cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Scan Tool (x86) Version:07-11-2015
Ran by Usuario (2015-11-16 10:22:56) Run:1
Running from C:\Users\Usuario\Downloads
Loaded Profiles: Usuario (Available Profiles: Usuario)
Boot Mode: Normal

==============================================

fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
SearchScopes: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000 -> {50826969-F119-4C6B-A6CB-F141DED48FF8} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000 -> {93F0317E-3C5A-41EB-B53D-87FDDE46A9B5} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}
CHR Extension: (No Name) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-11-10]
CHR Extension: (No Name) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-10]
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\...\100sexlinks.com -> 100sexlinks.com
HOSTS:
CMD: bitsadmin /reset /allusers
CMD: ipconfig /flushdns
emptytemp:
end
*****************

Restore point was successfully created.
Processes closed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{50826969-F119-4C6B-A6CB-F141DED48FF8}" => key removed successfully.
HKCR\CLSID\{50826969-F119-4C6B-A6CB-F141DED48FF8} => key not found.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{93F0317E-3C5A-41EB-B53D-87FDDE46A9B5}" => key removed successfully.
HKCR\CLSID\{93F0317E-3C5A-41EB-B53D-87FDDE46A9B5} => key not found.
C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg => moved successfully
C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda => moved successfully
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0190-dialers.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\01i.info" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\02pmnzy5eo29bfk4.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\05p.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\07ic5do2myz3vzpk.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\08nigbmwk43i01y6.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\093qpeuqpmz6ebfa.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0calories.net" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0cj.net" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-britney-spears-nude.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-se.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001movie.com" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001night.biz" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100gal.net" => key removed successfully.
"HKU\S-1-5-21-2741043627-4026230127-4029745268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => key removed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

{3CA95310-5FC2-4AEB-BC2A-EE880259290D} canceled.
{5CAAA1CC-BBC4-4782-A0F6-D7C0A556ACF8} canceled.
2 out of 2 jobs canceled.

========= End of CMD: =========


========= ipconfig /flushdns =========


Configura��o de IP do Windows

Libera��o do Cache do DNS Resolver bem-sucedida.

========= End of CMD: =========

EmptyTemp: => 253.8 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 10:25:21 ====

Publicité


Signaler le contenu de ce document

Publicité