cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Scan Tool (x86) Version: 25-05-2015
Ran by didOune at 2015-05-25 23:09:31 Run:1
Running from C:\Users\didOune\Desktop
Loaded Profiles: didOune (Available Profiles: didOune & Invité)
Boot Mode: Normal

==============================================

fixlist content:
*****************
start
CloseProcesses:
Hosts:
RemoveProxy:
EmptyTemp:
CreateRestorePoint:
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3217390923-4130254451-690228699-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll
Toolbar: HKLM - No Name - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File
Toolbar: HKLM - No Name - !{98889811-442D-49dd-99D7-DC866BE87DBC} - No File
Toolbar: HKLM - No Name - !{ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKU\S-1-5-21-3217390923-4130254451-690228699-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKU\S-1-5-21-3217390923-4130254451-690228699-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-3217390923-4130254451-690228699-1000 -> No Name - {E0DE6B5A-4D86-4391-82AB-1F79C8BCF75D} - No File
FF Plugin: @java.com/DTPlugin,version=1.6.0_33 -> C:\Windows\system32\npdeployJava1.dll [2012-07-05] (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll [2012-07-05] (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll No File
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin HKU\S-1-5-21-3217390923-4130254451-690228699-1000: @facebook.com/FBPlugin,version=1.0.3 -> C:\Users\didOune\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll No File
FF Extension: Fissa - C:\Users\didOune\AppData\Roaming\Mozilla\Firefox\Profiles\rbkx1lco.default\Extensions\@FissaPlugin [2010-07-17]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2015-05-25]
S3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [79816 2009-09-16] (McAfee, Inc.)
S3 mfebopk; C:\Windows\System32\drivers\mfebopk.sys [35272 2009-09-16] (McAfee, Inc.)
R1 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [214664 2009-09-16] (McAfee, Inc.)
S3 mferkdk; C:\Windows\System32\drivers\mferkdk.sys [34248 2009-09-16] (McAfee, Inc.)
S3 mfesmfk; C:\Windows\System32\drivers\mfesmfk.sys [40552 2009-09-16] (McAfee, Inc.)
2015-05-25 17:21 - 2015-05-25 17:23 - 05628291 _____ (Swearware) C:\Users\didOune\Downloads\ComboFix.exe
2015-05-03 15:16 - 2015-05-03 15:16 - 00000000 ____D () C:\3f4af8e18ba26894697991792bb2ec40
2015-05-03 15:10 - 2015-05-03 15:16 - 00000000 ____D () C:\7adf88ce43f6b58e68a3a7
Task: {09E204D8-C057-4A56-BCF2-7593262D33B6} - System32\Tasks\{FCDC63B5-0D88-49DC-B372-4D3C8A8A2C0F} => pcalua.exe -a C:\Users\didOune\Downloads\LimeWire.exe -d C:\Users\didOune
Task: {561375CB-FF5A-417B-B297-BA73DE149581} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\Windows\system32\gatherWiredInfo.vbs
Task: {776A5A89-102B-449E-9463-434EB930A87F} - System32\Tasks\PersonalAV => C:\Program Files\PersonalAV\PersonalAV.exe
Task: {9B7EFDDD-3897-4A62-B3F6-92BDBF2D78C2} - \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task No Task File
Task: {AF164A65-F6B0-4EF7-BF7D-9B5F664B404B} - \RegistryBooster No Task File
Task: {BE05B4B0-BC65-4FCC-981F-EA15CA1979BC} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files\Ask.com\UpdateTask.exe
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs
Task: {FF4B5C6D-868F-4A2E-8346-9A26513EB20C} - \Norton Security Scan for didOune No Task File
Task: C:\Windows\Tasks\PersonalAV.job => C:\Program Files\PersonalAV\PersonalAV.exe
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"

end
*****************

Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts restored successfully.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value Removed successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value Removed successfully.
HKU\S-1-5-21-3217390923-4130254451-690228699-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value Removed successfully.
HKU\S-1-5-21-3217390923-4130254451-690228699-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value Removed successfully.


========= End of RemoveProxy: =========

Restore point was successfully created.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}" => key Removed successfully.
HKCR\CLSID\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value Removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value Removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value Removed successfully.
"HKU\S-1-5-21-3217390923-4130254451-690228699-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}" => key Removed successfully.
HKCR\CLSID\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => key Removed successfully.
HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => key Removed successfully.
"HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => key Removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\!{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value Removed successfully.
HKCR\CLSID\!{2318C2B1-4965-11d4-9B18-009027A5CD4F} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\!{98889811-442D-49dd-99D7-DC866BE87DBC} => value Removed successfully.
HKCR\CLSID\!{98889811-442D-49dd-99D7-DC866BE87DBC} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\!{ae07101b-46d4-4a98-af68-0333ea26e113} => value Removed successfully.
HKCR\CLSID\!{ae07101b-46d4-4a98-af68-0333ea26e113} => key not found.
HKU\S-1-5-21-3217390923-4130254451-690228699-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} => value Removed successfully.
HKCR\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068} => key not found.
HKU\S-1-5-21-3217390923-4130254451-690228699-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value Removed successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
HKU\S-1-5-21-3217390923-4130254451-690228699-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E0DE6B5A-4D86-4391-82AB-1F79C8BCF75D} => value Removed successfully.
HKCR\CLSID\{E0DE6B5A-4D86-4391-82AB-1F79C8BCF75D} => key not found.
"HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33" => key Removed successfully.
C:\Windows\system32\npdeployJava1.dll => Moved successfully.
HKLM\Software\MozillaPlugins\@java.com/JavaPlugin => key not found.
C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3" => key Removed successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922" => key Removed successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109" => key Removed successfully.
"HKU\S-1-5-21-3217390923-4130254451-690228699-1000\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3" => key Removed successfully.
C:\Users\didOune\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll not found.
C:\Users\didOune\AppData\Roaming\Mozilla\Firefox\Profiles\rbkx1lco.default\Extensions\@FissaPlugin => Moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} => not found.
mfeavfk => Service Removed successfully.
mfebopk => Service Removed successfully.
mfehidk => Unable to stop service.
mfehidk => Service Removed successfully.
mferkdk => Service Removed successfully.
mfesmfk => Service Removed successfully.
C:\Users\didOune\Downloads\ComboFix.exe => Moved successfully.
C:\3f4af8e18ba26894697991792bb2ec40 => Moved successfully.
C:\7adf88ce43f6b58e68a3a7 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{09E204D8-C057-4A56-BCF2-7593262D33B6}" => key Removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{09E204D8-C057-4A56-BCF2-7593262D33B6}" => key Removed successfully.
C:\Windows\System32\Tasks\{FCDC63B5-0D88-49DC-B372-4D3C8A8A2C0F} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FCDC63B5-0D88-49DC-B372-4D3C8A8A2C0F} => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{561375CB-FF5A-417B-B297-BA73DE149581}" => key Removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{561375CB-FF5A-417B-B297-BA73DE149581}" => key Removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Wired\GatherWiredInfo => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{776A5A89-102B-449E-9463-434EB930A87F}" => key Removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{776A5A89-102B-449E-9463-434EB930A87F}" => key Removed successfully.
C:\Windows\System32\Tasks\PersonalAV => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PersonalAV => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9B7EFDDD-3897-4A62-B3F6-92BDBF2D78C2}" => key Removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9B7EFDDD-3897-4A62-B3F6-92BDBF2D78C2}" => key Removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AF164A65-F6B0-4EF7-BF7D-9B5F664B404B}" => key Removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF164A65-F6B0-4EF7-BF7D-9B5F664B404B}" => key Removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegistryBooster => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BE05B4B0-BC65-4FCC-981F-EA15CA1979BC}" => key Removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE05B4B0-BC65-4FCC-981F-EA15CA1979BC}" => key Removed successfully.
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8}" => key Removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8}" => key Removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Wireless\GatherWirelessInfo => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF4B5C6D-868F-4A2E-8346-9A26513EB20C}" => key Removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF4B5C6D-868F-4A2E-8346-9A26513EB20C}" => key Removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton Security Scan for didOune => key not found.
C:\Windows\Tasks\PersonalAV.job => Moved successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc" => key Removed successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\MCODS" => key Removed successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc" => key Removed successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\MCODS" => key Removed successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\MpfService" => key Removed successfully.
EmptyTemp: => Removed 288.1 MB temporary data.


The system needed a reboot.

==== End of Fixlog 23:11:26 ====

Publicité


Signaler le contenu de ce document

Publicité