cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

���������� | Shortcut_Module 13.11.2013.2 - g3n-h@ckm@n

17:00:17 - 14/11/2013

(876) -- atiesrxx.exe
(328) -- atieclxx.exe
(1304) -- spoolsv.exe
(1560) -- apnmcp.exe
(1632) -- mbamscheduler.exe
(1644) -- dasHost.exe
(2568) -- taskhostex.exe
(2908) -- mbamgui.exe
(1880) -- explorer.exe
(2836) -- HotkeyUtility.exe
(2448) -- WUDFHost.exe
(2892) -- ePowerTray.exe
(3092) -- LiveComm.exe
(3780) -- SearchIndexer.exe
(3604) -- ePowerSvc.exe
(3636) -- RuntimeBroker.exe
(3812) -- firefox.exe
(3804) -- RAVCpl64.exe
(3460) -- ArcServer.exe
(3900) -- jusched.exe
(3236) -- TBNotifier.exe
(3556) -- wmplayer.exe
(3744) -- DeviceDetector.exe
(4392) -- plugin-container.exe
(4860) -- FlashPlayerPlugin_11_9_900_117.exe
(4348) -- NASvc.exe
(4756) -- wmpnetwk.exe
(2548) -- taskhost.exe
(1932) -- TrustedInstaller.exe
(4848) -- TiWorker.exe
(5020) -- msiexec.exe

���������� | Hijack Links

Disinfected : C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk : C:\Program Files (x86)\Mozilla Firefox\firefox.exe (hxxp://do-search.com/?type=sc&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182)
Disinfected : C:\Users\laurent\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk : C:\Program Files\Internet Explorer\iexplore.exe (hxxp://do-search.com/?type=sc&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182)
Disinfected : C:\Users\laurent\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk : C:\Program Files\Internet Explorer\iexplore.exe (hxxp://do-search.com/?type=sc&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182)
Disinfected : C:\Users\laurent\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk : C:\Program Files (x86)\Mozilla Firefox\firefox.exe (hxxp://do-search.com/?type=sc&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182)
Disinfected : C:\Users\laurent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk : C:\Program Files\Internet Explorer\iexplore.exe (hxxp://do-search.com/?type=sc&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182)
Disinfected : C:\Users\Public\Desktop\Mozilla Firefox.lnk : C:\Program Files (x86)\Mozilla Firefox\firefox.exe (hxxp://do-search.com/?type=sc&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182)

���������� | Hijack Internet Explorer

Repaired : [HKU\S-1-5-21-3076376410-3396797539-1974582085-1001\Software\Microsoft\Internet Explorer\Main]|[Start Page] : http://www.google.com -> http://www.google.com/
Repaired : [HKU\S-1-5-21-3076376410-3396797539-1974582085-1001\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\system32\blank.htm -> C:\Windows\SysWOW64\blank.htm
Repaired : [HKU\S-1-5-21-3076376410-3396797539-1974582085-1001\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://go.microsoft.com/fwlink/?LinkId=54896 -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Repaired : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Page] : http://do-search.com/?type=hp&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182 -> http://go.microsoft.com/fwlink/?LinkId=69157
Repaired : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : http://do-search.com/web/?type=ds&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182&q={searchTerms} -> http://go.microsoft.com/fwlink/?LinkId=54896
Repaired : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : http://do-search.com/?type=hp&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182 -> http://go.microsoft.com/fwlink/?LinkId=69157
Repaired : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://do-search.com/web/?type=ds&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182&q={searchTerms} -> http://go.microsoft.com/fwlink/?LinkId=54896
Repaired : [HKU\S-1-5-21-3076376410-3396797539-1974582085-1001\Software\Microsoft\Windows\CurrentVersion\Internet settings]|[WarnonZoneCrossing] : 0 -> 1

���������� | Hijack Google Chrome

[laurent] Successfull reset : SearchURL
[laurent] Successfull reset : Preferences

���������� | Hijack Firefox

[laurent] Replaced : user_pref("browser.newtab.url", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1&UM=2&UP=SPC6D658AA-78EF-45C4-8780-0F00BB13EBE3"); -> user_pref("browser.newtab.url", "http://www.google.fr");
[laurent] Replaced : user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPC6D658AA-78EF-45C4-8780-0F00BB13EBE3&SSPV="); -> user_pref("browser.startup.homepage", "http://www.google.fr");
[laurent] Replaced : user_pref("browser.newtab.url", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1&UM=2&UP=SPC6D658AA-78EF-45C4-8780-0F00BB13EBE3"); -> user_pref("browser.newtab.url", "http://www.google.fr");
[laurent] Replaced : user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPC6D658AA-78EF-45C4-8780-0F00BB13EBE3&SSPV="); -> user_pref("browser.startup.homepage", "http://www.google.fr");

���������� | Hijack StartMenuInternet

Repaired : [HKLM\Software\Clients\StartMenuInternet\Firefox.exe\shell\open\command] : "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://do-search.com/?type=sc&ts=1384333571&from=adks&uid=WDCXWD10EZEX-22RKKA0_WD-WCC1S422918229182 -> "C:\Program Files (x86)\Mozilla Firefox\Firefox.exe"
Repaired : [HKLM\Software\Clients\StartMenuInternet\IExplore.exe\shell\open\command] : C:\Program Files (x86)\Internet Explorer\iexplore.exe -> "C:\Program Files (x86)\Internet Explorer\iexplore.exe"

���������� | TEMP Files

[All Users] TEMP Files deleted : 0 Ko
[Default User] TEMP Files deleted : 0 Ko
[Default] TEMP Files deleted : 0 Ko
[Public] TEMP Files deleted : 0 Ko
[laurent] TEMP Files deleted : 4712 Ko

���������� |EOF| ����������

Publicité


Signaler le contenu de ce document

Publicité