Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

so-v.com - nie mogę usunąć tego zagrożenia

Mijescowy 18 Mar 2016 14:10 618 2
  • #1 18 Mar 2016 14:10
    Mijescowy
    Poziom 2  

    Witam, jak wielu innych użytkowników mam problem z pozbyciem się so-v.com z komputera. Przygotowałem raporty i proszę o pomoc.

    0 2
  • Pomocny post
    #2 18 Mar 2016 14:36
    Kolobos
    Spec od komputerów

    Odinstaluj:
    Lenovo Browser Guard
    SHAREit

    Fixlist.txt dla FRST:
    ShortcutWithArgument: C:\Users\piotrkadysz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9a950a73-3a81-4973-b75a-acf694c1f0a7
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=9a950a73-3a81-4973-b75a-acf694c1f0a7
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=9a950a73-3a81-4973-b75a-acf694c1f0a7
    ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=9a950a73-3a81-4973-b75a-acf694c1f0a7
    AppInit_DLLs: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL => C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\bin\SPVC64Loader.dll [206152 2014-07-22] (ClientConnect LTD)
    AppInit_DLLs-x32: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC32~1.DLL => C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\bin\SPVC32Loader.dll [173896 2014-07-22] (ClientConnect LTD)
    GroupPolicy: Ograniczenia - Chrome <======= UWAGA
    StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.so-v.com/?type=ll&uid=9a950a73-3a81-4973-b75a-acf694c1f0a7
    FF DefaultSearchEngine: so-v
    FF SearchPlugin: C:\Users\piotrkadysz\AppData\Roaming\Mozilla\Firefox\Profiles\yoxc8hp9.default\searchplugins\so-v.xml [2016-03-12]
    FF HKLM-x32\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\piotrkadysz\AppData\Roaming\Mozilla\Firefox\Profiles\yoxc8hp9.default\extensions\deskCutv2@gmail.com => nie znaleziono
    StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.so-v.com/?type=ll&uid=9a950a73-3a81-4973-b75a-acf694c1f0a7
    R2 CltMngSvc; C:\Program Files (x86)\LenovoBrowserGuard\Main\bin\CltMngSvc.exe [2538824 2014-07-22] (ClientConnect LTD)
    S2 MustangService_2015_10_10; C:\ProgramData\TempMoudleSet\MustangSer1210.exe [235776 2015-12-15] (MustangService)
    2016-03-17 23:23 - 2016-03-17 23:23 - 00000000 _____ C:\autoexec.bat
    2016-03-17 23:22 - 2016-03-17 23:22 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
    2016-03-17 23:21 - 2016-03-17 23:21 - 03286400 _____ (Enigma Software Group USA, LLC.) C:\Users\piotrkadysz\Downloads\SpyHunter-Installer (1).exe
    2016-03-12 13:10 - 2016-03-12 13:10 - 00000266 __RSH C:\ProgramData\ntuser.pol
    2016-03-12 13:10 - 2016-03-12 13:10 - 00000000 ____D C:\ProgramData\TempMoudleSet
    2016-02-19 09:18 - 2016-02-19 09:18 - 03286400 _____ (Enigma Software Group USA, LLC.) C:\Users\piotrkadysz\Downloads\SpyHunter-Installer.exe
    2016-03-18 12:29 - 2015-11-06 13:03 - 00000000 ____D C:\Users\piotrkadysz\AppData\Local\SweetLabs App Platform
    2016-03-13 05:49 - 2015-11-06 15:48 - 00003332 _____ C:\WINDOWS\System32\Tasks\SweetLabs App Platform
    EmptyTemp:

    Po wykonaniu usun katalog C:\FRST.

    0
  • #3 18 Mar 2016 15:02
    Mijescowy
    Poziom 2  

    Wszytko działa. Dziękuję bardzo!

    0