OTL logfile created on: 2013-08-26 12:53:31 - Run 3 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\jacek_\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 893,98 Mb Total Physical Memory | 502,92 Mb Available Physical Memory | 56,26% Memory free 2,12 Gb Paging File | 1,80 Gb Available in Paging File | 85,01% Paging File free Paging file location(s): C:\pagefile.sys 1344 2688 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 19,53 Gb Total Space | 8,59 Gb Free Space | 43,95% Space Free | Partition Type: NTFS Drive D: | 54,99 Gb Total Space | 54,89 Gb Free Space | 99,82% Space Free | Partition Type: NTFS Computer Name: JACEK | User Name: jacek_ | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-08-26 12:05:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jacek_\Pulpit\OTL.exe PRC - [2011-09-06 19:16:42 | 000,974,944 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe PRC - [2011-09-06 19:16:16 | 003,076,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe PRC - [2008-04-14 23:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-05-10 11:22:32 | 000,405,504 | ---- | M] (SigmaTel, Inc.) -- C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe PRC - [2006-01-02 18:41:22 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-02-28 16:39:50 | 011,808,768 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\27aa9bcd50d9d2438d34ef456998d679\System.Web.ni.dll MOD - [2013-02-28 16:39:06 | 000,962,560 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\d8b1879dfedd864d80b1fba2a4fdd64d\System.Configuration.ni.dll MOD - [2013-02-28 14:56:36 | 005,640,192 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\2cbee1757c133e4384fb26bf138ce563\System.Xml.ni.dll MOD - [2013-02-28 14:56:29 | 013,107,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\2d5dd22dd4fa9b44903545943780f08c\System.Windows.Forms.ni.dll MOD - [2013-02-28 14:56:16 | 001,626,112 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c5a6a0fdef9f474dae5a2c554a670bd8\System.Drawing.ni.dll MOD - [2013-02-28 14:56:13 | 008,093,696 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\667121221880c144961f05db45e2fe40\System.ni.dll MOD - [2013-02-28 14:56:02 | 011,415,552 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\e398f71fcc4c0a4fb80bd2178ca237fb\mscorlib.ni.dll MOD - [2013-02-28 14:55:37 | 000,368,640 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll MOD - [2013-02-28 14:55:37 | 000,299,008 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll MOD - [2009-02-27 20:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL MOD - [2007-03-16 19:10:38 | 000,757,760 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2013-08-17 10:42:28 | 000,117,656 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013-02-07 14:10:08 | 000,161,384 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2011-09-06 19:16:42 | 000,974,944 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\jacek_\USTAWI~1\Temp\uxtdypow.sys -- (uxtdypow) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\UIUSYS.SYS -- (UIUSys) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\snpstd3.sys -- (SNPSTD3) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_juextctrl.sys -- (huawei_ext_ctrl) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_jubusenum.sys -- (huawei_enumerator) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_jucdcecm.sys -- (huawei_cdcecm) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_jucdcacm.sys -- (huawei_cdcacm) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_usbenumfilter.sys -- (ew_usbenumfilter) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2011-08-09 14:57:10 | 000,154,136 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2011-08-04 10:20:38 | 000,147,480 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw) DRV - [2011-08-04 10:20:38 | 000,061,936 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi) DRV - [2011-08-04 10:20:38 | 000,039,824 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis) DRV - [2011-08-04 10:20:36 | 000,118,104 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2007-05-10 11:24:34 | 001,222,840 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) DRV - [2007-03-16 19:10:46 | 000,604,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX) DRV - [2006-11-21 05:25:44 | 000,045,568 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp) DRV - [2006-11-15 01:16:24 | 000,032,256 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk) DRV - [2006-10-11 22:43:56 | 001,777,152 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2006-07-01 23:39:40 | 000,036,864 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1960408961-1563985344-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultthis.engineName: "BS Player ControlBar Customized Web Search" FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&CUI=UN11350788751532420&UM=1&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.startup.homepage: "about:home" FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1 FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&CUI=UN11350788751532420&UM=1&q=" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll () FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-02-28 15:10:49 | 000,000,000 | ---D | M] [2013-02-28 16:06:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\jacek_\Dane aplikacji\Mozilla\Extensions [2013-03-11 21:32:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\jacek_\Dane aplikacji\Mozilla\Firefox\Profiles\it7vqg3w.default\extensions [2013-03-05 20:26:49 | 000,010,043 | ---- | M] () (No name found) -- C:\Documents and Settings\jacek_\Dane aplikacji\Mozilla\Firefox\Profiles\it7vqg3w.default\extensions\IplextoALL@ALLPlayer.org.xpi [2013-03-05 20:26:51 | 000,014,676 | ---- | M] () (No name found) -- C:\Documents and Settings\jacek_\Dane aplikacji\Mozilla\Firefox\Profiles\it7vqg3w.default\extensions\YouTubetoALL@ALLPlayer.org.xpi [2013-03-11 21:15:54 | 000,001,017 | ---- | M] () -- C:\Documents and Settings\jacek_\Dane aplikacji\Mozilla\Firefox\Profiles\it7vqg3w.default\searchplugins\conduit.xml [2013-08-17 10:41:50 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2013-08-17 10:41:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013-08-17 10:42:31 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} O1 HOSTS File: ([2002-09-29 00:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (ALLYouTubeDownloader) - {61DB16C5-B733-43F4-872E-B20DC9E72740} - C:\Program Files\ALLYouTubeDownloader\ALLYouTubeDownloader.dll (ALLCinema Ltd.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe () O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe (SigmaTel, Inc.) O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1960408961-1563985344-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D7A71D4F-A1E6-4FC4-8FBF-31A741FD8211}: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\jacek_\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\jacek_\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013-02-28 13:38:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{4f095286-d29a-11e2-a821-0019b963b85b}\Shell - "" = AutoRun O33 - MountPoints2\{4f095286-d29a-11e2-a821-0019b963b85b}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{4f095289-d29a-11e2-a821-0019b963b85b}\Shell - "" = AutoRun O33 - MountPoints2\{4f095289-d29a-11e2-a821-0019b963b85b}\Shell\AutoRun\command - "" = F:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-08-26 12:10:21 | 001,070,979 | ---- | C] (Farbar) -- C:\Documents and Settings\jacek_\Pulpit\FRST.exe [2013-08-26 12:05:12 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\jacek_\Pulpit\OTL.exe [2013-08-26 11:37:51 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\jacek_\Recent [2013-08-17 10:41:47 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-08-26 12:14:59 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013-08-26 12:10:29 | 001,070,979 | ---- | M] (Farbar) -- C:\Documents and Settings\jacek_\Pulpit\FRST.exe [2013-08-26 12:06:57 | 000,377,856 | ---- | M] () -- C:\Documents and Settings\jacek_\Pulpit\xveoifum.exe [2013-08-26 12:05:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\jacek_\Pulpit\OTL.exe [2013-08-23 20:42:05 | 000,143,872 | ---- | M] () -- C:\Documents and Settings\jacek_\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-08-22 10:07:54 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-08-26 12:06:56 | 000,377,856 | ---- | C] () -- C:\Documents and Settings\jacek_\Pulpit\xveoifum.exe [2013-05-26 17:09:24 | 000,151,552 | ---- | C] () -- C:\WINDOWS\KMSEmulator.exe [2013-03-27 21:42:44 | 000,645,632 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2013-03-02 17:59:30 | 000,172,032 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnpstd3.dll [2013-02-28 17:49:36 | 000,143,872 | ---- | C] () -- C:\Documents and Settings\jacek_\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-02-28 15:58:37 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll [2013-02-28 15:58:35 | 000,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll [2013-02-28 15:58:35 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE [2013-02-28 15:50:29 | 000,074,703 | ---- | C] () -- C:\WINDOWS\System32\mfc45.dll [2013-02-28 15:32:58 | 000,131,014 | ---- | C] () -- C:\WINDOWS\System32\DellPM.ini [2013-02-28 15:32:58 | 000,021,504 | ---- | C] () -- C:\WINDOWS\System32\FontZoom.exe [2013-02-28 14:51:24 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.dat [2013-02-28 14:51:22 | 000,136,650 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2013-02-28 14:26:23 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2013-02-28 14:25:07 | 000,190,592 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013-02-28 13:41:07 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2013-02-28 13:34:58 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2012-09-06 21:06:08 | 003,915,776 | ---- | C] () -- C:\WINDOWS\System32\ffmpeg.dll [2012-09-06 21:05:16 | 000,112,640 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2012-09-06 21:04:38 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll [2012-09-06 21:04:18 | 000,157,184 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll [2012-09-06 21:04:18 | 000,099,840 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll [2012-09-06 21:04:16 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll [2012-09-06 21:04:14 | 001,525,760 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll [2012-09-06 21:04:14 | 000,211,968 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll [2012-09-06 21:04:14 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll [2012-09-06 21:04:12 | 000,330,240 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll [2012-07-27 18:40:08 | 000,000,178 | ---- | C] () -- C:\WINDOWS\System32\Formats.ini [2012-07-19 20:56:08 | 000,172,544 | ---- | C] () -- C:\WINDOWS\System32\libbluray.dll [2012-07-19 20:56:02 | 006,894,331 | ---- | C] () -- C:\WINDOWS\System32\avcodec-lav-54.dll [2012-07-19 20:56:02 | 001,111,581 | ---- | C] () -- C:\WINDOWS\System32\avformat-lav-54.dll [2012-07-19 20:56:02 | 000,401,685 | ---- | C] () -- C:\WINDOWS\System32\swscale-lav-2.dll [2012-07-19 20:56:02 | 000,232,895 | ---- | C] () -- C:\WINDOWS\System32\avutil-lav-51.dll [2012-07-19 20:56:02 | 000,162,743 | ---- | C] () -- C:\WINDOWS\System32\avfilter-lav-3.dll [2012-07-19 20:56:02 | 000,101,820 | ---- | C] () -- C:\WINDOWS\System32\avresample-lav-0.dll [2012-06-17 23:15:04 | 000,198,144 | ---- | C] () -- C:\WINDOWS\System32\spdif_test.exe [2012-06-17 23:14:58 | 000,097,792 | ---- | C] () -- C:\WINDOWS\System32\ac3config.exe [2012-06-17 23:14:42 | 001,021,440 | ---- | C] () -- C:\WINDOWS\System32\ac3filter_intl.dll [2012-05-13 00:42:16 | 001,272,320 | ---- | C] () -- C:\WINDOWS\System32\avcodec-53.dll [2012-05-13 00:42:16 | 000,146,432 | ---- | C] () -- C:\WINDOWS\System32\avutil-51.dll [2011-12-07 21:32:24 | 000,216,064 | ---- | C] ( ) -- C:\WINDOWS\System32\Lagarith.dll [2011-09-08 16:00:52 | 000,150,528 | ---- | C] () -- C:\WINDOWS\System32\mkx.dll [2011-09-08 16:00:48 | 000,142,336 | ---- | C] () -- C:\WINDOWS\System32\mp4.dll [2011-09-08 16:00:42 | 000,123,392 | ---- | C] () -- C:\WINDOWS\System32\ogm.dll [2011-09-08 16:00:38 | 000,249,856 | ---- | C] () -- C:\WINDOWS\System32\dxr.dll [2011-09-08 16:00:34 | 000,113,152 | ---- | C] () -- C:\WINDOWS\System32\dsmux.exe [2011-09-08 16:00:24 | 000,154,624 | ---- | C] () -- C:\WINDOWS\System32\ts.dll [2011-09-08 16:00:10 | 000,137,728 | ---- | C] () -- C:\WINDOWS\System32\mkv2vfr.exe [2011-09-08 16:00:06 | 000,358,400 | ---- | C] () -- C:\WINDOWS\System32\gdsmux.exe [2011-09-08 15:59:54 | 000,080,384 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll [2011-09-08 15:59:52 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll [color=#E56717]========== ZeroAccess Check ==========[/color] [2013-02-28 14:55:32 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 23:50:48 | 001,499,136 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2008-04-14 23:50:32 | 000,472,064 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 23:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2013-05-21 17:14:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2013-02-28 16:16:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Pro [2013-06-11 15:35:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService [2013-02-28 15:10:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2013-03-06 20:54:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate [2013-02-28 15:50:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\iolo [2013-03-27 21:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Logs [2013-06-11 15:27:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PLAY ONLINE [2013-03-27 21:42:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2013-02-28 17:59:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jacek_\Dane aplikacji\BSplayer Pro [2013-06-26 15:54:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jacek_\Dane aplikacji\DAEMON Tools Lite [2013-04-05 11:30:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jacek_\Dane aplikacji\DAEMON Tools Pro [2013-02-28 14:47:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jacek_\Dane aplikacji\ESET [2013-02-28 15:50:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jacek_\Dane aplikacji\iolo [2013-03-13 17:59:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\jacek_\Dane aplikacji\NapiProjekt [color=#E56717]========== Purity Check ==========[/color] < End of report >