Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

IE sam otwiera reklamy - logi OTL

lisssek 15 Lut 2014 13:20 1242 2
  • CControls
  • Pomocny post
    #2 15 Lut 2014 13:36
    Kolobos
    Spec od komputerów

    Odinstaluj:
    SpyHunter
    Discount Dragon
    fst_pl_19
    fst_pl_30
    IePluginService12.27.0.3326
    Mobogenie
    Search Protect
    SupTab
    GPU Monitor
    WPM17.8.0.3325
    AnyProtect Packages
    ViStart

    Wykonaj skrypt w OTL:

    :OTL
    PRC - [2014-02-06 14:28:30 | 004,529,440 | ---- | M] (Conduit) -- C:\PROGRA~2\SearchProtect\SearchProtect\bin\cltmng.exe
    PRC - [2014-02-06 14:28:30 | 002,981,152 | ---- | M] (Conduit) -- C:\PROGRA~2\SearchProtect\UI\bin\cltmngui.exe
    PRC - [2014-02-06 14:28:30 | 002,360,608 | ---- | M] (Conduit) -- C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe
    PRC - [2014-02-01 16:12:54 | 000,493,568 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\WPM\wprotectmanager.exe
    PRC - [2014-01-14 10:04:32 | 000,508,016 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\IePluginService\PluginService.exe
    PRC - [2014-01-02 13:17:00 | 003,153,904 | ---- | M] () -- C:\Users\Monika\AppData\Local\fst_pl_30\upfst_pl_30.exe
    PRC - [2013-12-18 18:28:08 | 011,671,024 | ---- | M] () -- C:\Program Files (x86)\fst_pl_19\fst_pl_19.exe
    PRC - [2013-12-13 08:40:31 | 000,761,024 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
    SRV - [2014-02-06 14:28:30 | 002,360,608 | ---- | M] (Conduit) [Auto | Running] -- C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe -- (CltMngSvc)
    SRV - [2014-02-01 16:12:54 | 000,493,568 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\WPM\wprotectmanager.exe -- (Wpm)
    SRV - [2014-01-14 10:04:32 | 000,508,016 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\IePluginService\PluginService.exe -- (IePluginService)
    SRV - [2013-09-08 04:48:18 | 000,068,368 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe -- (VeriFaceSrv)
    DRV:64bit: - [2014-01-07 03:47:06 | 000,014,872 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
    IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.awesomehp.com/web/?type=ds&ts=1391...id=ST1000LM014-1EJ164_W3808VPZXXXXW3808VPZ&q={searchTerms}
    IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.awesomehp.com/web/?type=ds&ts=1391...id=ST1000LM014-1EJ164_W3808VPZXXXXW3808VPZ&q={searchTerms}
    IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
    IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.awesomehp.com/web/?type=ds&ts=1391...id=ST1000LM014-1EJ164_W3808VPZXXXXW3808VPZ&q={searchTerms}




    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.awesomehp.com/web/?type=ds&ts=1391...id=ST1000LM014-1EJ164_W3808VPZXXXXW3808VPZ&q={searchTerms}
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.awesomehp.com/web/?type=ds&ts=1391...id=ST1000LM014-1EJ164_W3808VPZXXXXW3808VPZ&q={searchTerms}
    IE - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
    IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.awesomehp.com/web/?type=ds&ts=1391...id=ST1000LM014-1EJ164_W3808VPZXXXXW3808VPZ&q={searchTerms}
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com/?ctid=CT3321459&oct...=SP471A6553-EA92-43BE-9891-5A6401B8C3DB&SSPV=
    IE - HKCU\..\SearchScopes,DefaultScope = {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
    IE - HKCU\..\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}: "URL" = http://search.conduit.com/Results.aspx?ctid=C...&UP=SP471A6553-EA92-43BE-9891-5A6401B8C3DB&q={searchTerms}&SSPV=
    FF - prefs.js..browser.search.defaultenginename: "Conduit Search"
    FF - prefs.js..browser.search.selectedEngine: "Conduit Search"
    [2014-02-01 16:12:47 | 000,000,000 | ---D | M] (Discount Dragon) -- C:\Users\Monika\AppData\Roaming\Mozilla\Firefox\Profiles\eobfp8tk.default\extensions\{D8A30808-3888-E608-3AA4-A2CEA2623402}
    [2014-01-16 22:44:40 | 000,940,775 | ---- | M] () (No name found) -- C:\Users\Monika\AppData\Roaming\Mozilla\Firefox\Profiles\eobfp8tk.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
    [2014-02-15 10:05:11 | 000,000,975 | ---- | M] () -- C:\Users\Monika\AppData\Roaming\Mozilla\Firefox\Profiles\eobfp8tk.default\searchplugins\conduit-search.xml
    O2:64bit: - BHO: (Discount Dragon BHO) - {EA34C851-D481-49F5-A356-3A8B0A8F3B7E} - C:\Program Files (x86)\Discount Dragon\FrameworkBHO64.dll ()
    O2 - BHO: (IETabPage Class) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
    O2 - BHO: (Discount Dragon BHO) - {EA34C851-D481-49F5-A356-3A8B0A8F3B7E} - C:\Program Files (x86)\Discount Dragon\FrameworkBHO.dll ()
    O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O4 - HKLM..\Run: [fst_pl_19] C:\Program Files (x86)\fst_pl_19\fst_pl_19.exe ()
    O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe ()
    O4 - HKCU..\Run: [NextLive] C:\Users\Monika\AppData\Roaming\newnext.me\nengine.dll (NewNextDotMe)
    O4 - HKCU..\Run: [ViStart] C:\Users\Monika\AppData\Roaming\ViStart\ViStart.exe File not found
    O4 - HKCU..\Run: [ViUpdater] C:\Program Files (x86)\ViUpdater\ViUpdater.exe File not found
    O4 - HKLM..\RunOnce: [Discount Dragon-repairJob] C:\Users\Monika\AppData\Local\Discount Dragon\repair.js ()
    O4 - HKLM..\RunOnce: [upfst_pl_30.exe] C:\Users\Monika\AppData\Local\fst_pl_30\upfst_pl_30.exe ()
    O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll) - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll (Conduit)
    O20 - AppInit_DLLs: (C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll) - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll (Conduit)
    [2014-02-15 10:04:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\SearchProtect
    [2014-02-15 09:56:13 | 000,000,000 | ---D | C] -- C:\Users\Monika\AppData\Local\SearchProtect
    [2014-02-15 09:56:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SearchProtect
    [2014-02-15 09:50:06 | 000,000,000 | ---D | C] -- C:\AdwCleaner
    [2014-02-01 16:12:58 | 000,000,000 | ---D | C] -- C:\ProgramData\IePluginService
    [2014-02-01 16:12:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SupTab
    [2014-02-01 16:12:54 | 000,000,000 | ---D | C] -- C:\ProgramData\WPM
    [2014-02-01 16:12:49 | 000,000,000 | ---D | C] -- C:\Users\Monika\AppData\Local\BenchUpdater
    [2014-02-01 16:12:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Discount Dragon
    [2014-02-01 16:12:47 | 000,000,000 | ---D | C] -- C:\Users\Monika\AppData\Roaming\awesomehp
    [2014-02-01 16:12:44 | 000,000,000 | ---D | C] -- C:\Users\Monika\AppData\Local\Discount Dragon
    [2014-02-01 16:12:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bench
    [2014-02-01 09:59:37 | 000,000,000 | ---D | C] -- C:\Users\Monika\AppData\Local\fst_pl_19
    [2014-02-01 09:59:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\fst_pl_19
    [2014-02-01 16:12:45 | 000,000,360 | ---- | C] () -- C:\WINDOWS\tasks\bench-sys.job
    [2014-02-01 16:12:45 | 000,000,360 | ---- | C] () -- C:\WINDOWS\tasks\bench-S-1-5-21-3238305116-910249898-1693105463-1001.job
    [2013-09-08 04:26:12 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl

    0
  • CControls
  • #3 15 Lut 2014 18:16
    lisssek
    Poziom 8  

    Dziękuję, sytuacja się uspokoiła.

    0