logo elektroda
logo elektroda
X
logo elektroda
Szukanie Zaawansowane
logo elektroda
REKLAMA
REKLAMA
Adblock/uBlockOrigin/AdGuard mogą powodować znikanie niektórych postów z powodu nowej reguły.

Jak usunąć Yoursites123 z mojego komputera? Brak mi pomysłów

Juzio19 12 Gru 2015 22:04 900 2
REKLAMA
Zgłoś naruszenie prawa
| Nowy temat
  • #1 15235034
    Juzio19
    Poziom 2  
    Posty: 2
    bardzo proszę o pomoc bo już brak mi pomysłów
    Załączniki:
    • Addition.txt (28.92 KB) Musisz być zalogowany, aby pobrać ten załącznik.
    • FRST.txt (38.76 KB) Musisz być zalogowany, aby pobrać ten załącznik.
  • REKLAMA
  • #2 15235237
    Kolobos
    Spec od komputerów
    Posty: 85164
    Pomógł: 17165
    Ocena: 10440
    Fixlist.txt dla FRST:
    Task: {01E66D6F-25BF-4C02-967F-1AAA2B86620D} - System32\Tasks\{037CACE9-83E3-4133-B80D-4632AA96A832} => pcalua.exe -a C:\Users\Aleksandra\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=smt
    Task: {9C0DFBB1-3981-46DA-A5E1-6A0BF08968E1} - \AutoKMS -> Brak pliku <==== UWAGA
    ShortcutWithArgument: C:\Users\Aleksandra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D <==== UWAGA
    ShortcutWithArgument: C:\Users\Aleksandra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D <==== UWAGA
    (tsvr.com) C:\Users\Aleksandra\AppData\Roaming\TSv\TSvr.exe
    (TODO: <公司名>) C:\Program Files (x86)\SFK\SSFK.exe
    (TFuns LIMITED) C:\ProgramData\tWdMt\WdMan.exe
    AppInit_DLLs: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL => Brak pliku
    AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => Brak pliku
    AppInit_DLLs-x32: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC32~1.DLL => Brak pliku
    AppInit_DLLs-x32: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL => Brak pliku
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Brak pliku
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.yoursites123.com/web/?type=ds&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D&q={searchTerms}
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D&q={searchTerms}
    HKU\S-1-5-21-3780328150-1172268201-279155970-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D
    HKU\S-1-5-21-3780328150-1172268201-279155970-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.yoursites123.com/web/?type=ds&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D&q={searchTerms}
    HKU\S-1-5-21-3780328150-1172268201-279155970-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D
    HKU\S-1-5-21-3780328150-1172268201-279155970-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D&q={searchTerms}
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-3780328150-1172268201-279155970-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-3780328150-1172268201-279155970-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-3780328150-1172268201-279155970-1001 -> {C541FE88-D2F5-448F-9AE2-C8008F2AE8BE} URL =
    StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe hxxp://www.yoursites123.com/?type=sc&ts=1449870593&z=269a586970b9df312674c1bg4z9z9t2b6m9e1w6t3g&from=ient07021&uid=ST500LT012-1DG142_S3PKC89DXXXXS3PKC89D
    R2 IhPul; C:\Users\Aleksandra\AppData\Roaming\TSv\TSvr.exe [580752 2015-12-08] (tsvr.com)
    R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [170144 2015-11-27] (TODO: <公司名>)
    R2 WdMan; C:\ProgramData\tWdMt\WdMan.exe [333312 2015-12-04] (TFuns LIMITED) [Brak podpisu cyfrowego]
    S1 pgudkwwn; \??\C:\WINDOWS\system32\drivers\pgudkwwn.sys [X]
    2015-12-11 22:51 - 2015-12-12 21:21 - 00000000 ____D C:\Program Files (x86)\SFK
    2015-12-11 22:51 - 2015-12-11 22:51 - 00000074 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
    2015-12-11 22:51 - 2015-12-11 22:51 - 00000000 ____D C:\ProgramData\tWdMt
    2015-12-02 18:41 - 2015-12-03 01:10 - 00000000 _____ C:\WINDOWS\SysWOW64\pl9.exe
    EmptyTemp:
  • #3 15235420
    Juzio19
    Poziom 2  
    Posty: 2
    dziękuje bardzo. Problem rozwiązany. Pozdrawiam i jeszcze raz dziękuję
| Nowy temat
Zgłoś naruszenie prawa
REKLAMA