Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Usunięcie Yoursites123 z przeglądarki Opera. - Jumatorek

Jumatorek 28 Gru 2015 18:08 1038 3
  • CControls
  • #2 28 Gru 2015 18:14
    Acorus 20
    Spec od komputerów

    Brak loga FRST.txt

    1
  • CControls
  • #4 28 Gru 2015 21:43
    Kolobos
    Spec od komputerów

    Obok frst.exe utworz plik fixlist.txt z zawartoscia:
    Task: {AFE94746-E27F-495F-A866-00065E5B6F27} - System32\Tasks\Opera scheduled Autoupdate 1442086784 => C:\Program Files (x86)\Opera\launcher.exe [2015-12-04] (Opera Software)
    ShortcutWithArgument: C:\Users\Edyta\Desktop\Facebook.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software) -> hxxp://www.yoursites123.com/?type=sc&ts=14507...uid=WDCXWD10JPCX-24UE4T0_WD-WXF1EA459X1359X13
    ShortcutWithArgument: C:\Users\Edyta\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=14507...uid=WDCXWD10JPCX-24UE4T0_WD-WXF1EA459X1359X13
    ShortcutWithArgument: C:\Users\Edyta\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software) -> hxxp://www.yoursites123.com/?type=sc&ts=14507...uid=WDCXWD10JPCX-24UE4T0_WD-WXF1EA459X1359X13
    AppInit_DLLs: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL => Brak pliku
    AppInit_DLLs-x32: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC32~1.DLL => Brak pliku
    HKU\S-1-5-21-1734160616-1379321162-4133229339-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://yoursites123.com/web?type=ds&ts=145077...=WDCXWD10JPCX-24UE4T0_WD-WXF1EA459X1359X13&q={searchTerms}
    URLSearchHook: [S-1-5-21-1734160616-1379321162-4133229339-1001] UWAGA => Brak domyślnego URLSearchHook
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-1734160616-1379321162-4133229339-1002 -> {CE39B46B-CB43-44FC-A7F8-CC4C0B33358C} URL =
    BHO-x32: Treasure Track -> {1ef422df-c387-4f0d-88d1-b75bdfd51013} -> C:\Program Files (x86)\Treasure Track\Extensions\1ef422df-c387-4f0d-88d1-b75bdfd51013.dll => Brak pliku
    FF SearchPlugin: C:\Users\Edyta\AppData\Roaming\Mozilla\Firefox\Profiles\e86vlz4s.default\searchplugins\yoursites123.xml [2015-12-22]
    FF Extension: Brak nazwy - C:\Users\Edyta\AppData\Roaming\Mozilla\Firefox\Profiles\e86vlz4s.default\extensions\default_newtabff@gmail.com [nie znaleziono]
    S2 CltMngSvc; C:\PROGRA~2\LenovoBrowserGuard\Main\bin\CltMngSvc.exe [X]
    S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-12-28] ()
    S1 wfdrvr_vw_1_10_0_25; system32\drivers\wfdrvr_vw_1_10_0_25.sys [X]
    2015-12-28 16:43 - 2015-12-28 16:43 - 00000000 _____ C:\autoexec.bat
    2015-12-28 16:42 - 2015-12-28 16:42 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
    2015-12-28 16:41 - 2015-12-28 16:41 - 03286400 _____ (Enigma Software Group USA, LLC.) C:\Users\Edyta\Downloads\SpyHunter-Installer.exe
    2015-12-22 10:49 - 2015-12-23 12:40 - 00000000 ____D C:\Users\Edyta\AppData\Roaming\TSv
    2015-12-23 12:40 - 2015-10-19 14:49 - 00000000 ____D C:\ProgramData\gWdsManProg
    2015-12-23 12:40 - 2015-10-16 19:48 - 00000000 ____D C:\Program Files (x86)\RayDld
    2015-12-23 12:40 - 2015-10-04 13:32 - 00000000 ____D C:\ProgramData\nWdsManPron
    2015-12-23 12:40 - 2015-10-04 13:31 - 00000000 ____D C:\ProgramData\FWdsManProF
    2015-12-10 18:24 - 2015-09-12 20:39 - 00003882 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1442086784
    EmptyTemp:

    W FRST wybierz Napraw.

    Usun katalog C:\FRST i to wszystko.

    0