OTL logfile created on: 2011-08-25 19:00:17 - Run 1 OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\aaaa\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1022,42 Mb Total Physical Memory | 673,86 Mb Available Physical Memory | 65,91% Memory free 2,40 Gb Paging File | 2,17 Gb Available in Paging File | 90,22% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 29,29 Gb Total Space | 20,85 Gb Free Space | 71,18% Space Free | Partition Type: FAT32 Drive D: | 268,72 Gb Total Space | 52,47 Gb Free Space | 19,52% Space Free | Partition Type: FAT32 Drive I: | 520,50 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Drive J: | 1,89 Gb Total Space | 0,73 Gb Free Space | 38,72% Space Free | Partition Type: FAT Computer Name: A-PC | User Name: aaaa | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-09-02 13:42:14 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\aaaa\Pulpit\OTL.exe PRC - [2011-08-14 15:46:38 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe PRC - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe PRC - [2011-01-12 16:41:24 | 002,219,184 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2005-09-03 15:18:30 | 000,094,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-09-02 13:42:14 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\aaaa\Pulpit\OTL.exe MOD - [2011-08-14 15:46:42 | 000,043,520 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchrome10browserrecordhelper.dll MOD - [2008-07-29 08:05:08 | 000,655,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll MOD - [2008-07-29 08:05:08 | 000,572,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll MOD - [2008-04-14 22:29:10 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - [2011-07-06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2011-01-12 16:44:02 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv) SRV - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn) SRV - [2001-10-26 20:30:00 | 000,003,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\System32\regedt32.exe -- (NOD32FiXTemDono) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-07-06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy) DRV - [2011-07-06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2010-12-21 15:04:06 | 000,141,264 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2010-12-21 15:04:06 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2010-12-21 13:47:38 | 000,134,000 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw) DRV - [2010-12-21 13:47:38 | 000,033,120 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis) DRV - [2010-08-03 12:28:36 | 000,055,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi) DRV - [2008-01-18 23:01:28 | 000,041,456 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD\000.fcl -- ({95808DC4-FA4A-4C74-92FE-5B863F82066B}) DRV - [2007-08-02 21:19:50 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc) DRV - [2007-07-18 19:26:04 | 004,547,584 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2006-09-18 08:59:00 | 000,250,240 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-839522115-651377827-2147053123-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKU\S-1-5-21-839522115-651377827-2147053123-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.660: C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.660: C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.660: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\aaaa\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-08-14 15:46:42 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011-08-22 22:39:12 | 000,000,000 | ---D | M] O1 HOSTS File: ([2011-08-22 22:06:02 | 000,202,984 | -H-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 facebook.com O1 - Hosts: 127.0.0.1 www.facebook.com O1 - Hosts: 127.0.0.1 af-za.facebook.com O1 - Hosts: 127.0.0.1 az-az.facebook.com O1 - Hosts: 127.0.0.1 id-id.facebook.com O1 - Hosts: 127.0.0.1 ms-my.facebook.com O1 - Hosts: 127.0.0.1 bs-ba.facebook.com O1 - Hosts: 127.0.0.1 ca-es.facebook.com O1 - Hosts: 127.0.0.1 cs-cz.facebook.com O1 - Hosts: 127.0.0.1 cy-gb.facebook.com O1 - Hosts: 127.0.0.1 da-dk.facebook.com O1 - Hosts: 127.0.0.1 de-de.facebook.com O1 - Hosts: 127.0.0.1 et-ee.facebook.com O1 - Hosts: 127.0.0.1 en-gb.facebook.com O1 - Hosts: 127.0.0.1 es-la.facebook.com O1 - Hosts: 127.0.0.1 eo-eo.facebook.com O1 - Hosts: 127.0.0.1 eu-es.facebook.com O1 - Hosts: 127.0.0.1 tl-ph.facebook.com O1 - Hosts: 127.0.0.1 fo-fo.facebook.com O1 - Hosts: 127.0.0.1 fr-fr.facebook.com O1 - Hosts: 127.0.0.1 fy-nl.facebook.com O1 - Hosts: 127.0.0.1 ga-ie.facebook.com O1 - Hosts: 127.0.0.1 gl-es.facebook.com O1 - Hosts: 127.0.0.1 ko-kr.facebook.com O1 - Hosts: 50053 more lines... O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [BDRegion] C:\Program Files\CyberLink\Shared Files\brs.exe (cyberlink) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe () O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NWEReboot] File not found O4 - HKLM..\Run: [nwiz] File not found O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKLM..\Run: [tray_ico] File not found O4 - HKLM..\Run: [tray_ico1] File not found O4 - HKLM..\Run: [tray_ico2] File not found O4 - HKLM..\Run: [tray_ico3] File not found O4 - HKLM..\Run: [tray_ico4] File not found O4 - HKU\S-1-5-21-839522115-651377827-2147053123-1003..\Run: [AQQ] C:\Program Files\WapSter\WapSter AQQ\AQQ.exe (Creative Team S.A.) O4 - HKU\S-1-5-21-839522115-651377827-2147053123-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe (Nero AG) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-839522115-651377827-2147053123-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O7 - HKU\S-1-5-21-839522115-651377827-2147053123-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\NavLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O31 - SafeBoot: AlternateShell - services32.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007-08-02 23:20:42 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ] O32 - AutoRun File - [2008-04-14 18:51:07 | 000,000,031 | R--- | M] () - I:\AUTORUN.INF -- [ CDFS ] O32 - AutoRun File - [2010-12-02 21:46:18 | 000,420,109 | ---- | M] () - J:\Automatic system Cleaner v2.5.zip -- [ FAT ] O32 - AutoRun File - [2011-03-07 13:35:48 | 000,000,000 | ---D | M] - J:\Autorun.inf -- [ FAT ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-08-25 19:00:05 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\aaaa\Pulpit\OTL.exe [2011-08-25 18:55:52 | 000,000,000 | ---D | C] -- C:\UsbFix [2011-08-25 18:51:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood [2011-08-25 18:50:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Menu Start\Programy\CyberLink PowerDVD [2011-08-22 22:48:35 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2011-08-22 22:47:55 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll [2011-08-22 22:47:48 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2011-08-22 22:47:33 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll [2011-08-22 22:47:22 | 002,194,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2011-08-22 22:47:22 | 002,150,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2011-08-22 22:47:22 | 002,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2011-08-22 22:47:22 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2011-08-22 22:46:41 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2011-08-22 22:46:16 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2011-08-22 22:46:16 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2011-08-22 22:43:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2011-08-22 22:39:10 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2011-08-22 22:39:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ESET [2011-08-22 22:39:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2011-08-22 22:11:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Dane aplikacji\Malwarebytes [2011-08-22 22:11:38 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011-08-22 22:11:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware [2011-08-22 22:11:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2011-08-22 22:11:35 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2011-08-22 22:11:35 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011-08-22 22:09:41 | 000,582,692 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\aaaa\Pulpit\mbamsetuo1.51.exe [2011-08-22 15:35:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2011-08-22 15:22:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.7.1 [2011-08-19 18:45:42 | 000,000,000 | ---D | C] -- C:\FOUND.003 [2011-08-19 18:41:40 | 000,000,000 | ---D | C] -- C:\FOUND.002 [2011-08-19 12:42:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\PhotoScape [2011-08-19 12:41:59 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoScape [2011-08-19 12:38:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Ustawienia lokalne\Dane aplikacji\Adobe [2011-08-19 12:17:10 | 000,000,000 | ---D | C] -- C:\FOUND.001 [2011-08-19 10:58:56 | 000,000,000 | ---D | C] -- C:\FOUND.000 [2011-08-19 10:44:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\ufa [2011-08-19 10:44:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\phoenix [2011-08-19 10:42:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\WinRAR [2011-08-19 10:42:47 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.5.0 [2011-08-19 10:42:33 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.2 [2011-08-19 10:41:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\av_ico [2011-08-19 10:39:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.1 [2011-08-19 10:39:26 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-3-0-lnk [2011-08-19 10:39:26 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-3-0 [2011-08-17 14:11:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Pulpit\Nowy folder [2011-08-16 11:55:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Ustawienia lokalne\Dane aplikacji\Identities [2011-08-14 15:46:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2011-08-14 15:46:35 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2011-08-14 15:42:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Google Chrome [2011-08-14 15:41:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Ustawienia lokalne\Dane aplikacji\Google [2011-08-14 15:41:29 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2011-08-13 13:23:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Dane aplikacji\Unity [2011-08-13 13:21:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Ustawienia lokalne\Dane aplikacji\Unity [2011-08-10 17:14:36 | 000,000,000 | ---D | C] -- C:\Data [2011-08-10 09:50:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Dane aplikacji\EurekaLog [2011-08-09 23:49:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\WapSter [2011-08-09 23:44:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Menu Start\Programy\WapSter [2011-08-09 23:44:44 | 000,000,000 | ---D | C] -- C:\Program Files\WapSter [2011-08-09 11:23:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\aaaa\UserData [2011-08-09 11:21:08 | 000,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys [2011-08-09 11:21:03 | 000,010,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys [2011-08-08 21:56:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TNod User & Password Finder [2011-08-08 21:56:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aaaa\Ustawienia lokalne\Dane aplikacji\ESET [2011-08-08 21:53:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-09-02 13:42:14 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\aaaa\Pulpit\OTL.exe [2011-08-25 18:54:02 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011-08-25 18:50:30 | 000,272,291 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml [2011-08-25 18:50:28 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011-08-25 18:50:28 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-839522115-651377827-2147053123-1003.job [2011-08-25 18:50:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-08-25 18:42:28 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-08-25 18:42:22 | 000,244,720 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-08-22 23:39:46 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-08-22 22:43:12 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-839522115-651377827-2147053123-1003.job [2011-08-22 22:33:50 | 000,582,692 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\aaaa\Pulpit\mbamsetuo1.51.exe [2011-08-22 22:11:40 | 000,000,688 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2011-08-22 15:22:42 | 000,000,202 | ---- | M] () -- C:\WINDOWS\info1 [2011-08-19 18:43:28 | 000,016,384 | ---- | M] () -- C:\WINDOWS\Minidump [2011-08-19 12:42:58 | 000,069,134 | ---- | M] () -- C:\Documents and Settings\aaaa\Pulpit\komunikat.jpg [2011-08-19 12:42:34 | 000,015,360 | -H-- | M] () -- D:\Moje dokumenty\photothumb.db [2011-08-19 12:42:04 | 000,000,610 | ---- | M] () -- C:\Documents and Settings\aaaa\Pulpit\PhotoScape.lnk [2011-08-19 12:07:48 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-08-19 12:07:46 | 000,003,584 | ---- | M] () -- C:\Documents and Settings\aaaa\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-08-19 10:44:22 | 005,589,370 | ---- | M] () -- C:\WINDOWS\phoenix.rar [2011-08-19 10:44:22 | 001,075,284 | ---- | M] () -- C:\WINDOWS\rpcminer.rar [2011-08-19 10:44:22 | 000,246,272 | ---- | M] () -- C:\WINDOWS\unrar.exe [2011-08-19 10:44:22 | 000,182,617 | ---- | M] () -- C:\WINDOWS\ufa.rar [2011-08-19 10:42:54 | 000,904,792 | ---- | M] () -- C:\WINDOWS\geoiplist.rar [2011-08-19 10:41:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\loader2.exe_ok [2011-08-19 10:39:38 | 000,000,215 | ---- | M] () -- C:\boot.ini [2011-08-17 23:51:42 | 000,053,246 | ---- | M] () -- C:\Documents and Settings\aaaa\Pulpit\a,61764529,f,modelka_44600_400.jpg [2011-08-14 21:57:44 | 000,001,717 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk [2011-08-14 15:46:40 | 000,198,848 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2011-08-14 15:46:38 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2011-08-14 15:46:38 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2011-08-13 11:13:54 | 000,000,016 | ---- | M] () -- C:\WINDOWS\popcinfo.dat [2011-08-10 17:15:46 | 000,001,379 | ---- | M] () -- C:\Documents and Settings\aaaa\Pulpit\Eksplorator.lnk [2011-08-08 22:01:02 | 000,000,496 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-08-22 22:11:38 | 000,000,688 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2011-08-19 18:43:27 | 000,016,384 | ---- | C] () -- C:\WINDOWS\Minidump [2011-08-19 12:42:56 | 000,069,134 | ---- | C] () -- C:\Documents and Settings\aaaa\Pulpit\komunikat.jpg [2011-08-19 12:42:02 | 000,000,610 | ---- | C] () -- C:\Documents and Settings\aaaa\Pulpit\PhotoScape.lnk [2011-08-19 12:07:46 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2011-08-19 12:07:45 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\aaaa\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-08-19 10:44:21 | 005,589,370 | ---- | C] () -- C:\WINDOWS\phoenix.rar [2011-08-19 10:44:21 | 000,182,617 | ---- | C] () -- C:\WINDOWS\ufa.rar [2011-08-19 10:44:20 | 001,075,284 | ---- | C] () -- C:\WINDOWS\rpcminer.rar [2011-08-19 10:42:55 | 004,636,907 | ---- | C] () -- C:\WINDOWS\geoiplist [2011-08-19 10:42:54 | 000,246,272 | ---- | C] () -- C:\WINDOWS\unrar.exe [2011-08-19 10:42:53 | 000,904,792 | ---- | C] () -- C:\WINDOWS\geoiplist.rar [2011-08-19 10:42:33 | 000,000,202 | ---- | C] () -- C:\WINDOWS\info1 [2011-08-19 10:41:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\loader2.exe_ok [2011-08-17 23:51:41 | 000,053,246 | ---- | C] () -- C:\Documents and Settings\aaaa\Pulpit\a,61764529,f,modelka_44600_400.jpg [2011-08-14 15:46:51 | 000,000,276 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-839522115-651377827-2147053123-1003.job [2011-08-14 15:46:50 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-839522115-651377827-2147053123-1003.job [2011-08-14 15:42:27 | 000,001,717 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk [2011-08-14 15:42:13 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011-08-14 15:42:13 | 000,001,028 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011-08-11 11:44:34 | 000,000,016 | ---- | C] () -- C:\WINDOWS\popcinfo.dat [2010-01-12 11:07:56 | 002,293,286 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin [2007-08-02 23:55:12 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2007-08-02 23:23:34 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2007-08-02 23:18:00 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2007-08-02 23:10:04 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2007-08-02 23:08:58 | 000,244,720 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2007-08-02 21:13:48 | 000,001,137 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2007-08-02 21:13:08 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2007-08-02 21:00:03 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2007-03-07 02:49:00 | 000,928,096 | ---- | C] () -- C:\WINDOWS\System32\nvucode.bin [2004-08-03 23:56:48 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2004-08-02 13:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2003-04-08 10:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [2002-03-21 14:39:02 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\UNACEV2.DLL [2001-10-26 19:15:16 | 000,355,830 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2001-10-26 19:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2001-10-26 19:15:16 | 000,049,712 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2001-10-26 19:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2001-08-23 16:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001-08-23 16:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001-08-18 00:30:24 | 000,311,740 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001-08-18 00:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001-08-18 00:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001-08-18 00:30:22 | 000,040,128 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001-08-18 00:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001-07-22 01:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001-07-22 01:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001-07-22 01:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [color=#E56717]========== LOP Check ==========[/color] [2008-12-11 18:13:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ACD Systems [2011-08-22 15:35:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2011-08-22 22:39:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2007-08-02 21:20:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aaaa\Dane aplikacji\ACD Systems [2007-08-02 21:26:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aaaa\Dane aplikacji\Opera [2008-12-11 18:17:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aaaa\Dane aplikacji\ESET [2011-08-10 09:50:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aaaa\Dane aplikacji\EurekaLog [2011-08-13 13:23:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aaaa\Dane aplikacji\Unity [color=#E56717]========== Purity Check ==========[/color] < End of report >