UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36
UA: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.87 Safari/537.36
UA: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.87 Safari/537.36
ravcedro napisał(a):
Przy uruchamianiu
UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36
UA: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:47.0) Gecko/20100101 Firefox/47.0
AppInit_DLLs: C:\ProgramData\Quotenamron\Dentolex.dll => C:\ProgramData\Quotenamron\Dentolex.dll [361984 2016-05-15] ()
AppInit_DLLs-x32: C:\ProgramData\Quotenamron\Viasoft.dll => C:\ProgramData\Quotenamron\Viasoft.dll [257536 2016-05-15] ()
HKU\S-1-5-21-3273167937-1426103193-2508193142-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
HKU\S-1-5-21-3273167937-1426103193-2508193142-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcF9-ntIR8G-1yIyb88a-DENu6EfRsbfNSFq6-laCls-Owg8Xa_52LxRj3u-YT6BdbbYyK5IV-Ibx2Sam-eeEtIxBBqRxk,
HKU\S-1-5-21-3273167937-1426103193-2508193142-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
HKU\S-1-5-21-3273167937-1426103193-2508193142-1001\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
SearchScopes: HKLM-x32 ielnksrch URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3273167937-1426103193-2508193142-1001 DefaultScope {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3273167937-1426103193-2508193142-1001 {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
CHR DefaultSearchURL: Default hxxp://feed.safefinder.biz/?fext=true&publisherid=51218&publisher=extensiondefaultap&st=ed&q={searchTerms}
CHR DefaultSearchKeyword: Default SafeFinder
Task: {FE036C10-9B0D-40D9-BC57-EB9467F1A196} - System32\Tasks\RafałForelandsForumsV2 => Rundll32.exe StartledHousesits.dll,main 7 1 <==== UWAGA
Task: {31771584-E397-4545-ABB5-8D9D795FB3AE} - System32\Tasks\RafałProfitingDatednessV2 => Rundll32.exe OohingPlungers.dll,main 7 1 <==== UWAGA
EmptyTemp:
UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36
UA: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:47.0) Gecko/20100101 Firefox/47.0
DeleteQuarantine:
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36
Zarejestrowani użytkownicy: Bing [Bot]