Uruchom
OTL 
w oknie
Własne opcje skanowania/skrypt wklej:
:OTL
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\vtany.sys -- (vtany)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\WINDOWS\\SystemRoot\System32\Drivers\sptd.sys -- (sptd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\xhunter1.sys -- (xhunter1)
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.dosearches.com/web/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=ds&from=cor&uid=ST3500418AS_6VMEF67NXXXX6VMEF67N&ts=1384013637&type=default&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.dosearches.com/web/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=ds&from=cor&uid=ST3500418AS_6VMEF67NXXXX6VMEF67N&ts=1384013637&type=default&q={searchTerms}
IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.dosearches.com/web/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=ds&from=cor&uid=ST3500418AS_6VMEF67NXXXX6VMEF67N&ts=1384013637&type=default&q={searchTerms}
IE - HKU\S-1-5-21-839522115-1659004503-2147062339-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.b1.org/?bsrc=hmior&chid=c167991
IE - HKU\S-1-5-21-839522115-1659004503-2147062339-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 192.168.1.10:80
IE - HKU\S-1-5-21-839522115-1659004503-2147062339-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" = 192.168.1.10
O4 - HKU\S-1-5-21-839522115-1659004503-2147062339-1003..\Run: [NextLive] C:\WINDOWS\system32\rundll32.exe "C:\Documents and Settings\Piotrek\Dane aplikacji\newnext.me\nengine.dll",EntryPoint -m l File not found
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
[2013-11-24 10:52:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\eSafe
[2014-01-07 17:43:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BonanzaDealsLive
[2013-06-27 11:09:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotrek\Dane aplikacji\B1Toolbar
[2013-11-09 18:18:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotrek\Dane aplikacji\dosearches
[2014-03-18 17:35:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotrek\Dane aplikacji\newnext.me
:Commands
[clearallrestorepoints]
[emptytemp]
Klikasz
Wykonaj skrypt. Podajesz log z usuwania + nowe logi z OTL.
