DDS (Ver_2012-10-19.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_34 Run by User at 21:59:28 on 2012-11-01 Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.3070.2119 [GMT 1:00] . AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} FW: avast! Antivirus *Disabled* . ============== Running Processes ================ . C:\Program Files\Przyspiesz Komputer\PCSUService.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe C:\WINDOWS\System32\SCardSvr.exe C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe C:\PROGRA~1\ANSYSI~1\SHARED~1\LICENS~1\Intel\lmgrd.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\PROGRA~1\ANSYSI~1\SHARED~1\LICENS~1\Intel\lmgrd.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\PROGRA~1\ANSYSI~1\SHARED~1\LICENS~1\Intel\ansyslmd.exe C:\Program Files\Comarch\ComarchSmartCard\CardServer.exe C:\Program Files\Java\jre6\bin\jqs.exe i:\Program Files\ANSYS Inc\v110\RSM\bin\JobManagerService.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\LightScribe\LSSrvc.exe d:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\WINDOWS\system32\nvsvc32.exe c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe i:\Program Files\ANSYS Inc\v110\RSM\bin\ScriptHostService.exe C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\WINDOWS\system32\dllhost.exe C:\Program Files\UPHClean\uphclean.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\msdtc.exe C:\Program Files\AVAST Software\Avast\avastUI.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe D:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\System32\svchost.exe -k HTTPFilter . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.pl/ uWindow Title = Internet Explorer, optimized for Bing and MSN uSearch Page = hxxp://www.google.com mStart Page = hxxp://home.sweetim.com/?barid={672C1E83-AB5F-4374-A099-5969668BFC57} uInternet Connection Wizard,ShellNext = iexplore uURLSearchHooks: UrlSearchHook Class: {00000000-6E41-4FD3-8538-502F5495E5FC} - uURLSearchHooks: Winamp Search Class: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - mURLSearchHooks: Winamp Search Class: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: {259F616C-A300-44F5-B04A-ED001A26C85C} - BHO: Winamp Toolbar Loader: {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - BHO: {2EECD738-5844-4a99-B4B6-146BF802613B} - BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll BHO: BitComet Helper: {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - d:\program files\bitcomet\tools\BitCometBHO_1.2.1.2.dll BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll BHO: IEExtension.VDownloaderBHO: {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} - BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.7529.1424\swg.dll BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\microsoft\bingbar\7.1.391.0\BingExt.dll BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: Winamp Toolbar: {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - TB: Winamp Toolbar: {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - TB: SYSTRAN Toolbar: {95daa571-4def-4a6d-97d8-98a346672a24} - TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE dRun: [Nokia.PCSync] d:\program files\nokia\nokia pc suite 6\PcSync2.exe /NoDialog StartupFolder: c:\docume~1\user\menust~1\programy\autost~1\rocket~1.lnk - c:\windows\bricopacks\vista inspirat 2\rocketdock\RocketDock.exe StartupFolder: c:\docume~1\user\menust~1\programy\autost~1\transbar.lnk - c:\windows\bricopacks\vista inspirat 2\transbar\TransBar.exe StartupFolder: c:\docume~1\user\menust~1\programy\autost~1\ubericon.lnk - c:\windows\bricopacks\vista inspirat 2\ubericon\UberIcon Manager.exe StartupFolder: c:\docume~1\user\menust~1\programy\autost~1\y'zsha~1.lnk - c:\windows\bricopacks\vista inspirat 2\yzshadow\YzShadow.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:181 mPolicies-Explorer: NoDriveTypeAutoRun = dword:177 mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 IE: &D&ownload &with BitComet - d:\program files\bitcomet\BitComet.exe/AddLink.htm IE: &D&ownload all video with BitComet - d:\program files\bitcomet\BitComet.exe/AddVideo.htm IE: &D&ownload all with BitComet - d:\program files\bitcomet\BitComet.exe/AddAllLink.htm IE: &Lookup in Bookshelf - c:\program files\microsoft reference\microsoft bookshelf 3.0\bsdef.dll/#1001 IE: &Winamp Search - IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: Search the Web - IE: SYSTRAN Lookup - i:\program files\systran\6\\GUIres.dll/lookup.js IE: SYSTRAN Translate - i:\program files\systran\6\\GUIres.dll/translate.js IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - d:\program files\microsoft activesync\INetRepl.dll IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - d:\program files\microsoft activesync\INetRepl.dll IE: {5218218c-84e6-4d4c-8461-7295a8e0a126} - d:\program files\youtube clip extractor\ClipExtractor.exe IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - d:\program files\bitcomet\tools\BitCometBHO_1.2.1.2.dll/206 IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_34-windows-i586.cab DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} - hxxps://www.bph.pl/pi/components/bph/SignActivX.cab DPF: {CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_34-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_34-windows-i586.cab TCP: NameServer = 194.204.152.34 194.204.159.1 TCP: Interfaces\{B6FAB936-53E4-4E38-848D-2C64B3B2EC09} : DHCPNameServer = 194.204.152.34 194.204.159.1 Handler: bw+0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw+0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw-0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw-0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw00 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw00s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw10 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw10s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw20 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw20s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw30 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw30s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw40 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw40s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw50 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw50s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw60 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw60s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw70 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw70s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw80 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw80s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw90 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bw90s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwa0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwa0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwb0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwb0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwc0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwc0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwd0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwd0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwe0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwe0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwf0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwf0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll Handler: bwg0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwg0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwh0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwh0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwi0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwi0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwj0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwj0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwk0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwk0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwl0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwl0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwm0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwm0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwn0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwn0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwo0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwo0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwp0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwp0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwq0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwq0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwr0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwr0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bws0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bws0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwt0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwt0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwu0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwu0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwv0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwv0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bww0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bww0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwx0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwx0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwy0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwy0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwz0 - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: bwz0s - {9c386397-d159-45ba-8e70-f2a7ea1e7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: offline-8876480 - {9C386397-D159-45BA-8E70-F2A7EA1E7080} - c:\program files\logitech\desktop messenger\8876480\program\BWPlugProtocol-8876480.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: ShellHook Class - {88485281-8b4b-4f8d-9ede-82e29a064277} - c:\program files\markany\contentsafer\MACSMANAGER.dll SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll Hosts: 127.0.0.1 www.spywareinfo.com . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\user\dane aplikacji\mozilla\firefox\profiles\pee2fq73.default\ FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon) FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/ FF - component: c:\program files\nokia\nokia ovi suite\connectors\bookmarks connector\firefoxextension\components\FirefoxExtension.dll FF - plugin: c:\documents and settings\user\dane aplikacji\gadu-gadu 10\_userdata\npgg.2.dll FF - plugin: c:\documents and settings\user\dane aplikacji\mozilla\firefox\profiles\pee2fq73.default\extensions\signplugin@bph.pl\plugins\NPSignPluginBPH.dll FF - plugin: c:\documents and settings\user\ustawienia lokalne\dane aplikacji\google\update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: c:\documents and settings\user\ustawienia lokalne\dane aplikacji\unity\webplayer\loader\npUnity3D32.dll FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll FF - plugin: c:\program files\microsoft silverlight\4.1.10329.0\npctrlui.dll FF - plugin: c:\program files\vdownloader\addons\npVDownloader.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_287.dll FF - plugin: c:\windows\system32\npdeployJava1.dll FF - plugin: c:\windows\system32\npptools.dll FF - plugin: d:\program files\adobe\reader 9.0\reader\air\nppdf32.dll FF - plugin: d:\program files\adobe\reader 9.0\reader\browser\nppdf32.dll FF - plugin: d:\program files\itunes\mozilla plugins\npitunes.dll FF - plugin: d:\program files\quicktime\plugins\npqtplugin.dll FF - plugin: d:\program files\quicktime\plugins\npqtplugin2.dll FF - plugin: d:\program files\quicktime\plugins\npqtplugin3.dll FF - plugin: d:\program files\quicktime\plugins\npqtplugin4.dll FF - plugin: d:\program files\quicktime\plugins\npqtplugin5.dll FF - plugin: d:\program files\quicktime\plugins\npqtplugin6.dll FF - plugin: d:\program files\quicktime\plugins\npqtplugin7.dll FF - plugin: d:\program files\quicktime\plugins\npqtplugin8.dll . ---- FIREFOX POLICIES ---- FF - user.js: extensions.BabylonToolbar_i.id - 3c0c6e040000000000000017315b5727 FF - user.js: extensions.BabylonToolbar_i.hardId - 3c0c6e040000000000000017315b5727 FF - user.js: extensions.BabylonToolbar_i.instlDay - 15386 FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17 FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17 FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar FF - user.js: extensions.BabylonToolbar_i.aflt - babsst FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9 FF - user.js: extensions.BabylonToolbar_i.instlRef - sst FF - user.js: extensions.BabylonToolbar.autoRvrt - false FF - user.js: extensions.BabylonToolbar_i.newTab - false FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=3c0c6e040000000000000017315b5727&q= FF - user.js: extensions.BabylonToolbar.id - 3c0c6e040000000000000017315b5727 FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB} FF - user.js: extensions.BabylonToolbar.instlDay - 15610 FF - user.js: extensions.BabylonToolbar.vrsn - 1.6.9.12 FF - user.js: extensions.BabylonToolbar.vrsni - 1.6.9.12 FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.6.9.120:05:04 FF - user.js: extensions.BabylonToolbar.prtnrId - babylon FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar FF - user.js: extensions.BabylonToolbar.aflt - babsst FF - user.js: extensions.BabylonToolbar_i.smplGrp - none FF - user.js: extensions.BabylonToolbar.tlbrId - base FF - user.js: extensions.BabylonToolbar.instlRef - sst FF - user.js: extensions.BabylonToolbar.dfltLng - en FF - user.js: extensions.BabylonToolbar.excTlbr - false FF - user.js: extensions.BabylonToolbar.admin - false FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=112555&tt=270912_7a_3912_7 FF - user.js: extensions.BabylonToolbar_i.babExt - FF - user.js: extensions.BabylonToolbar_i.srcExt - ss . ============= SERVICES / DRIVERS =============== . R1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-11-11 11448] R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-1-16 738504] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-1-16 361032] R2 ANSYS FLEXlm license manager;ANSYS FLEXlm license manager;c:\progra~1\ansysi~1\shared~1\licens~1\intel\lmgrd.exe [2009-2-16 1294336] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-1-16 21256] R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-1-16 44808] R2 ComarchCardServer;ComarchCardServer;c:\program files\comarch\comarchsmartcard\CardServer.exe [2010-5-12 151552] R2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x32.sys [2010-11-13 20072] R2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x32.sys [2010-10-21 20328] R2 JobManagerService110;Ansys JobManager Service V11;i:\program files\ansys inc\v110\rsm\bin\JobManagerService.exe [2007-1-16 20480] R2 MBAMScheduler;MBAMScheduler;d:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-10-31 399432] R2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-1-27 50704] R2 PCSUService;PC Speed Up Service;c:\program files\przyspiesz komputer\PCSUService.exe [2011-11-14 235232] R2 ScriptHostService110;Ansys ScriptHost Service V11;i:\program files\ansys inc\v110\rsm\bin\ScriptHostService.exe [2007-1-16 20480] R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\all users\dane aplikacji\skype\toolbars\skype c2c service\c2c_service.exe [2012-8-13 3064000] R2 Symantec SymSnap VSS Provider;Symantec SymSnap VSS Provider;c:\windows\system32\dllhost.exe [2004-8-3 5120] R2 UMVPFSrv;UMVPFSrv;c:\program files\common files\logishrd\lvmvfm\UMVPFSrv.exe [2012-1-18 450848] R3 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\7.1.391.0\SeaPort.EXE [2012-6-11 240208] R3 CompFilter;UVCCompositeFilter;c:\windows\system32\drivers\lvbusflt.sys [2012-1-18 22176] R3 GemCCID;GemCCID;c:\windows\system32\drivers\GemCCID.sys [2010-3-18 87424] S2 BBSvc;BingBar Service;c:\program files\microsoft\bingbar\7.1.391.0\BBSvc.EXE [2012-6-11 193616] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 gupdate;Usługa Google Update (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-2-25 136176] S2 MBAMService;MBAMService;d:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-10-31 676936] S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia update core\daemonu.exe [2012-5-29 1262400] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-6-7 160944] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-11-1 250808] S3 cpuz130;cpuz130;\??\c:\docume~1\user\ustawi~1\temp\cpuz130\cpuz_x32.sys --> c:\docume~1\user\ustawi~1\temp\cpuz130\cpuz_x32.sys [?] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;i:\program files\magix\common\database\bin\fbserver.exe [2009-1-15 1527900] S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [2007-12-18 61776] S3 gupdatem;Usługa Google Update (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-2-25 136176] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-10-31 22856] S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-5-2 115168] S3 Ndisprot;ArcNet NDIS Protocol Driver;c:\windows\system32\drivers\ndisprot.sys [2008-11-13 27904] S3 SymSnapService;SymSnapService;"d:\program files\norton ghost\shared\drivers\symsnapservice.exe" --> d:\program files\norton ghost\shared\drivers\SymSnapService.exe [?] S3 SystemExplorerHelpService;System Explorer Service;d:\program files\system explorer\service\SystemExplorerService.exe [2012-11-1 567256] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== File Associations =============== . FileExt: .scr: AutoCADScriptFile="c:\windows\notepad.exe" "%1" .reg: .txt: .vbe: .vbs: .wsf: ShellExec: BitComet.exe: open="d:\program files\bitcomet\BitComet.exe" ShellExec: FRONTPG.EXE: edit=c:\progra~1\micros~2\office10\FRONTPG.EXE . =============== Created Last 30 ================ . 2012-11-01 13:20:41 -------- d-----w- c:\documents and settings\all users\dane aplikacji\SystemExplorer 2012-11-01 13:15:11 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-10-31 21:36:53 -------- d-----w- c:\documents and settings\user\dane aplikacji\Malwarebytes 2012-10-31 21:36:39 -------- d-----w- c:\documents and settings\all users\dane aplikacji\Malwarebytes 2012-10-31 21:36:38 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-10-30 22:26:13 -------- d-----w- c:\documents and settings\all users\dane aplikacji\Spybot - Search & Destroy . ==================== Find3M ==================== . 2012-11-01 13:15:11 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-10-30 22:51:58 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2012-10-30 22:51:07 41224 ----a-w- c:\windows\avastSS.scr 2012-10-01 05:04:57 204 ----a-w- c:\windows\DeleteOnReboot.bat 2012-08-18 08:45:16 73728 ----a-w- c:\windows\system32\javacpl.cpl 2012-08-18 08:45:15 477168 ----a-w- c:\windows\system32\npdeployJava1.dll 2012-08-18 08:45:15 473072 ----a-w- c:\windows\system32\deployJava1.dll 2011-09-16 14:12:42 3623592 ----a-w- c:\program files\common files\ApnToolbarInstaller.exe 2011-09-16 14:12:04 143240 ----a-w- c:\program files\common files\ApnStub.exe 2010-01-26 09:11:08 444283 ----a-w- c:\program files\common files\WinPcapNmap.exe 2002-07-26 16:02:06 153088 ----a-w- c:\program files\UNWISE.EXE . ============= FINISH: 22:00:01,46 ===============