Facebook nie działa na żadnej przeglądarce

**Posty:** 1 · przez **aneta2944** 18 Lut 2013, 13:29

Witam.
Tak jak w temacie strona Facebook nie chce mi sie otworzyć na żadnej przeglądarce. Gdy probuje wejśc na Facebook'a wyskakuje błąd, że nie udało się nawiązać połączenia. Przeczytałam na forum ze potrzebne jest stworzenie logów i mam nadzieje ze mi jakoś pomożecie.

**Posty:** 4765 · przez **ordynat** 18 Lut 2013, 17:49

Widać ślady infekcji z Facebooka.
Gdyby to był System 32 bit, to po usunięciu infekcji dałoby się łatwo to odblokować.
Niestety, masz System 64 bit, więc raczej będzie konieczne sformatowanie dysku i wgranie Systemu od nowa.
No, ale spróbować trzeba:
1) Użyj >Adw-cleaner (aby pobrać kliknij na dużą zieloną strzałkę po prawej).
Kliknij w nim Usuń
Pokaż raport z niego C:\AdwCleaner[S1].txt

2) Uruchom OTL i w oknie Własne opcje skanowania/Skrypt wklej to:

Kod: Zaznacz wszystko: :OTL [2013/02/18 11:31:37 | 000,000,354 | ---- | M] () -- C:\Windows\tasks\ROC_JAN2013_TB_rmv.job O20:[b]64bit:[/b] - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll O4 - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000..\Run: [ROC_JAN2013_TB] C:\Program Files (x86)\AVG Secure Search\ROC_JAN2013_TB.exe () O4 - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000..\Run: [Epson Stylus SX420W(Siec)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE /FU "C:\Windows\TEMP\E_S9868.tmp" /EF "HKCU" File not found O4 - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000..\Run: [EPSON SX420W Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE /FU "C:\Windows\TEMP\E_S9EBE.tmp" /EF "HKCU" File not found O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe () O4 - HKLM..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [tray_ico] File not found O4 - HKLM..\Run: [tray_ico3] File not found O4 - HKLM..\Run: [tray_ico4] File not found O4 - HKLM..\Run: [VideoDownloadConverter Search Scope Monitor] "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h File not found O4 - HKLM..\Run: [facemoods] C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.10\facemoodssrv.exe (facemoods.com) O4 - HKLM..\Run: [BEWINTERNET-PL-IEWSessionManager] "C:\Program Files (x86)\OrangeBS\BEWInternet-PL-IEW\SessionManager\SessionManager.exe" File not found O31 - SafeBoot: AlternateShell - services32.exe O4 - HKLM..\Run: [CheckRun22find_uninstaller] C:\Users\Aneta\AppData\Roaming\CheckRun22find.exe () O4 - HKLM..\Run: [DATAMNGR] C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE (Bandoo Media, inc) O3 - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL Inc.) O3 - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM\..\Toolbar: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No CLSID value found. O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.1.0.10\AVG Secure Search_toolbar.dll () O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll () O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.10\facemoodsTlbr.dll (facemoods.com) O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL Inc.) O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: 25736 = C:\PROGRA~3\LOCALS~1\Temp\mswtaz.exe O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found. O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.10\bh\facemoods.dll (facemoods.com BHO) O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No CLSID value found. O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.1.0.10\AVG Secure Search_toolbar.dll () O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll () O2 - BHO: (DataMngr) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\Datamngr\BROWSE~1.DLL (Bandoo Media, inc) O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL Inc.) O2:[b]64bit:[/b] - BHO: (DataMngr) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\Datamngr\x64\BROWSE~1.DLL (Bandoo Media, inc) O2:[b]64bit:[/b] - BHO: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found. [2011/06/23 11:59:58 | 000,002,046 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml [2013/02/10 19:53:28 | 000,003,592 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml [2013/02/08 18:17:53 | 000,000,758 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\22find.xml [2013/01/13 19:54:35 | 000,009,615 | ---- | M] () -- C:\Users\Aneta\AppData\Roaming\mozilla\firefox\profiles\dn7c3tpl.default\searchplugins\my-web-search.xml FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - prefs.js..browser.search.defaultenginename: "22find" FF - prefs.js..browser.search.order.1: "22find" FF - prefs.js..browser.startup.homepage: "http://home.mywebsearch.com/index.jhtml?ptb=2DA15F41-02E4-4B03-91FA-12EAE6CB6B92&n=77fc1d77&p2=^HJ^xdm073^YY^pl&si=pconverter" FF - prefs.js..keyword.URL: "http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=2DA15F41-02E4-4B03-91FA-12EAE6CB6B92&n=77fc1d77&ind=2013011319&p2=^HJ^xdm073^YY^pl&si=pconverter&searchfor=" IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL Inc.) IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\URLSearchHook: {93a3111f-4f74-4ed8-895e-d9708497629e} - No CLSID value found IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.) IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.22find.com/newtab?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343870 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.22find.com/web/?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343873 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.22find.com/web/?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343873 IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL Inc.) SRV - [2013/02/10 19:52:58 | 000,965,296 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.1.7\ToolbarUpdater.exe -- (vToolbarUpdater14.1.7) SRV - [2012/07/15 20:28:05 | 000,000,000 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysWOW64\mnixl.exe -- (mnixl) MOD - [2013/02/10 19:52:58 | 001,124,016 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe MOD - [2013/02/10 19:52:58 | 000,156,848 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\14.1.7\SiteSafety.dll MOD - [2013/01/21 16:06:21 | 001,177,168 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\ROC_JAN2013_TB.exe :Files C:\Windows\unrar.exe C:\Windows\SysWow64\jwinz.exe C:\Windows\SysWow64\mnixl.exe C:\Windows\update.tray-7-0 C:\Windows\update.tray-10-0 C:\Windows\update.tray-12-0 C:\Windows\update.2 C:\Windows\services32.exe C:\Windows\update.1 :Reg [-HKEY_USERS\S-1-5-21-3003962452-1277650624-3901061905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}] [-HKEY_USERS\S-1-5-21-3003962452-1277650624-3901061905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}] [-HKEY_USERS\S-1-5-21-3003962452-1277650624-3901061905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] [-HKEY_USERS\S-1-5-21-3003962452-1277650624-3901061905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}] [-HKEY_USERS\S-1-5-21-3003962452-1277650624-3901061905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] [-HKEY_USERS\S-1-5-21-3003962452-1277650624-3901061905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}] [HKEY_USERS\S-1-5-21-3003962452-1277650624-3901061905-1000\Software\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" [HKEY_USERS\S-1-5-21-3003962452-1277650624-3901061905-1000\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}] [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" [-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.pl/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Windows\update.1\svchost.exe"=- "C:\Windows\services32.exe"=- "C:\Windows\update.2\svchost.exe"=- "C:\Windows\update.tray-12-0\svchost.exe"=- "C:\Windows\update.tray-10-0\svchost.exe"=- "C:\Windows\update.tray-7-0\svchost.exe"=- "C:\Windows\update.1\svchost.exe"=- "C:\Windows\services32.exe"=- "C:\Windows\update.2\svchost.exe"=- "C:\Windows\update.tray-12-0\svchost.exe"=- "C:\Windows\update.tray-10-0\svchost.exe"=- "C:\Windows\update.tray-7-0\svchost.exe"=- :Commands [emptytemp]

Kliknij w Wykonaj Skrypt. Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie.

3) Wejdź na stronę >http://support.microsoft.com/kb/972034/pl, wejdź w "Automatyczne rozwiązywanie problemu", wykonaj to, co tam jest napisane (z "Fix.It").

4) Zrób nowy log z OTL.

5) W logach widać wpisy Avasta, Kaspersky'ego i AVG - którego Antywirusa aktualnie używasz?

**Posty:** 18165 · przez **wojtas** 18 Lut 2013, 17:51

odinstaluj:
"avast" = avast! Free Antivirus
SweetIM for Messenger 3.7
Internet Explorer Toolbar 4.6 by SweetPacks
"AVG Secure Search" = AVG Security Toolbar
"facemoods" = Facemoods Toolbar
"eMusic Promotion" = 50 FREE MP3s +1 Free Audiobook!
"Searchqu Toolbar" = Searchqu Toolbar
"VideoDownloadConverter_4zbar Uninstall" = VideoDownloadConverter Toolbar
"Winamp Toolbar" = Winamp Toolbar

oraz wszystkie stare wersje Opery;

"Opera 11.60.1185" = Opera 11.60
"Opera 11.61.1250" = Opera 11.61
"Opera 11.61.1250_1" = Opera 11.61
"Opera 11.64.1403" = Opera 11.64
"Opera 11.64.1403_1" = Opera 11.64
"Opera 11.64.1403_2" = Opera 11.64
"Opera 12.02.1578" = Opera 12.02
"Opera 12.12.1707" = Opera 12.12

Uruchom OTL i w sekcji własne opcje skanowania / skrypt wklej:

:OTL
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=400&systemid=406&sr=0&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.22find.com/newtab?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343870
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.22find.com/newtab?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343870
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.22find.com/web/?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343873
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.22find.com/web/?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343873
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL Inc.)
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=400&systemid=406&sr=0&q={searchTerms}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=12&q={searchTerms}&barid={80149750-B82B-11E0-B42A-00262DAA1277}
IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20111127171420480&tb_oid=27-11-2011&tb_mrud=27-11-2011
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.22find.com/newtab?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343870
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.22find.com/newtab?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343870
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL Inc.)
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\URLSearchHook: {93a3111f-4f74-4ed8-895e-d9708497629e} - No CLSID value found
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=kno&s={searchTerms}&f=4
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.22find.com/web/?utm_source=b&utm_medium=fox&from=fox&uid=WDCXWD3200BEVT-22A23T0_WD-WX21A50T2221T2221&ts=1360343873
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={AF0915C4-FB1A-40DB-B64E-B59031D691F0}&mid=3cdc62df376d47d197c9d16f6b4efb84-7d98d8a2b88f39972250bd599ac9d6e095e1cfa8&lang=pl&ds=AVG&pr=fr&d=2012-07-15 21:07:45&v=11.1.0.12&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=400&systemid=406&sr=0&q={searchTerms}
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=12&q={searchTerms}&barid={80149750-B82B-11E0-B42A-00262DAA1277}
IE - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20111127171420480&tb_oid=27-11-2011&tb_mrud=27-11-2011
FF - prefs.js..browser.search.defaultenginename: "22find"
FF - prefs.js..browser.search.order.1: "22find"
FF - prefs.js..browser.startup.homepage: "http://home.mywebsearch.com/index.jhtml?ptb=2DA15F41-02E4-4B03-91FA-12EAE6CB6B92&n=77fc1d77&p2=^HJ^xdm073^YY^pl&si=pconverter"
FF - prefs.js..keyword.URL: "http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=2DA15F41-02E4-4B03-91FA-12EAE6CB6B92&n=77fc1d77&ind=2013011319&p2=^HJ^xdm073^YY^pl&si=pconverter&searchfor="
FF - user.js - File not found
[2013/01/13 19:54:35 | 000,009,615 | ---- | M] () -- C:\Users\Aneta\AppData\Roaming\mozilla\firefox\profiles\dn7c3tpl.default\searchplugins\my-web-search.xml
[2013/02/08 18:17:53 | 000,000,758 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\22find.xml
[2013/02/10 19:53:28 | 000,003,592 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
[2011/06/23 11:59:58 | 000,002,046 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml
O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\x64\klwtbbho.dll File not found
O2:64bit: - BHO: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\ievkbd.dll File not found
O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No CLSID value found.
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll File not found
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui File not found
O4 - HKLM..\Run: [CheckRun22find_uninstaller] C:\Users\Aneta\AppData\Roaming\CheckRun22find.exe ()
O4 - HKLM..\Run: [DATAMNGR] C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE (Bandoo Media, inc)
O4 - HKLM..\Run: [tray_ico] File not found
O4 - HKLM..\Run: [tray_ico3] File not found
O4 - HKLM..\Run: [tray_ico4] File not found
O4 - HKLM..\Run: [VideoDownloadConverter Search Scope Monitor] "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h File not found
O4 - HKLM..\Run: [VideoDownloadConverter_4z Browser Plugin Loader] C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbrmon.exe (VER_COMPANY_NAME)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: 25736 = C:\PROGRA~3\LOCALS~1\Temp\mswtaz.exe
O4 - HKU\S-1-5-21-3003962452-1277650624-3901061905-1000..\Run: [ROC_JAN2013_TB] C:\Program Files (x86)\AVG Secure Search\ROC_JAN2013_TB.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll C:\PROGRA~2\KASPER~1\KASPER~1\x64\kloehk.dll) - File not found
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\x64\sbhook64.dll) - File not found
O20 - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\IEBHO.dll C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll) - File not found
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll) - File not found
O31 - SafeBoot: AlternateShell - services32.exe
[2013/02/18 11:31:37 | 000,000,354 | ---- | M] () -- C:\Windows\tasks\ROC_JAN2013_TB_rmv.job
[2012/07/15 20:28:05 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\mnixl.exe
[2012/06/10 11:02:41 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\jwinz.exe

:Commands
[resethosts]
[emptytemp]

Kliknij wykonaj skrypt. I potwierdź reset komputera .

Użyj AdwCleaner i kliknij w nim Usuń (w przypadku Visty/Windows7 uruchom z prawokliku jako Administrator)
Pokaż raport z niego

Następnie uruchamiasz OTL z opcją skanuj. Pokazujesz nowy log OTL.txt oraz raport z czyszczenia (zawartość notatnika, która otworzyła się po restarcie).

Autor postu otrzymał pochwałę