cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by Louise C at 2015-03-18 20:23:46 Run:1
Running from C:\Users\Louise C\Downloads
Loaded Profiles: Louise C (Available profiles: Louise C & Invité)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start

CloseProcesses:

RemoveProxy:

EmptyTemp:

CreateRestorePoint:

HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

HKLM-x32\...\Run: [fst_fr_101] => [X]

GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-05-07] (Oracle Corporation)

BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-05-07] (Oracle Corporation)

Toolbar: HKU\S-1-5-21-3332122380-877168531-3872133308-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File

FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-07] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-05-07] (Oracle Corporation)

FF Extension: Cling Clang - C:\Users\Louise C\AppData\Roaming\Mozilla\Firefox\Profiles\eb3wbxr6.default\Extensions\{1b646e65-56b2-4543-b72c-0e8976cf559e}.xpi [2014-02-24]

FF Extension: No Name - C:\Users\Louise C\AppData\Roaming\Mozilla\Firefox\Profiles\eb3wbxr6.default\extensions\istart_ffnt@gmail.com [Not Found]

CHR StartupUrls: Profile 1 -> "hxxp://www.trovi.com/?

CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho [Not Found]

CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho [Not Found]

R2 IHHXGJiVXK; C:\ProgramData\QmKUlf\IHHXGJiVXK.exe [2733552 2015-03-16] (Rational Thought Solutions)

2015-03-17 18:38 - 2015-03-18 18:53 - 00000000 ____D () C:\Users\Louise C\AppData\Local\HealthAlert

2015-03-15 23:45 - 2015-03-15 23:57 - 00000000 ____D () C:\Users\Louise C\AppData\Roaming\uTorrent

2015-03-13 22:10 - 2015-03-13 22:10 - 00000000 ____D () C:\ProgramData\97fd4b5f86254ac3a08dd8761fc0a60b

2015-03-13 22:09 - 2015-03-13 22:09 - 00000000 ____D () C:\ProgramData\cb936ee67f864009ae4bb3b7d3342080

2015-03-13 00:46 - 2015-03-13 00:46 - 00000000 ____D () C:\ProgramData\b5697d4960ae45f09dc96b28114ac4da

2015-03-15 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer

Task: {3425E88D-AD0E-495F-94B6-CA9276F80DE1} - System32\Tasks\{505B0B17-36DD-4A70-A03A-F388F3DE883B} => pcalua.exe -a "C:\Users\Louise C\AppData\Roaming\istartsurf\UninstallManager.exe" -c -ptid=face

Task: {F11A9DC1-5947-4925-82B9-E32689FA54D9} - System32\Tasks\HHOAXNJEL => C:\ProgramData\97fd4b5f86254ac3a08dd8761fc0a60b\97fd4b5f86254ac3a08dd8761fc0a60b.exe [2015-03-13] ()

C:\ProgramData\QmKUlf\IHHXGJiVXK.exe

end
*****************

Processes closed successfully.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.
HKU\S-1-5-21-3332122380-877168531-3872133308-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\S-1-5-21-3332122380-877168531-3872133308-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.


========= End of RemoveProxy: =========

Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mcui_exe => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\fst_fr_101 => value deleted successfully.
C:\WINDOWS\system32\GroupPolicy\Machine => Moved successfully.
C:\WINDOWS\system32\GroupPolicy\GPT.ini => Moved successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => Key not found.
"HKCR\Wow6432Node\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key not found.
"HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
HKU\S-1-5-21-3332122380-877168531-3872133308-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => value deleted successfully.
HKCR\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => Key not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.60.2 => Key not found.
C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2 => Key not found.
C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll not found.
C:\Users\Louise C\AppData\Roaming\Mozilla\Firefox\Profiles\eb3wbxr6.default\Extensions\{1b646e65-56b2-4543-b72c-0e8976cf559e}.xpi => Moved successfully.
C:\Users\Louise C\AppData\Roaming\Mozilla\Firefox\Profiles\eb3wbxr6.default\extensions\istart_ffnt@gmail.com not found.
Chrome StartupUrls deleted successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho" => Key deleted successfully.
IHHXGJiVXK => Service deleted successfully.
C:\Users\Louise C\AppData\Local\HealthAlert => Moved successfully.
C:\Users\Louise C\AppData\Roaming\uTorrent => Moved successfully.
C:\ProgramData\97fd4b5f86254ac3a08dd8761fc0a60b => Moved successfully.
C:\ProgramData\cb936ee67f864009ae4bb3b7d3342080 => Moved successfully.
C:\ProgramData\b5697d4960ae45f09dc96b28114ac4da => Moved successfully.
C:\WINDOWS\MediaViewer => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3425E88D-AD0E-495F-94B6-CA9276F80DE1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3425E88D-AD0E-495F-94B6-CA9276F80DE1}" => Key deleted successfully.
C:\Windows\System32\Tasks\{505B0B17-36DD-4A70-A03A-F388F3DE883B} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{505B0B17-36DD-4A70-A03A-F388F3DE883B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F11A9DC1-5947-4925-82B9-E32689FA54D9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F11A9DC1-5947-4925-82B9-E32689FA54D9}" => Key deleted successfully.
C:\Windows\System32\Tasks\HHOAXNJEL => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HHOAXNJEL" => Key deleted successfully.
C:\ProgramData\QmKUlf\IHHXGJiVXK.exe => Moved successfully.
EmptyTemp: => Removed 187.6 MB temporary data.


The system needed a reboot.

==== End of Fixlog 20:24:21 ====

Publicité


Signaler le contenu de ce document

Publicité