Script ZHPFix Lignes indésirables : G1 - GCS: Preference [User Data\Default] http://rts.dsrlte.com => PUP.PaybyAds O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) . (.Reimage® - Reimage Real Time Protection.) - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>Rogue.ReimageRepair [MD5.00000000000000000000000000000000] [APT] [Reimage Reminder] (...) -- C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe (.not file.) [0] =>Rogue.ReimageRepair O42 - Logiciel: Reimage Repair - (.Reimage.) [HKLM] -- Reimage Repair =>Rogue.ReimageRepair O42 - Logiciel: Yahoo! Search - (.Pay-By-Ads.) [HKCU] -- Yahoo! Search => PUP.PaybyAds [HKCU\Software\Reimage] =>Rogue.ReimageRepair [HKCU\Software\reimagerepair] =>Rogue.ReimageRepair [HKLM\Software\MegaBrowse] =>PUP.MegaBrowse [HKLM\Software\Reimage] =>Rogue.ReimageRepair O43 - CFD: 27/07/2014 - 15:10:26 - [] ----D C:\Program Files\Reimage =>Rogue.ReimageRepair O43 - CFD: 27/07/2014 - 15:10:43 - [] ----D C:\ProgramData\Reimage Protector =>Rogue.ReimageRepair O44 - LFC:[MD5.02F471DCACF6330A7B71CA3B3121C829] - 10/08/2014 - 16:53:39 ---A- . (...) -- C:\Windows\Reimage.ini [163] =>Rogue.ReimageRepair O45 - LFCP:[MD5.19663623A658090FBAA9EC122053DDD2] - 10/08/2014 - 17:22:55 ---A- - C:\Windows\Prefetch\MEGABROWSE.BRT.HELPER.EXE-FB449AD0.pf =>PUP.MegaBrowse O58 - SDL:04/04/2014 - 22:50:44 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\wStLibG.sys [52928] =>PUP.LinkiDoo O69 - SBI: SearchScopes [HKCU] {1C50787B-571B-52D9-200B-43C429D0A5E1} - (Search the web (Babylon)) - http://search.babylon.com =>PUP.Babylon O69 - SBI: SearchScopes [HKCU] {5F2C9B54-E75E-416C-8432-C2260B4819EA} - (Yahoo! Search) - http://rts.dsrlte.com => PUP.PaybyAds HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.AdvancedSystemProtector HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.AdvancedSystemProtector HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.MyPCBackup HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.MyPCBackup HKLM\SOFTWARE\Microsoft\Tracing\MegaBrowse_RASAPI32 =>PUP.MegaBrowse HKLM\SOFTWARE\Microsoft\Tracing\MegaBrowse_RASMANCS =>PUP.MegaBrowse HKLM\SOFTWARE\Microsoft\Tracing\Signup Wizard_RASAPI32 =>PUP.JDIBackup HKLM\SOFTWARE\Microsoft\Tracing\Signup Wizard_RASMANCS =>PUP.JDIBackup HKLM\SOFTWARE\Microsoft\Tracing\updateJumpFlip_RASAPI32 =>PUP.JumpFlip HKLM\SOFTWARE\Microsoft\Tracing\updateJumpFlip_RASMANCS =>PUP.JumpFlip HKLM\SOFTWARE\Microsoft\Tracing\updateMegaBrowse_RASAPI32 =>PUP.MegaBrowse HKLM\SOFTWARE\Microsoft\Tracing\updateMegaBrowse_RASMANCS =>PUP.MegaBrowse HKLM\SOFTWARE\Microsoft\Tracing\utilJumpFlip_RASAPI32 =>PUP.JumpFlip HKLM\SOFTWARE\Microsoft\Tracing\utilJumpFlip_RASMANCS =>PUP.JumpFlip HKLM\SOFTWARE\Microsoft\Tracing\utilMegaBrowse_RASAPI32 =>PUP.MegaBrowse HKLM\SOFTWARE\Microsoft\Tracing\utilMegaBrowse_RASMANCS =>PUP.MegaBrowse SR - | Auto 28/07/2014 5857128 | (ReimageRealTimeProtector) . (.Reimage®.) - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>Rogue.ReimageRepair Warning: possible TDL3 rootkit infection ! => Infection Rootkit (Possible) [HKLM\SYSTEM\CurrentControlSet\Services\ReimageRealTimeProtector] =>Rogue.ReimageRepair^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair] =>Rogue.ReimageRepair^ [HKLM\Software\Classes\AppID\esrv.EXE] =>PUP.Babylon [HKCU\Software\Reimage] =>Rogue.ReimageRepair [HKLM\Software\Reimage] =>Rogue.ReimageRepair [HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox [HKCU\Software\Classes\keepmysearch] =>Adware.MyWebSearch C:\Program Files\Reimage =>Rogue.ReimageRepair^ C:\ProgramData\Reimage Protector =>Rogue.ReimageRepair^ [HKCU\Software\reimagerepair] =>Rogue.ReimageRepair^ [HKLM\Software\MegaBrowse] =>PUP.MegaBrowse^ C:\Windows\Reimage.ini =>Rogue.ReimageRepair O23 - Service: (vToolbarUpdater18.0.5) . (...) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\ToolbarUpdater.exe (.not file.) =>Toolbar.AVGSearch [MD5.652AF5EA125EC68EF66B76F5F215FD4F] [WIS][19/07/2014] (.Microsoft Corporation - Bing Bar Platform.) -- C:\Windows\Installer\72cf95.msi [209920] =>Toolbar.Bing HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASAPI32 =>Toolbar.Bing [HKCR\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] (Bing Bar BHO) =>Toolbar.Bing SS - | Auto 10/07/1658 0 | (vToolbarUpdater18.0.5) . (...) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\ToolbarUpdater.exe =>Toolbar.AVGSearch [HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.0.5] =>Toolbar.AVGSearch^ [HKLM\Software\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing C:\Windows\Installer\72cf95.msi =>Toolbar.Bing^ [HKCR\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] (Bing Bar BHO) =>Toolbar.Bing^ Lignes superflues ou inutiles : C:\Users\Joelle\AppData\Roaming\Mozilla\Firefox\Profiles\wpi4uylq.default-1406284623318\prefs.js (.not file.) => Fichier absent O4 - HKCU\..\Run: [Mobile Partner] Clé orpheline => Orphean Key not necessary O4 - HKUS\S-1-5-21-3994422962-4037263937-2730094951-1000\..\Run: [Mobile Partner] Clé orpheline => Orphean Key not necessary [MD5.00000000000000000000000000000000] [APT] [{EEC7AF0E-3E01-4EFE-B239-4CC3F89DC59B}] (...) -- C:\Users\Joelle\Downloads\ie6setupOe.exe (.not file.) [0] => Fichier absent [MD5.00000000000000000000000000000000] [APT] [{F236B37F-77D6-4F34-9F61-B5398CD378D3}] (...) -- C:\Users\Joelle\Downloads\ie6setupOe.exe (.not file.) [0] => Fichier absent O39 - APT: - (..) -- C:\Windows\Tasks\ReclaimerUpdateFiles_Joelle.job [374] => RealNetworks Reclaimer Update O39 - APT: - (..) -- C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Joelle [374] => RealNetworks Reclaimer Update O39 - APT: - (..) -- C:\Windows\Tasks\ReclaimerUpdateXML_Joelle.job [370] => RealNetworks Reclaimer Update O39 - APT: - (..) -- C:\Windows\System32\Tasks\ReclaimerUpdateXML_Joelle [370] => RealNetworks Reclaimer Update O39 - APT: - (..) -- C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Joelle.job [380] => RealNetworks Update Helper Logon O39 - APT: - (..) -- C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Joelle [380] => RealNetworks Update Helper Logon [HKCU\Software\IncrediMail] => Messaging.Incredimail O51 - MPSK:{cb8656ec-4cd3-11e3-9a37-9cb70d0254e3}\AutoRun\command. (...) -- D:\Startme.exe (.not file.) => Fichier absent Lignes d'optimisation du démarrage : EmptyClsid Ifeofix Proxyfix FirewallRaz ShortcutFix emptytemp emptyflash