19 Cze 2016, 11:18
19 Cze 2016, 13:07
19 Cze 2016, 13:08
ravcedro napisał(a):
Przy uruchamianiu
19 Cze 2016, 21:28
19 Cze 2016, 22:17
AppInit_DLLs: C:\ProgramData\Quotenamron\Dentolex.dll => C:\ProgramData\Quotenamron\Dentolex.dll [361984 2016-05-15] ()
AppInit_DLLs-x32: C:\ProgramData\Quotenamron\Viasoft.dll => C:\ProgramData\Quotenamron\Viasoft.dll [257536 2016-05-15] ()
HKU\S-1-5-21-3273167937-1426103193-2508193142-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
HKU\S-1-5-21-3273167937-1426103193-2508193142-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcF9-ntIR8G-1yIyb88a-DENu6EfRsbfNSFq6-laCls-Owg8Xa_52LxRj3u-YT6BdbbYyK5IV-Ibx2Sam-eeEtIxBBqRxk,
HKU\S-1-5-21-3273167937-1426103193-2508193142-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
HKU\S-1-5-21-3273167937-1426103193-2508193142-1001\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
SearchScopes: HKLM-x32 ielnksrch URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3273167937-1426103193-2508193142-1001 DefaultScope {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3273167937-1426103193-2508193142-1001 {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOM0mSPPVxGf7eGgWiDLbDRC5ZIJNwG7VSV0-bjm2sM-2F5ZtBOFA9O4F4RQZZz7rcJQliMp3YHDHxx2xaacGHXHRFMwyC0OwNbWpwU4Ng3QT3JcobJbVtZz6Aw2Thl_P2yh6bIgi1Qemj7woA9Yens2mreDjM,&q={searchTerms}
CHR DefaultSearchURL: Default hxxp://feed.safefinder.biz/?fext=true&publisherid=51218&publisher=extensiondefaultap&st=ed&q={searchTerms}
CHR DefaultSearchKeyword: Default SafeFinder
Task: {FE036C10-9B0D-40D9-BC57-EB9467F1A196} - System32\Tasks\RafałForelandsForumsV2 => Rundll32.exe StartledHousesits.dll,main 7 1 <==== UWAGA
Task: {31771584-E397-4545-ABB5-8D9D795FB3AE} - System32\Tasks\RafałProfitingDatednessV2 => Rundll32.exe OohingPlungers.dll,main 7 1 <==== UWAGA
EmptyTemp:
20 Cze 2016, 19:53
24 Cze 2016, 09:28
DeleteQuarantine:
01 Lip 2016, 10:44