cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Scan Tool (x64) Version:15-09-2015
Ran by asus (2015-09-16 08:39:44) Run:1
Running from C:\Users\asus\Desktop
Loaded Profiles: asus (Available Profiles: asus & Guest & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2894406037-275763777-2117583697-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "type", 0
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 6038
FF NetworkProxy: " type", 1
U3 ar30l4li; no ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
2015-09-16 07:08 - 2015-09-16 07:08 - 00098816 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32api.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00110080 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\pywintypes27.dll
2015-09-16 07:08 - 2015-09-16 07:08 - 00364544 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\pythoncom27.dll
2015-09-16 07:08 - 2015-09-16 07:08 - 00045568 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\_socket.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 01161216 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\_ssl.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00320512 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32com.shell.shell.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00713216 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\_hashlib.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 01176576 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._core_.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00806400 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._gdi_.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00816128 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._windows_.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 01067008 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._controls_.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00733184 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._misc_.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00682496 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\pysqlite2._sqlite.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00087552 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\_ctypes.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00119808 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32file.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00108544 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32security.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00007168 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\hashobjs_ext.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00068096 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\usb_ext.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00167936 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32gui.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00018432 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32event.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00128512 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\_elementtree.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00127488 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\pyexpat.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00013824 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\common.time34.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00036864 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\_psutil_windows.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00038912 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32inet.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00011264 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32crypt.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00077312 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._html2.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00027136 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\_multiprocessing.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00020480 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\_yappi.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00035840 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32process.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00686080 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\unicodedata.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00123392 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._wizard.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00024064 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32pipe.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00010240 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\select.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00025600 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32pdh.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00525640 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\windows._lib_cacheinvalidation.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00017408 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32profile.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00022528 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\win32ts.pyd
2015-09-16 07:08 - 2015-09-16 07:08 - 00078848 _____ () C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._animate.pyd
2015-09-16 01:45 - 2015-09-16 01:49 - 00000000 ____D C:\AdwCleaner
2015-09-16 01:44 - 2015-09-16 01:44 - 01660416 _____ C:\Users\asus\Downloads\adwcleaner_5.007.exe
2015-09-14 12:35 - 2015-09-14 12:35 - 00023068 _____ C:\ComboFix.txt
2015-09-14 11:12 - 2011-06-26 03:45 - 00256000 _____ C:\Windows\PEV.exe
2015-09-14 11:12 - 2010-11-07 14:20 - 00208896 _____ C:\Windows\MBR.exe
2015-09-14 11:12 - 2009-04-20 01:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-09-14 11:12 - 2000-08-30 21:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-09-14 11:12 - 2000-08-30 21:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-09-14 11:12 - 2000-08-30 21:00 - 00098816 _____ C:\Windows\sed.exe
2015-09-14 11:12 - 2000-08-30 21:00 - 00080412 _____ C:\Windows\grep.exe
2015-09-14 11:12 - 2000-08-30 21:00 - 00068096 _____ C:\Windows\zip.exe
2015-09-14 11:11 - 2015-09-14 12:35 - 00000000 ____D C:\Qoobox
2015-09-14 11:09 - 2015-09-14 11:09 - 05635119 ____R (Swearware) C:\Users\asus\Downloads\ComboFix.exe
2015-09-14 10:55 - 2015-09-14 11:04 - 00000000 ____D C:\ProgramData\Ultra Adware Killer
2015-09-14 10:54 - 2015-09-14 10:54 - 00901088 _____ (Carifred) C:\Users\asus\Downloads\UltraAdwareKiller64.exe
2015-09-14 10:05 - 2015-09-14 10:09 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\asus\Downloads\malwarebytes-anti-malware-2-1-8-1057-multi-win.exe
Task: {D514AEFC-0A44-46D0-945A-7C6466C5CB0F} - \avast! SL Update -> No File <==== ATTENTION
C:\Users\asus\AppData\Local\Temp\sqlite3.dll
CreateRestorePoint:
RemoveProxy:
EmptyTemp:
Reboot:
Hosts:
end
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-2894406037-275763777-2117583697-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
Firefox Proxy settings were reset.
FF NetworkProxy: "type", 0 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
FF NetworkProxy: "no_proxies_on", "" => not found
FF NetworkProxy: "ssl", "127.0.0.1" => not found
FF NetworkProxy: "ssl_port", 6038 => not found
FF NetworkProxy: " type", 1 => not found
ar30l4li => service removed successfully
catchme => service removed successfully
MBAMSwissArmy => service removed successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32api.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\pywintypes27.dll => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\pythoncom27.dll => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\_socket.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\_ssl.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32com.shell.shell.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\_hashlib.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._core_.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._gdi_.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._windows_.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._controls_.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._misc_.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\pysqlite2._sqlite.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\_ctypes.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32file.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32security.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\hashobjs_ext.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\usb_ext.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32gui.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32event.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\_elementtree.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\pyexpat.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\common.time34.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\_psutil_windows.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32inet.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32crypt.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._html2.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\_multiprocessing.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\_yappi.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32process.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\unicodedata.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._wizard.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32pipe.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\select.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32pdh.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\windows._lib_cacheinvalidation.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32profile.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\win32ts.pyd => moved successfully
C:\Users\asus\AppData\Local\Temp\_MEI30922\wx._animate.pyd => moved successfully
C:\AdwCleaner => moved successfully
C:\Users\asus\Downloads\adwcleaner_5.007.exe => moved successfully
C:\ComboFix.txt => moved successfully
C:\Windows\PEV.exe => moved successfully
C:\Windows\MBR.exe => moved successfully
C:\Windows\NIRCMD.exe => moved successfully
C:\Windows\SWREG.exe => moved successfully
C:\Windows\SWSC.exe => moved successfully
C:\Windows\sed.exe => moved successfully
C:\Windows\grep.exe => moved successfully
C:\Windows\zip.exe => moved successfully
C:\Qoobox => moved successfully
C:\Users\asus\Downloads\ComboFix.exe => moved successfully
C:\ProgramData\Ultra Adware Killer => moved successfully
C:\Users\asus\Downloads\UltraAdwareKiller64.exe => moved successfully
C:\Users\asus\Downloads\malwarebytes-anti-malware-2-1-8-1057-multi-win.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D514AEFC-0A44-46D0-945A-7C6466C5CB0F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D514AEFC-0A44-46D0-945A-7C6466C5CB0F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avast! SL Update" => key removed successfully
C:\Users\asus\AppData\Local\Temp\sqlite3.dll => moved successfully
Restore point was successfully created.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-2894406037-275763777-2117583697-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-2894406037-275763777-2117583697-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 634.4 MB temporary data Removed.


The system needed a reboot..

==== End of Fixlog 08:41:18 ====

Publicité


Signaler le contenu de ce document

Publicité