 1493528 ----a-w- c:\windows\system32\D3DCompiler_39.dll 2011-09-02 15:51:36 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll 2011-09-02 15:23:31 -------- d-----w- c:\documents and settings\mwosko\ustawienia lokalne\dane aplikacji\PMB Files 2011-09-02 15:23:26 -------- d-----w- c:\documents and settings\all users\dane aplikacji\PMB Files 2011-09-02 15:23:14 -------- d-----w- c:\program files\Pando Networks . ==================== Find3M ==================== . 2011-05-25 19:52:45 6855168 --sha-r- c:\program files\common files\svhost.exe . ============= FINISH: 19:41:43,90 ===============