OTL logfile created on: 2014-07-26 10:30:32 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\User\Moje dokumenty\Downloads
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
703,36 Mb Total Physical Memory | 95,57 Mb Available Physical Memory | 13,59% Memory free
1,68 Gb Paging File | 0,85 Gb Available in Paging File | 50,87% Paging File free
Paging file location(s): C:\pagefile.sys 1054 1054 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 126,96 Gb Total Space | 113,08 Gb Free Space | 89,07% Space Free | Partition Type: NTFS
Drive D: | 105,92 Gb Total Space | 101,59 Gb Free Space | 95,91% Space Free | Partition Type: NTFS
Drive F: | 8,20 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: USER-E13D0C0A39 | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2014-07-26 10:29:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Moje dokumenty\Downloads\OTL.exe
PRC - [2014-07-15 11:24:50 | 000,860,488 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2014-06-20 11:13:30 | 000,179,600 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\mfevtps.exe
PRC - [2014-06-20 11:04:48 | 000,169,800 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
PRC - [2014-06-18 05:50:18 | 000,655,936 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
PRC - [2014-06-08 13:32:31 | 000,182,696 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2014-04-25 18:29:38 | 000,145,568 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\McAPExe.exe
PRC - [2014-04-25 11:56:12 | 012,971,328 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\TeamViewer.exe
PRC - [2014-04-25 11:56:12 | 005,024,576 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
PRC - [2014-04-25 11:42:00 | 000,238,400 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\tv_w32.exe
PRC - [2013-09-11 11:55:58 | 000,499,384 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
PRC - [2013-07-30 11:44:36 | 000,281,560 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
PRC - [2013-06-13 10:34:24 | 005,041,152 | ---- | M] () -- C:\Lombard955\Lombard955.exe
PRC - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe
PRC - [2010-06-29 15:15:18 | 000,073,728 | ---- | M] (Software 2000 Limited) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\HP1006MC.EXE
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2014-07-15 11:24:48 | 000,353,096 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\ppgooglenaclpluginchrome.dll
MOD - [2014-07-15 11:24:46 | 014,664,008 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll
MOD - [2014-07-15 11:24:44 | 008,537,928 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\pdf.dll
MOD - [2014-07-15 11:24:35 | 001,732,936 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll
MOD - [2013-06-17 17:40:18 | 000,034,920 | ---- | M] () -- C:\WINDOWS\system32\ddmon4-XP32.dll
MOD - [2013-06-13 10:34:24 | 005,041,152 | ---- | M] () -- C:\Lombard955\Lombard955.exe
MOD - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe
MOD - [2008-04-14 22:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [1996-11-18 02:00:00 | 000,748,160 | ---- | M] () -- C:\WINDOWS\system32\CO2C40EN.DLL
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - [2014-06-20 11:13:30 | 000,179,600 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\WINDOWS\system32\mfevtps.exe -- (mfevtp)
SRV - [2014-06-20 11:04:48 | 000,169,800 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV - [2014-06-18 05:50:18 | 000,655,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe -- (mfecore)
SRV - [2014-06-12 16:08:54 | 000,472,072 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2014-06-08 13:32:31 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2014-04-25 18:29:38 | 000,145,568 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSC\McAPExe.exe -- (McAPExe)
SRV - [2014-04-25 11:56:12 | 005,024,576 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2014-02-03 16:56:11 | 000,146,920 | ---- | M] (SaveSense) [On_Demand | Stopped] -- C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe -- (savesenselivem)
SRV - [2014-02-03 16:56:11 | 000,146,920 | ---- | M] (SaveSense) [Auto | Stopped] -- C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe -- (savesenselive)
SRV - [2013-07-30 11:44:36 | 000,281,560 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McProxy)
SRV - [2013-07-30 11:44:36 | 000,281,560 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (mcpltsvc)
SRV - [2013-07-30 11:44:36 | 000,281,560 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV - [2013-07-30 11:44:36 | 000,281,560 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV - [2013-07-30 11:44:36 | 000,281,560 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service)
SRV - [2013-07-30 11:44:36 | 000,281,560 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe -- (HomeNetSvc)
SRV - [2013-04-18 12:06:42 | 000,737,616 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2013-02-04 17:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2012-01-09 15:47:32 | 000,827,456 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\WINDOWS\Temp\0187231406361519mcinst.exe -- (0187231406361519mcinstcleanup)
SRV - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe -- (HWDeviceService.exe)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\ewfiltertdidriver.sys -- (filtertdidriver)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2014-06-20 11:21:18 | 000,062,832 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cfwids.sys -- (cfwids)
DRV - [2014-06-20 11:12:32 | 000,093,624 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mfetdi2k.sys -- (mfetdi2k)
DRV - [2014-06-20 11:07:32 | 000,576,048 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2014-06-20 11:05:44 | 000,087,520 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendiskmp)
DRV - [2014-06-20 11:05:44 | 000,087,520 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendisk)
DRV - [2014-06-20 11:05:16 | 000,369,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfefirek.sys -- (mfefirek)
DRV - [2014-06-20 11:04:20 | 000,067,816 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2014-06-20 11:03:28 | 000,238,176 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2014-06-20 11:02:06 | 000,135,968 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2014-06-18 03:10:46 | 000,081,296 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfencrk.sys -- (mfencrk)
DRV - [2014-06-18 03:10:16 | 000,349,192 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfencbdc.sys -- (mfencbdc)
DRV - [2013-11-25 16:18:25 | 000,025,200 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2013-11-25 16:18:25 | 000,012,400 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2013-09-23 13:48:38 | 000,147,912 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HipShieldK.sys -- (HipShieldK)
DRV - [2013-07-30 16:47:34 | 000,085,120 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2013-02-17 05:14:10 | 000,070,272 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys -- (huawei_cdcecm)
DRV - [2013-01-25 05:33:48 | 000,097,408 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
DRV - [2013-01-25 03:16:33 | 000,095,232 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV - [2013-01-23 08:58:06 | 000,249,600 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2013-01-23 08:56:28 | 000,199,296 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2013-01-23 05:31:04 | 000,077,696 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV - [2013-01-23 05:31:04 | 000,027,776 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl)
DRV - [2012-12-22 03:46:02 | 000,011,904 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV - [2008-05-16 12:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008-05-16 12:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008-05-16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex)
DRV - [2008-05-16 12:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus)
DRV - [2006-06-18 23:37:34 | 000,036,864 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005-05-18 17:50:30 | 002,319,680 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM)
DRV - [2005-02-12 21:45:46 | 000,986,624 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=8C3A005345000000&affID=128491&tsp=5190
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.60.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3: C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF - HKLM\Software\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9: C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2014-07-26 09:58:26 | 000,000,000 | ---D | M]
 
[2013-08-28 12:27:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Extensions
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - plugin: Error reading preferences file
CHR - Extension: Dokumenty Google = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Dysk Google = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Google Wallet = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2001-10-26 17:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (SaveSense) - {71e129ff-6c2a-4984-818c-7e2c998b8d99} - C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\SaveSense\SaveSenseIE.dll (SaveSense)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [mcpltui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKCU..\Run: [GG] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GG\Application\gghub.exe (GG Network S.A.)
O4 - HKCU..\Run: [Mobile Partner] C:\Program Files\Huawei E5776\Huawei E5776 File not found
O4 - HKCU..\Run: [wsctf.exe] wsctf.exe File not found
O4 - Startup: C:\Documents and Settings\User\Menu Start\Programy\Autostart\OpenOffice.org 3.4.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutorunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutorunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{94D5E231-A088-4340-8DC2-0F10361C2BB0}: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20 - HKLM Winlogon: Shell - (userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\User\Moje dokumenty\Moje obrazy\Tło pulpitu.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\User\Moje dokumenty\Moje obrazy\Tło pulpitu.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013-07-30 15:20:14 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011-03-15 10:27:21 | 000,148,320 | R--- | M] () - F:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2009-09-26 20:46:52 | 000,000,045 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{1b867a3e-f7b4-11e3-a15d-d084d408c786}\Shell\AutoRun\command - "" = H:\g6jk.exe
O33 - MountPoints2\{1b867a3e-f7b4-11e3-a15d-d084d408c786}\Shell\open\Command - "" = H:\g6jk.exe
O33 - MountPoints2\{1f286fb8-ac40-11e3-a0f3-b8d90dc783b5}\Shell - "" = AutoRun
O33 - MountPoints2\{1f286fb8-ac40-11e3-a0f3-b8d90dc783b5}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2011-03-15 10:27:21 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{1f286fbb-ac40-11e3-a0f3-a7f8096f7a4b}\Shell - "" = AutoRun
O33 - MountPoints2\{1f286fbb-ac40-11e3-a0f3-a7f8096f7a4b}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2011-03-15 10:27:21 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{1f93061d-0fb8-11e3-a006-0013d394575a}\Shell - "" = AutoRun
O33 - MountPoints2\{1f93061d-0fb8-11e3-a006-0013d394575a}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2011-03-15 10:27:21 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{1f93061f-0fb8-11e3-a006-0013d394575a}\Shell - "" = AutoRun
O33 - MountPoints2\{1f93061f-0fb8-11e3-a006-0013d394575a}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2011-03-15 10:27:21 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{1f930624-0fb8-11e3-a006-0013d394575a}\Shell - "" = AutoRun
O33 - MountPoints2\{1f930624-0fb8-11e3-a006-0013d394575a}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2011-03-15 10:27:21 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{32224bd4-c6d6-11e3-a11a-bfd00d88c2d2}\Shell - "" = AutoRun
O33 - MountPoints2\{32224bd4-c6d6-11e3-a11a-bfd00d88c2d2}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{58436ba9-1bb3-11e3-a018-0013d394575a}\Shell\AutoRun\command - "" = H:\g6jk.exe
O33 - MountPoints2\{58436ba9-1bb3-11e3-a018-0013d394575a}\Shell\open\Command - "" = H:\g6jk.exe
O33 - MountPoints2\{58cd2157-49f1-11e3-a065-8f86c81a3695}\Shell\AutoRun\command - "" = H:\g6jk.exe
O33 - MountPoints2\{58cd2157-49f1-11e3-a065-8f86c81a3695}\Shell\open\Command - "" = H:\g6jk.exe
O33 - MountPoints2\{5edb3159-10b9-11e4-a182-952752b1d269}\Shell - "" = AutoRun
O33 - MountPoints2\{5edb3159-10b9-11e4-a182-952752b1d269}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2011-03-15 10:27:21 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{6de6e237-00c2-11e3-9fec-0013d394575a}\Shell - "" = AutoRun
O33 - MountPoints2\{6de6e237-00c2-11e3-9fec-0013d394575a}\Shell\AutoRun\command - "" = F:\LGAutoRun.exe
O33 - MountPoints2\{c11223bc-d3a7-11e3-a12a-aac6f97c659e}\Shell - "" = AutoRun
O33 - MountPoints2\{c11223bc-d3a7-11e3-a12a-aac6f97c659e}\Shell\AutoRun\command - "" = H:\LGAutoRun.exe
O33 - MountPoints2\{c4e18074-f9ea-11e2-9fdc-0013d394575a}\Shell\AutoRun\command - "" = H:\EXPLORER.EXE
O33 - MountPoints2\{c4e18074-f9ea-11e2-9fdc-0013d394575a}\Shell\explore\Command - "" = H:\EXPLORER.EXE
O33 - MountPoints2\{c4e18074-f9ea-11e2-9fdc-0013d394575a}\Shell\open\Command - "" = H:\EXPLORER.EXE
O33 - MountPoints2\{c4e18076-f9ea-11e2-9fdc-0013d394575a}\Shell\AutoRun\command - "" = H:\g6jk.exe
O33 - MountPoints2\{c4e18076-f9ea-11e2-9fdc-0013d394575a}\Shell\open\Command - "" = H:\EXPLORER.EXE
O33 - MountPoints2\{c4e18077-f9ea-11e2-9fdc-0013d394575a}\Shell\AutoRun\command - "" = I:\EXPLORER.EXE
O33 - MountPoints2\{c4e18077-f9ea-11e2-9fdc-0013d394575a}\Shell\explore\Command - "" = I:\EXPLORER.EXE
O33 - MountPoints2\{c4e18077-f9ea-11e2-9fdc-0013d394575a}\Shell\open\Command - "" = I:\EXPLORER.EXE
O33 - MountPoints2\{ce2ece1f-1609-11e3-a00f-0013d394575a}\Shell\AutoRun\command - "" = H:\EXPLORER.EXE
O33 - MountPoints2\{ce2ece1f-1609-11e3-a00f-0013d394575a}\Shell\explore\Command - "" = H:\EXPLORER.EXE
O33 - MountPoints2\{ce2ece1f-1609-11e3-a00f-0013d394575a}\Shell\open\Command - "" = H:\EXPLORER.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2014-07-26 10:00:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\McAfee
[2014-07-26 09:58:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2014-07-25 11:19:33 | 000,147,912 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\HipShieldK.sys
[2014-07-25 11:17:46 | 000,087,520 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfendisk.sys
[2014-07-25 11:17:04 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee.com
[2014-07-25 11:16:48 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2014-07-25 11:08:55 | 000,000,000 | ---D | C] -- C:\Quarantine
[2014-07-25 11:08:27 | 000,000,000 | ---D | C] -- C:\Program Files\stinger
[2014-07-25 11:06:32 | 000,179,600 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\mfevtps.exe
[2014-07-25 11:06:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2014-07-21 20:03:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Google Chrome
[2014-07-21 19:53:49 | 000,097,408 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jucdcacm.sys
[2014-07-21 19:53:49 | 000,077,696 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jubusenum.sys
[2014-07-21 19:53:49 | 000,070,272 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jucdcecm.sys
[2014-07-21 19:53:49 | 000,027,776 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_juextctrl.sys
[2014-07-21 19:53:48 | 000,861,696 | ---- | C] (DiBcom SA) -- C:\WINDOWS\System32\drivers\mod7700.sys
[2014-07-21 19:53:48 | 000,249,600 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys
[2014-07-21 19:53:48 | 000,199,296 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys
[2014-07-21 19:53:48 | 000,095,232 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_hwusbdev.sys
[2014-07-21 19:53:48 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccid.sys
[2014-07-21 19:53:48 | 000,025,856 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys
[2014-07-21 19:53:48 | 000,019,200 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_hwupgrade.sys
[2014-07-21 19:53:48 | 000,011,904 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys
[9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2014-07-26 11:01:02 | 000,000,916 | ---- | M] () -- C:\WINDOWS\tasks\SaveSenseLiveUpdateTaskMachineUA.job
[2014-07-26 10:45:28 | 124,114,003 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ALLEGRO.rar
[2014-07-26 10:43:58 | 008,175,979 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\RAPORTY KASOWE.rar
[2014-07-26 10:39:37 | 004,392,328 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\DOKUMENTY.rar
[2014-07-26 10:07:00 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014-07-26 10:00:59 | 000,001,611 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\McAfee AntiVirus Plus.lnk
[2014-07-26 09:50:43 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014-07-26 09:50:26 | 000,000,912 | ---- | M] () -- C:\WINDOWS\tasks\SaveSenseLiveUpdateTaskMachineCore.job
[2014-07-26 09:50:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014-07-25 20:49:00 | 000,000,041 | ---- | M] () -- C:\WINDOWS\crw.ini
[2014-07-24 11:23:56 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014-07-21 20:03:44 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
[2014-07-21 19:54:17 | 000,001,342 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Huawei E5776.lnk
[2014-07-21 12:03:40 | 000,012,999 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Klaka.odt
[9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2014-07-26 10:41:33 | 008,175,979 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\RAPORTY KASOWE.rar
[2014-07-26 10:41:19 | 124,114,003 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ALLEGRO.rar
[2014-07-26 10:39:18 | 004,392,328 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\DOKUMENTY.rar
[2014-07-25 11:21:07 | 000,001,611 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\McAfee AntiVirus Plus.lnk
[2014-07-25 11:20:14 | 000,002,641 | ---- | C] () -- C:\WINDOWS\System32\drivers\mfencrk.inf
[2014-07-25 11:20:13 | 000,005,442 | ---- | C] () -- C:\WINDOWS\System32\drivers\mfencbdc.inf
[2014-07-21 20:03:44 | 000,001,819 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
[2014-07-21 20:02:54 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014-07-21 20:02:53 | 000,001,028 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014-07-21 19:54:17 | 000,001,342 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Huawei E5776.lnk
[2014-07-21 11:28:05 | 000,012,999 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Klaka.odt
[2014-04-23 09:21:04 | 000,034,920 | ---- | C] () -- C:\WINDOWS\System32\ddmon4-XP32.dll
[2014-02-03 16:56:13 | 000,000,044 | ---- | C] () -- C:\Documents and Settings\User\Dane aplikacji\WB.CFG
[2013-07-31 16:11:45 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\P2SODBC.DLL
[2013-07-31 16:11:43 | 000,054,272 | ---- | C] () -- C:\WINDOWS\System32\P2IRDAO.DLL
[2013-07-31 16:11:42 | 000,050,176 | ---- | C] () -- C:\WINDOWS\System32\P2CTDAO.DLL
[2013-07-31 16:11:39 | 000,036,352 | ---- | C] () -- C:\WINDOWS\System32\P2BBND.DLL
[2013-07-31 16:11:34 | 000,748,160 | ---- | C] () -- C:\WINDOWS\System32\CO2C40EN.DLL
[2013-07-31 16:11:31 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\IMPLODE.DLL
[2013-07-30 19:54:59 | 000,000,041 | ---- | C] () -- C:\WINDOWS\crw.ini
[2013-07-30 19:36:37 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\HPPLVS.dll
[2013-07-30 17:43:48 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2013-07-30 17:37:23 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys.sum
[2013-07-30 17:37:23 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSP.sys.sum
[2013-07-30 17:37:23 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSnx.sys.sum
[2013-07-30 16:52:47 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013-07-30 16:49:05 | 000,198,552 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013-07-30 15:22:55 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013-07-30 15:00:50 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2013-07-30 19:34:40 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 22:50:48 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2008-04-14 22:50:32 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

< End of report >