cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþ:OTL
[2014/01/29 11:05:45 | 000,000,000 | ---D | M] ("Torntv V6.0") -- C:\Users\Joanie\AppData\Roaming\mozilla\Firefox\Profiles\nmyoxgma.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com
O2:[b]64bit:[/b] - BHO: (Torntv V6.0) - {11111111-1111-1111-1111-110411591160} - C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-bho64.dll (installdaddy)
[2014/03/17 12:23:40 | 000,001,344 | ---- | M] () -- C:\Windows\tasks\Torntv V6.0-enabler.job
[2014/03/17 14:04:50 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Torntv V6.0
DRV:[b]64bit:[/b] - (esgiguard) -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys ()
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=tele_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0DtD0D0Fzy0AtD0B0FzzyDtDtAtDzztCtN0D0Tzu0SzztDtBtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyB0BtBtDtD0E0B0EtG0B0AyCyEtGtCtAzy0DtG0A0B0BtDtGtA0B0E0CyD0Czy0C0BtDzz0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0AzztB0DyDyDyBtGyE0Azy0EtG0A0F0BtDtGtAyCzztDtGyCyCtDzzzzzztByD0A0BtC0B2Q&cr=1288522337&ir=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=tele_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0DtD0D0Fzy0AtD0B0FzzyDtDtAtDzztCtN0D0Tzu0SzztDtBtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyB0BtBtDtD0E0B0EtG0B0AyCyEtGtCtAzy0DtG0A0B0BtDtGtA0B0E0CyD0Czy0C0BtDzz0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0AzztB0DyDyDyBtGyE0Azy0EtG0A0F0BtDtGtAyCzztDtGyCyCtDzzzzzztByD0A0BtC0B2Q&cr=1288522337&ir=
IE - HKCU\..\SearchScopes\{6CAA4548-62EE-425F-8832-B4367F935622}: "URL" = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0DtD0D0Fzy0AtD0B0FzzyDtDtAtDzztCtN0D0Tzu0SzztDtBtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyB0BtBtDtD0E0B0EtG0B0AyCyEtGtCtAzy0DtG0A0B0BtDtGtA0B0E0CyD0Czy0C0BtDzz0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0AzztB0DyDyDyBtGyE0Azy0EtG0A0F0BtDtGtAyCzztDtGyCyCtDzzzzzztByD0A0BtC0B2Q&cr=1288522337&ir=
FF - prefs.js..browser.search.defaultenginename: "Mysearchdial"
FF - prefs.js..browser.search.order.1: "Mysearchdial"
FF - prefs.js..browser.search.selectedEngine: "Mysearchdial"
FF - prefs.js..browser.startup.homepage: "http://start.mysearchdial.com/?f=1&a=tele_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0DtD0D0Fzy0AtD0B0FzzyDtDtAtDzztCtN0D0Tzu0SzztDtBtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyB0BtBtDtD0E0B0EtG0B0AyCyEtGtCtAzy0DtG0A0B0BtDtGtA0B0E0CyD0Czy0C0BtDzz0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0AzztB0DyDyDyBtGyE0Azy0EtG0A0F0BtDtGtAyCzztDtGyCyCtDzzzzzztByD0A0BtC0B2Q&cr=1288522337&ir="
FF - prefs.js..extensions.enabledAddons: ffxtlbr%40mysearchdial.com:1.6.0
[2014/03/12 18:18:25 | 000,000,000 | ---D | M] (mysearchdial.com) -- C:\Users\Joanie\AppData\Roaming\mozilla\Firefox\Profiles\nmyoxgma.default\extensions\ffxtlbr@mysearchdial.com
[2014/03/12 18:18:30 | 000,002,791 | ---- | M] () -- C:\Users\Joanie\AppData\Roaming\mozilla\firefox\profiles\nmyoxgma.default\searchplugins\Mysearchdial.xml
O2 - BHO: (mysearchdial Helper Object) - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} - C:\Program Files (x86)\Mysearchdial\1.8.29.0\bh\mysearchdial.dll (MySearchDial)
O3 - HKLM\..\Toolbar: (mysearchdial Toolbar) - {3004627E-F8E9-4E8B-909D-316753CBA923} - C:\Program Files (x86)\Mysearchdial\1.8.29.0\mysearchdialTlbr.dll (MySearchDial)
[2014/03/12 17:59:30 | 000,000,000 | ---D | C] -- C:\Users\Joanie\AppData\Roaming\mysearchdial
[2014/03/12 17:59:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mysearchdial
[2014/03/17 13:59:01 | 000,000,296 | ---- | M] () -- C:\Windows\tasks\MySearchDial.job
[2014/03/12 17:59:34 | 000,000,296 | ---- | C] () -- C:\Windows\tasks\MySearchDial.job
[2014/03/12 17:59:33 | 000,000,000 | ---D | M] -- C:\Users\Joanie\AppData\Roaming\mysearchdial
[2013/04/12 10:10:43 | 000,109,056 | ---- | M] () -- C:\Users\Joanie\AppData\Roaming\mysearchdial\UpdateProc\UpdateTask.exe
[2014/03/12 17:59:30 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mysearchdial
O4:[b]64bit:[/b] - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe File not found
[2014/03/12 18:01:19 | 000,000,000 | ---D | C] -- C:\Users\Joanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
[2014/03/12 18:01:18 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
IE - HKCU\..\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}: "URL" = http://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPC4667B30-1C13-4F19-A6E8-CFF3BC404A0C&q={searchTerms}&SSPV=

:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F7E4FF9-D2E5-4258-9AE1-E16E6CB3252A}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"mysearchdial"=-



:Commands
[emptytemp]

Publicité


Signaler le contenu de ce document

Publicité