logo elektroda
logo elektroda
X
logo elektroda
Szukanie Zaawansowane
logo elektroda
REKLAMA
REKLAMA
Adblock/uBlockOrigin/AdGuard mogą powodować znikanie niektórych postów z powodu nowej reguły.

Jak usunąć Yoursites123 z przeglądarki?

kaami112 16 Gru 2015 20:17 621 2
REKLAMA
Zgłoś naruszenie prawa
| Nowy temat
  • #1 15246483
    kaami112
    Poziom 2  
    Posty: 2
    Pomocy, mnie też dopadło :cry:
    Załączniki:
    • Shortcut.txt (23.15 KB) Musisz być zalogowany, aby pobrać ten załącznik.
    • Addition.txt (17.96 KB) Musisz być zalogowany, aby pobrać ten załącznik.
    • FRST.txt (28.56 KB) Musisz być zalogowany, aby pobrać ten załącznik.
  • REKLAMA
  • Pomocny post
    #2 15246926
    Kolobos
    Spec od komputerów
    Posty: 85152
    Pomógł: 17159
    Ocena: 10421
    Fixlist.txt dla FRST:
    Task: {1D51EB0A-F1E0-48FD-88AA-39AA3447AA51} - System32\Tasks\{73022A08-9062-4F78-971E-6D0EBC17EFB4} => pcalua.exe -a C:\Users\Kamil\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=cor
    Task: {46579DB3-02C6-4D7D-A430-F5E8BE10A1D8} - System32\Tasks\Opera scheduled Autoupdate 1447887663 => C:\Program Files (x86)\Opera\launcher.exe [2015-11-17] (Opera Software)
    ShortcutWithArgument: C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938 <==== UWAGA
    ShortcutWithArgument: C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938 <==== UWAGA
    ShortcutWithArgument: C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938 <==== UWAGA
    ShortcutWithArgument: C:\Users\Kamil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938 <==== UWAGA
    ShortcutWithArgument: C:\Users\Kamil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software) -> hxxp://www.yoursites123.com/?type=sc&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938 <==== UWAGA
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    HKU\S-1-5-21-1105684449-2382470095-3944602930-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938
    SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1105684449-2382470095-3944602930-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-1105684449-2382470095-3944602930-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449715189&z=c937ea44f65ca3493fe75cbg8zbzetcm4g0wdgbbbt&from=ient07021&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE309PY5938Y5938&q={searchTerms}
    2015-12-12 21:30 - 2015-12-12 22:13 - 00000000 ____D C:\AdwCleaner
    2015-12-10 15:42 - 2015-12-12 21:24 - 00000001 _____ C:\Windows\SysWOW64\pl.html
    2015-12-10 03:39 - 2015-12-10 03:41 - 00000000 ____D C:\ProgramData\yWdMy
    2015-12-10 03:39 - 2015-12-10 03:39 - 00000000 ____D C:\ProgramData\cWdMc
    EmptyTemp:

    Po wykonaniu usun katalog C:\FRST.
  • #3 15247145
    kaami112
    Poziom 2  
    Posty: 2
    Działa. :) Jesteś wielki.
    Bardzo dziękuję.
    Jak usunąć Yoursites123 z przeglądarki?
| Nowy temat
Zgłoś naruszenie prawa
REKLAMA