cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 22-04-2015 01
Ran by Administrateur at 2015-04-24 16:14:23 Run:2
Running from C:\Documents and Settings\Fabien\Bureau
Loaded Profiles: Fabien & Administrateur (Available profiles: Fabien & Administrateur)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
start
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
SearchScopes: HKU\S-1-5-21-580653093-3094153614-2514855005-500 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
CHR Extension: (No Name) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-15]
CHR Extension: (No Name) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-15]
CHR Extension: (Google Drive) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-15]
CHR Extension: (YouTube) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-15]
CHR Extension: (Google Search) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-15]
CHR Extension: (No Name) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-15]
CHR Extension: (No Name) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-15]
CHR Extension: (Gmail) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-15]
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [771456 2015-04-22] (Enigma Software Group USA, LLC.)
U1 WS2IFSL; No ImagePath
2015-04-20 10:18 - 2015-04-20 10:16 - 00000595 _____ () C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT (2).lnk
2015-04-20 10:18 - 2015-04-15 18:19 - 00001132 _____ () C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT.LNK
2015-04-20 10:18 - 2015-04-15 18:19 - 00001127 _____ () C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT (3).lnk
2015-04-20 10:18 - 2015-03-30 11:56 - 00009032 _____ () C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT.HTML
2015-04-20 10:18 - 2015-03-30 11:56 - 00004704 _____ () C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT.TXT
2015-04-20 10:18 - 2015-03-30 11:56 - 00000276 _____ () C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT.URL
2015-04-20 10:16 - 2015-04-02 18:29 - 00000000 ____H () C:\Documents and Settings\Fabien\Mes documents\Default.decryptedKLR.rdp
2015-04-03 09:54 - 2015-04-03 09:54 - 00077558 _____ () C:\spyhunter.log
2015-04-03 07:55 - 2015-04-03 07:55 - 00020894 _____ () C:\sh4_service.log
2015-04-02 18:53 - 2015-04-02 18:53 - 00000000 ____D () C:\sh4ldr
2015-04-02 18:50 - 2015-04-02 18:50 - 07125376 _____ (Enigma Software Group USA, LLC.) C:\Documents and Settings\Fabien\Bureau\SpyHunter4.exe
2015-04-02 18:45 - 2015-04-02 18:45 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Documents and Settings\Fabien\Bureau\SpyHunter-Installer.exe
2015-03-31 02:05 - 2015-04-23 07:27 - 01139200 _____ (Farbar) C:\Documents and Settings\Fabien\Bureau\FRST.exe
2015-03-30 16:03 - 2015-03-30 16:03 - 00009032 _____ () C:\Documents and Settings\NetworkService\Local Settings\HELP_DECRYPT.HTML
2015-03-30 16:03 - 2015-03-30 16:03 - 00009032 _____ () C:\Documents and Settings\NetworkService\HELP_DECRYPT.HTML
2015-03-30 16:03 - 2015-03-30 16:03 - 00009032 _____ () C:\Documents and Settings\LocalService\Local Settings\HELP_DECRYPT.HTML
2015-03-30 16:03 - 2015-03-30 16:03 - 00009032 _____ () C:\Documents and Settings\LocalService\HELP_DECRYPT.HTML
2015-03-30 16:03 - 2015-03-30 16:03 - 00009032 _____ () C:\Documents and Settings\HELP_DECRYPT.HTML
2015-03-30 16:03 - 2015-03-30 16:03 - 00004704 _____ () C:\Documents and Settings\NetworkService\Local Settings\HELP_DECRYPT.TXT
2015-03-30 16:03 - 2015-03-30 16:03 - 00004704 _____ () C:\Documents and Settings\NetworkService\Local Settings\Application Data\HELP_DECRYPT.TXT
2015-03-30 16:03 - 2015-03-30 16:03 - 00004704 _____ () C:\Documents and Settings\NetworkService\HELP_DECRYPT.TXT
2015-03-30 16:03 - 2015-03-30 16:03 - 00004704 _____ () C:\Documents and Settings\NetworkService\Application Data\HELP_DECRYPT.TXT
2015-03-30 16:03 - 2015-03-30 16:03 - 00004704 _____ () C:\Documents and Settings\LocalService\Local Settings\HELP_DECRYPT.TXT
2015-03-30 16:03 - 2015-03-30 16:03 - 00004704 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\HELP_DECRYPT.TXT
2015-03-30 16:03 - 2015-03-30 16:03 - 00004704 _____ () C:\Documents and Settings\LocalService\HELP_DECRYPT.TXT
2015-03-30 16:03 - 2015-03-30 16:03 - 00004704 _____ () C:\Documents and Settings\LocalService\Application Data\HELP_DECRYPT.TXT
2015-03-30 16:03 - 2015-03-30 16:03 - 00004704 _____ () C:\Documents and Settings\HELP_DECRYPT.TXT
2015-03-30 16:03 - 2015-03-30 16:03 - 00000276 _____ () C:\Documents and Settings\NetworkService\Local Settings\HELP_DECRYPT.URL
2015-03-30 16:03 - 2015-03-30 16:03 - 00000276 _____ () C:\Documents and Settings\NetworkService\HELP_DECRYPT.URL
2015-03-30 16:03 - 2015-03-30 16:03 - 00000276 _____ () C:\Documents and Settings\LocalService\Local Settings\HELP_DECRYPT.URL
2015-03-30 16:03 - 2015-03-30 16:03 - 00000276 _____ () C:\Documents and Settings\LocalService\HELP_DECRYPT.URL
2015-03-30 16:03 - 2015-03-30 16:03 - 00000276 _____ () C:\Documents and Settings\HELP_DECRYPT.URL
2015-03-30 14:09 - 2015-03-30 14:09 - 00009032 _____ () C:\Documents and Settings\Fabien\Local Settings\HELP_DECRYPT.HTML
2015-03-30 14:09 - 2015-03-30 14:09 - 00009032 _____ () C:\Documents and Settings\Fabien\Local Settings\Application Data\HELP_DECRYPT.HTML
2015-03-30 14:09 - 2015-03-30 14:09 - 00004704 _____ () C:\Documents and Settings\Fabien\Local Settings\HELP_DECRYPT.TXT
2015-03-30 14:09 - 2015-03-30 14:09 - 00004704 _____ () C:\Documents and Settings\Fabien\Local Settings\Application Data\HELP_DECRYPT.TXT
2015-03-30 14:09 - 2015-03-30 14:09 - 00000276 _____ () C:\Documents and Settings\Fabien\Local Settings\HELP_DECRYPT.URL
2015-03-30 14:09 - 2015-03-30 14:09 - 00000276 _____ () C:\Documents and Settings\Fabien\Local Settings\Application Data\HELP_DECRYPT.URL
2015-03-30 11:56 - 2015-03-30 11:56 - 00009032 _____ () C:\Documents and Settings\Default User\Local Settings\HELP_DECRYPT.HTML
2015-03-30 11:56 - 2015-03-30 11:56 - 00009032 _____ () C:\Documents and Settings\Default User\Local Settings\Application Data\HELP_DECRYPT.HTML
2015-03-30 11:56 - 2015-03-30 11:56 - 00009032 _____ () C:\Documents and Settings\Default User\HELP_DECRYPT.HTML
2015-03-30 11:56 - 2015-03-30 11:56 - 00009032 _____ () C:\Documents and Settings\Default User\Application Data\HELP_DECRYPT.HTML
2015-03-30 11:56 - 2015-03-30 11:56 - 00004704 _____ () C:\Documents and Settings\Default User\Local Settings\HELP_DECRYPT.TXT
2015-03-30 11:56 - 2015-03-30 11:56 - 00004704 _____ () C:\Documents and Settings\Default User\Local Settings\Application Data\HELP_DECRYPT.TXT
2015-03-30 11:56 - 2015-03-30 11:56 - 00004704 _____ () C:\Documents and Settings\Default User\HELP_DECRYPT.TXT
2015-03-30 11:56 - 2015-03-30 11:56 - 00004704 _____ () C:\Documents and Settings\Default User\Application Data\HELP_DECRYPT.TXT
2015-03-30 11:56 - 2015-03-30 11:56 - 00004704 _____ () C:\Documents and Settings\All Users\Application Data\HELP_DECRYPT.TXT
2015-03-30 11:56 - 2015-03-30 11:56 - 00000276 _____ () C:\Documents and Settings\Default User\Local Settings\HELP_DECRYPT.URL
2015-03-30 11:56 - 2015-03-30 11:56 - 00000276 _____ () C:\Documents and Settings\Default User\Local Settings\Application Data\HELP_DECRYPT.URL
2015-03-30 11:56 - 2015-03-30 11:56 - 00000276 _____ () C:\Documents and Settings\Default User\HELP_DECRYPT.URL
2015-03-30 11:56 - 2015-03-30 11:56 - 00000276 _____ () C:\Documents and Settings\Default User\Application Data\HELP_DECRYPT.URL
2015-03-30 11:55 - 2015-03-30 11:55 - 00009032 _____ () C:\Documents and Settings\Administrateur\Local Settings\HELP_DECRYPT.HTML
2015-03-30 11:55 - 2015-03-30 11:55 - 00004704 _____ () C:\Documents and Settings\Administrateur\Local Settings\HELP_DECRYPT.TXT
2015-03-30 11:55 - 2015-03-30 11:55 - 00004704 _____ () C:\Documents and Settings\Administrateur\Local Settings\Application Data\HELP_DECRYPT.TXT
2015-03-30 11:55 - 2015-03-30 11:55 - 00004704 _____ () C:\Documents and Settings\Administrateur\HELP_DECRYPT.TXT
2015-03-30 11:55 - 2015-03-30 11:55 - 00004704 _____ () C:\Documents and Settings\Administrateur\Application Data\HELP_DECRYPT.TXT
2015-03-30 11:55 - 2015-03-30 11:55 - 00000276 _____ () C:\Documents and Settings\Administrateur\Local Settings\HELP_DECRYPT.URL
2015-04-01 16:38 - 2008-06-24 15:06 - 00065536 _____ () C:\WINDOWS\system32\config\ODiag.evt
2015-03-30 11:55 - 2015-03-30 11:55 - 0004704 _____ () C:\Documents and Settings\Administrateur\Application Data\HELP_DECRYPT.TXT
2015-03-30 11:55 - 2015-03-30 11:55 - 0004704 _____ () C:\Documents and Settings\Administrateur\Local Settings\Application Data\HELP_DECRYPT.TXT
end
*****************

C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe => No running process found
"HKU\S-1-5-21-580653093-3094153614-2514855005-500\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia => Moved successfully.
SpyHunter 4 Service => Service deleted successfully.
WS2IFSL => Service deleted successfully.
"C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT (2).lnk" => File/Directory not found.
"C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT.LNK" => File/Directory not found.
"C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT (3).lnk" => File/Directory not found.
"C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT.HTML" => File/Directory not found.
"C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT.TXT" => File/Directory not found.
"C:\Documents and Settings\Fabien\Mes documents\HELP_DECRYPT.URL" => File/Directory not found.
"C:\Documents and Settings\Fabien\Mes documents\Default.decryptedKLR.rdp" => File/Directory not found.
"C:\spyhunter.log" => File/Directory not found.
"C:\sh4_service.log" => File/Directory not found.
"C:\sh4ldr" => File/Directory not found.
"C:\Documents and Settings\Fabien\Bureau\SpyHunter4.exe" => File/Directory not found.
"C:\Documents and Settings\Fabien\Bureau\SpyHunter-Installer.exe" => File/Directory not found.
C:\Documents and Settings\Fabien\Bureau\FRST.exe => Moved successfully.
C:\Documents and Settings\NetworkService\Local Settings\HELP_DECRYPT.HTML => Moved successfully.
C:\Documents and Settings\NetworkService\HELP_DECRYPT.HTML => Moved successfully.
C:\Documents and Settings\LocalService\Local Settings\HELP_DECRYPT.HTML => Moved successfully.
C:\Documents and Settings\LocalService\HELP_DECRYPT.HTML => Moved successfully.
"C:\Documents and Settings\HELP_DECRYPT.HTML" => File/Directory not found.
C:\Documents and Settings\NetworkService\Local Settings\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\NetworkService\Local Settings\Application Data\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\NetworkService\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\NetworkService\Application Data\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\LocalService\Local Settings\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\LocalService\Local Settings\Application Data\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\LocalService\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\LocalService\Application Data\HELP_DECRYPT.TXT => Moved successfully.
"C:\Documents and Settings\HELP_DECRYPT.TXT" => File/Directory not found.
C:\Documents and Settings\NetworkService\Local Settings\HELP_DECRYPT.URL => Moved successfully.
C:\Documents and Settings\NetworkService\HELP_DECRYPT.URL => Moved successfully.
C:\Documents and Settings\LocalService\Local Settings\HELP_DECRYPT.URL => Moved successfully.
C:\Documents and Settings\LocalService\HELP_DECRYPT.URL => Moved successfully.
"C:\Documents and Settings\HELP_DECRYPT.URL" => File/Directory not found.
"C:\Documents and Settings\Fabien\Local Settings\HELP_DECRYPT.HTML" => File/Directory not found.
"C:\Documents and Settings\Fabien\Local Settings\Application Data\HELP_DECRYPT.HTML" => File/Directory not found.
"C:\Documents and Settings\Fabien\Local Settings\HELP_DECRYPT.TXT" => File/Directory not found.
"C:\Documents and Settings\Fabien\Local Settings\Application Data\HELP_DECRYPT.TXT" => File/Directory not found.
"C:\Documents and Settings\Fabien\Local Settings\HELP_DECRYPT.URL" => File/Directory not found.
"C:\Documents and Settings\Fabien\Local Settings\Application Data\HELP_DECRYPT.URL" => File/Directory not found.
"C:\Documents and Settings\Default User\Local Settings\HELP_DECRYPT.HTML" => File/Directory not found.
"C:\Documents and Settings\Default User\Local Settings\Application Data\HELP_DECRYPT.HTML" => File/Directory not found.
"C:\Documents and Settings\Default User\HELP_DECRYPT.HTML" => File/Directory not found.
"C:\Documents and Settings\Default User\Application Data\HELP_DECRYPT.HTML" => File/Directory not found.
"C:\Documents and Settings\Default User\Local Settings\HELP_DECRYPT.TXT" => File/Directory not found.
"C:\Documents and Settings\Default User\Local Settings\Application Data\HELP_DECRYPT.TXT" => File/Directory not found.
"C:\Documents and Settings\Default User\HELP_DECRYPT.TXT" => File/Directory not found.
"C:\Documents and Settings\Default User\Application Data\HELP_DECRYPT.TXT" => File/Directory not found.
"C:\Documents and Settings\All Users\Application Data\HELP_DECRYPT.TXT" => File/Directory not found.
"C:\Documents and Settings\Default User\Local Settings\HELP_DECRYPT.URL" => File/Directory not found.
"C:\Documents and Settings\Default User\Local Settings\Application Data\HELP_DECRYPT.URL" => File/Directory not found.
C:\Documents and Settings\Default User\HELP_DECRYPT.URL => Moved successfully.
C:\Documents and Settings\Default User\Application Data\HELP_DECRYPT.URL => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\HELP_DECRYPT.HTML => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\Administrateur\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\Administrateur\Application Data\HELP_DECRYPT.TXT => Moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\HELP_DECRYPT.URL => Moved successfully.
Could not move "C:\WINDOWS\system32\config\ODiag.evt" => Scheduled to move on reboot.
"C:\Documents and Settings\Administrateur\Application Data\HELP_DECRYPT.TXT" => File/Directory not found.
"C:\Documents and Settings\Administrateur\Local Settings\Application Data\HELP_DECRYPT.TXT" => File/Directory not found.

Publicité


Signaler le contenu de ce document

Publicité