cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþ:OTL
PRC - C:\Users\Poe\AppData\Roaming\TornTV.com\TornTV Downloader.exe (Cool Mirage)
SRV - (trntv) -- C:\Users\Poe\AppData\Roaming\TornTV.com\TornTVSvc.exe (Cool Mirage)
PRC - C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSOEMON.EXE (MyWebSearch.com)
PRC - C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSVC.EXE (MyWebSearch.com)
SRV - (MyWebSearchService) -- C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSVC.EXE (MyWebSearch.com)
IE - HKLM\..\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}: "URL" = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZCchr999&ptnrS=ZCchr999&ptb=A0EmRu5NooTy5aWYdF04fg&ind=2012081622&n=77ededd6&psa=&st=sb&searchfor={searchTerms}
IE - HKCU\..\URLSearchHook: {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSRCAS.DLL (MyWebSearch.com)
IE - HKCU\..\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}: "URL" = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZCchr999&ptnrS=ZCchr999&ptb=A0EmRu5NooTy5aWYdF04fg&ind=2012081622&n=77ededd6&psa=&st=sb&searchfor={searchTerms}
FF - HKLM\Software\MozillaPlugins\@mywebsearch.com/Plugin: C:\Program Files (x86)\MyWebSearch\bar\2.bin\NPMyWebS.dll (MyWebSearch.com)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\m3ffxtbr@mywebsearch.com: C:\Program Files (x86)\MyWebSearch\bar\2.bin [2013/11/04 12:14:08 | 000,000,000 | ---D | M]
[2012/08/16 16:59:33 | 000,000,000 | ---D | M] (My Web Search) -- C:\Users\Poe\AppData\Roaming\mozilla\Firefox\Profiles\weldxf3d.default\extensions\m3ffxtbr@mywebsearch.com
CHR - plugin: My Web Search Plugin Stub (Enabled) = C:\Program Files (x86)\MyWebSearch\bar\2.bin\NPMyWebS.dll
O2 - BHO: (MyWebSearch Search Assistant BHO) - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSRCAS.DLL (MyWebSearch.com)
O3 - HKCU\..\Toolbar\WebBrowser: (My Web Search) - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSBAR.DLL File not found
O4 - HKLM..\Run: [My Web Search Bar Search Scope Monitor] C:\Program Files (x86)\MyWebSearch\bar\2.bin\M3SRCHMN.EXE (MyWebSearch.com)
O4 - HKLM..\Run: [MyWebSearch Email Plugin] C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSOEMON.EXE (MyWebSearch.com)
O4 - HKCU..\Run: [MyWebSearch Email Plugin] C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSOEMON.EXE (MyWebSearch.com)
PRC - C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.)
PRC - C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "Search the web (Softonic)"
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""
[2012/10/10 13:13:25 | 000,003,998 | ---- | M] () -- C:\Users\Poe\AppData\Roaming\mozilla\firefox\profiles\weldxf3d.default\searchplugins\sweetim.xml
CHR - plugin: SweetIM GC Helper (Enabled) = C:\Users\Poe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0\mgHelperGCFB.dll
CHR - plugin: SweetIM GC Helper (Enabled) = C:\Users\Poe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.0.0.1_0\mgHelperGC.dll
O4 - HKLM..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.)
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2405}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=0&systemid=405&v=a9397-125&apn_uid=0243583616234100&apn_dtid=BND405&o=APN10647&apn_ptnrs=AG8&q={searchTerms}
IE - HKLM\..\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}: "URL" = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZCchr999&ptnrS=ZCchr999&ptb=A0EmRu5NooTy5aWYdF04fg&ind=2012081622&n=77ededd6&psa=&st=sb&searchfor={searchTerms}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2405}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=0&systemid=405&v=a9397-125&apn_uid=0243583616234100&apn_dtid=BND405&o=APN10647&apn_ptnrs=AG8&q={searchTerms}
IE - HKCU\..\URLSearchHook: {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSRCAS.DLL (MyWebSearch.com)
IE - HKCU\..\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}: "URL" = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZCchr999&ptnrS=ZCchr999&ptb=A0EmRu5NooTy5aWYdF04fg&ind=2012081622&n=77ededd6&psa=&st=sb&searchfor={searchTerms}
IE - HKCU\..\SearchScopes\{86D25BA3-4E1B-4096-BCBA-79873AEFB1DC}: "URL" = http://www.gsrch.com/#q={searchTerms}
IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2405}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=0&systemid=405&v=a9397-125&apn_uid=0243583616234100&apn_dtid=BND405&o=APN10647&apn_ptnrs=AG8&q={searchTerms}
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "Search the web (Softonic)"
FF - prefs.js..browser.startup.homepage: "http://search.softonic.com/MON00012/tb_v1?SearchSource=13&cc="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""
[2013/10/03 14:57:24 | 000,002,658 | ---- | M] () -- C:\Users\Poe\AppData\Roaming\mozilla\firefox\profiles\weldxf3d.default\searchplugins\Ask.xml
[2014/12/07 11:37:53 | 000,001,458 | ---- | M] () -- C:\Users\Poe\AppData\Roaming\mozilla\firefox\profiles\weldxf3d.default\searchplugins\googlecustomsearch.xml
[2014/10/25 10:22:27 | 000,002,133 | ---- | M] () -- C:\Users\Poe\AppData\Roaming\mozilla\firefox\profiles\weldxf3d.default\searchplugins\MyStart Search.xml
[2013/09/17 10:49:48 | 000,002,120 | ---- | M] () -- C:\Users\Poe\AppData\Roaming\mozilla\firefox\profiles\weldxf3d.default\searchplugins\MyStart.xml
[2012/10/10 13:02:09 | 000,002,060 | ---- | M] () -- C:\Users\Poe\AppData\Roaming\mozilla\firefox\profiles\weldxf3d.default\searchplugins\softonic.xml
[2012/10/10 13:13:25 | 000,003,998 | ---- | M] () -- C:\Users\Poe\AppData\Roaming\mozilla\firefox\profiles\weldxf3d.default\searchplugins\sweetim.xml
[2015/01/07 09:53:34 | 000,001,651 | ---- | M] () -- C:\Users\Poe\AppData\Roaming\mozilla\firefox\profiles\weldxf3d.default\searchplugins\Sweetpacks Search.xml
O2 - BHO: (Movies Toolbar (Dist. by Bandoo Media, Inc.)) - {609bbd0c-ac47-40e5-b047-27520779c4c9} - C:\PROGRA~2\MOVIES~2\Datamngr\SRTOOL~1\IE\searchresultsDx.dll File not found
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (Movies Toolbar (Dist. by Bandoo Media, Inc.)) - {609bbd0c-ac47-40e5-b047-27520779c4c9} - C:\PROGRA~2\MOVIES~2\Datamngr\SRTOOL~1\IE\searchresultsDx.dll File not found
O4 - HKCU..\Run: [TornTv Downloader] C:\Users\Poe\AppData\Roaming\TornTV.com\Torntv Downloader.exe (Cool Mirage)
O4 - Startup: C:\Users\Poe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk = C:\Users\Poe\AppData\Roaming\TornTV.com\TornTV Downloader.exe (Cool Mirage)
O20 - AppInit_DLLs: (c:\progra~2\movies~2\datamngr\mgrldr.dll) - File not found
O27:[b]64bit:[/b] - HKLM IFEO\bundlesweetimsetup.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
O27:[b]64bit:[/b] - HKLM IFEO\delta babylon.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
O27:[b]64bit:[/b] - HKLM IFEO\iminentsetup.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
O27:[b]64bit:[/b] - HKLM IFEO\sweetimsetup.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\bundlesweetimsetup.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\delta babylon.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\iminentsetup.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\sweetimsetup.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
[2015/01/05 16:52:57 | 000,000,000 | ---D | C] -- C:\Users\Poe\AppData\Roaming\TornTV.com
[2015/01/05 16:52:57 | 000,000,000 | ---D | C] -- C:\Users\Poe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
[2015/01/04 21:11:51 | 000,000,000 | ---D | C] -- C:\Users\Poe\AppData\Roaming\OpenCandy
[2015/01/05 16:53:36 | 000,001,862 | ---- | M] () -- C:\Users\Poe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk

:reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2EDFCD1A-E3D5-4F15-8DA7-7B1063415F2A}"=-
"{8AA5A047-2F2F-433F-9344-94B35AB22B7B}"=-
"TCP Query User{AD8EAA57-4D00-432C-A66F-D0934E751F2C}C:\users\poe\appdata\roaming\torntv.com\torntv downloader.exe"=-
"UDP Query User{80CFC3BE-7296-46D1-95C1-289C1FA136E0}C:\users\poe\appdata\roaming\torntv.com\torntv downloader.exe"=-

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{7683B745-6060-41FD-AA75-0BBB383FEAD4}"=-
"MyWebSearch bar Uninstall"=-
"WNLT"=-





:Commands
[emptytemp]




Publicité


Signaler le contenu de ce document

Publicité