witam
mam gorąca prośbę… potrzebuje pomocy.
wraz z stroną startową mozilli wyswietla mi się byteseeker a praca przegladarki jest spowolniona… nie wiem jak mam usunąć ten ■■■■. Przegladałam rózne fora ale nigdzie nie ma jasnych (jak dla mnie) instrukcji…
potrzebuję dobrych rad dobrego informatyka a zarazem pedagoga… 
bo wogóle nie czaję o co chodzi z tymi logami itp…
Pokaż log z: OTL
Przestawiasz w nim Processes i Modules na All oraz wklejasz w dolne białe okienko Custom Scans/Fixes :
Klikasz Run Scan. - otl-gmer-rsit-dds-inne-instrukcje-t370405.html
ok
oto ten raport z OTL
OTL logfile created on: 2010-01-11 22:07:24 - Run 2
OTL by OldTimer - Version 3.1.23.0 Folder = C:\Documents and Settings\iza\Pulpit
Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 60,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 85,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 11,23 Gb Free Space | 38,33% Space Free | Partition Type: NTFS
Drive D: | 82,49 Gb Total Space | 2,37 Gb Free Space | 2,88% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: X-BF4B639FC3244
Current User Name: iza
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (All) ==========
PRC - [2010-01-11 17:50:40 | 00,543,744 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\iza\Pulpit\OTL.exe
PRC - [2010-01-10 20:15:51 | 00,307,672 | ---- | M] (Mozilla Corporation) – C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-11-25 00:51:40 | 00,081,000 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009-04-20 15:56:20 | 09,818,728 | ---- | M] (GG Network S.A.) – C:\Program Files\Nowe Gadu-Gadu\gg.exe
PRC - [2009-04-20 15:08:38 | 00,077,824 | ---- | M] () – C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe
PRC - [2008-12-13 05:23:30 | 00,882,176 | ---- | M] (Ares Development Group) – C:\Program Files\Ares\Ares.exe
PRC - [2008-10-16 14:09:44 | 00,051,224 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\wuauclt.exe
PRC - [2008-07-15 13:55:58 | 00,208,896 | ---- | M] (Realtek Semiconductor Corp.) – C:\Documents and Settings\iza\Ustawienia lokalne\Temp\RtkBtMnt.exe
PRC - [2008-04-02 06:50:26 | 00,163,840 | ---- | M] (Intel Corporation) – C:\WINDOWS\system32\hkcmd.exe
PRC - [2008-04-02 06:50:26 | 00,143,360 | ---- | M] (Intel Corporation) – C:\WINDOWS\system32\igfxtray.exe
PRC - [2008-04-02 06:50:00 | 00,135,168 | ---- | M] (Intel Corporation) – C:\WINDOWS\system32\igfxpers.exe
PRC - [2008-04-02 06:49:46 | 00,249,856 | ---- | M] (Intel Corporation) – C:\WINDOWS\system32\igfxsrvc.exe
PRC - [2007-09-07 10:33:20 | 01,015,808 | ---- | M] (Synaptics, Inc.) – C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2007-05-17 09:22:12 | 00,331,776 | ---- | M] (Huawei Technologies) – C:\Program Files\Huawei technologies\Huawei UMTS Data Card\HUAWEI Mobile Connect.exe
PRC - [2007-03-21 07:49:20 | 16,126,464 | R— | M] (Realtek Semiconductor Corp.) – C:\WINDOWS\RTHDCPL.exe
PRC - [2006-12-19 13:16:20 | 00,079,432 | ---- | M] (Broadcom Corporation) – C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe
PRC - [2006-10-12 15:28:56 | 00,020,480 | ---- | M] () – C:\WINDOWS\system32\WLTRYSVC.EXE
PRC - [2006-10-12 15:28:48 | 01,282,048 | ---- | M] (Broadcom Corporation) – C:\WINDOWS\system32\WLTRAY.EXE
PRC - [2006-10-12 15:28:48 | 01,134,592 | ---- | M] (Broadcom Corporation) – C:\WINDOWS\system32\BCMWLTRY.EXE
PRC - [2006-03-02 13:00:00 | 01,033,728 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\explorer.exe
PRC - [2006-03-02 13:00:00 | 00,504,832 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\winlogon.exe
PRC - [2006-03-02 13:00:00 | 00,108,544 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\services.exe
PRC - [2006-03-02 13:00:00 | 00,057,856 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\spoolsv.exe
PRC - [2006-03-02 13:00:00 | 00,050,688 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\smss.exe
PRC - [2006-03-02 13:00:00 | 00,044,544 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\alg.exe
PRC - [2006-03-02 13:00:00 | 00,015,360 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\ctfmon.exe
PRC - [2006-03-02 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2006-03-02 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2006-03-02 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2006-03-02 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2006-03-02 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [imgSVC]
PRC - [2006-03-02 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2006-03-02 13:00:00 | 00,013,312 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\lsass.exe
PRC - [2006-03-02 13:00:00 | 00,006,144 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\csrss.exe
PRC - [2004-08-03 23:55:54 | 01,667,584 | ---- | M] (Microsoft Corporation) – C:\Program Files\Messenger\msmsgs.exe
========== Modules (All) ==========
MOD - [2010-01-11 17:50:40 | 00,543,744 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\iza\Pulpit\OTL.exe
MOD - [2006-09-23 11:13:02 | 00,474,112 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\shlwapi.dll
MOD - [2006-05-03 22:53:54 | 00,174,592 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\framedyn.dll
MOD - [2006-03-02 13:00:00 | 08,412,672 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\shell32.dll
MOD - [2006-03-02 13:00:00 | 01,281,024 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\ole32.dll
MOD - [2006-03-02 13:00:00 | 01,050,624 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2006-03-02 13:00:00 | 01,012,224 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\kernel32.dll
MOD - [2006-03-02 13:00:00 | 00,996,352 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\setupapi.dll
MOD - [2006-03-02 13:00:00 | 00,716,288 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\ntdll.dll
MOD - [2006-03-02 13:00:00 | 00,686,080 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\advapi32.dll
MOD - [2006-03-02 13:00:00 | 00,581,120 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\rpcrt4.dll
MOD - [2006-03-02 13:00:00 | 00,578,560 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\user32.dll
MOD - [2006-03-02 13:00:00 | 00,553,472 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\oleaut32.dll
MOD - [2006-03-02 13:00:00 | 00,343,040 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\msvcrt.dll
MOD - [2006-03-02 13:00:00 | 00,294,400 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\MSCTF.dll
MOD - [2006-03-02 13:00:00 | 00,278,016 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\gdi32.dll
MOD - [2006-03-02 13:00:00 | 00,219,648 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\uxtheme.dll
MOD - [2006-03-02 13:00:00 | 00,146,432 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\winspool.drv
MOD - [2006-03-02 13:00:00 | 00,083,456 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\olepro32.dll
MOD - [2006-03-02 13:00:00 | 00,067,584 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\srclient.dll
MOD - [2006-03-02 13:00:00 | 00,055,808 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\secur32.dll
MOD - [2006-03-02 13:00:00 | 00,023,040 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\psapi.dll
MOD - [2006-03-02 13:00:00 | 00,018,944 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\version.dll
========== Win32 Services (SafeList) ==========
SRV - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) [Auto | Running] – C:\Program Files\Alwil Software\Avast4\ashServ.exe – (avast! Antivirus)
SRV - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] – C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe – (avast! Mail Scanner)
SRV - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] – C:\Program Files\Alwil Software\Avast4\ashWebSv.exe – (avast! Web Scanner)
SRV - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) [Auto | Running] – C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe – (aswUpdSv)
SRV - [2008-07-31 23:16:28 | 00,136,120 | ---- | M] (Google) [On_Demand | Stopped] – C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe – (gusvc)
SRV - [2006-12-19 13:16:20 | 00,079,432 | ---- | M] (Broadcom Corporation) [Auto | Running] – C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe – (ASFIPmon)
SRV - [2006-11-28 09:44:58 | 00,386,560 | R— | M] (Conexant Systems, Inc.) [Auto | Stopped] – C:\WINDOWS\system32\drivers\XAudio.exe – (XAudioService)
SRV - [2006-10-26 18:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE – (odserv)
SRV - [2006-10-26 12:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE – (ose)
SRV - [2006-10-12 15:28:56 | 00,020,480 | ---- | M] () [Auto | Running] – C:\WINDOWS\System32\WLTRYSVC.EXE – (wltrysvc)
SRV - [2004-08-04 01:44:02 | 00,027,648 | ---- | M] (Microsoft Corporation) [Auto | Running] – C:\WINDOWS\system32\irmon.dll – (Irmon)
========== Driver Services (SafeList) ==========
DRV - [2009-11-28 12:53:25 | 00,028,624 | ---- | M] () [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\secdrv.sys – (Secdrv)
DRV - [2009-11-25 00:50:59 | 00,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] – C:\WINDOWS\system32\drivers\aswmon2.sys – (aswMon2)
DRV - [2009-11-25 00:50:12 | 00,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\aswSP.sys – (aswSP)
DRV - [2009-11-25 00:50:00 | 00,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] – C:\WINDOWS\system32\drivers\aswFsBlk.sys – (aswFsBlk)
DRV - [2009-11-25 00:49:07 | 00,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\aswTdi.sys – (aswTdi)
DRV - [2009-11-25 00:48:57 | 00,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\aswRdr.sys – (aswRdr)
DRV - [2009-11-25 00:47:54 | 00,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\aavmker4.sys – (Aavmker4)
DRV - [2008-11-20 20:19:06 | 00,043,872 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] – C:\WINDOWS\System32\Drivers\PxHelp20.sys – (PxHelp20)
DRV - [2008-04-02 07:15:26 | 06,008,704 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\igxpmp32.sys – (ialm)
DRV - [2007-09-07 10:16:08 | 00,215,904 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\SynTP.sys – (SynTP)
DRV - [2007-04-20 09:40:34 | 00,100,992 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ewusbmdm.sys – (hwdatacard)
DRV - [2007-03-26 12:21:06 | 04,395,008 | R— | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\RtkHDAud.sys – (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007-03-06 11:24:06 | 01,666,048 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\igdkmd32.sys – (igfx)
DRV - [2007-01-24 13:44:06 | 00,290,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\tifm21.sys – (tifm21)
DRV - [2006-12-22 04:50:24 | 00,985,600 | R— | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\HSX_DPV.sys – (HSF_DPV)
DRV - [2006-12-22 04:49:04 | 00,207,360 | R— | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\HSXHWAZL.sys – (HSXHWAZL)
DRV - [2006-12-22 04:48:54 | 00,659,968 | R— | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\HSX_CNXT.sys – (winachsf)
DRV - [2006-12-19 13:16:24 | 00,010,480 | ---- | M] (Broadcom Corporation) [Kernel | Auto | Running] – C:\Program Files\Broadcom\ASFIPMon\BASFND.sys – (BASFND)
DRV - [2006-11-28 09:44:52 | 00,008,192 | R— | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\XAudio.sys – (XAudio)
DRV - [2006-10-12 15:28:42 | 00,604,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\BCMWL5.SYS – (BCM43XX)
DRV - [2006-06-19 07:26:58 | 00,012,672 | R— | M] (Conexant) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\mdmxsdk.sys – (mdmxsdk)
DRV - [2006-03-02 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ptilink.sys – (Ptilink)
DRV - [2005-01-07 16:07:18 | 00,138,752 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\Hdaudbus.sys – (HDAudBus)
DRV - [2004-08-04 00:00:52 | 00,028,672 | ---- | M] (National Semiconductor Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\nscirda.sys – (NSCIRDA)
DRV - [2004-08-03 22:07:56 | 00,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\USBAUDIO.sys – (usbaudio) Sterownik audio USB (WDM)
DRV - [2001-10-26 16:50:46 | 00,097,056 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\b57xp32.sys – (b57w2k)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0
========== FireFox ==========
FF - prefs.js…browser.startup.homepage: “http://www.theprizeday.com/today.php|http://pl.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official”
FF - prefs.js…extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1
FF - prefs.js…extensions.enabledItems: 6
FF - prefs.js…extensions.enabledItems: 2
FF - prefs.js…extensions.enabledItems: 44
FF - prefs.js…extensions.enabledItems: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.10
FF - prefs.js…extensions.enabledItems: {F2DDDB92-1605-4260-9B25-45A4DAE87B50}:1.0
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.17\extensions\Components: C:\Program Files\Mozilla Firefox\components [2010-01-10 20:16:00 | 00,000,000 | —D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.17\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-10 20:16:00 | 00,000,000 | —D | M]
[2009-04-07 19:48:42 | 00,000,000 | —D | M] – C:\Documents and Settings\iza\Dane aplikacji\Mozilla\Extensions
[2009-04-07 19:48:42 | 00,000,000 | —D | M] (No name found) – C:\Documents and Settings\iza\Dane aplikacji\Mozilla\Extensions{ae2cff10-0d52-4066-8be9-4abcf119fa79}
[2010-01-11 14:47:32 | 00,000,000 | —D | M] – C:\Documents and Settings\iza\Dane aplikacji\Mozilla\Firefox\Profiles\n0pwlpkx.default\extensions
[2009-12-01 22:05:36 | 00,000,000 | —D | M] (BitComet Video Downloader) – C:\Documents and Settings\iza\Dane aplikacji\Mozilla\Firefox\Profiles\n0pwlpkx.default\extensions{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2009-09-21 13:11:27 | 00,000,000 | —D | M] (Adobe DLM (powered by getPlus®)) – C:\Documents and Settings\iza\Dane aplikacji\Mozilla\Firefox\Profiles\n0pwlpkx.default\extensions{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2009-11-07 16:15:22 | 00,002,059 | ---- | M] () – C:\Documents and Settings\iza\Dane aplikacji\Mozilla\Firefox\Profiles\n0pwlpkx.default\searchplugins\daemon-search.xml
[2010-01-11 14:47:32 | 00,000,000 | —D | M] – C:\Program Files\Mozilla Firefox\extensions
[2009-11-30 14:35:07 | 00,000,000 | —D | M] (QuestService) – C:\Program Files\Mozilla Firefox\extensions{F2DDDB92-1605-4260-9B25-45A4DAE87B50}
[2009-07-17 09:40:12 | 00,704,512 | ---- | M] (BitComet) – C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll
[2009-07-22 17:53:40 | 00,002,767 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2007-07-26 12:05:16 | 00,001,329 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml
[2008-11-15 19:13:48 | 00,001,406 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2008-11-15 19:13:48 | 00,000,917 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2008-11-15 19:13:48 | 00,000,858 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2009-11-30 14:35:08 | 00,002,405 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\questservice127.xml
[2008-11-15 19:13:48 | 00,001,183 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2008-11-15 19:13:48 | 00,001,683 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O4 - HKLM…\Run: [Alcmtr] File not found
O4 - HKLM…\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM…\Run: [broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.EXE (Broadcom Corporation)
O4 - HKLM…\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM…\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM…\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM…\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.exe (Realtek Semiconductor Corp.)
O4 - HKLM…\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKCU…\Run: [amva] C:\WINDOWS\System32\amvo.exe File not found
O4 - HKCU…\Run: [ares] C:\Program Files\Ares\Ares.exe (Ares Development Group)
O4 - HKCU…\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)
O4 - HKCU…\Run: [HUAWEI 3G Data Card MTS] C:\Program Files\Huawei technologies\Huawei UMTS Data Card\HUAWEI Mobile Connect.exe (Huawei Technologies)
O4 - HKCU…\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra ‘Tools’ menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O15 - HKLM…Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 192.168.1.199
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-09-08 21:30:47 | 00,000,095 | ---- | M] () - C:\AUTOEXEC.BAT – [NTFS]
O33 - MountPoints2{81e57c44-5273-11dd-90b8-001e4c239bdc}\Shell\AutoRun\command - “” = F:\u.bat – File not found
O33 - MountPoints2{81e57c44-5273-11dd-90b8-001e4c239bdc}\Shell\explore\Command - “” = F:\u.bat – File not found
O33 - MountPoints2{81e57c44-5273-11dd-90b8-001e4c239bdc}\Shell\open\Command - “” = F:\u.bat – File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] – “%1” %*
O35 - exefile [open] – “%1” %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2008-07-15 15:15:02 | 00,000,000 | —D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - C:\WINDOWS\system32\irmon.dll (Microsoft Corporation)
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
========== Files/Folders - Created Within 30 Days ==========
[2010-01-11 17:50:21 | 00,543,744 | ---- | C] (OldTimer Tools) – C:\Documents and Settings\iza\Pulpit\OTL.exe
[2010-01-02 23:01:54 | 00,000,000 | —D | C] – C:\Games
[2010-01-02 18:50:09 | 00,118,784 | ---- | C] (fccHandler) – C:\WINDOWS\System32\ac3acm.acm
[2010-01-02 18:50:08 | 00,217,088 | ---- | C] (www.helixcommunity.org) – C:\WINDOWS\System32\yv12vfw.dll
[2010-01-02 18:38:11 | 00,839,680 | ---- | C] (http://www.mp3dev.org/) – C:\WINDOWS\System32\lameACM.acm
[2009-11-02 15:01:00 | 00,000,000 | —D | M] – C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
[2009-11-02 14:56:52 | 00,000,000 | —D | M] – C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
[2008-12-16 22:43:01 | 00,000,000 | —D | M] – C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Apple
[2008-09-01 13:42:28 | 00,047,360 | ---- | C] (VSO Software) – C:\Documents and Settings\iza\Dane aplikacji\pcouffin.sys
[2008-07-15 13:35:45 | 00,000,000 | —D | M] – C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2008-07-15 13:35:32 | 00,000,000 | —D | M] – C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2008-07-15 13:32:40 | 00,000,000 | --SD | M] – C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2008-07-15 13:32:40 | 00,000,000 | --SD | M] – C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[9 C:\WINDOWS*.tmp files -> C:\WINDOWS*.tmp ->]
[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]
========== Files - Modified Within 30 Days ==========
[2010-01-11 18:44:57 | 00,000,006 | -H-- | M] () – C:\WINDOWS\tasks\SA.DAT
[2010-01-11 18:44:51 | 00,002,048 | --S- | M] () – C:\WINDOWS\bootstat.dat
[2010-01-11 18:43:58 | 02,359,296 | ---- | M] () – C:\Documents and Settings\iza\NTUSER.DAT
[2010-01-11 18:43:55 | 00,000,188 | -HS- | M] () – C:\Documents and Settings\iza\ntuser.ini
[2010-01-11 18:43:34 | 00,002,645 | ---- | M] () – C:\WINDOWS\System32\CONFIG.NT
[2010-01-11 17:50:40 | 00,543,744 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\iza\Pulpit\OTL.exe
[2010-01-10 19:58:40 | 00,016,384 | -H-- | M] () – C:\Documents and Settings\iza\Pulpit\photothumb.db
[2010-01-09 23:59:00 | 00,000,284 | ---- | M] () – C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010-01-09 14:27:06 | 00,098,816 | ---- | M] () – C:\Documents and Settings\iza\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-05 21:02:34 | 00,013,772 | ---- | M] () – C:\WINDOWS\System32\wpa.dbl
[2010-01-04 18:30:47 | 00,480,727 | ---- | M] () – C:\Documents and Settings\iza\Pulpit\zalaczniki2.zip
[2010-01-04 18:28:45 | 00,430,845 | ---- | M] () – C:\Documents and Settings\iza\Pulpit\zalaczniki.zip
[2010-01-03 14:19:14 | 00,554,920 | ---- | M] () – C:\Documents and Settings\iza\Pulpit\BOARDS_2_0_0_38.exe
[2010-01-02 23:02:12 | 00,027,488 | ---- | M] () – C:\Documents and Settings\iza\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-01-02 23:01:57 | 00,001,472 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Bilard 3D.lnk
[2010-01-02 23:01:46 | 01,051,720 | ---- | M] () – C:\WINDOWS\System32\PerfStringBackup.INI
[2010-01-02 23:01:46 | 00,529,878 | ---- | M] () – C:\WINDOWS\System32\perfh015.dat
[2010-01-02 23:01:46 | 00,462,252 | ---- | M] () – C:\WINDOWS\System32\perfh009.dat
[2010-01-02 23:01:46 | 00,092,642 | ---- | M] () – C:\WINDOWS\System32\perfc015.dat
[2010-01-02 23:01:46 | 00,072,194 | ---- | M] () – C:\WINDOWS\System32\perfc009.dat
[2010-01-02 22:32:31 | 05,529,686 | ---- | M] () – C:\Documents and Settings\iza\Pulpit\Bilard3DInstaller.exe
[2010-01-02 19:07:38 | 00,001,757 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk
[2010-01-02 18:56:01 | 00,000,010 | ---- | M] () – C:\WINDOWS\popcinfo.dat
[2010-01-02 18:29:13 | 00,146,808 | ---- | M] () – C:\WINDOWS\System32\FNTCACHE.DAT
[2010-01-02 18:28:22 | 04,194,304 | ---- | M] () – C:\Documents and Settings\iza\NTUSER.bak
[2009-12-30 18:00:14 | 00,001,122 | ---- | M] () – C:\WINDOWS\bestplayer.ini
[2009-12-30 18:00:14 | 00,000,282 | ---- | M] () – C:\WINDOWS\bestplayer.bbt
[2009-12-30 18:00:14 | 00,000,021 | ---- | M] () – C:\WINDOWS\bestplayer.bpp
[2009-12-29 16:33:14 | 15,704,129 | ---- | M] () – C:\Documents and Settings\iza\Pulpit\javi mula - come on(2)183.mp3
[2009-12-29 16:27:33 | 08,779,600 | ---- | M] () – C:\Documents and Settings\iza\Pulpit\domino dancing - you are my sunshine (original mix).mp3
[2009-12-28 17:48:17 | 00,000,664 | ---- | M] () – C:\WINDOWS\System32\d3d9caps.dat
[2009-12-27 15:28:30 | 01,579,534 | -H-- | M] () – C:\Documents and Settings\iza\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2009-12-22 20:00:02 | 00,024,643 | ---- | M] () – C:\Documents and Settings\iza\Pulpit\oldboy.(2003).pol.2cd.(212926).zip
[9 C:\WINDOWS*.tmp files -> C:\WINDOWS*.tmp ->]
[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]
========== Files Created - No Company Name ==========
[2010-01-04 18:30:46 | 00,480,727 | ---- | C] () – C:\Documents and Settings\iza\Pulpit\zalaczniki2.zip
[2010-01-04 18:28:44 | 00,430,845 | ---- | C] () – C:\Documents and Settings\iza\Pulpit\zalaczniki.zip
[2010-01-03 14:19:14 | 00,554,920 | ---- | C] () – C:\Documents and Settings\iza\Pulpit\BOARDS_2_0_0_38.exe
[2010-01-02 23:01:57 | 00,001,472 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\Bilard 3D.lnk
[2010-01-02 22:27:01 | 05,529,686 | ---- | C] () – C:\Documents and Settings\iza\Pulpit\Bilard3DInstaller.exe
[2010-01-02 19:07:38 | 00,001,757 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk
[2010-01-02 18:50:10 | 00,000,038 | ---- | C] () – C:\WINDOWS\avisplitter.ini
[2010-01-02 18:50:09 | 00,000,414 | ---- | C] () – C:\WINDOWS\System32\lame_acm.xml
[2010-01-02 18:50:08 | 00,881,664 | ---- | C] () – C:\WINDOWS\System32\xvidcore.dll
[2010-01-02 18:50:08 | 00,205,824 | ---- | C] () – C:\WINDOWS\System32\xvidvfw.dll
[2010-01-02 18:50:05 | 00,085,504 | ---- | C] () – C:\WINDOWS\System32\ff_vfw.dll
[2010-01-02 18:50:05 | 00,000,547 | ---- | C] () – C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010-01-02 18:38:12 | 00,178,176 | ---- | C] () – C:\WINDOWS\System32\unrar.dll
[2009-12-29 16:28:07 | 15,704,129 | ---- | C] () – C:\Documents and Settings\iza\Pulpit\javi mula - come on(2)183.mp3
[2009-12-29 16:24:21 | 08,779,600 | ---- | C] () – C:\Documents and Settings\iza\Pulpit\domino dancing - you are my sunshine (original mix).mp3
[2009-12-22 20:00:01 | 00,024,643 | ---- | C] () – C:\Documents and Settings\iza\Pulpit\oldboy.(2003).pol.2cd.(212926).zip
[2009-12-06 13:36:44 | 00,000,056 | ---- | C] () – C:\WINDOWS\Kulki.ini
[2009-10-29 21:15:00 | 00,110,592 | ---- | C] () – C:\WINDOWS\System32\FsUsbExDevice.Dll
[2009-10-29 21:15:00 | 00,036,608 | ---- | C] () – C:\WINDOWS\System32\FsUsbExDisk.Sys
[2009-10-29 21:14:52 | 00,002,528 | ---- | C] () – C:\Documents and Settings\iza\Dane aplikacji$_hpcst$.hpc
[2009-05-05 15:16:36 | 00,000,143 | ---- | C] () – C:\WINDOWS\ODBC.INI
[2009-03-13 05:44:28 | 00,000,128 | ---- | C] () – C:\Documents and Settings\iza\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2009-01-02 09:53:45 | 00,120,200 | ---- | C] () – C:\WINDOWS\System32\DLLDEV32i.dll
[2009-01-02 09:53:30 | 00,005,937 | ---- | C] () – C:\WINDOWS\mgxoschk.ini
[2008-12-27 20:51:13 | 00,421,888 | ---- | C] () – C:\WINDOWS\System32\OpenQuicktimeLib.dll
[2008-12-08 21:39:40 | 00,000,045 | ---- | C] () – C:\Documents and Settings\iza\Dane aplikacji\AVSDVDPlayer.m3u
[2008-11-25 09:30:38 | 00,002,560 | ---- | C] () – C:\WINDOWS\System32\drivers\mchInjDrv.sys
[2008-11-02 19:28:18 | 00,000,000 | ---- | C] () – C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2008-11-02 19:26:41 | 00,005,632 | ---- | C] () – C:\WINDOWS\System32\drivers\StarOpen.sys
[2008-10-14 13:03:16 | 00,000,197 | ---- | C] () – C:\WINDOWS\NGWP70.INI
[2008-09-08 21:30:47 | 00,001,196 | ---- | C] () – C:\WINDOWS\VFO.INI
[2008-09-01 13:44:54 | 00,000,149 | ---- | C] () – C:\WINDOWS\PhotoGraffitiDemo.ini
[2008-09-01 13:43:09 | 00,000,074 | ---- | C] () – C:\Documents and Settings\iza\Dane aplikacji\Printer.ini
[2008-09-01 13:42:38 | 00,000,033 | ---- | C] () – C:\Documents and Settings\iza\Dane aplikacji\pcouffin.log
[2008-09-01 13:42:29 | 00,087,608 | ---- | C] () – C:\Documents and Settings\iza\Dane aplikacji\inst.exe
[2008-09-01 13:42:29 | 00,007,887 | ---- | C] () – C:\Documents and Settings\iza\Dane aplikacji\pcouffin.cat
[2008-09-01 13:42:28 | 00,001,144 | ---- | C] () – C:\Documents and Settings\iza\Dane aplikacji\pcouffin.inf
[2008-08-10 15:09:09 | 00,000,069 | ---- | C] () – C:\WINDOWS\NeroDigital.ini
[2008-07-19 21:05:40 | 00,000,412 | ---- | C] () – C:\WINDOWS\MAXLINK.INI
[2008-07-15 15:51:51 | 00,098,816 | ---- | C] () – C:\Documents and Settings\iza\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-07-15 15:30:35 | 00,001,122 | ---- | C] () – C:\WINDOWS\bestplayer.ini
[2008-07-15 15:24:28 | 00,019,968 | ---- | C] () – C:\WINDOWS\System32\cpuinf32.dll
[2008-07-15 15:06:25 | 00,147,456 | ---- | C] () – C:\WINDOWS\System32\igfxCoIn_v4943.dll
[2008-07-15 14:19:14 | 00,086,016 | ---- | C] () – C:\WINDOWS\System32\preflib.dll
[2008-07-15 14:19:11 | 00,757,760 | ---- | C] () – C:\WINDOWS\System32\bcm1xsup.dll
[2008-07-15 09:39:21 | 00,701,840 | ---- | C] () – C:\WINDOWS\System32\igmedkrn.dll
[2008-07-15 09:39:21 | 00,204,800 | ---- | C] () – C:\WINDOWS\System32\igfxCoIn_v1227.dll
[2008-07-15 09:39:20 | 00,249,856 | ---- | C] () – C:\WINDOWS\System32\igfxTMM.dll
[2007-10-12 23:20:06 | 00,151,417 | ---- | C] () – C:\WINDOWS\System32\xlive.dll.cat
[2006-03-02 13:00:00 | 00,028,624 | ---- | C] () – C:\WINDOWS\System32\drivers\secdrv.sys
[2002-10-06 18:42:58 | 00,237,568 | ---- | C] () – C:\WINDOWS\System32\OggDS.dll
[2002-10-04 23:04:26 | 00,921,600 | ---- | C] () – C:\WINDOWS\System32\vorbisenc.dll
[2002-10-04 23:04:26 | 00,188,416 | ---- | C] () – C:\WINDOWS\System32\vorbis.dll
[2002-10-04 23:04:18 | 00,045,056 | ---- | C] () – C:\WINDOWS\System32\ogg.dll
========== Custom Scans ==========
< %systemdrive%*.* >
[2008-09-08 21:30:47 | 00,000,095 | ---- | M] () – C:\AUTOEXEC.BAT
[2008-12-22 08:24:35 | 00,000,211 | -HS- | M] () – C:\boot.ini
[2006-03-02 13:00:00 | 00,004,952 | RHS- | M] () – C:\Bootfont.bin
[2009-03-15 19:03:39 | 00,000,074 | ---- | M] () – C:\CMLoader.log
[2008-07-15 13:32:47 | 00,000,000 | ---- | M] () – C:\CONFIG.SYS
[2008-07-15 13:32:47 | 00,000,000 | RHS- | M] () – C:\IO.SYS
[2008-07-15 13:38:26 | 00,000,007 | ---- | M] () – C:\ISACER.id
[2008-07-15 13:32:47 | 00,000,000 | RHS- | M] () – C:\MSDOS.SYS
[2006-03-02 13:00:00 | 00,047,564 | RHS- | M] () – C:\NTDETECT.COM
[2006-03-02 13:00:00 | 00,250,624 | RHS- | M] () – C:\ntldr
[2010-01-11 18:44:49 | 21,453,86496 | -HS- | M] () – C:\pagefile.sys
< End of report >
Uruchom OTL i w oknie Custom Scans/Fixes wklej to:
Kliknij w Run Fix. Zatwierdź restart komputera.
Następnie uruchom OTL ponownie, tym razem kliknij “Run Scan”.
Pokaż nowy log OTL.txt oraz log z usuwania.
Ponieważ infekcja jest już od 30 listopada, a OTL pokazuje tylko ostatnie 30 dni (chyba, że ustawi się nim inaczej), więc koniecznie użyj >http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html
Daj z niego raport.
Ale log i raport nie wklejaj do postu, tylko wklej na http://wklejto.pl/, a w poście daj tylko link.(czyli skopiuj adres z paska adresów)
jessi
oto log z usuwania (czyli ten, który pojawił się po restarcie komputera)
a to ten drugi
Usunięte, i w nowym logu nie widzę nic szkodliwego.
W OTL kliknij na przycisk “CleanUp” - to go usunie razem z jego Kwarantanną.
Usuń kopie szkodników z folderu “System Volume Information” poprzez chwilowe wyłączenie “Przywracania Systemu”:
jessi
a oto raport z malwarebytes
– Dodane 12.01.2010 (Wt) 22:49 –
użyłam programu malwarebytes i usunęłam zarażone pliki… czy wobec tego w dalszej części wyłączyć chwilowo “przywracanie systemu”?
No proszę, jednak infekcja jeszcze była, tyle, że już OTL nie mógł jej zobaczyć.
Tak, bo nie widzę, by MBAM coś usuwał z folderu “System Volume Information” - a może "Przywracanie " jest cały czas wyłączone?
jessi
przywracanie systemu było włączone, wyłączyłam je na chwile tak jak to było w instrukcji.
Strona byteseeker zniknęła 
wszystko wydaje się już być ok, mój antywirus to avast i nawet przez myśl mi nie przeszło, że mogłam mieć aż tyle infekcji w komputerze…
bardzo dziękuje za jasną i czytelną pomoc
pozdrawiam