cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 28-06-2014 02
Ran by Anthony at 2014-06-30 13:13:43 Run:3
Running from C:\Users\Anthony\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
hosts:
Task: {2AC95160-D4D5-4569-B6E6-C15A63E8049D} - \pricemeterdownloader No Task File
Task: {F58CF4A3-03B0-4F0C-A01C-D89848B4D4E9} - \PriceMeterUpdater No Task File
() C:\Program Files (x86)\iSafe\ipcdl.exe
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
SearchScopes: HKLM - DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=xxx&ts=1958847248
SearchScopes: HKLM - {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=xxx&ts=1958847248
SearchScopes: HKLM-x32 - DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=xxx&ts=1958847248
SearchScopes: HKLM-x32 - {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=xxx&ts=1958847248
SearchScopes: HKLM-x32 - {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = http://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm073^YYA^fr&si=flvrunner&ptb=01F3C277-36CB-4377-83DD-8B580A2F3825&ind=2014031117&n=780bad0d&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKLM-x32 - {AE20FF95-4D07-4E16-9C12-D0EA4813D4F1} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKCU - DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=xxx&ts=1958847248
SearchScopes: HKCU - {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=xxx&ts=1958847248
SearchScopes: HKCU - {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = http://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm073^YYA^fr&si=flvrunner&ptb=01F3C277-36CB-4377-83DD-8B580A2F3825&ind=2014031117&n=780bad0d&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKCU - {AE20FF95-4D07-4E16-9C12-D0EA4813D4F1} URL =
FF DefaultSearchEngine: V9
FF SearchEngineOrder.1: V9
FF SelectedSearchEngine: V9
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF SearchPlugin: C:\Users\Anthony\AppData\Roaming\Mozilla\Firefox\Profiles\0yys2t3e.default\searchplugins\V9.xml
R2 iSafeService; C:\Program Files (x86)\iSafe\iSafeSvc.exe [118048 2014-06-27] (Elex do Brasil Participações Ltda)
R4 IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20140331.001\IDSvia64.sys [X]
R4 SRTSPX; \SystemRoot\system32\drivers\NISx64\1405000.01C\SRTSPX64.SYS [X]
R4 SymDS; \SystemRoot\system32\drivers\NISx64\1405000.01C\SYMDS64.SYS [X]
R4 SymEFA; \SystemRoot\system32\drivers\NISx64\1405000.01C\SYMEFA64.SYS [X]
2014-06-28 01:52 - 2014-06-28 01:52 - 00001802 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\YAC.lnk
2014-06-28 01:52 - 2014-06-28 01:52 - 00000000 ____D () C:\WINDOWS\system32\log
2014-06-28 01:52 - 2014-06-28 01:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC
2014-06-28 01:52 - 2014-06-27 11:54 - 00044544 _____ (Elex do Brasil Participações Ltda) C:\WINDOWS\system32\Drivers\iSafeKrnlBoot.sys
2014-06-28 01:51 - 2014-06-29 20:24 - 00000000 ____D () C:\Program Files (x86)\iSafe
2014-06-28 00:31 - 2014-06-28 00:31 - 00020956 _____ () C:\Users\Anthony\Downloads\bk-coretag.js
2014-06-29 20:25 - 2012-11-20 10:12 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe
C:\Users\Anthony\AppData\Local\Temp\SEVINST64x86.EXE
C:\Users\Anthony\AppData\Local\Temp\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}_NIS_27817.exe
end
*****************

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2AC95160-D4D5-4569-B6E6-C15A63E8049D}'=> Key not found.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\pricemeterdownloader'=> Key not found.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F58CF4A3-03B0-4F0C-A01C-D89848B4D4E9}'=> Key not found.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PriceMeterUpdater'=> Key not found.
C:\Program Files (x86)\iSafe\ipcdl.exe => No running process found
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast'=> Key not found.
'HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1'=> Key not found.
'HKLM\Software\Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2'=> Key not found.
'HKLM\Software\Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3'=> Key not found.
'HKLM\Software\Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt4'=> Key not found.
'HKLM\Software\Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1'=> Key not found.
'HKLM\Software\Wow6432Node\Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2'=> Key not found.
'HKLM\Software\Wow6432Node\Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3'=> Key not found.
'HKLM\Software\Wow6432Node\Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Error setting value.
===================================
Permissions for "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes":

Owner: NT AUTHORITY\SYSTEM

DACL(AI):

BUILTIN\Users ALLOW READ (I)
BUILTIN\Users ALLOW READ (CI-I-OI)
BUILTIN\Administrators ALLOW FULL (I)
BUILTIN\Administrators ALLOW FULL (CI-I-OI)
NT AUTHORITY\SYSTEM ALLOW FULL (I)
NT AUTHORITY\SYSTEM ALLOW FULL (CI-I-OI)
CREATOR OWNER ALLOW FULL (CI-I-OI)
AC ALLOW READ (I)
AC ALLOW READ (CI-I-OI)

===================================

Publicité


Signaler le contenu de ce document

Publicité